| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
01.07.2013, 19:27
| #1 |
 |  Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Hallo  Ich hatte heute einen Schei... ne so einen bescheidenen Tag. Seit gestern,nachdem ich einen Bus für meinen Simulator gedownloadet habe,schlägt Norton vor dem Virus oben in der System.exe Alarm. Bei mir ist das ganze noch ein bisschen komischer.Ich kann diesen Text hier nur im abgesicherten Modus schreiben,weil im Normalen Modus nur die Maus die sich bewegen lässt angezeigt wird.Nix mit Desktop BITTE HELFT MIR! Ich sitze schon seit 6 Stunden an dem Problem Bitte helft mir! Yannick |
|
01.07.2013, 19:40
| #2 |
| /// the machine /// TB-Ausbilder    | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? hi,
__________________Systemscan mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)
__________________ |
|
01.07.2013, 19:54
| #3 |
| | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? so nun ist gescannt und ich hoffe ich kann dir weiterhelfen bzw. du mir
__________________ FRST FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2013 02
Ran by Yannick (administrator) on 01-07-2013 20:45:28
Running from C:\Users\Yannick\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Safe Mode (with Networking)
==================== Processes (Whitelisted) =================
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-08-06] (Egis Technology Inc.)
HKLM\...\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [12459112 2012-03-27] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Runonce: [GrpConv] grpconv -o [x]
HKLM-x32\...\Runonce: [FixZeroAccess] cmd /c start /D "C:\Users\Yannick\Downloads" /B FixZeroAccess.exe -postboot [x]
HKLM\...\Winlogon: [Shell] [x ] () <=== ATTENTION
HKCU\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [19603048 2013-06-03] (Skype Technologies S.A.)
HKCU\...\Run: [uTorrent] "C:\Users\Yannick\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED [1044560 2013-04-28] (BitTorrent Inc.)
HKCU\...\Run: [Facebook Update] "C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2013-06-05] (Facebook Inc.)
HKCU\...\Run: [Browser Infrastructure Helper] C:\Users\Yannick\AppData\Local\Smartbar\Application\SnapDo.exe startup [20992 2013-06-03] (Smartbar)
HKCU\...\Run: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent [x]
HKCR\...0c966feabec1\InprocServer32: [Default-shell32] %SystemRoot%\system32\shell32.dll ATTENTION! ====> ZeroAccess?
HKCR\...409d6c4515e9\InprocServer32: [Default-shell32] %SystemRoot%\system32\shell32.dll ATTENTION! ====> ZeroAccess?
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
MountPoints2: {8ca8dbec-ad8f-11e0-8d14-806e6f6e6963} - E:\setup.exe
HKLM-x32\...\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [128296 2009-07-31] (CyberLink Corp.)
HKLM-x32\...\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide [190808 2011-03-02] (Logitech Inc.)
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [2255184 2013-05-15] (LogMeIn Inc.)
HKLM-x32\...\Run: [Smart File Advisor] "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /checkassoc [280824 2011-04-04] (Filefacts.net)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKU\Default\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [162336 2009-07-22] ()
HKU\Mama\...\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background [3885408 2009-02-06] (Microsoft Corporation)
HKU\Mama\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [x]
HKU\Mama\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [19603048 2013-06-03] (Skype Technologies S.A.)
HKU\Mama\...\Run: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [x]
HKU\Mama\...\Run: [Facebook Update] "C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2013-06-05] (Facebook Inc.)
HKU\Mama\...\Run: [Real Desktop] "C:\Program Files (x86)\Real Desktop\Real Desktop.exe" [x]
HKU\Mama\...\Policies\system: [LogonHoursAction] 2
HKU\Mama\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\UpdatusUser\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [162336 2009-07-22] ()
HKU\UpdatusUser.KARTOFFELBREI\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [162336 2009-07-22] ()
HKU\UpdatusUser.KARTOFFELBREI.000\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [162336 2009-07-22] ()
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\IEBHO.dll [1790872 2011-09-22] (Bandoo Media, inc)
AppInit_DLLs-x32: c:\progra~2\browse~2\sprote~1.dll c:\progra~2\simple~1\sprote~1.dll [1032704 2013-01-24] ()
Startup: C:\Users\Mama\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Real Desktop.lnk
ShortcutTarget: Real Desktop.lnk -> C:\Program Files (x86)\Real Desktop\Real Desktop.exe (No File)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=DE&userid=4733b48d-99b4-4ea0-87fa-03ee8e24488f&searchtype=ds&q={searchTerms}&installDate=25/06/2013
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=de&pid=NIS&pvid=20.3.1.22
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=119&systemid=406&sr=0&q={searchTerms}
HKLM-x32 SearchScopes: DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=DE&userid=4733b48d-99b4-4ea0-87fa-03ee8e24488f&searchtype=ds&q={searchTerms}&installDate=25/06/2013
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=DE&userid=4733b48d-99b4-4ea0-87fa-03ee8e24488f&searchtype=ds&q={searchTerms}&installDate=25/06/2013
HKCU SearchScopes: DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=DE&userid=4733b48d-99b4-4ea0-87fa-03ee8e24488f&searchtype=ds&q={searchTerms}&installDate=25/06/2013
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=DE&userid=4733b48d-99b4-4ea0-87fa-03ee8e24488f&searchtype=ds&q={searchTerms}&installDate=25/06/2013
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: Video downloader - {77BEC163-D389-42c1-91A4-C758846296A5} - C:\Program Files\Video downloader\Extension64.dll ()
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\BROWSE~1.DLL (Bandoo Media, inc)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Browser Companion Helper - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files (x86)\BrowserCompanion\jsloader.dll ( )
BHO-x32: Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll No File
BHO-x32: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Funmoods Helper Object - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\PROGRA~2\Funmoods\1.5.23.22\bh\escort.dll No File
BHO-x32: Video downloader - {77BEC163-D389-42c1-91A4-C758846296A5} - C:\Program Files\Video downloader\Extension32.dll ()
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll ()
BHO-x32: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\SEARCH~1\BROWSE~1.DLL (Bandoo Media, inc)
BHO-x32: WOT - {9E571C81-21E7-496B-9E6B-127E60263022} - C:\Users\Yannick\AppData\LocalLow\WOT\IE\WOT.dll (WOT Services Oy)
BHO-x32: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.21.5\bh\delta.dll (Delta-search.com)
BHO-x32: billiger.de Sparberater - {C5A83FB3-EA76-49C5-BA8D-11AEB924738B} - C:\Program Files (x86)\billigerde\Internet Explorer\billigerde.dll ()
BHO-x32: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll ()
BHO-x32: VirtualDJ Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.5.21.0\bh\Softonic.dll (Softonic.com)
BHO-x32: Freemake.YoutubeButton - {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: SMTTB2009 Class - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\CheatEngine DB Toolbar Toolbar\tbcore3.dll ()
BHO-x32: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files (x86)\PricePeep\pricepeep.dll (PricePeep)
Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll ()
Toolbar: HKLM-x32 - toolplugin - {DFEFCDEE-CF1A-4FC8-89AF-189327213627} - C:\Users\Yannick\AppData\Roaming\toolplugin\toolbar.dll ()
Toolbar: HKLM-x32 - Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
Toolbar: HKLM-x32 - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.5.21.0\SoftonicTlbr.dll (Softonic.com)
Toolbar: HKLM-x32 - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
Toolbar: HKLM-x32 - Funmoods Toolbar - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\PROGRA~2\Funmoods\1.5.23.22\escorTlbr.dll No File
Toolbar: HKLM-x32 - CheatEngine DB Toolbar Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files (x86)\CheatEngine DB Toolbar Toolbar\tbcore3.dll ()
Toolbar: HKLM-x32 - VirtualDJ Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.21.5\deltaTlbr.dll (Delta-search.com)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Handler: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - No File
Handler: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - No File
Handler: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - No File
Handler-x32: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
Handler-x32: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9 01 mswsock.dll File Not found ()
Winsock: Catalog9 02 mswsock.dll File Not found ()
Winsock: Catalog9 03 mswsock.dll File Not found ()
Winsock: Catalog9 04 mswsock.dll File Not found ()
Winsock: Catalog9 05 mswsock.dll File Not found ()
Winsock: Catalog9 06 mswsock.dll File Not found ()
Winsock: Catalog9 07 mswsock.dll File Not found ()
Winsock: Catalog9 08 mswsock.dll File Not found ()
Winsock: Catalog9 09 mswsock.dll File Not found ()
Winsock: Catalog9 10 mswsock.dll File Not found ()
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9-x64 01 mswsock.dll File Not found ()
Winsock: Catalog9-x64 02 mswsock.dll File Not found ()
Winsock: Catalog9-x64 03 mswsock.dll File Not found ()
Winsock: Catalog9-x64 04 mswsock.dll File Not found ()
Winsock: Catalog9-x64 05 mswsock.dll File Not found ()
Winsock: Catalog9-x64 06 mswsock.dll File Not found ()
Winsock: Catalog9-x64 07 mswsock.dll File Not found ()
Winsock: Catalog9-x64 08 mswsock.dll File Not found ()
Winsock: Catalog9-x64 09 mswsock.dll File Not found ()
Winsock: Catalog9-x64 10 mswsock.dll File Not found ()
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8064.0206 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=1.1.11 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Yannick\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF HKLM\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] C:\Program Files\Video downloader\Firefox
FF Extension: Video downloader - C:\Program Files\Video downloader\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] C:\Program Files\Video downloader\Firefox
FF Extension: Video downloader - C:\Program Files\Video downloader\Firefox
FF HKLM-x32\...\Firefox\Extensions: [fmdownloader@gmail.com] C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF HKLM-x32\...\Firefox\Extensions: [ytfmdownloader@gmail.com] C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\coFFPlgn\
FF HKLM-x32\...\Firefox\Extensions: [ocr@babylon.com] C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\ocr@babylon.com
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\IPSFFPlgn\
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\IPSFFPlgn\
Chrome:
=======
CHR HomePage: hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=DE&userid=4733b48d-99b4-4ea0-87fa-03ee8e24488f&searchtype=hp&installDate=25/06/2013
CHR RestoreOnStartup: "hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=DE&userid=4733b48d-99b4-4ea0-87fa-03ee8e24488f&searchtype=hp&installDate=25/06/2013"
CHR DefaultSearchURL: (Web) - hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=DE&userid=4733b48d-99b4-4ea0-87fa-03ee8e24488f&searchtype=ds&q={searchTerms}&installDate=25/06/2013
CHR DefaultSuggestURL: (Web) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.225\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll ()
CHR Plugin: (Norton Identity Safe) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.3.3.19_0\npcoplgn.dll No File
CHR Plugin: (QuickTime Plug-in 7.1.6) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.1.6) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.1.6) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.1.6) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.1.6) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.1.6) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.1.6) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U3) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Multimedia Plug-in) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (PDF-XChange Viewer) - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (Google Drive) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Freemake Video Downloader) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf\1.0.0_0
CHR Extension: (Adblock Plus) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.4.1_0
CHR Extension: (Google Search) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Freemake Youtube Download Button) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh\1.0.0_0
CHR Extension: (Delta Toolbar) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0
CHR Extension: (Browsseo22ssaavve) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgakajlljfopcdhdnpkplbkddalmeklb\1
CHR Extension: (AdBlock) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (Browsseo22ssaavve) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\hacnkiijhgaaelkopepgemlfighgfhdh\1
CHR Extension: (ProxMate - Improve your Internet!) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\2.3.6_0
CHR Extension: (Browsseo22ssaavve) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdepeiliecfaagfeeomojencmgdcbckn\1
CHR Extension: (Norton Identity Protection) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.0.10_0
CHR Extension: (WOT) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nphjeokkkbngjpiofnfpnafjeofjomfb\2.11.7_0
CHR Extension: (Gmail) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
S2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
S3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
S2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-01-10] (Ellora Assets Corp.)
S3 Guard.Mail.ru; C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-06-02] ()
S2 ICQ Service; C:\PROGRA~2\ICQ6TO~1\ICQSER~1.EXE [247872 2012-03-20] ()
S2 lxeaCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\lxeaserv.exe [33960 2009-07-29] (Lexmark International, Inc.)
S3 lxea_device; C:\Windows\system32\lxeacoms.exe [1054888 2009-07-29] ( )
S2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [58345832 2011-09-22] (Microsoft Corporation)
S2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [311592 2009-08-06] (Egis Technology Inc.)
S2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
S2 SpyHunter 4 Service; C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [1025408 2013-05-07] (Enigma Software Group USA, LLC.)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [431464 2011-09-22] (Microsoft Corporation)
S3 SrvUpdater; C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe [31744 2013-02-18] ()
S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software)
S2 Video downloader Updater; C:\Program Files\Video downloader\ExtensionUpdaterService.exe [188760 2013-06-23] ()
S3 WajamUpdater; C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [109064 2012-10-05] (Wajam)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2013-05-13] (WiseCleaner.com)
S2 WOTUpdater; C:\Users\Yannick\AppData\LocalLow\WOT\IE\WOTUpdater.exe [18432 2012-01-12] ()
==================== Drivers (Whitelisted) ====================
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310728 2012-02-13] ()
S1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\BASHDefs\20130620.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)
S1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\BASHDefs\20130620.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)
S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-02-23] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-02-23] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2013-02-23] (Symantec Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
R0 FixZeroAccess; C:\Windows\System32\drivers\FixZeroAccess.sys [27256 2013-07-01] (Symantec Corporation)
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\EasyBoost\GPCIDrv64.sys [14376 2008-07-15] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\EasyBoost\GPCIDrv64.sys [14376 2008-07-15] ()
S1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\IPSDefs\20130628.001\IDSvia64.sys [513184 2013-02-22] (Symantec Corporation)
S1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\IPSDefs\20130628.001\IDSvia64.sys [513184 2013-02-22] (Symantec Corporation)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2012-02-13] ()
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20130629.007\ENG64.SYS [126040 2013-05-22] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20130629.007\ENG64.SYS [126040 2013-05-22] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20130629.007\EX64.SYS [2098776 2013-05-22] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20130629.007\EX64.SYS [2098776 2013-05-22] (Symantec Corporation)
S2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2012-11-19] ()
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2012-11-19] ()
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-05-28] (Duplex Secure Ltd.)
S1 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
S1 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-06-19] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
S3 TVICHW32; C:\Program Files (x86)\GIGABYTE\EasyBoost\TVicHW64.sys [21200 2006-10-13] (EnTech Taiwan)
S3 TVICHW32; C:\Program Files (x86)\GIGABYTE\EasyBoost\TVicHW64.sys [21200 2006-10-13] (EnTech Taiwan)
S3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [22528 2013-02-24] (Avnex)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [x]
U3 JavaQuickStarterService;
U4 srservice;
S3 TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-01 20:45 - 2013-07-01 20:45 - 00000000 ____D C:\FRST
2013-07-01 20:44 - 2013-07-01 20:44 - 01933776 ____A (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2013-07-01 19:49 - 2013-07-01 19:49 - 00102718 ____A C:\Users\Yannick\Desktop\Extras.Txt
2013-07-01 19:47 - 2013-07-01 19:47 - 00188512 ____A C:\Users\Yannick\Desktop\OTL.Txt
2013-07-01 19:17 - 2013-07-01 19:34 - 00602112 ____A (OldTimer Tools) C:\Users\Yannick\Desktop\OTL.exe
2013-07-01 19:16 - 2013-07-01 19:16 - 00377856 ____A C:\Users\Yannick\Desktop\gmer_2.1.19163.exe
2013-07-01 19:15 - 2013-07-01 19:15 - 00000724 ____A C:\Users\Yannick\Desktop\defogger_disable.log
2013-07-01 19:15 - 2013-07-01 19:15 - 00000382 ____A C:\Users\Yannick\defogger_reenable
2013-07-01 19:11 - 2013-07-01 19:11 - 00050477 ____A C:\Users\Yannick\Desktop\Defogger.exe
2013-07-01 19:10 - 2013-07-01 19:10 - 00050477 ____A C:\Users\Yannick\Downloads\Defogger.exe
2013-07-01 19:00 - 2013-07-01 19:00 - 00002266 ____A C:\Users\Yannick\Desktop\SpyHunter.lnk
2013-07-01 19:00 - 2013-07-01 19:00 - 00000000 ____D C:\sh4ldr
2013-07-01 19:00 - 2013-07-01 19:00 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-07-01 19:00 - 2012-06-22 12:01 - 00022704 ____A C:\Windows\System32\Drivers\EsgScanner.sys
2013-07-01 18:59 - 2013-07-01 19:00 - 00000000 ____D C:\Windows\E63D89610BA94CF39E94407ACA42846C.TMP
2013-07-01 18:54 - 2013-07-01 19:06 - 20553576 ____A (Simply Super Software ) C:\Users\Yannick\Downloads\trjsetup687.exe
2013-07-01 18:44 - 2013-07-01 18:44 - 00728960 ____A (Enigma Software Group USA, LLC.) C:\Users\Yannick\Downloads\SpyHunter-Installer.exe
2013-07-01 16:58 - 2013-07-01 16:58 - 00001019 ____A C:\Users\Yannick\Desktop\Trojancheck.lnk
2013-07-01 16:58 - 2013-07-01 16:58 - 00000000 ____D C:\Program Files (x86)\Trojancheck 6
2013-07-01 16:57 - 2013-07-01 16:57 - 01273071 ____A C:\Users\Yannick\Downloads\tc6_install (1).exe
2013-07-01 16:52 - 2013-07-01 16:56 - 00513381 ____A C:\Users\Yannick\Downloads\tc6_install.exe
2013-07-01 16:51 - 2013-07-01 16:51 - 00018808 ____A C:\Users\Yannick\Downloads\hijackthis.log
2013-07-01 16:49 - 2013-07-01 16:49 - 00388608 ____A (Trend Micro Inc.) C:\Users\Yannick\Downloads\HiJackThis204.exe
2013-07-01 15:41 - 2013-07-01 15:41 - 00000000 ____D C:\Windows\System32\%LOCALAPPDATA%
2013-06-30 22:12 - 2013-06-30 22:12 - 00223050 ____A C:\Users\Yannick\Downloads\GTA IV - Crack only - 1.0.7.0 (Razor1911).rar
2013-06-30 22:11 - 2013-06-30 22:26 - 108752708 ____A C:\Users\Yannick\Downloads\GTA IV 1.0.7.0. (1).rar
2013-06-30 22:10 - 2013-07-01 16:15 - 00027256 ____A (Symantec Corporation) C:\Windows\System32\Drivers\FixZeroAccess.sys
2013-06-30 22:08 - 2013-06-30 22:08 - 01805736 ____A (Symantec Corporation) C:\Users\Yannick\Downloads\FixZeroAccess.exe
2013-06-30 21:12 - 2009-03-28 17:07 - 00108605 ____A () C:\Users\Yannick\Desktop\GTAIV Key Generator.exe
2013-06-30 21:00 - 2013-06-30 21:00 - 00000000 __SHD C:\ProgramData\SecuROM
2013-06-30 20:46 - 2013-06-30 20:46 - 00303511 ____A C:\Users\Yannick\Downloads\1311984168100_GTAIV_LAZIC-NIKOLA.rar
2013-06-30 20:38 - 2013-06-30 20:38 - 00059820 ____A C:\Users\Yannick\Downloads\1233162148SavegameGTAIV.rar
2013-06-30 20:33 - 2013-06-30 20:50 - 109388216 ____A C:\Users\Yannick\Downloads\gta4_1.0.7.0.zip
2013-06-30 19:43 - 2013-06-30 19:43 - 00000000 ____D C:\Users\Yannick\Documents\Rockstar Games
2013-06-30 19:38 - 2013-06-30 19:04 - 00002248 ____A C:\Users\Yannick\Desktop\Grand Theft Auto IV.lnk
2013-06-30 19:25 - 2013-06-30 19:29 - 00252253 ____A C:\Users\Yannick\Downloads\GTA.4.All.keygen.by.Inferno.zip
2013-06-30 19:22 - 2013-06-30 19:22 - 00028591 ____A C:\Users\Yannick\Downloads\GTA IV Key Generator.rar
2013-06-30 19:10 - 2013-06-30 20:58 - 00000000 ____D C:\Users\Yannick\AppData\Local\Rockstar Games
2013-06-30 19:08 - 2013-06-30 19:09 - 02855181 ____A C:\Users\Yannick\Downloads\RealisticDriving_EFLC_13.zip
2013-06-30 19:07 - 2013-06-30 19:07 - 00178800 ____A (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-06-30 18:26 - 2013-06-30 18:26 - 00000000 ____D C:\Users\Yannick\Downloads\Vehicles
2013-06-30 18:13 - 2013-06-30 18:13 - 00001066 ____A C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-06-30 18:13 - 2013-06-30 18:13 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DAEMON Tools
2013-06-30 18:13 - 2013-06-30 18:13 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-06-30 18:02 - 2013-06-30 19:04 - 00002204 ____A C:\Users\Public\Desktop\Grand Theft Auto IV.lnk
2013-06-30 17:02 - 2013-06-30 17:02 - 00001190 ____A C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
2013-06-30 17:02 - 2013-06-30 17:02 - 00001178 ____A C:\Users\Public\Desktop\Game Booster 3.lnk
2013-06-30 17:02 - 2013-06-30 17:02 - 00000000 ____D C:\ProgramData\IObit
2013-06-30 17:02 - 2013-06-30 17:02 - 00000000 ____D C:\Program Files (x86)\IObit
2013-06-30 17:00 - 2013-06-30 17:01 - 04344120 ____A (IObit ) C:\Users\Yannick\Downloads\gb3-4-setup.exe
2013-06-30 16:25 - 2013-06-30 16:40 - 94729627 ____A C:\Users\Yannick\Downloads\Rheinhausen V4 - Revised Edition 1 by Zane.7z
2013-06-30 16:25 - 2013-06-30 16:25 - 00001513 ____A C:\Users\Yannick\Downloads\Rheinhausen V4 - Revised Edition 1 - Hotfix.7z
2013-06-30 14:09 - 2013-06-30 19:06 - 00037098 ____A C:\Windows\DirectX.log
2013-06-30 14:06 - 2013-06-30 14:06 - 00001362 ____A C:\Users\Yannick\Desktop\Bus- & Cable Car-Simulator.lnk
2013-06-30 14:05 - 2013-06-30 14:18 - 83066510 ____A C:\Users\Yannick\Downloads\BCS_Update_1_0_7_German.exe
2013-06-30 14:03 - 2013-06-30 14:03 - 00003064 ____A C:\Users\Yannick\Downloads\d2a536_4e9f426495345.zip
2013-06-30 08:20 - 2013-06-30 08:20 - 00002255 ____A C:\Users\Yannick\Desktop\Google Chrome.lnk
2013-06-28 22:55 - 2013-06-28 22:55 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-06-28 22:55 - 2012-06-09 19:21 - 00178688 ____A C:\Windows\SysWOW64\unrar.dll
2013-06-28 22:50 - 2013-06-28 22:53 - 09049827 ____A ( ) C:\Users\Yannick\Downloads\K-Lite_Codec_Pack_995_Basic.exe
2013-06-28 22:46 - 2013-06-28 22:46 - 00001344 ____A C:\Users\Yannick\Desktop\Free YouTube Uploader.lnk
2013-06-28 22:46 - 2013-06-28 22:46 - 00001247 ____A C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-06-28 22:44 - 2013-06-28 22:44 - 00002334 ____A C:\Users\Yannick\Desktop\Free Video to Flash Converter.lnk
2013-06-28 22:32 - 2013-06-28 22:42 - 32199568 ____A (DVDVideoSoft Ltd. ) C:\Users\Yannick\Downloads\FreeVideoToFlashConverter_5.0.26.622.exe
2013-06-28 22:31 - 2013-06-28 22:42 - 30544736 ____A (DVDVideoSoft Ltd. ) C:\Users\Yannick\Downloads\FreeYouTubeUploader-4.0.1.622 (1).exe
2013-06-28 22:29 - 2013-06-28 22:29 - 00002513 ____A C:\Users\Yannick\Downloads\sg_backup_2013-06-28-2229.spg
2013-06-28 22:29 - 2013-06-28 22:29 - 00002513 ____A C:\Users\Yannick\Downloads\FirstBackup.spg
2013-06-28 22:27 - 2013-06-28 22:28 - 00659456 ____A (Speed Guide Inc.) C:\Users\Yannick\Downloads\TCP308Optimizer.exe
2013-06-28 14:38 - 2013-06-28 14:38 - 00066317 ____A C:\Users\Yannick\Downloads\Mercedes Benz O305 Stern by Chris 12.zip
2013-06-27 23:08 - 2013-06-28 00:12 - 194572800 ____A C:\Users\Yannick\Downloads\VA-Die_Ultimative_Chartshow_Die_Erfolgreichsten_Hits_2012_-2CD-2012-VOiCE.part1.rar
2013-06-27 23:08 - 2013-06-27 23:52 - 109437125 ____A C:\Users\Yannick\Downloads\VA-Die_Ultimative_Chartshow_Die_Erfolgreichsten_Hits_2012_-2CD-2012-VOiCE.part2.rar
2013-06-27 22:57 - 2013-06-28 00:38 - 406223635 ____A C:\Users\Yannick\Downloads\frdpq.Just.The.Best.Sommer.Hits.1990..Heute.2013.rar
2013-06-27 22:51 - 2013-06-27 22:52 - 04639408 ____A (hxxp://yourfiledownloader.com) C:\Users\Yannick\Downloads\va_just_the_best_sommer_hits_1990_heute_2013_downloader_de_99370.exe
2013-06-27 22:50 - 2013-06-27 22:50 - 00935354 ____A C:\Users\Yannick\Downloads\jingles4free_old_pack1 (1).rar
2013-06-27 22:46 - 2013-06-27 22:46 - 03731936 ____A C:\Users\Yannick\Downloads\Jeden Tag 24 Stunden Musik.wav
2013-06-27 22:28 - 2013-06-27 22:28 - 00935354 ____A C:\Users\Yannick\Downloads\jingles4free_old_pack1.rar
2013-06-27 22:24 - 2013-06-27 22:24 - 02467517 ____A C:\Users\Yannick\Downloads\Jingle Pake_ohne.rar
2013-06-27 22:24 - 2013-06-27 22:24 - 00292544 ____A C:\Users\Yannick\Downloads\Jingle Paket 02 ohne.rar
2013-06-26 21:50 - 2013-06-28 14:45 - 00011585 ____A C:\Users\Yannick\Desktop\O305_E2H_84.bus
2013-06-26 21:50 - 2013-06-28 14:45 - 00011418 ____A C:\Users\Yannick\Desktop\O305_E2H_85.bus
2013-06-26 20:05 - 2013-06-26 20:26 - 138166254 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.04.zip
2013-06-26 20:03 - 2013-06-26 20:09 - 02269184 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01 (4).zip
2013-06-26 19:16 - 2013-06-26 19:20 - 01187840 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01 (3).zip
2013-06-26 18:55 - 2013-06-26 19:01 - 02269184 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01 (2).zip
2013-06-26 18:45 - 2013-06-26 18:54 - 03416064 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01 (1).zip
2013-06-26 18:19 - 2013-06-26 18:32 - 05152768 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01.zip
2013-06-26 17:05 - 2013-06-26 17:10 - 27139516 ____A C:\Users\Yannick\Downloads\Baustellen Mod - Route Contruction Mod Version 2.zip
2013-06-26 17:02 - 2013-06-26 17:02 - 00943907 ____A C:\Users\Yannick\Downloads\O305_Upgrade_1-2a.rar
2013-06-25 20:20 - 2013-06-24 12:03 - 224736688 ____A (Acresso Software Inc. ) C:\Users\Yannick\Desktop\AS_OMSI-ADDON-STADTBUS-O305_V100.exe
2013-06-25 19:52 - 2013-06-25 19:52 - 00025358 ____A C:\Users\Yannick\Downloads\Rollb--nder_Freyfurt_2013-NEW.rar
2013-06-25 19:41 - 2013-06-25 19:48 - 25139979 ____A C:\Users\Yannick\Downloads\Velbert 2.0.ams
2013-06-25 19:37 - 2013-06-25 20:19 - 222373257 ____A C:\Users\Yannick\Downloads\AS_OMSI-ADDON-STADTBUS-O305.zip
2013-06-25 16:33 - 2013-06-25 16:34 - 00002507 ____A C:\Users\Yannick\Desktop\Search.lnk
2013-06-25 16:15 - 2013-06-25 16:32 - 00000000 ____D C:\Users\Yannick\AppData\Local\Smartbar
2013-06-25 16:13 - 2013-06-28 22:46 - 00001320 ____A C:\Users\Public\Desktop\Free YouTube Uploader.lnk
2013-06-25 16:13 - 2013-06-28 22:46 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DVDVideoSoft
2013-06-25 16:13 - 2013-06-28 22:46 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-06-25 16:13 - 2013-06-25 16:13 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\OpenCandy
2013-06-25 15:57 - 2013-06-25 16:06 - 30544736 ____A (DVDVideoSoft Ltd. ) C:\Users\Yannick\Downloads\FreeYouTubeUploader-4.0.1.622.exe
2013-06-24 21:08 - 2013-06-24 21:27 - 2024523328 ____A C:\Users\Yannick\Desktop\eurotrucks2 2013-06-24 21-08-35-07.avi
2013-06-24 18:54 - 2013-07-01 20:00 - 00000000 ____D C:\Users\Yannick\Desktop\Let's Plays
2013-06-24 00:22 - 2013-06-24 00:22 - 00000095 ____A C:\Users\Yannick\AppData\Local\fusioncache.dat
2013-06-24 00:21 - 2013-06-24 00:28 - 00168816 ____A C:\Users\Yannick\Downloads\Spark-0.9.2018.zip
2013-06-24 00:20 - 2013-06-24 00:20 - 01987454 ____A C:\Users\Yannick\Downloads\FIX_PATCH_0.5_Biohazard_Alert.rar
2013-06-24 00:19 - 2013-06-24 00:19 - 68677729 ____A C:\Users\Yannick\Downloads\BioHazard_Alert_REMAKE.rar.crdownload
2013-06-23 23:55 - 2013-06-30 19:42 - 00054156 ___AH C:\Windows\QTFont.qfn
2013-06-23 23:55 - 2013-06-23 23:55 - 00001409 ____A C:\Windows\QTFont.for
2013-06-23 23:47 - 2013-06-23 23:54 - 00002296 ____A C:\Users\Yannick\Desktop\gta_sa.lnk
2013-06-23 23:46 - 2013-06-23 23:47 - 00000000 ____D C:\Program Files (x86)\GTA BioHazard Alert REMAKE
2013-06-23 22:22 - 2013-06-23 22:22 - 00001885 ____A C:\Users\Yannick\Downloads\1118267588_chaosmod1.zip
2013-06-23 22:05 - 2013-06-23 22:05 - 00001827 ____A C:\Users\Yannick\Desktop\GAMI.lnk
2013-06-23 22:05 - 2013-06-23 22:05 - 00001827 ____A C:\Users\UpdatusUser.KARTOFFELBREI.000\Desktop\GAMI.lnk
2013-06-23 22:05 - 2013-06-23 22:05 - 00001827 ____A C:\Users\Mama\Desktop\GAMI.lnk
2013-06-23 22:05 - 2013-06-23 22:05 - 00001827 ____A C:\Users\Gast\Desktop\GAMI.lnk
2013-06-23 22:05 - 2013-06-23 22:05 - 00000000 ____D C:\Program Files (x86)\GAMI
2013-06-23 22:02 - 2013-06-23 22:03 - 02078885 ____A C:\Users\Yannick\Downloads\4303_gami_installer1_8_2[gta-scene.de].rar
2013-06-23 21:54 - 2013-06-23 21:59 - 38445633 ____A C:\Users\Yannick\Downloads\gtaberlin0710 (1).rar
2013-06-23 21:45 - 2013-06-23 21:50 - 38445633 ____A C:\Users\Yannick\Downloads\gtaberlin0710.rar
2013-06-23 20:13 - 2013-06-23 20:13 - 00000184 ____A C:\Users\Yannick\Downloads\stream (7).asx
2013-06-23 14:52 - 2013-06-23 15:25 - 239791672 ____A C:\Users\Yannick\Downloads\Landkreis Glesien.rar
2013-06-22 14:39 - 2013-06-22 15:13 - 110526126 ____A C:\Users\Yannick\Downloads\BMO Objekte.rar
2013-06-22 14:29 - 2013-06-22 14:29 - 00531144 ____A C:\Users\Yannick\Downloads\0_5e0_1a2b0_1a_c.zip
2013-06-22 14:28 - 2013-06-22 14:31 - 06745807 ____A C:\Users\Yannick\Downloads\Woelchen_90-Objekte.rar
2013-06-22 14:27 - 2013-06-22 15:20 - 190823623 ____A C:\Users\Yannick\Downloads\Kolp.zip
2013-06-22 11:37 - 2013-06-22 14:06 - 364198563 ____A C:\Users\Yannick\Downloads\Tiefenbach_2.0_%28Objekte%29.rar
2013-06-22 11:31 - 2013-06-22 12:22 - 137991029 ____A C:\Users\Yannick\Downloads\TB-Fellen.zip
2013-06-22 11:27 - 2013-06-22 11:30 - 08403178 ____A C:\Users\Yannick\Downloads\OMV by CMVC.rar
2013-06-22 11:23 - 2013-06-22 14:36 - 00207181 ____A C:\Users\Yannick\Downloads\15390 (1).rar
2013-06-22 11:22 - 2013-06-22 11:23 - 02439394 ____A C:\Users\Yannick\Downloads\Litfass.rar
2013-06-22 11:18 - 2013-06-22 15:03 - 765615036 ____A C:\Users\Yannick\Downloads\Sceneryobjectspack.rar
2013-06-22 11:00 - 2013-06-22 11:00 - 00286139 ____A C:\Users\Yannick\Downloads\OMSI-Modloader-alpha.zip
2013-06-21 17:40 - 2013-06-21 18:26 - 208398704 ____A C:\Users\Yannick\Downloads\Lichtenberg.zip
2013-06-21 17:39 - 2013-06-22 15:38 - 101805455 ____A C:\Users\Yannick\Downloads\Tiefenbach_2.4_(Hauptordner).rar
2013-06-20 16:01 - 2013-06-20 16:01 - 00024439 ____A C:\Users\Yannick\Downloads\Volganin Patch by Chris 12.zip
2013-06-20 15:55 - 2013-06-20 16:08 - 30448084 ____A C:\Users\Yannick\Downloads\MAZ_107.7z
2013-06-20 15:54 - 2013-06-20 16:06 - 54937823 ____A C:\Users\Yannick\Downloads\???-52078 ????.rar
2013-06-18 21:01 - 2013-06-19 20:47 - 00000000 ____D C:\Users\Yannick\Desktop\Neuer Ordner (3)
2013-06-18 20:15 - 2013-06-18 20:15 - 00000134 ____A C:\Users\Yannick\Desktop\RMV.cti
2013-06-18 20:02 - 2013-06-18 20:30 - 69876567 ____A C:\Users\Yannick\Downloads\LAZ_LF_12_CityLaz.zip
2013-06-18 20:02 - 2013-06-18 20:27 - 45757780 ____A C:\Users\Yannick\Downloads\Volganin.rar
2013-06-18 19:57 - 2013-06-18 20:17 - 85152521 ____A C:\Users\Yannick\Downloads\Ikarus_263_1DTF_Editon_v1.rar
2013-06-17 21:47 - 2013-06-17 21:47 - 00644507 ____A C:\Users\Yannick\Downloads\4F6C6C69.rar
2013-06-17 19:02 - 2013-06-17 19:02 - 00147968 __ASH C:\Users\Yannick\Documents\Thumbs.db
2013-06-16 23:49 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-16 23:49 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-16 23:49 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-16 23:49 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-16 23:49 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-16 23:49 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-16 23:49 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-16 23:49 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-16 23:49 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-16 23:49 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-16 23:49 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-16 23:49 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-16 23:49 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-16 23:49 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-16 23:49 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-16 23:48 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-16 23:48 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-16 23:48 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-16 23:48 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-16 23:48 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-16 23:48 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-16 23:48 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-16 23:48 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-16 23:48 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-16 23:48 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-16 23:48 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-16 23:48 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-16 23:48 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-16 23:48 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-16 23:47 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-16 23:47 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-16 19:24 - 2013-06-16 19:24 - 01378096 ____A C:\Users\Yannick\Downloads\Sommer-Mod-by-bluescreen-V2_0.zip
2013-06-16 19:24 - 2013-06-16 19:24 - 00758716 ____A C:\Users\Yannick\Downloads\Berliner-HOF-komplett.zip
2013-06-15 23:02 - 2013-06-15 23:02 - 00097946 ____A C:\Users\Yannick\Downloads\TooManyItems 1.5.2.zip
2013-06-15 22:19 - 2013-06-16 22:44 - 00000000 ____D C:\Program Files (x86)\Drumtronic
2013-06-15 22:19 - 2013-06-15 22:19 - 00000000 ____D C:\Program Files (x86)\d-lusion
2013-06-15 22:17 - 2013-06-15 22:18 - 05108087 ____A C:\Users\Yannick\Downloads\drumstation.exe
2013-06-15 22:17 - 2013-06-15 22:18 - 02515817 ____A C:\Users\Yannick\Downloads\drumtronic_setup.exe
2013-06-15 22:04 - 2013-06-15 22:10 - 07720271 ____A C:\Users\Yannick\Downloads\WBB 3.1.2&3.1.7.rar
2013-06-15 19:12 - 2013-06-30 20:39 - 00428544 __ASH C:\Users\Yannick\Downloads\Thumbs.db
2013-06-15 16:25 - 2013-06-30 21:13 - 00731308 ____A C:\Windows\WindowsUpdate.log
2013-06-15 16:21 - 2013-07-01 15:51 - 00286720 __ASH C:\Users\Yannick\Desktop\Thumbs.db
2013-06-15 16:19 - 2013-07-01 13:17 - 00003953 ____A C:\Windows\setupact.log
2013-06-15 16:19 - 2013-06-15 16:19 - 00000000 ____A C:\Windows\setuperr.log
2013-06-15 16:18 - 2013-07-01 18:12 - 00007998 ____A C:\Windows\PFRO.log
2013-06-15 00:38 - 2013-06-15 01:10 - 57354316 ____A C:\Users\Yannick\Downloads\world1 (4).zip
2013-06-15 00:34 - 2013-06-15 01:22 - 151175758 ____A C:\Users\Yannick\Downloads\world1 (3).zip
2013-06-15 00:33 - 2013-06-15 00:37 - 03903215 ____A C:\Users\Yannick\Downloads\world1 (2).zip
2013-06-15 00:28 - 2013-06-15 01:02 - 57681030 ____A C:\Users\Yannick\Downloads\world2.rar
2013-06-15 00:27 - 2013-06-15 01:01 - 51251653 ____A C:\Users\Yannick\Downloads\world1.zip
2013-06-15 00:27 - 2013-06-15 00:47 - 28980821 ____A C:\Users\Yannick\Downloads\world1 (1).zip
2013-06-15 00:18 - 2013-06-15 00:21 - 06862206 ____A C:\Users\Yannick\Downloads\Revenge Of The Gods.rar
2013-06-14 10:17 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-14 10:17 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-14 10:17 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-14 10:12 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-14 10:12 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-14 10:12 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-14 10:12 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-14 10:11 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-14 10:11 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-14 10:11 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-14 10:11 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-14 10:11 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-14 10:11 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-14 10:11 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-14 10:11 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-14 10:11 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-14 10:11 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-14 10:11 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-14 10:11 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-06 21:27 - 2013-06-06 21:27 - 04475563 ____A C:\Users\Yannick\Downloads\Ebstein 0.891.zip
2013-06-06 17:39 - 2013-06-06 17:41 - 12032865 ____A C:\Users\Yannick\Downloads\Bukkit Server [1.5.2].zip
2013-06-05 22:30 - 2013-06-05 22:56 - 53558505 ____A C:\Users\Yannick\Downloads\Hillside Manor-1.5.zip
2013-06-05 22:30 - 2013-06-05 22:35 - 07502298 ____A C:\Users\Yannick\Downloads\World1 - Lumina Nocturnale.rar
2013-06-05 22:29 - 2013-06-05 23:04 - 123634770 ____A C:\Users\Yannick\Downloads\Imperialcity_v13.1.rar
2013-06-05 22:19 - 2013-06-05 22:20 - 06366749 ____A C:\Users\Yannick\Downloads\Kölner Dom 1.2.5.rar
2013-06-05 21:55 - 2013-06-30 22:03 - 00000936 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4097592201-1722700985-3522171771-1000UA.job
2013-06-05 21:55 - 2013-06-30 22:02 - 00000914 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4097592201-1722700985-3522171771-1000Core.job
2013-06-05 21:55 - 2013-06-05 21:56 - 00000000 ____D C:\Users\Yannick\AppData\Local\Facebook
2013-06-05 21:54 - 2013-06-05 21:54 - 00501248 ____A (Facebook Inc.) C:\Users\Yannick\Downloads\FacebookVideoCallSetup_v1.2.205.0.exe
2013-06-05 21:32 - 2013-06-30 18:17 - 00000000 ____D C:\Users\Yannick\Downloads\GTA.IV-ArenaBG
2013-06-05 21:31 - 2013-06-05 21:31 - 00144742 ____A C:\Users\Yannick\Downloads\Grand Theft Auto 4 (GTA 4) [rahultorrents] - PC [h33t].torrent
2013-06-05 19:27 - 2013-06-05 19:29 - 12533832 ____A C:\Users\Yannick\Downloads\craftbukkit-1.4.7-R1.0.jar
2013-06-05 18:37 - 2013-06-05 18:38 - 09835921 ____A C:\Users\Yannick\Desktop\world.rar
2013-06-05 17:20 - 2013-06-05 17:20 - 00000000 ____D C:\ProgramData\ATI
2013-06-05 17:20 - 2013-06-05 17:20 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-06-05 17:15 - 2013-06-05 17:15 - 00000000 ____D C:\AMD
2013-06-04 22:44 - 2013-06-04 22:44 - 00207568 ____A C:\Users\Yannick\Downloads\Physikmappe.odt
2013-06-04 21:32 - 2013-06-06 20:34 - 00000000 ____D C:\Users\Yannick\Desktop\world
2013-06-04 21:25 - 2013-06-04 21:32 - 00001869 ____A C:\Users\Yannick\Downloads\server.log
2013-06-04 21:25 - 2013-06-04 21:32 - 00000000 ____D C:\Users\Yannick\Downloads\world
2013-06-04 21:24 - 2013-06-04 21:24 - 02542151 ____A C:\Users\Yannick\Desktop\Minecraft_Server.exe
2013-06-04 21:11 - 2013-06-04 21:11 - 02189699 ____A C:\Users\Yannick\Downloads\Weather-Tornadoes-Mod-1.5.2.zip
2013-06-04 18:07 - 2013-06-04 18:07 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\IT-Service Christian Hau (www.a-bit-more.de)
2013-06-04 18:06 - 2013-06-04 18:06 - 02142052 ____A C:\Users\Yannick\Downloads\Setup.Faktura.curr.zip
2013-06-04 18:06 - 2013-06-04 18:06 - 00001103 ____A C:\Users\UpdatusUser.KARTOFFELBREI.000\Desktop\Zeiterfassung.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001103 ____A C:\Users\Mama\Desktop\Zeiterfassung.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001103 ____A C:\Users\Gast\Desktop\Zeiterfassung.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001081 ____A C:\Users\Yannick\Desktop\Freeware Faktura.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001081 ____A C:\Users\UpdatusUser.KARTOFFELBREI.000\Desktop\Freeware Faktura.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001081 ____A C:\Users\Mama\Desktop\Freeware Faktura.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001081 ____A C:\Users\Gast\Desktop\Freeware Faktura.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00000000 ____D C:\Program Files (x86)\Faktura
2013-06-04 17:55 - 2013-06-04 17:55 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2013-06-04 17:55 - 2013-06-04 17:55 - 00000000 ____D C:\Program Files (x86)\Smart File Advisor
2013-06-04 17:53 - 2013-06-04 17:54 - 04207928 ____A (Smart Projects ) C:\Users\Yannick\Downloads\isobuster_all_lang_3.2.exe
2013-06-04 16:23 - 2013-06-04 16:23 - 00003805 ____A C:\Users\Yannick\Downloads\IBIS.rar
2013-06-04 15:48 - 2013-06-04 16:05 - 81619883 ____A C:\Users\Yannick\Downloads\Thunder + LO-915 Version 1.01.rar
2013-06-04 15:47 - 2013-06-04 15:47 - 00017555 ____A C:\Users\Yannick\Downloads\fonts.rar
2013-06-04 00:07 - 2013-06-04 00:10 - 47151586 ____A C:\Users\Yannick\Documents\Cutting Crew - I Just Died In Your Arms Tonight.mp4
2013-06-04 00:07 - 2013-06-04 00:10 - 47151586 ____A C:\Users\Yannick\Documents\Cutting Crew - I Just Died In Your Arms Tonight(ipad).mp4
2013-06-03 23:31 - 2013-06-03 23:31 - 00000273 ____A C:\Users\Yannick\Downloads\ETRADIOde DEIN EUROTRANSPORTRADIO.wax
2013-06-03 23:31 - 2013-06-03 23:31 - 00000094 ____A C:\Users\Yannick\Downloads\ETRADIOde DEIN EUROTRANSPORTRADIO.m3u
2013-06-03 23:31 - 2013-06-03 23:31 - 00000093 ____A C:\Users\Yannick\Downloads\ETRADIOde DEIN EUROTRANSPORTRADIO (1).m3u
2013-06-03 22:50 - 2013-06-03 23:03 - 17652500 ____A C:\Users\Yannick\Documents\Cutting Crew - I Just Died In Your Arms Tonight.flv
2013-06-03 22:28 - 2013-06-03 23:19 - 74641486 ____A C:\Users\Yannick\Documents\Captain Jack - Drill Instructor (HD).mp4
2013-06-03 22:28 - 2013-06-03 22:50 - 20597837 ____A C:\Users\Yannick\Documents\Captain Jack - Captain Jack (HQ).wmv
2013-06-03 21:00 - 2013-06-03 23:28 - 339056095 ____A C:\Users\Yannick\Documents\Gregorian Masters Of Chant Moments Of Peace In Ireland.flv
2013-06-03 21:00 - 2013-06-03 22:14 - 159428631 ____A C:\Users\Yannick\Documents\Hallelujah in Würzburg 26.02.2013 Epic Chants 2013.mp4
2013-06-03 20:11 - 2013-06-03 20:37 - 127615099 ____A C:\Users\Yannick\Downloads\O405_V1.1upd.zip
2013-06-02 18:56 - 2013-06-02 18:57 - 00001614 ____A C:\Users\Yannick\Desktop\Sims2EP6.exe - Verknüpfung.lnk
2013-06-02 18:56 - 2013-06-02 18:56 - 00002278 ____A C:\Users\Yannick\Desktop\Die Sims™ 2 Gute Reise.lnk
2013-06-02 18:55 - 2013-06-02 18:55 - 00002278 ____A C:\Users\Public\Desktop\Die Sims™ 2 Gute Reise.lnk
2013-06-02 18:50 - 2007-10-30 05:24 - 45767848 ____A (Maxis, a division of Electronic Arts Inc.) C:\Users\Yannick\Desktop\Sims2EP6.exe
2013-06-02 18:43 - 2013-06-02 18:43 - 00000000 ____D C:\Users\Yannick\Documents\EA Games
2013-06-02 18:43 - 2013-06-02 18:43 - 00000000 ____D C:\Users\Public\Documents\EA Games
2013-06-02 17:19 - 2013-06-04 17:49 - 00000000 ____D C:\Users\Yannick\Downloads\The.Sims.2.Nightlife.CloneCD-MiRROR
2013-06-02 17:18 - 2013-06-15 19:12 - 00000000 ____D C:\Users\Yannick\Downloads\The.Sims.2.Open.For.Business - RELOADED
2013-06-02 17:17 - 2013-06-02 17:17 - 00018249 ____A C:\Users\Yannick\Downloads\The.Sims.2.Open.For.Business - RELOADED.torrent
2013-06-02 17:15 - 2013-06-02 17:16 - 13811339 ____A C:\Users\Yannick\Downloads\flt-sb10.7z
2013-06-02 14:51 - 2013-02-19 19:30 - 00000045 ____A C:\Users\Yannick\Desktop\Roemerberg (Mo-Fr).bat
2013-06-02 14:51 - 2013-02-19 19:30 - 00000042 ____A C:\Users\Yannick\Desktop\Roemerberg (So).bat
2013-06-02 14:51 - 2013-02-19 19:30 - 00000042 ____A C:\Users\Yannick\Desktop\Roemerberg (Sa).bat
2013-06-02 14:45 - 2013-06-02 14:45 - 00037552 ____A C:\Users\Yannick\Downloads\Freyfurt_Verbesserungen.zip
2013-06-02 14:43 - 2013-06-02 14:43 - 00099536 ____A C:\Users\Yannick\Downloads\Roemerberg-V2.rar
2013-06-02 14:30 - 2013-06-02 14:30 - 00028808 ____A C:\Users\Yannick\Downloads\V2OpenBeta (2).zip
==================== One Month Modified Files and Folders =======
2013-07-01 20:45 - 2013-07-01 20:45 - 00000000 ____D C:\FRST
2013-07-01 20:44 - 2013-07-01 20:44 - 01933776 ____A (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2013-07-01 20:00 - 2013-06-24 18:54 - 00000000 ____D C:\Users\Yannick\Desktop\Let's Plays
2013-07-01 20:00 - 2011-07-29 19:29 - 00008758 ____A C:\Users\Yannick\AppData\Roaming\wklnhst.dat
2013-07-01 19:49 - 2013-07-01 19:49 - 00102718 ____A C:\Users\Yannick\Desktop\Extras.Txt
2013-07-01 19:47 - 2013-07-01 19:47 - 00188512 ____A C:\Users\Yannick\Desktop\OTL.Txt
2013-07-01 19:34 - 2013-07-01 19:17 - 00602112 ____A (OldTimer Tools) C:\Users\Yannick\Desktop\OTL.exe
2013-07-01 19:20 - 2011-07-13 22:48 - 00000000 ___AD C:\book
2013-07-01 19:19 - 2009-09-03 10:54 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-07-01 19:16 - 2013-07-01 19:16 - 00377856 ____A C:\Users\Yannick\Desktop\gmer_2.1.19163.exe
2013-07-01 19:15 - 2013-07-01 19:15 - 00000724 ____A C:\Users\Yannick\Desktop\defogger_disable.log
2013-07-01 19:15 - 2013-07-01 19:15 - 00000382 ____A C:\Users\Yannick\defogger_reenable
2013-07-01 19:15 - 2011-07-13 22:47 - 00000000 ____D C:\users\Yannick
2013-07-01 19:11 - 2013-07-01 19:11 - 00050477 ____A C:\Users\Yannick\Desktop\Defogger.exe
2013-07-01 19:10 - 2013-07-01 19:10 - 00050477 ____A C:\Users\Yannick\Downloads\Defogger.exe
2013-07-01 19:06 - 2013-07-01 18:54 - 20553576 ____A (Simply Super Software ) C:\Users\Yannick\Downloads\trjsetup687.exe
2013-07-01 19:00 - 2013-07-01 19:00 - 00002266 ____A C:\Users\Yannick\Desktop\SpyHunter.lnk
2013-07-01 19:00 - 2013-07-01 19:00 - 00000000 ____D C:\sh4ldr
2013-07-01 19:00 - 2013-07-01 19:00 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-07-01 19:00 - 2013-07-01 18:59 - 00000000 ____D C:\Windows\E63D89610BA94CF39E94407ACA42846C.TMP
2013-07-01 18:44 - 2013-07-01 18:44 - 00728960 ____A (Enigma Software Group USA, LLC.) C:\Users\Yannick\Downloads\SpyHunter-Installer.exe
2013-07-01 18:12 - 2013-06-15 16:18 - 00007998 ____A C:\Windows\PFRO.log
2013-07-01 16:58 - 2013-07-01 16:58 - 00001019 ____A C:\Users\Yannick\Desktop\Trojancheck.lnk
2013-07-01 16:58 - 2013-07-01 16:58 - 00000000 ____D C:\Program Files (x86)\Trojancheck 6
2013-07-01 16:57 - 2013-07-01 16:57 - 01273071 ____A C:\Users\Yannick\Downloads\tc6_install (1).exe
2013-07-01 16:56 - 2013-07-01 16:52 - 00513381 ____A C:\Users\Yannick\Downloads\tc6_install.exe
2013-07-01 16:51 - 2013-07-01 16:51 - 00018808 ____A C:\Users\Yannick\Downloads\hijackthis.log
2013-07-01 16:49 - 2013-07-01 16:49 - 00388608 ____A (Trend Micro Inc.) C:\Users\Yannick\Downloads\HiJackThis204.exe
2013-07-01 16:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system
2013-07-01 16:15 - 2013-06-30 22:10 - 00027256 ____A (Symantec Corporation) C:\Windows\System32\Drivers\FixZeroAccess.sys
2013-07-01 15:51 - 2013-06-15 16:21 - 00286720 __ASH C:\Users\Yannick\Desktop\Thumbs.db
2013-07-01 15:41 - 2013-07-01 15:41 - 00000000 ____D C:\Windows\System32\%LOCALAPPDATA%
2013-07-01 13:31 - 2009-07-14 06:45 - 00009696 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-01 13:31 - 2009-07-14 06:45 - 00009696 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-01 13:18 - 2013-05-18 17:26 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Wise Care 365
2013-07-01 13:17 - 2013-06-15 16:19 - 00003953 ____A C:\Windows\setupact.log
2013-07-01 13:17 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-30 23:44 - 2013-04-28 21:15 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\uTorrent
2013-06-30 23:44 - 2012-03-30 22:17 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Skype
2013-06-30 23:16 - 2012-06-27 10:28 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-30 23:14 - 2012-12-07 18:56 - 00001112 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-30 22:26 - 2013-06-30 22:11 - 108752708 ____A C:\Users\Yannick\Downloads\GTA IV 1.0.7.0. (1).rar
2013-06-30 22:14 - 2012-12-07 18:56 - 00001108 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-30 22:12 - 2013-06-30 22:12 - 00223050 ____A C:\Users\Yannick\Downloads\GTA IV - Crack only - 1.0.7.0 (Razor1911).rar
2013-06-30 22:08 - 2013-06-30 22:08 - 01805736 ____A (Symantec Corporation) C:\Users\Yannick\Downloads\FixZeroAccess.exe
2013-06-30 22:03 - 2013-06-05 21:55 - 00000936 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4097592201-1722700985-3522171771-1000UA.job
2013-06-30 22:02 - 2013-06-05 21:55 - 00000914 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4097592201-1722700985-3522171771-1000Core.job
2013-06-30 22:00 - 2012-02-19 20:25 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashDumps
2013-06-30 21:13 - 2013-06-15 16:25 - 00731308 ____A C:\Windows\WindowsUpdate.log
2013-06-30 21:00 - 2013-06-30 21:00 - 00000000 __SHD C:\ProgramData\SecuROM
2013-06-30 20:58 - 2013-06-30 19:10 - 00000000 ____D C:\Users\Yannick\AppData\Local\Rockstar Games
2013-06-30 20:58 - 2012-06-11 18:55 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-06-30 20:58 - 2009-09-03 10:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-06-30 20:50 - 2013-06-30 20:33 - 109388216 ____A C:\Users\Yannick\Downloads\gta4_1.0.7.0.zip
2013-06-30 20:46 - 2013-06-30 20:46 - 00303511 ____A C:\Users\Yannick\Downloads\1311984168100_GTAIV_LAZIC-NIKOLA.rar
2013-06-30 20:39 - 2013-06-15 19:12 - 00428544 __ASH C:\Users\Yannick\Downloads\Thumbs.db
2013-06-30 20:38 - 2013-06-30 20:38 - 00059820 ____A C:\Users\Yannick\Downloads\1233162148SavegameGTAIV.rar
2013-06-30 19:43 - 2013-06-30 19:43 - 00000000 ____D C:\Users\Yannick\Documents\Rockstar Games
2013-06-30 19:42 - 2013-06-23 23:55 - 00054156 ___AH C:\Windows\QTFont.qfn
2013-06-30 19:29 - 2013-06-30 19:25 - 00252253 ____A C:\Users\Yannick\Downloads\GTA.4.All.keygen.by.Inferno.zip
2013-06-30 19:23 - 2012-03-28 20:16 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\TS3Client
2013-06-30 19:22 - 2013-06-30 19:22 - 00028591 ____A C:\Users\Yannick\Downloads\GTA IV Key Generator.rar
2013-06-30 19:09 - 2013-06-30 19:08 - 02855181 ____A C:\Users\Yannick\Downloads\RealisticDriving_EFLC_13.zip
2013-06-30 19:07 - 2013-06-30 19:07 - 00178800 ____A (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-06-30 19:06 - 2013-06-30 14:09 - 00037098 ____A C:\Windows\DirectX.log
2013-06-30 19:04 - 2013-06-30 19:38 - 00002248 ____A C:\Users\Yannick\Desktop\Grand Theft Auto IV.lnk
2013-06-30 19:04 - 2013-06-30 18:02 - 00002204 ____A C:\Users\Public\Desktop\Grand Theft Auto IV.lnk
2013-06-30 18:52 - 2013-03-02 20:27 - 00000000 ____D C:\ProgramData\firebird
2013-06-30 18:26 - 2013-06-30 18:26 - 00000000 ____D C:\Users\Yannick\Downloads\Vehicles
2013-06-30 18:17 - 2013-06-05 21:32 - 00000000 ____D C:\Users\Yannick\Downloads\GTA.IV-ArenaBG
2013-06-30 18:13 - 2013-06-30 18:13 - 00001066 ____A C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-06-30 18:13 - 2013-06-30 18:13 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DAEMON Tools
2013-06-30 18:13 - 2013-06-30 18:13 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-06-30 18:00 - 2012-12-30 23:26 - 00000472 ____A C:\Windows\Tasks\ParetoLogic Registration3.job
2013-06-30 17:13 - 2013-03-02 18:12 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-06-30 17:11 - 2013-04-07 12:20 - 00000000 ____D C:\Users\Yannick\Desktop\LS13
2013-06-30 17:02 - 2013-06-30 17:02 - 00001190 ____A C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
2013-06-30 17:02 - 2013-06-30 17:02 - 00001178 ____A C:\Users\Public\Desktop\Game Booster 3.lnk
2013-06-30 17:02 - 2013-06-30 17:02 - 00000000 ____D C:\ProgramData\IObit
2013-06-30 17:02 - 2013-06-30 17:02 - 00000000 ____D C:\Program Files (x86)\IObit
2013-06-30 17:01 - 2013-06-30 17:00 - 04344120 ____A (IObit ) C:\Users\Yannick\Downloads\gb3-4-setup.exe
2013-06-30 16:59 - 2012-10-20 15:15 - 00000000 ____D C:\Users\Yannick\Documents\Euro Truck Simulator 2
2013-06-30 16:40 - 2013-06-30 16:25 - 94729627 ____A C:\Users\Yannick\Downloads\Rheinhausen V4 - Revised Edition 1 by Zane.7z
2013-06-30 16:25 - 2013-06-30 16:25 - 00001513 ____A C:\Users\Yannick\Downloads\Rheinhausen V4 - Revised Edition 1 - Hotfix.7z
2013-06-30 14:22 - 2011-09-10 22:32 - 00000000 ____D C:\Users\Yannick\Documents\BusCableCarSimulator
2013-06-30 14:18 - 2013-06-30 14:05 - 83066510 ____A C:\Users\Yannick\Downloads\BCS_Update_1_0_7_German.exe
2013-06-30 14:06 - 2013-06-30 14:06 - 00001362 ____A C:\Users\Yannick\Desktop\Bus- & Cable Car-Simulator.lnk
2013-06-30 14:03 - 2013-06-30 14:03 - 00003064 ____A C:\Users\Yannick\Downloads\d2a536_4e9f426495345.zip
2013-06-30 13:50 - 2012-10-10 20:36 - 00000000 ____D C:\Users\Yannick\AppData\Local\LogMeIn Hamachi
2013-06-30 08:20 - 2013-06-30 08:20 - 00002255 ____A C:\Users\Yannick\Desktop\Google Chrome.lnk
2013-06-29 00:05 - 2011-07-14 08:30 - 08355356 ____A C:\Windows\System32\perfh007.dat
2013-06-29 00:05 - 2011-07-14 08:30 - 02592570 ____A C:\Windows\System32\perfc007.dat
2013-06-29 00:05 - 2009-07-14 07:13 - 00006872 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-28 22:55 - 2013-06-28 22:55 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-06-28 22:53 - 2013-06-28 22:50 - 09049827 ____A ( ) C:\Users\Yannick\Downloads\K-Lite_Codec_Pack_995_Basic.exe
2013-06-28 22:46 - 2013-06-28 22:46 - 00001344 ____A C:\Users\Yannick\Desktop\Free YouTube Uploader.lnk
2013-06-28 22:46 - 2013-06-28 22:46 - 00001247 ____A C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-06-28 22:46 - 2013-06-25 16:13 - 00001320 ____A C:\Users\Public\Desktop\Free YouTube Uploader.lnk
2013-06-28 22:46 - 2013-06-25 16:13 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DVDVideoSoft
2013-06-28 22:46 - 2013-06-25 16:13 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-06-28 22:44 - 2013-06-28 22:44 - 00002334 ____A C:\Users\Yannick\Desktop\Free Video to Flash Converter.lnk
2013-06-28 22:42 - 2013-06-28 22:32 - 32199568 ____A (DVDVideoSoft Ltd. ) C:\Users\Yannick\Downloads\FreeVideoToFlashConverter_5.0.26.622.exe
2013-06-28 22:42 - 2013-06-28 22:31 - 30544736 ____A (DVDVideoSoft Ltd. ) C:\Users\Yannick\Downloads\FreeYouTubeUploader-4.0.1.622 (1).exe
2013-06-28 22:29 - 2013-06-28 22:29 - 00002513 ____A C:\Users\Yannick\Downloads\sg_backup_2013-06-28-2229.spg
2013-06-28 22:29 - 2013-06-28 22:29 - 00002513 ____A C:\Users\Yannick\Downloads\FirstBackup.spg
2013-06-28 22:28 - 2013-06-28 22:27 - 00659456 ____A (Speed Guide Inc.) C:\Users\Yannick\Downloads\TCP308Optimizer.exe
2013-06-28 21:29 - 2011-07-16 18:09 - 00000000 ____D C:\Users\Yannick\Flight Simulator X-Dateien
2013-06-28 21:29 - 2011-07-14 22:33 - 00000000 ____D C:\Users\Yannick\Fotoalben
2013-06-28 14:45 - 2013-06-26 21:50 - 00011585 ____A C:\Users\Yannick\Desktop\O305_E2H_84.bus
2013-06-28 14:45 - 2013-06-26 21:50 - 00011418 ____A C:\Users\Yannick\Desktop\O305_E2H_85.bus
2013-06-28 14:38 - 2013-06-28 14:38 - 00066317 ____A C:\Users\Yannick\Downloads\Mercedes Benz O305 Stern by Chris 12.zip
2013-06-28 00:38 - 2013-06-27 22:57 - 406223635 ____A C:\Users\Yannick\Downloads\frdpq.Just.The.Best.Sommer.Hits.1990..Heute.2013.rar
2013-06-28 00:12 - 2013-06-27 23:08 - 194572800 ____A C:\Users\Yannick\Downloads\VA-Die_Ultimative_Chartshow_Die_Erfolgreichsten_Hits_2012_-2CD-2012-VOiCE.part1.rar
2013-06-27 23:52 - 2013-06-27 23:08 - 109437125 ____A C:\Users\Yannick\Downloads\VA-Die_Ultimative_Chartshow_Die_Erfolgreichsten_Hits_2012_-2CD-2012-VOiCE.part2.rar
2013-06-27 22:52 - 2013-06-27 22:51 - 04639408 ____A (hxxp://yourfiledownloader.com) C:\Users\Yannick\Downloads\va_just_the_best_sommer_hits_1990_heute_2013_downloader_de_99370.exe
2013-06-27 22:50 - 2013-06-27 22:50 - 00935354 ____A C:\Users\Yannick\Downloads\jingles4free_old_pack1 (1).rar
2013-06-27 22:46 - 2013-06-27 22:46 - 03731936 ____A C:\Users\Yannick\Downloads\Jeden Tag 24 Stunden Musik.wav
2013-06-27 22:28 - 2013-06-27 22:28 - 00935354 ____A C:\Users\Yannick\Downloads\jingles4free_old_pack1.rar
2013-06-27 22:24 - 2013-06-27 22:24 - 02467517 ____A C:\Users\Yannick\Downloads\Jingle Pake_ohne.rar
2013-06-27 22:24 - 2013-06-27 22:24 - 00292544 ____A C:\Users\Yannick\Downloads\Jingle Paket 02 ohne.rar
2013-06-27 19:58 - 2012-03-30 22:17 - 00000000 ____D C:\ProgramData\Skype
2013-06-27 19:57 - 2013-01-28 18:47 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-06-27 17:51 - 2011-10-29 21:32 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\vlc
2013-06-26 20:26 - 2013-06-26 20:05 - 138166254 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.04.zip
2013-06-26 20:09 - 2013-06-26 20:03 - 02269184 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01 (4).zip
2013-06-26 19:20 - 2013-06-26 19:16 - 01187840 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01 (3).zip
2013-06-26 19:01 - 2013-06-26 18:55 - 02269184 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01 (2).zip
2013-06-26 18:54 - 2013-06-26 18:45 - 03416064 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01 (1).zip
2013-06-26 18:32 - 2013-06-26 18:19 - 05152768 ____A C:\Users\Yannick\Downloads\LiAZ_5292.20_v1.0_1.01.zip
2013-06-26 17:10 - 2013-06-26 17:05 - 27139516 ____A C:\Users\Yannick\Downloads\Baustellen Mod - Route Contruction Mod Version 2.zip
2013-06-26 17:02 - 2013-06-26 17:02 - 00943907 ____A C:\Users\Yannick\Downloads\O305_Upgrade_1-2a.rar
2013-06-26 16:48 - 2013-03-02 20:55 - 00000000 ____D C:\users\UpdatusUser.KARTOFFELBREI.000
2013-06-25 20:23 - 2012-12-27 17:32 - 00001186 ____A C:\Users\Public\Desktop\Aerosoft Launcher.lnk
2013-06-25 20:19 - 2013-06-25 19:37 - 222373257 ____A C:\Users\Yannick\Downloads\AS_OMSI-ADDON-STADTBUS-O305.zip
2013-06-25 19:52 - 2013-06-25 19:52 - 00025358 ____A C:\Users\Yannick\Downloads\Rollb--nder_Freyfurt_2013-NEW.rar
2013-06-25 19:48 - 2013-06-25 19:41 - 25139979 ____A C:\Users\Yannick\Downloads\Velbert 2.0.ams
2013-06-25 16:34 - 2013-06-25 16:33 - 00002507 ____A C:\Users\Yannick\Desktop\Search.lnk
2013-06-25 16:32 - 2013-06-25 16:15 - 00000000 ____D C:\Users\Yannick\AppData\Local\Smartbar
2013-06-25 16:13 - 2013-06-25 16:13 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\OpenCandy
2013-06-25 16:06 - 2013-06-25 15:57 - 30544736 ____A (DVDVideoSoft Ltd. ) C:\Users\Yannick\Downloads\FreeYouTubeUploader-4.0.1.622.exe
2013-06-24 22:20 - 2012-07-23 20:29 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\.minecraft
2013-06-24 21:58 - 2012-06-11 19:06 - 00000000 ____D C:\Users\Yannick\Documents\GTA San Andreas User Files
2013-06-24 21:30 - 2013-02-12 20:09 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Audacity
2013-06-24 21:27 - 2013-06-24 21:08 - 2024523328 ____A C:\Users\Yannick\Desktop\eurotrucks2 2013-06-24 21-08-35-07.avi
2013-06-24 21:05 - 2013-03-12 21:51 - 00000000 ____D C:\Users\Yannick\Desktop\GTA 4
2013-06-24 17:14 - 2012-12-30 02:03 - 00000000 ____D C:\Program Files\Video downloader
2013-06-24 12:03 - 2013-06-25 20:20 - 224736688 ____A (Acresso Software Inc. ) C:\Users\Yannick\Desktop\AS_OMSI-ADDON-STADTBUS-O305_V100.exe
2013-06-24 00:28 - 2013-06-24 00:21 - 00168816 ____A C:\Users\Yannick\Downloads\Spark-0.9.2018.zip
2013-06-24 00:22 - 2013-06-24 00:22 - 00000095 ____A C:\Users\Yannick\AppData\Local\fusioncache.dat
2013-06-24 00:20 - 2013-06-24 00:20 - 01987454 ____A C:\Users\Yannick\Downloads\FIX_PATCH_0.5_Biohazard_Alert.rar
2013-06-24 00:19 - 2013-06-24 00:19 - 68677729 ____A C:\Users\Yannick\Downloads\BioHazard_Alert_REMAKE.rar.crdownload
2013-06-23 23:55 - 2013-06-23 23:55 - 00001409 ____A C:\Windows\QTFont.for
2013-06-23 23:54 - 2013-06-23 23:47 - 00002296 ____A C:\Users\Yannick\Desktop\gta_sa.lnk
2013-06-23 23:47 - 2013-06-23 23:46 - 00000000 ____D C:\Program Files (x86)\GTA BioHazard Alert REMAKE
2013-06-23 23:43 - 2013-03-15 19:13 - 00000000 ____D C:\Users\Yannick\Desktop\Utils
2013-06-23 23:42 - 2013-02-12 21:09 - 00000000 ____D C:\Users\Yannick\Desktop\Neuer Ordner
2013-06-23 22:22 - 2013-06-23 22:22 - 00001885 ____A C:\Users\Yannick\Downloads\1118267588_chaosmod1.zip
2013-06-23 22:05 - 2013-06-23 22:05 - 00001827 ____A C:\Users\Yannick\Desktop\GAMI.lnk
2013-06-23 22:05 - 2013-06-23 22:05 - 00001827 ____A C:\Users\UpdatusUser.KARTOFFELBREI.000\Desktop\GAMI.lnk
2013-06-23 22:05 - 2013-06-23 22:05 - 00001827 ____A C:\Users\Mama\Desktop\GAMI.lnk
2013-06-23 22:05 - 2013-06-23 22:05 - 00001827 ____A C:\Users\Gast\Desktop\GAMI.lnk
2013-06-23 22:05 - 2013-06-23 22:05 - 00000000 ____D C:\Program Files (x86)\GAMI
2013-06-23 22:03 - 2013-06-23 22:02 - 02078885 ____A C:\Users\Yannick\Downloads\4303_gami_installer1_8_2[gta-scene.de].rar
2013-06-23 21:59 - 2013-06-23 21:54 - 38445633 ____A C:\Users\Yannick\Downloads\gtaberlin0710 (1).rar
2013-06-23 21:50 - 2013-06-23 21:45 - 38445633 ____A C:\Users\Yannick\Downloads\gtaberlin0710.rar
2013-06-23 20:13 - 2013-06-23 20:13 - 00000184 ____A C:\Users\Yannick\Downloads\stream (7).asx
2013-06-23 15:25 - 2013-06-23 14:52 - 239791672 ____A C:\Users\Yannick\Downloads\Landkreis Glesien.rar
2013-06-22 15:38 - 2013-06-21 17:39 - 101805455 ____A C:\Users\Yannick\Downloads\Tiefenbach_2.4_(Hauptordner).rar
2013-06-22 15:20 - 2013-06-22 14:27 - 190823623 ____A C:\Users\Yannick\Downloads\Kolp.zip
2013-06-22 15:13 - 2013-06-22 14:39 - 110526126 ____A C:\Users\Yannick\Downloads\BMO Objekte.rar
2013-06-22 15:03 - 2013-06-22 11:18 - 765615036 ____A C:\Users\Yannick\Downloads\Sceneryobjectspack.rar
2013-06-22 14:36 - 2013-06-22 11:23 - 00207181 ____A C:\Users\Yannick\Downloads\15390 (1).rar
2013-06-22 14:31 - 2013-06-22 14:28 - 06745807 ____A C:\Users\Yannick\Downloads\Woelchen_90-Objekte.rar
2013-06-22 14:29 - 2013-06-22 14:29 - 00531144 ____A C:\Users\Yannick\Downloads\0_5e0_1a2b0_1a_c.zip
2013-06-22 14:06 - 2013-06-22 11:37 - 364198563 ____A C:\Users\Yannick\Downloads\Tiefenbach_2.0_%28Objekte%29.rar
2013-06-22 12:22 - 2013-06-22 11:31 - 137991029 ____A C:\Users\Yannick\Downloads\TB-Fellen.zip
2013-06-22 11:30 - 2013-06-22 11:27 - 08403178 ____A C:\Users\Yannick\Downloads\OMV by CMVC.rar
2013-06-22 11:23 - 2013-06-22 11:22 - 02439394 ____A C:\Users\Yannick\Downloads\Litfass.rar
2013-06-22 11:00 - 2013-06-22 11:00 - 00286139 ____A C:\Users\Yannick\Downloads\OMSI-Modloader-alpha.zip
2013-06-21 18:26 - 2013-06-21 17:40 - 208398704 ____A C:\Users\Yannick\Downloads\Lichtenberg.zip
2013-06-21 16:46 - 2011-12-25 22:25 - 00156230 ____A C:\ProgramData\lxeascan.log
2013-06-20 16:08 - 2013-06-20 15:55 - 30448084 ____A C:\Users\Yannick\Downloads\MAZ_107.7z
2013-06-20 16:06 - 2013-06-20 15:54 - 54937823 ____A C:\Users\Yannick\Downloads\???-52078 ????.rar
2013-06-20 16:01 - 2013-06-20 16:01 - 00024439 ____A C:\Users\Yannick\Downloads\Volganin Patch by Chris 12.zip
2013-06-19 20:47 - 2013-06-18 21:01 - 00000000 ____D C:\Users\Yannick\Desktop\Neuer Ordner (3)
2013-06-19 18:31 - 2013-02-23 16:06 - 00000000 ____D C:\Windows\System32\Drivers\NISx64
2013-06-19 18:30 - 2013-02-23 16:07 - 00002505 ____A C:\Users\Public\Desktop\Norton Internet Security.lnk
2013-06-19 18:29 - 2009-07-14 07:08 - 00032632 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-06-19 14:17 - 2013-02-23 16:07 - 00177312 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT64x86.SYS
2013-06-19 14:17 - 2013-02-23 16:07 - 00007631 ____A C:\Windows\System32\Drivers\SYMEVENT64x86.CAT
2013-06-18 20:30 - 2013-06-18 20:02 - 69876567 ____A C:\Users\Yannick\Downloads\LAZ_LF_12_CityLaz.zip
2013-06-18 20:27 - 2013-06-18 20:02 - 45757780 ____A C:\Users\Yannick\Downloads\Volganin.rar
2013-06-18 20:17 - 2013-06-18 19:57 - 85152521 ____A C:\Users\Yannick\Downloads\Ikarus_263_1DTF_Editon_v1.rar
2013-06-18 20:15 - 2013-06-18 20:15 - 00000134 ____A C:\Users\Yannick\Desktop\RMV.cti
2013-06-18 17:09 - 2011-12-25 22:33 - 00000000 ____D C:\ProgramData\Lx_cats
2013-06-17 22:37 - 2013-02-19 21:31 - 00083481 ____A C:\Users\Yannick\Desktop\Träume.sbp
2013-06-17 22:32 - 2013-03-17 12:58 - 00000000 ____D C:\Users\Yannick\Desktop\Bilder Praktikum
2013-06-17 22:23 - 2013-04-08 18:42 - 00000000 ____D C:\Users\Yannick\Desktop\Schule
2013-06-17 22:00 - 2012-12-07 18:55 - 00000000 ____D C:\Users\Yannick\AppData\Local\Deployment
2013-06-17 21:47 - 2013-06-17 21:47 - 00644507 ____A C:\Users\Yannick\Downloads\4F6C6C69.rar
2013-06-17 19:02 - 2013-06-17 19:02 - 00147968 __ASH C:\Users\Yannick\Documents\Thumbs.db
2013-06-17 15:54 - 2009-09-03 11:28 - 00000000 ____D C:\Windows\Panther
2013-06-16 22:44 - 2013-06-15 22:19 - 00000000 ____D C:\Program Files (x86)\Drumtronic
2013-06-16 19:24 - 2013-06-16 19:24 - 01378096 ____A C:\Users\Yannick\Downloads\Sommer-Mod-by-bluescreen-V2_0.zip
2013-06-16 19:24 - 2013-06-16 19:24 - 00758716 ____A C:\Users\Yannick\Downloads\Berliner-HOF-komplett.zip
2013-06-16 00:10 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\System32\FxsTmp
2013-06-15 23:02 - 2013-06-15 23:02 - 00097946 ____A C:\Users\Yannick\Downloads\TooManyItems 1.5.2.zip
2013-06-15 22:19 - 2013-06-15 22:19 - 00000000 ____D C:\Program Files (x86)\d-lusion
2013-06-15 22:18 - 2013-06-15 22:17 - 05108087 ____A C:\Users\Yannick\Downloads\drumstation.exe
2013-06-15 22:18 - 2013-06-15 22:17 - 02515817 ____A C:\Users\Yannick\Downloads\drumtronic_setup.exe
2013-06-15 22:10 - 2013-06-15 22:04 - 07720271 ____A C:\Users\Yannick\Downloads\WBB 3.1.2&3.1.7.rar
2013-06-15 21:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-15 19:12 - 2013-06-02 17:18 - 00000000 ____D C:\Users\Yannick\Downloads\The.Sims.2.Open.For.Business - RELOADED
2013-06-15 19:12 - 2013-04-28 16:50 - 00000000 ____D C:\Users\Yannick\Downloads\GMX-Toolbar
2013-06-15 19:12 - 2013-02-23 23:58 - 00000000 ____D C:\Users\Yannick\Downloads\Manga
2013-06-15 19:12 - 2013-01-10 23:38 - 00000000 ____D C:\Users\Yannick\Downloads\me
2013-06-15 19:12 - 2013-01-03 21:42 - 00000000 ____D C:\Users\Yannick\Downloads\Neuer Ordner
2013-06-15 16:21 - 2013-03-16 21:53 - 00000000 ____D C:\Users\Yannick\Desktop\Zetsubou School
2013-06-15 16:20 - 2013-03-17 01:03 - 00000000 ____D C:\Users\Yannick\Desktop\Messiah-FLT
2013-06-15 16:20 - 2013-03-02 20:24 - 00000000 ____D C:\Users\Yannick\Desktop\Sam
2013-06-15 16:19 - 2013-06-15 16:19 - 00000000 ____A C:\Windows\setuperr.log
2013-06-15 01:22 - 2013-06-15 00:34 - 151175758 ____A C:\Users\Yannick\Downloads\world1 (3).zip
2013-06-15 01:10 - 2013-06-15 00:38 - 57354316 ____A C:\Users\Yannick\Downloads\world1 (4).zip
2013-06-15 01:02 - 2013-06-15 00:28 - 57681030 ____A C:\Users\Yannick\Downloads\world2.rar
2013-06-15 01:01 - 2013-06-15 00:27 - 51251653 ____A C:\Users\Yannick\Downloads\world1.zip
2013-06-15 00:47 - 2013-06-15 00:27 - 28980821 ____A C:\Users\Yannick\Downloads\world1 (1).zip
2013-06-15 00:37 - 2013-06-15 00:33 - 03903215 ____A C:\Users\Yannick\Downloads\world1 (2).zip
2013-06-15 00:21 - 2013-06-15 00:18 - 06862206 ____A C:\Users\Yannick\Downloads\Revenge Of The Gods.rar
2013-06-14 23:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2013-06-14 23:01 - 2013-04-16 16:11 - 00000000 ____D C:\Users\Yannick\Documents\BS MANGA
2013-06-14 13:16 - 2011-07-15 02:05 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-14 11:18 - 2012-06-27 10:28 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-14 11:18 - 2011-10-27 19:53 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-08 16:08 - 2013-06-16 23:48 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:07 - 2013-06-16 23:47 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-08 16:06 - 2013-06-16 23:48 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-16 23:48 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 16:06 - 2013-06-16 23:48 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-08 14:28 - 2013-06-16 23:48 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-08 13:42 - 2013-06-16 23:48 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-16 23:48 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-16 23:48 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-16 23:48 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:40 - 2013-06-16 23:47 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:13 - 2013-06-16 23:48 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-06 21:27 - 2013-06-06 21:27 - 04475563 ____A C:\Users\Yannick\Downloads\Ebstein 0.891.zip
2013-06-06 20:34 - 2013-06-04 21:32 - 00000000 ____D C:\Users\Yannick\Desktop\world
2013-06-06 17:41 - 2013-06-06 17:39 - 12032865 ____A C:\Users\Yannick\Downloads\Bukkit Server [1.5.2].zip
2013-06-05 23:04 - 2013-06-05 22:29 - 123634770 ____A C:\Users\Yannick\Downloads\Imperialcity_v13.1.rar
2013-06-05 22:56 - 2013-06-05 22:30 - 53558505 ____A C:\Users\Yannick\Downloads\Hillside Manor-1.5.zip
2013-06-05 22:35 - 2013-06-05 22:30 - 07502298 ____A C:\Users\Yannick\Downloads\World1 - Lumina Nocturnale.rar
2013-06-05 22:20 - 2013-06-05 22:19 - 06366749 ____A C:\Users\Yannick\Downloads\Kölner Dom 1.2.5.rar
2013-06-05 21:56 - 2013-06-05 21:55 - 00000000 ____D C:\Users\Yannick\AppData\Local\Facebook
2013-06-05 21:54 - 2013-06-05 21:54 - 00501248 ____A (Facebook Inc.) C:\Users\Yannick\Downloads\FacebookVideoCallSetup_v1.2.205.0.exe
2013-06-05 21:31 - 2013-06-05 21:31 - 00144742 ____A C:\Users\Yannick\Downloads\Grand Theft Auto 4 (GTA 4) [rahultorrents] - PC [h33t].torrent
2013-06-05 19:29 - 2013-06-05 19:27 - 12533832 ____A C:\Users\Yannick\Downloads\craftbukkit-1.4.7-R1.0.jar
2013-06-05 18:38 - 2013-06-05 18:37 - 09835921 ____A C:\Users\Yannick\Desktop\world.rar
2013-06-05 17:20 - 2013-06-05 17:20 - 00000000 ____D C:\ProgramData\ATI
2013-06-05 17:20 - 2013-06-05 17:20 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-06-05 17:20 - 2013-05-22 15:26 - 00000000 ____D C:\ProgramData\AMD
2013-06-05 17:19 - 2013-05-22 15:23 - 00000000 ____D C:\Program Files\ATI Technologies
2013-06-05 17:15 - 2013-06-05 17:15 - 00000000 ____D C:\AMD
2013-06-04 22:44 - 2013-06-04 22:44 - 00207568 ____A C:\Users\Yannick\Downloads\Physikmappe.odt
2013-06-04 21:32 - 2013-06-04 21:25 - 00001869 ____A C:\Users\Yannick\Downloads\server.log
2013-06-04 21:32 - 2013-06-04 21:25 - 00000000 ____D C:\Users\Yannick\Downloads\world
2013-06-04 21:24 - 2013-06-04 21:24 - 02542151 ____A C:\Users\Yannick\Desktop\Minecraft_Server.exe
2013-06-04 21:11 - 2013-06-04 21:11 - 02189699 ____A C:\Users\Yannick\Downloads\Weather-Tornadoes-Mod-1.5.2.zip
2013-06-04 18:07 - 2013-06-04 18:07 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\IT-Service Christian Hau (www.a-bit-more.de)
2013-06-04 18:06 - 2013-06-04 18:06 - 02142052 ____A C:\Users\Yannick\Downloads\Setup.Faktura.curr.zip
2013-06-04 18:06 - 2013-06-04 18:06 - 00001103 ____A C:\Users\UpdatusUser.KARTOFFELBREI.000\Desktop\Zeiterfassung.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001103 ____A C:\Users\Mama\Desktop\Zeiterfassung.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001103 ____A C:\Users\Gast\Desktop\Zeiterfassung.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001081 ____A C:\Users\Yannick\Desktop\Freeware Faktura.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001081 ____A C:\Users\UpdatusUser.KARTOFFELBREI.000\Desktop\Freeware Faktura.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001081 ____A C:\Users\Mama\Desktop\Freeware Faktura.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00001081 ____A C:\Users\Gast\Desktop\Freeware Faktura.lnk
2013-06-04 18:06 - 2013-06-04 18:06 - 00000000 ____D C:\Program Files (x86)\Faktura
2013-06-04 17:55 - 2013-06-04 17:55 - 00000000 ____D C:\Program Files (x86)\Smart Projects
2013-06-04 17:55 - 2013-06-04 17:55 - 00000000 ____D C:\Program Files (x86)\Smart File Advisor
2013-06-04 17:54 - 2013-06-04 17:53 - 04207928 ____A (Smart Projects ) C:\Users\Yannick\Downloads\isobuster_all_lang_3.2.exe
2013-06-04 17:49 - 2013-06-02 17:19 - 00000000 ____D C:\Users\Yannick\Downloads\The.Sims.2.Nightlife.CloneCD-MiRROR
2013-06-04 17:49 - 2013-05-28 20:41 - 00000000 ____D C:\Users\Yannick\Desktop\Sims
2013-06-04 16:23 - 2013-06-04 16:23 - 00003805 ____A C:\Users\Yannick\Downloads\IBIS.rar
2013-06-04 16:05 - 2013-06-04 15:48 - 81619883 ____A C:\Users\Yannick\Downloads\Thunder + LO-915 Version 1.01.rar
2013-06-04 15:47 - 2013-06-04 15:47 - 00017555 ____A C:\Users\Yannick\Downloads\fonts.rar
2013-06-04 00:10 - 2013-06-04 00:07 - 47151586 ____A C:\Users\Yannick\Documents\Cutting Crew - I Just Died In Your Arms Tonight.mp4
2013-06-04 00:10 - 2013-06-04 00:07 - 47151586 ____A C:\Users\Yannick\Documents\Cutting Crew - I Just Died In Your Arms Tonight(ipad).mp4
2013-06-03 23:31 - 2013-06-03 23:31 - 00000273 ____A C:\Users\Yannick\Downloads\ETRADIOde DEIN EUROTRANSPORTRADIO.wax
2013-06-03 23:31 - 2013-06-03 23:31 - 00000094 ____A C:\Users\Yannick\Downloads\ETRADIOde DEIN EUROTRANSPORTRADIO.m3u
2013-06-03 23:31 - 2013-06-03 23:31 - 00000093 ____A C:\Users\Yannick\Downloads\ETRADIOde DEIN EUROTRANSPORTRADIO (1).m3u
2013-06-03 23:28 - 2013-06-03 21:00 - 339056095 ____A C:\Users\Yannick\Documents\Gregorian Masters Of Chant Moments Of Peace In Ireland.flv
2013-06-03 23:19 - 2013-06-03 22:28 - 74641486 ____A C:\Users\Yannick\Documents\Captain Jack - Drill Instructor (HD).mp4
2013-06-03 23:03 - 2013-06-03 22:50 - 17652500 ____A C:\Users\Yannick\Documents\Cutting Crew - I Just Died In Your Arms Tonight.flv
2013-06-03 22:50 - 2013-06-03 22:28 - 20597837 ____A C:\Users\Yannick\Documents\Captain Jack - Captain Jack (HQ).wmv
2013-06-03 22:14 - 2013-06-03 21:00 - 159428631 ____A C:\Users\Yannick\Documents\Hallelujah in Würzburg 26.02.2013 Epic Chants 2013.mp4
2013-06-03 20:37 - 2013-06-03 20:11 - 127615099 ____A C:\Users\Yannick\Downloads\O405_V1.1upd.zip
2013-06-02 22:10 - 2013-04-06 22:32 - 00000000 ____D C:\ProgramData\Browsseo22ssaavve
2013-06-02 18:57 - 2013-06-02 18:56 - 00001614 ____A C:\Users\Yannick\Desktop\Sims2EP6.exe - Verknüpfung.lnk
2013-06-02 18:56 - 2013-06-02 18:56 - 00002278 ____A C:\Users\Yannick\Desktop\Die Sims™ 2 Gute Reise.lnk
2013-06-02 18:55 - 2013-06-02 18:55 - 00002278 ____A C:\Users\Public\Desktop\Die Sims™ 2 Gute Reise.lnk
2013-06-02 18:52 - 2011-07-28 11:49 - 00000000 ____D C:\Program Files (x86)\EA GAMES
2013-06-02 18:43 - 2013-06-02 18:43 - 00000000 ____D C:\Users\Yannick\Documents\EA Games
2013-06-02 18:43 - 2013-06-02 18:43 - 00000000 ____D C:\Users\Public\Documents\EA Games
2013-06-02 17:17 - 2013-06-02 17:17 - 00018249 ____A C:\Users\Yannick\Downloads\The.Sims.2.Open.For.Business - RELOADED.torrent
2013-06-02 17:16 - 2013-06-02 17:15 - 13811339 ____A C:\Users\Yannick\Downloads\flt-sb10.7z
2013-06-02 14:45 - 2013-06-02 14:45 - 00037552 ____A C:\Users\Yannick\Downloads\Freyfurt_Verbesserungen.zip
2013-06-02 14:43 - 2013-06-02 14:43 - 00099536 ____A C:\Users\Yannick\Downloads\Roemerberg-V2.rar
2013-06-02 14:30 - 2013-06-02 14:30 - 00028808 ____A C:\Users\Yannick\Downloads\V2OpenBeta (2).zip
ZeroAccess:
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\00000004.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\201d3dde
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\6715e287
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\76603ac3
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000004.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000008.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\000000cb.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000000.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000032.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000064.@
ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini
ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini
Files to move or delete:
====================
C:\ProgramData\FullRemove.exe
C:\Users\Public\AutoUpdate.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe 50BEA589F7D7958BDD2528A8F69D05CC ZeroAccess <==== ATTENTION!.
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
C:\Program Files\Windows Defender\mpsvc.dll => ATTENTION: ZeroAccess. Use DeleteJunctionsIndirectory: C:\Program Files\Windows Defender
LastRegBack: 2013-06-25 17:31
==================== End Of Log ============================
Man beachte den fehler Hoffe man kann mir helfen  |
|
01.07.2013, 19:55
| #4 |
| | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Nun Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-07-2013 02
Ran by Yannick at 2013-07-01 20:48:25
Running from C:\Users\Yannick\Desktop
Boot Mode: Safe Mode (with Networking)
==========================================================
==================== Installed Programs =======================
µTorrent (x32 Version: 3.3.0.29544)
18 Wheels of Steel: Haulin' (x32 Version: )
Acer Arcade Deluxe (x32 Version: 3.1.6731)
Acer Backup Manager (x32 Version: 2.0.2.19)
Acer eRecovery Management (x32 Version: 4.05.3003)
Acer GameZone Console (x32 Version: 5.1.0.2)
Acer Registration (x32 Version: 1.02.3005)
Acer ScreenSaver (x32 Version: 1.1.0812)
Acer Updater (x32 Version: 1.02.3502)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)
Advertising Center (x32 Version: 0.0.0.2)
Aerosoft's - Aerosoft Launcher (x32 Version: 1.1.0.2)
Agatha Christie - Das Böse unter der Sonne (x32 Version: 1.0)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD APP SDK Runtime (Version: 10.0.1016.4)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
Any Video Converter 5 5.0.4 (x32)
Apple Software Update (x32 Version: 1.1.0.3)
Ask Toolbar (x32 Version: 1.13.2.0)
Audacity 2.0.2 (x32 Version: 2.0.2)
Audio Editor (x32)
AV Voice Changer Software DIAMOND 6.0 (x32)
AV Voice Changer Software DIAMOND 7.0 (x32 Version: 7.0.51)
B1 Free Archiver (x32)
Backup Manager Advance (x32 Version: 2.0.2.19)
Bagger-Simulator 2011 (x32)
BEWERBUNGSMASTER (x32)
billiger.de Sparberater (x32 Version: 1.4.6)
BrowserCompanion (x32)
BrowseToSave (Version: 1.0)
Bus- & Cable Car-Simulator (x32)
Bus-Simulator 2012 (x32)
CameraHelperMsi (x32 Version: 13.20.1182.0)
CarOrganizer 2.0 (x32 Version: 2.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225)
CCC Help Czech (x32 Version: 2013.0328.2217.38225)
CCC Help Danish (x32 Version: 2013.0328.2217.38225)
CCC Help Dutch (x32 Version: 2013.0328.2217.38225)
CCC Help English (x32 Version: 2013.0328.2217.38225)
CCC Help Finnish (x32 Version: 2013.0328.2217.38225)
CCC Help French (x32 Version: 2013.0328.2217.38225)
CCC Help German (x32 Version: 2013.0328.2217.38225)
CCC Help Greek (x32 Version: 2013.0328.2217.38225)
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225)
CCC Help Italian (x32 Version: 2013.0328.2217.38225)
CCC Help Japanese (x32 Version: 2013.0328.2217.38225)
CCC Help Korean (x32 Version: 2013.0328.2217.38225)
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225)
CCC Help Polish (x32 Version: 2013.0328.2217.38225)
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225)
CCC Help Russian (x32 Version: 2013.0328.2217.38225)
CCC Help Spanish (x32 Version: 2013.0328.2217.38225)
CCC Help Swedish (x32 Version: 2013.0328.2217.38225)
CCC Help Thai (x32 Version: 2013.0328.2217.38225)
CCC Help Turkish (x32 Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2013.0328.2218.38225)
Cheat Engine 6.2 (x32)
CheatEngine DB Toolbar Toolbar (x32)
CHIP System-Check-Tool 1.1.9.15 (x32)
Choice Guard (x32 Version: 1.2.87.0)
City Bus Simulator 2010 - New York (x32 Version: 1.21)
Citybus Simulator Munich (x32 Version: 1.23)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000)
Content Transfer (x32 Version: 1.3.0.23190)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Delta Chrome Toolbar (x32)
Delta toolbar (x32 Version: 1.8.21.5)
Der Planer 4 Version 1.3 (x32)
Die Sims 2 (x32)
Die Sims 2: Wilde Campus-Jahre (x32)
Die Sims™ 2 Gute Reise (x32)
Die Sims™ 2 Vier Jahreszeiten (x32)
DownTango (x32 Version: 1.0.716)
Drakensang (x32)
Driver Genius Professional Edition (x32 Version: 11.0)
Drumtronic (x32)
EasyBoost (x32 Version: 1.0.8.1)
Einsteigerpaket Karwendelbahn (x32 Version: 1.0)
Einsteigerpaket PT12 Deluxe (x32 Version: 1.0)
Einsteigerpaket PT17 (x32 Version: 1.0)
Elsword_DE (x32)
erLT (x32 Version: 1.20.138.34)
eSobi v2 (x32 Version: 2.0.4.000274)
Euro Truck Simulator 2 (x32 Version: 1.1.1)
EVGA Precision X 3.0.2 (x32 Version: 3.0.2)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
Farming Simulator 2013 (x32)
FileZilla Client 3.2.7.1 (HKCU Version: 3.2.7.1)
Firebird 2.5.0.26074 (Win32) (x32 Version: 2.5.0.26074)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.23.0)
Fraps (remove only) (x32)
Free Video to Flash Converter version 5.0.26.622 (x32 Version: 5.0.26.622)
Free YouTube Uploader version 4.0.1.622 (x32 Version: 4.0.1.622)
Freemake Video Downloader (x32 Version: 3.4.3)
Freeware Faktura 2012.11.22 (x32 Version: 2012.11.22)
Game Booster 3 (x32 Version: 3.4)
GAMI (Gta-Action Mod-Installer) (x32)
GeoGebra 4.2 (x32 Version: 4.2.12.0)
German Truck Simulator 1.00 (x32 Version: 1.00)
GIGABYTE VGA @BIOS (x32 Version: 1.1)
Google Chrome (x32 Version: 27.0.1453.116)
Google Earth (x32 Version: 7.0.3.8542)
Google Update Helper (x32 Version: 1.3.21.145)
GotClip Downloader (x32)
Grand Theft Auto IV (x32 Version: 1.0.0013.131)
Grand Theft Auto IV (x32 Version: 1.00.0000)
Grand Theft Auto San Andreas (x32 Version: 1.00.00001)
Guard.ICQ (x32)
Hama Racing Wheel Thunder V5 (x32 Version: 1.00.0000)
Heroes of Hellas (x32)
Hotfix für Microsoft Visual C++ 2010 Express - DEU (KB2635973) (x32 Version: 1)
Hotkey Utility (x32 Version: 1.00.3004)
ICQ Toolbar (x32 Version: 3.0.0)
Identity Card (x32 Version: 1.00.3001)
ImagXpress (x32 Version: 7.0.74.0)
Intel(R) Graphics Media Accelerator Driver (Version: 8.15.10.1930)
Intel® Matrix Storage Manager
IsoBuster 3.2 (x32 Version: 3.2)
Java(TM) 6 Update 30 (64-bit) (Version: 6.0.300)
Java(TM) 6 Update 30 (x32 Version: 6.0.300)
Java(TM) 7 Update 3 (64-bit) (Version: 7.0.30)
Java(TM) 7 Update 3 (x32 Version: 7.0.30)
Junk Mail filter update (x32 Version: 14.0.8064.206)
K-Lite Codec Pack 9.9.5 (Basic) (x32 Version: 9.9.5)
Landwirtschafts Simulator 2013 Demo (x32 Version: 1.0)
LEGO Creator (x32)
Lexmark (x32 Version: 1.0.0.0)
Lexmark S300-S400 Series
Lexmark Symbolleiste (x32 Version: 4.3.37.0)
Lexmark Tools for Office (x32 Version: 1.29.0.0)
Logitech Gaming Software 5.10 (Version: 5.10.127)
Logitech Vid HD (x32 Version: 7.2 (7248))
Logitech Webcam Software (x32 Version: 2.0)
LogMeIn Hamachi (x32 Version: 2.1.0.362)
LWS Facebook (x32 Version: 13.20.1166.0)
LWS Gallery (x32 Version: 13.20.1166.0)
LWS Help_main (x32 Version: 13.20.1182.0)
LWS Launcher (x32 Version: 13.20.1166.0)
LWS Motion Detection (x32 Version: 13.20.1176.0)
LWS Pictures And Video (x32 Version: 13.20.1182.0)
LWS Twitter (x32 Version: 13.20.1166.0)
LWS Video Mask Maker (x32 Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.20.1182.0)
LWS Webcam Software (x32 Version: 13.20.1168.0)
LWS WLM Plugin (x32 Version: 1.20.1166.0)
LWS YouTube Plugin (x32 Version: 13.20.1166.0)
MAGIX Foto Manager 8 (x32 Version: 6.0.1.471)
MAGIX Fotobuch 3.6 (x32 Version: 3.6)
MAGIX Media Suite (x32 Version: 1.13.0.112)
MAGIX Online Druck Service 3.4.3.0 (D) (x32 Version: 3.4.3.0)
MAGIX Ringtone Maker SE (x32 Version: 3.1.0.5)
Merriam Websters Spell Jam (x32)
Messiah (x32)
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000)
Microsoft Flight Simulator X (x32 Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 1 (x32 Version: 10.0.61355.0)
Microsoft Flight Simulator X Service Pack 2 (x32 Version: 10.0.61472.0)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Help Viewer 1.1 Language Pack - DEU (Version: 1.1.40219)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office 2010 Service Pack 1 (SP1) (x32)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Language Pack 2007 - German/Deutsch (x32 Version: 12.0.6612.1000)
Microsoft Office O MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office PowerPoint Viewer 2007 (German) (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32)
Microsoft Office SharePoint Designer MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Suite Activation Assistant (x32 Version: 2.9)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office X MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SkyDrive (HKCU Version: 17.0.2006.0314)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Browser (x32 Version: 10.3.5500.0)
Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Native Client (Version: 10.3.5500.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0)
Microsoft SQL Server Compact 3.5 SP2 DEU (x32 Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (Version: 3.5.8080.0)
Microsoft SQL Server VSS Writer (Version: 10.3.5500.0)
Microsoft Train Simulator (x32)
Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (x32 Version: 9.0.30729.4974)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2010 Express - DEU (x32 Version: 10.0.40219)
Microsoft Visual J# 2.0 Redistributable Package (x32 Version: 2.0.50727)
Microsoft Visual J# 2.0 Redistributable Package (x32)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (x32 Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.40303)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (Version: 10.0.40303)
Microsoft Works (x32 Version: 9.7.0621)
MidiPiano version 2.1.7 (x32 Version: 2.1.7)
MorphVOX Junior (x32 Version: 2.7.5)
MorphVOX Pro (x32 Version: 4.3.17)
MorphVOX Pro (x32 Version: 4.3.7)
MSI Afterburner 2.3.0 (x32 Version: 2.3.0)
MSI Kombustor 2.4.2 (x32)
MSI to redistribute MS VS2005 CRT libraries (x32 Version: 8.0.50727.42)
MSTS DB Tracks 1.0 (x32 Version: 1.0)
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser und SDK (x32 Version: 4.20.9818.0)
MTA:SA v1.3 (x32 Version: v1.3)
mufin player (x32 Version: 1.0.0.98)
Myst III Exile (x32)
Myst III EXILE Patch 1.22 (x32)
MyWinLocker (x32 Version: 3.1.72.0)
Need for Speed™ Carbon (x32)
Nero 9 Essentials (x32)
Nero ControlCenter (x32 Version: 9.0.0.1)
Nero DiscSpeed (x32 Version: 5.4.7.201)
Nero DiscSpeed Help (x32 Version: 5.4.4.100)
Nero DriveSpeed (x32 Version: 4.4.7.201)
Nero DriveSpeed Help (x32 Version: 4.4.4.100)
Nero Express Help (x32 Version: 9.4.9.100)
Nero InfoTool (x32 Version: 6.4.7.201)
Nero InfoTool Help (x32 Version: 6.4.4.100)
Nero Installer (x32 Version: 4.4.8.1)
Nero Online Upgrade (x32 Version: 1.3.0.0)
Nero StartSmart (x32 Version: 9.4.11.209)
Nero StartSmart Help (x32 Version: 9.4.1.100)
Nero StartSmart OEM (x32 Version: 9.16.0.100)
NeroExpress (x32 Version: 9.4.10.505)
neroxml (x32 Version: 1.0.0)
Norton Internet Security (x32 Version: 20.4.0.40)
NVIDIA Grafiktreiber 314.07 (Version: 314.07)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1)
NVIDIA Install Application (Version: 2.1002.109.706)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Systemsteuerung 314.07 (Version: 314.07)
NVIDIA Update 1.12.12 (Version: 1.12.12)
NVIDIA Update Components (Version: 1.12.12)
OMSI - Addon Wien (x32 Version: 1.00)
OMSI - Der Omnibussimulator (x32 Version: 1.04)
OMSI - Maxibus Micro (x32)
OMSI - Stadtbus O305 (x32 Version: 1.00)
OMSI Addon Manager Version 1.2.3 (x32 Version: 1.2.3)
OMSI Fahrtenbuch Client Version 1.0.0 (x32 Version: 1.0.0)
PC Connectivity Solution (x32 Version: 8.15.0.0)
PDF-Viewer (Version: 2.5.203.0)
Personality Voices (x32 Version: 1.0.1)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PricePeep (x32 Version: 2.1.0.22)
ProTrain 13 - DELUXE - 1.0 (x32 Version: 1.0)
ProTrain 18 Hamburg-Berlin 1.0 (x32 Version: 1.0)
QuickTime (x32 Version: 7.1.6.200)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6602)
RegCure Pro (x32 Version: 3.1.5.0)
Repaintpaket Ebstein [13.02.2013] (HKCU)
SAM Broadcaster (remove only) (x32)
SAMSUNG Mobile Composite Device Software
Samsung Mobile Modem Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Drive Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung New PC Studio (x32 Version: 1.00.0000)
Samsung New PC Studio USB Driver Installer (x32 Version: 1.00.0000)
SAMSUNG USB Mobile Device Software
San Andreas Mod Installer (x32 Version: 1.1)
San Andreas Mod Installer (x32)
SCANIA Truck Driving Simulator 1.0.0 (x32 Version: 1.0.0)
Schiff-Simulator 2008 (x32)
SC-log 4.1 (x32 Version: 4.1)
Search Assistant SimpleSpeedy 1.74 (x32)
SearchCore for Browsers (x32 Version: 3.0.0.115237)
Serif DrawPlus X2 (x32 Version: 9.0.4.024)
Serif PhotoPlus X2 (x32 Version: 12.0.2.011)
Service Pack 3 für SQL Server 2008 (KB2546951) (64-bit) (Version: 10.3.5500.0)
SetUp SAD Bozen Repaint 1.2 (x32 Version: 1.2)
Shutdown Timer (x32 Version: 3.3.4)
Skype™ 6.5 (x32 Version: 6.5.158)
Smart File Advisor 1.1.1 (x32 Version: 1.1.1)
Snap.Do (x32 Version: 1.20.1.10742)
Snap.Do Engine (HKCU Version: 1.20.1.10742)
Softonic toolbar on IE and Chrome (x32)
SoftwareUpdater (x32)
Solaris Urbino 12 III by CNB-Projekts for OMSI (HKCU)
SpeedFan (remove only) (x32)
SpyHunter (Version: 4.13.6.4253)
Sql Server Customer Experience Improvement Program (Version: 10.3.5500.0)
St. Ilsensee Map for OMSI Version 1.1 (x32 Version: 1.1)
StoryBluePrint (HKCU Version: 2.2.1.1)
TeamSpeak 3 Client (HKCU Version: 3.0.10.1)
TeamViewer 7 (x32 Version: 7.0.12979)
TornTV (x32 Version: 2.1 Build 26473)
TP-LINK Drahtlos Tool (x32 Version: 7.0)
Trojancheck 6 (x32)
Unterstützungsdateien für Microsoft SQL Server 2008-Setup (Version: 10.3.5500.0)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553065) (x32)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2566458) (x32)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
Video downloader 2.0.0.432 (Version: 2.0.0.432)
Virtual Audio Cable 4.10
VirtualBus A6C RC2.2 (x32 Version: A6C RC2.2)
VirtualDJ Home FREE (x32 Version: 7.3)
VLC media player 1.1.11 (x32 Version: 1.1.11)
VMLoad (x32)
Voice Twister (x32 Version: 1.0.2)
Wajam (x32 Version: 1.50)
Welcome Center (x32 Version: 1.00.3005)
Winamp (x32 Version: 5.63 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows iLivid Toolbar (x32 Version: 3.0.0.115237)
Windows Live Call (x32 Version: 14.0.8064.0206)
Windows Live Communications Platform (x32 Version: 14.0.8064.206)
Windows Live Essentials (x32 Version: 14.0.8064.0206)
Windows Live Essentials (x32 Version: 14.0.8064.206)
Windows Live Fotogalerie (x32 Version: 14.0.8064.206)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (x32 Version: 14.0.8064.0206)
Windows Live Messenger (x32 Version: 14.0.8064.0206)
Windows Live Sync (x32 Version: 14.0.8064.206)
Windows Live Writer (x32 Version: 14.0.8064.0206)
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029)
Windows-Treiberpaket - Nokia pccsmcfd (10/12/2007 6.85.4.0) (Version: 10/12/2007 6.85.4.0)
WinPcap 4.1.2 (x32 Version: 4.1.0.2001)
WinRAR 4.01 (64-Bit) (Version: 4.01.0)
Wise Care 365 version 2.45 (x32 Version: 2.45)
Yontoo 1.10.02 (Version: 1.10.02)
YTD Video Downloader 3.9.6 (x32 Version: 3.9.6)
yWriter5 (x32)
==================== Restore Points =========================
30-06-2013 12:06:50 DirectX wurde installiert
30-06-2013 15:16:05 Installiert Grand Theft Auto IV
30-06-2013 15:35:03 Installiert Grand Theft Auto IV
30-06-2013 16:27:04 Installiert Grand Theft Auto IV
30-06-2013 18:54:44 Installed Grand Theft Auto IV
01-07-2013 11:29:09 Windows-Sicherung
==================== Scheduled Tasks (whitelisted) =============
Task: {002D77FB-FFFC-4578-B0C1-2FE5C36201FC} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {04921062-F553-43F1-BCA2-69D6CFA5F3C1} - System32\Tasks\{3AFF6295-3E18-4C04-AFCF-9D6B10170EA8} => C:\Program Files (x86)\Infogrames\RollerCoaster Tycoon 2\rct2.exe [2002-09-16] ()
Task: {0758EF84-E90D-46A5-8261-593A9464FE91} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-20] (Microsoft Corporation)
Task: {0CD6CC84-4E1D-4496-9340-08C67DB286AB} - System32\Tasks\{6269AD7B-75CE-4DBC-AF02-C46D134D614E} => C:\Program Files (x86)\Deep Silver\Geheimakte 2 - Puritas Cordis\AutoStarter.exe No File
Task: {11729CB5-499F-4823-92B8-69AA6816F6A4} - System32\Tasks\{34418A7F-1587-4A2A-BB72-942E11A7C187} => C:\Program Files (x86)\astragon\Bus- & Cable Car-Simulator\Bin\Launcher.exe No File
Task: {119728A7-163B-439A-B6D6-56D3BC208949} - System32\Tasks\EPUpdater => C:\Users\Yannick\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [2013-05-09] ()
Task: {22CDF79D-2D10-4036-B1CA-14F839000D87} - System32\Tasks\{50C8B26D-4666-4E27-8223-26D714EBEAC7} => C:\Program Files (x86)\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe [2013-02-07] (SCS Software)
Task: {24851947-FC35-4F23-B421-F7074F204060} - System32\Tasks\{AFEE825D-36B9-488E-96A0-CE3C9ECD12C1} => C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE No File
Task: {2759D719-0F04-416A-A994-0D6DBA1129E2} - System32\Tasks\{68B27729-4C16-4857-AD6D-BA2606B54488} => C:\Program Files (x86)\Vstep\ShipSim2008\ShipSim2008.exe [2008-02-05] ()
Task: {2FAFB641-0F9F-4F95-A181-00C5562F00E9} - System32\Tasks\{0CDBC124-DB47-4DD3-B4D6-A918A40A01AF} => C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE No File
Task: {300CCE28-F818-447F-B998-757F0B2C26A3} - System32\Tasks\Go for FilesUpdate => C:\Program Files (x86)\GoforFiles\GFFUpdater.exe No File
Task: {30BD4DCF-4212-4623-9A44-C3D96673CB83} - System32\Tasks\{625114CE-2F4A-4272-8E22-BCF3C0001372} => C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE No File
Task: {33279E7A-E35D-4A69-9764-B95C30DD36E2} - System32\Tasks\WPD\SqmUpload_S-1-5-21-4097592201-1722700985-3522171771-1008 => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation)
Task: {33DBF91B-CDA8-4730-997C-DB799A4DCED5} - System32\Tasks\{41758BE5-BE75-4833-938A-F54E2C4EC30C} => C:\Program Files (x86)\Vstep\ShipSim2008\ShipSim2008.exe [2008-02-05] ()
Task: {365930AB-F0C7-415B-88AD-FE2EB97A696F} - System32\Tasks\{9C54D8B6-9584-4351-959B-91B7E3DE0EED} => C:\Program Files (x86)\Microsoft Games\Train Simulator\launcher.exe No File
Task: {36D71CFF-616F-41DE-9335-CF447A4E33A6} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe [2013-06-04] (Symantec Corporation)
Task: {377F89D3-7E7C-4367-934D-5637C1665A93} - System32\Tasks\{0697425A-1999-4AD6-A9A2-239DA67FB877} => C:\VBUS\!VirtualBus.exe No File
Task: {386C4F5F-9094-4F06-A272-3374B9E82D8E} - System32\Tasks\{2F9972D9-7D30-4BAC-AF33-D8B846A236E3} => C:\TML-Studios\City Bus Simulator - Munich\Bin64\CBS2.exe [2013-03-19] ()
Task: {3BA7E471-ABC1-4AF7-A0A6-2D47BA37A7DB} - System32\Tasks\{B0728F4F-AFFD-4B7B-812E-2D3D359EF9E2} => C:\Program Files (x86)\vBus\!VirtualBus.exe [2007-11-25] ()
Task: {437E7724-F41B-440B-AC26-4994D8775F3C} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4097592201-1722700985-3522171771-1000UA => C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-05] (Facebook Inc.)
Task: {48962BD9-766B-4A72-B8FA-C2DC699E890C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-07] (Google Inc.)
Task: {495A1264-664D-4BD8-9750-2B972BF9DABB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4097592201-1722700985-3522171771-1000Core => C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-05] (Facebook Inc.)
Task: {49D9163E-99E4-4BE7-AF15-C0ACA6164497} - System32\Tasks\{C322814C-6525-4D64-A3BE-3C6711FA0B34} => C:\Program Files (x86)\astragon\Bus- & Cable Car-Simulator\Bin\Launcher.exe No File
Task: {4B78FAAF-2EA6-4EF2-8856-5463D4278B5A} - System32\Tasks\{55149B8A-7273-4631-BC03-438BE5B9D11D} => C:\Program Files (x86)\Deep Silver\Geheimakte 2 - Puritas Cordis\AutoStarter.exe No File
Task: {4E4F1CAE-2065-46E9-9176-0DB10BDF3A10} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-07] (Google Inc.)
Task: {532D7A68-9123-4150-80D1-E54921F9D1A7} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {569A0EEF-6600-4782-A0CE-D68CDBBB3F03} - System32\Tasks\{755412BB-7075-4150-B33B-BD1A795BE54A} => C:\Users\Yannick\Desktop\LaunchGTAIV.exe No File
Task: {581A235E-1D0A-48D9-A7B8-C8F1472CFC00} - System32\Tasks\{EA9652D6-6F1B-4473-856D-C0AA8AE1E24C} => C:\Modelleisenbahn Simulator\Omsi.exe No File
Task: {5A3B82CC-7895-4498-94C5-429764D24076} - System32\Tasks\{827D227B-B602-48D9-BCD5-6DAFF05F192B} => C:\Users\Yannick\Desktop\Minecraft.exe No File
Task: {612E51E5-5DE3-4B0A-9F71-E6EEA8591889} - System32\Tasks\{CB5476D4-5D64-4E45-B8DD-903E7ED9FDFD} => C:\Program Files (x86)\Vstep\ShipSim2008\ShipSim2008.exe [2008-02-05] ()
Task: {62FA57CB-F299-4B6B-8B44-23E63AE5377E} - System32\Tasks\{16965B40-4A4D-4D55-B3C2-FB1D80147D34} => C:\Program Files (x86)\SCANIA Truck Driving Simulator\bin\win_x86\scania_truck_driving_simulator.exe [2012-08-21] (SCS Software)
Task: {6593CB17-CE63-42BC-864A-FC3DD94C7CC5} - System32\Tasks\{9E824622-8F28-481A-93E3-00A10B794C94} => C:\Program Files (x86)\astragon\Bus- & Cable Car-Simulator\Bin\Launcher.exe No File
Task: {6B394DF8-239D-4B41-8B82-66A01797850E} - System32\Tasks\{8D474032-92B4-44CF-8AB0-BD5711666D63} => C:\Users\Yannick\Desktop\O405N2-Installer.exe No File
Task: {6C3698A0-15CD-47EA-97B4-1E9E991798F7} - System32\Tasks\{4D7CA959-A6AF-4EBB-8A54-6FF7F0471228} => C:\Program Files (x86)\Microsoft Games\Train Simulator\launcher.exe No File
Task: {75C0CCCB-A981-4C36-A9EF-C70DC9A0573B} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2013-06-30] ()
Task: {7707BA59-1AD5-46DA-9383-58C8E07EC971} - System32\Tasks\{74DB522E-BC77-441B-AAD6-11C176C0D8A3} => C:\Program Files (x86)\Infogrames\RollerCoaster Tycoon 2\rct2.exe [2002-09-16] ()
Task: {77C53FBD-5719-43C4-83E0-1CBE1252428D} - System32\Tasks\{2490E7BC-15B6-4303-AB7D-61C71314BECA} => C:\Program Files (x86)\SCANIA Truck Driving Simulator\bin\win_x86\scania_truck_driving_simulator.exe [2012-08-21] (SCS Software)
Task: {78DDA6C1-1C7E-44F3-AD6E-9EA84B1A9EE4} - System32\Tasks\{7081BC46-C20C-4E66-97FE-F9CC1093549F} => C:\Program Files (x86)\SCANIA Truck Driving Simulator\bin\win_x86\scania_truck_driving_simulator.exe [2012-08-21] (SCS Software)
Task: {7C287EA5-7709-4CD0-9BC1-177AC50C63F7} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe No File
Task: {7C38262A-1955-4418-82BA-276AC227F023} - System32\Tasks\{A775F87E-34F4-4987-9374-1AC1E1B82D22} => C:\Bus- & Cable Car-Simulator\Bin\Launcher.exe No File
Task: {7E063CCF-C0FA-4C0C-8FFA-F85DB4B7AC48} - System32\Tasks\{0EFC3E81-F743-493B-883E-DF0F8C32EE04} => C:\Users\Yannick\Desktop\O405N2-Installer.exe No File
Task: {8DEC1969-7D8E-4896-ACD8-8FE6DEB8E6C9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-14] (Adobe Systems Incorporated)
Task: {9359AB63-CAB1-4CA8-9483-82D389C5D998} - System32\Tasks\{2CFE9325-9F27-409C-865F-F8434A8F666E} => C:\Program Files (x86)\German Truck Simulator\bin\win_x86\germantrucks.exe [2010-08-31] ()
Task: {941FCE76-0A61-4B6C-8200-2328D0C4BF4D} - System32\Tasks\{8E0B420F-ADC6-4A88-B404-951381EE5F3F} => C:\Program Files (x86)\astragon\Bus-Simulator 2012\Bin_High_Win64\BusSimulator2012.exe [2012-02-02] ()
Task: {964575D5-C521-49D4-945A-FF259EFE90D2} - System32\Tasks\RegCure Pro => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe [2013-05-08] (ParetoLogic, Inc.)
Task: {98AF8771-0B17-430E-AB4E-5BE162F5A9AF} - System32\Tasks\{5EE12CEC-24F2-4176-AFD5-6E306AA6D862} => C:\Users\Yannick\Desktop\GTA 4\GTAIV.exe [2008-12-07] (Take-Two Interactive Software, Inc.)
Task: {9AF4A43D-4FD2-4899-92B2-9227946CD31E} - System32\Tasks\{B445A12D-7381-49A9-9E60-A17CDE00854A} => C:\TML-Studios\City Bus Simulator - Munich\Bin64\CBS2.exe [2013-03-19] ()
Task: {9BDE617F-2B54-4601-AB53-179819D09452} - System32\Tasks\{BFB4751C-0E33-4849-8C46-75F70A223A3C} => C:\Program Files (x86)\Vstep\ShipSim2008\ShipSim2008.exe [2008-02-05] ()
Task: {9CA8D607-7E31-4B46-949F-090545AE98D5} - System32\Tasks\{1C327CFB-6FD8-4F23-A5B1-330F9A6D019B} => C:\Program Files (x86)\vBus\!VirtualBus.exe [2007-11-25] ()
Task: {9DD9DEAE-416B-4714-AE54-3DABBCEA8F62} - System32\Tasks\{03F6B70A-7BBA-4BB6-886E-2DFE1A199720} => C:\Program Files (x86)\astragon\Bus-Simulator 2012\Bin_High_Win64\BusSimulator2012.exe [2012-02-02] ()
Task: {A40F1FA5-75C7-4362-9E70-8818774911FC} - System32\Tasks\{0CFDF10D-DA48-4DFA-96AE-3196DFA5337F} => C:\Program Files (x86)\Infogrames\RollerCoaster Tycoon 2\rct2.exe [2002-09-16] ()
Task: {A42A5D97-DC7C-43DE-87CF-2D447922204F} - System32\Tasks\{8A92B19A-B873-4308-A112-5C352782C3FC} => C:\Program Files (x86)\Deep Silver\Geheimakte 2 - Puritas Cordis\AutoStarter.exe No File
Task: {A639F8CB-592B-4480-AAB6-CE6026938715} - System32\Tasks\{578BFDBC-792A-472A-A6A2-8512575D44DC} => C:\Users\Yannick\Desktop\GTA 4\GTAIV.exe [2008-12-07] (Take-Two Interactive Software, Inc.)
Task: {AB81231F-2109-480F-8125-32622AA4C8A6} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2011-11-17] ()
Task: {AF2215DA-69F6-4C7D-8F82-99A6AEBF2057} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe [2013-06-04] (Symantec Corporation)
Task: {B4585682-ED25-40EC-BB16-393EE3D6C4BD} - System32\Tasks\ParetoLogic Update Version3 => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2013-04-18] ()
Task: {B5066419-F068-44B1-B892-342D0209742C} - System32\Tasks\{83CBDDCF-B180-4636-A4FD-491C5045FEF7} => C:\Program Files (x86)\Myst III Exile\bin\M3.exe [2001-09-24] ()
Task: {B7331F8B-5FDE-4C79-87E0-6AFD4636B1B0} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation)
Task: {B8521AA1-16F9-4A56-A5E0-36A8826D2203} - System32\Tasks\{7BC06012-8CD7-4BAD-A853-B7DC60287573} => C:\Program Files (x86)\astragon\Bus- & Cable Car-Simulator\Bin\Launcher.exe No File
Task: {B89F7BE3-DD3A-4EF1-B619-B3C124F93E9B} - System32\Tasks\{343AEC2B-A54D-4E42-9972-AA9014755596} => C:\Program Files (x86)\Vstep\ShipSim2008\ShipSim2008.exe [2008-02-05] ()
Task: {BCF930F1-33C2-4D9F-9A43-F05F44D722DD} - System32\Tasks\billigerdeSWU => C:\Windows\System32\cscript.exe [2009-07-14] (Microsoft Corporation)
Task: {BD51C0B8-470A-4001-A741-2976B9F8FF6D} - System32\Tasks\{83323431-AF56-4A4E-ADF9-D0CBC2337064} => C:\Users\Yannick\Desktop\GTA 4\GTAIV.exe [2008-12-07] (Take-Two Interactive Software, Inc.)
Task: {C4E3B6A8-AAA5-4202-A99A-FABE8B1C3488} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-20] (Microsoft Corporation)
Task: {D320B662-DD48-47C1-A9EE-BC12D15444BF} - System32\Tasks\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2007-01-10] (Apple Computer, Inc.)
Task: {DAD878ED-6F03-4577-8B1D-8182297D6E7A} - System32\Tasks\{4237BF88-C1A4-4A24-83B2-ECF8C18F69A2} => C:\Program Files (x86)\Rockstar Games\Grand Theft Auto San Andreas\gta_sa.exe [2005-06-07] ()
Task: {DBC347AE-A578-4D3A-8184-6C8BC229D87C} - System32\Tasks\{977C5F96-B7A4-4557-8BBC-267DDDD6E175} => C:\Program Files (x86)\Vstep\ShipSim2008\ShipSim2008.exe [2008-02-05] ()
Task: {E1DFB79D-E3E0-4525-AE6A-3D3D83F3AF1B} - System32\Tasks\{4B36760C-EE20-4BE3-A021-0FD269225CFF} => C:\Omnibus Simulator 2011\O405N2-Installer.exe No File
Task: {E56B9274-E765-492B-B7D7-65A2443958D6} - System32\Tasks\{F06F569B-428D-4839-A25B-AC18F79EEB69} => C:\Users\Yannick\Desktop\GTA 4\GTAIV.exe [2008-12-07] (Take-Two Interactive Software, Inc.)
Task: {E62267C4-B6EF-4854-9D63-89E58218544C} - System32\Tasks\{048B2385-51FD-4CA1-9460-78C1C3DAABD4} => C:\VBUS\!VirtualBus.exe No File
Task: {ED82E19D-F7D4-4E64-AA32-1532D47CAD33} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe [2013-06-04] (Symantec Corporation)
Task: {F0E2BA2E-A1C9-4795-BB6A-1CA67D515705} - System32\Tasks\ParetoLogic Registration3 => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation)
Task: {F6A3392D-7F6A-4869-B57F-623001A331ED} - System32\Tasks\{12F7D818-7AD8-4240-BAE2-C3AB08C2A9B9} => C:\Program Files (x86)\Vstep\ShipSim2008\ShipSim2008.exe [2008-02-05] ()
Task: {F6EA9D1F-B94A-4A69-8618-65F5C4058ABE} - System32\Tasks\{B11D4A25-F5E1-4EBE-BB6F-4BE38434F726} => C:\VBUS\!VirtualBus.exe No File
Task: {F770018E-7875-4559-B983-BEA09F7286D0} - System32\Tasks\{00718EF6-433F-4ACA-BFE9-033C8CBE88BA} => C:\Program Files (x86)\The Adventure Company\Das Böse unter der Sonne\euts.exe [2007-10-25] ()
Task: {F95D55B0-E098-4856-BF2A-BBABA640D191} - System32\Tasks\{457B688B-5826-462C-B20D-D30E6177D55D} => C:\Program Files (x86)\vBus\!VirtualBus.exe [2007-11-25] ()
Task: {FE0328E9-B3BF-4FE1-98DC-F8E25F103576} - System32\Tasks\{24A8C2F8-41D6-4D1C-9841-5E4A5FA83984} => C:\Program Files (x86)\GOG.com\Messiah\gogwrap.exe [2008-10-29] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4097592201-1722700985-3522171771-1000Core.job => C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4097592201-1722700985-3522171771-1000UA.job => C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ParetoLogic Registration3.job => C:\Windows\system32\rundll32.exe
Task: C:\Windows\Tasks\ParetoLogic Update Version3.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\Windows\Tasks\RegCure Pro.job => C:\Program Files (x86)\ParetoLogic\RegCure Pro\RegCurePro.exe
Task: C:\Windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
Task: C:\Windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe
==================== Faulty Device Manager Devices =============
Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Avnex Virtual Audio Device
Description: Avnex Virtual Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: AVNEX Ltd.
Service: VCSVADHWSer
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Intel(R) 82945G Express Chipset Family
Description: Intel(R) 82945G Express Chipset Family
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: igfx
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/01/2013 07:19:19 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Beschreibung = Configured Microsoft Office Home and Student 2010; Fehler = 0x8007043c).
Error: (07/01/2013 07:00:07 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Installed SpyHunter; Fehler = 0x8007043c).
Error: (07/01/2013 06:59:58 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\msiexec.exe /V; Beschreibung = Installed SpyHunter; Fehler = 0x8007043c).
Error: (06/30/2013 10:00:13 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.7.0, Zeitstempel: 0x4bd9efbe
Name des fehlerhaften Moduls: GTAIV.exe, Version: 1.0.7.0, Zeitstempel: 0x4bd9efbe
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001a9346
ID des fehlerhaften Prozesses: 0xd4c
Startzeit der fehlerhaften Anwendung: 0xGTAIV.exe0
Pfad der fehlerhaften Anwendung: GTAIV.exe1
Pfad des fehlerhaften Moduls: GTAIV.exe2
Berichtskennung: GTAIV.exe3
Error: (06/30/2013 09:58:52 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GTAIV.exe, Version: 1.0.7.0, Zeitstempel: 0x4bd9efbe
Name des fehlerhaften Moduls: GTAIV.exe, Version: 1.0.7.0, Zeitstempel: 0x4bd9efbe
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001a9346
ID des fehlerhaften Prozesses: 0x19e4
Startzeit der fehlerhaften Anwendung: 0xGTAIV.exe0
Pfad der fehlerhaften Anwendung: GTAIV.exe1
Pfad des fehlerhaften Moduls: GTAIV.exe2
Berichtskennung: GTAIV.exe3
Error: (06/30/2013 09:14:17 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GTAIV Key Generator.exe, Version: 2.6.0.0, Zeitstempel: 0x4780eaf3
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0xe0c
Startzeit der fehlerhaften Anwendung: 0xGTAIV Key Generator.exe0
Pfad der fehlerhaften Anwendung: GTAIV Key Generator.exe1
Pfad des fehlerhaften Moduls: GTAIV Key Generator.exe2
Berichtskennung: GTAIV Key Generator.exe3
Error: (06/30/2013 09:14:10 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GTAIV Key Generator.exe, Version: 2.6.0.0, Zeitstempel: 0x4780eaf3
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x11b4
Startzeit der fehlerhaften Anwendung: 0xGTAIV Key Generator.exe0
Pfad der fehlerhaften Anwendung: GTAIV Key Generator.exe1
Pfad des fehlerhaften Moduls: GTAIV Key Generator.exe2
Berichtskennung: GTAIV Key Generator.exe3
Error: (06/30/2013 09:13:59 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GTAIV Key Generator.exe, Version: 2.6.0.0, Zeitstempel: 0x4780eaf3
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x18bc
Startzeit der fehlerhaften Anwendung: 0xGTAIV Key Generator.exe0
Pfad der fehlerhaften Anwendung: GTAIV Key Generator.exe1
Pfad des fehlerhaften Moduls: GTAIV Key Generator.exe2
Berichtskennung: GTAIV Key Generator.exe3
Error: (06/30/2013 09:13:13 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GTAIV Key Generator.exe, Version: 2.6.0.0, Zeitstempel: 0x4780eaf3
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x494
Startzeit der fehlerhaften Anwendung: 0xGTAIV Key Generator.exe0
Pfad der fehlerhaften Anwendung: GTAIV Key Generator.exe1
Pfad des fehlerhaften Moduls: GTAIV Key Generator.exe2
Berichtskennung: GTAIV Key Generator.exe3
Error: (06/30/2013 09:13:13 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GTAIV Key Generator.exe, Version: 2.6.0.0, Zeitstempel: 0x4780eaf3
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x1af4
Startzeit der fehlerhaften Anwendung: 0xGTAIV Key Generator.exe0
Pfad der fehlerhaften Anwendung: GTAIV Key Generator.exe1
Pfad des fehlerhaften Moduls: GTAIV Key Generator.exe2
Berichtskennung: GTAIV Key Generator.exe3
System errors:
=============
Error: (07/01/2013 08:16:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (07/01/2013 08:15:23 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}
Error: (07/01/2013 08:15:19 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (07/01/2013 08:15:15 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}
Error: (07/01/2013 08:15:00 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (07/01/2013 08:14:55 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.
Modulpfad: C:\Windows\system32\athExt.dll
Fehlercode: 21
Error: (07/01/2013 08:14:48 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (07/01/2013 08:14:48 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (07/01/2013 08:14:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (07/01/2013 08:14:47 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
BHDrvx64
ccSet_NIS
discache
eeCtrl
IDSVia64
mwlPSDFilter
mwlPSDNServ
mwlPSDVDisk
spldr
SRTSP
SRTSPX
SymIRON
SymNetS
Wanarpv6
Microsoft Office Sessions:
=========================
Error: (07/01/2013 07:19:19 PM) (Source: System Restore)(User: )
Description: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -EmbeddingConfigured Microsoft Office Home and Student 20100x8007043c
Error: (07/01/2013 07:00:07 PM) (Source: System Restore)(User: )
Description: C:\Windows\system32\msiexec.exe /VInstalled SpyHunter0x8007043c
Error: (07/01/2013 06:59:58 PM) (Source: System Restore)(User: )
Description: C:\Windows\system32\msiexec.exe /VInstalled SpyHunter0x8007043c
Error: (06/30/2013 10:00:13 PM) (Source: Application Error)(User: )
Description: GTAIV.exe1.0.7.04bd9efbeGTAIV.exe1.0.7.04bd9efbec0000005001a9346d4c01ce75cc6a57e450C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\GTAIV.exeC:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\GTAIV.exeaccd3c68-e1bf-11e2-949d-0025114a8460
Error: (06/30/2013 09:58:52 PM) (Source: Application Error)(User: )
Description: GTAIV.exe1.0.7.04bd9efbeGTAIV.exe1.0.7.04bd9efbec0000005001a934619e401ce75cc3a6e05e6C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\GTAIV.exeC:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\GTAIV.exe7c7f4386-e1bf-11e2-949d-0025114a8460
Error: (06/30/2013 09:14:17 PM) (Source: Application Error)(User: )
Description: GTAIV Key Generator.exe2.6.0.04780eaf3unknown0.0.0.000000000c000000500000000e0c01ce75c60353d61dC:\Users\Yannick\Desktop\GTAIV Key Generator.exeunknown41ee0871-e1b9-11e2-949d-0025114a8460
Error: (06/30/2013 09:14:10 PM) (Source: Application Error)(User: )
Description: GTAIV Key Generator.exe2.6.0.04780eaf3unknown0.0.0.000000000c00000050000000011b401ce75c600117025C:\Users\Yannick\Desktop\GTAIV Key Generator.exeunknown3dc18d2c-e1b9-11e2-949d-0025114a8460
Error: (06/30/2013 09:13:59 PM) (Source: Application Error)(User: )
Description: GTAIV Key Generator.exe2.6.0.04780eaf3unknown0.0.0.000000000c00000050000000018bc01ce75c5f950abc5C:\Users\Yannick\Desktop\GTAIV Key Generator.exeunknown3700efdc-e1b9-11e2-949d-0025114a8460
Error: (06/30/2013 09:13:13 PM) (Source: Application Error)(User: )
Description: GTAIV Key Generator.exe2.6.0.04780eaf3unknown0.0.0.000000000c00000050000000049401ce75c5de1d61d0C:\Users\Yannick\Desktop\GTAIV Key Generator.exeunknown1c02c06d-e1b9-11e2-949d-0025114a8460
Error: (06/30/2013 09:13:13 PM) (Source: Application Error)(User: )
Description: GTAIV Key Generator.exe2.6.0.04780eaf3unknown0.0.0.000000000c0000005000000001af401ce75c5de1d61d0C:\Users\Yannick\Desktop\GTAIV Key Generator.exeunknown1bea2f01-e1b9-11e2-949d-0025114a8460
CodeIntegrity Errors:
===================================
Date: 2013-03-06 14:09:42.252
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-06 14:09:42.112
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-05 15:51:18.678
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-05 15:51:18.537
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-04 16:13:08.570
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-04 16:13:08.461
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-03 20:40:36.803
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-03 20:40:36.694
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-03 17:17:00.458
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-03-03 17:17:00.334
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\vcsvad.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 19%
Total physical RAM: 6143.14 MB
Available physical RAM: 4964.2 MB
Total Pagefile: 12284.46 MB
Available Pagefile: 11166.23 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:690.95 GB) (Free:244.91 GB) NTFS (Disk=0 Partition=3)
Drive d: (DATA) (Fixed) (Total:691.21 GB) (Free:383.62 GB) NTFS (Disk=0 Partition=4)
Drive e: (Bus- & Cable Car-Simulator) (CDROM) (Total:2.06 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 3A331294)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=691 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=691 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
02.07.2013, 07:15
| #5 |
| /// the machine /// TB-Ausbilder | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Kannst Du nicht im normalen Modus arbeiten? Wenn doch bitte alles im normalen Modus machen. Fix mit FRST Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter HKLM-x32\...\Runonce: [FixZeroAccess] cmd /c start /D "C:\Users\Yannick\Downloads" /B FixZeroAccess.exe -postboot [x]
HKLM\...\Winlogon: [Shell] [x ] () <=== ATTENTION
HKCR\...0c966feabec1\InprocServer32: [Default-shell32] %SystemRoot%\system32\shell32.dll ATTENTION! ====> ZeroAccess?
HKCR\...409d6c4515e9\InprocServer32: [Default-shell32] %SystemRoot%\system32\shell32.dll ATTENTION! ====> ZeroAccess?
ZeroAccess:
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\00000004.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\201d3dde
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\6715e287
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\76603ac3
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000004.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000008.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\000000cb.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000000.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000032.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000064.@
ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini
ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini
DeleteJunctionsIndirectory: C:\Program Files\Windows Defender
C:\ProgramData\FullRemove.exe
C:\Users\Public\AutoUpdate.exe
Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Wenn TDSSKiller was mit services.exe findet, Cure und starten, Logfile posten, ebenso dann nochmal ein frisches FRST Scanlog.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.07.2013, 19:50
| #6 |
| | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? So aufgrund von starker Krankheit erst heute eine Antwort: Die FRST Logfile: Code:
ATTFilter HKLM-x32\...\Runonce: [FixZeroAccess] cmd /c start /D "C:\Users\Yannick\Downloads" /B FixZeroAccess.exe -postboot [x]
HKLM\...\Winlogon: [Shell] [x ] () <=== ATTENTION
HKCR\...0c966feabec1\InprocServer32: [Default-shell32] %SystemRoot%\system32\shell32.dll ATTENTION! ====> ZeroAccess?
HKCR\...409d6c4515e9\InprocServer32: [Default-shell32] %SystemRoot%\system32\shell32.dll ATTENTION! ====> ZeroAccess?
ZeroAccess:
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\00000004.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\201d3dde
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\6715e287
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\76603ac3
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000004.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000008.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\000000cb.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000000.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000032.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000064.@
ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini
ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini
DeleteJunctionsIndirectory: C:\Program Files\Windows Defender
C:\ProgramData\FullRemove.exe
C:\Users\Public\AutoUpdate.exe
Code:
ATTFilter HKLM-x32\...\Runonce: [FixZeroAccess] cmd /c start /D "C:\Users\Yannick\Downloads" /B FixZeroAccess.exe -postboot [x]
HKLM\...\Winlogon: [Shell] [x ] () <=== ATTENTION
HKCR\...0c966feabec1\InprocServer32: [Default-shell32] %SystemRoot%\system32\shell32.dll ATTENTION! ====> ZeroAccess?
HKCR\...409d6c4515e9\InprocServer32: [Default-shell32] %SystemRoot%\system32\shell32.dll ATTENTION! ====> ZeroAccess?
ZeroAccess:
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\00000004.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\201d3dde
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\6715e287
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\76603ac3
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000004.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000008.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\000000cb.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000000.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000032.@
C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000064.@
ZeroAccess:
C:\Windows\assembly\GAC_32\Desktop.ini
ZeroAccess:
C:\Windows\assembly\GAC_64\Desktop.ini
DeleteJunctionsIndirectory: C:\Program Files\Windows Defender
C:\ProgramData\FullRemove.exe
C:\Users\Public\AutoUpdate.exe
|
|
03.07.2013, 20:41
| #7 |
| /// the machine /// TB-Ausbilder | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Du hast nicht fixen lassen mit FRST..... Ich seh kein Log von TDSSkiller, und kein frisches FRST log nach dem Fix.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.07.2013, 21:30
| #8 |
| | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Ich habe fixen lassen... wie dem auch sei,setze ich mich morgen wieder dran... Ich frage mich nur,warum nachdem ich alles zurückgesetzt habe alles läuft wie vorher aber Norton sagt er sei noch da... Muss ich irgendetwas befürchten vonwegen Datenklau? |
|
04.07.2013, 06:47
| #9 |
| /// the machine /// TB-Ausbilder | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Das Zurücksetzen war auch keine geile Idee, wer weiß in wiefern die Systemwiederherstellung verseucht war. Passwörter ändern ist Pflicht, das ist ein Rootkit, aber wenn Du genau das machst was ich sage, und nur das, ist das Ding schnell sauber.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.07.2013, 11:34
| #10 |
| | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Sehr wohl Chef Bitte erkläre das mit den Fix etc. nochmal für die dummen. Ich bin da noch nicht hinter gestiegen... |
|
04.07.2013, 12:35
| #11 |
| /// the machine /// TB-Ausbilder | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Notepad öffnen meinen Text oben aus der Box kopieren, in Notepad einfügen Speichern als fixlist.txt auf dem Desktop, neben FRST FRST öffnen, Fix drücken. Fixlog posten
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.07.2013, 13:02
| #12 |
| | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? So nun isses aber hoffentlich richtig Das Fixlog: Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 03-07-2013 02
Ran by Yannick at 2013-07-04 13:59:01 Run:2
Running from C:\Users\Yannick\Desktop
Boot Mode: Normal
==============================================
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\FixZeroAccess => Value not found.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value was restored successfully.
HKCU\Software\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1} => Key not found.
HKCU\Software\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9} => Key not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\@" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\00000004.@" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\201d3dde" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\6715e287" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\L\76603ac3" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000004.@" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\00000008.@" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\000000cb.@" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000000.@" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000032.@" => File/Directory not found.
"C:\Windows\Installer\{747ae2da-86c3-ac67-10f3-591f15ad4b6a}\U\80000064.@" => File/Directory not found.
"C:\Windows\assembly\GAC_32\Desktop.ini" => File/Directory not found.
"C:\Windows\assembly\GAC_64\Desktop.ini" => File/Directory not found.
"C:\Program Files\Windows Defender" => Deleting reparse point and unlocking started.
"C:\Program Files\Windows Defender" => Deleting reparse point and unlocking completed.
"C:\ProgramData\FullRemove.exe" => File/Directory not found.
"C:\Users\Public\AutoUpdate.exe" => File/Directory not found.
==== End of Fixlog ====
|
|
04.07.2013, 13:45
| #13 |
| /// the machine /// TB-Ausbilder | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Supi, jetzt TDSSkiller wie beschrieben.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.07.2013, 15:03
| #14 |
| | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? So mim TDSS wie auch immer fertig und hier das Ergebnis: Code:
ATTFilter 16:00:20.0682 2388 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:00:21.0910 2388 ============================================================
16:00:21.0910 2388 Current date / time: 2013/07/04 16:00:21.0910
16:00:21.0911 2388 SystemInfo:
16:00:21.0911 2388
16:00:21.0911 2388 OS Version: 6.1.7601 ServicePack: 1.0
16:00:21.0911 2388 Product type: Workstation
16:00:21.0911 2388 ComputerName: KARTOFFELBREI
16:00:21.0911 2388 UserName: Yannick
16:00:21.0911 2388 Windows directory: C:\Windows
16:00:21.0911 2388 System windows directory: C:\Windows
16:00:21.0911 2388 Running under WOW64
16:00:21.0911 2388 Processor architecture: Intel x64
16:00:21.0911 2388 Number of processors: 4
16:00:21.0911 2388 Page size: 0x1000
16:00:21.0911 2388 Boot type: Normal boot
16:00:21.0911 2388 ============================================================
16:00:22.0646 2388 Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:00:22.0670 2388 ============================================================
16:00:22.0670 2388 \Device\Harddisk0\DR0:
16:00:22.0671 2388 MBR partitions:
16:00:22.0671 2388 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000
16:00:22.0671 2388 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x565E7000
16:00:22.0671 2388 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x58419800, BlocksNum 0x5666D800
16:00:22.0671 2388 ============================================================
16:00:22.0711 2388 C: <-> \Device\Harddisk0\DR0\Partition2
16:00:22.0758 2388 D: <-> \Device\Harddisk0\DR0\Partition3
16:00:22.0759 2388 ============================================================
16:00:22.0759 2388 Initialize success
16:00:22.0759 2388 ============================================================
16:00:29.0187 1920 ============================================================
16:00:29.0187 1920 Scan started
16:00:29.0187 1920 Mode: Manual;
16:00:29.0187 1920 ============================================================
16:00:31.0465 1920 ================ Scan system memory ========================
16:00:31.0465 1920 System memory - ok
16:00:31.0466 1920 ================ Scan services =============================
16:00:31.0654 1920 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:00:31.0656 1920 1394ohci - ok
16:00:31.0669 1920 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:00:31.0673 1920 ACPI - ok
16:00:31.0718 1920 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:00:31.0734 1920 AcpiPmi - ok
16:00:31.0840 1920 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:00:31.0843 1920 AdobeFlashPlayerUpdateSvc - ok
16:00:31.0865 1920 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:00:31.0885 1920 adp94xx - ok
16:00:31.0907 1920 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:00:31.0925 1920 adpahci - ok
16:00:31.0950 1920 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:00:31.0953 1920 adpu320 - ok
16:00:31.0978 1920 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:00:31.0979 1920 AeLookupSvc - ok
16:00:32.0046 1920 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:00:32.0087 1920 AFD - ok
16:00:32.0108 1920 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:00:32.0116 1920 agp440 - ok
16:00:32.0132 1920 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:00:32.0148 1920 ALG - ok
16:00:32.0173 1920 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:00:32.0192 1920 aliide - ok
16:00:32.0241 1920 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:00:32.0246 1920 AMD External Events Utility - ok
16:00:32.0259 1920 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:00:32.0263 1920 amdide - ok
16:00:32.0280 1920 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:00:32.0284 1920 AmdK8 - ok
16:00:32.0526 1920 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:00:32.0716 1920 amdkmdag - ok
16:00:32.0778 1920 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:00:32.0785 1920 amdkmdap - ok
16:00:32.0802 1920 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:00:32.0804 1920 AmdPPM - ok
16:00:32.0815 1920 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:00:32.0819 1920 amdsata - ok
16:00:32.0833 1920 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:00:32.0838 1920 amdsbs - ok
16:00:32.0850 1920 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:00:32.0853 1920 amdxata - ok
16:00:32.0866 1920 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:00:32.0869 1920 AppID - ok
16:00:32.0944 1920 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:00:32.0947 1920 AppIDSvc - ok
16:00:33.0091 1920 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
16:00:33.0093 1920 Appinfo - ok
16:00:33.0106 1920 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:00:33.0109 1920 arc - ok
16:00:33.0118 1920 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:00:33.0121 1920 arcsas - ok
16:00:33.0259 1920 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:00:33.0310 1920 aspnet_state - ok
16:00:33.0353 1920 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:00:33.0356 1920 AsyncMac - ok
16:00:33.0375 1920 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:00:33.0377 1920 atapi - ok
16:00:33.0451 1920 [ 417B9BAB376E8E50F6770196656FD348 ] athur C:\Windows\system32\DRIVERS\athurx.sys
16:00:33.0486 1920 athur - ok
16:00:33.0544 1920 [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
16:00:33.0547 1920 AtiHDAudioService - ok
16:00:33.0615 1920 [ 54494B93BB5AD74C807100144EC30D64 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
16:00:33.0620 1920 atksgt - ok
16:00:33.0679 1920 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:00:33.0686 1920 AudioEndpointBuilder - ok
16:00:33.0697 1920 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:00:33.0701 1920 AudioSrv - ok
16:00:33.0825 1920 [ 7692F4B242E45870873CAF4CB85CF769 ] AxAutoMntSrv C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
16:00:33.0827 1920 AxAutoMntSrv - ok
16:00:33.0884 1920 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:00:33.0887 1920 AxInstSV - ok
16:00:33.0908 1920 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:00:33.0915 1920 b06bdrv - ok
16:00:33.0932 1920 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:00:33.0939 1920 b57nd60a - ok
16:00:33.0964 1920 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:00:33.0967 1920 BDESVC - ok
16:00:33.0981 1920 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:00:33.0983 1920 Beep - ok
16:00:34.0049 1920 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:00:34.0057 1920 BFE - ok
16:00:34.0255 1920 [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\BASHDefs\20130702.001\BHDrvx64.sys
16:00:34.0288 1920 BHDrvx64 - ok
16:00:34.0335 1920 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
16:00:34.0389 1920 BITS - ok
16:00:34.0445 1920 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:00:34.0447 1920 blbdrive - ok
16:00:34.0468 1920 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:00:34.0470 1920 bowser - ok
16:00:34.0480 1920 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:00:34.0483 1920 BrFiltLo - ok
16:00:34.0497 1920 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:00:34.0498 1920 BrFiltUp - ok
16:00:34.0542 1920 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:00:34.0544 1920 Browser - ok
16:00:34.0566 1920 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:00:34.0573 1920 Brserid - ok
16:00:34.0584 1920 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:00:34.0586 1920 BrSerWdm - ok
16:00:34.0602 1920 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:00:34.0604 1920 BrUsbMdm - ok
16:00:34.0610 1920 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:00:34.0612 1920 BrUsbSer - ok
16:00:34.0623 1920 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:00:34.0625 1920 BTHMODEM - ok
16:00:34.0649 1920 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:00:34.0652 1920 bthserv - ok
16:00:34.0902 1920 [ 56685951208AC81CF923B9B08BEDF3B7 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys
16:00:34.0907 1920 ccSet_NIS - ok
16:00:34.0923 1920 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:00:34.0926 1920 cdfs - ok
16:00:34.0979 1920 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:00:34.0984 1920 cdrom - ok
16:00:35.0027 1920 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:00:35.0029 1920 CertPropSvc - ok
16:00:35.0042 1920 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:00:35.0044 1920 circlass - ok
16:00:35.0061 1920 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:00:35.0066 1920 CLFS - ok
16:00:35.0118 1920 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:00:35.0120 1920 clr_optimization_v2.0.50727_32 - ok
16:00:35.0144 1920 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:00:35.0148 1920 clr_optimization_v2.0.50727_64 - ok
16:00:35.0277 1920 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:00:35.0375 1920 clr_optimization_v4.0.30319_32 - ok
16:00:35.0397 1920 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:00:35.0475 1920 clr_optimization_v4.0.30319_64 - ok
16:00:35.0513 1920 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:00:35.0515 1920 CmBatt - ok
16:00:35.0561 1920 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:00:35.0563 1920 cmdide - ok
16:00:35.0617 1920 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
16:00:35.0623 1920 CNG - ok
16:00:35.0636 1920 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:00:35.0639 1920 Compbatt - ok
16:00:35.0675 1920 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:00:35.0677 1920 CompositeBus - ok
16:00:35.0695 1920 COMSysApp - ok
16:00:35.0718 1920 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:00:35.0720 1920 crcdisk - ok
16:00:35.0769 1920 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:00:35.0772 1920 CryptSvc - ok
16:00:35.0822 1920 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:00:35.0829 1920 DcomLaunch - ok
16:00:35.0859 1920 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:00:35.0863 1920 defragsvc - ok
16:00:35.0882 1920 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:00:35.0886 1920 DfsC - ok
16:00:35.0904 1920 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:00:35.0909 1920 Dhcp - ok
16:00:35.0922 1920 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:00:35.0924 1920 discache - ok
16:00:35.0975 1920 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:00:35.0977 1920 Disk - ok
16:00:36.0028 1920 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:00:36.0031 1920 Dnscache - ok
16:00:36.0078 1920 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:00:36.0084 1920 dot3svc - ok
16:00:36.0110 1920 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:00:36.0114 1920 DPS - ok
16:00:36.0138 1920 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:00:36.0140 1920 drmkaud - ok
16:00:36.0197 1920 [ 1A986E433B8EB2375F55961D993746B3 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:00:36.0210 1920 DXGKrnl - ok
16:00:36.0237 1920 [ 761B9EDD97A021AA1922501B7A056635 ] e1yexpress C:\Windows\system32\DRIVERS\e1y62x64.sys
16:00:36.0244 1920 e1yexpress - ok
16:00:36.0298 1920 EagleX64 - ok
16:00:36.0334 1920 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:00:36.0337 1920 EapHost - ok
16:00:36.0399 1920 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:00:36.0468 1920 ebdrv - ok
16:00:36.0563 1920 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:00:36.0569 1920 eeCtrl - ok
16:00:36.0609 1920 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:00:36.0612 1920 EFS - ok
16:00:36.0679 1920 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:00:36.0686 1920 ehRecvr - ok
16:00:36.0713 1920 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:00:36.0716 1920 ehSched - ok
16:00:36.0759 1920 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:00:36.0767 1920 elxstor - ok
16:00:36.0847 1920 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:00:36.0850 1920 EraserUtilRebootDrv - ok
16:00:36.0894 1920 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:00:36.0896 1920 ErrDev - ok
16:00:36.0945 1920 [ 932C05033053ADA2404FD836C9AB2C70 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
16:00:36.0948 1920 EuMusDesignVirtualAudioCableWdm - ok
16:00:40.0279 1920 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:00:40.0295 1920 EventSystem - ok
16:00:40.0347 1920 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:00:40.0351 1920 exfat - ok
16:00:40.0459 1920 Fabs - ok
16:00:40.0537 1920 FairplayKD - ok
16:00:40.0564 1920 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:00:40.0568 1920 fastfat - ok
16:00:40.0671 1920 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:00:40.0700 1920 Fax - ok
16:00:40.0786 1920 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:00:40.0787 1920 fdc - ok
16:00:40.0813 1920 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:00:40.0816 1920 fdPHost - ok
16:00:40.0842 1920 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:00:40.0848 1920 FDResPub - ok
16:00:40.0863 1920 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:00:40.0865 1920 FileInfo - ok
16:00:40.0881 1920 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:00:40.0883 1920 Filetrace - ok
16:00:40.0949 1920 [ 1A18EBD87AA9FBF6EFE8CFADA08D0275 ] FirebirdGuardianDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
16:00:40.0952 1920 FirebirdGuardianDefaultInstance - ok
16:00:41.0043 1920 [ 53C740150C082AAF3C7D21C1D6A9FF98 ] FirebirdServerDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
16:00:41.0116 1920 FirebirdServerDefaultInstance - ok
16:00:41.0190 1920 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
16:00:41.0264 1920 FirebirdServerMAGIXInstance - ok
16:00:41.0281 1920 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:00:41.0283 1920 flpydisk - ok
16:00:41.0334 1920 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:00:41.0338 1920 FltMgr - ok
16:00:41.0399 1920 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
16:00:41.0426 1920 FontCache - ok
16:00:41.0481 1920 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:00:41.0484 1920 FontCache3.0.0.0 - ok
16:00:41.0589 1920 [ 1922197BFAF93F3D1E5D24A73D6D7974 ] FreemakeVideoCapture C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
16:00:41.0590 1920 FreemakeVideoCapture - ok
16:00:41.0601 1920 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:00:41.0604 1920 FsDepends - ok
16:00:41.0643 1920 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:00:41.0645 1920 Fs_Rec - ok
16:00:41.0688 1920 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:00:41.0693 1920 fvevol - ok
16:00:41.0705 1920 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:00:41.0708 1920 gagp30kx - ok
16:00:41.0719 1920 [ 7508FCFB8D93556213F530DFFAEDEC45 ] GearAspiWDM C:\Windows\system32\drivers\GEARAspiWDM.sys
16:00:41.0721 1920 GearAspiWDM - ok
16:00:41.0785 1920 [ 5D4DF0BAC74E9AC62AF6BC99440B050B ] GPCIDrv C:\Program Files (x86)\GIGABYTE\EasyBoost\GPCIDrv64.sys
16:00:41.0787 1920 GPCIDrv - ok
16:00:41.0812 1920 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:00:41.0822 1920 gpsvc - ok
16:00:41.0875 1920 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
16:00:41.0900 1920 Greg_Service - ok
16:00:41.0972 1920 [ E859CA020ED61899F3C74A8D0032D05C ] Guard.Mail.ru C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
16:00:42.0004 1920 Guard.Mail.ru - ok
16:00:42.0135 1920 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:00:42.0137 1920 gupdate - ok
16:00:42.0141 1920 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:00:42.0142 1920 gupdatem - ok
16:00:42.0178 1920 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
16:00:42.0180 1920 hamachi - ok
16:00:42.0316 1920 [ B1E3F445943F06E36DC079AF28D0F86B ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
16:00:42.0364 1920 Hamachi2Svc - ok
16:00:42.0440 1920 [ 98405343D7DCD330FE1B08C8F4C3900C ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
16:00:42.0475 1920 HCW85BDA - ok
16:00:42.0514 1920 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:00:42.0517 1920 hcw85cir - ok
16:00:42.0571 1920 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:00:42.0577 1920 HdAudAddService - ok
16:00:42.0624 1920 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:00:42.0626 1920 HDAudBus - ok
16:00:42.0636 1920 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:00:42.0638 1920 HidBatt - ok
16:00:42.0648 1920 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:00:42.0651 1920 HidBth - ok
16:00:42.0667 1920 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:00:42.0669 1920 HidIr - ok
16:00:42.0693 1920 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:00:42.0696 1920 hidserv - ok
16:00:42.0752 1920 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:00:42.0755 1920 HidUsb - ok
16:00:42.0791 1920 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:00:42.0794 1920 hkmsvc - ok
16:00:42.0839 1920 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:00:42.0842 1920 HomeGroupListener - ok
16:00:42.0878 1920 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:00:42.0881 1920 HomeGroupProvider - ok
16:00:42.0921 1920 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:00:42.0924 1920 HpSAMD - ok
16:00:42.0984 1920 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:00:42.0992 1920 HTTP - ok
16:00:43.0039 1920 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:00:43.0041 1920 hwpolicy - ok
16:00:43.0075 1920 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:00:43.0079 1920 i8042prt - ok
16:00:43.0150 1920 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
16:00:43.0155 1920 IAANTMON - ok
16:00:43.0211 1920 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:00:43.0213 1920 iaStor - ok
16:00:43.0231 1920 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:00:43.0237 1920 iaStorV - ok
16:00:43.0283 1920 [ 9AC1E19D77BA038F24E2FAB5D95F70D3 ] ICQ Service C:\PROGRA~2\ICQ6TO~1\ICQSER~1.EXE
16:00:43.0286 1920 ICQ Service - ok
16:00:43.0380 1920 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
16:00:43.0382 1920 IDriverT - ok
16:00:43.0419 1920 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:00:43.0431 1920 idsvc - ok
16:00:43.0601 1920 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\IPSDefs\20130703.001\IDSvia64.sys
16:00:43.0607 1920 IDSVia64 - ok
16:00:43.0808 1920 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:00:43.0991 1920 igfx - ok
16:00:44.0036 1920 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:00:44.0038 1920 iirsp - ok
16:00:44.0085 1920 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:00:44.0094 1920 IKEEXT - ok
16:00:44.0213 1920 [ 5F6A3EA5BD7CA861863A3A06CECC115C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:00:44.0364 1920 IntcAzAudAddService - ok
16:00:44.0400 1920 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:00:44.0402 1920 intelide - ok
16:00:44.0416 1920 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:00:44.0417 1920 intelppm - ok
16:00:44.0442 1920 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:00:44.0445 1920 IPBusEnum - ok
16:00:44.0446 1920 Scan interrupted by user!
16:00:44.0446 1920 ================ Scan global ===============================
16:00:44.0446 1920 Scan interrupted by user!
16:00:44.0446 1920 ================ Scan MBR ==================================
16:00:44.0446 1920 Scan interrupted by user!
16:00:44.0446 1920 ================ Scan VBR ==================================
16:00:44.0446 1920 Scan interrupted by user!
16:00:44.0446 1920 ============================================================
16:00:44.0446 1920 Scan finished
16:00:44.0446 1920 ============================================================
16:00:44.0456 5996 Detected object count: 0
16:00:44.0456 5996 Actual detected object count: 0
16:00:49.0261 4124 ============================================================
16:00:49.0261 4124 Scan started
16:00:49.0261 4124 Mode: Manual; SigCheck; TDLFS;
16:00:49.0261 4124 ============================================================
16:00:54.0623 4124 ================ Scan system memory ========================
16:00:54.0623 4124 System memory - ok
16:00:54.0623 4124 ================ Scan services =============================
16:00:54.0781 4124 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:00:54.0878 4124 1394ohci - ok
16:00:54.0905 4124 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:00:54.0924 4124 ACPI - ok
16:00:54.0971 4124 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:00:55.0035 4124 AcpiPmi - ok
16:00:55.0126 4124 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:00:55.0142 4124 AdobeFlashPlayerUpdateSvc - ok
16:00:55.0167 4124 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:00:55.0189 4124 adp94xx - ok
16:00:55.0218 4124 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:00:55.0236 4124 adpahci - ok
16:00:55.0252 4124 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:00:55.0269 4124 adpu320 - ok
16:00:55.0297 4124 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:00:55.0423 4124 AeLookupSvc - ok
16:00:55.0474 4124 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:00:55.0535 4124 AFD - ok
16:00:55.0577 4124 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:00:55.0591 4124 agp440 - ok
16:00:55.0618 4124 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:00:55.0673 4124 ALG - ok
16:00:55.0683 4124 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:00:55.0697 4124 aliide - ok
16:00:55.0743 4124 [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:00:55.0814 4124 AMD External Events Utility - ok
16:00:55.0836 4124 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:00:55.0849 4124 amdide - ok
16:00:55.0883 4124 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:00:55.0951 4124 AmdK8 - ok
16:00:56.0152 4124 [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:00:56.0414 4124 amdkmdag - ok
16:00:56.0455 4124 [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:00:56.0502 4124 amdkmdap - ok
16:00:56.0537 4124 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:00:56.0552 4124 AmdPPM - ok
16:00:56.0583 4124 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:00:56.0598 4124 amdsata - ok
16:00:56.0634 4124 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:00:56.0650 4124 amdsbs - ok
16:00:56.0660 4124 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:00:56.0673 4124 amdxata - ok
16:00:56.0684 4124 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:00:56.0828 4124 AppID - ok
16:00:56.0854 4124 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:00:56.0911 4124 AppIDSvc - ok
16:00:56.0942 4124 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
16:00:56.0995 4124 Appinfo - ok
16:00:57.0016 4124 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:00:57.0030 4124 arc - ok
16:00:57.0044 4124 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:00:57.0059 4124 arcsas - ok
16:00:57.0160 4124 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:00:57.0176 4124 aspnet_state - ok
16:00:57.0188 4124 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:00:57.0240 4124 AsyncMac - ok
16:00:57.0264 4124 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:00:57.0277 4124 atapi - ok
16:00:57.0460 4124 [ 417B9BAB376E8E50F6770196656FD348 ] athur C:\Windows\system32\DRIVERS\athurx.sys
16:00:57.0529 4124 athur - ok
16:00:57.0578 4124 [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
16:00:57.0605 4124 AtiHDAudioService - ok
16:00:57.0632 4124 [ 54494B93BB5AD74C807100144EC30D64 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
16:00:57.0654 4124 atksgt - ok
16:00:57.0696 4124 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:00:57.0765 4124 AudioEndpointBuilder - ok
16:00:57.0776 4124 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:00:57.0815 4124 AudioSrv - ok
16:00:57.0893 4124 [ 7692F4B242E45870873CAF4CB85CF769 ] AxAutoMntSrv C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
16:00:57.0903 4124 AxAutoMntSrv - ok
16:00:57.0944 4124 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:00:58.0031 4124 AxInstSV - ok
16:00:58.0050 4124 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:00:58.0107 4124 b06bdrv - ok
16:00:58.0125 4124 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:00:58.0162 4124 b57nd60a - ok
16:00:58.0199 4124 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:00:58.0261 4124 BDESVC - ok
16:00:58.0273 4124 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:00:58.0333 4124 Beep - ok
16:00:58.0375 4124 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:00:58.0418 4124 BFE - ok
16:00:58.0597 4124 [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\BASHDefs\20130702.001\BHDrvx64.sys
16:00:58.0646 4124 BHDrvx64 - ok
16:00:58.0694 4124 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
16:00:58.0766 4124 BITS - ok
16:00:58.0788 4124 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:00:58.0803 4124 blbdrive - ok
16:00:58.0818 4124 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:00:58.0858 4124 bowser - ok
16:00:58.0881 4124 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:00:58.0962 4124 BrFiltLo - ok
16:00:58.0972 4124 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:00:59.0007 4124 BrFiltUp - ok
16:00:59.0043 4124 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:00:59.0068 4124 Browser - ok
16:00:59.0084 4124 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:00:59.0137 4124 Brserid - ok
16:00:59.0151 4124 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:00:59.0182 4124 BrSerWdm - ok
16:00:59.0203 4124 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:00:59.0242 4124 BrUsbMdm - ok
16:00:59.0247 4124 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:00:59.0283 4124 BrUsbSer - ok
16:00:59.0306 4124 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:00:59.0342 4124 BTHMODEM - ok
16:00:59.0375 4124 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:00:59.0411 4124 bthserv - ok
16:00:59.0478 4124 [ 56685951208AC81CF923B9B08BEDF3B7 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys
16:00:59.0491 4124 ccSet_NIS - ok
16:00:59.0507 4124 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:00:59.0566 4124 cdfs - ok
16:00:59.0605 4124 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:00:59.0637 4124 cdrom - ok
16:00:59.0669 4124 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:00:59.0703 4124 CertPropSvc - ok
16:00:59.0718 4124 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:00:59.0739 4124 circlass - ok
16:00:59.0762 4124 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:00:59.0782 4124 CLFS - ok
16:00:59.0835 4124 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:00:59.0848 4124 clr_optimization_v2.0.50727_32 - ok
16:00:59.0870 4124 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:00:59.0883 4124 clr_optimization_v2.0.50727_64 - ok
16:00:59.0953 4124 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:00:59.0968 4124 clr_optimization_v4.0.30319_32 - ok
16:00:59.0981 4124 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:00:59.0996 4124 clr_optimization_v4.0.30319_64 - ok
16:01:00.0006 4124 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:01:00.0048 4124 CmBatt - ok
16:01:00.0086 4124 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:01:00.0100 4124 cmdide - ok
16:01:00.0142 4124 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
16:01:00.0182 4124 CNG - ok
16:01:00.0195 4124 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:01:00.0209 4124 Compbatt - ok
16:01:00.0251 4124 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:01:00.0288 4124 CompositeBus - ok
16:01:00.0292 4124 COMSysApp - ok
16:01:00.0319 4124 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:01:00.0332 4124 crcdisk - ok
16:01:00.0377 4124 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:01:00.0433 4124 CryptSvc - ok
16:01:00.0481 4124 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:01:00.0536 4124 DcomLaunch - ok
16:01:00.0585 4124 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:01:00.0625 4124 defragsvc - ok
16:01:00.0641 4124 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:01:00.0696 4124 DfsC - ok
16:01:00.0737 4124 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:01:00.0765 4124 Dhcp - ok
16:01:00.0781 4124 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:01:00.0842 4124 discache - ok
16:01:00.0867 4124 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:01:00.0881 4124 Disk - ok
16:01:00.0912 4124 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:01:00.0934 4124 Dnscache - ok
16:01:00.0978 4124 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:01:01.0030 4124 dot3svc - ok
16:01:01.0060 4124 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:01:01.0095 4124 DPS - ok
16:01:01.0105 4124 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:01:01.0138 4124 drmkaud - ok
16:01:01.0181 4124 [ 1A986E433B8EB2375F55961D993746B3 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:01:01.0209 4124 DXGKrnl - ok
16:01:01.0237 4124 [ 761B9EDD97A021AA1922501B7A056635 ] e1yexpress C:\Windows\system32\DRIVERS\e1y62x64.sys
16:01:01.0252 4124 e1yexpress - ok
16:01:01.0257 4124 EagleX64 - ok
16:01:01.0284 4124 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:01:01.0340 4124 EapHost - ok
16:01:01.0408 4124 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:01:01.0517 4124 ebdrv - ok
16:01:01.0596 4124 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:01:01.0612 4124 eeCtrl - ok
16:01:01.0651 4124 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:01:01.0700 4124 EFS - ok
16:01:01.0763 4124 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:01:01.0836 4124 ehRecvr - ok
16:01:01.0855 4124 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:01:01.0925 4124 ehSched - ok
16:01:01.0942 4124 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:01:01.0961 4124 elxstor - ok
16:01:02.0006 4124 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:01:02.0017 4124 EraserUtilRebootDrv - ok
16:01:02.0061 4124 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:01:02.0092 4124 ErrDev - ok
16:01:02.0128 4124 [ 932C05033053ADA2404FD836C9AB2C70 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
16:01:02.0139 4124 EuMusDesignVirtualAudioCableWdm - ok
16:01:02.0173 4124 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:01:02.0226 4124 EventSystem - ok
16:01:02.0250 4124 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:01:02.0299 4124 exfat - ok
16:01:02.0329 4124 Fabs - ok
16:01:02.0353 4124 FairplayKD - ok
16:01:02.0375 4124 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:01:02.0431 4124 fastfat - ok
16:01:02.0477 4124 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:01:02.0529 4124 Fax - ok
16:01:02.0547 4124 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:01:02.0561 4124 fdc - ok
16:01:02.0574 4124 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:01:02.0625 4124 fdPHost - ok
16:01:02.0644 4124 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:01:02.0679 4124 FDResPub - ok
16:01:02.0690 4124 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:01:02.0704 4124 FileInfo - ok
16:01:02.0717 4124 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:01:02.0772 4124 Filetrace - ok
16:01:02.0810 4124 [ 1A18EBD87AA9FBF6EFE8CFADA08D0275 ] FirebirdGuardianDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
16:01:02.0831 4124 FirebirdGuardianDefaultInstance ( UnsignedFile.Multi.Generic ) - warning
16:01:02.0831 4124 FirebirdGuardianDefaultInstance - detected UnsignedFile.Multi.Generic (1)
16:01:02.0904 4124 [ 53C740150C082AAF3C7D21C1D6A9FF98 ] FirebirdServerDefaultInstance C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
16:01:02.0966 4124 FirebirdServerDefaultInstance ( UnsignedFile.Multi.Generic ) - warning
16:01:02.0966 4124 FirebirdServerDefaultInstance - detected UnsignedFile.Multi.Generic (1)
16:01:03.0042 4124 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
16:01:03.0143 4124 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
16:01:03.0143 4124 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
16:01:03.0167 4124 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:01:03.0198 4124 flpydisk - ok
16:01:03.0245 4124 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:01:03.0261 4124 FltMgr - ok
16:01:03.0318 4124 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
16:01:03.0401 4124 FontCache - ok
16:01:03.0450 4124 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:01:03.0461 4124 FontCache3.0.0.0 - ok
16:01:03.0550 4124 [ 1922197BFAF93F3D1E5D24A73D6D7974 ] FreemakeVideoCapture C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
16:01:03.0572 4124 FreemakeVideoCapture ( UnsignedFile.Multi.Generic ) - warning
16:01:03.0572 4124 FreemakeVideoCapture - detected UnsignedFile.Multi.Generic (1)
16:01:03.0596 4124 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:01:03.0608 4124 FsDepends - ok
16:01:03.0653 4124 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:01:03.0665 4124 Fs_Rec - ok
16:01:03.0707 4124 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:01:03.0725 4124 fvevol - ok
16:01:03.0741 4124 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:01:03.0754 4124 gagp30kx - ok
16:01:03.0763 4124 [ 7508FCFB8D93556213F530DFFAEDEC45 ] GearAspiWDM C:\Windows\system32\drivers\GEARAspiWDM.sys
16:01:03.0773 4124 GearAspiWDM - ok
16:01:03.0829 4124 [ 5D4DF0BAC74E9AC62AF6BC99440B050B ] GPCIDrv C:\Program Files (x86)\GIGABYTE\EasyBoost\GPCIDrv64.sys
16:01:03.0839 4124 GPCIDrv - ok
16:01:03.0864 4124 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:01:03.0905 4124 gpsvc - ok
16:01:03.0960 4124 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
16:01:04.0004 4124 Greg_Service - ok
16:01:04.0065 4124 [ E859CA020ED61899F3C74A8D0032D05C ] Guard.Mail.ru C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
16:01:04.0109 4124 Guard.Mail.ru - ok
16:01:04.0204 4124 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:01:04.0216 4124 gupdate - ok
16:01:04.0222 4124 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:01:04.0232 4124 gupdatem - ok
16:01:04.0272 4124 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
16:01:04.0283 4124 hamachi - ok
16:01:04.0393 4124 [ B1E3F445943F06E36DC079AF28D0F86B ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
16:01:04.0434 4124 Hamachi2Svc - ok
16:01:04.0501 4124 [ 98405343D7DCD330FE1B08C8F4C3900C ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
16:01:04.0578 4124 HCW85BDA - ok
16:01:04.0600 4124 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:01:04.0654 4124 hcw85cir - ok
16:01:04.0699 4124 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:01:04.0739 4124 HdAudAddService - ok
16:01:04.0784 4124 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:01:04.0823 4124 HDAudBus - ok
16:01:04.0846 4124 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:01:04.0874 4124 HidBatt - ok
16:01:04.0900 4124 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:01:04.0935 4124 HidBth - ok
16:01:04.0961 4124 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:01:04.0976 4124 HidIr - ok
16:01:04.0995 4124 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:01:05.0044 4124 hidserv - ok
16:01:05.0080 4124 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:01:05.0093 4124 HidUsb - ok
16:01:05.0135 4124 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:01:05.0188 4124 hkmsvc - ok
16:01:05.0233 4124 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:01:05.0279 4124 HomeGroupListener - ok
16:01:05.0321 4124 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:01:05.0358 4124 HomeGroupProvider - ok
16:01:05.0382 4124 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:01:05.0395 4124 HpSAMD - ok
16:01:05.0444 4124 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:01:05.0505 4124 HTTP - ok
16:01:05.0541 4124 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:01:05.0553 4124 hwpolicy - ok
16:01:05.0569 4124 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:01:05.0584 4124 i8042prt - ok
16:01:05.0627 4124 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
16:01:05.0642 4124 IAANTMON - ok
16:01:05.0678 4124 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:01:05.0693 4124 iaStor - ok
16:01:05.0757 4124 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:01:05.0775 4124 iaStorV - ok
16:01:05.0851 4124 [ 9AC1E19D77BA038F24E2FAB5D95F70D3 ] ICQ Service C:\PROGRA~2\ICQ6TO~1\ICQSER~1.EXE
16:01:05.0863 4124 ICQ Service - ok
16:01:05.0982 4124 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
16:01:06.0002 4124 IDriverT ( UnsignedFile.Multi.Generic ) - warning
16:01:06.0002 4124 IDriverT - detected UnsignedFile.Multi.Generic (1)
16:01:06.0104 4124 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:01:06.0125 4124 idsvc - ok
16:01:06.0286 4124 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\IPSDefs\20130703.001\IDSvia64.sys
16:01:06.0302 4124 IDSVia64 - ok
16:01:06.0701 4124 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:01:06.0969 4124 igfx - ok
16:01:06.0996 4124 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:01:07.0010 4124 iirsp - ok
16:01:07.0062 4124 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:01:07.0126 4124 IKEEXT - ok
16:01:07.0260 4124 [ 5F6A3EA5BD7CA861863A3A06CECC115C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:01:07.0377 4124 IntcAzAudAddService - ok
16:01:07.0419 4124 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:01:07.0433 4124 intelide - ok
16:01:07.0444 4124 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:01:07.0462 4124 intelppm - ok
16:01:07.0478 4124 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:01:07.0532 4124 IPBusEnum - ok
16:01:07.0572 4124 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:01:07.0624 4124 IpFilterDriver - ok
16:01:07.0680 4124 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:01:07.0709 4124 iphlpsvc - ok
16:01:07.0724 4124 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:01:07.0759 4124 IPMIDRV - ok
16:01:07.0781 4124 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:01:07.0839 4124 IPNAT - ok
16:01:07.0869 4124 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:01:07.0909 4124 IRENUM - ok
16:01:07.0922 4124 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:01:07.0936 4124 isapnp - ok
16:01:07.0955 4124 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:01:07.0973 4124 iScsiPrt - ok
16:01:08.0016 4124 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:01:08.0091 4124 kbdclass - ok
16:01:08.0130 4124 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:01:08.0145 4124 kbdhid - ok
16:01:08.0156 4124 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:01:08.0169 4124 KeyIso - ok
16:01:08.0207 4124 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:01:08.0223 4124 KSecDD - ok
16:01:08.0266 4124 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:01:08.0283 4124 KSecPkg - ok
16:01:08.0300 4124 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:01:08.0335 4124 ksthunk - ok
16:01:08.0362 4124 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:01:08.0421 4124 KtmRm - ok
16:01:08.0476 4124 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:01:08.0534 4124 LanmanServer - ok
16:01:08.0592 4124 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:01:08.0647 4124 LanmanWorkstation - ok
16:01:08.0721 4124 [ 8E4CA9AFD55EF6B509C80A8715ABF8C6 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
16:01:08.0734 4124 lirsgt - ok
16:01:08.0814 4124 [ 93B73DED2BC688F140C6AE2FBAD45789 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
16:01:08.0827 4124 Live Updater Service - ok
16:01:08.0873 4124 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:01:08.0907 4124 lltdio - ok
16:01:08.0923 4124 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:01:08.0978 4124 lltdsvc - ok
16:01:09.0000 4124 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:01:09.0036 4124 lmhosts - ok
16:01:09.0081 4124 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:01:09.0096 4124 LSI_FC - ok
16:01:09.0108 4124 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:01:09.0124 4124 LSI_SAS - ok
16:01:09.0132 4124 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:01:09.0146 4124 LSI_SAS2 - ok
16:01:09.0161 4124 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:01:09.0176 4124 LSI_SCSI - ok
16:01:09.0191 4124 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:01:09.0227 4124 luafv - ok
16:01:09.0289 4124 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
16:01:09.0307 4124 LVRS64 - ok
16:01:09.0389 4124 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
16:01:09.0522 4124 LVUVC64 - ok
16:01:09.0606 4124 [ B58FF5B4D9DD7B9939C5B3EC05792736 ] lxeaCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxeaserv.exe
16:01:09.0630 4124 lxeaCATSCustConnectService - ok
16:01:09.0685 4124 lxea_device - ok
16:01:09.0716 4124 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:01:09.0732 4124 Mcx2Svc - ok
16:01:09.0770 4124 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:01:09.0784 4124 megasas - ok
16:01:09.0801 4124 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:01:09.0820 4124 MegaSR - ok
16:01:09.0830 4124 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:01:09.0884 4124 MMCSS - ok
16:01:09.0905 4124 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:01:09.0962 4124 Modem - ok
16:01:10.0007 4124 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:01:10.0044 4124 monitor - ok
16:01:10.0084 4124 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:01:10.0098 4124 mouclass - ok
16:01:10.0134 4124 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:01:10.0166 4124 mouhid - ok
16:01:10.0202 4124 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:01:10.0217 4124 mountmgr - ok
16:01:10.0256 4124 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:01:10.0272 4124 mpio - ok
16:01:10.0284 4124 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:01:10.0340 4124 mpsdrv - ok
16:01:10.0388 4124 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:01:10.0433 4124 MpsSvc - ok
16:01:10.0468 4124 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:01:10.0509 4124 MRxDAV - ok
16:01:10.0540 4124 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:01:10.0562 4124 mrxsmb - ok
16:01:10.0597 4124 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:01:10.0640 4124 mrxsmb10 - ok
16:01:10.0677 4124 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:01:10.0713 4124 mrxsmb20 - ok
16:01:10.0736 4124 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:01:10.0750 4124 msahci - ok
16:01:10.0763 4124 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:01:10.0780 4124 msdsm - ok
16:01:10.0792 4124 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:01:10.0830 4124 MSDTC - ok
16:01:10.0872 4124 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:01:10.0921 4124 Msfs - ok
16:01:10.0945 4124 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:01:10.0983 4124 mshidkmdf - ok
16:01:10.0994 4124 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:01:11.0008 4124 msisadrv - ok
16:01:11.0057 4124 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:01:11.0094 4124 MSiSCSI - ok
16:01:11.0098 4124 msiserver - ok
16:01:11.0129 4124 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:01:11.0164 4124 MSKSSRV - ok
16:01:11.0176 4124 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:01:11.0232 4124 MSPCLOCK - ok
16:01:11.0256 4124 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:01:11.0311 4124 MSPQM - ok
16:01:11.0382 4124 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:01:11.0404 4124 MsRPC - ok
16:01:11.0418 4124 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:01:11.0431 4124 mssmbios - ok
16:01:11.0556 4124 MSSQL$SQLEXPRESS - ok
16:01:11.0617 4124 [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
16:01:11.0633 4124 MSSQLServerADHelper100 - ok
16:01:11.0658 4124 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:01:11.0711 4124 MSTEE - ok
16:01:11.0736 4124 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:01:11.0751 4124 MTConfig - ok
16:01:11.0788 4124 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:01:11.0802 4124 Mup - ok
16:01:11.0841 4124 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
16:01:11.0852 4124 mwlPSDFilter - ok
16:01:11.0866 4124 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
16:01:11.0877 4124 mwlPSDNServ - ok
16:01:11.0888 4124 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
16:01:11.0899 4124 mwlPSDVDisk - ok
16:01:11.0963 4124 [ 0F5FAAC852DB4C340B7A2F187E3358B8 ] MWLService C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
16:01:11.0979 4124 MWLService - ok
16:01:12.0029 4124 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:01:12.0090 4124 napagent - ok
16:01:12.0144 4124 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:01:12.0184 4124 NativeWifiP - ok
16:01:12.0308 4124 [ 56540E526B46E379A476FB5BC381B290 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20130703.022\ENG64.SYS
16:01:12.0322 4124 NAVENG - ok
16:01:12.0378 4124 [ 8A19D3991F9F14B885CDE8BC640F6B68 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.2.0.19\Definitions\VirusDefs\20130703.022\EX64.SYS
16:01:12.0434 4124 NAVEX15 - ok
16:01:12.0478 4124 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:01:12.0507 4124 NDIS - ok
16:01:12.0525 4124 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:01:12.0561 4124 NdisCap - ok
16:01:12.0573 4124 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:01:12.0608 4124 NdisTapi - ok
16:01:12.0678 4124 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:01:12.0730 4124 Ndisuio - ok
16:01:12.0788 4124 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:01:12.0858 4124 NdisWan - ok
16:01:12.0879 4124 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:01:12.0929 4124 NDProxy - ok
16:01:13.0015 4124 [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
16:01:13.0048 4124 Nero BackItUp Scheduler 4.0 - ok
16:01:13.0087 4124 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:01:13.0124 4124 NetBIOS - ok
16:01:13.0171 4124 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:01:13.0227 4124 NetBT - ok
16:01:13.0252 4124 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:01:13.0266 4124 Netlogon - ok
16:01:13.0319 4124 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:01:13.0359 4124 Netman - ok
16:01:13.0691 4124 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:01:13.0708 4124 NetMsmqActivator - ok
16:01:13.0733 4124 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:01:13.0747 4124 NetPipeActivator - ok
16:01:13.0776 4124 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:01:13.0900 4124 netprofm - ok
16:01:14.0008 4124 [ 618C55B392238B9467F9113E13525C49 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
16:01:14.0051 4124 netr28ux - ok
16:01:14.0057 4124 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:01:14.0071 4124 NetTcpActivator - ok
16:01:14.0075 4124 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:01:14.0090 4124 NetTcpPortSharing - ok
16:01:14.0168 4124 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:01:14.0181 4124 nfrd960 - ok
16:01:14.0348 4124 [ 1BF9D6476061B31CD7FC2BF848529A56 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
16:01:14.0361 4124 NIS - ok
16:01:14.0407 4124 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:01:14.0445 4124 NlaSvc - ok
16:01:14.0497 4124 [ 351533ACC2A069B94E80BBFC177E8FDF ] npf C:\Windows\system32\drivers\npf.sys
16:01:14.0508 4124 npf - ok
16:01:14.0514 4124 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:01:14.0573 4124 Npfs - ok
16:01:14.0597 4124 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:01:14.0633 4124 nsi - ok
16:01:14.0653 4124 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:01:14.0704 4124 nsiproxy - ok
16:01:14.0775 4124 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:01:14.0824 4124 Ntfs - ok
16:01:14.0860 4124 [ BD691091AC7D9713D8F0B07C6B099E6C ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
16:01:14.0892 4124 NTI IScheduleSvc - ok
16:01:14.0904 4124 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
16:01:14.0915 4124 NTIDrvr - ok
16:01:14.0922 4124 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:01:14.0957 4124 Null - ok
16:01:15.0017 4124 [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
16:01:15.0034 4124 NVHDA - ok
16:01:15.0473 4124 [ 0A2F27B5BCC45B64E152DD6AE0815198 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:01:15.0745 4124 nvlddmkm - ok
16:01:15.0795 4124 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:01:15.0811 4124 nvraid - ok
16:01:15.0825 4124 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:01:15.0842 4124 nvstor - ok
16:01:15.0971 4124 [ 574087EA9105F23FB522A4FDDD5292D9 ] nvsvc C:\Windows\system32\nvvsvc.exe
16:01:16.0010 4124 nvsvc - ok
16:01:16.0158 4124 [ ABA5A88740635D37A2B6CEB27DBC738A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:01:16.0201 4124 nvUpdatusService - ok
16:01:16.0215 4124 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:01:16.0231 4124 nv_agp - ok
16:01:16.0245 4124 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:01:16.0294 4124 ohci1394 - ok
16:01:16.0388 4124 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:01:16.0404 4124 ose - ok
16:01:17.0078 4124 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:01:17.0207 4124 osppsvc - ok
16:01:17.0236 4124 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:01:17.0295 4124 p2pimsvc - ok
16:01:17.0313 4124 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:01:17.0350 4124 p2psvc - ok
16:01:17.0378 4124 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:01:17.0414 4124 Parport - ok
16:01:17.0450 4124 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:01:17.0464 4124 partmgr - ok
16:01:17.0476 4124 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:01:17.0513 4124 PcaSvc - ok
16:01:17.0572 4124 [ 81B5E63131090879AD6EF9F32109B88D ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
16:01:17.0617 4124 pccsmcfd - ok
16:01:17.0630 4124 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:01:17.0645 4124 pci - ok
16:01:17.0680 4124 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:01:17.0695 4124 pciide - ok
16:01:17.0716 4124 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:01:17.0733 4124 pcmcia - ok
16:01:17.0745 4124 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:01:17.0759 4124 pcw - ok
16:01:17.0775 4124 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:01:17.0819 4124 PEAUTH - ok
16:01:17.0903 4124 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:01:17.0943 4124 PerfHost - ok
16:01:17.0993 4124 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:01:18.0076 4124 pla - ok
16:01:18.0130 4124 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:01:18.0185 4124 PlugPlay - ok
16:01:18.0200 4124 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:01:18.0217 4124 PNRPAutoReg - ok
16:01:18.0236 4124 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:01:18.0252 4124 PNRPsvc - ok
16:01:18.0346 4124 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:01:18.0419 4124 PolicyAgent - ok
16:01:18.0446 4124 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:01:18.0483 4124 Power - ok
16:01:18.0547 4124 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:01:18.0606 4124 PptpMiniport - ok
16:01:18.0628 4124 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:01:18.0667 4124 Processor - ok
16:01:18.0700 4124 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:01:18.0727 4124 ProfSvc - ok
16:01:18.0773 4124 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:01:18.0788 4124 ProtectedStorage - ok
16:01:18.0830 4124 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:01:18.0888 4124 Psched - ok
16:01:19.0141 4124 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:01:19.0222 4124 ql2300 - ok
16:01:19.0250 4124 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:01:19.0268 4124 ql40xx - ok
16:01:19.0287 4124 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:01:19.0333 4124 QWAVE - ok
16:01:19.0358 4124 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:01:19.0378 4124 QWAVEdrv - ok
16:01:19.0400 4124 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:01:19.0454 4124 RasAcd - ok
16:01:19.0478 4124 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:01:19.0514 4124 RasAgileVpn - ok
16:01:19.0540 4124 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:01:19.0591 4124 RasAuto - ok
16:01:19.0621 4124 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:01:19.0658 4124 Rasl2tp - ok
16:01:19.0720 4124 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:01:19.0781 4124 RasMan - ok
16:01:19.0796 4124 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:01:19.0852 4124 RasPppoe - ok
16:01:19.0883 4124 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:01:19.0939 4124 RasSstp - ok
16:01:19.0980 4124 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:01:20.0018 4124 rdbss - ok
16:01:20.0036 4124 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:01:20.0055 4124 rdpbus - ok
16:01:20.0077 4124 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:01:20.0129 4124 RDPCDD - ok
16:01:20.0164 4124 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:01:20.0200 4124 RDPENCDD - ok
16:01:20.0210 4124 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:01:20.0266 4124 RDPREFMP - ok
16:01:20.0324 4124 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:01:20.0353 4124 RdpVideoMiniport - ok
16:01:20.0402 4124 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:01:20.0434 4124 RDPWD - ok
16:01:20.0475 4124 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:01:20.0491 4124 rdyboost - ok
16:01:20.0519 4124 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:01:20.0556 4124 RemoteAccess - ok
16:01:20.0584 4124 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:01:20.0622 4124 RemoteRegistry - ok
16:01:20.0644 4124 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:01:20.0695 4124 RpcEptMapper - ok
16:01:20.0710 4124 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:01:20.0743 4124 RpcLocator - ok
16:01:20.0801 4124 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:01:20.0839 4124 RpcSs - ok
16:01:20.0954 4124 [ C9FE05A63C500ABE3AFA5786504C4D36 ] RsFx0105 C:\Windows\system32\DRIVERS\RsFx0105.sys
16:01:21.0006 4124 RsFx0105 - ok
16:01:21.0028 4124 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:01:21.0064 4124 rspndr - ok
16:01:21.0128 4124 [ 7F7B8CDE26C4943C9465E412ADBB790F ] RTCore64 C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
16:01:21.0142 4124 RTCore64 - ok
16:01:21.0163 4124 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:01:21.0176 4124 SamSs - ok
16:01:21.0219 4124 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:01:21.0235 4124 sbp2port - ok
16:01:21.0267 4124 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:01:21.0326 4124 SCardSvr - ok
16:01:21.0359 4124 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:01:21.0412 4124 scfilter - ok
16:01:21.0454 4124 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:01:21.0538 4124 Schedule - ok
16:01:21.0580 4124 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:01:21.0613 4124 SCPolicySvc - ok
16:01:21.0667 4124 [ 490B0B68BB938D5C628EC4A67277BE75 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
16:01:21.0679 4124 ScreamBAudioSvc - ok
16:01:21.0722 4124 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:01:21.0783 4124 SDRSVC - ok
16:01:21.0820 4124 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:01:21.0855 4124 secdrv - ok
16:01:21.0900 4124 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:01:21.0949 4124 seclogon - ok
16:01:21.0974 4124 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:01:22.0028 4124 SENS - ok
16:01:22.0048 4124 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:01:22.0093 4124 SensrSvc - ok
16:01:22.0134 4124 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:01:22.0164 4124 Serenum - ok
16:01:22.0186 4124 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:01:22.0202 4124 Serial - ok
16:01:22.0219 4124 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:01:22.0315 4124 sermouse - ok
16:01:22.0531 4124 [ 9D38320BB32230349379DF5DDBBF7FCE ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
16:01:22.0544 4124 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
16:01:22.0544 4124 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
16:01:22.0581 4124 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:01:22.0617 4124 SessionEnv - ok
16:01:22.0659 4124 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:01:22.0696 4124 sffdisk - ok
16:01:22.0715 4124 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:01:22.0748 4124 sffp_mmc - ok
16:01:22.0752 4124 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:01:22.0775 4124 sffp_sd - ok
16:01:22.0798 4124 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:01:22.0830 4124 sfloppy - ok
16:01:22.0888 4124 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:01:22.0950 4124 SharedAccess - ok
16:01:22.0980 4124 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:01:23.0020 4124 ShellHWDetection - ok
16:01:23.0056 4124 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:01:23.0070 4124 SiSRaid2 - ok
16:01:23.0081 4124 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:01:23.0096 4124 SiSRaid4 - ok
16:01:23.0180 4124 [ 4E8A4BB5B11D828FF986F6228B1CD3DF ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:01:23.0193 4124 SkypeUpdate - ok
16:01:23.0231 4124 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:01:23.0266 4124 Smb - ok
16:01:23.0308 4124 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:01:23.0339 4124 SNMPTRAP - ok
16:01:23.0386 4124 [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan C:\Windows\syswow64\speedfan.sys
16:01:23.0400 4124 speedfan - ok
16:01:23.0409 4124 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:01:23.0423 4124 spldr - ok
16:01:23.0538 4124 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:01:23.0596 4124 Spooler - ok
16:01:23.0679 4124 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:01:23.0828 4124 sppsvc - ok
16:01:23.0873 4124 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:01:23.0928 4124 sppuinotify - ok
16:01:23.0965 4124 [ D6AB7C13FCDD2E4CAC35244D2C172D9A ] sptd C:\Windows\System32\Drivers\sptd.sys
16:01:24.0021 4124 sptd - ok
16:01:24.0232 4124 [ 45E65FB17A4CD5FACBD3CA16C8334C82 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
16:01:24.0277 4124 SQLAgent$SQLEXPRESS - ok
16:01:24.0341 4124 [ 10D936DCED9EACD1A1B3FCDDA6D7A4EB ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
16:01:24.0357 4124 SQLBrowser - ok
16:01:24.0434 4124 [ F92E5F93BE572B512DA3C016B675EDE0 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
16:01:24.0448 4124 SQLWriter - ok
16:01:24.0547 4124 [ 2FD9346F9D76CB4192D37329CFA47A82 ] SRTSP C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS
16:01:24.0572 4124 SRTSP - ok
16:01:24.0600 4124 [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS
16:01:24.0612 4124 SRTSPX - ok
16:01:24.0667 4124 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:01:24.0710 4124 srv - ok
16:01:24.0730 4124 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:01:24.0765 4124 srv2 - ok
16:01:24.0796 4124 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:01:24.0812 4124 srvnet - ok
16:01:24.0904 4124 [ 4905E29FE0BE2A4441E4D3AA9D4461C7 ] SrvUpdater C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe
16:01:24.0940 4124 SrvUpdater ( UnsignedFile.Multi.Generic ) - warning
16:01:24.0940 4124 SrvUpdater - detected UnsignedFile.Multi.Generic (1)
16:01:24.0983 4124 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:01:25.0037 4124 SSDPSRV - ok
16:01:25.0058 4124 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:01:25.0108 4124 SstpSvc - ok
16:01:25.0160 4124 [ EF806D212D34B0E173BAEB3564D53E37 ] ss_bbus C:\Windows\system32\DRIVERS\ss_bbus.sys
16:01:25.0174 4124 ss_bbus - ok
16:01:25.0216 4124 [ 08B1B34ABEBEB6AC2DEA06900C56411E ] ss_bmdfl C:\Windows\system32\DRIVERS\ss_bmdfl.sys
16:01:25.0227 4124 ss_bmdfl - ok
16:01:25.0245 4124 [ 71A9DA6BEAA4CB54DFB827FB78600A5D ] ss_bmdm C:\Windows\system32\DRIVERS\ss_bmdm.sys
16:01:25.0258 4124 ss_bmdm - ok
16:01:25.0321 4124 [ E5C796B621F6FBA8616511063D7F0FFE ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
16:01:25.0332 4124 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
16:01:25.0332 4124 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
16:01:25.0366 4124 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:01:25.0380 4124 stexstor - ok
16:01:25.0456 4124 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:01:25.0509 4124 stisvc - ok
16:01:25.0569 4124 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:01:25.0583 4124 swenum - ok
16:01:25.0604 4124 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:01:25.0665 4124 swprv - ok
16:01:25.0726 4124 [ 52DC0048D667757A8A2E4C87182890AC ] SymDS C:\Windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS
16:01:25.0745 4124 SymDS - ok
16:01:25.0776 4124 [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA C:\Windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS
16:01:25.0821 4124 SymEFA - ok
16:01:25.0879 4124 [ F19E5E37ED8134B9E5F6287F2D3A75D7 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
16:01:25.0894 4124 SymEvent - ok
16:01:25.0912 4124 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS
16:01:25.0926 4124 SymIRON - ok
16:01:25.0978 4124 [ 9CDCA70485BD6B9D230365F67C31F132 ] SymNetS C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS
16:01:25.0997 4124 SymNetS - ok
16:01:26.0065 4124 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:01:26.0148 4124 SysMain - ok
16:01:26.0182 4124 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:01:26.0220 4124 TabletInputService - ok
16:01:26.0247 4124 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:01:26.0285 4124 TapiSrv - ok
16:01:26.0313 4124 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:01:26.0349 4124 TBS - ok
16:01:26.0671 4124 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:01:26.0748 4124 Tcpip - ok
16:01:26.0811 4124 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:01:26.0848 4124 TCPIP6 - ok
16:01:26.0879 4124 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:01:26.0912 4124 tcpipreg - ok
16:01:26.0958 4124 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:01:27.0013 4124 TDPIPE - ok
16:01:27.0064 4124 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:01:27.0099 4124 TDTCP - ok
16:01:27.0157 4124 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:01:27.0209 4124 tdx - ok
16:01:27.0318 4124 [ A4D2CE94B028EF1E437CF4AC3D8FF26C ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
16:01:27.0392 4124 TeamViewer7 - ok
16:01:27.0451 4124 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:01:27.0472 4124 TermDD - ok
16:01:27.0498 4124 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:01:27.0541 4124 TermService - ok
16:01:27.0546 4124 TFsExDisk - ok
16:01:27.0615 4124 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:01:27.0635 4124 Themes - ok
16:01:27.0669 4124 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:01:27.0703 4124 THREADORDER - ok
16:01:27.0758 4124 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:01:27.0817 4124 TrkWks - ok
16:01:27.0924 4124 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:01:27.0960 4124 TrustedInstaller - ok
16:01:27.0988 4124 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:01:28.0036 4124 tssecsrv - ok
16:01:28.0085 4124 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:01:28.0110 4124 TsUsbFlt - ok
16:01:28.0169 4124 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:01:28.0219 4124 tunnel - ok
16:01:28.0304 4124 [ 1A006963644C7FDE5BE60036F3A43E68 ] TVICHW32 C:\Program Files (x86)\GIGABYTE\EasyBoost\TVicHW64.sys
16:01:28.0316 4124 TVICHW32 - ok
16:01:28.0347 4124 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:01:28.0361 4124 uagp35 - ok
16:01:28.0374 4124 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
16:01:28.0385 4124 UBHelper - ok
16:01:28.0403 4124 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:01:28.0456 4124 udfs - ok
16:01:28.0495 4124 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:01:28.0526 4124 UI0Detect - ok
16:01:28.0549 4124 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:01:28.0566 4124 uliagpkx - ok
16:01:28.0602 4124 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
16:01:28.0637 4124 umbus - ok
16:01:28.0662 4124 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:01:28.0698 4124 UmPass - ok
16:01:28.0811 4124 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
16:01:28.0829 4124 UMVPFSrv - ok
16:01:28.0926 4124 [ 93B73DED2BC688F140C6AE2FBAD45789 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
16:01:28.0938 4124 Updater Service - ok
16:01:29.0000 4124 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:01:29.0057 4124 upnphost - ok
16:01:29.0096 4124 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:01:29.0114 4124 usbaudio - ok
16:01:29.0124 4124 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:01:29.0146 4124 usbccgp - ok
16:01:29.0177 4124 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:01:29.0195 4124 usbcir - ok
16:01:29.0221 4124 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:01:29.0260 4124 usbehci - ok
16:01:29.0304 4124 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:01:29.0344 4124 usbhub - ok
16:01:29.0371 4124 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:01:29.0415 4124 usbohci - ok
16:01:29.0465 4124 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:01:29.0497 4124 usbprint - ok
16:01:29.0529 4124 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:01:29.0561 4124 usbscan - ok
16:01:29.0582 4124 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:01:29.0604 4124 USBSTOR - ok
16:01:29.0618 4124 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:01:29.0633 4124 usbuhci - ok
16:01:29.0646 4124 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
16:01:29.0667 4124 usbvideo - ok
16:01:29.0681 4124 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:01:29.0733 4124 UxSms - ok
16:01:29.0775 4124 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:01:29.0788 4124 VaultSvc - ok
16:01:29.0853 4124 [ 63AFB86575F712422014554F74329A00 ] VCSVADHWSer C:\Windows\system32\DRIVERS\vcsvad.sys
16:01:29.0867 4124 VCSVADHWSer - ok
16:01:29.0894 4124 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:01:29.0908 4124 vdrvroot - ok
16:01:29.0956 4124 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:01:30.0001 4124 vds - ok
16:01:30.0021 4124 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:01:30.0039 4124 vga - ok
16:01:30.0060 4124 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:01:30.0112 4124 VgaSave - ok
16:01:30.0165 4124 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:01:30.0188 4124 vhdmp - ok
16:01:30.0216 4124 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:01:30.0229 4124 viaide - ok
16:01:30.0302 4124 [ 0C3E6CD5FAB4E3758924E08B626E1650 ] Video downloader Updater C:\Program Files\Video downloader\ExtensionUpdaterService.exe
16:01:30.0314 4124 Video downloader Updater - ok
16:01:30.0329 4124 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:01:30.0344 4124 volmgr - ok
16:01:30.0384 4124 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:01:30.0404 4124 volmgrx - ok
16:01:30.0424 4124 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:01:30.0443 4124 volsnap - ok
16:01:30.0484 4124 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:01:30.0500 4124 vsmraid - ok
16:01:30.0568 4124 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:01:30.0659 4124 VSS - ok
16:01:30.0691 4124 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:01:30.0708 4124 vwifibus - ok
16:01:30.0758 4124 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:01:30.0777 4124 vwififlt - ok
16:01:30.0820 4124 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:01:30.0856 4124 vwifimp - ok
16:01:30.0891 4124 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:01:30.0949 4124 W32Time - ok
16:01:30.0970 4124 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:01:30.0984 4124 WacomPen - ok
16:01:31.0026 4124 [ 4AA2CC5979AFF984227364F2C23B04F3 ] WajamUpdater C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
16:01:31.0051 4124 WajamUpdater ( UnsignedFile.Multi.Generic ) - warning
16:01:31.0052 4124 WajamUpdater - detected UnsignedFile.Multi.Generic (1)
16:01:31.0092 4124 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:01:31.0127 4124 WANARP - ok
16:01:31.0131 4124 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:01:31.0163 4124 Wanarpv6 - ok
16:01:31.0230 4124 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:01:31.0289 4124 wbengine - ok
16:01:31.0306 4124 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:01:31.0342 4124 WbioSrvc - ok
16:01:31.0402 4124 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:01:31.0465 4124 wcncsvc - ok
16:01:31.0489 4124 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:01:31.0544 4124 WcsPlugInService - ok
16:01:31.0569 4124 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:01:31.0583 4124 Wd - ok
16:01:31.0701 4124 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:01:31.0771 4124 Wdf01000 - ok
16:01:31.0785 4124 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:01:31.0888 4124 WdiServiceHost - ok
16:01:31.0892 4124 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:01:31.0911 4124 WdiSystemHost - ok
16:01:31.0929 4124 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:01:31.0952 4124 WebClient - ok
16:01:31.0969 4124 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:01:32.0024 4124 Wecsvc - ok
16:01:32.0052 4124 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:01:32.0109 4124 wercplsupport - ok
16:01:32.0138 4124 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:01:32.0195 4124 WerSvc - ok
16:01:32.0226 4124 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:01:32.0260 4124 WfpLwf - ok
16:01:32.0277 4124 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:01:32.0291 4124 WIMMount - ok
16:01:32.0309 4124 WinDefend - ok
16:01:32.0333 4124 WinHttpAutoProxySvc - ok
16:01:32.0384 4124 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:01:32.0421 4124 Winmgmt - ok
16:01:32.0576 4124 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys
16:01:32.0592 4124 WinRing0_1_2_0 - ok
16:01:32.0645 4124 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:01:32.0736 4124 WinRM - ok
16:01:32.0813 4124 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:01:32.0831 4124 WinUsb - ok
16:01:32.0921 4124 [ A7C993F86BE5AF035DE06DF9160D7008 ] WiseBootAssistant C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe
16:01:32.0943 4124 WiseBootAssistant - ok
16:01:32.0985 4124 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:01:33.0034 4124 Wlansvc - ok
16:01:33.0658 4124 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:01:33.0734 4124 wlidsvc - ok
16:01:33.0775 4124 [ 680A7846370000D20D7E74917D5B7936 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
16:01:33.0786 4124 WmBEnum - ok
16:01:33.0854 4124 [ 14C35BA8189C6F65D839163AA285E954 ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
16:01:33.0865 4124 WmFilter - ok
16:01:33.0900 4124 [ AC4331AF118A720F13C9C5CABBFE27BD ] WmHidLo C:\Windows\system32\drivers\WmHidLo.sys
16:01:33.0913 4124 WmHidLo - ok
16:01:33.0925 4124 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:01:33.0956 4124 WmiAcpi - ok
16:01:34.0001 4124 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:01:34.0047 4124 wmiApSrv - ok
16:01:34.0086 4124 WMPNetworkSvc - ok
16:01:34.0095 4124 [ 8488DD91A3EE54A8E29F02AD7BB8201E ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
16:01:34.0107 4124 WmVirHid - ok
16:01:34.0120 4124 [ 14802B3A30AA849C97CB968CCC813BF3 ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
16:01:34.0133 4124 WmXlCore - ok
16:01:34.0280 4124 [ 495284CF894336E9512ED7C9ACB3548E ] WOTUpdater C:\Users\Yannick\AppData\LocalLow\WOT\IE\WOTUpdater.exe
16:01:34.0286 4124 WOTUpdater ( UnsignedFile.Multi.Generic ) - warning
16:01:34.0286 4124 WOTUpdater - detected UnsignedFile.Multi.Generic (1)
16:01:34.0305 4124 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:01:34.0354 4124 WPCSvc - ok
16:01:34.0411 4124 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:01:34.0446 4124 WPDBusEnum - ok
16:01:34.0464 4124 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:01:34.0529 4124 ws2ifsl - ok
16:01:34.0562 4124 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
16:01:34.0619 4124 wscsvc - ok
16:01:34.0623 4124 WSearch - ok
16:01:34.0825 4124 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:01:34.0931 4124 wuauserv - ok
16:01:34.0976 4124 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:01:35.0033 4124 WudfPf - ok
16:01:35.0071 4124 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:01:35.0110 4124 WUDFRd - ok
16:01:35.0187 4124 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:01:35.0218 4124 wudfsvc - ok
16:01:35.0257 4124 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
16:01:35.0310 4124 WwanSvc - ok
16:01:35.0365 4124 ================ Scan global ===============================
16:01:35.0392 4124 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:01:35.0435 4124 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
16:01:35.0445 4124 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
16:01:35.0467 4124 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:01:35.0501 4124 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:01:35.0506 4124 [Global] - ok
16:01:35.0506 4124 ================ Scan MBR ==================================
16:01:35.0525 4124 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:01:38.0939 4124 \Device\Harddisk0\DR0 - ok
16:01:38.0940 4124 ================ Scan VBR ==================================
16:01:38.0974 4124 [ A6C80B6233B05ECC62D5DAA114D7BCB7 ] \Device\Harddisk0\DR0\Partition1
16:01:38.0976 4124 \Device\Harddisk0\DR0\Partition1 - ok
16:01:39.0013 4124 [ 96DF291B9F1A0CE5C732CD30677F4215 ] \Device\Harddisk0\DR0\Partition2
16:01:39.0021 4124 \Device\Harddisk0\DR0\Partition2 - ok
16:01:39.0043 4124 [ 6E5027AD1699582A47C20C13EEFD8599 ] \Device\Harddisk0\DR0\Partition3
16:01:39.0049 4124 \Device\Harddisk0\DR0\Partition3 - ok
16:01:39.0049 4124 ============================================================
16:01:39.0049 4124 Scan finished
16:01:39.0049 4124 ============================================================
16:01:39.0061 4408 Detected object count: 10
16:01:39.0061 4408 Actual detected object count: 10
16:01:50.0516 4408 FirebirdGuardianDefaultInstance ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0516 4408 FirebirdGuardianDefaultInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0517 4408 FirebirdServerDefaultInstance ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0517 4408 FirebirdServerDefaultInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0519 4408 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0519 4408 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0521 4408 FreemakeVideoCapture ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0521 4408 FreemakeVideoCapture ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0523 4408 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0523 4408 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0525 4408 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0525 4408 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0527 4408 SrvUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0527 4408 SrvUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0529 4408 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0529 4408 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0530 4408 WajamUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0530 4408 WajamUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:50.0533 4408 WOTUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
16:01:50.0533 4408 WOTUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:01:54.0836 2044 Deinitialize success
|
|
04.07.2013, 19:38
| #15 |
| /// the machine /// TB-Ausbilder | Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? Frisches FRST Scanlog bitte
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Trojan.Zeroacces!inf 4 Wie bekomme ich ihn weg? |
| abgesicherte, abgesicherten, abgesicherten modus, angezeigt, desktop, gestern, helft, heute, maus, modus, normale, normalen, norton, problem, schlägt, sitze, stunde, stunden, system.exe, troja, virus |
Linear-Darstellung
