wssetup.exe immer wieder beim hochfahren

wer · 14.06.2013, 13:41

Hallo ich hoffe jemand kann auch mir helfen. Beim hochfahren kommt immer das Fenster von wssetup.exe Perion Network ltd. und ich bestätige es immer mit Nein.

markusg · 14.06.2013, 14:05

Hi,

Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop

Starte bitte die
OTL.exe
.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Kopiere nun den Inhalt in die
Textbox.

Code:

ATTFilter

activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
C:\Windows\system32\*.tsp
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT

Schliesse bitte nun alle Programme. (Wichtig)
Klicke nun bitte auf den Quick Scan Button.
Kopiere
nun den Inhalt aus OTL.txt und Extra.txt hier in Deinen Thread

wer · 14.06.2013, 14:42

Danke Markus
ich bekomme nur OTL TXT nicht Extra.TXT

übrigens habe ich gestern Strafanzeige wegen der Spam bei der Polizei gestellt.

markusg · 14.06.2013, 14:44

hi,
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

wer · 14.06.2013, 14:53

15:47:06.0196 0360 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:47:06.0836 0360 ============================================================
15:47:06.0836 0360 Current date / time: 2013/06/14 15:47:06.0836
15:47:06.0836 0360 SystemInfo:
15:47:06.0836 0360
15:47:06.0836 0360 OS Version: 6.1.7601 ServicePack: 1.0
15:47:06.0836 0360 Product type: Workstation
15:47:06.0836 0360 ComputerName: KARIN-TOSH
15:47:06.0836 0360 UserName: Karin
15:47:06.0836 0360 Windows directory: C:\windows
15:47:06.0836 0360 System windows directory: C:\windows
15:47:06.0836 0360 Running under WOW64
15:47:06.0836 0360 Processor architecture: Intel x64
15:47:06.0836 0360 Number of processors: 8
15:47:06.0836 0360 Page size: 0x1000
15:47:06.0836 0360 Boot type: Normal boot
15:47:06.0836 0360 ============================================================
15:47:07.0663 0360 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:47:07.0663 0360 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:47:07.0678 0360 ============================================================
15:47:07.0678 0360 \Device\Harddisk0\DR0:
15:47:07.0678 0360 MBR partitions:
15:47:07.0678 0360 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x3822F000
15:47:07.0678 0360 \Device\Harddisk1\DR1:
15:47:07.0678 0360 MBR partitions:
15:47:07.0678 0360 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x1000, BlocksNum 0x3A385000
15:47:07.0678 0360 ============================================================
15:47:07.0710 0360 C: <-> \Device\Harddisk0\DR0\Partition1
15:47:08.0146 0360 D: <-> \Device\Harddisk1\DR1\Partition1
15:47:08.0146 0360 ============================================================
15:47:08.0146 0360 Initialize success
15:47:08.0146 0360 ============================================================
15:49:58.0438 3016 ============================================================
15:49:58.0438 3016 Scan started
15:49:58.0438 3016 Mode: Manual; SigCheck; TDLFS;
15:49:58.0438 3016 ============================================================
15:50:00.0107 3016 ================ Scan system memory ========================
15:50:00.0107 3016 System memory - ok
15:50:00.0107 3016 ================ Scan services =============================
15:50:00.0357 3016 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
15:50:00.0513 3016 1394ohci - ok
15:50:00.0591 3016 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
15:50:00.0622 3016 ACPI - ok
15:50:00.0669 3016 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
15:50:00.0763 3016 AcpiPmi - ok
15:50:00.0794 3016 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:50:00.0825 3016 AdobeARMservice - ok
15:50:00.0965 3016 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:50:00.0997 3016 AdobeFlashPlayerUpdateSvc - ok
15:50:01.0075 3016 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
15:50:01.0121 3016 adp94xx - ok
15:50:01.0168 3016 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
15:50:01.0184 3016 adpahci - ok
15:50:01.0199 3016 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
15:50:01.0215 3016 adpu320 - ok
15:50:01.0231 3016 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
15:50:01.0387 3016 AeLookupSvc - ok
15:50:01.0465 3016 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
15:50:01.0527 3016 AFD - ok
15:50:01.0543 3016 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
15:50:01.0558 3016 agp440 - ok
15:50:01.0589 3016 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
15:50:01.0652 3016 ALG - ok
15:50:01.0652 3016 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
15:50:01.0667 3016 aliide - ok
15:50:01.0777 3016 [ 5478FBA3AA3B21FB39E73A3AC3CFC159 ] AllShare Framework DMS C:\Program Files\Samsung\AllShare Framework DMS\1.3.06\AllShareFrameworkManagerDMS.exe
15:50:01.0792 3016 AllShare Framework DMS - ok
15:50:01.0808 3016 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
15:50:01.0823 3016 amdide - ok
15:50:01.0823 3016 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
15:50:01.0855 3016 AmdK8 - ok
15:50:01.0855 3016 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
15:50:01.0886 3016 AmdPPM - ok
15:50:01.0901 3016 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
15:50:01.0901 3016 amdsata - ok
15:50:01.0933 3016 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
15:50:01.0933 3016 amdsbs - ok
15:50:01.0948 3016 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
15:50:01.0948 3016 amdxata - ok
15:50:02.0057 3016 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\windows\system32\inetsrv\apphostsvc.dll
15:50:02.0104 3016 AppHostSvc - ok
15:50:02.0104 3016 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
15:50:02.0323 3016 AppID - ok
15:50:02.0354 3016 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
15:50:02.0416 3016 AppIDSvc - ok
15:50:02.0479 3016 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\windows\System32\appinfo.dll
15:50:02.0541 3016 Appinfo - ok
15:50:02.0603 3016 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:50:02.0650 3016 Apple Mobile Device - ok
15:50:02.0650 3016 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
15:50:02.0681 3016 arc - ok
15:50:02.0697 3016 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
15:50:02.0713 3016 arcsas - ok
15:50:02.0744 3016 [ 1838F16E9CE03B993FC500703B711DAB ] aspnet_state C:\windows\Microsoft.NET\Framework64\v2.0.50727\aspnet_state.exe
15:50:02.0759 3016 aspnet_state - ok
15:50:02.0759 3016 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
15:50:02.0853 3016 AsyncMac - ok
15:50:02.0869 3016 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
15:50:02.0884 3016 atapi - ok
15:50:02.0962 3016 [ B2931C83CFB12A3223A47B180473AE1A ] athr C:\windows\system32\DRIVERS\athrx.sys
15:50:03.0056 3016 athr - ok
15:50:03.0087 3016 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
15:50:03.0134 3016 AudioEndpointBuilder - ok
15:50:03.0149 3016 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
15:50:03.0196 3016 AudioSrv - ok
15:50:03.0196 3016 [ 6A300AD0E23A155B2C3A7FAB0D4AABD1 ] avmaudio C:\windows\system32\DRIVERS\avmaudio.sys
15:50:03.0227 3016 avmaudio - ok
15:50:03.0243 3016 [ 6A300AD0E23A155B2C3A7FAB0D4AABD1 ] avmaura C:\windows\system32\DRIVERS\avmaura.sys
15:50:03.0259 3016 avmaura - ok
15:50:03.0274 3016 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
15:50:03.0352 3016 AxInstSV - ok
15:50:03.0399 3016 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
15:50:03.0461 3016 b06bdrv - ok
15:50:03.0477 3016 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
15:50:03.0524 3016 b57nd60a - ok
15:50:03.0555 3016 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
15:50:03.0602 3016 BDESVC - ok
15:50:03.0617 3016 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
15:50:03.0680 3016 Beep - ok
15:50:03.0742 3016 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
15:50:03.0836 3016 BFE - ok
15:50:03.0976 3016 [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130531.001\BHDrvx64.sys
15:50:04.0007 3016 BHDrvx64 - ok
15:50:04.0085 3016 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
15:50:04.0179 3016 BITS - ok
15:50:04.0210 3016 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\drivers\blbdrive.sys
15:50:04.0241 3016 blbdrive - ok
15:50:04.0288 3016 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:50:04.0304 3016 Bonjour Service - ok
15:50:04.0366 3016 BotkindSyncService - ok
15:50:04.0382 3016 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
15:50:04.0413 3016 bowser - ok
15:50:04.0444 3016 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
15:50:04.0491 3016 BrFiltLo - ok
15:50:04.0507 3016 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
15:50:04.0538 3016 BrFiltUp - ok
15:50:04.0585 3016 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
15:50:04.0647 3016 Browser - ok
15:50:04.0663 3016 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
15:50:04.0741 3016 Brserid - ok
15:50:04.0756 3016 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
15:50:04.0803 3016 BrSerWdm - ok
15:50:04.0819 3016 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
15:50:04.0850 3016 BrUsbMdm - ok
15:50:04.0865 3016 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
15:50:04.0897 3016 BrUsbSer - ok
15:50:04.0943 3016 [ 2347ABBD13BADA65826FDAB4CAAFE357 ] BtFilter C:\windows\system32\DRIVERS\btfilter.sys
15:50:04.0975 3016 BtFilter - ok
15:50:05.0006 3016 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
15:50:05.0037 3016 BTHMODEM - ok
15:50:05.0084 3016 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
15:50:05.0115 3016 bthserv - ok
15:50:05.0177 3016 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_NIS C:\windows\system32\drivers\NISx64\1403010.016\ccSetx64.sys
15:50:05.0209 3016 ccSet_NIS - ok
15:50:05.0240 3016 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
15:50:05.0318 3016 cdfs - ok
15:50:05.0365 3016 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
15:50:05.0443 3016 cdrom - ok
15:50:05.0489 3016 [ A965B206921C55F2D1481789D609B711 ] CeKbFilter C:\windows\system32\DRIVERS\CeKbFilter.sys
15:50:05.0505 3016 CeKbFilter - ok
15:50:05.0552 3016 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
15:50:05.0599 3016 CertPropSvc - ok
15:50:05.0630 3016 [ 41E7C4FA6491747402CFCA77CC1C7AAB ] cfWiMAXService C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
15:50:05.0630 3016 cfWiMAXService - ok
15:50:05.0645 3016 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
15:50:05.0661 3016 circlass - ok
15:50:05.0723 3016 [ EDB41CE6CBDC045BC741EC54838427D2 ] cjpcsc C:\windows\SysWOW64\cjpcsc.exe
15:50:05.0770 3016 cjpcsc - ok
15:50:05.0770 3016 [ B16DA6F151CD7FA0D58F82AC884D5039 ] cjusb C:\windows\system32\DRIVERS\cjusb.sys
15:50:05.0786 3016 cjusb - ok
15:50:05.0817 3016 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
15:50:05.0833 3016 CLFS - ok
15:50:05.0848 3016 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:50:05.0864 3016 clr_optimization_v2.0.50727_32 - ok
15:50:05.0864 3016 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:50:05.0879 3016 clr_optimization_v2.0.50727_64 - ok
15:50:05.0911 3016 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:50:05.0926 3016 clr_optimization_v4.0.30319_32 - ok
15:50:05.0957 3016 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:50:05.0989 3016 clr_optimization_v4.0.30319_64 - ok
15:50:05.0989 3016 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\drivers\CmBatt.sys
15:50:06.0051 3016 CmBatt - ok
15:50:06.0051 3016 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
15:50:06.0067 3016 cmdide - ok
15:50:06.0098 3016 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
15:50:06.0113 3016 CNG - ok
15:50:06.0129 3016 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
15:50:06.0145 3016 Compbatt - ok
15:50:06.0160 3016 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
15:50:06.0191 3016 CompositeBus - ok
15:50:06.0191 3016 COMSysApp - ok
15:50:06.0207 3016 [ CAB0EEAF5295FC96DDD3E19DCE27E131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
15:50:06.0207 3016 ConfigFree Service - ok
15:50:06.0238 3016 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
15:50:06.0238 3016 crcdisk - ok
15:50:06.0254 3016 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\windows\system32\cryptsvc.dll
15:50:06.0285 3016 CryptSvc - ok
15:50:06.0332 3016 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
15:50:06.0363 3016 cvhsvc - ok
15:50:06.0394 3016 [ B1C55A95006D621D04FE4A23F86C0A54 ] DCamUSBEMPIA C:\windows\system32\DRIVERS\emDevice64.sys
15:50:06.0425 3016 DCamUSBEMPIA - ok
15:50:06.0457 3016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
15:50:06.0566 3016 DcomLaunch - ok
15:50:06.0597 3016 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
15:50:06.0675 3016 defragsvc - ok
15:50:06.0706 3016 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
15:50:06.0784 3016 DfsC - ok
15:50:06.0800 3016 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
15:50:06.0831 3016 Dhcp - ok
15:50:06.0831 3016 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
15:50:06.0862 3016 discache - ok
15:50:06.0893 3016 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
15:50:06.0893 3016 Disk - ok
15:50:06.0925 3016 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
15:50:06.0956 3016 Dnscache - ok
15:50:06.0987 3016 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
15:50:07.0065 3016 dot3svc - ok
15:50:07.0081 3016 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\windows\system32\DRIVERS\Dot4.sys
15:50:07.0112 3016 Dot4 - ok
15:50:07.0127 3016 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\windows\system32\DRIVERS\Dot4Prt.sys
15:50:07.0143 3016 Dot4Print - ok
15:50:07.0174 3016 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\windows\system32\DRIVERS\dot4usb.sys
15:50:07.0190 3016 dot4usb - ok
15:50:07.0221 3016 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
15:50:07.0283 3016 DPS - ok
15:50:07.0315 3016 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
15:50:07.0346 3016 drmkaud - ok
15:50:07.0424 3016 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
15:50:07.0486 3016 DXGKrnl - ok
15:50:07.0517 3016 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
15:50:07.0549 3016 EapHost - ok
15:50:07.0642 3016 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
15:50:07.0751 3016 ebdrv - ok
15:50:07.0798 3016 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
15:50:07.0845 3016 eeCtrl - ok
15:50:07.0861 3016 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
15:50:07.0907 3016 EFS - ok
15:50:07.0939 3016 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
15:50:07.0985 3016 ehRecvr - ok
15:50:07.0985 3016 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
15:50:08.0017 3016 ehSched - ok
15:50:08.0048 3016 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
15:50:08.0063 3016 elxstor - ok
15:50:08.0079 3016 [ 8543BB84CD5872CD1619183F5CBBE3F9 ] emAudio C:\windows\system32\drivers\emAudio64.sys
15:50:08.0110 3016 emAudio - ok
15:50:08.0126 3016 [ 524C79054636D2E5751169005006460B ] enecir C:\windows\system32\DRIVERS\enecir.sys
15:50:08.0141 3016 enecir - ok
15:50:08.0141 3016 [ E17EB95358F396E27D573A1B20F891F8 ] enecirhid C:\windows\system32\DRIVERS\enecirhid.sys
15:50:08.0173 3016 enecirhid - ok
15:50:08.0173 3016 [ 8492D808C79BD6FE439F77BE84956CDF ] enecirhidma C:\windows\system32\DRIVERS\enecirhidma.sys
15:50:08.0188 3016 enecirhidma - ok
15:50:08.0219 3016 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
15:50:08.0235 3016 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning
15:50:08.0235 3016 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1)
15:50:08.0407 3016 [ 7DB097F4F6786307168C0DDDEC43A565 ] EPSON_EB_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
15:50:08.0453 3016 EPSON_EB_RPCV4_04 - ok
15:50:08.0500 3016 [ 258AA65A0862E19B7DE6981FDA3758AD ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
15:50:08.0547 3016 EPSON_PM_RPCV4_04 - ok
15:50:08.0578 3016 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:50:08.0594 3016 EraserUtilRebootDrv - ok
15:50:08.0609 3016 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
15:50:08.0641 3016 ErrDev - ok
15:50:08.0672 3016 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
15:50:08.0719 3016 EventSystem - ok
15:50:08.0765 3016 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
15:50:08.0828 3016 exfat - ok
15:50:08.0843 3016 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
15:50:08.0890 3016 fastfat - ok
15:50:08.0921 3016 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
15:50:08.0968 3016 Fax - ok
15:50:08.0968 3016 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
15:50:08.0999 3016 fdc - ok
15:50:08.0999 3016 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
15:50:09.0031 3016 fdPHost - ok
15:50:09.0031 3016 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
15:50:09.0062 3016 FDResPub - ok
15:50:09.0077 3016 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
15:50:09.0077 3016 FileInfo - ok
15:50:09.0093 3016 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
15:50:09.0124 3016 Filetrace - ok
15:50:09.0171 3016 [ 73FBB50C4D92ADC30A9D57A269489A0B ] FiltUSBEMPIA C:\windows\system32\DRIVERS\emFilter64.sys
15:50:09.0202 3016 FiltUSBEMPIA - ok
15:50:09.0202 3016 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
15:50:09.0233 3016 flpydisk - ok
15:50:09.0249 3016 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
15:50:09.0280 3016 FltMgr - ok
15:50:09.0311 3016 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\windows\system32\FntCache.dll
15:50:09.0358 3016 FontCache - ok
15:50:09.0358 3016 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:50:09.0374 3016 FontCache3.0.0.0 - ok
15:50:09.0374 3016 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
15:50:09.0389 3016 FsDepends - ok
15:50:09.0405 3016 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
15:50:09.0405 3016 Fs_Rec - ok
15:50:09.0421 3016 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
15:50:09.0436 3016 fvevol - ok
15:50:09.0467 3016 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
15:50:09.0483 3016 gagp30kx - ok
15:50:09.0514 3016 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
15:50:09.0545 3016 GamesAppService - ok
15:50:09.0577 3016 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
15:50:09.0592 3016 GEARAspiWDM - ok
15:50:09.0608 3016 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
15:50:09.0655 3016 gpsvc - ok
15:50:09.0686 3016 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:50:09.0717 3016 gupdate - ok
15:50:09.0733 3016 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:50:09.0733 3016 gupdatem - ok
15:50:09.0779 3016 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
15:50:09.0811 3016 HdAudAddService - ok
15:50:09.0842 3016 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
15:50:09.0873 3016 HDAudBus - ok
15:50:09.0889 3016 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
15:50:09.0935 3016 HidBatt - ok
15:50:09.0982 3016 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
15:50:10.0029 3016 HidBth - ok
15:50:10.0076 3016 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
15:50:10.0107 3016 HidIr - ok
15:50:10.0123 3016 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
15:50:10.0154 3016 hidserv - ok
15:50:10.0185 3016 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
15:50:10.0201 3016 HidUsb - ok
15:50:10.0201 3016 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
15:50:10.0232 3016 hkmsvc - ok
15:50:10.0263 3016 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
15:50:10.0294 3016 HomeGroupListener - ok
15:50:10.0310 3016 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
15:50:10.0341 3016 HomeGroupProvider - ok
15:50:10.0357 3016 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
15:50:10.0372 3016 HpSAMD - ok
15:50:10.0372 3016 [ 80B0C0D39178E80905E30FA92C0F6D43 ] HssDrv C:\windows\system32\DRIVERS\HssDrv.sys
15:50:10.0388 3016 HssDrv - ok
15:50:10.0419 3016 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
15:50:10.0466 3016 HTTP - ok
15:50:10.0466 3016 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
15:50:10.0466 3016 hwpolicy - ok
15:50:10.0481 3016 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
15:50:10.0497 3016 i8042prt - ok
15:50:10.0528 3016 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
15:50:10.0544 3016 iaStor - ok
15:50:10.0575 3016 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
15:50:10.0606 3016 iaStorV - ok
15:50:10.0653 3016 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
15:50:10.0684 3016 IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:50:10.0684 3016 IDriverT - detected UnsignedFile.Multi.Generic (1)
15:50:10.0731 3016 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:50:10.0778 3016 idsvc - ok
15:50:10.0871 3016 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130613.002\IDSvia64.sys
15:50:10.0903 3016 IDSVia64 - ok
15:50:11.0386 3016 [ EFE5A0AF39A8E179624117C521F1E012 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
15:50:11.0683 3016 igfx - ok
15:50:11.0714 3016 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
15:50:11.0714 3016 iirsp - ok
15:50:11.0776 3016 [ AB55B8A9B13130F638546881CE4425F8 ] IISADMIN C:\windows\system32\inetsrv\inetinfo.exe
15:50:11.0823 3016 IISADMIN - ok
15:50:11.0885 3016 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
15:50:12.0026 3016 IKEEXT - ok
15:50:12.0135 3016 [ 4B2151F04BB466EC1924AA27315E1118 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
15:50:12.0244 3016 IntcAzAudAddService - ok
15:50:12.0275 3016 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
15:50:12.0307 3016 IntcDAud - ok
15:50:12.0307 3016 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
15:50:12.0322 3016 intelide - ok
15:50:12.0338 3016 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
15:50:12.0353 3016 intelppm - ok
15:50:12.0385 3016 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
15:50:12.0447 3016 IPBusEnum - ok
15:50:12.0463 3016 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
15:50:12.0509 3016 IpFilterDriver - ok
15:50:12.0541 3016 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
15:50:12.0572 3016 iphlpsvc - ok
15:50:12.0587 3016 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
15:50:12.0619 3016 IPMIDRV - ok
15:50:12.0619 3016 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
15:50:12.0665 3016 IPNAT - ok
15:50:12.0728 3016 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:50:12.0759 3016 iPod Service - ok
15:50:12.0775 3016 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
15:50:12.0790 3016 IRENUM - ok
15:50:12.0806 3016 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
15:50:12.0821 3016 isapnp - ok
15:50:12.0837 3016 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
15:50:12.0853 3016 iScsiPrt - ok
15:50:12.0884 3016 [ F415A88162D23977B5EDAE4F0410E903 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
15:50:12.0899 3016 IviRegMgr - ok
15:50:12.0931 3016 [ 0B44199365A69696109AB9A5855E0841 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
15:50:12.0946 3016 JMCR - ok
15:50:12.0962 3016 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
15:50:12.0962 3016 kbdclass - ok
15:50:12.0977 3016 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
15:50:12.0993 3016 kbdhid - ok
15:50:13.0009 3016 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
15:50:13.0024 3016 KeyIso - ok
15:50:13.0024 3016 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
15:50:13.0040 3016 KSecDD - ok
15:50:13.0055 3016 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
15:50:13.0071 3016 KSecPkg - ok
15:50:13.0087 3016 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
15:50:13.0102 3016 ksthunk - ok
15:50:13.0149 3016 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
15:50:13.0243 3016 KtmRm - ok
15:50:13.0258 3016 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
15:50:13.0305 3016 LanmanServer - ok
15:50:13.0336 3016 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
15:50:13.0399 3016 LanmanWorkstation - ok
15:50:13.0414 3016 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
15:50:13.0430 3016 lltdio - ok
15:50:13.0461 3016 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
15:50:13.0508 3016 lltdsvc - ok
15:50:13.0508 3016 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
15:50:13.0555 3016 lmhosts - ok
15:50:13.0586 3016 [ 50C7CE53EF461870410355F1F2E7D515 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
15:50:13.0617 3016 LMS - ok
15:50:13.0648 3016 [ 2825A71E7501CB33B3B9F856610C729D ] LPCFilter C:\windows\system32\DRIVERS\LPCFilter.sys
15:50:13.0664 3016 LPCFilter - ok
15:50:13.0711 3016 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
15:50:13.0726 3016 LSI_FC - ok
15:50:13.0742 3016 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
15:50:13.0757 3016 LSI_SAS - ok
15:50:13.0757 3016 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
15:50:13.0773 3016 LSI_SAS2 - ok
15:50:13.0789 3016 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
15:50:13.0804 3016 LSI_SCSI - ok
15:50:13.0820 3016 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
15:50:13.0867 3016 luafv - ok
15:50:13.0898 3016 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\windows\system32\DRIVERS\MarvinBus64.sys
15:50:13.0945 3016 MarvinBus - ok
15:50:13.0976 3016 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
15:50:13.0991 3016 Mcx2Svc - ok
15:50:14.0007 3016 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
15:50:14.0007 3016 megasas - ok
15:50:14.0038 3016 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
15:50:14.0038 3016 MegaSR - ok
15:50:14.0054 3016 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
15:50:14.0069 3016 MEIx64 - ok
15:50:14.0069 3016 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
15:50:14.0116 3016 MMCSS - ok
15:50:14.0116 3016 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
15:50:14.0179 3016 Modem - ok
15:50:14.0241 3016 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
15:50:14.0288 3016 monitor - ok
15:50:14.0303 3016 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
15:50:14.0319 3016 mouclass - ok
15:50:14.0335 3016 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
15:50:14.0350 3016 mouhid - ok
15:50:14.0366 3016 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
15:50:14.0381 3016 mountmgr - ok
15:50:14.0397 3016 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
15:50:14.0413 3016 mpio - ok
15:50:14.0444 3016 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
15:50:14.0475 3016 mpsdrv - ok
15:50:14.0522 3016 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
15:50:14.0678 3016 MpsSvc - ok
15:50:14.0709 3016 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
15:50:14.0771 3016 MRxDAV - ok
15:50:14.0818 3016 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
15:50:14.0881 3016 mrxsmb - ok
15:50:14.0896 3016 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
15:50:14.0927 3016 mrxsmb10 - ok
15:50:14.0974 3016 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
15:50:15.0037 3016 mrxsmb20 - ok
15:50:15.0037 3016 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
15:50:15.0052 3016 msahci - ok
15:50:15.0083 3016 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
15:50:15.0099 3016 msdsm - ok
15:50:15.0099 3016 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
15:50:15.0130 3016 MSDTC - ok
15:50:15.0130 3016 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
15:50:15.0177 3016 Msfs - ok
15:50:15.0193 3016 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
15:50:15.0224 3016 mshidkmdf - ok
15:50:15.0239 3016 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
15:50:15.0239 3016 msisadrv - ok
15:50:15.0271 3016 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
15:50:15.0302 3016 MSiSCSI - ok
15:50:15.0317 3016 msiserver - ok
15:50:15.0333 3016 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
15:50:15.0380 3016 MSKSSRV - ok
15:50:15.0395 3016 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
15:50:15.0442 3016 MSPCLOCK - ok
15:50:15.0505 3016 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
15:50:15.0583 3016 MSPQM - ok
15:50:15.0629 3016 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
15:50:15.0676 3016 MsRPC - ok
15:50:15.0692 3016 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
15:50:15.0692 3016 mssmbios - ok
15:50:15.0707 3016 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
15:50:15.0770 3016 MSTEE - ok
15:50:15.0785 3016 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
15:50:15.0817 3016 MTConfig - ok
15:50:15.0832 3016 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
15:50:15.0832 3016 Mup - ok
15:50:15.0879 3016 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
15:50:15.0957 3016 napagent - ok
15:50:15.0973 3016 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
15:50:16.0004 3016 NativeWifiP - ok
15:50:16.0035 3016 [ 2989174DF02E0AEF54BAE90674FB445F ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
15:50:16.0051 3016 NAUpdate - ok
15:50:16.0129 3016 [ 56540E526B46E379A476FB5BC381B290 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130613.032\ENG64.SYS
15:50:16.0175 3016 NAVENG - ok
15:50:16.0253 3016 [ 8A19D3991F9F14B885CDE8BC640F6B68 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130613.032\EX64.SYS
15:50:16.0316 3016 NAVEX15 - ok
15:50:16.0425 3016 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
15:50:16.0487 3016 NDIS - ok
15:50:16.0534 3016 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
15:50:16.0612 3016 NdisCap - ok
15:50:16.0659 3016 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
15:50:16.0721 3016 NdisTapi - ok
15:50:16.0753 3016 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
15:50:16.0768 3016 Ndisuio - ok
15:50:16.0799 3016 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
15:50:16.0831 3016 NdisWan - ok
15:50:16.0846 3016 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
15:50:16.0893 3016 NDProxy - ok
15:50:16.0924 3016 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:50:16.0940 3016 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:50:16.0940 3016 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
15:50:16.0955 3016 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
15:50:17.0033 3016 NetBIOS - ok
15:50:17.0049 3016 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
15:50:17.0111 3016 NetBT - ok
15:50:17.0127 3016 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
15:50:17.0143 3016 Netlogon - ok
15:50:17.0189 3016 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
15:50:17.0267 3016 Netman - ok
15:50:17.0283 3016 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
15:50:17.0330 3016 netprofm - ok
15:50:17.0361 3016 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:50:17.0377 3016 NetTcpPortSharing - ok
15:50:17.0392 3016 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
15:50:17.0392 3016 nfrd960 - ok
15:50:17.0423 3016 [ 241BD3019FB31E812A51B31B06906335 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\20.3.1.22\ccSvcHst.exe
15:50:17.0439 3016 NIS - ok
15:50:17.0455 3016 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
15:50:17.0486 3016 NlaSvc - ok
15:50:17.0501 3016 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\windows\system32\drivers\npf.sys
15:50:17.0517 3016 NPF - ok
15:50:17.0517 3016 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
15:50:17.0548 3016 Npfs - ok
15:50:17.0548 3016 npggsvc - ok
15:50:17.0548 3016 NPPTNT2 - ok
15:50:17.0564 3016 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
15:50:17.0595 3016 nsi - ok
15:50:17.0611 3016 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
15:50:17.0642 3016 nsiproxy - ok
15:50:17.0735 3016 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
15:50:17.0829 3016 Ntfs - ok
15:50:17.0829 3016 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
15:50:17.0860 3016 Null - ok
15:50:17.0907 3016 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
15:50:17.0923 3016 nusb3hub - ok
15:50:17.0938 3016 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
15:50:17.0954 3016 nusb3xhc - ok
15:50:18.0359 3016 [ D5DEA2C1865CAB9EE6AA29CF9E79A2CE ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
15:50:18.0671 3016 nvlddmkm - ok
15:50:18.0671 3016 [ 5EF70F7714C664BCF50EDFC141DEA9B8 ] nvpciflt C:\windows\system32\DRIVERS\nvpciflt.sys
15:50:18.0687 3016 nvpciflt - ok
15:50:18.0718 3016 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
15:50:18.0718 3016 nvraid - ok
15:50:18.0749 3016 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
15:50:18.0749 3016 nvstor - ok
15:50:18.0796 3016 [ 5A4AF8EA634B4FEEAF6F16BB1845715A ] NVSvc C:\windows\system32\nvvsvc.exe
15:50:18.0827 3016 NVSvc - ok
15:50:18.0905 3016 [ 4B7636C52A359AB0783B350A5FBDBB49 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
15:50:18.0999 3016 nvUpdatusService - ok
15:50:19.0015 3016 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
15:50:19.0030 3016 nv_agp - ok
15:50:19.0030 3016 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
15:50:19.0061 3016 ohci1394 - ok
15:50:19.0093 3016 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:50:19.0108 3016 ose - ok
15:50:19.0311 3016 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:50:19.0451 3016 osppsvc - ok
15:50:19.0514 3016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
15:50:19.0576 3016 p2pimsvc - ok
15:50:19.0623 3016 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
15:50:19.0670 3016 p2psvc - ok
15:50:19.0685 3016 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
15:50:19.0732 3016 Parport - ok
15:50:19.0732 3016 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
15:50:19.0748 3016 partmgr - ok
15:50:19.0763 3016 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
15:50:19.0795 3016 PcaSvc - ok
15:50:19.0810 3016 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
15:50:19.0826 3016 pci - ok
15:50:19.0857 3016 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
15:50:19.0873 3016 pciide - ok
15:50:19.0951 3016 [ 1BEBE7DE8508A02650CDCE45C664C2A2 ] PCLEPCI C:\windows\SysWOW64\drivers\pclepci.sys
15:50:19.0982 3016 PCLEPCI ( UnsignedFile.Multi.Generic ) - warning
15:50:19.0982 3016 PCLEPCI - detected UnsignedFile.Multi.Generic (1)
15:50:19.0997 3016 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
15:50:20.0013 3016 pcmcia - ok
15:50:20.0013 3016 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
15:50:20.0029 3016 pcw - ok
15:50:20.0091 3016 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
15:50:20.0185 3016 PEAUTH - ok
15:50:20.0200 3016 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
15:50:20.0231 3016 PerfHost - ok
15:50:20.0263 3016 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
15:50:20.0263 3016 PGEffect - ok
15:50:20.0294 3016 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
15:50:20.0356 3016 pla - ok
15:50:20.0403 3016 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
15:50:20.0465 3016 PlugPlay - ok
15:50:20.0512 3016 [ CBCEC2C45E7D672EC6E46CBFF23BDF8E ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
15:50:20.0543 3016 PMBDeviceInfoProvider - ok
15:50:20.0590 3016 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:50:20.0621 3016 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:50:20.0621 3016 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
15:50:20.0637 3016 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
15:50:20.0684 3016 PNRPAutoReg - ok
15:50:20.0715 3016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
15:50:20.0746 3016 PNRPsvc - ok
15:50:20.0762 3016 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
15:50:20.0809 3016 PolicyAgent - ok
15:50:20.0840 3016 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
15:50:20.0902 3016 Power - ok
15:50:20.0965 3016 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
15:50:21.0027 3016 PptpMiniport - ok
15:50:21.0058 3016 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
15:50:21.0074 3016 Processor - ok
15:50:21.0121 3016 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
15:50:21.0152 3016 ProfSvc - ok
15:50:21.0183 3016 [ 9CC2C93394241E602DA63826413055FF ] Prosieben C:\Program Files (x86)\maxdome\DCBin\DCService.exe
15:50:21.0214 3016 Prosieben - ok
15:50:21.0230 3016 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
15:50:21.0261 3016 ProtectedStorage - ok
15:50:21.0277 3016 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
15:50:21.0308 3016 Psched - ok
15:50:21.0355 3016 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
15:50:21.0370 3016 PSI_SVC_2 - ok
15:50:21.0448 3016 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
15:50:21.0511 3016 ql2300 - ok
15:50:21.0542 3016 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
15:50:21.0557 3016 ql40xx - ok
15:50:21.0573 3016 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
15:50:21.0604 3016 QWAVE - ok
15:50:21.0604 3016 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
15:50:21.0635 3016 QWAVEdrv - ok
15:50:21.0745 3016 [ 9B35220786B06B61D19C54406904E6ED ] Radio.fx C:\Program Files (x86)\Tobit Radio.fx\Server\rfx-server.exe
15:50:21.0854 3016 Radio.fx - ok
15:50:21.0854 3016 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
15:50:21.0901 3016 RasAcd - ok
15:50:21.0932 3016 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
15:50:22.0010 3016 RasAgileVpn - ok
15:50:22.0025 3016 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
15:50:22.0072 3016 RasAuto - ok
15:50:22.0088 3016 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
15:50:22.0119 3016 Rasl2tp - ok
15:50:22.0150 3016 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
15:50:22.0197 3016 RasMan - ok
15:50:22.0228 3016 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
15:50:22.0244 3016 RasPppoe - ok
15:50:22.0275 3016 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
15:50:22.0306 3016 RasSstp - ok
15:50:22.0337 3016 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
15:50:22.0369 3016 rdbss - ok
15:50:22.0384 3016 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
15:50:22.0415 3016 rdpbus - ok
15:50:22.0415 3016 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
15:50:22.0447 3016 RDPCDD - ok
15:50:22.0447 3016 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
15:50:22.0478 3016 RDPENCDD - ok
15:50:22.0478 3016 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
15:50:22.0525 3016 RDPREFMP - ok
15:50:22.0571 3016 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
15:50:22.0587 3016 RDPWD - ok
15:50:22.0618 3016 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
15:50:22.0634 3016 rdyboost - ok
15:50:22.0665 3016 [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
15:50:22.0696 3016 RealNetworks Downloader Resolver Service - ok
15:50:22.0712 3016 [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi C:\windows\system32\drivers\regi.sys
15:50:22.0727 3016 regi - ok
15:50:22.0743 3016 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
15:50:22.0790 3016 RemoteAccess - ok
15:50:22.0805 3016 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
15:50:22.0852 3016 RemoteRegistry - ok
15:50:22.0883 3016 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
15:50:22.0883 3016 rpcapd - ok
15:50:22.0915 3016 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
15:50:22.0977 3016 RpcEptMapper - ok
15:50:22.0993 3016 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
15:50:23.0039 3016 RpcLocator - ok
15:50:23.0071 3016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
15:50:23.0117 3016 RpcSs - ok
15:50:23.0133 3016 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
15:50:23.0164 3016 rspndr - ok
15:50:23.0195 3016 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
15:50:23.0211 3016 RTL8167 - ok
15:50:23.0227 3016 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
15:50:23.0242 3016 SamSs - ok
15:50:23.0242 3016 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
15:50:23.0258 3016 sbp2port - ok
15:50:23.0258 3016 [ EECBBF7D76300E5558D316983961FFC1 ] ScanUSBEMPIA C:\windows\system32\DRIVERS\emScan64.sys
15:50:23.0273 3016 ScanUSBEMPIA - ok
15:50:23.0289 3016 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
15:50:23.0320 3016 SCardSvr - ok
15:50:23.0336 3016 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
15:50:23.0383 3016 scfilter - ok
15:50:23.0398 3016 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
15:50:23.0476 3016 Schedule - ok
15:50:23.0476 3016 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
15:50:23.0507 3016 SCPolicySvc - ok
15:50:23.0523 3016 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\DRIVERS\sdbus.sys
15:50:23.0554 3016 sdbus - ok
15:50:23.0570 3016 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
15:50:23.0617 3016 SDRSVC - ok
15:50:23.0632 3016 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
15:50:23.0663 3016 secdrv - ok
15:50:23.0679 3016 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
15:50:23.0695 3016 seclogon - ok
15:50:23.0726 3016 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
15:50:23.0819 3016 SENS - ok
15:50:23.0851 3016 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
15:50:23.0882 3016 SensrSvc - ok
15:50:23.0897 3016 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
15:50:23.0944 3016 Serenum - ok
15:50:23.0960 3016 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
15:50:24.0007 3016 Serial - ok
15:50:24.0022 3016 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
15:50:24.0053 3016 sermouse - ok
15:50:24.0100 3016 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
15:50:24.0147 3016 SessionEnv - ok
15:50:24.0147 3016 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
15:50:24.0178 3016 sffdisk - ok
15:50:24.0194 3016 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
15:50:24.0209 3016 sffp_mmc - ok
15:50:24.0225 3016 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
15:50:24.0241 3016 sffp_sd - ok
15:50:24.0256 3016 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
15:50:24.0256 3016 sfloppy - ok
15:50:24.0287 3016 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
15:50:24.0319 3016 Sftfs - ok
15:50:24.0350 3016 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
15:50:24.0397 3016 sftlist - ok
15:50:24.0428 3016 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
15:50:24.0443 3016 Sftplay - ok
15:50:24.0443 3016 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
15:50:24.0459 3016 Sftredir - ok
15:50:24.0459 3016 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
15:50:24.0475 3016 Sftvol - ok
15:50:24.0475 3016 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
15:50:24.0490 3016 sftvsa - ok
15:50:24.0521 3016 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
15:50:24.0568 3016 SharedAccess - ok
15:50:24.0599 3016 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
15:50:24.0677 3016 ShellHWDetection - ok
15:50:24.0709 3016 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
15:50:24.0724 3016 SiSRaid2 - ok
15:50:24.0724 3016 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
15:50:24.0740 3016 SiSRaid4 - ok
15:50:24.0771 3016 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:50:24.0787 3016 SkypeUpdate - ok
15:50:24.0818 3016 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
15:50:24.0833 3016 Smb - ok
15:50:24.0849 3016 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
15:50:24.0880 3016 SNMPTRAP - ok
15:50:24.0880 3016 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
15:50:24.0896 3016 spldr - ok
15:50:24.0911 3016 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
15:50:24.0943 3016 Spooler - ok
15:50:25.0036 3016 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
15:50:25.0130 3016 sppsvc - ok
15:50:25.0145 3016 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
15:50:25.0177 3016 sppuinotify - ok
15:50:25.0239 3016 [ 378A0748DE5ADF90BF9DB897DA8564E6 ] SRTSP C:\windows\System32\Drivers\NISx64\1403010.016\SRTSP64.SYS
15:50:25.0255 3016 SRTSP - ok
15:50:25.0286 3016 [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX C:\windows\system32\drivers\NISx64\1403010.016\SRTSPX64.SYS
15:50:25.0286 3016 SRTSPX - ok
15:50:25.0317 3016 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
15:50:25.0379 3016 srv - ok
15:50:25.0395 3016 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
15:50:25.0473 3016 srv2 - ok
15:50:25.0489 3016 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
15:50:25.0520 3016 srvnet - ok
15:50:25.0535 3016 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
15:50:25.0582 3016 SSDPSRV - ok
15:50:25.0613 3016 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
15:50:25.0645 3016 SstpSvc - ok
15:50:25.0676 3016 [ E8606BF6BE3B7481D95F1DD2E4F3FCBA ] StarMoney 7.0 OnlineUpdate C:\Program Files (x86)\StarMoney 7.0\ouservice\StarMoneyOnlineUpdate.exe
15:50:25.0691 3016 StarMoney 7.0 OnlineUpdate - ok
15:50:25.0707 3016 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
15:50:25.0723 3016 stexstor - ok
15:50:25.0723 3016 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
15:50:25.0738 3016 StillCam - ok
15:50:25.0785 3016 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
15:50:25.0847 3016 stisvc - ok
15:50:25.0910 3016 [ E5FF667E416DAC99BFF16B626234A379 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
15:50:25.0941 3016 stllssvr - ok
15:50:26.0003 3016 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
15:50:26.0035 3016 swenum - ok
15:50:26.0066 3016 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
15:50:26.0144 3016 swprv - ok
15:50:26.0175 3016 [ E174C8BC572E93AEEE1036DEDAC5F225 ] SymDS C:\windows\system32\drivers\NISx64\1403010.016\SYMDS64.SYS
15:50:26.0206 3016 SymDS - ok
15:50:26.0237 3016 [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA C:\windows\system32\drivers\NISx64\1403010.016\SYMEFA64.SYS
15:50:26.0284 3016 SymEFA - ok
15:50:26.0315 3016 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent C:\windows\system32\Drivers\SYMEVENT64x86.SYS
15:50:26.0331 3016 SymEvent - ok
15:50:26.0362 3016 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\windows\system32\drivers\NISx64\1403010.016\Ironx64.SYS
15:50:26.0378 3016 SymIRON - ok
15:50:26.0409 3016 [ 1605EBD8CB86AFC4430116065995279A ] SymNetS C:\windows\System32\Drivers\NISx64\1403010.016\SYMNETS.SYS
15:50:26.0440 3016 SymNetS - ok
15:50:26.0487 3016 [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
15:50:26.0549 3016 SynTP - ok
15:50:26.0612 3016 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
15:50:26.0705 3016 SysMain - ok
15:50:26.0721 3016 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
15:50:26.0737 3016 TabletInputService - ok
15:50:26.0768 3016 [ F33FDC72298DF4BF9813A55D21F4EB31 ] taphss C:\windows\system32\DRIVERS\taphss.sys
15:50:26.0768 3016 taphss - ok
15:50:26.0783 3016 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
15:50:26.0815 3016 TapiSrv - ok
15:50:26.0830 3016 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
15:50:26.0861 3016 TBS - ok
15:50:26.0939 3016 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\windows\system32\drivers\tcpip.sys
15:50:27.0002 3016 Tcpip - ok
15:50:27.0080 3016 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
15:50:27.0127 3016 TCPIP6 - ok
15:50:27.0127 3016 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
15:50:27.0158 3016 tcpipreg - ok
15:50:27.0173 3016 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
15:50:27.0173 3016 tdcmdpst - ok
15:50:27.0189 3016 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
15:50:27.0205 3016 TDPIPE - ok
15:50:27.0220 3016 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
15:50:27.0220 3016 TDTCP - ok
15:50:27.0236 3016 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
15:50:27.0283 3016 tdx - ok
15:50:27.0361 3016 [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
15:50:27.0470 3016 TeamViewer7 - ok
15:50:27.0485 3016 [ F5520DBB47C60EE83024B38720ABDA24 ] teamviewervpn C:\windows\system32\DRIVERS\teamviewervpn.sys
15:50:27.0485 3016 teamviewervpn - ok
15:50:27.0517 3016 [ 1B709733A04DCC41A63F9CD1F76A4EBE ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
15:50:27.0532 3016 TemproMonitoringService - ok
15:50:27.0548 3016 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
15:50:27.0548 3016 TermDD - ok
15:50:27.0579 3016 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
15:50:27.0673 3016 TermService - ok
15:50:27.0688 3016 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
15:50:27.0704 3016 Themes - ok
15:50:27.0735 3016 [ C013F6ACAA9761F571BD28DADA7C157D ] Thpdrv C:\windows\system32\DRIVERS\thpdrv.sys
15:50:27.0751 3016 Thpdrv - ok
15:50:27.0766 3016 [ B4E609047434ED948AF7BDEF2FA66E38 ] Thpevm C:\windows\system32\DRIVERS\Thpevm.SYS
15:50:27.0766 3016 Thpevm - ok
15:50:27.0782 3016 [ 9B032A63A0553A2D872815C64A0288BE ] Thpsrv C:\windows\system32\ThpSrv.exe
15:50:27.0797 3016 Thpsrv ( UnsignedFile.Multi.Generic ) - warning
15:50:27.0797 3016 Thpsrv - detected UnsignedFile.Multi.Generic (1)
15:50:27.0797 3016 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
15:50:27.0829 3016 THREADORDER - ok
15:50:27.0860 3016 [ F120967184A27E927052E8DDBB727851 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
15:50:27.0860 3016 TMachInfo - ok
15:50:27.0875 3016 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\windows\system32\TODDSrv.exe
15:50:27.0891 3016 TODDSrv - ok
15:50:27.0907 3016 [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
15:50:27.0922 3016 TosCoSrv - ok
15:50:27.0953 3016 [ 8F099BE5DB17D025E19652851399B9F1 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
15:50:27.0953 3016 TOSHIBA Bluetooth Service - ok
15:50:27.0985 3016 [ D33D5588576B04FC489DCCC66E98F546 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
15:50:28.0000 3016 TOSHIBA eco Utility Service - ok
15:50:28.0000 3016 [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
15:50:28.0016 3016 TOSHIBA HDD SSD Alert Service - ok
15:50:28.0016 3016 [ 8021F63311797085949FA387F7C83583 ] tosporte C:\windows\system32\DRIVERS\tosporte.sys
15:50:28.0031 3016 tosporte - ok
15:50:28.0047 3016 [ 09CF82C0068C7CFF7E2B3797BE7F5CC2 ] tosrfbd C:\windows\system32\DRIVERS\tosrfbd.sys
15:50:28.0063 3016 tosrfbd - ok
15:50:28.0078 3016 [ 90F0B1745ABF13F44C2A6ED79F7CE9FB ] tosrfbnp C:\windows\system32\Drivers\tosrfbnp.sys
15:50:28.0078 3016 tosrfbnp - ok
15:50:28.0094 3016 [ 9E4E65EA51E34647340BD6007467AC54 ] Tosrfcom C:\windows\system32\Drivers\tosrfcom.sys
15:50:28.0109 3016 Tosrfcom - ok
15:50:28.0125 3016 [ F5E3AC4CBCD154EE80849B21887FD0B0 ] tosrfec C:\windows\system32\DRIVERS\tosrfec.sys
15:50:28.0125 3016 tosrfec - ok
15:50:28.0141 3016 [ 7D2467D3EB9BAA4B69AE4A28C83DE57A ] Tosrfhid C:\windows\system32\DRIVERS\Tosrfhid.sys
15:50:28.0141 3016 Tosrfhid - ok
15:50:28.0156 3016 [ B6FDC3C76FFE9C5171EEA9C37EA367C2 ] tosrfnds C:\windows\system32\DRIVERS\tosrfnds.sys
15:50:28.0156 3016 tosrfnds - ok
15:50:28.0172 3016 [ 7052B10E54B48AF12BD5606596A8E039 ] TosRfSnd C:\windows\system32\drivers\tosrfsnd.sys
15:50:28.0187 3016 TosRfSnd - ok
15:50:28.0187 3016 [ 7A0048693F98460FF537BE31C741B927 ] Tosrfusb C:\windows\system32\DRIVERS\tosrfusb.sys
15:50:28.0203 3016 Tosrfusb - ok
15:50:28.0219 3016 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
15:50:28.0234 3016 tos_sps64 - ok
15:50:28.0250 3016 [ D65C6B0C070534336B72005391B6168A ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
15:50:28.0281 3016 TPCHSrv - ok
15:50:28.0297 3016 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
15:50:28.0343 3016 TrkWks - ok
15:50:28.0390 3016 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
15:50:28.0453 3016 TrustedInstaller - ok
15:50:28.0468 3016 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
15:50:28.0531 3016 tssecsrv - ok
15:50:28.0562 3016 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
15:50:28.0593 3016 TsUsbFlt - ok
15:50:28.0609 3016 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
15:50:28.0624 3016 TsUsbGD - ok
15:50:28.0640 3016 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
15:50:28.0702 3016 tunnel - ok
15:50:28.0702 3016 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
15:50:28.0702 3016 TVALZ - ok
15:50:28.0718 3016 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
15:50:28.0733 3016 TVALZFL - ok
15:50:28.0733 3016 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
15:50:28.0749 3016 uagp35 - ok
15:50:28.0780 3016 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
15:50:28.0827 3016 udfs - ok
15:50:28.0843 3016 [ D2B2AB4235B360A9CCAE8E891350A474 ] UDSS c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
15:50:28.0843 3016 UDSS - ok
15:50:28.0874 3016 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
15:50:28.0889 3016 UI0Detect - ok
15:50:28.0905 3016 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
15:50:28.0905 3016 uliagpkx - ok
15:50:28.0921 3016 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
15:50:28.0936 3016 umbus - ok
15:50:28.0936 3016 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
15:50:28.0952 3016 UmPass - ok
15:50:29.0030 3016 [ 374EBDA379A8F38E0CFC2211611E7167 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
15:50:29.0139 3016 UNS - ok
15:50:29.0170 3016 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
15:50:29.0248 3016 upnphost - ok
15:50:29.0295 3016 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
15:50:29.0295 3016 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
15:50:29.0295 3016 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
15:50:29.0342 3016 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\windows\system32\drivers\usbaudio.sys
15:50:29.0389 3016 usbaudio - ok
15:50:29.0420 3016 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
15:50:29.0467 3016 usbccgp - ok
15:50:29.0482 3016 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
15:50:29.0529 3016 usbcir - ok
15:50:29.0529 3016 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
15:50:29.0545 3016 usbehci - ok
15:50:29.0576 3016 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
15:50:29.0623 3016 usbhub - ok
15:50:29.0638 3016 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
15:50:29.0654 3016 usbohci - ok
15:50:29.0669 3016 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
15:50:29.0685 3016 usbprint - ok
15:50:29.0685 3016 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
15:50:29.0701 3016 usbscan - ok
15:50:29.0716 3016 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
15:50:29.0763 3016 USBSTOR - ok
15:50:29.0779 3016 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
15:50:29.0810 3016 usbuhci - ok
15:50:29.0841 3016 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
15:50:29.0888 3016 usbvideo - ok
15:50:29.0919 3016 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
15:50:29.0966 3016 UxSms - ok
15:50:29.0981 3016 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
15:50:29.0997 3016 VaultSvc - ok
15:50:30.0013 3016 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
15:50:30.0028 3016 vdrvroot - ok
15:50:30.0075 3016 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
15:50:30.0169 3016 vds - ok
15:50:30.0200 3016 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
15:50:30.0215 3016 vga - ok
15:50:30.0215 3016 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
15:50:30.0247 3016 VgaSave - ok
15:50:30.0278 3016 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
15:50:30.0293 3016 vhdmp - ok
15:50:30.0293 3016 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
15:50:30.0293 3016 viaide - ok
15:50:30.0309 3016 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
15:50:30.0309 3016 volmgr - ok
15:50:30.0356 3016 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
15:50:30.0387 3016 volmgrx - ok
15:50:30.0403 3016 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
15:50:30.0434 3016 volsnap - ok
15:50:30.0449 3016 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
15:50:30.0465 3016 vsmraid - ok
15:50:30.0512 3016 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
15:50:30.0605 3016 VSS - ok
15:50:30.0605 3016 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
15:50:30.0637 3016 vwifibus - ok
15:50:30.0637 3016 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
15:50:30.0699 3016 vwififlt - ok
15:50:30.0715 3016 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
15:50:30.0730 3016 vwifimp - ok
15:50:30.0761 3016 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
15:50:30.0793 3016 W32Time - ok
15:50:30.0824 3016 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\windows\system32\inetsrv\iisw3adm.dll
15:50:30.0839 3016 W3SVC - ok
15:50:30.0855 3016 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
15:50:30.0871 3016 WacomPen - ok
15:50:30.0886 3016 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
15:50:30.0917 3016 WANARP - ok
15:50:30.0933 3016 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
15:50:30.0964 3016 Wanarpv6 - ok
15:50:30.0980 3016 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\windows\system32\inetsrv\iisw3adm.dll
15:50:30.0980 3016 WAS - ok
15:50:31.0027 3016 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
15:50:31.0105 3016 wbengine - ok
15:50:31.0136 3016 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
15:50:31.0167 3016 WbioSrvc - ok
15:50:31.0183 3016 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
15:50:31.0229 3016 wcncsvc - ok
15:50:31.0245 3016 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
15:50:31.0261 3016 WcsPlugInService - ok
15:50:31.0261 3016 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
15:50:31.0276 3016 Wd - ok
15:50:31.0339 3016 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
15:50:31.0417 3016 Wdf01000 - ok
15:50:31.0432 3016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
15:50:31.0526 3016 WdiServiceHost - ok
15:50:31.0541 3016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
15:50:31.0573 3016 WdiSystemHost - ok
15:50:31.0588 3016 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
15:50:31.0635 3016 WebClient - ok
15:50:31.0651 3016 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
15:50:31.0682 3016 Wecsvc - ok
15:50:31.0729 3016 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
15:50:31.0807 3016 wercplsupport - ok
15:50:31.0822 3016 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
15:50:31.0869 3016 WerSvc - ok
15:50:31.0869 3016 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
15:50:31.0900 3016 WfpLwf - ok
15:50:31.0931 3016 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
15:50:31.0931 3016 WIMMount - ok
15:50:31.0931 3016 WinDefend - ok
15:50:31.0947 3016 WinHttpAutoProxySvc - ok
15:50:31.0963 3016 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
15:50:32.0025 3016 Winmgmt - ok
15:50:32.0103 3016 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
15:50:32.0228 3016 WinRM - ok
15:50:32.0290 3016 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
15:50:32.0337 3016 WinUsb - ok
15:50:32.0368 3016 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
15:50:32.0431 3016 Wlansvc - ok
15:50:32.0462 3016 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:50:32.0462 3016 wlcrasvc - ok
15:50:32.0571 3016 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:50:32.0649 3016 wlidsvc - ok
15:50:32.0649 3016 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
15:50:32.0665 3016 WmiAcpi - ok
15:50:32.0696 3016 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
15:50:32.0727 3016 wmiApSrv - ok
15:50:32.0743 3016 WMPNetworkSvc - ok
15:50:32.0743 3016 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
15:50:32.0758 3016 WPCSvc - ok
15:50:32.0774 3016 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
15:50:32.0821 3016 WPDBusEnum - ok
15:50:32.0821 3016 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
15:50:32.0867 3016 ws2ifsl - ok
15:50:32.0883 3016 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
15:50:32.0899 3016 wscsvc - ok
15:50:32.0899 3016 WSearch - ok
15:50:32.0992 3016 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
15:50:33.0055 3016 wuauserv - ok
15:50:33.0070 3016 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
15:50:33.0086 3016 WudfPf - ok
15:50:33.0101 3016 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
15:50:33.0117 3016 WUDFRd - ok
15:50:33.0148 3016 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
15:50:33.0195 3016 wudfsvc - ok
15:50:33.0211 3016 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\windows\System32\wwansvc.dll
15:50:33.0242 3016 WwanSvc - ok
15:50:33.0242 3016 ================ Scan global ===============================
15:50:33.0257 3016 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
15:50:33.0273 3016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
15:50:33.0273 3016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
15:50:33.0289 3016 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
15:50:33.0304 3016 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
15:50:33.0320 3016 [Global] - ok
15:50:33.0320 3016 ================ Scan MBR ==================================
15:50:33.0320 3016 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
15:50:33.0741 3016 \Device\Harddisk0\DR0 - ok
15:50:34.0131 3016 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
15:50:35.0005 3016 \Device\Harddisk1\DR1 - ok
15:50:35.0005 3016 ================ Scan VBR ==================================
15:50:35.0020 3016 [ EB90E3D416AF7481EF4D8A08FCA0B4F3 ] \Device\Harddisk0\DR0\Partition1
15:50:35.0020 3016 \Device\Harddisk0\DR0\Partition1 - ok
15:50:35.0051 3016 [ 27A9F6A2B01B0A6656963CC232C5DBF1 ] \Device\Harddisk1\DR1\Partition1
15:50:35.0051 3016 \Device\Harddisk1\DR1\Partition1 - ok
15:50:35.0051 3016 ============================================================
15:50:35.0051 3016 Scan finished
15:50:35.0051 3016 ============================================================
15:50:35.0083 4788 Detected object count: 7
15:50:35.0083 4788 Actual detected object count: 7
15:50:51.0322 4788 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:51.0322 4788 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:51.0338 4788 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:51.0338 4788 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:51.0338 4788 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:51.0338 4788 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:51.0338 4788 PCLEPCI ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:51.0338 4788 PCLEPCI ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:51.0338 4788 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:51.0338 4788 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:51.0338 4788 Thpsrv ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:51.0338 4788 Thpsrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:51.0338 4788 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:51.0338 4788 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip

Danke ich habe das Problem gelöst. Habe eine englischsprachige Seite gefunden. MSCONFIG eingegeben und unter Systemstart Sweet IM und Sweetpacks Update Manager den Haken rausgenommen. Dann noch unter Programme deinstallieren Sweet ...... deainstaliert und das wars :-)

markusg · 14.06.2013, 18:08

joa, aber nur für diese adware typen.
Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

wer · 15.06.2013, 13:18

So habe ich gemacht. Jetzt funktioniert aber der IE nicht mehr er startet zwar zeigt dann aber keinen Inhalt mehr auf der Seite an. Der Chrome Browser funktioniert.
Combofix Logfile:

Code:

ATTFilter

ComboFix 13-06-13.01 - Karin 15.06.2013  10:55:01.1.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.4003.1759 [GMT 2:00]
ausgeführt von:: c:\users\Karin\Desktop\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\IsUn0407.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-05-15 bis 2013-06-15  ))))))))))))))))))))))))))))))
.
.
2013-06-15 09:10 . 2013-06-15 09:10	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2013-06-15 09:10 . 2013-06-15 09:10	--------	d-----w-	c:\users\DefaultAppPool\AppData\Local\temp
2013-06-15 09:10 . 2013-06-15 09:10	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-06-15 09:10 . 2013-06-15 09:10	--------	d-----w-	c:\users\Classic .NET AppPool\AppData\Local\temp
2013-06-14 09:13 . 2013-06-14 09:13	--------	d-----w-	c:\windows\system32\drivers\NISx64\1404000.028
2013-06-12 09:20 . 2013-05-08 06:39	1910632	----a-w-	c:\windows\system32\drivers\tcpip.sys
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-13 15:50 . 2012-04-05 07:55	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-13 15:50 . 2011-06-02 14:31	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-13 08:56 . 2011-05-04 08:23	75825640	----a-w-	c:\windows\system32\MRT.exe
2013-05-01 08:25 . 2011-08-12 07:21	22240	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-04-30 17:26 . 2013-04-30 17:26	97280	----a-w-	c:\windows\system32\mshtmled.dll
2013-04-30 17:26 . 2013-04-30 17:26	92160	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-04-30 17:26 . 2013-04-30 17:26	905728	----a-w-	c:\windows\system32\mshtmlmedia.dll
2013-04-30 17:26 . 2013-04-30 17:26	81408	----a-w-	c:\windows\system32\icardie.dll
2013-04-30 17:26 . 2013-04-30 17:26	77312	----a-w-	c:\windows\system32\tdc.ocx
2013-04-30 17:26 . 2013-04-30 17:26	762368	----a-w-	c:\windows\system32\ieapfltr.dll
2013-04-30 17:26 . 2013-04-30 17:26	73728	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2013-04-30 17:26 . 2013-04-30 17:26	719360	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2013-04-30 17:26 . 2013-04-30 17:26	62976	----a-w-	c:\windows\system32\pngfilt.dll
2013-04-30 17:26 . 2013-04-30 17:26	61952	----a-w-	c:\windows\SysWow64\tdc.ocx
2013-04-30 17:26 . 2013-04-30 17:26	599552	----a-w-	c:\windows\system32\vbscript.dll
2013-04-30 17:26 . 2013-04-30 17:26	523264	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-04-30 17:26 . 2013-04-30 17:26	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2013-04-30 17:26 . 2013-04-30 17:26	51200	----a-w-	c:\windows\system32\imgutil.dll
2013-04-30 17:26 . 2013-04-30 17:26	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2013-04-30 17:26 . 2013-04-30 17:26	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-04-30 17:26 . 2013-04-30 17:26	452096	----a-w-	c:\windows\system32\dxtmsft.dll
2013-04-30 17:26 . 2013-04-30 17:26	441856	----a-w-	c:\windows\system32\html.iec
2013-04-30 17:26 . 2013-04-30 17:26	38400	----a-w-	c:\windows\SysWow64\imgutil.dll
2013-04-30 17:26 . 2013-04-30 17:26	361984	----a-w-	c:\windows\SysWow64\html.iec
2013-04-30 17:26 . 2013-04-30 17:26	281600	----a-w-	c:\windows\system32\dxtrans.dll
2013-04-30 17:26 . 2013-04-30 17:26	27648	----a-w-	c:\windows\system32\licmgr10.dll
2013-04-30 17:26 . 2013-04-30 17:26	270848	----a-w-	c:\windows\system32\iedkcs32.dll
2013-04-30 17:26 . 2013-04-30 17:26	247296	----a-w-	c:\windows\system32\webcheck.dll
2013-04-30 17:26 . 2013-04-30 17:26	235008	----a-w-	c:\windows\system32\url.dll
2013-04-30 17:26 . 2013-04-30 17:26	23040	----a-w-	c:\windows\SysWow64\licmgr10.dll
2013-04-30 17:26 . 2013-04-30 17:26	226304	----a-w-	c:\windows\system32\elshyph.dll
2013-04-30 17:26 . 2013-04-30 17:26	216064	----a-w-	c:\windows\system32\msls31.dll
2013-04-30 17:26 . 2013-04-30 17:26	197120	----a-w-	c:\windows\system32\msrating.dll
2013-04-30 17:26 . 2013-04-30 17:26	185344	----a-w-	c:\windows\SysWow64\elshyph.dll
2013-04-30 17:26 . 2013-04-30 17:26	173568	----a-w-	c:\windows\system32\ieUnatt.exe
2013-04-30 17:26 . 2013-04-30 17:26	167424	----a-w-	c:\windows\system32\iexpress.exe
2013-04-30 17:26 . 2013-04-30 17:26	158720	----a-w-	c:\windows\SysWow64\msls31.dll
2013-04-30 17:26 . 2013-04-30 17:26	1509376	----a-w-	c:\windows\system32\inetcpl.cpl
2013-04-30 17:26 . 2013-04-30 17:26	150528	----a-w-	c:\windows\SysWow64\iexpress.exe
2013-04-30 17:26 . 2013-04-30 17:26	149504	----a-w-	c:\windows\system32\occache.dll
2013-04-30 17:26 . 2013-04-30 17:26	144896	----a-w-	c:\windows\system32\wextract.exe
2013-04-30 17:26 . 2013-04-30 17:26	1441280	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2013-04-30 17:26 . 2013-04-30 17:26	1400416	----a-w-	c:\windows\system32\ieapfltr.dat
2013-04-30 17:26 . 2013-04-30 17:26	138752	----a-w-	c:\windows\SysWow64\wextract.exe
2013-04-30 17:26 . 2013-04-30 17:26	13824	----a-w-	c:\windows\system32\mshta.exe
2013-04-30 17:26 . 2013-04-30 17:26	137216	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-04-30 17:26 . 2013-04-30 17:26	136192	----a-w-	c:\windows\system32\iepeers.dll
2013-04-30 17:26 . 2013-04-30 17:26	135680	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-04-30 17:26 . 2013-04-30 17:26	12800	----a-w-	c:\windows\SysWow64\mshta.exe
2013-04-30 17:26 . 2013-04-30 17:26	12800	----a-w-	c:\windows\system32\msfeedssync.exe
2013-04-30 17:26 . 2013-04-30 17:26	110592	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2013-04-30 17:26 . 2013-04-30 17:26	1054720	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-04-30 17:26 . 2013-04-30 17:26	102912	----a-w-	c:\windows\system32\inseng.dll
2013-04-15 14:36 . 2013-03-08 14:57	3326232	----a-w-	c:\windows\RXSUnins.exe
2013-04-15 14:36 . 2013-03-08 14:57	3326232	----a-w-	c:\windows\RXCUnins.exe
2013-04-13 05:49 . 2013-05-15 08:16	135168	----a-w-	c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 08:16	350208	----a-w-	c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 08:16	308736	----a-w-	c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 08:16	111104	----a-w-	c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 08:16	474624	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 08:16	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 06:44	1656680	----a-w-	c:\windows\system32\drivers\ntfs.sys
2013-04-10 06:01 . 2013-05-15 08:16	265064	----a-w-	c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 06:01 . 2013-05-15 08:16	983400	----a-w-	c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 03:30 . 2013-05-15 08:16	3153920	----a-w-	c:\windows\system32\win32k.sys
2013-04-08 12:19 . 2012-05-14 15:37	499712	----a-w-	c:\windows\SysWow64\msvcp71.dll
2013-04-08 12:19 . 2012-05-14 15:37	348160	----a-w-	c:\windows\SysWow64\msvcr71.dll
2013-04-04 03:35 . 2013-05-04 07:38	95648	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-19 06:04 . 2013-04-10 06:30	5550424	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-03-19 05:53 . 2013-05-15 08:16	48640	----a-w-	c:\windows\system32\wwanprotdim.dll
2013-03-19 05:53 . 2013-05-15 08:16	230400	----a-w-	c:\windows\system32\wwansvc.dll
2013-03-19 05:46 . 2013-04-10 06:30	43520	----a-w-	c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 06:30	3968856	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 06:30	3913560	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 06:30	6656	----a-w-	c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 06:30	112640	----a-w-	c:\windows\system32\smss.exe
2013-03-18 12:23 . 2011-10-19 16:20	1890	--sha-w-	c:\programdata\KGyGaAvL.sys
2013-03-18 10:41 . 2012-08-25 09:28	861088	----a-w-	c:\windows\SysWow64\npdeployJava1.dll
2013-03-18 10:41 . 2011-03-18 20:29	782240	----a-w-	c:\windows\SysWow64\deployJava1.dll
2006-05-03 09:06	163328	--sha-r-	c:\windows\SysWOW64\flvDX.dll
2007-02-21 10:47	31232	--sha-r-	c:\windows\SysWOW64\msfDX.dll
2008-03-16 12:30	216064	--sha-r-	c:\windows\SysWOW64\nbDX.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2012-07-04 13:03	1310040	----a-r-	c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2012-07-04 1310040]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\Karin\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\Karin\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\Karin\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TOPI.EXE"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2011-02-18 845176]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2013-04-05 59720]
"Spotify Web Helper"="c:\users\Karin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-12-14 1199576]
"rfxsrvtray"="c:\program files (x86)\Tobit Radio.fx\Client\rfx-tray.exe" [2013-02-07 1838872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-05-10 37960]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"SVPWUTIL"="c:\program files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe" [2010-11-09 532480]
"HWSetup"="c:\program files\TOSHIBA\Utilities\HWSetup.exe" [2010-03-04 423936]
"KeNotify"="c:\program files (x86)\TOSHIBA\Utilities\KeNotify.exe" [2010-08-16 34160]
"ToshibaServiceStation"="c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" [2011-02-11 1295736]
"TRCMan"="c:\program files (x86)\TOSHIBA\TRCMan\TRCMan.exe" [2010-11-02 714104]
"EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320]
"PMSpeed"="c:\program files (x86)\NewSoft\Presto! PageManager 9 for EP\PMSpeed.EXE" [2009-12-04 112464]
"TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe" [2013-04-08 295512]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [2012-11-27 739936]
"WinampAgent"="c:\program files (x86)\Winamp\winampa.exe" [2012-06-28 74752]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"TOPI.EXE"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2011-02-18 845176]
.
c:\users\Karin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Karin\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2013-5-25 27776968]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2011-2-25 2745760]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-2 481184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 cjusb;REINER SCT cyberJack pinpad/e-com USB;c:\windows\system32\DRIVERS\cjusb.sys;c:\windows\SYSNATIVE\DRIVERS\cjusb.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1403010.016\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1403010.016\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1403010.016\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1403010.016\SYMEFA64.SYS [x]
S0 Thpdrv;TOSHIBA HDD Protection Driver;c:\windows\system32\DRIVERS\thpdrv.sys;c:\windows\SYSNATIVE\DRIVERS\thpdrv.sys [x]
S0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;c:\windows\system32\DRIVERS\Thpevm.SYS;c:\windows\SYSNATIVE\DRIVERS\Thpevm.SYS [x]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys;c:\windows\SYSNATIVE\DRIVERS\tos_sps64.sys [x]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130531.001\BHDrvx64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130531.001\BHDrvx64.sys [x]
S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1403010.016\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1403010.016\ccSetx64.sys [x]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130614.001\IDSvia64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130614.001\IDSvia64.sys [x]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1403010.016\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1403010.016\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1403010.016\SYMNETS.SYS;c:\windows\SYSNATIVE\Drivers\NISx64\1403010.016\SYMNETS.SYS [x]
S2 AllShare Framework DMS;AllShare Framework DMS;c:\program files\Samsung\AllShare Framework DMS\1.3.06\AllShareFrameworkManagerDMS.exe;c:\program files\Samsung\AllShare Framework DMS\1.3.06\AllShareFrameworkManagerDMS.exe [x]
S2 BotkindSyncService;Botkind Service;c:\program files (x86)\Allway Sync\Bin\SyncService.exe service;c:\program files (x86)\Allway Sync\Bin\SyncService.exe service [x]
S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x]
S2 cjpcsc;cyberJack PC/SC COM Service ;c:\windows\SysWOW64\cjpcsc.exe;c:\windows\SysWOW64\cjpcsc.exe [x]
S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [x]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\20.3.1.22\ccSvcHst.exe;c:\program files (x86)\Norton Internet Security\Engine\20.3.1.22\ccSvcHst.exe [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [x]
S2 Prosieben;maxdome Download Manager;c:\program files (x86)\maxdome\DCBin\DCService.exe;c:\program files (x86)\maxdome\DCBin\DCService.exe [x]
S2 Radio.fx;Radio.fx Server;c:\program files (x86)\Tobit Radio.fx\Server\rfx-server.exe;c:\program files (x86)\Tobit Radio.fx\Server\rfx-server.exe [x]
S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]
S2 regi;regi;c:\windows\system32\drivers\regi.sys;c:\windows\SYSNATIVE\drivers\regi.sys [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 StarMoney 7.0 OnlineUpdate;StarMoney 7.0 OnlineUpdate;c:\program files (x86)\StarMoney 7.0\ouservice\StarMoneyOnlineUpdate.exe;c:\program files (x86)\StarMoney 7.0\ouservice\StarMoneyOnlineUpdate.exe [x]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [x]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x]
S2 UDSS;UDSS;c:\program files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe;c:\program files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 avmaudio;AVM Audio;c:\windows\system32\DRIVERS\avmaudio.sys;c:\windows\SYSNATIVE\DRIVERS\avmaudio.sys [x]
S3 avmaura;AVM USB-Fernanschluss;c:\windows\system32\DRIVERS\avmaura.sys;c:\windows\SYSNATIVE\DRIVERS\avmaura.sys [x]
S3 BtFilter;Bluetooth LowerFilter Class Filter Driver;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 CeKbFilter;CeKbFilter;c:\windows\system32\DRIVERS\CeKbFilter.sys;c:\windows\SYSNATIVE\DRIVERS\CeKbFilter.sys [x]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys;c:\windows\SYSNATIVE\DRIVERS\enecir.sys [x]
S3 enecirhid;ENE CIR HID Receiver;c:\windows\system32\DRIVERS\enecirhid.sys;c:\windows\SYSNATIVE\DRIVERS\enecirhid.sys [x]
S3 enecirhidma;ENE CIR HIDmini Filter;c:\windows\system32\DRIVERS\enecirhidma.sys;c:\windows\SYSNATIVE\DRIVERS\enecirhidma.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x]
S3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs	REG_MULTI_SZ   	w3svc was
apphost	REG_MULTI_SZ   	apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-06-05 18:02	1165776	----a-w-	c:\program files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\chrmstp.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}]
2010-02-16 17:02	114688	----a-w-	c:\program files (x86)\PixiePack Codec Pack\InstallerHelper.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 15:50]
.
2013-06-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-18 11:04]
.
2013-06-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-18 11:04]
.
2013-06-14 c:\windows\Tasks\ReclaimerUpdateFiles_Karin.job
- c:\users\Karin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-14 10:54]
.
2013-06-14 c:\windows\Tasks\ReclaimerUpdateXML_Karin.job
- c:\users\Karin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-14 10:54]
.
2013-06-15 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Karin.job
- c:\users\Karin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-06-14 10:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	164016	----a-w-	c:\users\Karin\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	164016	----a-w-	c:\users\Karin\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	164016	----a-w-	c:\users\Karin\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	164016	----a-w-	c:\users\Karin\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ThpSrv"="c:\windows\system32\thpsrv" [X]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-07 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-07 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-07 418328]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-05 11780712]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-03-01 2189416]
"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2010-12-08 710040]
"TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]
"Toshiba TEMPRO"="c:\program files (x86)\Toshiba TEMPRO\TemproTray.exe" [2011-02-10 1546720]
"Toshiba Registration"="c:\program files\TOSHIBA\Registration\ToshibaReminder.exe" [2011-03-18 150992]
"WrtMon.exe"="c:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2008-05-24 26448]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://my.ebay.de/ws/eBayISAPI.dll?MyEbayBeta&CurrentPage=MyeBayNextSelling&ssPageName=STRK:ME:LNLK:MESEX
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Zu TOSHIBA Bulletin Board hinzufügen - c:\program files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
TCP: DhcpNameServer = 192.168.178.1
DPF: {45830FF9-D9E6-4F41-86ED-B266933D8E90} - hxxp://nordost.mine.nu:8080/RtspVaPgDec.cab
DPF: {85C86CCC-2158-4123-9C7D-785190CED875} - hxxps://lernboerse.arbeitsagentur.de/exklusiv/ilias/data/balihob/lm_data/httppath/dpLaunchPlugin.cab
DPF: {B4CB8358-ABDB-47EE-BC2D-437B5DEBABCB} - hxxp://nordost.mine.nu:1024/AxViewer/AxMediaControl.cab
FF - ProfilePath - c:\users\Karin\AppData\Roaming\Mozilla\Firefox\Profiles\6jehc64i.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2549263&SearchSource=3&q={searchTerms}
FF - prefs.js: network.proxy.type - 0
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{a060276a-53be-45ec-8ebe-b94b1e803179} - (no file)
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-TSleepSrv - %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
BHO-{3706EE7C-3CAD-445D-8A43-03EBC3B75908} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{A060276A-53BE-45EC-8EBE-B94B1E803179} - (no file)
HKLM-Run-TPwrMain - c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
HKLM-Run-HSON - c:\program files (x86)\TOSHIBA\TBS\HSON.exe
HKLM-Run-TCrdMain - c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-Teco - c:\program files (x86)\TOSHIBA\TECO\Teco.exe
HKLM-Run-TosWaitSrv - c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
HKLM-Run-TosNC - c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe
HKLM-Run-TosReelTimeMonitor - c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
AddRemove-FRITZ! 2.0 - c:\windows\IsUn0407.exe
AddRemove-Vermieter_EH - c:\windows\IsUn0407.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\20.3.1.22\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\20.3.1.22\diMaster.dll\" /prefetch:1"
--
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Prosieben]
"ImagePath"="\"c:\program files (x86)\maxdome\DCBin\DCService.exe\" /accountid:Prosieben"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-06-15  11:52:38
ComboFix-quarantined-files.txt  2013-06-15 09:52
.
Vor Suchlauf: 16 Verzeichnis(se), 328.667.762.688 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 328.555.536.384 Bytes frei
.
- - End Of File - - EA76AAB958F0E7A35E74A20EC75D071B

--- --- ---
D41D8CD98F00B204E9800998ECF8427E

markusg · 15.06.2013, 13:24

Hi, ie auf Standard zurücksetzen:
Zurücksetzen von Internet Explorer-Einstellungen
2.
malwarebytes:
Downloade Dir bitte Malwarebytes

Installiere
das Programm in den vorgegebenen Pfad.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Starte Malwarebytes, klicke auf Aktualisierung --> Suche
nach Aktualisierung
Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
Wenn der Scan beendet
ist, klicke auf Ergebnisse anzeigen.
Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
Poste
das Logfile, welches sich in Notepad öffnet, hier in den Thread.
Nachträglich kannst du den Bericht unter "Log Dateien" finden.

wer · 15.06.2013, 14:34

Das zurücksetzen von IE schlägt fehl.

markusg · 15.06.2013, 15:09

mach erst mal weiter mit malwarebytes, was heißt schlägt fehl, genau?
versuchs evtl. nach neustart, im abgesicherten Modus

wer · 15.06.2013, 15:36

Malwarebytes Anti-Malware (Test) 1.75.0.1300
Malwarebytes : Free Anti-Malware download

Datenbank Version: v2013.06.15.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
Karin :: KARIN-TOSH [Administrator]

Schutz: Aktiviert

15.06.2013 14:44:26
mbam-log-2013-06-15 (14-44-26).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|Q:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 600797
Laufzeit: 1 Stunde(n), 35 Minute(n), 53 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1
D:\HP\movie\pantsoff.exe (PUP.Pantsoff.PasswordFinder) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

IE hat bei FIX IT gleich ein X Benutzerangaben werden zurückgesetzt. Und ich starte danach den Rechner neu und habe dann das gleiche Problem keine Anzeige der Seiten nur im Reiter steht kurz die Seite dann kurz warten auf sig.. und dann wieder die Seite also z.B. my. ebay.de/... aber unten nur eine weisse leere Seite kein Inhalt.

markusg · 15.06.2013, 17:38

lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.

wer · 17.06.2013, 16:28

Sind zu viele :-). Ich habe IE 10 deinstalliert. IE 9 hat erst gemeckert wegen Firewall Norton. Ging dann aber. dann habe ich wieder IE 10 installiert und habe den gleichen fehler. Ich glaube das combofix Programm hat irgendwas gemacht das mein IE nicht mehr geht.

markusg · 18.06.2013, 15:06

wo ist die uninstall list mit beschriftungen
von ner ie deinstalation hatte ich nichts geschrieben, probleme immer mitteilen anstelle selbst rumzuwurschteln
Zurücksetzen von Internet Explorer-Einstellungen
ie auf standard zurücksetzen

wer · 18.06.2013, 15:57

Sorry hast ja Recht aber ich konnte nicht mehr mit IE browsen :-( und das zurücksetzen klappte ja nicht.

wssetup.exe immer wieder beim hochfahren

Plagegeister aller Art und deren Bekämpfung: wssetup.exe immer wieder beim hochfahren