| |
| |||||||
Log-Analyse und Auswertung: Whitescreen "Verbindung wird hergestellt..." + LogWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
15.08.2013, 17:07
| #1 |
| |  Whitescreen "Verbindung wird hergestellt..." + Log Hallo, ich habe hier einen alten Laptop ausgekramt, bei dem nach dem Systemstart (auch abgesicherter Modus) ein weißer Bildschirm erscheint mit der Textzeile: Verbindung wird hergestellt... balbalab" Wurde hier auch schon öfter durchgekaut. Ich habe die Themen gelesen und mit OTLPE gebootet und die Logs erstellt (im Anhang). Nun brauche ich quasi nur noch den Fix. Hoffentlich könnt ihr mir helfen, ohne, dass ich den ganzen Laptop neu aufsetzen muss. Vielen Dank schonmal. MfG Notiz: Die OTL.txt war zu groß, um sie im vbulletin Uploader hochzuladen, deswegen habe ich diese auf pastebin geladen. Ich hoffe, dass das kein Problem ist. hxxp://pastebin.com/5LjkpdJm |
|
15.08.2013, 18:18
| #2 |
| /// the machine /// TB-Ausbilder    | Whitescreen "Verbindung wird hergestellt..." + Log hi,
__________________teile das Log in Stücke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
16.08.2013, 08:07
| #3 |
| | Whitescreen "Verbindung wird hergestellt..." + Log Extra.txt:
__________________Code:
ATTFilter OTL Extras logfile created on: 8/15/2013 7:05:07 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Windows Vista (TM) Home Premium (Version = 6.0.6000) - Type = System
Internet Explorer (Version = 7.0.6000.16982)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69.78 Gb Total Space | 11.37 Gb Free Space | 16.29% Space Free | Partition Type: NTFS
Drive D: | 69.51 Gb Total Space | 20.99 Gb Free Space | 30.20% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
========== Extra Registry (All) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\System32\mshta.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf [@ = inffile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
.js [@ = JSFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.reg [@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation)
.txt [@ = txtfile] -- C:\Windows\System32\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\Windows\System32\WScript.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\system32\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
InternetShortcut [print] -- rundll32.exe C:\Windows\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{04B45310-A5FE-4425-BFCA-1A6D8920DE74}" = OpenOffice.org 3.0
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{089B527F-71D8-A189-52F2-608D18E2629E}" = Catalyst Control Center Localization French
"{100F1E9F-9E5A-A6D5-EA06-9B7C7A164260}" = CCC Help English
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{11316260-6666-467B-AC34-183FCB5D4335}" = Acer Mobility Center Plug-In
"{1161D512-0A42-2A46-61F9-8D080928E36F}" = Catalyst Control Center Localization Chinese Standard
"{116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}" = Acer eLock Management
"{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}" = LG PC Suite II
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"{18C018C3-452F-41FD-BABE-4568A953C036}" = TechnoMage
"{1E0A0234-2A40-11A7-0BFA-3AD17390156A}" = Catalyst Control Center Graphics Previews Vista
"{1E3ABA8F-68B2-BE73-3007-C65E4BF40318}" = Catalyst Control Center Localization Hungarian
"{1E8E1865-3388-902F-C614-CF4C5D0AC6F3}" = Catalyst Control Center Graphics Previews Common
"{26286999-D97D-7DB1-0DFD-91DC24392D10}" = CCC Help Russian
"{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
"{270DC93A-198E-23CA-33AE-F6B53638D48D}" = CCC Help Danish
"{2C37F3BB-40DD-FB52-6D18-02C7B9DC6AE7}" = CCC Help Chinese Standard
"{2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}" = SymNet
"{2E2E6F05-21E5-9915-37CB-82413671A746}" = Catalyst Control Center Graphics Full New
"{3038FE0E-0404-B7D0-8D6F-7168E05B8E56}" = CCC Help German
"{314F37FA-CD34-0B16-29AF-A7FE3DDCA912}" = Catalyst Control Center Graphics Light
"{34ED728D-ECE5-4A0D-9963-B54B318D0932}" = ccc-Branding
"{35303F97-11D7-C365-AC2A-FF05D8A063B2}" = CCC Help Czech
"{35658970-56F2-04DD-229F-21681C97E0F6}" = Catalyst Control Center Localization Russian
"{3672B097-EA69-4bfe-B92F-29AE6D9D2B34}" = Norton Internet Security
"{36ADF254-0401-B88B-D5BF-AABFC4378DDA}" = CCC Help Norwegian
"{381DCEB5-0372-2FB1-C283-9EEA909E0741}" = Catalyst Control Center Localization Norwegian
"{394F7A5B-336D-5463-83B4-83E470FCD56C}" = Skins
"{3A7B797C-D53A-3E14-7AA9-C35B6F4ACC73}" = Catalyst Control Center Localization Finnish
"{3BB8D024-BF3F-5378-C34E-E79A6FF767FF}" = CCC Help Russian
"{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}" = ccCommon
"{3E6AFB15-0F47-9D37-B1E1-CD81E00B911F}" = CCC Help English
"{400A8618-1608-3682-1249-E3EA4B9E87B6}" = Catalyst Control Center Localization Turkish
"{4160DC5B-4C56-D0C3-C5FD-F5BDAD3C882B}" = ATI Catalyst Install Manager
"{43A35C49-0E70-6A86-B12F-116D73B89E8E}" = Catalyst Control Center Localization Chinese Traditional
"{44DB81F7-5E93-777D-6C93-8B0729BCADD0}" = CCC Help Polish
"{44E6626B-57DD-4521-FBB3-F71ED76FE8EA}" = CCC Help Portuguese
"{45CA4898-719E-52F9-786B-7CDE924D06C6}" = Catalyst Control Center Localization German
"{46EF5665-23F6-B09A-5358-82576144BCAE}" = CCC Help Finnish
"{478F8424-10B6-1516-3FE7-57EDBF113212}" = CCC Help Chinese Standard
"{47A5A141-C326-AD10-2046-4519455DE0AC}" = Catalyst Control Center Core Implementation
"{48185814-A224-447A-81DA-71BD20580E1B}" = Norton Internet Security
"{4843B611-8FCB-4428-8C23-31D0A5EAE164}" = Norton Confidential Browser Component
"{48C4381D-7DF6-35C5-A77D-2AF87D491284}" = Catalyst Control Center Localization Finnish
"{490F34DA-BBF2-8C03-1BE1-7587A8F3297F}" = CCC Help Korean
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AC08D6B-8DED-A952-A2F4-7AB3D2B4361B}" = CCC Help Turkish
"{4BB1DCED-84D3-47F9-B718-5947E904593E}" = Acer OrbiCam
"{4CA80740-E2B1-41FF-C4A9-A3878C51191B}" = Catalyst Control Center Localization Japanese
"{4DC809F5-90C1-A199-759C-20DCAEFFE37A}" = Catalyst Control Center Localization Chinese Traditional
"{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}" = Microsoft Works
"{4F1DA6BF-3614-48A1-9970-9E90F646789E}" = Ulead VideoStudio 8.0 SE Basic
"{5309BBA9-B94A-5874-C6DF-995D577C9738}" = Catalyst Control Center Localization Czech
"{537ECCE7-EA10-2097-22BF-DC3578459111}" = CCC Help Greek
"{5479CB0D-0CB1-1721-07EE-1B3AA00D461B}" = CCC Help Korean
"{56FFC7C4-0117-94D6-9B6E-6B053B7D7523}" = Catalyst Control Center Localization Portuguese
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management
"{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}" = Norton Internet Security
"{5BFC0259-D07A-98CC-A6D5-C22770F9DCD4}" = Catalyst Control Center Localization Spanish
"{5FB59518-6B2E-B62E-0398-AFBE475B8AF1}" = CCC Help French
"{5FC77015-2AC3-260C-6167-11944DEAA9AD}" = CCC Help Norwegian
"{614444AE-DE33-0BFC-325A-C3272B93E825}" = Catalyst Control Center Localization Portuguese
"{649EBDA0-DE80-4935-D403-530EBD9826FC}" = CCC Help Dutch
"{64B69740-D11B-37A1-B7DB-6E7E90638728}" = CCC Help Italian
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{67ADE9AF-5CD9-4089-8825-55DE4B366799}" = NTI Backup NOW! 4.7
"{68FF49E6-3894-1420-10FF-F4FEE62CB6DE}" = Catalyst Control Center Localization Thai
"{6929E54F-351F-8124-A275-E71000018E69}" = Catalyst Control Center Localization Polish
"{69C18158-FBAE-F975-26DE-7C36EAE64DC3}" = Catalyst Control Center Localization Thai
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{71360149-4683-56E2-3E89-CB6F5F459BE3}" = Catalyst Control Center Localization Dutch
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77772678-817F-4401-9301-ED1D01A8DA56}" = SPBBC 32bit
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{79BB5651-ED90-06CE-0DF1-C66DAB9313B9}" = CCC Help Spanish
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{7A1A458A-18F5-D4FE-6155-E1F774246DB9}" = Catalyst Control Center Localization Russian
"{7A27764B-5434-4DAA-BD43-3ACF4FFCD7FE}" = SweetIM Toolbar for Internet Explorer 3.8
"{7D618758-0626-8AD7-78A4-DAEE64131F39}" = Catalyst Control Center Localization Korean
"{830D8CBD-C668-49e2-A969-C2C2106332E0}" = Norton AntiVirus
"{86087A16-FDFC-6DB2-793F-C62DF17A967E}" = CCC Help Swedish
"{868C4EDC-E8DD-59A0-6A47-194817C5F11F}" = CCC Help Portuguese
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{874DA2F5-79A7-5F13-5F00-852F102F6A86}" = Catalyst Control Center Localization Italian
"{8AF46C83-08E1-8184-929B-709DB8A2BE1A}" = CCC Help Spanish
"{8C468404-1675-A336-DA0E-406440594C4E}" = Catalyst Control Center Localization German
"{8CBA2A0E-C96D-943B-37E8-933CCB52AD01}" = CCC Help Greek
"{8D55C829-384F-1B2B-EF02-26FD0D3E9E64}" = CCC Help Hungarian
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{9041748F-94DC-9FE2-E9DC-1FEBB33ACFBC}" = Catalyst Control Center Localization Japanese
"{90FB9587-8A22-1453-E8E6-3E358605EB38}" = CCC Help German
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{913B22B3-7EE3-3488-173E-FC9C07AF6B51}" = CCC Help Danish
"{9201CBD3-5EED-EBE2-1CD9-0C47440DCC60}" = Catalyst Control Center Localization Hungarian
"{94389919-B0AA-4882-9BE8-9F0B004ECA35}" = Acer Tour
"{9440B693-A58F-C2AD-FFC2-A404ECB8CDC4}" = Catalyst Control Center Localization Danish
"{9A129ABC-A53A-4209-A21E-D5DEDFB7CCA8}" = Norton Protection Center
"{9C51AC8F-AD40-9CF4-AFCC-49F67EF58CE7}" = Catalyst Control Center Graphics Full Existing
"{9F0CC529-0F2B-83F8-DAEE-9FEBCB11C579}" = Catalyst Control Center Localization Swedish
"{9F3CF960-81D1-19DF-6DCA-2DEA3BFF2AE1}" = CCC Help Turkish
"{A2B50900-EC7F-2737-C408-BC3FF100F335}" = CCC Help Chinese Traditional
"{A6D106E7-C1B9-C837-8938-1B0801AA89E2}" = Catalyst Control Center Localization Polish
"{A87B11AC-4344-4E5D-8B12-8F471A87DAD9}" = LightScribe 1.4.136.1
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}" = Acer Empowering Technology
"{AC76BA86-7AD7-1031-7B44-A91000000001}" = Adobe Reader 9.1 - Deutsch
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AD36DAF3-44A7-A4EC-E0D8-AD588DE22076}" = CCC Help Japanese
"{AEEAE013-92F1-4515-B278-139F1A692A36}" = Acer eDataSecurity Management
"{AFD05227-9B6A-D79A-4077-D95433424CBB}" = Catalyst Control Center Localization Turkish
"{B5A0DCB5-2521-7186-D1C7-101A04833DEF}" = CCC Help Thai
"{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}" = Apple Software Update
"{B79E070F-D77C-F4E8-0228-7958B5E89963}" = CCC Help Finnish
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{B7C61755-DB48-4003-948F-3D34DB8EAF69}" = MSRedist
"{B9242864-2841-4ADE-86E0-8F90F91B04DD}" = Logitech Gaming Software
"{BA33A95C-AB2D-B00B-E6B0-63827FA399E0}" = Catalyst Control Center Graphics Previews Vista
"{BBC4DE36-34F7-9962-E69B-A64A6BD80E6A}" = Catalyst Control Center Graphics Previews Common
"{BCB6A03C-7D63-A17B-C91E-9B13EEAA725F}" = CCC Help Hungarian
"{BF839132-BD43-4056-ACBF-4377F4A88E2A}" = Acer ePresentation Management
"{BFD96B89-B769-4CD6-B11E-E79FFD46F067}" = QuickTime
"{C06554A1-2C1E-4D20-B613-EE62C79927CC}" = Acer eNet Management
"{C308E43D-8F0B-05F0-C6E9-8511BC8CA5E9}" = CCC Help Thai
"{C3ABE126-2BB2-4246-BFE1-6797679B3579}" = LG USB Modem driver
"{C3E865B9-C89D-289E-1F94-A2A8EF3B1420}" = Catalyst Control Center Localization Chinese Standard
"{C4ACE6CB-282E-B8B9-C3B2-1FEB50E9B5DF}" = CCC Help French
"{C7340571-7773-4A8C-9EBC-4E4243B38C76}" = Microsoft XML Parser
"{C7A43F17-9177-5CBF-6DE1-3972DA387F49}" = CCC Help Japanese
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE65A9A0-9686-45C6-9098-3C9543A412F0}" = Acer eSettings Management
"{D271DAE0-8D68-4C97-8356-A126D48A1D8C}" = Ulead Photo Explorer 8.0 SE Basic
"{D353CC51-430D-4C6F-9B7E-52003DA1E05A}" = Norton Confidential Web Protection Component
"{D6E6FA4A-5445-4850-8365-CF216C1CBB7A}" = Symantec Real Time Storage Protection Component
"{D754B497-E4A8-4F54-A528-3AFC637DFB14}" = Catalyst Control Center Localization Korean
"{D82AC4E9-AE8F-0244-8757-2F3A7FF7C053}" = Catalyst Control Center Localization Norwegian
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DD1DED37-2486-4F56-8F89-56AA814003F5}" = Acer OrbiCam
"{DE2426EC-1385-CDA0-A307-78A57F1E4FD4}" = CCC Help Swedish
"{DFD969AB-56EF-9A2C-87D2-30A3D5E588FB}" = Catalyst Control Center Localization French
"{E32DE61D-CAD1-FB3D-0D94-631F71469C05}" = CCC Help Czech
"{E387CEA0-8441-0347-0FD9-829EE7F6F6CD}" = Catalyst Control Center Localization Spanish
"{E3899B68-AAB0-EA5B-81EF-4CC98564248C}" = Catalyst Control Center Localization Italian
"{E3B76221-E0D4-FC2B-FDBD-3070503BB708}" = ccc-utility
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}" = Norton Internet Security
"{E40D701F-D184-C7A3-83E8-7932ED54CF1F}" = Catalyst Control Center Localization Greek
"{E5EE9939-259F-4DE2-8023-5C49E16A4F43}" = Norton Internet Security
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{E826B719-9EF5-B3A9-8A84-0C5591287F02}" = Catalyst Control Center Localization Swedish
"{E99A280C-696E-0491-1FF1-564A18AB6D7B}" = Catalyst Control Center Localization Greek
"{EB3BA059-0CB5-3047-862E-CEF53E2B1B65}" = CCC Help Italian
"{EC105691-DFC0-35CE-86F7-11588BF2AE74}" = ccc-core-static
"{EC295C23-2E4B-5699-ADB5-4F05E0CDC044}" = CCC Help Chinese Traditional
"{EC3462E6-05F1-768D-9755-FB5AD32B628E}" = CCC Help Polish
"{EF5B1E83-1403-4F0E-A8E6-C169DF0CCE8C}" = LG PC Suite II
"{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}" = AppCore
"{EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}" = Acer Arcade Deluxe
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F225526D-9B2A-955A-8B44-045B028D5BA7}" = Catalyst Control Center Localization Dutch
"{F4DB525F-A986-4249-B98B-42A8066251CA}" = AV
"{F727DCA7-4B7B-4CF5-8348-881BF3B0D046}" = SweetIM for Messenger 3.1
"{F9680369-1B2F-46C2-B269-16DE245D97C8}" = CCC Help Dutch
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player
"Amazon MP3-Downloader" = Amazon MP3-Downloader 1.0.9
"ATI Uninstaller" = ATI Uninstaller
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"dBpowerAMP Music Converter" = dBpowerAMP Music Converter
"Digitale Bibliothek 4" = Digitale Bibliothek 4
"Firebird SQL Server D" = Firebird SQL Server - MAGIX Edition (D)
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.2
"GameSpy Arcade" = GameSpy Arcade
"GridVista" = Acer GridVista
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ICQToolbar" = ICQ Toolbar
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}" = NTI CD & DVD-Maker
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"LManager" = Launch Manager
"MAGIX Foto Manager 2007 D" = MAGIX Foto Manager 2007 (D)
"MAGIX Fotos auf CD & DVD 6 D" = MAGIX Fotos auf CD & DVD 6 (D)
"MAGIX Goya burnR D" = MAGIX Goya burnR (D)
"MAGIX Music Manager 2006 D" = MAGIX Music Manager 2006 (D)
"MAGIX Online Druck Service D" = MAGIX Online Druck Service (D)
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mobile Partner" = Mobile Partner
"Mozilla Firefox 12.0 (x86 de)" = Mozilla Firefox 12.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NeroVision!UninstallKey" = Nero Digital
"New LEGO Digital Designer" = LEGO Digital Designer
"PCFriendly" = PCFriendly
"Philips Songbird" = Philips Songbird
"RTP for RM2K (Png, Wav, Midi, Fonts)" = RTP for RM2K (Png, Wav, Midi, Fonts)
"Shockwave" = Shockwave
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"Sierra-Dienstprogramme" = Sierra-Dienstprogramme
"SymSetup.{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}" = Norton Internet Security (Symantec Corporation)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TmNations_is1" = TrackMania Nations ESWC 0.1.7.5
"Uninstall_is1" = Uninstall 1.0.0.1
"Videoload Manager" = Videoload Manager 2.0.2171
"VLC media player" = VideoLAN VLC media player 0.8.4a
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"Yahoo! Companion" = Yahoo! Toolbar mit Pop-Up-Blocker
"Yahoo! Toolbar" = Yahoo! Toolbar
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\Besitzer_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Yahoo! BrowserPlus" = Yahoo! BrowserPlus 2.9.8
< End of report >
Code:
ATTFilter OTL logfile created on: 8/15/2013 7:05:07 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Windows Vista (TM) Home Premium (Version = 6.0.6000) - Type = System
Internet Explorer (Version = 7.0.6000.16982)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69.78 Gb Total Space | 11.37 Gb Free Space | 16.29% Space Free | Partition Type: NTFS
Drive D: | 69.51 Gb Total Space | 20.99 Gb Free Space | 30.20% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
========== Win32 Services (All) ==========
SRV - File not found [Auto] -- -- (wpsdrvnt)
SRV - File not found [Auto] -- -- (VirtualCam)
SRV - File not found [Auto] -- -- (NTACCESS)
SRV - File not found [Auto] -- -- (lxcr_device)
SRV - File not found [Auto] -- -- (lvcomser)
SRV - File not found [Auto] -- -- (k750bus)
SRV - File not found [Auto] -- -- (cis1284)
SRV - File not found [Auto] -- -- (cdr4_2k)
SRV - [2012/04/30 04:03:27 | 000,253,088 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/04/28 12:01:11 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2010/11/21 05:49:24 | 000,247,608 | ---- | M] () [Auto] -- C:\Program Files\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2010/01/15 08:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2010/01/06 22:12:31 | 000,542,720 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\sysmain.dll -- (SysMain)
SRV - [2010/01/06 22:11:57 | 000,502,272 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2010/01/06 22:11:19 | 000,007,680 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2010/01/06 22:11:19 | 000,007,680 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
SRV - [2010/01/06 22:11:19 | 000,007,680 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\lsass.exe -- (Netlogon)
SRV - [2010/01/06 22:11:19 | 000,007,680 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2010/01/06 22:04:26 | 000,221,696 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2010/01/06 22:04:24 | 000,595,456 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2010/01/06 22:04:24 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\servicing\TrustedInstaller.exe -- (TrustedInstaller)
SRV - [2009/11/04 08:19:05 | 001,929,952 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2009/11/01 22:02:12 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2009/10/30 15:04:39 | 000,549,888 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2009/10/30 15:04:39 | 000,549,888 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2009/10/30 15:03:34 | 000,057,856 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\SLUINotify.dll -- (SLUINotify)
SRV - [2009/10/30 15:03:33 | 002,605,568 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\SLsvc.exe -- (slsvc)
SRV - [2009/10/30 06:21:47 | 000,361,984 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
SRV - [2009/10/30 06:19:13 | 000,194,560 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\WebClnt.dll -- (WebClient)
SRV - [2009/10/30 06:09:03 | 000,156,160 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)
SRV - [2009/10/29 22:08:28 | 000,083,968 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2009/10/29 22:04:05 | 000,750,080 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2009/08/24 08:47:07 | 000,378,368 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2008/11/03 19:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008/07/27 14:00:25 | 000,069,632 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/06/19 21:18:04 | 000,046,104 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0)
SRV - [2008/06/19 21:17:50 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008/06/19 21:17:49 | 000,881,664 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc)
SRV - [2008/01/29 12:38:32 | 000,583,048 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/09/26 05:53:56 | 002,999,664 | ---- | M] (Symantec Corporation) [On_Demand] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate)
SRV - [2007/09/26 05:53:56 | 000,554,352 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Automatisches LiveUpdate - Scheduler)
SRV - [2007/07/12 00:09:14 | 000,286,208 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2007/06/28 22:21:13 | 000,134,656 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\dps.dll -- (DPS)
SRV - [2007/06/25 22:49:06 | 000,204,800 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\dhcpcsvc.dll -- (Dhcp)
SRV - [2007/04/24 13:17:34 | 000,024,576 | ---- | M] () [Auto] -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService)
SRV - [2007/04/05 18:26:16 | 000,569,344 | ---- | M] (ATI Technologies Inc.) [Auto] -- C:\Windows\System32\Ati2evxx.exe -- (Ati External Event Utility)
SRV - [2007/04/05 00:06:21 | 001,174,152 | ---- | M] (Symantec Corporation) [On_Demand] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2007/03/22 12:21:52 | 000,131,072 | ---- | M] (Acer Inc.) [Auto] -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service)
SRV - [2007/02/06 18:04:26 | 000,457,512 | ---- | M] (HiTRSUT) [Auto] -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe -- (eDataSecurity Service)
SRV - [2007/01/31 12:18:42 | 000,053,248 | ---- | M] (Acer Inc.) [Auto] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/01/26 08:24:42 | 000,050,688 | ---- | M] () [Auto] -- C:\Acer\ALaunch\ALaunchSvc.exe -- (ALaunchService)
SRV - [2007/01/02 03:33:24 | 000,135,168 | ---- | M] (acer) [Auto] -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService)
SRV - [2006/12/22 08:43:18 | 000,024,576 | ---- | M] (Acer Inc.) [Auto] -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService)
SRV - [2006/12/14 11:49:10 | 000,061,440 | ---- | M] (Hewlett-Packard Company) [Auto] -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2006/11/24 06:57:54 | 000,107,008 | ---- | M] () [Auto] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)
SRV - [2006/11/21 00:39:34 | 000,107,624 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice Ex)
SRV - [2006/11/21 00:39:34 | 000,107,624 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)
SRV - [2006/11/21 00:39:34 | 000,107,624 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2006/11/21 00:39:34 | 000,107,624 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2006/11/21 00:38:24 | 000,046,736 | ---- | M] (Symantec Corporation) [Auto] -- C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe -- (SymAppCore)
SRV - [2006/11/21 00:37:18 | 000,049,296 | ---- | M] (Symantec Corporation) [On_Demand] -- C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)
SRV - [2006/11/21 00:36:32 | 000,080,552 | ---- | M] (Symantec Corporation) [On_Demand] -- C:\Program Files\Norton Internet Security\isPwdSvc.exe -- (ISPwdSvc)
SRV - [2006/11/02 08:36:25 | 002,089,984 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\dfsr.exe -- (DFSR)
SRV - [2006/11/02 08:36:16 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2006/11/02 08:36:04 | 000,895,488 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2006/11/02 08:35:58 | 000,070,144 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wpdbusenum.dll -- (WPDBusEnum)
SRV - [2006/11/02 08:35:38 | 000,656,384 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\p2psvc.dll -- (PNRPsvc)
SRV - [2006/11/02 08:35:38 | 000,656,384 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\p2psvc.dll -- (PNRPAutoReg)
SRV - [2006/11/02 08:35:38 | 000,656,384 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\p2psvc.dll -- (p2psvc)
SRV - [2006/11/02 08:35:38 | 000,656,384 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\p2psvc.dll -- (p2pimsvc)
SRV - [2006/11/02 08:35:35 | 000,141,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wpcsvc.dll -- (WPCSvc)
SRV - [2006/11/02 08:35:32 | 000,051,712 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Windows\System32\Mcx2Svc.dll -- (Mcx2Svc)
SRV - [2006/11/02 08:35:29 | 000,131,072 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\ehome\ehsched.exe -- (ehSched)
SRV - [2006/11/02 08:35:29 | 000,013,312 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\ehome\ehstart.dll -- (ehstart)
SRV - [2006/11/02 08:35:28 | 000,291,840 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\ehome\ehrecvr.exe -- (ehRecvr)
SRV - [2006/11/02 08:35:24 | 000,068,096 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\TabSvc.dll -- (TabletInputService)
SRV - [2006/11/02 08:34:46 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\SearchIndexer.exe -- (WSearch)
SRV - [2006/11/02 08:34:41 | 000,451,584 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wiaservc.dll -- (stisvc)
SRV - [2006/11/02 08:34:35 | 000,560,640 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\emdmgmt.dll -- (EMDMgmt)
SRV - [2006/11/02 08:34:35 | 000,249,344 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wcncsvc.dll -- (wcncsvc)
SRV - [2006/11/02 08:34:31 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\qwave.dll -- (QWAVE)
SRV - [2006/11/02 08:34:30 | 000,037,888 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\pcasvc.dll -- (PcaSvc)
SRV - [2006/11/02 05:46:16 | 000,055,296 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\WUDFSvc.dll -- (wudfsvc)
SRV - [2006/11/02 05:46:14 | 000,450,048 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\WsmSvc.dll -- (WinRM)
SRV - [2006/11/02 05:46:14 | 000,161,280 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2006/11/02 05:46:13 | 000,989,696 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wevtsvc.dll -- (Eventlog)
SRV - [2006/11/02 05:46:13 | 000,427,520 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\termsrv.dll -- (TermService)
SRV - [2006/11/02 05:46:13 | 000,292,864 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2006/11/02 05:46:13 | 000,270,848 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\w32time.dll -- (W32Time)
SRV - [2006/11/02 05:46:13 | 000,259,072 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\upnphost.dll -- (upnphost)
SRV - [2006/11/02 05:46:13 | 000,245,248 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\shsvcs.dll -- (Themes)
SRV - [2006/11/02 05:46:13 | 000,245,248 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
SRV - [2006/11/02 05:46:13 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2006/11/02 05:46:13 | 000,155,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\ssdpsrv.dll -- (SSDPSRV)
SRV - [2006/11/02 05:46:13 | 000,152,576 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wecsvc.dll -- (Wecsvc)
SRV - [2006/11/02 05:46:13 | 000,127,488 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\wersvc.dll -- (WerSvc)
SRV - [2006/11/02 05:46:13 | 000,121,344 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2006/11/02 05:46:13 | 000,075,264 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\trkwks.dll -- (TrkWks)
SRV - [2006/11/02 05:46:13 | 000,074,240 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wdi.dll -- (WdiSystemHost)
SRV - [2006/11/02 05:46:13 | 000,074,240 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wdi.dll -- (WdiServiceHost)
SRV - [2006/11/02 05:46:13 | 000,063,488 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wercplsupport.dll -- (wercplsupport)
SRV - [2006/11/02 05:46:13 | 000,054,784 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\tbssvc.dll -- (TBS)
SRV - [2006/11/02 05:46:13 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\WcsPlugInService.dll -- (WcsPlugInService)
SRV - [2006/11/02 05:46:13 | 000,028,672 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\uxsms.dll -- (UxSms)
SRV - [2006/11/02 05:46:12 | 001,499,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\pla.dll -- (pla)
SRV - [2006/11/02 05:46:12 | 000,277,504 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\QAGENTRT.DLL -- (napagent)
SRV - [2006/11/02 05:46:12 | 000,234,496 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2006/11/02 05:46:12 | 000,152,576 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2006/11/02 05:46:12 | 000,105,984 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\regsvc.dll -- (RemoteRegistry)
SRV - [2006/11/02 05:46:12 | 000,095,232 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr)
SRV - [2006/11/02 05:46:12 | 000,092,160 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\SessEnv.dll -- (SessionEnv)
SRV - [2006/11/02 05:46:12 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2006/11/02 05:46:12 | 000,047,104 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\Sens.dll -- (SENS)
SRV - [2006/11/02 05:46:12 | 000,019,968 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2006/11/02 05:46:12 | 000,018,432 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2006/11/02 05:46:11 | 000,273,920 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2006/11/02 05:46:11 | 000,235,520 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2006/11/02 05:46:11 | 000,171,520 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2006/11/02 05:46:06 | 000,284,672 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\msdtckrm.dll -- (KtmRm)
SRV - [2006/11/02 05:46:05 | 000,569,344 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\gpsvc.dll -- (gpsvc)
SRV - [2006/11/02 05:46:05 | 000,416,768 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\IKEEXT.DLL -- (IKEEXT)
SRV - [2006/11/02 05:46:05 | 000,188,416 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\lltdsvc.dll -- (lltdsvc)
SRV - [2006/11/02 05:46:05 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\iscsiexe.dll -- (MSiSCSI)
SRV - [2006/11/02 05:46:05 | 000,074,240 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\IPBusEnum.dll -- (IPBusEnum)
SRV - [2006/11/02 05:46:05 | 000,069,120 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\KMSVC.DLL -- (hkmsvc)
SRV - [2006/11/02 05:46:05 | 000,065,536 | ---- | M] (Microsoft Corporation) [Disabled] -- C:\Windows\System32\mprdim.dll -- (RemoteAccess)
SRV - [2006/11/02 05:46:05 | 000,045,056 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\mmcss.dll -- (THREADORDER)
SRV - [2006/11/02 05:46:05 | 000,045,056 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2006/11/02 05:46:05 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2006/11/02 05:46:05 | 000,018,944 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\lmhsvc.dll -- (lmhosts)
SRV - [2006/11/02 05:46:05 | 000,017,920 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\irmon.dll -- (Irmon)
SRV - [2006/11/02 05:46:04 | 000,146,944 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2006/11/02 05:46:04 | 000,034,816 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2006/11/02 05:46:04 | 000,027,648 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\FDResPub.dll -- (FDResPub)
SRV - [2006/11/02 05:46:04 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\fdPHost.dll -- (fdPHost)
SRV - [2006/11/02 05:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2006/11/02 05:46:02 | 000,310,272 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2006/11/02 05:46:02 | 000,310,272 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2006/11/02 05:46:02 | 000,081,408 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2006/11/02 05:46:02 | 000,039,936 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\certprop.dll -- (SCPolicySvc)
SRV - [2006/11/02 05:46:02 | 000,039,936 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\certprop.dll -- (CertPropSvc)
SRV - [2006/11/02 05:46:02 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2006/11/02 05:46:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2006/11/02 05:45:59 | 000,137,216 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\wbem\WmiApSrv.exe -- (wmiApSrv)
SRV - [2006/11/02 05:45:51 | 000,924,160 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2006/11/02 05:45:50 | 000,392,704 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\vds.exe -- (vds)
SRV - [2006/11/02 05:45:50 | 000,035,840 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect)
SRV - [2006/11/02 05:45:47 | 000,005,632 | ---- | M] (Oak Technology Inc.) [Auto] -- C:\Windows\System32\MREMP50a64.dll -- (s116bus)
SRV - [2006/11/02 05:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2006/11/02 05:45:46 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP)
SRV - [2006/11/02 05:45:26 | 000,106,496 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\msdtc.exe -- (MSDTC)
SRV - [2006/11/02 05:45:26 | 000,071,680 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2006/11/02 05:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\Locator.exe -- (RpcLocator)
SRV - [2006/11/02 05:45:02 | 000,007,168 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\dllhost.exe -- (COMSysApp)
SRV - [2006/11/02 05:44:49 | 000,058,880 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2006/10/26 08:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006/08/04 20:39:20 | 000,386,560 | ---- | M] (Conexant Systems, Inc.) [Auto] -- C:\Windows\System32\drivers\XAudio.exe -- (XAudioService)
SRV - [2006/07/20 06:36:58 | 000,262,247 | ---- | M] () [Auto] -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe -- (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2005/11/17 10:18:52 | 001,527,900 | ---- | M] (MAGIX®) [On_Demand] -- C:\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
SRV - [2005/07/06 10:04:20 | 000,466,944 | ---- | M] (Lexmark International, Inc.) [On_Demand] -- C:\Windows\System32\lxcccoms.exe -- (lxcc_device)
SRV - [2005/04/03 18:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2004/03/12 23:04:16 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
Code:
ATTFilter ========== Driver Services (All) ==========
DRV - File not found [Kernel | Disabled] -- -- (UIUSys)
DRV - File not found [Kernel | On_Demand] -- -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand] -- -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand] -- -- (IpInIp)
DRV - File not found [Kernel | Auto] -- -- (int15)
DRV - File not found [Kernel | Disabled] -- -- (blbdrive)
DRV - [2010/05/09 20:18:40 | 000,015,664 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2010/02/23 09:14:51 | 000,211,968 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10)
DRV - [2010/02/23 09:14:42 | 000,058,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20)
DRV - [2010/02/23 09:14:41 | 000,102,400 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\mrxsmb.sys -- (mrxsmb)
DRV - [2010/02/20 17:30:16 | 000,396,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\http.sys -- (HTTP)
DRV - [2010/02/18 08:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip6)
DRV - [2010/02/18 08:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip)
DRV - [2010/02/18 08:04:38 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel)
DRV - [2010/02/18 08:04:30 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\TUNMP.SYS -- (tunmp)
DRV - [2010/01/06 22:12:33 | 000,258,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\acpi.sys -- (ACPI)
DRV - [2010/01/06 22:12:33 | 000,020,920 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\compbatt.sys -- (Compbatt)
DRV - [2010/01/06 22:12:33 | 000,014,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\CmBatt.sys -- (CmBatt)
DRV - [2010/01/06 22:12:33 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi)
DRV - [2010/01/06 22:11:20 | 000,408,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\ksecdd.sys -- (KSecDD)
DRV - [2010/01/06 22:04:26 | 000,224,824 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\clfs.sys -- (CLFS) Common Log (CLFS)
DRV - [2010/01/06 22:04:24 | 000,495,160 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000)
DRV - [2010/01/06 22:04:23 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\i8042prt.sys -- (i8042prt)
DRV - [2010/01/06 22:04:23 | 000,035,384 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\kbdclass.sys -- (kbdclass)
DRV - [2010/01/06 22:04:23 | 000,034,360 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\mouclass.sys -- (mouclass)
DRV - [2010/01/06 22:04:23 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\sermouse.sys -- (sermouse)
DRV - [2010/01/06 22:04:23 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mouhid.sys -- (mouhid)
DRV - [2010/01/06 22:04:23 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid)
DRV - [2009/12/11 08:15:49 | 000,306,688 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\srv.sys -- (srv)
DRV - [2009/12/11 08:15:30 | 000,084,992 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet)
DRV - [2009/10/30 06:19:13 | 000,110,080 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\system32\drivers\mrxdav.sys -- (MRxDAV)
DRV - [2009/10/30 06:12:50 | 000,055,296 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\USBSTOR.SYS -- (USBSTOR)
DRV - [2009/10/30 06:11:19 | 001,060,920 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\ntfs.sys -- (Ntfs)
DRV - [2009/10/30 06:11:19 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\monitor.sys -- (monitor)
DRV - [2009/10/29 22:16:15 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv)
DRV - [2009/10/29 22:14:46 | 000,021,560 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\atapi.sys -- (atapi)
DRV - [2009/10/29 22:14:46 | 000,015,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\pciide.sys -- (pciide)
DRV - [2009/10/29 22:14:45 | 000,211,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\volsnap.sys -- (volsnap)
DRV - [2009/10/29 22:14:45 | 000,154,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP)
DRV - [2009/10/29 22:12:28 | 000,082,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\sdbus.sys -- (sdbus)
DRV - [2009/10/29 22:08:17 | 000,053,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2009/10/29 22:05:48 | 000,012,800 | ---- | M] (Microsoft Corporation) [Recognizer | System] -- C:\Windows\System32\drivers\fs_rec.sys -- (Fs_Rec)
DRV - [2009/10/29 22:04:53 | 000,130,048 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\srv2.sys -- (srv2)
DRV - [2009/06/22 14:38:22 | 000,102,912 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2009/06/22 14:26:04 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2008/11/11 07:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2008/11/11 07:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2008/11/11 07:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2007/08/30 21:24:02 | 000,193,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbhub.sys -- (usbhub)
DRV - [2007/08/30 21:23:49 | 000,073,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbccgp.sys -- (usbccgp)
DRV - [2007/08/30 21:23:41 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbohci.sys -- (usbohci)
DRV - [2007/08/30 21:23:40 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbehci.sys -- (usbehci)
DRV - [2007/07/03 21:28:17 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\wanarp.sys -- (Wanarpv6)
DRV - [2007/07/03 21:28:17 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\wanarp.sys -- (Wanarp)
DRV - [2007/07/03 21:28:13 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndproxy.sys -- (NDProxy)
DRV - [2007/07/03 21:28:10 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndistapi.sys -- (NdisTapi)
DRV - [2007/07/03 21:27:33 | 000,070,144 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\pacer.sys -- (PSched)
DRV - [2007/07/02 21:01:16 | 000,619,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl)
DRV - [2007/05/02 05:59:44 | 000,761,904 | ---- | M] (Bison Electronics. Inc. ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\BisonC07.sys -- (Cam5607)
DRV - [2007/04/05 18:36:16 | 002,464,768 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007/04/05 18:36:16 | 002,464,768 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2007/04/05 00:07:51 | 000,109,744 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2007/04/04 23:34:32 | 000,006,144 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV - [2007/04/04 23:32:58 | 000,074,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\rasl2tp.sys -- (Rasl2tp) WAN-Miniport (L2TP)
DRV - [2007/04/04 23:32:58 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\raspptp.sys -- (PptpMiniport) WAN-Miniport (PPTP)
DRV - [2007/02/06 18:04:54 | 000,016,680 | ---- | M] (HiTRUST) [Kernel | Boot] -- C:\Windows\System32\drivers\PSDNServ.sys -- (PSDNServ)
DRV - [2007/02/06 18:04:50 | 000,060,712 | ---- | M] (HiTRUST) [Kernel | Boot] -- C:\Windows\System32\drivers\psdvdisk.sys -- (psdvdisk)
DRV - [2007/02/06 18:04:48 | 000,020,264 | ---- | M] (HiTRUST) [File_System | Boot] -- C:\Windows\System32\drivers\psdfilter.sys -- (PSDFilter)
DRV - [2006/12/19 00:18:28 | 000,534,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XX)
DRV - [2006/12/19 00:18:28 | 000,534,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XV)
DRV - [2006/12/01 01:38:00 | 001,655,464 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/11/21 02:24:02 | 000,062,464 | ---- | M] (Realtek Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2006/11/21 00:40:58 | 000,185,744 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2006/11/21 00:40:58 | 000,144,784 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2006/11/21 00:40:58 | 000,038,928 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\SYMIDS.SYS -- (SYMIDS)
DRV - [2006/11/21 00:40:58 | 000,037,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV)
DRV - [2006/11/21 00:40:58 | 000,026,384 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2006/11/21 00:40:58 | 000,011,792 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2006/11/21 00:40:50 | 000,275,576 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2006/11/21 00:40:50 | 000,024,184 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2006/11/21 00:40:48 | 000,245,880 | ---- | M] (Symantec Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2006/11/21 00:40:42 | 000,406,672 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2006/11/21 00:39:06 | 000,831,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20061106.064\NAVEX15.SYS -- (NAVEX15)
DRV - [2006/11/21 00:39:04 | 000,079,240 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20061106.064\NAVENG.SYS -- (NAVENG)
DRV - [2006/11/21 00:39:02 | 000,387,432 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2006/11/21 00:39:02 | 000,102,760 | ---- | M] (Symantec Corporation) [Kernel | On_Demand] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2006/11/21 00:36:44 | 000,202,872 | ---- | M] (Symantec Corporation) [Kernel | System] -- C:\ProgramData\Symantec\Definitions\SymcData\idsdefs\20061025.029\IDSvix86.sys -- (IDSvix86)
DRV - [2006/11/08 19:53:58 | 000,206,848 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\HSXHWAZL.sys -- (HSXHWAZL)
DRV - [2006/11/02 09:29:38 | 000,021,264 | ---- | M] (Dritek System Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\DKbFltr.sys -- (DKbFltr)
DRV - [2006/11/02 09:27:36 | 000,020,112 | ---- | M] (Dritek System Inc.) [Kernel | System] -- C:\Program Files\Launch Manager\DPortIO.sys -- (DritekPortIO)
DRV - [2006/11/02 08:34:35 | 000,132,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\ecache.sys -- (Ecache)
DRV - [2006/11/02 08:34:31 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\qwavedrv.sys -- (QWAVEdrv)
DRV - [2006/11/02 05:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006/11/02 05:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\ndis.sys -- (NDIS)
DRV - [2006/11/02 05:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006/11/02 05:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006/11/02 05:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006/11/02 05:51:30 | 000,290,408 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx)
DRV - [2006/11/02 05:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006/11/02 05:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006/11/02 05:51:14 | 000,183,912 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\Windows\System32\drivers\fltMgr.sys -- (FltMgr)
DRV - [2006/11/02 05:51:12 | 000,168,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt)
DRV - [2006/11/02 05:51:12 | 000,167,528 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\pcmcia.sys -- (pcmcia)
DRV - [2006/11/02 05:51:09 | 000,160,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\msrpc.sys -- (MsRPC)
DRV - [2006/11/02 05:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006/11/02 05:50:57 | 000,140,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\pci.sys -- (pci)
DRV - [2006/11/02 05:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006/11/02 05:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006/11/02 05:50:40 | 000,106,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\nv_agp.sys -- (nv_agp)
DRV - [2006/11/02 05:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 05:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 05:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006/11/02 05:50:28 | 000,050,792 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\termdd.sys -- (TermDD)
DRV - [2006/11/02 05:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006/11/02 05:50:24 | 000,050,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr)
DRV - [2006/11/02 05:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\isapnp.sys -- (isapnp)
DRV - [2006/11/02 05:50:24 | 000,046,696 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\Windows\System32\drivers\mup.sys -- (Mup)
DRV - [2006/11/02 05:50:23 | 000,049,256 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\partmgr.sys -- (partmgr)
DRV - [2006/11/02 05:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 05:50:17 | 000,080,488 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\msdsm.sys -- (msdsm)
DRV - [2006/11/02 05:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 05:50:16 | 000,078,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\mpio.sys -- (mpio)
DRV - [2006/11/02 05:50:16 | 000,076,392 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\sbp2port.sys -- (sbp2port)
DRV - [2006/11/02 05:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006/11/02 05:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006/11/02 05:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 05:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006/11/02 05:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006/11/02 05:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006/11/02 05:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006/11/02 05:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006/11/02 05:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 05:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 05:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006/11/02 05:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 05:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006/11/02 05:50:04 | 000,058,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\gagp30kx.sys -- (gagp30kx)
DRV - [2006/11/02 05:50:04 | 000,058,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\uliagpkx.sys -- (uliagpkx)
DRV - [2006/11/02 05:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 05:49:59 | 000,056,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\uagp35.sys -- (uagp35)
DRV - [2006/11/02 05:49:59 | 000,054,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\amdagp.sys -- (amdagp)
DRV - [2006/11/02 05:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 05:49:58 | 000,056,424 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo)
DRV - [2006/11/02 05:49:57 | 000,054,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\mountmgr.sys -- (MountMgr)
DRV - [2006/11/02 05:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 05:49:54 | 000,028,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mssmbios.sys -- (mssmbios)
DRV - [2006/11/02 05:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006/11/02 05:49:52 | 000,054,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\viaagp.sys -- (viaagp)
DRV - [2006/11/02 05:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\agp440.sys -- (agp440)
DRV - [2006/11/02 05:49:51 | 000,053,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\sisagp.sys -- (sisagp)
DRV - [2006/11/02 05:49:51 | 000,052,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\disk.sys -- (disk)
DRV - [2006/11/02 05:49:49 | 000,027,752 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\i2omp.sys -- (i2omp)
DRV - [2006/11/02 05:49:44 | 000,023,144 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\msahci.sys -- (msahci)
DRV - [2006/11/02 05:49:43 | 000,022,632 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\crcdisk.sys -- (crcdisk)
DRV - [2006/11/02 05:49:38 | 000,019,560 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\wd.sys -- (Wd)
DRV - [2006/11/02 05:49:35 | 000,018,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\spldr.sys -- (spldr)
DRV - [2006/11/02 05:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006/11/02 05:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006/11/02 05:49:26 | 000,015,464 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\amdide.sys -- (amdide)
DRV - [2006/11/02 05:49:24 | 000,014,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\intelide.sys -- (intelide)
DRV - [2006/11/02 05:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006/11/02 05:49:20 | 000,013,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv)
DRV - [2006/11/02 05:49:20 | 000,012,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\swenum.sys -- (swenum)
DRV - [2006/11/02 05:14:58 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbprint.sys -- (usbprint)
DRV - [2006/11/02 05:14:17 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbscan.sys -- (usbscan)
DRV - [2006/11/02 05:04:35 | 000,878,080 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAUTH)
DRV - [2006/11/02 05:04:23 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\WpdUsb.sys -- (WpdUsb)
DRV - [2006/11/02 05:03:00 | 000,242,688 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\rdpdr.sys -- (rdpdr)
DRV - [2006/11/02 05:02:15 | 000,160,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\rdpwd.sys -- (RDPWD)
DRV - [2006/11/02 05:02:07 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tssecsrv.sys -- (tssecsrv)
DRV - [2006/11/02 05:02:01 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdtcp.sys -- (TDTCP)
DRV - [2006/11/02 05:02:01 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdpipe.sys -- (TDPIPE)
DRV - [2006/11/02 05:02:01 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\RDPENCDD.sys -- (RDPENCDD)
DRV - [2006/11/02 05:02:01 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\RDPCDD.sys -- (RDPCDD)
DRV - [2006/11/02 04:58:52 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\modem.sys -- (Modem)
DRV - [2006/11/02 04:58:43 | 000,270,336 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\system32\drivers\afd.sys -- (AFD)
DRV - [2006/11/02 04:58:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\ws2ifsl.sys -- (ws2ifsl)
DRV - [2006/11/02 04:58:14 | 000,118,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndiswan.sys -- (NdisWan)
DRV - [2006/11/02 04:58:13 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\rasacd.sys -- (RasAcd)
DRV - [2006/11/02 04:58:12 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\raspppoe.sys -- (RasPppoe)
DRV - [2006/11/02 04:58:10 | 000,017,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\asyncmac.sys -- (AsyncMac)
DRV - [2006/11/02 04:58:09 | 000,099,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ipnat.sys -- (IPNAT)
DRV - [2006/11/02 04:58:04 | 000,047,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ipfltdrv.sys -- (IpFilterDriver)
DRV - [2006/11/02 04:57:47 | 000,027,648 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg)
DRV - [2006/11/02 04:57:35 | 000,068,096 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\tdx.sys -- (tdx)
DRV - [2006/11/02 04:57:30 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy)
DRV - [2006/11/02 04:57:26 | 000,035,840 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\netbios.sys -- (NetBIOS)
DRV - [2006/11/02 04:57:22 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndisuio.sys -- (Ndisuio)
DRV - [2006/11/02 04:57:20 | 000,184,320 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\netbt.sys -- (netbt)
DRV - [2006/11/02 04:57:10 | 000,095,744 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\irda.sys -- (irda)
DRV - [2006/11/02 04:57:10 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\smb.sys -- (Smb)
DRV - [2006/11/02 04:57:06 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\irsir.sys -- (irsir)
DRV - [2006/11/02 04:57:04 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\MSIRCOMM.sys -- (MSIRCOMM)
DRV - [2006/11/02 04:57:04 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\irenum.sys -- (IRENUM)
DRV - [2006/11/02 04:56:49 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr)
DRV - [2006/11/02 04:56:49 | 000,047,104 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio)
DRV - [2006/11/02 04:55:24 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\umbus.sys -- (umbus)
DRV - [2006/11/02 04:55:23 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\bthmodem.sys -- (BTHMODEM)
DRV - [2006/11/02 04:55:22 | 000,029,184 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\hidbth.sys -- (HidBth)
DRV - [2006/11/02 04:55:16 | 000,062,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ohci1394.sys -- (ohci1394)
DRV - [2006/11/02 04:55:09 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR)
DRV - [2006/11/02 04:55:08 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\circlass.sys -- (circlass)
DRV - [2006/11/02 04:55:05 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\System32\drivers\usbuhci.sys -- (usbuhci)
DRV - [2006/11/02 04:55:01 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\hidir.sys -- (HidIr)
DRV - [2006/11/02 04:55:01 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\hidusb.sys -- (HidUsb)
DRV - [2006/11/02 04:54:59 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\drmkaud.sys -- (drmkaud)
DRV - [2006/11/02 04:54:52 | 000,082,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\WUDFRd.sys -- (WUDFRd)
DRV - [2006/11/02 04:53:56 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\vgapnp.sys -- (vga)
DRV - [2006/11/02 04:53:56 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\vga.sys -- (VgaSave)
DRV - [2006/11/02 04:52:52 | 000,020,608 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\wacompen.sys -- (WacomPen)
DRV - [2006/11/02 04:51:44 | 000,067,072 | ---- | M] () [Kernel | System] -- C:\Windows\System32\drivers\cdrom.sys -- (cdrom)
DRV - [2006/11/02 04:51:40 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\sfloppy.sys -- (sfloppy)
DRV - [2006/11/02 04:51:40 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\sffp_sd.sys -- (sffp_sd)
DRV - [2006/11/02 04:51:40 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\sffp_mmc.sys -- (sffp_mmc)
DRV - [2006/11/02 04:51:38 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\sffdisk.sys -- (sffdisk)
DRV - [2006/11/02 04:51:33 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\System32\drivers\fdc.sys -- (fdc)
DRV - [2006/11/02 04:51:32 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\System32\drivers\flpydisk.sys -- (flpydisk)
DRV - [2006/11/02 04:51:30 | 000,083,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\serial.sys -- (Serial)
DRV - [2006/11/02 04:51:30 | 000,079,360 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\parport.sys -- (Parport)
DRV - [2006/11/02 04:51:25 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\serenum.sys -- (Serenum)
DRV - [2006/11/02 04:51:23 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\system32\drivers\parvdm.sys -- (Parvdm)
DRV - [2006/11/02 04:51:15 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mskssrv.sys -- (MSKSSRV)
DRV - [2006/11/02 04:51:14 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mspqm.sys -- (MSPQM)
DRV - [2006/11/02 04:51:13 | 000,006,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mstee.sys -- (MSTEE)
DRV - [2006/11/02 04:51:13 | 000,005,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mspclock.sys -- (MSPCLOCK)
DRV - [2006/11/02 04:51:05 | 000,004,608 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\null.sys -- (Null)
DRV - [2006/11/02 04:51:03 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\beep.sys -- (Beep)
DRV - [2006/11/02 04:42:03 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\ipmidrv.sys -- (IPMIDRV)
DRV - [2006/11/02 04:33:07 | 000,083,456 | ---- | M] (Microsoft Corporation) [File_System | Auto] -- C:\Windows\system32\drivers\luafv.sys -- (luafv)
DRV - [2006/11/02 04:32:55 | 000,027,648 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace)
DRV - [2006/11/02 04:31:26 | 000,222,208 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\rdbss.sys -- (rdbss)
DRV - [2006/11/02 04:31:12 | 000,069,632 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\bowser.sys -- (bowser)
DRV - [2006/11/02 04:31:04 | 000,074,752 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\dfsc.sys -- (DfsC)
DRV - [2006/11/02 04:30:57 | 000,225,280 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\Windows\System32\drivers\udfs.sys -- (udfs)
DRV - [2006/11/02 04:30:57 | 000,034,816 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\npfs.sys -- (Npfs)
DRV - [2006/11/02 04:30:56 | 000,022,528 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\msfs.sys -- (Msfs)
DRV - [2006/11/02 04:30:50 | 000,070,144 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\Windows\System32\drivers\cdfs.sys -- (cdfs)
DRV - [2006/11/02 04:30:49 | 000,142,336 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\fastfat.sys -- (fastfat)
DRV - [2006/11/02 04:30:19 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\viac7.sys -- (ViaC7)
DRV - [2006/11/02 04:30:18 | 000,040,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8)
DRV - [2006/11/02 04:30:18 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\System32\drivers\intelppm.sys -- (intelppm)
DRV - [2006/11/02 04:30:18 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\crusoe.sys -- (Crusoe)
DRV - [2006/11/02 04:30:18 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\amdk7.sys -- (AmdK7)
DRV - [2006/11/02 04:30:18 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\processr.sys -- (Processor)
DRV - [2006/11/02 04:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 04:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 04:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 04:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 04:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 04:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 03:41:50 | 000,987,648 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (HSF_DPV)
DRV - [2006/11/02 03:41:49 | 000,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (HSFHWAZL)
DRV - [2006/11/02 03:41:48 | 000,654,336 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (winachsf)
DRV - [2006/11/02 03:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 03:36:49 | 000,235,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService)
DRV - [2006/11/02 03:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006/11/02 03:10:22 | 000,002,864 | ---- | M] (Microsoft Corporation) [Adapter | On_Demand] -- C:\Windows\System32\WINSOCK.DLL -- (Winsock)
DRV - [2006/11/02 02:37:21 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV - [2006/10/25 02:36:48 | 000,042,240 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ESD7SK.sys -- (ESDCR)
DRV - [2006/10/25 02:36:44 | 000,076,928 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ESM7SK.sys -- (ESMCR)
DRV - [2006/10/25 02:36:36 | 000,062,208 | ---- | M] (ENE Technology Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\EMS7SK.sys -- (EMSCR)
DRV - [2006/10/22 23:17:32 | 000,179,896 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2006/10/18 03:44:30 | 000,031,232 | ---- | M] (SMSC) [Kernel | On_Demand] -- C:\Windows\System32\drivers\smscirda.sys -- (SMSCIRDA)
DRV - [2006/08/04 20:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006/06/19 17:26:58 | 000,012,672 | ---- | M] (Conexant) [Kernel | Auto] -- C:\Windows\System32\drivers\mdmxsdk.sys -- (mdmxsdk)
DRV - [2005/11/03 10:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot] -- C:\Windows\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005/08/10 08:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot] -- C:\Windows\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005/05/16 09:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot] -- C:\Windows\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
========== Standard Registry (All) ==========
|
|
16.08.2013, 08:08
| #4 |
| | Whitescreen "Verbindung wird hergestellt..." + Log OTL.txt part3: Code:
ATTFilter ========== Internet Explorer ==========
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.intl.acer.yahoo.com
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://home.sweetim.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Besitzer_ON_C\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\Besitzer_ON_C\Software\Microsoft\Internet Explorer\Main,SEARCH PAGE = hxxp://de.rd.yahoo.com/customize/ycomp/defaults/sp/*hxxp://de.yahoo.com
IE - HKU\Besitzer_ON_C\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKU\Besitzer_ON_C\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKU\Besitzer_ON_C\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com [binary data]
IE - HKU\Besitzer_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/
IE - HKU\Besitzer_ON_C\Software\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\Besitzer_ON_C\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\Besitzer_ON_C\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKU\Besitzer_ON_C\..\URLSearchHook: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - Reg Error: Key error. File not found
IE - HKU\Besitzer_ON_C\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\Besitzer_ON_C\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKU\Besitzer_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\LocalService_ON_C\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\NetworkService_ON_C\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://start.icq.com/"
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.4.4.118
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.2.1
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.10
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.19
FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.4.7&q="
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/firefox"
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\System32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: File not found
FF - HKCU\Software\MozillaPlugins\@yahoo.com/BrowserPlus,version=2.9.8: C:\Users\Besitzer\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll (Yahoo! Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2010/06/19 10:05:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/04/28 12:01:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/11/14 10:13:22 | 000,000,000 | ---D | M]
[2011/09/08 14:29:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Extensions
[2009/10/30 14:44:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2011/09/08 14:29:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Extensions\songbird@songbirdnest.com
[2012/04/26 03:07:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\extensions
[2010/12/14 20:24:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/03/29 06:10:08 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009/12/24 10:22:13 | 000,000,000 | ---D | M] (DVDVideoSoft Toolbar) -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}
[2009/11/11 16:06:52 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\extensions\toolbar@ask.com
[2009/11/11 16:06:53 | 000,002,236 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\askcom.xml
[2012/05/14 07:19:46 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-1.xml
[2011/03/04 13:44:28 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-10.xml
[2011/03/25 18:43:55 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-11.xml
[2011/04/20 09:02:44 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-12.xml
[2011/05/15 17:58:17 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-13.xml
[2011/06/24 15:50:08 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-14.xml
[2011/07/03 14:22:12 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-15.xml
[2011/07/03 14:22:36 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-16.xml
[2011/08/19 16:05:37 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-17.xml
[2011/09/01 16:16:03 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-18.xml
[2011/09/09 14:53:28 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-19.xml
[2010/02/18 17:26:23 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-2.xml
[2011/10/21 05:54:15 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-20.xml
[2011/11/14 12:54:48 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-21.xml
[2012/01/02 10:19:19 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-22.xml
[2012/02/18 12:54:38 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-23.xml
[2012/02/18 16:24:43 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-24.xml
[2012/02/18 18:03:37 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-25.xml
[2012/04/28 12:45:29 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-26.xml
[2012/04/28 16:22:51 | 000,000,950 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-27.xml
[2010/04/04 10:19:20 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-3.xml
[2010/05/04 11:04:43 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-4.xml
[2010/07/21 19:30:44 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-5.xml
[2010/07/21 19:30:54 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-6.xml
[2010/10/22 15:45:40 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-7.xml
[2010/10/28 15:14:02 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-8.xml
[2010/12/11 18:32:09 | 000,000,961 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin-9.xml
[2011/03/30 09:14:34 | 000,001,042 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\icqplugin.xml
[2010/05/03 14:33:28 | 000,003,915 | ---- | M] () -- C:\Users\Besitzer\AppData\Roaming\Mozilla\Firefox\Profiles\8n61nqc5.default\searchplugins\sweetim.xml
[2012/01/02 10:18:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009/12/03 15:48:02 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012/04/28 12:01:12 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) --
() (No name found) -- C:\USERS\BESITZER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\8N61NQC5.DEFAULT\EXTENSIONS\{EEE6C361-6118-11DC-9C72-001320C79847}.XPI
[2012/04/28 12:01:11 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2007/04/10 12:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2007/04/30 11:29:22 | 000,049,152 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2007/03/02 09:17:24 | 000,095,200 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\NPAPIX.dll
[2011/11/14 10:12:16 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2007/01/17 07:18:04 | 000,095,200 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\NPFluxBrowserHelper.dll
[2007/09/07 10:25:50 | 000,103,064 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\NPMPDRM.dll
[2009/02/27 06:13:42 | 000,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2007/09/07 09:46:48 | 000,098,968 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\NPWMDRMWrapper.dll
[2012/02/18 12:53:47 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012/02/18 12:53:47 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/02/18 12:53:47 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2012/04/28 12:01:08 | 000,003,413 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2012/02/18 12:53:47 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2012/02/18 12:53:47 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2012/02/18 12:53:47 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2006/09/18 17:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBHO.dll (Symantec Corporation)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - File not found
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - File not found
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar mit Pop-Up-Blocker) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\Besitzer_ON_C\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKU\Besitzer_ON_C\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Acer Tour] File not found
O4 - HKLM..\Run: [Acer Tour Reminder] File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ALaunch] File not found
O4 - HKLM..\Run: [BisonInst0402] C:\Windows\BR040286.exe (Bison Inc.)
O4 - HKLM..\Run: [BrutalChess12382] C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brutal Chess\ChessBrutal11097.exe ()
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe (HiTRUST)
O4 - HKLM..\Run: [eDSMSNfix] C:\Acer\Empowering Technology\eDSMSNfix.exe (HiTRUST co.)
O4 - HKLM..\Run: [eRecoveryService] File not found
O4 - HKLM..\Run: [InstallShieldsetup7] C:\Users\Besitzer\AppData\Local\Temp\isp3D27.tmp\setup7setup7.exe ()
O4 - HKLM..\Run: [JyYFlNCl6JMVPI3] File not found
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [osCheck] C:\Program Files\Norton Internet Security\osCheck.exe (Symantec Corporation)
O4 - HKLM..\Run: [Philips Device Listener] C:\Program Files\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SetPanel] File not found
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe (Symantec Corporation)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [Ulead AutoDetector] C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe (Ulead Systems, Inc.)
O4 - HKLM..\Run: [WarReg_PopUp] File not found
O4 - HKU\.DEFAULT..\Run: [] File not found
O4 - HKU\.DEFAULT..\Run: [JyYFlNCl6JMVPI3] File not found
O4 - HKU\.DEFAULT..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [{46B930E9-3049-0EF7-D7A8-29B7813C2842}] C:\Users\Besitzer\AppData\Roaming\Woxer\ahkox.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [Acer Tour Reminder] File not found
O4 - HKU\Besitzer_ON_C..\Run: [BrutalChess] C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brutal Chess\ChessBrutal11097.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [ChessBrutal] C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brutal Chess\ChessBrutal11097.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [ChessBrutal11097] C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brutal Chess\ChessBrutal11097.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [DownloadSetup] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [EA Core] File not found
O4 - HKU\Besitzer_ON_C..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKU\Besitzer_ON_C..\Run: [FirefoxSweetIM4.42] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [FirefoxYouTube] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [FlashPlayerControlFlashPlayerControl] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\LibraryFlashPlayerControl.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [ICQ] C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O4 - HKU\Besitzer_ON_C..\Run: [InstallShieldsetup7] C:\Users\Besitzer\AppData\Local\Temp\isp4699.tmp\setup7setup711.50.42618.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [JyYFlNCl6JMVPI3] C:\Users\Besitzer\AppData\Roaming\SboxService.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [LibraryFlashPlayerControl] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\FlashPlayerControlLibrary.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [LibraryLibrary] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\FlashPlayerControlLibrary.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [setup7InstallShield11.50.42618] C:\Users\Besitzer\AppData\Local\Temp\isp3D27.tmp\setup7setup7.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\Besitzer_ON_C..\Run: [SweetIMDownload2.3] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\LocalService_ON_C..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\NetworkService_ON_C..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKLM..\RunOnce: [*Restore] C:\Windows\System32\rstrui.exe (Microsoft Corporation)
O4 - HKLM..\RunServices: [InstallShieldsetup7] C:\Users\Besitzer\AppData\Local\Temp\isp3D27.tmp\setup7setup7.exe ()
O4 - HKLM..\RunServices: [LibraryLibrary] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\LibraryFlashPlayerControl.exe ()
O4 - HKLM..\RunServices: [LibraryLibrary2170] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\FlashPlayerControlLibrary.exe ()
O4 - HKLM..\RunServices: [YouTubeInstallShield] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [BrutalChess] C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brutal Chess\ChessBrutal11097.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [ChessBrutal11097] C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brutal Chess\ChessBrutal11097.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [EdvardMunch] File not found
O4 - HKU\Besitzer_ON_C..\RunServices: [LibraryFlashPlayerControl] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\FlashPlayerControlLibrary.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [SetupFree] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [SetupInstallShield] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [SetupSweetIM] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [SetupYouTube] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [YouTubeSweetIM4.42] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - Startup: C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O4 - Startup: C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Users\Besitzer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Registration .LNK = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O7 - HKU\Besitzer_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = [binary data]
O7 - HKU\Besitzer_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\Besitzer_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\Besitzer_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\fluxhttp {8E2D00A0-82C6-4821-90BC-07F290841BB6} - C:\Program Files\Common Files\fluxDVD\Lib\XEB\xebnavigation.ax ()
O18 - Protocol\Handler\fluxhttp\0x00000007 {8E2D00A0-82C6-4821-90BC-07F290841BB6} - C:\Program Files\Common Files\fluxDVD\Lib\XEB\xebnavigation.ax ()
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (eNetHook.dll) - C:\Windows\System32\eNetHook.dll (acer)
O20 - HKLM Winlogon: Shell - (\SboxService.exe) - File not found
O20 - HKLM Winlogon: UserInit - (\SboxService.exe) - File not found
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\System32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\System32\sysdm.cpl (Microsoft Corporation)
O20 - HKU\.DEFAULT Winlogon: Shell - (\SboxService.exe) - File not found
O20 - HKU\.DEFAULT Winlogon: UserInit - (\SboxService.exe) - File not found
O20 - HKU\.DEFAULT Winlogon: UserInit - (C:\WINDOWS\System32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKU\Besitzer_ON_C Winlogon: Shell - (C:\Users\Besitzer\AppData\Roaming\SboxService.exe) - C:\Users\Besitzer\AppData\Roaming\SboxService.exe ()
O20 - HKU\Besitzer_ON_C Winlogon: UserInit - (C:\Users\Besitzer\AppData\Roaming\SboxService.exe) - C:\Users\Besitzer\AppData\Roaming\SboxService.exe ()
O20 - HKU\Besitzer_ON_C Winlogon: UserInit - (C:\WINDOWS\System32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\System32\browseui.dll (Microsoft Corporation)
O24 - Desktop WallPaper:
O24 - Desktop BackupWallPaper:
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{1e9e8c20-d65c-11e0-8396-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{1e9e8c20-d65c-11e0-8396-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{1e9e8c90-d65c-11e0-8396-001b382c7c8a}\Shell\AutoRun\command - "" = G:\setup.exe
O33 - MountPoints2\{27441e07-f8d2-11df-85e7-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{27441e07-f8d2-11df-85e7-001b382c7c8a}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{2cd134ea-dfed-11de-b88c-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{2cd134ea-dfed-11de-b88c-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{2f455cfd-f3fb-11dc-a1d2-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{2f455cfd-f3fb-11dc-a1d2-001b382c7c8a}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{6c188673-1bd3-11df-9d1c-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{6c188673-1bd3-11df-9d1c-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{78e4d2bc-c494-11de-acfb-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{78e4d2bc-c494-11de-acfb-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{89681c2c-f736-11df-bd28-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{89681c2c-f736-11df-bd28-001b382c7c8a}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{89681c3e-f736-11df-bd28-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{89681c3e-f736-11df-bd28-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{8b835cab-3625-11e1-951d-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{8b835cab-3625-11e1-951d-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{b37a617d-c32b-11de-a9b5-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{b37a617d-c32b-11de-a9b5-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{b37a61a1-c32b-11de-a9b5-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{b37a61a1-c32b-11de-a9b5-001b382c7c8a}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{b8e678f4-c17e-11de-82ba-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{b8e678f4-c17e-11de-82ba-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{badd75b3-6211-11e0-a3d1-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{badd75b3-6211-11e0-a3d1-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{badd75b5-6211-11e0-a3d1-001b382c7c8a}\Shell - "" = AutoRun
O33 - MountPoints2\{badd75b5-6211-11e0-a3d1-001b382c7c8a}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2007/09/15 08:33:22 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe
[2007/04/04 23:36:50 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
========== Files - Modified Within 30 Days ==========
[2013/08/15 05:11:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/08/15 05:10:48 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/08/15 05:10:48 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/08/15 05:10:40 | 000,000,000 | -HS- | M] () -- C:\Windows\System32\dds_trash_log.cmd
[2013/08/15 05:10:32 | 2145,566,720 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/15 04:59:16 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/08/15 04:44:05 | 000,679,108 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2013/08/15 04:44:05 | 000,651,968 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/08/15 04:44:05 | 000,131,060 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2013/08/15 04:44:05 | 000,117,496 | ---- | M] () -- C:\Windows\System32\perfc009.dat
========== Files Created - No Company Name ==========
[2013/08/15 05:10:32 | 2145,566,720 | -HS- | C] () -- C:\hiberfil.sys
[2012/05/19 17:11:58 | 000,231,424 | ---- | C] () -- C:\Users\Besitzer\AppData\Roaming\SboxService.exe
[2011/08/07 01:56:50 | 000,000,680 | ---- | C] () -- C:\Users\Besitzer\AppData\Local\d3d9caps.dat
[2009/07/24 08:45:24 | 000,164,352 | ---- | C] () -- C:\Windows\System32\SpoonUninstall.exe
[2009/07/24 08:45:24 | 000,020,898 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpowerAMP Music Converter.dat
[2009/07/22 05:18:39 | 000,083,968 | ---- | C] () -- C:\Windows\UnGins.exe
[2009/07/22 05:17:32 | 000,237,568 | ---- | C] () -- C:\Windows\System32\Unlha32.dll
[2009/07/22 05:17:29 | 000,473,600 | ---- | C] () -- C:\Windows\System32\Harmony.dll
[2008/12/30 09:24:43 | 000,001,659 | ---- | C] () -- C:\Windows\wininit.ini
[2008/12/30 09:20:42 | 000,000,295 | ---- | C] () -- C:\Windows\SIERRA.INI
[2008/12/23 14:15:02 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2008/12/18 12:44:17 | 000,111,932 | ---- | C] () -- C:\Windows\System32\EPPICPrinterDB.dat
[2008/12/18 12:44:17 | 000,031,053 | ---- | C] () -- C:\Windows\System32\EPPICPattern131.dat
[2008/12/18 12:44:17 | 000,027,417 | ---- | C] () -- C:\Windows\System32\EPPICPattern121.dat
[2008/12/18 12:44:17 | 000,026,154 | ---- | C] () -- C:\Windows\System32\EPPICPattern1.dat
[2008/12/18 12:44:17 | 000,024,903 | ---- | C] () -- C:\Windows\System32\EPPICPattern3.dat
[2008/12/18 12:44:17 | 000,021,390 | ---- | C] () -- C:\Windows\System32\EPPICPattern5.dat
[2008/12/18 12:44:17 | 000,020,148 | ---- | C] () -- C:\Windows\System32\EPPICPattern2.dat
[2008/12/18 12:44:17 | 000,011,811 | ---- | C] () -- C:\Windows\System32\EPPICPattern4.dat
[2008/12/18 12:44:17 | 000,004,943 | ---- | C] () -- C:\Windows\System32\EPPICPattern6.dat
[2008/12/18 12:44:17 | 000,001,146 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_DU.dat
[2008/12/18 12:44:17 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_PT.dat
[2008/12/18 12:44:17 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_BP.dat
[2008/12/18 12:44:17 | 000,001,136 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_ES.dat
[2008/12/18 12:44:17 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_FR.dat
[2008/12/18 12:44:17 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_CF.dat
[2008/12/18 12:44:17 | 000,001,120 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_IT.dat
[2008/12/18 12:44:17 | 000,001,107 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_GE.dat
[2008/12/18 12:44:17 | 000,001,104 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_EN.dat
[2008/12/18 12:44:17 | 000,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
[2008/12/18 12:34:00 | 000,000,025 | ---- | C] () -- C:\Windows\CDESX100DEFGIPS.ini
[2008/06/22 09:01:26 | 000,000,503 | ---- | C] () -- C:\Windows\FeMakro.ini
[2008/06/22 09:01:26 | 000,000,497 | ---- | C] () -- C:\Windows\FeAnim.ini
[2008/06/19 04:32:53 | 000,000,052 | ---- | C] () -- C:\Windows\akShowRTF.INI
[2008/05/08 15:41:31 | 000,000,000 | ---- | C] () -- C:\Windows\PCFriend.INI
[2008/01/20 19:38:44 | 000,000,367 | ---- | C] () -- C:\Windows\ulead32.ini
[2007/12/26 05:20:28 | 000,000,096 | ---- | C] () -- C:\Users\Besitzer\AppData\Local\fusioncache.dat
[2007/12/25 17:49:54 | 000,069,632 | ---- | C] () -- C:\Windows\System32\xmltok.dll
[2007/12/25 17:49:54 | 000,036,864 | ---- | C] () -- C:\Windows\System32\xmlparse.dll
[2007/12/24 23:25:12 | 000,006,537 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2007/12/24 23:08:55 | 000,110,080 | ---- | C] () -- C:\Users\Besitzer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/12/24 22:58:24 | 000,040,622 | ---- | C] () -- C:\Users\Besitzer\AppData\Roaming\wklnhst.dat
[2007/09/15 16:50:38 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2007/09/15 16:50:20 | 000,000,030 | ---- | C] () -- C:\Windows\SETPANEL.INI
[2007/09/15 16:50:12 | 000,000,092 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2007/09/15 08:33:22 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe
[2007/09/15 08:32:48 | 000,000,037 | ---- | C] () -- C:\Windows\Acer.ini
[2007/04/05 09:51:46 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007/04/05 07:43:03 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2007/04/05 07:42:36 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2007/04/05 07:42:36 | 000,143,676 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2007/04/05 07:42:11 | 000,015,190 | ---- | C] () -- C:\Windows\M2000T07.ini
[2007/04/04 23:51:59 | 000,198,144 | ---- | C] () -- C:\Windows\System32\_psisdecd.dll
[2007/04/04 23:42:37 | 000,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2007/04/04 23:42:37 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2007/04/04 23:41:52 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2007/04/04 23:36:50 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007/04/04 23:19:59 | 000,356,352 | ---- | C] () -- C:\Windows\EMCRI.dll
[2007/04/04 23:15:51 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ0.DAT
[2007/02/06 17:58:10 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007/02/06 17:57:58 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007/02/06 17:57:20 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007/02/06 17:56:30 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007/02/06 17:56:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007/02/06 17:52:08 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006/12/25 09:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006/11/12 23:50:06 | 000,071,680 | ---- | C] () -- C:\Windows\System32\HTCA_SelfExtract.bin
[2006/11/02 11:33:31 | 000,679,108 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2006/11/02 11:33:31 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2006/11/02 11:33:31 | 000,131,060 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2006/11/02 11:33:31 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2006/11/02 08:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 08:47:37 | 000,373,872 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 06:33:01 | 000,651,968 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 06:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 06:33:01 | 000,117,496 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 06:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 06:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 04:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 04:51:44 | 000,067,072 | ---- | C] () -- C:\Windows\System32\drivers\cdrom.sys
[2006/11/02 04:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 03:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/11/02 03:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006/11/02 03:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2005/07/25 17:07:48 | 000,102,400 | ---- | C] () -- C:\Windows\System32\lxccinsr.dll
[2005/07/25 17:07:44 | 000,032,768 | ---- | C] () -- C:\Windows\System32\lxcccur.dll
[2005/07/25 17:07:34 | 000,135,168 | ---- | C] () -- C:\Windows\System32\lxccjswr.dll
[2005/07/07 04:17:24 | 000,040,960 | ---- | C] () -- C:\Windows\System32\lxccvs.dll
[2001/12/26 09:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/09/03 16:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/30 09:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/23 15:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
[1998/10/10 19:07:38 | 000,088,576 | ---- | C] () -- C:\Windows\System32\Iticheck.dll
========== LOP Check ==========
[2011/03/06 17:25:47 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Amazon
[2008/12/25 20:01:07 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\CASIO
[2009/01/25 05:18:23 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\EPSON
[2012/05/12 06:56:06 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\ICQ
[2009/03/15 08:49:12 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Imperium Romanum
[2009/06/12 06:54:47 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\InterTrust
[2009/10/19 11:18:19 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Leadertech
[2009/06/19 13:22:25 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\LEGO Company
[2010/10/28 15:09:55 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\LG Electronics
[2007/12/27 07:53:18 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\MAGIX
[2009/01/23 16:01:07 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\OpenOffice.org
[2011/09/08 14:29:01 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Philips-Songbird
[2010/03/02 13:00:26 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Synthesia
[2008/06/19 05:39:47 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\temp
[2007/12/26 16:45:24 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Template
[2010/01/07 09:10:12 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Ubisoft
[2011/09/09 14:57:49 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Uhunv
[2008/01/20 19:45:04 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Ulead Systems
[2011/09/04 05:47:30 | 000,000,000 | ---D | M] -- C:\Users\Besitzer\AppData\Roaming\Woxer
[2010/07/28 10:14:30 | 000,000,000 | ---D | M] -- C:\ProgramData\Age of Empires 3
[2008/03/18 14:53:28 | 000,000,000 | ---D | M] -- C:\ProgramData\Aliasworlds
[2007/12/15 11:15:22 | 000,000,000 | -HSD | M] -- C:\ProgramData\Anwendungsdaten
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Desktop
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2007/12/15 11:15:22 | 000,000,000 | -HSD | M] -- C:\ProgramData\Dokumente
[2011/08/06 12:30:33 | 000,000,000 | ---D | M] -- C:\ProgramData\Electronic Arts
[2011/08/06 12:30:14 | 000,000,000 | ---D | M] -- C:\ProgramData\EPSON
[2007/12/15 11:15:22 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favoriten
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favorites
[2009/12/08 12:38:54 | 000,000,000 | ---D | M] -- C:\ProgramData\fluxDVD
[2011/06/24 15:50:02 | 000,000,000 | ---D | M] -- C:\ProgramData\ICQ
[2007/12/24 23:30:53 | 000,000,000 | ---D | M] -- C:\ProgramData\MAGIX
[2009/12/10 10:10:49 | 000,000,000 | ---D | M] -- C:\ProgramData\mpDRM
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Start Menu
[2007/12/15 11:15:22 | 000,000,000 | -HSD | M] -- C:\ProgramData\Startmenü
[2010/05/03 14:33:10 | 000,000,000 | ---D | M] -- C:\ProgramData\SweetIM
[2010/01/07 09:06:02 | 000,000,000 | ---D | M] -- C:\ProgramData\Tages
[2006/11/02 09:02:04 | 000,000,000 | -HSD | M] -- C:\ProgramData\Templates
[2009/02/22 11:59:05 | 000,000,000 | ---D | M] -- C:\ProgramData\UDL
[2008/01/20 19:44:56 | 000,000,000 | ---D | M] -- C:\ProgramData\Ulead Systems
[2007/12/15 11:15:22 | 000,000,000 | -HSD | M] -- C:\ProgramData\Vorlagen
[2007/04/05 00:02:41 | 000,000,000 | ---D | M] -- C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[2013/08/15 05:11:24 | 000,032,582 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >
|
|
16.08.2013, 08:57
| #5 |
| /// the machine /// TB-Ausbilder | Whitescreen "Verbindung wird hergestellt..." + LogFixen mit OTL
Code:
ATTFilter :OTL
O4 - HKLM..\Run: [JyYFlNCl6JMVPI3] File not found
O4 - HKU\.DEFAULT..\Run: [] File not found
O4 - HKU\.DEFAULT..\Run: [JyYFlNCl6JMVPI3] File not found
O4 - HKU\Besitzer_ON_C..\Run: [JyYFlNCl6JMVPI3] C:\Users\Besitzer\AppData\Roaming\SboxService.exe ()
O4 - HKLM..\RunServices: [InstallShieldsetup7] C:\Users\Besitzer\AppData\Local\Temp\isp3D27.tmp\setup7setup7.exe ()
O4 - HKLM..\RunServices: [LibraryLibrary] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\LibraryFlashPlayerControl.exe ()
O4 - HKLM..\RunServices: [LibraryLibrary2170] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\FlashPlayerControlLibrary.exe ()
O4 - HKLM..\RunServices: [YouTubeInstallShield] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [LibraryFlashPlayerControl] C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\FlashPlayerControlLibrary.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [SetupFree] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [SetupInstallShield] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [SetupSweetIM] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [SetupYouTube] C:\Users\Besitzer\Downloads\movie.exe ()
O4 - HKU\Besitzer_ON_C..\RunServices: [YouTubeSweetIM4.42] C:\Users\Besitzer\Downloads\movie.exe ()
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
16.08.2013, 09:19
| #6 |
| | Whitescreen "Verbindung wird hergestellt..." + Log Danke. Hier der Log: Code:
ATTFilter ========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\JyYFlNCl6JMVPI3 deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\JyYFlNCl6JMVPI3 deleted successfully.
Registry value HKEY_USERS\Besitzer_ON_C\Software\Microsoft\Windows\CurrentVersion\Run\\JyYFlNCl6JMVPI3 deleted successfully.
C:\Users\Besitzer\AppData\Roaming\SboxService.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\InstallShieldsetup7 deleted successfully.
C:\Users\Besitzer\AppData\Local\Temp\isp3D27.tmp\setup7setup7.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\LibraryLibrary deleted successfully.
C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\LibraryFlashPlayerControl.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\LibraryLibrary2170 deleted successfully.
C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\FlashPlayerControlLibrary.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\\YouTubeInstallShield deleted successfully.
C:\Users\Besitzer\Downloads\movie.exe moved successfully.
Registry value HKEY_USERS\Besitzer_ON_C\Software\Microsoft\Windows\CurrentVersion\RunServices\\LibraryFlashPlayerControl deleted successfully.
File C:\Users\Besitzer\AppData\Local\Temp\{36DB2E95-B8B5-4C06-AB5F-67BC27153A11}\{60DE4033-9503-48D1-A483-7846BD217CA9}\FlashPlayerControlLibrary.exe not found.
Registry value HKEY_USERS\Besitzer_ON_C\Software\Microsoft\Windows\CurrentVersion\RunServices\\SetupFree deleted successfully.
File C:\Users\Besitzer\Downloads\movie.exe not found.
Registry value HKEY_USERS\Besitzer_ON_C\Software\Microsoft\Windows\CurrentVersion\RunServices\\SetupInstallShield deleted successfully.
File C:\Users\Besitzer\Downloads\movie.exe not found.
Registry value HKEY_USERS\Besitzer_ON_C\Software\Microsoft\Windows\CurrentVersion\RunServices\\SetupSweetIM deleted successfully.
File C:\Users\Besitzer\Downloads\movie.exe not found.
Registry value HKEY_USERS\Besitzer_ON_C\Software\Microsoft\Windows\CurrentVersion\RunServices\\SetupYouTube deleted successfully.
File C:\Users\Besitzer\Downloads\movie.exe not found.
Registry value HKEY_USERS\Besitzer_ON_C\Software\Microsoft\Windows\CurrentVersion\RunServices\\YouTubeSweetIM4.42 deleted successfully.
File C:\Users\Besitzer\Downloads\movie.exe not found.
OTLPE by OldTimer - Version 3.1.48.0 log created on 08162013_123347
|
|
16.08.2013, 16:06
| #7 |
| /// the machine /// TB-Ausbilder | Whitescreen "Verbindung wird hergestellt..." + Log Kannst normal booten?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
16.08.2013, 18:48
| #8 |
| | Whitescreen "Verbindung wird hergestellt..." + Log Nein, selbes Problem wie vorher. |
|
17.08.2013, 22:31
| #9 |
| /// the machine /// TB-Ausbilder | Whitescreen "Verbindung wird hergestellt..." + Log hi, Scan mit Farbar's Recovery Scan Tool (Recovery Mode - Windows Vista, 7, 8) Hinweise für Windows 8-Nutzer: Anleitung 1 (FRST-Variante) und Anleitung 2 (zweiter Teil)
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.08.2013, 11:10
| #10 |
| | Whitescreen "Verbindung wird hergestellt..." + Log Auch bei Win XP möglich? |
|
19.08.2013, 16:36
| #11 |
| /// the machine /// TB-Ausbilder | Whitescreen "Verbindung wird hergestellt..." + Log Wieso XP, der Rechner hat laut Logfile Vista? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
23.08.2013, 08:57
| #12 |
| | Whitescreen "Verbindung wird hergestellt..." + Log Ist aber XP installiert o0 |
|
23.08.2013, 10:46
| #13 |
| /// the machine /// TB-Ausbilder | Whitescreen "Verbindung wird hergestellt..." + Log Dann bitte ein frisches OTLPE Log.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Whitescreen "Verbindung wird hergestellt..." + Log |
| abgesicherter, abgesicherter modus, alten, anhang, aufsetzen, bildschirm, brauche, erschein, erscheint, erstell, erstellt, laptop, log, modus, neu, problem, quasi, systems, systemstart, theme, themen, verbindung, weißer, zeile, öfter |
Textbox. 
Linear-Darstellung
