Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Log-Analyse und Auswertung: Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Seite 1 von 3 1 23
Alt 04.09.2013, 14:41   #1
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Hallo Leute,

nach der I-Net-Suche zu meinem Problem bin ich bei euch gelandet.

Folgendes Problem trat vor einer ganzen Weile auf:

- KIS 2013- Schwarze Liste beschädigt, Selbstschutz deaktiviert, dann ging es ab und zu
- da o.g. Vorgehen kein Dauerzustand sein sollte, Kasperky-Support bemüht- ohne Erfolg
- nachdem der Support eine Neuinstallation mit zuvor gelöschtem Aktivierungscode wünschte, war keine Aktivierung mehr möglich weil der Arbeitsstationsdienst nicht mehr gestartet werden kann und Kaspersky hat sich schon seit Tagen nicht mehr gemeldet
- erst ein mal KIS 2013 entfernt und Antivir free installiert- scheint zu funktionieren

Die logs musste ich leider als Anhang beilegen.

Antivir hat heute das hier gefunden- hat meiner Meinung nach aber nichts mit dem Problem zu tun:

Code:
ATTFilter
04.09.2013 13:09 [System-Scanner] Malware gefunden
      Die Datei 
      'G:\Sicherung_von_C\Marko\Downloads\BestVideoDownloaderSetup-TurboUpgrade.exe'
      enthielt einen Virus oder unerwünschtes Programm 'ADWARE/Yontoo.Gen2' [adware].
      Durchgeführte Aktion(en):
      Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '54748bb6.qua' 
      verschoben!

04.09.2013 13:09 [Echtzeit-Scanner] Malware gefunden
      In der Datei 
      'G:\Sicherung_von_C\Marko\Downloads\BestVideoDownloaderSetup-TurboUpgrade.exe'
      wurde ein Virus oder unerwünschtes Programm 'ADWARE/Yontoo.Gen2' [adware] 
      gefunden.
      Ausgeführte Aktion: Zugriff verweigern

Alt 04.09.2013, 15:37   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


hi,

Logs zur Not aufteilen und posten.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 04.09.2013, 18:32   #3
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Hallo,

ich hatte zuerst alle Logs im Beitrag drin, als ich dann die Vorschau anzeigen ließ, sagte mir das System, das ich zu viele Zeichen habe und es als Anhang posten soll.

Also bitte verzeih mir das, ich hatte dererlei vorher noch nie gemacht.

Soll ich jetzt mehrere Antworten hintereinander schreiben und nur die logs, die reinpassen erstellen?
Ach ich machs einfach.

Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 14:08 on 04/09/2013 (Marko)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
HKCU:DAEMON Tools Lite -> Removed
HKCU:AlcoholAutomount -> Removed

Checking for services/drivers...
SPTD -> Disabled (Service running -> reboot required)


-=E.O.F=-
Code:
ATTFilter
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-09-04 14:49:12
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\0000006b WDC_WD50 rev.15.0 465,76GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Marko\AppData\Local\Temp\pwldqpog.sys


---- Registry - GMER 2.1 ----

Reg  HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\001bdc0f9fcc                                           
Reg  HKLM\SYSTEM\CurrentControlSet\services\eventlog\Application@Sources                                                   MSDMine?DfSd?DfSd?DfSdk
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04                                      
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0                                   e:\Programme\Alcohol Soft\Alcohol 120\
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                   0
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                                0x2B 0x0C 0x55 0xAB ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001                             
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0                          0xA0 0x02 0x00 0x00 ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew                       0x8E 0xFE 0xA6 0xEC ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40                      
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew                0xD3 0xE1 0xC2 0x7F ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                      
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                   0x00 0x00 0x00 0x00 ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                   1
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                0xDA 0x78 0xE6 0x62 ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                   E:\Programme\DAEMON Tools Lite\
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                             
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                       0x48 0x8B 0x9F 0x82 ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                          0xA0 0x02 0x00 0x00 ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                        
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                  0x14 0x97 0x0D 0x85 ...
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1                        
Reg  HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                  0x46 0x6A 0xB8 0x2A ...
Reg  HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\001bdc0f9fcc (not active ControlSet)                       
Reg  HKLM\SYSTEM\ControlSet002\services\eventlog\Application@Sources                                                       MSDMine?DfSd?DfSd?DfSdk
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)                  
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0                                       e:\Programme\Alcohol Soft\Alcohol 120\
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                       0
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                                    0x2B 0x0C 0x55 0xAB ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)         
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0                              0xA0 0x02 0x00 0x00 ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew                           0x8E 0xFE 0xA6 0xEC ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet)  
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew                    0xD3 0xE1 0xC2 0x7F ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)                  
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                       0x00 0x00 0x00 0x00 ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                       1
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                    0xDA 0x78 0xE6 0x62 ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                       E:\Programme\DAEMON Tools Lite\
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)         
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                           0x48 0x8B 0x9F 0x82 ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                              0xA0 0x02 0x00 0x00 ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)    
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                      0x14 0x97 0x0D 0x85 ...
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1 (not active ControlSet)    
Reg  HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                      0x46 0x6A 0xB8 0x2A ...

---- EOF - GMER 2.1 ----
Hier das nächste log:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-09-2013 03
Ran by Marko at 2013-09-04 14:23:16
Running from C:\Users\Marko\Desktop
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
64 Bit HP CIO Components Installer (Version: 8.2.2)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
AC3Filter 2.5b (x32 Version: 2.5b)
Adobe AIR (x32 Version: 3.7.0.1860)
Adobe Bridge 1.0 (x32 Version: 001.000.001)
Adobe Common File Installer (x32 Version: 1.00.001)
Adobe Community Help (x32 Version: 3.5.23)
Adobe Download Assistant (x32 Version: 1.2.3)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Help Center 1.0 (x32 Version: 1.0.1)
Adobe Photoshop CS2 (x32 Version: 9.0)
Adobe Photoshop Elements 11 (x32 Version: 11.0)
Adobe Photoshop Lightroom 5 64-bit (Version: 5.0.1)
Adobe Premiere Elements 11 (Version: 11.0)
Adobe Stock Photos 1.0 (x32 Version: 1.0.1)
Amazon MP3-Downloader 1.0.18 (HKCU Version: 1.0.18)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0806.1213.19931)
AMD Media Foundation Decoders (Version: 1.0.70405.2224)
AMD System Monitor (x32 Version: 1.0.8)
AMD USB Filter Driver (x32 Version: 1.0.15.94)
AMD VISION Engine Control Center (x32 Version: 2012.0806.1213.19931)
AntiBrowserSpy (x32 Version: 3.6.106)
Apple Application Support (x32 Version: 2.3.4)
Apple Software Update (x32 Version: 2.1.3.127)
Application Profiles (x32 Version: 2.0.4337.36028)
Application Profiles (x32 Version: 2.0.4365.36132)
Ashampoo Burning Studio 12 v.12.0.5 (x32 Version: 12.0.5)
Ashampoo Home Designer Pro v.1.0.1 (x32 Version: 1.0.1)
Ashampoo Internet Accelerator 3 v.3.20 (x32 Version: 3.1.1)
Ashampoo Music Studio 4 v.4.0.5 (x32 Version: 4.0.5)
Ashampoo Music Studio 4 v.4.1.0 (x32 Version: 4.1.0)
Ashampoo Photo Commander 10 v.10.1.1 (x32 Version: 10.1.1)
Ashampoo Snap 5 v.5.1.5 (x32 Version: 5.1.5)
Ashampoo Video Styler 2013 v.1.0.1 (x32 Version: 1.0.1)
Ashampoo WinOptimizer 10 v.10.2.5 (x32 Version: 10.02.05)
Audio 180% (x32 Version: Audio 180%)
Avira Free Antivirus (x32 Version: 13.0.0.4052)
Bewerbungsfoto-/Passbild-Generator v3.5b (x32)
BEWERBUNGSMASTER (e:\Programme\BEWERBUNGSMASTER\) (x32)
BEWERBUNGSMASTER (x32)
BufferChm (x32 Version: 130.0.331.000)
Bullzip PDF Printer 9.3.0.1516 (Version: 9.3.0.1516)
C4400 (x32 Version: 130.0.365.000)
C4500 (x32 Version: 130.0.365.000)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (x32 Version: 1.7.2.11)
Canon Internet Library for ZoomBrowser EX (x32 Version: 1.6.3.9)
Canon MOV Decoder (x32 Version: 1.5.0.7)
Canon MOV Encoder (x32 Version: 1.3.1.3)
Canon MovieEdit Task for ZoomBrowser EX (x32 Version: 3.4.1.9)
Canon Utilities Digital Photo Professional 3.8 (x32 Version: 3.8.0.0)
Canon Utilities EOS Utility (x32 Version: 2.8.1.0)
Canon Utilities PhotoStitch (x32 Version: 3.1.22.46)
Canon Utilities Picture Style Editor (x32 Version: 1.7.0.0)
Canon Utilities WFT Utility (x32 Version: 3.5.1.1)
Canon Utilities ZoomBrowser EX (x32 Version: 6.5.1.15)
Canon ZoomBrowser EX Memory Card Utility (x32 Version: 1.3.0.4)
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1213.19931)
Catalyst Control Center Localization All (x32 Version: 2012.0806.1213.19931)
CCC Help Chinese Standard (x32 Version: 2012.0806.1212.19931)
CCC Help Chinese Traditional (x32 Version: 2012.0806.1212.19931)
CCC Help Czech (x32 Version: 2012.0806.1212.19931)
CCC Help Danish (x32 Version: 2012.0806.1212.19931)
CCC Help Dutch (x32 Version: 2012.0806.1212.19931)
CCC Help English (x32 Version: 2012.0806.1212.19931)
CCC Help Finnish (x32 Version: 2012.0806.1212.19931)
CCC Help French (x32 Version: 2012.0806.1212.19931)
CCC Help German (x32 Version: 2012.0806.1212.19931)
CCC Help Greek (x32 Version: 2012.0806.1212.19931)
CCC Help Hungarian (x32 Version: 2012.0806.1212.19931)
CCC Help Italian (x32 Version: 2012.0806.1212.19931)
CCC Help Japanese (x32 Version: 2012.0806.1212.19931)
CCC Help Korean (x32 Version: 2012.0806.1212.19931)
CCC Help Norwegian (x32 Version: 2012.0806.1212.19931)
CCC Help Polish (x32 Version: 2012.0806.1212.19931)
CCC Help Portuguese (x32 Version: 2012.0806.1212.19931)
CCC Help Russian (x32 Version: 2012.0806.1212.19931)
CCC Help Spanish (x32 Version: 2012.0806.1212.19931)
CCC Help Swedish (x32 Version: 2012.0806.1212.19931)
CCC Help Thai (x32 Version: 2012.0806.1212.19931)
CCC Help Turkish (x32 Version: 2012.0806.1212.19931)
ccc-utility64 (Version: 2012.0806.1213.19931)
Classic Shell (Version: 3.6.8)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000)
COMPUTERBILD-Abzockschutz (x32 Version: 1.0.40)
Content Manager 2 (x32 Version: 3.10.0.52790)
Copy (x32 Version: 130.0.428.000)
CPUID CPU-Z 1.59
CyberGhost VPN
DAEMON Tools Lite (x32 Version: 4.46.1.0327)
Data Lifeguard Diagnostic for Windows 1.24 (x32)
DateiCommander13 Basic (x32)
Desk Drive (x32 Version: 1.8.2)
DeskDrive Version 1.8.5 (x32 Version: 1.8.5)
Destinations (x32 Version: 130.0.0.0)
DeviceDiscovery (x32 Version: 130.0.465.000)
Diagnostic Utility (x32 Version: 1.00.0000)
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904)
DivX-Setup (x32 Version: 2.6.1.44)
DocProc (x32 Version: 13.0.0.0)
dows-Treiberpaket - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (Version: 05/31/2012 7.1.2.0)
DxO FilmPack 2.0 (x32 Version: 2.0.0)
DxO Optics Pro 5.3.5 (x32 Version: 5.3.5)
DxO Optics Pro 6 (x32 Version: 6.6.0)
Elements 11 Organizer (x32 Version: 11.0)
eReg (x32 Version: 1.20.138.34)
erLT (x32 Version: 1.20.0137)
Fahrtenbuch professionell (x32)
FileBox eXtender (Version: 2.1.0)
FileBox eXtender (x32)
FileZilla Client 3.5.3 (x32 Version: 3.5.3)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.31.0)
FolderVisualizer (x32 Version: 2012)
GeoSetter 3.4.16 (x32)
Gigaset QuickSync (Version: 7.2.0844.6)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.153)
GPBaseService2 (x32 Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photo Creations (x32 Version: 1.0.0.9452)
HP Photosmart C4400 All-In-One Driver Software 13.0 Rel. 3 (Version: 13.0)
HP Photosmart C4500 All-In-One Driver Software 13.0 Rel. 4 (Version: 13.0)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Update (x32 Version: 5.003.001.001)
HPDiagnosticAlert (x32 Version: 1.00.0000)
HPPhotoGadget (x32 Version: 130.0.282.000)
HPProductAssistant (x32 Version: 130.0.371.000)
Inpaint 3 Installation & Registrierung (x32)
Inpaint 3.0 (x32)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Java(TM) 6 Update 31 (x32 Version: 6.0.310)
JavaFX 2.1.1 (x32 Version: 2.1.1)
KeePass Password Safe 2.21 (x32)
Logitech Flow Scroll 4.0 (Version: 4.00.33)
Logitech SetPoint 6.32 (Version: 6.32.20)
Logitech Unifying-Software 2.10 (Version: 2.10.37)
MadAppLauncher version 1.10.0.0 (x32 Version: 1.10.0.0)
MAGIX Foto Designer 7 (x32 Version: 7.0.1.1)
MAGIX Screenshare (x32 Version: 4.3.6.1987)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6)
MarketResearch (x32 Version: 130.0.374.000)
MediaCoder x64 0.8.25.5553 (Version: 0.8.25.5553)
Mediencenter 3.8.1.2208 (HKCU Version: 3.8.1.2208)
Mediencenter Assistent (Version: 2.7.0.1451)
MEDION NAS TOOL (x32)
Memeo Instant Backup (x32 Version: 4.60.0.7939)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Office Professional 2013 - de-de (Version: 15.0.4517.1509)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1)
Miso 1.0 (x32 Version: 1.0)
Mozilla Firefox 18.0.1 (x86 de) (x32 Version: 18.0.1)
Mozilla Firefox 23.0.1 (x86 de) (HKCU Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 18.0.1)
Mp3tag v2.57 (x32 Version: v2.57)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (x32 Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (x32 Version: 1.0.1.2)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
Naviextras Toolbox Prerequesities (x32 Version: 1.0.0)
Nero 8 (x32 Version: 8.3.312)
neroxml (x32 Version: 1.0.0)
Network64 (Version: 130.0.572.000)
Nokia Connectivity Cable Driver (x32 Version: 7.1.172.0)
Nokia Suite (x32 Version: 3.8.30.0)
NTRIP (x32)
O&O DriveLED Professional (Version: 4.2.157)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Ocster Backup Pro (Version: 8.08)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4517.1509)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4517.1509)
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4517.1509)
ON_OFF Charge B11.1102.1 (x32 Version: 1.00.0001)
Paragon Festplatten Manager™ 2011 Kompakt 2nd Edition (x32 Version: 90.00.0003)
PC Connectivity Solution (x32 Version: 12.0.109.0)
PDF Experte 8 Ultimate (x32 Version: 8.0.0140.0)
Perfect Effects 4.0.4 (x32 Version: 4.0.4)
PL-2303 USB-to-Serial (x32 Version: 1.7.0)
PRE11 STI 64Installer (x32 Version: 11.0)
PS_AIO_03_C4400_Software_Min (x32 Version: 130.0.365.000)
PS_AIO_04_C4500_Software_Min (x32 Version: 130.0.365.000)
PSE11 STI Installer (x32 Version: 11.0)
Q-Dir (x32)
QuickTime (x32 Version: 7.74.80.86)
Rainmeter (x32 Version: 2.4 r1678)
Realtek Ethernet Controller Driver (x32 Version: 7.58.411.2012)
Realtek HDMI Audio Driver for ATI (x32 Version: 6.0.1.6650)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6662)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30126)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0)
Scan (x32 Version: 13.0.0.0)
SeaTools for Windows (x32 Version: 1.2.0.7)
Send To Toys v2.61
SiSoftware Sandra Lite 2012.SP5c (Version: 18.74.2012.10)
SmartTools Publishing • Excel AutoBackup (x32 Version: v2.50)
SmartTools Publishing • Outlook Adress-Assistent (x32 Version: v3.50)
SmartTools Publishing • Word Adressfenster-Assistent (x32 Version: v2.50)
SmartWebPrinting (x32 Version: 130.0.457.000)
SolutionCenter (x32 Version: 130.0.373.000)
Status (x32 Version: 130.0.469.000)
swMSM (x32 Version: 12.0.0.1)
TomTom HOME (x32 Version: 2.9.2)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2)
Toolbox (x32 Version: 130.0.648.000)
TrayApp (x32 Version: 130.0.422.000)
Treiber-Studio 2013 (Version: 8.0.519)
Treiber-Studio 2013 (Version: 8.1.428)
Unknown Device Identifier 8.00
UnloadSupport (x32 Version: 11.0.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
VCRedistSetup (x32 Version: 1.0.0)
WebReg (x32 Version: 130.0.132.017)
Windows Mobile-Gerätecenter (Version: 6.1.6965.0)
XnView Shell Extension 3.2.0 (64bits) (x32 Version: 3.2.0)

==================== Restore Points  =========================

30-08-2013 18:07:20 Windows-Sicherung

==================== Hosts content: ==========================

2009-07-14 04:34 - 2012-05-22 09:49 - 00000895 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.google-analytics.com
127.0.0.1 google-analytics.com


==================== Scheduled Tasks (whitelisted) =============

Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => start w32time task_started
Task: {07FD82E2-B526-4FC7-8798-FCA387122C0B} - System32\Tasks\One-Click Optimizer => E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\WO10.exe [2013-05-15] (Ashampoo Development GmbH & Co. KG)
Task: {18E87A3D-D345-46C8-83A0-765A4D34BF98} - System32\Tasks\{0DC1FC84-5EDB-4337-ABC3-B6DDCF71C3C2} => E:\Programme\Mozilla\firefox.exe No File
Task: {479C03B9-CEC4-41F3-A69F-F81E31FC295D} - System32\Tasks\{485AAEC7-0CDC-4324-B369-6564E05046FA} => E:\Programme\Mozilla Firefox\firefox.exe [2013-08-18] (Mozilla Corporation)
Task: {55D08572-AF0D-4D79-B374-B2288E853937} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-21] (Google Inc.)
Task: {94E7BDC3-C5CF-4EFB-A69A-8C6218A52551} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => start osppsvc
Task: {9D61BA86-511D-4EF2-9642-5A4E7FC5D66A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-06-09] (Microsoft Corporation)
Task: {9E55C402-A616-4ED1-B9A3-DDE6CCFFCF6A} - System32\Tasks\Microsoft\Windows\MemDiag => C:\Windows\system32\mdres.exe [2009-07-14] (Microsoft Corporation)
Task: {A00464E8-6BBC-4CE0-B494-EA214C5F7098} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-20] (Microsoft Corporation)
Task: {B5FF5D24-9746-49F5-9A08-EE16078E7451} - System32\Tasks\{68FCBDDC-F452-4549-97AD-356CC5E03486} => E:\Programme\Nero\Nero\Nero8\Nero Burning Rom\nero.exe [2008-06-24] (Nero AG)
Task: {BE32AC8B-F571-4959-965A-8CCC10A0E121} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-21] (Google Inc.)
Task: {C820FD4E-DC50-452F-A5E7-1350854F076E} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\System32\sdengin2.dll [2010-11-20] (Microsoft Corporation)
Task: {E47767F2-BC3A-463D-8CBD-A409DEA7DCA3} - System32\Tasks\AdobeAAMUpdater-1.0-Kobolt-Marko => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {F07079E8-DB7A-4819-8454-71FE70E5A687} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2011-08-23] ()
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe
Task: C:\Windows\Tasks\One-Click Optimizer.job => E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\WO10.exe

==================== Loaded Modules (whitelisted) =============

2011-02-23 17:09 - 2011-02-23 17:09 - 00313344 _____ (Hyperionics Technology LLC) E:\Programme\FileBX\FileBXH.dll
2009-07-14 02:22 - 2009-07-14 03:38 - 00081408 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\System32\l3codeca.acm
2012-04-06 03:09 - 2012-04-06 03:09 - 00054784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2012-04-06 04:20 - 2012-04-06 04:20 - 01067520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2012-04-06 03:54 - 2012-04-06 03:54 - 07479296 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2013-02-03 17:06 - 2013-02-03 17:06 - 00244696 _____ (Microsoft Corporation) C:\Users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
2013-02-03 17:06 - 2013-02-03 17:06 - 00661448 _____ (Microsoft Corporation) C:\Users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\MSVCP110.dll
2013-02-03 17:06 - 2013-02-03 17:06 - 00828872 _____ (Microsoft Corporation) C:\Users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\MSVCR110.dll
2013-04-04 10:22 - 2013-04-04 10:22 - 00558592 _____ (Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.IconOverlayHandler.dll
2013-06-29 10:50 - 2013-06-29 10:50 - 00724992 _____ (IvoSoft) E:\Programme\Classic Shell\ClassicExplorer64.dll
2013-06-29 10:50 - 2013-06-29 10:50 - 01750528 _____ (IvoSoft) E:\Programme\Classic Shell\ClassicStartMenuDLL.dll
2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () e:\Programme\FileZilla FTP Client\fzshellext_64.dll
2011-12-05 17:57 - 2010-11-20 06:27 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll
2013-07-29 14:57 - 2013-05-15 15:22 - 00117096 _____ (TODO: <Company name>) E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\WinOptimizerContextHandler64.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 02288184 _____ (Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\shlext64.dll
2013-04-24 15:25 - 2013-04-24 15:25 - 00402432 _____ (Florian Heidenreich) E:\Programme\MP3-Tag\Mp3tag\Mp3tagShell64.dll
2013-04-04 10:22 - 2013-04-04 10:22 - 00152064 _____ (Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.ContextMenuHandler.dll
2012-08-15 11:55 - 2012-08-13 17:25 - 00149504 _____ (Deutsche Telekom AG) C:\Windows\system32\DTAG.Mediencenter.ShellExtension.dll
2012-05-22 11:01 - 2012-02-23 21:44 - 02409472 _____ () e:\Programme\XnView\ShellEx\XnViewShellExt64.dll
2013-07-10 13:15 - 2011-02-01 20:09 - 00593788 _____ (Friedemann Schmidt) e:\Programme\GeoSetter\GeoSetterShellExt64.dll
2010-11-18 22:08 - 2010-11-18 22:08 - 00086016 _____ (Igor Pavlov) E:\Programme\7zip\7-zip.dll
2012-05-22 11:07 - 2011-05-18 17:47 - 00137216 _____ (Gabriele Ponti) e:\Programme\Send To Toys\SendToFolderShellExt.dll
2012-05-22 11:07 - 2011-05-18 17:47 - 00140800 _____ (Gabriele Ponti) e:\Programme\Send To Toys\SendToClipboardShellExt.dll
2009-07-14 02:08 - 2009-07-14 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\NetworkItemFactory.dll
2009-07-14 02:08 - 2009-07-14 03:40 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\dtsh.dll
2009-07-14 02:08 - 2009-07-14 03:40 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\fdwcn.dll
2009-07-14 02:08 - 2009-07-14 03:41 - 00120832 _____ (Microsoft Corporation) C:\Windows\System32\wcnapi.dll
2009-07-14 01:35 - 2009-07-14 03:40 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\fdWNet.dll
2009-07-14 01:53 - 2009-07-14 03:40 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\dfscli.dll
2013-08-28 16:17 - 2013-07-18 08:01 - 00231480 _____ (Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll
2012-04-06 03:09 - 2012-04-06 03:09 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2012-04-06 03:23 - 2012-04-06 03:23 - 07431680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2012-04-06 03:34 - 2012-04-06 03:34 - 04731904 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2011-10-07 11:37 - 2011-10-07 11:37 - 00047896 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\khalwrapper.dll
2011-10-07 11:37 - 2011-10-07 11:37 - 00161048 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\KemUtil.dll
2011-10-07 11:37 - 2011-10-07 11:37 - 00091416 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\KemXML.dll
2011-10-07 11:37 - 2011-10-07 11:37 - 00185112 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\kemutb.dll
2011-10-07 11:37 - 2011-10-07 11:37 - 00140056 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\KemWnd.dll
2011-10-07 11:38 - 2011-10-07 11:38 - 00037144 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\SetPointCOM.dll
2011-10-07 11:39 - 2011-10-07 11:39 - 01304856 _____ () E:\Programme\Logitech\SetPointP\Macros\MacroCore.dll
2011-10-07 11:38 - 2011-10-07 11:38 - 00038168 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\WebBrowserSupport.dll
2011-10-07 11:39 - 2011-10-07 11:39 - 00204056 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\Macros\MacroAppSwitch.dll
2011-10-07 11:39 - 2011-10-07 11:39 - 00293656 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\Macros\MacroMedia.dll
2011-10-07 11:39 - 2011-10-07 11:39 - 00236824 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\Macros\MacroEmail.dll
2011-10-07 11:37 - 2011-10-07 11:37 - 00026904 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\KemMon.dll
2011-10-07 11:37 - 2011-10-07 11:37 - 00086808 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\kgame.dll
2011-10-07 11:38 - 2011-10-07 11:38 - 00141592 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\LCabHandler.dll
2011-10-07 11:39 - 2011-10-07 11:39 - 00096536 _____ (Logitech, Inc.) E:\Programme\Logitech\SetPointP\Macros\MacroBT.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 06088360 _____ () E:\Programme\Ocster Backup\bin\backupClientLib.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00388264 _____ () E:\Programme\Ocster Backup\bin\updateman.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00468648 _____ () E:\Programme\Ocster Backup\bin\twirl.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00343208 _____ () E:\Programme\Ocster Backup\bin\tomb.dll
2013-04-12 11:09 - 2013-04-12 11:09 - 01645568 _____ (The OpenSSL Project, hxxp://www.openssl.org/) E:\Programme\Ocster Backup\bin\LIBEAY32.dll
2013-04-12 11:09 - 2013-04-12 11:09 - 00346112 _____ (The OpenSSL Project, hxxp://www.openssl.org/) E:\Programme\Ocster Backup\bin\SSLEAY32.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 04712104 _____ () E:\Programme\Ocster Backup\bin\ox.dll
2013-04-12 10:45 - 2013-04-12 10:45 - 00641024 _____ (wxWidgets development team) E:\Programme\Ocster Backup\bin\wxmsw28u_xrc_vc_ox.dll
2013-04-12 10:44 - 2013-04-12 10:44 - 00622592 _____ (wxWidgets development team) E:\Programme\Ocster Backup\bin\wxmsw28u_html_vc_ox.dll
2013-04-12 10:44 - 2013-04-12 10:44 - 03663872 _____ (wxWidgets development team) E:\Programme\Ocster Backup\bin\wxmsw28u_core_vc_ox.dll
2013-04-12 10:42 - 2013-04-12 10:42 - 01488384 _____ (wxWidgets development team) E:\Programme\Ocster Backup\bin\wxbase28u_vc_ox.dll
2013-04-12 10:44 - 2013-04-12 10:44 - 00875520 _____ (wxWidgets development team) E:\Programme\Ocster Backup\bin\wxmsw28u_adv_vc_ox.dll
2013-04-12 10:44 - 2013-04-12 10:44 - 00157696 _____ (wxWidgets development team) E:\Programme\Ocster Backup\bin\wxbase28u_xml_vc_ox.dll
2013-04-12 10:42 - 2013-04-12 10:42 - 00152576 _____ (wxWidgets development team) E:\Programme\Ocster Backup\bin\wxbase28u_net_vc_ox.dll
2011-12-05 17:56 - 2010-11-20 06:26 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-04-12 10:30 - 2013-04-12 10:30 - 00076288 _____ () E:\Programme\Ocster Backup\bin\zdll.dll
2013-04-12 11:13 - 2013-04-12 11:13 - 00239104 _____ (The cURL library, hxxp://curl.haxx.se/) E:\Programme\Ocster Backup\bin\libcurl.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 10897576 _____ () E:\Programme\Ocster Backup\bin\backupCore.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00156328 _____ () E:\Programme\Ocster Backup\bin\deemon.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00491176 _____ () E:\Programme\Ocster Backup\bin\veem.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00060072 _____ () E:\Programme\Ocster Backup\bin\minizutil.dll
2013-06-27 07:56 - 2013-06-27 07:56 - 00020992 _____ () E:\Programme\Ocster Backup\bin\zlibutil.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00052392 _____ () E:\Programme\Ocster Backup\bin\lzmaUtil.dll
2013-06-27 07:58 - 2013-06-27 07:58 - 00049664 _____ () E:\Programme\Ocster Backup\bin\lzma.dll
2013-06-27 08:01 - 2013-06-27 08:01 - 00309248 _____ () E:\Programme\Ocster Backup\bin\party.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00112808 _____ () E:\Programme\Ocster Backup\bin\scoolite.dll
2013-06-27 07:56 - 2013-06-27 07:56 - 00626688 _____ () E:\Programme\Ocster Backup\bin\sqlite.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 00204968 _____ () E:\Programme\Ocster Backup\bin\netutil.dll
2011-12-05 17:57 - 2010-11-20 06:27 - 01753088 _____ (Microsoft Corporation) C:\Windows\system32\VSSAPI.DLL
2009-07-14 01:36 - 2009-07-14 03:41 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\VssTrace.DLL
2013-07-02 17:21 - 2013-07-02 17:21 - 00147112 _____ () E:\Programme\Ocster Backup\bin\featback.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 00598944 _____ (Microsoft) E:\Programme\AntiBrowserSpy\BrowserMaske.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 00035744 _____ (unknown) E:\Programme\AntiBrowserSpy\AbFlexTrans.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 00037792 _____ () E:\Programme\AntiBrowserSpy\AbCommons.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 06362528 _____ () E:\Programme\AntiBrowserSpy\Commons.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 02648480 _____ (Developer Express Inc.) E:\Programme\AntiBrowserSpy\DevExpress.Data.v10.2.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 00173984 _____ () E:\Programme\AntiBrowserSpy\AbBrowserLibs.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 00274336 _____ (The Apache Software Foundation) E:\Programme\AntiBrowserSpy\log4net.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 03414944 _____ (Developer Express Inc.) E:\Programme\AntiBrowserSpy\DevExpress.Utils.v10.2.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 00018336 _____ () E:\Programme\AntiBrowserSpy\VersionInfo.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 00018848 _____ () E:\Programme\AntiBrowserSpy\AbSettingsKeeper.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 01750432 _____ (Developer Express Inc.) E:\Programme\AntiBrowserSpy\DevExpress.XtraEditors.v10.2.dll
2012-05-22 09:40 - 2011-06-21 12:07 - 00012704 _____ () E:\Programme\AntiBrowserSpy\AbProcessManager.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-03-12 20:16 - 2013-03-12 20:16 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-02-27 18:36 - 2013-01-13 21:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\D3D10Warp.dll
2009-07-14 01:58 - 2009-07-14 03:38 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2009-07-14 01:58 - 2009-07-14 03:41 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\ScrRun.dll
2011-12-05 17:56 - 2010-11-20 06:16 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.dll
2013-06-07 09:59 - 2013-06-07 09:59 - 00012520 _____ () C:\Users\Marko\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.gadget\CoreTempReader.dll
2013-06-07 09:59 - 2013-06-07 09:59 - 00015080 _____ () C:\Users\Marko\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.gadget\GetCoreTempInfoNET.dll
2013-06-07 09:59 - 2013-06-07 09:59 - 00014056 _____ () C:\Users\Marko\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.gadget\SystemInfo.dll
2011-02-23 17:04 - 2011-02-23 17:04 - 00080896 _____ () E:\Programme\FileBX\FbxRes.dll
2009-07-14 01:41 - 2009-07-14 03:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\uiautomationcore.dll
2013-07-02 17:21 - 2013-07-02 17:21 - 04712104 _____ () e:\Programme\Ocster Backup\bin\ox.dll
2013-04-12 10:45 - 2013-04-12 10:45 - 00641024 _____ (wxWidgets development team) e:\Programme\Ocster Backup\bin\wxmsw28u_xrc_vc_ox.dll
2013-04-12 10:44 - 2013-04-12 10:44 - 00622592 _____ (wxWidgets development team) e:\Programme\Ocster Backup\bin\wxmsw28u_html_vc_ox.dll
2013-04-12 10:44 - 2013-04-12 10:44 - 03663872 _____ (wxWidgets development team) e:\Programme\Ocster Backup\bin\wxmsw28u_core_vc_ox.dll
2013-04-12 10:42 - 2013-04-12 10:42 - 01488384 _____ (wxWidgets development team) e:\Programme\Ocster Backup\bin\wxbase28u_vc_ox.dll
2013-04-12 10:44 - 2013-04-12 10:44 - 00875520 _____ (wxWidgets development team) e:\Programme\Ocster Backup\bin\wxmsw28u_adv_vc_ox.dll
2013-04-12 10:44 - 2013-04-12 10:44 - 00157696 _____ (wxWidgets development team) e:\Programme\Ocster Backup\bin\wxbase28u_xml_vc_ox.dll
2013-04-12 10:42 - 2013-04-12 10:42 - 00152576 _____ (wxWidgets development team) e:\Programme\Ocster Backup\bin\wxbase28u_net_vc_ox.dll
2013-08-20 17:55 - 2013-08-20 17:55 - 00287232 _____ (The Apache Software Foundation) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\log4net.dll
2013-08-22 09:49 - 2013-08-22 09:49 - 00073728 _____ (Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.ProxyClient.dll
2013-08-22 09:49 - 2013-08-22 09:49 - 00008192 _____ (Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.Common.dll
2013-08-22 09:49 - 2013-08-22 09:49 - 00881664 _____ (Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\de-DE\Mediencenter.resources.dll
2013-08-22 09:49 - 2013-08-22 09:49 - 00030720 _____ (Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.ProxyContracts.dll
2009-07-14 01:50 - 2009-07-14 03:32 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\security.dll
2011-06-11 02:15 - 2011-06-11 02:15 - 00829264 _____ (Microsoft Corporation) C:\Windows\system32\MSVCR100.dll
2012-11-04 16:25 - 2012-11-04 16:25 - 00736968 _____ () E:\Programme\Rainmeter\Rainmeter.dll
2011-06-11 02:15 - 2011-06-11 02:15 - 00608080 _____ (Microsoft Corporation) C:\Windows\system32\MSVCP100.dll
2012-11-04 16:23 - 2012-11-04 16:23 - 00056832 _____ () E:\Programme\Rainmeter\Plugins\WebParser.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00097280 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\MOM.Implementation.dll
2012-08-06 13:03 - 2012-08-06 13:03 - 00031232 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\LOG.Foundation.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00025088 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00048128 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00005632 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\MOM.Foundation.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00020480 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00022016 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CCC.Implementation.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00015360 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00061440 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Foundation.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00018432 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00061440 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00038400 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00029184 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00005632 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00032768 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\ATICCCom.dll
2012-07-17 09:58 - 2012-07-17 09:58 - 00175104 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\ADL.Foundation.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00034816 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Server.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00006144 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Server.Shared.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00047616 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00020480 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Foundation.CoreAudioAPI.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00006656 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00007168 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00006144 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
2009-04-22 13:13 - 2009-04-22 13:13 - 00045056 _____ (ATI Technologies Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
2010-03-04 02:27 - 2010-03-04 02:27 - 00016384 _____ (ATI Technologies Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Foundation.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00006656 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.dll
2012-04-06 04:16 - 2012-04-06 04:16 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2010-10-07 14:07 - 2010-10-07 14:07 - 00020480 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I1010.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00005632 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00311296 _____ (Advanced Mirco Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00196608 _____ (Advanced Mirco Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2009-06-17 06:27 - 2009-06-17 06:27 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00005632 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00005120 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Plugin.Audio.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00008704 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00008704 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
2008-04-03 17:29 - 2008-04-03 17:29 - 00020480 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00025600 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00008704 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00028672 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00045056 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00053248 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.shared.dll
2009-12-08 08:49 - 2009-12-08 08:49 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll
2007-08-09 17:58 - 2007-08-09 17:58 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll
2009-06-17 11:24 - 2009-06-17 11:24 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00049152 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00144384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Combined.Graphics.Aspects2.Runtime.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00032768 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00065536 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00053248 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00028672 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2008-12-30 13:04 - 2008-12-30 13:04 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
2009-04-22 13:13 - 2009-04-22 13:13 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00050688 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.shared.dll
2007-05-02 18:44 - 2007-05-02 18:44 - 00020480 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00110592 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00081920 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2010-11-05 15:18 - 2010-11-05 15:18 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I1011.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00110592 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00081920 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll
2009-06-17 11:24 - 2009-06-17 11:24 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00013824 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00045056 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll
2009-01-20 15:51 - 2009-01-20 15:51 - 00007168 _____ ( ) C:\ATI\ATI.ACE\Core-Static\atixclib.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00013824 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Runtime.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00008192 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.shared.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00020480 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00020480 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00015872 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Runtime.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00012288 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Shared.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00019968 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Fuel.Runtime.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00010752 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Fuel.Shared.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00013312 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\Fuel.Foundation.dll
2012-08-06 13:24 - 2012-08-06 13:24 - 00037376 _____ (AMD) C:\ATI\ATI.ACE\Fuel\FUEL.Implementation.dll
2012-08-06 13:24 - 2012-08-06 13:24 - 00103424 _____ () C:\ATI\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2012-08-06 13:03 - 2012-08-06 13:03 - 00479232 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\Localization.Foundation.Private.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00352256 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\Localization.Foundation.Implementation.de_Localization.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00071168 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Combined.Fusion.Aspects.Runtime.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00012800 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DPPE.Fuel.Shared.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00011264 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.Fets.Fuel.Shared.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00007168 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.WiFi.Fuel.Shared.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00013824 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.CPUPStates.Fuel.Shared.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00018944 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Runtime.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00018944 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Shared.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00011264 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Platform.Runtime.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00008704 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Platform.Shared.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00015360 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Runtime.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00012800 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Shared.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00011776 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00008704 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00066048 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\APM.Server.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00024576 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\APM.Foundation.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00007168 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00005632 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00380928 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00036352 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00007680 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00032768 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 01395200 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00413696 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00175104 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00172032 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 01007616 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00028160 _____ (Advanced Mirco Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00057344 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 01406464 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Combined.Graphics.Aspects1.Dashboard.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00441344 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00369152 _____ () C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00032768 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00393216 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 02400256 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00024576 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.MultiVPU2.Graphics.Shared.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00237568 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00159744 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00100864 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00021504 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Dashboard.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00044544 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.Audio.Graphics.Dashboard.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00008704 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Fuel.Dashboard.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 01260032 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.User.Fuel.Dashboard.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00026112 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.Fets.Fuel.Dashboard.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00021504 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.WiFi.Fuel.Dashboard.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00048128 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DPPE.Fuel.Dashboard.dll
2012-08-06 13:07 - 2012-08-06 13:07 - 00029696 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.CPUPStates.Fuel.Dashboard.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00037376 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Dashboard.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00007680 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.Platform.Dashboard.dll
2012-08-06 13:08 - 2012-08-06 13:08 - 00039936 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Dashboard.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00008192 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
2012-08-06 13:04 - 2012-08-06 13:04 - 00307200 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Foundation.Client.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00060928 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Component.Dashboard.ProfileManager2.dll
2009-07-14 03:01 - 2009-06-10 22:31 - 01165664 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2012-08-06 13:06 - 2012-08-06 13:06 - 00528384 _____ (Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.dll
2012-08-06 13:05 - 2012-08-06 13:05 - 00020480 _____ (Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\CLI.Aspect.CustomFormatSelection.Graphics.Dashboard.Shared.Private.dll
2013-08-28 16:17 - 2013-07-18 08:01 - 00258104 _____ (Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll
2012-11-28 10:56 - 2012-10-16 09:39 - 00561664 _____ (Microsoft Corporation) C:\Windows\AppPatch\AcLayers.DLL
2011-02-23 17:09 - 2011-02-23 17:09 - 00301568 _____ (Hyperionics Technology LLC) E:\Programme\FileBX\FileBXH32.dll
2013-07-10 10:19 - 2013-07-10 10:19 - 00313000 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2013-08-14 22:22 - 2013-08-14 22:22 - 00358056 _____ () C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll
2013-01-15 19:16 - 2012-02-24 02:55 - 02882048 _____ (Embarcadero Technologies, Inc.) E:\Programme\Avanquest\PDF Experte 8 Ultimate\rtl160.bpl
2013-01-15 19:16 - 2012-02-24 02:55 - 03409920 _____ (Embarcadero Technologies, Inc.) E:\Programme\Avanquest\PDF Experte 8 Ultimate\vcl160.bpl
2013-01-15 19:16 - 2012-04-11 20:06 - 01186816 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\TMSlite160.bpl
2013-01-15 19:16 - 2012-02-24 02:55 - 00445952 _____ (Embarcadero Technologies, Inc.) E:\Programme\Avanquest\PDF Experte 8 Ultimate\vclactnband160.bpl
2013-01-15 19:16 - 2012-02-24 02:55 - 00259072 _____ (Embarcadero Technologies, Inc.) E:\Programme\Avanquest\PDF Experte 8 Ultimate\vclx160.bpl
2013-01-15 19:16 - 2012-02-24 02:55 - 01666560 _____ (Embarcadero Technologies, Inc.) E:\Programme\Avanquest\PDF Experte 8 Ultimate\xmlrtl160.bpl
2013-01-15 19:16 - 2012-03-13 14:50 - 03660800 _____ (Project JEDI) E:\Programme\Avanquest\PDF Experte 8 Ultimate\Jcl160.bpl
2013-01-15 19:16 - 2012-04-11 20:06 - 00087552 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\vspropsaver160.bpl
2013-01-15 19:16 - 2012-04-11 20:06 - 02478080 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\vsvector160.bpl
2013-01-15 19:16 - 2012-03-29 18:00 - 04119552 _____ (visagesoft) E:\Programme\Avanquest\PDF Experte 8 Ultimate\vsgdi.dll
2013-01-15 19:16 - 2012-02-24 02:55 - 00347136 _____ (Embarcadero Technologies, Inc.) E:\Programme\Avanquest\PDF Experte 8 Ultimate\vclimg160.bpl
2013-01-15 19:16 - 2012-04-11 20:06 - 04680704 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfcore160.bpl
2013-01-15 19:16 - 2012-04-11 20:06 - 02693120 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\BBlite160.bpl
2013-01-15 19:16 - 2012-02-23 16:11 - 00025088 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\vstrees160.bpl
2013-01-15 19:16 - 2012-04-11 20:06 - 00064512 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\vsprinters160.bpl
2013-01-15 19:16 - 2012-04-11 20:06 - 00064512 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfprinter160.bpl
2013-01-15 19:16 - 2011-09-30 19:10 - 00684032 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\js32.dll
2013-01-15 19:16 - 2012-04-11 20:06 - 00097280 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\expertpdfcore160.bpl
2013-01-15 19:16 - 2012-02-24 02:55 - 00253952 _____ (Chad Z. Hower a.k.a Kudzu and the Indy Pit Crew) E:\Programme\Avanquest\PDF Experte 8 Ultimate\IndySystem160.bpl
2013-01-15 19:16 - 2012-02-24 02:55 - 02506752 _____ (Chad Z. Hower a.k.a Kudzu and the Indy Pit Crew) E:\Programme\Avanquest\PDF Experte 8 Ultimate\IndyProtocols160.bpl
2013-01-15 19:16 - 2012-02-24 02:55 - 00387584 _____ (Chad Z. Hower a.k.a Kudzu and the Indy Pit Crew) E:\Programme\Avanquest\PDF Experte 8 Ultimate\IndyCore160.bpl
2013-01-15 19:16 - 2012-04-11 20:06 - 02253824 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\PKIECtrl160.bpl
2009-07-14 02:18 - 2009-07-14 03:40 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2009-07-14 02:18 - 2009-07-14 03:40 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\AVICAP32.DLL
2013-01-15 19:16 - 2012-04-11 20:06 - 00517120 _____ () E:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfeditor160.bpl
2013-01-15 19:16 - 2012-02-24 02:55 - 00255488 _____ (Embarcadero Technologies, Inc.) E:\Programme\Avanquest\PDF Experte 8 Ultimate\inet160.bpl
2013-01-15 19:16 - 2011-01-19 17:49 - 00156160 _____ (Avanquest Software) E:\Programme\Avanquest\PDF Experte 8 Ultimate\Snapu.dll
2013-01-15 19:16 - 2010-04-06 15:41 - 00316416 _____ (Avanquest Software) E:\Programme\Avanquest\PDF Experte 8 Ultimate\OLRegist.dll
2013-01-15 19:16 - 2010-08-05 10:57 - 00599296 _____ (Avanquest Software) E:\Programme\Avanquest\PDF Experte 8 Ultimate\bvrpctln.dll
2011-09-16 15:39 - 2011-09-16 15:39 - 00098664 _____ (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
2011-12-05 17:56 - 2010-11-20 06:25 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Cabinet.dll
2013-02-13 04:38 - 2013-02-13 04:38 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2011-06-11 02:15 - 2011-06-11 02:15 - 05601616 _____ (Microsoft Corporation) C:\Windows\system32\mfc100u.dll
2011-06-11 02:15 - 2011-06-11 02:15 - 00064336 _____ (Microsoft Corporation) C:\Windows\system32\MFC100DEU.DLL
2013-08-28 16:17 - 2013-09-04 11:36 - 00749112 _____ (Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\ccwkrlib.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00055352 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\cfglib.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00349752 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccguard.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00029240 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccgrdrc.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00229432 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccgrdw.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00415288 _____ (Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\grdcore.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00218168 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\gpipc.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00059448 _____ (Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avipc.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00419384 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccwgrd.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00807992 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccgen.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00049720 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccgenrc.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00220216 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccupdate.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00028728 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccupdrc.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00083000 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\cclic.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00009784 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\cclicrc.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00237624 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccmsg.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00010296 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccmsgrc.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 04786744 _____ (Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\rcimage.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00014392 _____ (Avira Operations GmbH & Co. KG) e:\programme\antivir\avira\antivir desktop\ccmainrc.dll
2013-08-28 16:17 - 2013-09-04 11:36 - 00212536 _____ (Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\ccupdw.dll
2013-08-18 14:19 - 2013-01-16 22:08 - 00770384 _____ (Microsoft Corporation) E:\Programme\Mozilla Firefox\MSVCR100.dll
2013-08-18 14:19 - 2013-01-16 22:08 - 00421200 _____ (Microsoft Corporation) E:\Programme\Mozilla Firefox\MSVCP100.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 00158104 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\mozglue.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 01914264 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\nss3.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 03551640 _____ () E:\Programme\Mozilla Firefox\mozjs.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 00016280 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\mozalloc.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 03429784 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\gkmedias.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 20616088 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\xul.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 00262552 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\browser\components\browsercomps.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 00152984 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\softokn3.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 00091544 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\nssdbm3.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 00301976 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\freebl3.dll
2013-08-18 14:19 - 2013-08-18 14:20 - 00392600 _____ (Mozilla Foundation) E:\Programme\Mozilla Firefox\nssckbi.dll
2013-04-16 21:01 - 2013-04-16 21:01 - 00424960 _____ (AVM Berlin) C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\s0d1rked.default\extensions\fb_add_on@avm.de\components\windows\FB_AddOn4.dll
2013-04-16 21:01 - 2013-04-16 21:01 - 01085440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\s0d1rked.default\extensions\fb_add_on@avm.de\components\windows\libeay32.dll
2013-02-03 17:06 - 2013-02-03 17:06 - 00220632 _____ (Microsoft Corporation) C:\Users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
2013-02-03 17:06 - 2013-02-03 17:06 - 00534480 _____ (Microsoft Corporation) C:\Users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\MSVCP110.dll
2013-02-03 17:06 - 2013-02-03 17:06 - 00862664 _____ (Microsoft Corporation) C:\Users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\MSVCR110.dll
2013-02-03 17:06 - 2013-02-03 17:06 - 00537560 _____ (Microsoft Corporation) C:\Users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\Telemetry.dll
2013-02-03 17:06 - 2013-02-03 17:06 - 00038360 _____ (Microsoft Corporation) C:\Users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\logging.dll
2011-12-05 17:57 - 2010-11-20 06:26 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\faultrep.dll
2011-09-16 01:17 - 2011-09-16 01:17 - 00230624 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\Memeo.Client.dll
2011-09-16 01:17 - 2011-09-16 01:17 - 01660128 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\Tanagra.Utility.dll
2011-09-16 01:17 - 2011-09-16 01:17 - 00020704 _____ (Stan Schultes, VBNetExpert.com) C:\Program Files (x86)\Memeo\AutoBackup\XMLSettings.dll
2011-09-16 01:16 - 2011-09-16 01:16 - 01557728 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\Tanagra.DataClad.dll
2011-09-16 01:16 - 2011-09-16 01:16 - 00054496 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\Tanagra.Interop.dll
2011-09-16 01:17 - 2011-09-16 01:17 - 02888416 _____ () C:\Program Files (x86)\Memeo\AutoBackup\Memeo.Client.UI.dll
2011-09-16 01:17 - 2011-09-16 01:17 - 00025824 _____ () C:\Program Files (x86)\Memeo\AutoBackup\Memeo.Client.DriveDetection.dll
2011-09-16 01:17 - 2011-09-16 01:17 - 00015872 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\de-DE\Memeo.Client.resources.dll
2011-09-16 01:18 - 2011-09-16 01:18 - 00028672 _____ () C:\Program Files (x86)\Memeo\AutoBackup\de-DE\InstantBackup.resources.dll
2010-04-05 20:52 - 2010-04-05 20:52 - 00013824 _____ ( ) C:\Program Files (x86)\Memeo\AutoBackup\Interop.eWebControl.dll
2010-04-05 20:50 - 2010-04-05 20:50 - 00143360 _____ (Digital River, Inc.) C:\Program Files (x86)\Common Files\Memeo\eWebControl365.dll
2011-09-16 01:16 - 2011-09-16 01:16 - 00025824 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\Tanagra.Third-party.Security.dll
2011-09-16 01:16 - 2011-09-16 01:16 - 00296160 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\Tanagra.DataClad.DataAccess.dll
2011-09-16 01:16 - 2011-09-16 01:16 - 00067808 _____ (Newtonsoft) C:\Program Files (x86)\Memeo\AutoBackup\Newtonsoft.Json.dll
2011-09-16 01:16 - 2011-09-16 01:16 - 02798816 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\Tanagra.BMU.dll
2011-09-16 01:18 - 2011-09-16 01:18 - 00057344 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\de-DE\Tanagra.DataClad.resources.dll
2011-09-16 01:16 - 2011-09-16 01:16 - 00074976 _____ (Finisar Corporation) C:\Program Files (x86)\Memeo\AutoBackup\SQLite.NET.dll
2010-04-05 20:52 - 2010-04-05 20:52 - 00504293 _____ () C:\Program Files (x86)\Memeo\AutoBackup\sqlite3.DLL
2011-09-16 01:16 - 2011-09-16 01:16 - 00042208 _____ (Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoRemoteCore.dll
2011-09-16 01:18 - 2011-09-16 01:18 - 00036864 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\de-DE\Tanagra.Utility.resources.dll
2010-04-05 20:52 - 2010-04-05 20:52 - 00053248 _____ () C:\Program Files (x86)\Memeo\AutoBackup\Mono.Nat.dll
2011-09-16 01:16 - 2011-09-16 01:16 - 00010240 _____ (Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\de-DE\MemeoUpdater.resources.dll
2013-07-10 12:34 - 2013-07-10 12:34 - 16166280 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll

==================== Alternate Data Streams (whitelisted) ==========

AlternateDataStreams: C:\ProgramData\Microsoft:cJP8NoA3alrUCM20
AlternateDataStreams: C:\ProgramData\Microsoft:V6rvehwmRjYqRAkFBpLsBNz
AlternateDataStreams: C:\Users\Marko\Cookies:xfyRDFyvnvb5tEWMQke9kc
AlternateDataStreams: C:\Users\Marko\Lokale Einstellungen:ESx4L4fSedPdx1ERV9rqEL
AlternateDataStreams: C:\Users\Marko\AppData\Local:ESx4L4fSedPdx1ERV9rqEL
AlternateDataStreams: C:\Users\Marko\AppData\Local\Anwendungsdaten:ESx4L4fSedPdx1ERV9rqEL


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/04/2013 02:10:28 PM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Ausnahmefehler "System.Reflection.TargetInvocationException: Ein Aufrufziel hat einen Ausnahmefehler verursacht. ---> System.Security.Principal.IdentityNotMappedException: Manche oder alle Identitätsverweise konnten nicht übersetzt werden.
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   bei System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- Ende der internen Ausnahmestapelüberwachung ---
   bei System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   bei System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   bei System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   bei System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)" bei der Remotekonfiguration.   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   bei RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (09/04/2013 11:31:18 AM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Ausnahmefehler "System.Reflection.TargetInvocationException: Ein Aufrufziel hat einen Ausnahmefehler verursacht. ---> System.Security.Principal.IdentityNotMappedException: Manche oder alle Identitätsverweise konnten nicht übersetzt werden.
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   bei System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- Ende der internen Ausnahmestapelüberwachung ---
   bei System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   bei System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   bei System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   bei System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)" bei der Remotekonfiguration.   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   bei RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (09/03/2013 02:50:35 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (09/03/2013 02:50:35 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (09/03/2013 02:50:33 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/03/2013 02:18:39 PM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Ausnahmefehler "System.Reflection.TargetInvocationException: Ein Aufrufziel hat einen Ausnahmefehler verursacht. ---> System.Security.Principal.IdentityNotMappedException: Manche oder alle Identitätsverweise konnten nicht übersetzt werden.
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   bei System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- Ende der internen Ausnahmestapelüberwachung ---
   bei System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   bei System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   bei System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   bei System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)" bei der Remotekonfiguration.   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   bei RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (09/02/2013 02:52:17 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 15.0.4517.1505, Zeitstempel: 0x51bfe4f8
Name des fehlerhaften Moduls: oart.dll, Version: 15.0.4517.1506, Zeitstempel: 0x51c9a2fa
Ausnahmecode: 0xc00002b4
Fehleroffset: 0x0026feab
ID des fehlerhaften Prozesses: 0x19e0
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3

Error: (09/02/2013 02:41:21 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 15.0.4517.1505, Zeitstempel: 0x51bfe4f8
Name des fehlerhaften Moduls: oart.dll, Version: 15.0.4517.1506, Zeitstempel: 0x51c9a2fa
Ausnahmecode: 0xc00002b4
Fehleroffset: 0x0026feab
ID des fehlerhaften Prozesses: 0x68c
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3

Error: (09/02/2013 02:40:53 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 15.0.4517.1505, Zeitstempel: 0x51bfe4f8
Name des fehlerhaften Moduls: oart.dll, Version: 15.0.4517.1506, Zeitstempel: 0x51c9a2fa
Ausnahmecode: 0xc00002b4
Fehleroffset: 0x0026feab
ID des fehlerhaften Prozesses: 0xc58
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3

Error: (09/02/2013 02:40:23 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 15.0.4517.1505, Zeitstempel: 0x51bfe4f8
Name des fehlerhaften Moduls: oart.dll, Version: 15.0.4517.1506, Zeitstempel: 0x51c9a2fa
Ausnahmecode: 0xc00002b4
Fehleroffset: 0x0026feab
ID des fehlerhaften Prozesses: 0x19b4
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3


System errors:
=============
Error: (09/04/2013 02:13:00 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Adobe Active File Monitor V11 erreicht.

Error: (09/04/2013 02:11:58 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (09/04/2013 02:10:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Arbeitsstationsdienst" wurde mit folgendem Fehler beendet: 
%%2

Error: (09/04/2013 02:10:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%2

Error: (09/04/2013 02:10:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Arbeitsstationsdienst" wurde mit folgendem Fehler beendet: 
%%2

Error: (09/04/2013 02:10:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%2

Error: (09/04/2013 02:10:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Arbeitsstationsdienst" wurde mit folgendem Fehler beendet: 
%%2

Error: (09/04/2013 02:10:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%2

Error: (09/04/2013 02:10:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%2

Error: (09/04/2013 02:10:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Arbeitsstationsdienst" wurde mit folgendem Fehler beendet: 
%%2


Microsoft Office Sessions:
=========================
Error: (09/04/2013 02:10:28 PM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Ausnahmefehler "System.Reflection.TargetInvocationException: Ein Aufrufziel hat einen Ausnahmefehler verursacht. ---> System.Security.Principal.IdentityNotMappedException: Manche oder alle Identitätsverweise konnten nicht übersetzt werden.
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   bei System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- Ende der internen Ausnahmestapelüberwachung ---
   bei System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   bei System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   bei System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   bei System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)" bei der Remotekonfiguration.   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   bei RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (09/04/2013 11:31:18 AM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Ausnahmefehler "System.Reflection.TargetInvocationException: Ein Aufrufziel hat einen Ausnahmefehler verursacht. ---> System.Security.Principal.IdentityNotMappedException: Manche oder alle Identitätsverweise konnten nicht übersetzt werden.
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   bei System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- Ende der internen Ausnahmestapelüberwachung ---
   bei System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   bei System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   bei System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   bei System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)" bei der Remotekonfiguration.   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   bei RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (09/03/2013 02:50:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestE:\Programme\Nero\Nero\Nero8\Nero PhotoSnap\PhotoSnapViewer.exe

Error: (09/03/2013 02:50:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestE:\Programme\Nero\Nero\Nero8\Nero PhotoSnap\PhotoSnap.exe

Error: (09/03/2013 02:50:33 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\Programme\Nero\Nero\Nero8\Nero Toolkit\DiscSpeed.exe

Error: (09/03/2013 02:18:39 PM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Ausnahmefehler "System.Reflection.TargetInvocationException: Ein Aufrufziel hat einen Ausnahmefehler verursacht. ---> System.Security.Principal.IdentityNotMappedException: Manche oder alle Identitätsverweise konnten nicht übersetzt werden.
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   bei System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- Ende der internen Ausnahmestapelüberwachung ---
   bei System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   bei System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   bei System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   bei System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)" bei der Remotekonfiguration.   bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   bei System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   bei RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (09/02/2013 02:52:17 PM) (Source: Application Error)(User: )
Description: WINWORD.EXE15.0.4517.150551bfe4f8oart.dll15.0.4517.150651c9a2fac00002b40026feab19e001cea7db3f6be465C:\Program Files\Microsoft Office 15\Root\Office15\WINWORD.EXEC:\Program Files\Microsoft Office 15\Root\Office15\oart.dll7ec87f32-13ce-11e3-ae6c-1c6f6581d4c8

Error: (09/02/2013 02:41:21 PM) (Source: Application Error)(User: )
Description: WINWORD.EXE15.0.4517.150551bfe4f8oart.dll15.0.4517.150651c9a2fac00002b40026feab68c01cea7d9b8c800daC:\Program Files\Microsoft Office 15\Root\Office15\WINWORD.EXEC:\Program Files\Microsoft Office 15\Root\Office15\oart.dllf819c60e-13cc-11e3-ae6c-1c6f6581d4c8

Error: (09/02/2013 02:40:53 PM) (Source: Application Error)(User: )
Description: WINWORD.EXE15.0.4517.150551bfe4f8oart.dll15.0.4517.150651c9a2fac00002b40026feabc5801cea7d9a7b777a3C:\Program Files\Microsoft Office 15\Root\Office15\WINWORD.EXEC:\Program Files\Microsoft Office 15\Root\Office15\oart.dlle72e2a81-13cc-11e3-ae6c-1c6f6581d4c8

Error: (09/02/2013 02:40:23 PM) (Source: Application Error)(User: )
Description: WINWORD.EXE15.0.4517.150551bfe4f8oart.dll15.0.4517.150651c9a2fac00002b40026feab19b401cea7d994e7367eC:\Program Files\Microsoft Office 15\Root\Office15\WINWORD.EXEC:\Program Files\Microsoft Office 15\Root\Office15\oart.dlld573a32d-13cc-11e3-ae6c-1c6f6581d4c8


CodeIntegrity Errors:
===================================
  Date: 2013-06-28 13:37:59.118
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-28 13:37:59.117
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-28 13:37:59.114
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-28 13:37:59.100
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-28 13:37:59.099
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-28 13:37:59.096
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-05-08 11:24:41.256
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-05-08 11:24:41.254
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-05-08 11:24:41.253
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-05-08 11:24:41.237
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 31%
Total physical RAM: 8188.54 MB
Available physical RAM: 5609.87 MB
Total Pagefile: 16375.25 MB
Available Pagefile: 13331.9 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:104.75 GB) (Free:25.24 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (FreeAgent GoFlex Drive) (Fixed) (Total:465.76 GB) (Free:401.84 GB) NTFS
Drive e: (Programme) (Fixed) (Total:41.22 GB) (Free:12.25 GB) NTFS
Drive f: (Daten) (Fixed) (Total:180.27 GB) (Free:43.81 GB) NTFS
Drive g: (Backup) (Fixed) (Total:89.52 GB) (Free:16.88 GB) NTFS
Drive h: (Laufwerk) (Fixed) (Total:50 GB) (Free:27.1 GB) NTFS
Drive k: (Sicherung) (Fixed) (Total:931.51 GB) (Free:21.39 GB) NTFS
Drive p: (SEAGATE_EXP) (Fixed) (Total:1907.32 GB) (Free:1885 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: C4086204)
Partition 1: (Active) - (Size=105 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=361 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 932 GB) (Disk ID: 56A6B2F7)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 466 GB) (Disk ID: 76942D58)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 4.

==================== End Of Log ============================
__________________
Alt 04.09.2013, 18:33   #4
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-09-2013 03
Ran by Marko (administrator) on KOBOLT on 04-09-2013 14:22:13
Running from C:\Users\Marko\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avshadow.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\sched.exe
(Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Fuel\Fuel.Service.exe
(mst software GmbH, Germany) E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Deutsche Telekom AG) E:\Programme\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe
(Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(StarWind Software) e:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Logitech, Inc.) C:\Program Files\Logitech\FlowScroll\KhalScroll.exe
(Logitech, Inc.) E:\Programme\Logitech\SetPointP\SetPoint.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() E:\Programme\Ocster Backup\bin\backupClient-ox.exe
(IvoSoft) E:\Programme\Classic Shell\ClassicStartMenu.exe
(Blue Onion Software) E:\Programme\Blue Onion Software\Desk Drive\DeskDrive.exe
(Microsoft) E:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Hyperionics Technology LLC) E:\Programme\FileBX\FileBX.exe
() E:\Programme\MadAppLauncher\MadAppLauncher.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
() e:\Programme\Ocster Backup\bin\oxHelper.exe
(Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\Mediencenter.exe
() E:\Programme\Rainmeter\Rainmeter.exe
() E:\Programme\FileBX\Fbx32helper.exe
(Visagesoft) E:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfprsrv.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avgnt.exe
(Mozilla Corporation) E:\Programme\Mozilla Firefox\firefox.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
() e:\Programme\Ocster Backup\bin\backupService-ox.exe
() C:\Program Files (x86)\Memeo\AutoBackup\InstantBackup.exe
(Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\MemeoUpdater.exe
() e:\Programme\Ocster Backup\bin\oxHelper.exe
(TomTom) E:\Programme\TomTom\TomTom HOME 2\TomTomHOMEService.exe
(Mozilla Corporation) E:\Programme\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\ATI\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [LogiScrollApp] - C:\Program Files\Logitech\FlowScroll\KhalScroll.exe [166680 2012-02-08] (Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] - E:\Programme\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Ocster Backup] - E:\Programme\Ocster Backup\bin\backupClient-ox.exe [312488 2013-07-02] ()
HKLM\...\Run: [Classic Start Menu] - E:\Programme\Classic Shell\ClassicStartMenu.exe [151552 2013-06-29] (IvoSoft)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [NoDriveTypeAutoRun] 60
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKCU\...\Run: [DeskDriveStartup] - E:\Programme\Blue Onion Software\Desk Drive\DeskDrive.exe [66048 2009-12-06] (Blue Onion Software)
HKCU\...\Run: [BrowserMask] - E:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe [101280 2011-06-21] (Microsoft)
HKCU\...\Run: [] -  [x]
HKCU\...\Run: [AmazonMP3DownloaderHelper] - C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKCU\...\Policies\Explorer: [NoCDBurning] 0
MountPoints2: I - I:\Run.exe
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [NPSStartup] -  [x]
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [10752 2012-01-31] ()
HKLM-x32\...\Run: [DivXMediaServer] - e:\Programme\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-05-20] (DivX, LLC)
HKLM-x32\...\Run: [vspdfprsrv.exe] - e:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfprsrv.exe [6082560 2012-04-23] (Visagesoft)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\ATI\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Memeo Instant Backup] - C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe [136416 2011-09-16] (Memeo Inc.)
HKLM-x32\...\Run: [avgnt] - E:\Programme\Antivir\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-04] (Avira Operations GmbH & Co. KG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FileBox eXtender.lnk
ShortcutTarget: FileBox eXtender.lnk -> E:\Programme\FileBX\FileBX.exe (Hyperionics Technology LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MadAppLauncher.lnk
ShortcutTarget: MadAppLauncher.lnk -> E:\Programme\MadAppLauncher\MadAppLauncher.exe ()
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mediencenter.lnk
ShortcutTarget: Mediencenter.lnk -> C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\Mediencenter.exe (Deutsche Telekom AG)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> E:\Programme\Rainmeter\Rainmeter.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.jan-records.de/
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKCU - {B8043587-EBE9-4754-9E02-4BD5899FE7BA} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=971163&p={searchTerms}
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - E:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll (Logitech, Inc.)
BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - E:\Programme\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - e:\Programme\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - E:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Programme\Java\bin\ssv.dll (Oracle Corporation)
BHO-x32: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} -  No File
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll (Logitech, Inc.)
BHO-x32: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - E:\Programme\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - E:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} -  No File
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - E:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft)
DPF: HKLM-x32 {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} hxxp://download.gigabyte.com.tw/object/Dldrv.ocx
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.4.0\ViProtocol.dll (AVG Secure Search)
Winsock: Catalog9 01 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 01 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 02 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 03 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 04 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 05 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 06 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 07 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 08 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 20 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Path=C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-812850846-3816870413-364722810-1001\FireFox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @canon.com/MycameraPlugin - E:\Programme\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - e:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - e:\Programme\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - E:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{5D3F3872-91E9-4d59-AD9F-AA174A3145DD}] C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt
FF Extension: Logitech Flow Scroll - C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] e:\Programme\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - e:\Programme\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF StartMenuInternet: FIREFOX.EXE - e:\Programme\Mozilla Firefox\firefox.exe

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-07-17] (Adobe Systems)
S2 AdobeActiveFileMonitor11.0; E:\Programme\Adobe\Photoshop Elements 11\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-17] (Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\ATI\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; E:\Programme\Antivir\Avira\AntiVir Desktop\sched.exe [84024 2013-09-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; E:\Programme\Antivir\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-04] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; E:\Programme\Antivir\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-04] (Avira Operations GmbH & Co. KG)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 CGVPNCliSrvc; C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 DfSdkS; E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany)
S2 LanmanWorkstation; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [45568 2009-07-14] (Microsoft Corporation)
R2 MCSWASVR; E:\Programme\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe [12800 2011-11-23] (Deutsche Telekom AG)
S4 Nero BackItUp Scheduler 3; E:\Programme\Nero\Nero\Nero8\Nero BackItUp\NBService.exe [877864 2008-06-08] (Nero AG)
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [537896 2008-06-24] (Nero AG)
R2 ocster_backup; e:\Programme\Ocster Backup\bin\backupService-ox.exe [23720 2013-07-02] ()
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1900728 2013-06-09] (Microsoft Corporation)
S3 SandraAgentSrv; E:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe [68760 2008-09-05] (SiSoftware)
R2 StarWindServiceAE; e:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software)
R2 TomTomHOMEService; E:\Programme\TomTom\TomTom HOME 2\TomTomHOMEService.exe [92632 2012-08-28] (TomTom)
S4 vToolbarUpdater15.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe [1616048 2013-07-29] (AVG Secure Search)
S4 McComponentHostService; "C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe" [x]
R2 Update-Service; %SystemRoot%\System32\UpdSvc.dll [x]

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\ATI\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-07-29] (AVG Technologies)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-06] (Avira Operations GmbH & Co. KG)
R2 cpuz135; C:\Windows\system32\drivers\cpuz135_x64.sys [21992 2011-09-21] (CPUID)
S3 etdrv; C:\Windows\etdrv.sys [25640 2012-02-01] (Windows (R) Server 2003 DDK provider)
S3 etdrv; C:\Windows\etdrv.sys [25640 2012-02-01] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2012-10-09] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2012-10-09] (Windows (R) Server 2003 DDK provider)
S3 GigasetGenericUSB_x64; C:\Windows\System32\DRIVERS\GigasetGenericUSB_x64.sys [54272 2009-02-20] (Siemens Home and Office Communication Devices GmbH & Co. KG)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-02-01] ()
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-02-01] ()
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [39728 2011-11-04] (Paragon Software Group)
R0 oodrvled; C:\Windows\System32\DRIVERS\oodrvled.sys [30800 2011-03-02] (O&O Software GmbH)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
S3 SANDRA; E:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\WNt500x64\Sandra.sys [23112 2009-08-08] (SiSoftware)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-11-07] (Duplex Secure Ltd.)
R1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [59184 2011-11-04] (Windows (R) 2000 DDK provider)
R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [572336 2011-11-04] (Paragon)
R1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [352816 2011-11-04] (Paragon)
S2 AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S3 atillk64; \??\C:\Program Files (x86)\AMD\System Monitor\atillk64.sys [x]
S0 TPkd; No ImagePath

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-04 14:20 - 2013-09-04 14:20 - 01950416 _____ (Farbar) C:\Users\Marko\Desktop\FRST64.exe
2013-09-04 14:08 - 2013-09-04 14:08 - 00000720 _____ C:\Users\Marko\Desktop\defogger_disable.log
2013-09-04 14:08 - 2013-09-04 14:08 - 00000344 _____ C:\Users\Marko\defogger_reenable
2013-09-04 14:06 - 2013-09-04 14:06 - 00050477 _____ C:\Users\Marko\Desktop\Defogger.exe
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(3).exe
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(2).exe
2013-09-04 13:51 - 2013-09-04 13:51 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(1).exe
2013-09-02 17:15 - 2013-09-02 17:15 - 00000787 _____ C:\Users\Marko\Desktop\DivX Movies.lnk
2013-09-02 17:15 - 2013-09-02 17:15 - 00000754 _____ C:\Users\Public\Desktop\DivX Plus Player.lnk
2013-08-29 08:59 - 2013-08-29 08:59 - 05192704 _____ (Geza Kovacs) C:\Users\Marko\Downloads\unetbootin-windows-585.exe
2013-08-29 08:53 - 2013-08-29 08:53 - 00000000 ____D C:\Users\Marko\Desktop\Hausbau
2013-08-28 19:23 - 2013-08-28 19:23 - 616382464 _____ C:\Users\Marko\Downloads\rescue-system.iso
2013-08-28 16:21 - 2013-08-28 16:21 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Avira
2013-08-28 16:18 - 2013-09-04 11:36 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-08-28 16:17 - 2013-09-04 11:36 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-08-28 16:17 - 2013-09-04 11:36 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-08-28 16:17 - 2013-08-28 16:17 - 00000000 ____D C:\ProgramData\Avira
2013-08-28 16:17 - 2013-03-06 16:13 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-08-28 15:58 - 2013-08-28 15:59 - 110344048 _____ C:\Users\Marko\Downloads\avira_free4045_antivirus_de.exe
2013-08-28 15:46 - 2013-08-28 15:46 - 02733958 _____ C:\Users\Marko\Downloads\tdsskiller.zip
2013-08-28 15:40 - 2013-08-28 15:40 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck.exe
2013-08-27 13:39 - 2013-08-29 08:43 - 00095620 _____ C:\Windows\PFRO.log
2013-08-26 14:38 - 2013-08-26 15:04 - 00000000 ____D C:\Users\Marko\Desktop\Kaspersky
2013-08-25 18:15 - 2013-08-27 22:03 - 00000000 ____D C:\Users\Marko\AppData\Local\BewerbungsMaster
2013-08-25 18:14 - 2013-08-27 23:00 - 00000000 ____D C:\Users\Marko\Documents\BewerbungsMaster
2013-08-25 18:13 - 2013-08-25 18:13 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BewerbungsMaster
2013-08-25 18:07 - 2013-08-25 18:14 - 00335872 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2013-08-25 18:07 - 2013-08-25 18:14 - 00074752 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE
2013-08-25 18:06 - 2013-08-25 18:06 - 11616256 _____ C:\Users\Marko\Downloads\master71.exe
2013-08-25 17:23 - 2013-09-02 17:00 - 00000000 ____D C:\Users\Marko\Desktop\Nick_Ausbildung
2013-08-24 11:32 - 2013-09-04 14:10 - 00001747 _____ C:\Windows\setupact.log
2013-08-24 11:32 - 2013-08-24 11:32 - 00000000 _____ C:\Windows\setuperr.log
2013-08-22 15:01 - 2013-08-22 15:01 - 00000000 ____D C:\Users\Marko\AppData\Roaming\dvdcss
2013-08-22 14:58 - 2013-08-22 14:58 - 00000687 _____ C:\Users\Marko\Desktop\MediaCoder x64.lnk
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder x64
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Broad Intelligence
2013-08-22 14:55 - 2013-08-22 14:57 - 68913986 _____ C:\Users\Marko\Downloads\MediaCoder-x64-0.8.25.5553.exe
2013-08-19 14:10 - 2013-08-25 21:41 - 00000000 ____D C:\Users\Marko\MEDION NAS TOOL
2013-08-19 14:00 - 2013-08-19 14:00 - 00001168 _____ C:\Users\Public\Desktop\Memeo Instant Backup.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000954 _____ C:\Users\Public\Desktop\MEDION NAS TOOL.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Memeo
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Program Files (x86)\Memeo
2013-08-18 13:50 - 2013-08-18 13:50 - 02899663 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.cab
2013-08-18 13:50 - 2013-08-18 13:50 - 02427392 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.exe
2013-08-15 11:34 - 2013-08-28 15:47 - 00000000 ____D C:\Users\Marko\Downloads\tdsskiller
2013-08-14 22:28 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-14 22:28 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 22:28 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 22:28 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-14 22:28 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-14 22:28 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-14 22:28 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 22:28 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 22:28 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 22:28 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-14 22:28 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-14 22:28 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-14 22:28 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 22:28 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 22:28 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-14 22:27 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 22:27 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 22:27 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 22:27 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 22:27 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 22:24 - 2013-08-14 22:24 - 02224290 _____ C:\Users\Marko\Downloads\tdsskiller.rar
2013-08-14 22:23 - 2013-08-14 22:26 - 176212264 _____ (Kaspersky Lab) C:\Users\Marko\Downloads\kis13.0.1.4190de-de(2).exe
2013-08-14 22:22 - 2013-08-14 22:25 - 181393840 _____ C:\Users\Marko\Downloads\setup_11.0.0.1245.x01_2013_08_14_23_13.exe
2013-08-14 22:17 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 22:17 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 22:17 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 22:17 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 22:17 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 22:17 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 22:17 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 22:17 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 22:17 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 22:17 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 22:17 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 22:17 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 22:17 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 22:17 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 22:17 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 22:17 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 22:17 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 22:17 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 22:17 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 22:17 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 22:17 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 22:17 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 22:17 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 22:17 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 22:17 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 22:17 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 22:17 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-13 15:34 - 2013-08-13 15:34 - 09143640 _____ (Abelssoft                                                   ) C:\Users\Marko\Downloads\6773_2_ABS_2014_CB.exe
2013-08-13 15:31 - 2013-08-13 15:32 - 21991048 _____ (abylonsoft                                                  ) C:\Users\Marko\Downloads\6219_2_Cryptdrive_CB.exe
2013-08-09 15:16 - 2013-08-09 15:16 - 03128152 _____ C:\Users\Marko\Downloads\org.geometerplus.zlibrary.ui.android_106042.apk
2013-08-09 15:16 - 2013-08-09 15:16 - 00230586 _____ C:\Users\Marko\Downloads\org.fdroid.fdroid_40.apk
2013-08-09 15:15 - 2013-08-09 15:15 - 06113402 _____ C:\Users\Marko\Downloads\mapfactor_navigator_0_12_x.apk

==================== One Month Modified Files and Folders =======

2013-09-04 14:22 - 2013-09-04 14:22 - 00000000 ____D C:\FRST
2013-09-04 14:20 - 2013-09-04 14:20 - 01950416 _____ (Farbar) C:\Users\Marko\Desktop\FRST64.exe
2013-09-04 14:20 - 2009-07-14 06:45 - 00015856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-04 14:20 - 2009-07-14 06:45 - 00015856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-04 14:17 - 2012-09-14 10:49 - 00000338 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2013-09-04 14:16 - 2012-01-16 23:34 - 01298888 _____ C:\Windows\WindowsUpdate.log
2013-09-04 14:15 - 2012-03-21 16:30 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-04 14:10 - 2013-08-24 11:32 - 00001747 _____ C:\Windows\setupact.log
2013-09-04 14:10 - 2012-03-21 16:30 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-04 14:10 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-04 14:08 - 2013-09-04 14:08 - 00000720 _____ C:\Users\Marko\Desktop\defogger_disable.log
2013-09-04 14:08 - 2013-09-04 14:08 - 00000344 _____ C:\Users\Marko\defogger_reenable
2013-09-04 14:08 - 2012-03-29 22:15 - 00069246 _____ C:\Windows\system32\log.xml
2013-09-04 14:08 - 2012-03-29 22:15 - 00000008 _____ C:\Windows\system32\log-suffix.xml
2013-09-04 14:08 - 2011-12-05 17:51 - 00000000 ____D C:\Users\Marko
2013-09-04 14:06 - 2013-09-04 14:06 - 00050477 _____ C:\Users\Marko\Desktop\Defogger.exe
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(3).exe
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(2).exe
2013-09-04 13:51 - 2013-09-04 13:51 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(1).exe
2013-09-04 11:36 - 2013-08-28 16:18 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-04 11:36 - 2013-08-28 16:17 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-04 11:36 - 2013-08-28 16:17 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-03 14:28 - 2012-08-03 17:25 - 00000000 ____D C:\Users\Marko\AppData\Local\Adobe
2013-09-02 17:43 - 2012-04-04 12:07 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Mp3tag
2013-09-02 17:16 - 2012-03-19 17:27 - 00000000 ____D C:\Users\Marko\Desktop\Auto
2013-09-02 17:15 - 2013-09-02 17:15 - 00000787 _____ C:\Users\Marko\Desktop\DivX Movies.lnk
2013-09-02 17:15 - 2013-09-02 17:15 - 00000754 _____ C:\Users\Public\Desktop\DivX Plus Player.lnk
2013-09-02 17:15 - 2012-08-21 13:36 - 00000000 ____D C:\ProgramData\DivX
2013-09-02 17:13 - 2012-11-29 12:31 - 00000000 _____ C:\end
2013-09-02 17:00 - 2013-08-25 17:23 - 00000000 ____D C:\Users\Marko\Desktop\Nick_Ausbildung
2013-09-02 15:12 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-08-29 20:08 - 2011-12-05 17:51 - 00000000 ___RD C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-08-29 19:31 - 2009-07-14 19:58 - 00700370 _____ C:\Windows\system32\perfh007.dat
2013-08-29 19:31 - 2009-07-14 19:58 - 00149184 _____ C:\Windows\system32\perfc007.dat
2013-08-29 19:31 - 2009-07-14 07:13 - 01622098 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-29 17:02 - 2013-02-03 18:03 - 00000000 ____D C:\Users\Marko\AppData\Local\Microsoft Help
2013-08-29 16:39 - 2013-07-19 13:45 - 00000000 ____D C:\Users\Marko\AppData\Roaming\onOne Software
2013-08-29 08:59 - 2013-08-29 08:59 - 05192704 _____ (Geza Kovacs) C:\Users\Marko\Downloads\unetbootin-windows-585.exe
2013-08-29 08:53 - 2013-08-29 08:53 - 00000000 ____D C:\Users\Marko\Desktop\Hausbau
2013-08-29 08:43 - 2013-08-27 13:39 - 00095620 _____ C:\Windows\PFRO.log
2013-08-28 19:23 - 2013-08-28 19:23 - 616382464 _____ C:\Users\Marko\Downloads\rescue-system.iso
2013-08-28 16:21 - 2013-08-28 16:21 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Avira
2013-08-28 16:17 - 2013-08-28 16:17 - 00000000 ____D C:\ProgramData\Avira
2013-08-28 15:59 - 2013-08-28 15:58 - 110344048 _____ C:\Users\Marko\Downloads\avira_free4045_antivirus_de.exe
2013-08-28 15:47 - 2013-08-15 11:34 - 00000000 ____D C:\Users\Marko\Downloads\tdsskiller
2013-08-28 15:46 - 2013-08-28 15:46 - 02733958 _____ C:\Users\Marko\Downloads\tdsskiller.zip
2013-08-28 15:40 - 2013-08-28 15:40 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck.exe
2013-08-27 23:00 - 2013-08-25 18:14 - 00000000 ____D C:\Users\Marko\Documents\BewerbungsMaster
2013-08-27 22:03 - 2013-08-25 18:15 - 00000000 ____D C:\Users\Marko\AppData\Local\BewerbungsMaster
2013-08-26 16:55 - 2012-03-23 11:34 - 00000000 ____D C:\ProgramData\firebird
2013-08-26 15:04 - 2013-08-26 14:38 - 00000000 ____D C:\Users\Marko\Desktop\Kaspersky
2013-08-26 14:53 - 2013-05-24 12:28 - 00002453 _____ C:\Users\Public\Desktop\SeaTools for Windows.lnk
2013-08-25 21:41 - 2013-08-19 14:10 - 00000000 ____D C:\Users\Marko\MEDION NAS TOOL
2013-08-25 18:14 - 2013-08-25 18:07 - 00335872 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2013-08-25 18:14 - 2013-08-25 18:07 - 00074752 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE
2013-08-25 18:13 - 2013-08-25 18:13 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BewerbungsMaster
2013-08-25 18:06 - 2013-08-25 18:06 - 11616256 _____ C:\Users\Marko\Downloads\master71.exe
2013-08-24 11:32 - 2013-08-24 11:32 - 00000000 _____ C:\Windows\setuperr.log
2013-08-23 20:20 - 2013-07-29 14:57 - 00000370 _____ C:\Windows\Tasks\One-Click Optimizer.job
2013-08-23 20:18 - 2011-12-05 17:31 - 00000000 ____D C:\Windows\Panther
2013-08-23 13:05 - 2013-04-21 20:07 - 00001147 _____ C:\Users\Marko\Desktop\Mediencenter.lnk
2013-08-23 13:05 - 2013-04-21 20:07 - 00001133 _____ C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mediencenter.lnk
2013-08-22 15:01 - 2013-08-22 15:01 - 00000000 ____D C:\Users\Marko\AppData\Roaming\dvdcss
2013-08-22 14:58 - 2013-08-22 14:58 - 00000687 _____ C:\Users\Marko\Desktop\MediaCoder x64.lnk
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder x64
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Broad Intelligence
2013-08-22 14:57 - 2013-08-22 14:55 - 68913986 _____ C:\Users\Marko\Downloads\MediaCoder-x64-0.8.25.5553.exe
2013-08-22 14:33 - 2012-01-03 18:30 - 00018944 _____ C:\Users\Marko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-08-22 14:31 - 2012-08-21 13:39 - 00000000 ____D C:\Users\Marko\AppData\Roaming\DivX
2013-08-22 14:30 - 2012-02-28 17:45 - 00000124 _____ C:\Users\Marko\Documents\ax_files.xml
2013-08-21 12:09 - 2011-12-06 19:45 - 00000000 ____D C:\ProgramData\ashampoo
2013-08-19 14:00 - 2013-08-19 14:00 - 00001168 _____ C:\Users\Public\Desktop\Memeo Instant Backup.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000954 _____ C:\Users\Public\Desktop\MEDION NAS TOOL.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Memeo
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Program Files (x86)\Memeo
2013-08-18 13:50 - 2013-08-18 13:50 - 02899663 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.cab
2013-08-18 13:50 - 2013-08-18 13:50 - 02427392 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.exe
2013-08-15 14:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-15 11:42 - 2013-03-01 12:06 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-08-14 22:26 - 2013-08-14 22:23 - 176212264 _____ (Kaspersky Lab) C:\Users\Marko\Downloads\kis13.0.1.4190de-de(2).exe
2013-08-14 22:25 - 2013-08-14 22:22 - 181393840 _____ C:\Users\Marko\Downloads\setup_11.0.0.1245.x01_2013_08_14_23_13.exe
2013-08-14 22:24 - 2013-08-14 22:24 - 02224290 _____ C:\Users\Marko\Downloads\tdsskiller.rar
2013-08-14 22:24 - 2013-07-11 11:28 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 22:18 - 2011-12-06 14:35 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-13 15:34 - 2013-08-13 15:34 - 09143640 _____ (Abelssoft                                                   ) C:\Users\Marko\Downloads\6773_2_ABS_2014_CB.exe
2013-08-13 15:32 - 2013-08-13 15:31 - 21991048 _____ (abylonsoft                                                  ) C:\Users\Marko\Downloads\6219_2_Cryptdrive_CB.exe
2013-08-12 11:28 - 2013-07-10 10:20 - 00000000 ____D C:\Users\_ocster_backup_
2013-08-09 15:16 - 2013-08-09 15:16 - 03128152 _____ C:\Users\Marko\Downloads\org.geometerplus.zlibrary.ui.android_106042.apk
2013-08-09 15:16 - 2013-08-09 15:16 - 00230586 _____ C:\Users\Marko\Downloads\org.fdroid.fdroid_40.apk
2013-08-09 15:15 - 2013-08-09 15:15 - 06113402 _____ C:\Users\Marko\Downloads\mapfactor_navigator_0_12_x.apk

Files to move or delete:
====================
C:\Users\Marko\AppData\Local\Temp\DivXSetup.exe
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista64\R4EEA64H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista64\R4EED64H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista64\R4EEG64H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista64\R4EEL64H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista64\R4EEP64H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista\R4EEA32H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista\R4EED32H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista\R4EEG32H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista\R4EEL32H.dll
C:\Users\Marko\AppData\Local\Temp\pft3A08~tmp\HDMI\Vista\R4EEP32H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista64\R4EEA64H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista64\R4EED64H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista64\R4EEG64H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista64\R4EEL64H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista64\R4EEP64H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista\R4EEA32H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista\R4EED32H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista\R4EEG32H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista\R4EEL32H.dll
C:\Users\Marko\AppData\Local\Temp\pft2E93~tmp\HDMI\Vista\R4EEP32H.dll
C:\Users\Marko\AppData\Local\Temp\MailStore\MailStoreHomeSetup-8.0.5.8779.exe
C:\Users\Marko\AppData\Local\Temp\ct3297265\ism.exe
C:\Users\Marko\AppData\Local\Temp\ainet2188D7FD\update_0530_4.1.1.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-02 12:29

==================== End Of Log ============================
--- --- ---

--- --- ---

Alt 04.09.2013, 18:39   #5
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Ich hab hier noch ein paar logs vom KIS-Service-Programm gefunden, vielleicht nützts.

Code:
ATTFilter
11:34:33.0399 6092  TDSS rootkit removing tool 2.8.17.0 Apr 11 2013 11:56:34
11:34:37.0468 6092  ============================================================
11:34:37.0468 6092  Current date / time: 2013/08/15 11:34:37.0468
11:34:37.0468 6092  SystemInfo:
11:34:37.0468 6092  
11:34:37.0469 6092  OS Version: 6.1.7601 ServicePack: 1.0
11:34:37.0469 6092  Product type: Workstation
11:34:37.0469 6092  ComputerName: KOBOLT
11:34:37.0469 6092  UserName: Marko
11:34:37.0469 6092  Windows directory: C:\Windows
11:34:37.0469 6092  System windows directory: C:\Windows
11:34:37.0469 6092  Running under WOW64
11:34:37.0469 6092  Processor architecture: Intel x64
11:34:37.0469 6092  Number of processors: 6
11:34:37.0469 6092  Page size: 0x1000
11:34:37.0470 6092  Boot type: Normal boot
11:34:37.0470 6092  ============================================================
11:34:37.0858 6092  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:34:37.0879 6092  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:34:37.0882 6092  Drive \Device\Harddisk2\DR2 - Size: 0x7470C05E00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:34:38.0164 6092  Drive \Device\Harddisk3\DR3 - Size: 0x2BAA1476000 (2794.52 Gb), SectorSize: 0x1000, Cylinders: 0xB220, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:34:38.0168 6092  ============================================================
11:34:38.0168 6092  \Device\Harddisk0\DR0:
11:34:38.0168 6092  MBR partitions:
11:34:38.0168 6092  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xD17F0AB
11:34:38.0176 6092  \Device\Harddisk1\DR1:
11:34:38.0176 6092  MBR partitions:
11:34:38.0176 6092  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
11:34:38.0176 6092  \Device\Harddisk2\DR2:
11:34:38.0229 6092  MBR partitions:
11:34:38.0229 6092  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C41
11:34:38.0229 6092  \Device\Harddisk3\DR3:
11:34:38.0387 6092  MBR partitions:
11:34:38.0387 6092  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2BAA0800
11:34:38.0387 6092  ============================================================
11:34:38.0431 6092  C: <-> \Device\Harddisk0\DR0\Partition1
11:34:38.0474 6092  D: <-> \Device\Harddisk2\DR2\Partition1
11:34:38.0492 6092  K: <-> \Device\Harddisk1\DR1\Partition1
11:34:38.0522 6092  P: <-> \Device\Harddisk3\DR3\Partition1
11:34:38.0522 6092  ============================================================
11:34:38.0523 6092  Initialize success
11:34:38.0523 6092  ============================================================
11:34:41.0787 6172  ============================================================
11:34:41.0787 6172  Scan started
11:34:41.0787 6172  Mode: Manual; 
11:34:41.0787 6172  ============================================================
11:34:42.0653 6172  ================ Scan system memory ========================
11:34:42.0653 6172  System memory - ok
11:34:42.0654 6172  ================ Scan services =============================
11:34:43.0365 6172  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
11:34:43.0369 6172  1394ohci - ok
11:34:43.0408 6172  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:34:43.0415 6172  ACPI - ok
11:34:43.0445 6172  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:34:43.0446 6172  AcpiPmi - ok
11:34:43.0520 6172  [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
11:34:43.0523 6172  Adobe LM Service - ok
11:34:43.0548 6172  AdobeActiveFileMonitor11.0 - ok
11:34:43.0599 6172  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
11:34:43.0603 6172  adp94xx - ok
11:34:43.0633 6172  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
11:34:43.0636 6172  adpahci - ok
11:34:43.0641 6172  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
11:34:43.0643 6172  adpu320 - ok
11:34:43.0673 6172  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:34:43.0674 6172  AeLookupSvc - ok
11:34:43.0729 6172  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
11:34:43.0735 6172  AFD - ok
11:34:43.0766 6172  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
11:34:43.0768 6172  agp440 - ok
11:34:43.0785 6172  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
11:34:43.0786 6172  ALG - ok
11:34:43.0812 6172  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:34:43.0813 6172  aliide - ok
11:34:43.0855 6172  [ 20C8A3E435A47F0408A1EA674AFA6194 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:34:43.0857 6172  AMD External Events Utility - ok
11:34:43.0928 6172  AMD FUEL Service - ok
11:34:43.0962 6172  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
11:34:43.0964 6172  amdide - ok
11:34:43.0995 6172  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
11:34:43.0997 6172  amdiox64 - ok
11:34:44.0024 6172  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
11:34:44.0026 6172  AmdK8 - ok
11:34:44.0529 6172  [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
11:34:44.0690 6172  amdkmdag - ok
11:34:44.0737 6172  [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
11:34:44.0743 6172  amdkmdap - ok
11:34:44.0783 6172  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
11:34:44.0784 6172  AmdPPM - ok
11:34:44.0812 6172  [ 53D8D46D51D390ABDB54ECA623165CB7 ] amdsata         C:\Windows\system32\DRIVERS\amdsata.sys
11:34:44.0814 6172  amdsata - ok
11:34:44.0842 6172  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
11:34:44.0845 6172  amdsbs - ok
11:34:44.0863 6172  [ 75C51148154E34EB3D7BB84749A758D5 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:34:44.0863 6172  amdxata - ok
11:34:44.0901 6172  [ EE4797DFEBBE8ACDB548DD8E80BE0A88 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
11:34:44.0902 6172  amd_sata - ok
11:34:44.0922 6172  [ D56EAD71A86FD2ACAE2DB47D0A6A3A41 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
11:34:44.0923 6172  amd_xata - ok
11:34:44.0972 6172  AODDriver4.01 - ok
11:34:45.0023 6172  [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1    C:\ATI\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:34:45.0025 6172  AODDriver4.1 - ok
11:34:45.0062 6172  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
11:34:45.0065 6172  AppID - ok
11:34:45.0088 6172  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:34:45.0090 6172  AppIDSvc - ok
11:34:45.0112 6172  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
11:34:45.0114 6172  Appinfo - ok
11:34:45.0152 6172  [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
11:34:45.0153 6172  AppleCharger - ok
11:34:45.0180 6172  [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
11:34:45.0181 6172  AppleChargerSrv - ok
11:34:45.0229 6172  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
11:34:45.0231 6172  AppMgmt - ok
11:34:45.0267 6172  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
11:34:45.0268 6172  arc - ok
11:34:45.0272 6172  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
11:34:45.0273 6172  arcsas - ok
11:34:45.0458 6172  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:34:45.0460 6172  aspnet_state - ok
11:34:45.0501 6172  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:34:45.0502 6172  AsyncMac - ok
11:34:45.0537 6172  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
11:34:45.0538 6172  atapi - ok
11:34:45.0590 6172  [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
11:34:45.0591 6172  AtiHDAudioService - ok
11:34:45.0632 6172  atillk64 - ok
11:34:45.0682 6172  [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
11:34:45.0682 6172  AtiPcie - ok
11:34:45.0733 6172  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:34:45.0746 6172  AudioEndpointBuilder - ok
11:34:45.0760 6172  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:34:45.0765 6172  AudioSrv - ok
11:34:45.0812 6172  [ 18AAAC7ED383C465E319B5DD07D0A0B6 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
11:34:45.0813 6172  avgtp - ok
11:34:46.0124 6172  [ F1CA8ED683D6945EFDC4492AB60B1460 ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
11:34:46.0128 6172  AVP - ok
11:34:46.0175 6172  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:34:46.0178 6172  AxInstSV - ok
11:34:46.0222 6172  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
11:34:46.0227 6172  b06bdrv - ok
11:34:46.0270 6172  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:34:46.0276 6172  b57nd60a - ok
11:34:46.0303 6172  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:34:46.0305 6172  BDESVC - ok
11:34:46.0341 6172  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:34:46.0343 6172  Beep - ok
11:34:46.0399 6172  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
11:34:46.0413 6172  BFE - ok
11:34:46.0454 6172  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
11:34:46.0465 6172  BITS - ok
11:34:46.0493 6172  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:34:46.0494 6172  blbdrive - ok
11:34:46.0536 6172  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:34:46.0539 6172  bowser - ok
11:34:46.0586 6172  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:34:46.0587 6172  BrFiltLo - ok
11:34:46.0592 6172  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:34:46.0593 6172  BrFiltUp - ok
11:34:46.0616 6172  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
11:34:46.0617 6172  Browser - ok
11:34:46.0622 6172  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:34:46.0625 6172  Brserid - ok
11:34:46.0636 6172  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:34:46.0637 6172  BrSerWdm - ok
11:34:46.0640 6172  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:34:46.0641 6172  BrUsbMdm - ok
11:34:46.0644 6172  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:34:46.0645 6172  BrUsbSer - ok
11:34:46.0699 6172  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
11:34:46.0701 6172  BthEnum - ok
11:34:46.0736 6172  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
11:34:46.0739 6172  BTHMODEM - ok
11:34:46.0759 6172  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
11:34:46.0761 6172  BthPan - ok
11:34:46.0787 6172  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
11:34:46.0794 6172  BTHPORT - ok
11:34:46.0828 6172  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
11:34:46.0830 6172  bthserv - ok
11:34:46.0851 6172  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
11:34:46.0852 6172  BTHUSB - ok
11:34:46.0879 6172  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:34:46.0881 6172  cdfs - ok
11:34:46.0915 6172  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:34:46.0917 6172  cdrom - ok
11:34:46.0959 6172  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
11:34:46.0961 6172  CertPropSvc - ok
11:34:47.0076 6172  [ 213B6EC3DE19E35373A1906397588429 ] CGVPNCliSrvc    C:\Program Files\CyberGhost VPN\CGVPNCliService.exe
11:34:47.0136 6172  CGVPNCliSrvc - ok
11:34:47.0175 6172  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
11:34:47.0177 6172  circlass - ok
11:34:47.0215 6172  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
11:34:47.0222 6172  CLFS - ok
11:34:47.0271 6172  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:34:47.0273 6172  clr_optimization_v2.0.50727_32 - ok
11:34:47.0314 6172  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:34:47.0317 6172  clr_optimization_v2.0.50727_64 - ok
11:34:47.0395 6172  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:34:47.0398 6172  clr_optimization_v4.0.30319_32 - ok
11:34:47.0412 6172  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:34:47.0415 6172  clr_optimization_v4.0.30319_64 - ok
11:34:47.0451 6172  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
11:34:47.0452 6172  CmBatt - ok
11:34:47.0473 6172  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:34:47.0474 6172  cmdide - ok
11:34:47.0505 6172  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
11:34:47.0510 6172  CNG - ok
11:34:47.0526 6172  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:34:47.0527 6172  Compbatt - ok
11:34:47.0563 6172  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
11:34:47.0564 6172  CompositeBus - ok
11:34:47.0577 6172  COMSysApp - ok
11:34:47.0641 6172  [ C08063F052308B6F5882482615387F30 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
11:34:47.0641 6172  cpuz135 - ok
11:34:47.0652 6172  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
11:34:47.0653 6172  crcdisk - ok
11:34:47.0701 6172  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:34:47.0703 6172  CryptSvc - ok
11:34:47.0743 6172  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
11:34:47.0753 6172  CSC - ok
11:34:47.0787 6172  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
11:34:47.0795 6172  CscService - ok
11:34:47.0835 6172  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:34:47.0843 6172  DcomLaunch - ok
11:34:47.0870 6172  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
11:34:47.0874 6172  defragsvc - ok
11:34:47.0895 6172  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:34:47.0897 6172  DfsC - ok
11:34:47.0938 6172  DfSdkS - ok
11:34:47.0966 6172  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:34:47.0969 6172  Dhcp - ok
11:34:47.0993 6172  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
11:34:47.0994 6172  discache - ok
11:34:48.0020 6172  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
11:34:48.0021 6172  Disk - ok
11:34:48.0042 6172  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:34:48.0044 6172  Dnscache - ok
11:34:48.0058 6172  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:34:48.0061 6172  dot3svc - ok
11:34:48.0099 6172  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
11:34:48.0103 6172  Dot4 - ok
11:34:48.0126 6172  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
11:34:48.0128 6172  Dot4Print - ok
11:34:48.0146 6172  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
11:34:48.0148 6172  dot4usb - ok
11:34:48.0182 6172  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
11:34:48.0184 6172  DPS - ok
11:34:48.0211 6172  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:34:48.0212 6172  drmkaud - ok
11:34:48.0261 6172  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:34:48.0275 6172  DXGKrnl - ok
11:34:48.0314 6172  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
11:34:48.0315 6172  EapHost - ok
11:34:48.0399 6172  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
11:34:48.0434 6172  ebdrv - ok
11:34:48.0457 6172  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
11:34:48.0458 6172  EFS - ok
11:34:48.0509 6172  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:34:48.0519 6172  ehRecvr - ok
11:34:48.0542 6172  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
11:34:48.0544 6172  ehSched - ok
11:34:48.0578 6172  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
11:34:48.0585 6172  elxstor - ok
11:34:48.0613 6172  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:34:48.0614 6172  ErrDev - ok
11:34:48.0653 6172  [ 84486624268E078255BC7AA47F0960BC ] etdrv           C:\Windows\etdrv.sys
11:34:48.0654 6172  etdrv - ok
11:34:48.0678 6172  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
11:34:48.0684 6172  EventSystem - ok
11:34:48.0708 6172  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
11:34:48.0711 6172  exfat - ok
11:34:48.0767 6172  Fabs - ok
11:34:48.0808 6172  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:34:48.0812 6172  fastfat - ok
11:34:48.0852 6172  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
11:34:48.0860 6172  Fax - ok
11:34:48.0896 6172  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:34:48.0897 6172  fdc - ok
11:34:48.0916 6172  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
11:34:48.0917 6172  fdPHost - ok
11:34:48.0926 6172  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:34:48.0928 6172  FDResPub - ok
11:34:48.0943 6172  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:34:48.0944 6172  FileInfo - ok
11:34:48.0949 6172  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:34:48.0950 6172  Filetrace - ok
11:34:49.0058 6172  [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
11:34:49.0119 6172  FirebirdServerMAGIXInstance - ok
11:34:49.0170 6172  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:34:49.0171 6172  flpydisk - ok
11:34:49.0218 6172  [ CF145A57AEBA71B82B1C6F103461F6FA ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:34:49.0222 6172  FltMgr - ok
11:34:49.0284 6172  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
11:34:49.0299 6172  FontCache - ok
11:34:49.0361 6172  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:34:49.0363 6172  FontCache3.0.0.0 - ok
11:34:49.0418 6172  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:34:49.0421 6172  FsDepends - ok
11:34:49.0449 6172  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:34:49.0451 6172  Fs_Rec - ok
11:34:49.0503 6172  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:34:49.0506 6172  fvevol - ok
11:34:49.0527 6172  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
11:34:49.0529 6172  gagp30kx - ok
11:34:49.0564 6172  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
11:34:49.0566 6172  gdrv - ok
11:34:49.0615 6172  [ B93252C4C5A3733ECD5522CAF88DE02D ] GigasetGenericUSB_x64 C:\Windows\system32\DRIVERS\GigasetGenericUSB_x64.sys
11:34:49.0618 6172  GigasetGenericUSB_x64 - ok
11:34:49.0656 6172  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
11:34:49.0662 6172  gpsvc - ok
11:34:49.0734 6172  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:34:49.0738 6172  gupdate - ok
11:34:49.0748 6172  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:34:49.0751 6172  gupdatem - ok
11:34:49.0804 6172  [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64        C:\Windows\GVTDrv64.sys
11:34:49.0805 6172  GVTDrv64 - ok
11:34:49.0834 6172  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:34:49.0835 6172  hcw85cir - ok
11:34:49.0879 6172  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:34:49.0882 6172  HdAudAddService - ok
11:34:49.0925 6172  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:34:49.0926 6172  HDAudBus - ok
11:34:49.0930 6172  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
11:34:49.0931 6172  HidBatt - ok
11:34:49.0946 6172  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
11:34:49.0947 6172  HidBth - ok
11:34:49.0951 6172  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
11:34:49.0952 6172  HidIr - ok
11:34:49.0966 6172  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
11:34:49.0968 6172  hidserv - ok
11:34:49.0995 6172  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:34:49.0996 6172  HidUsb - ok
11:34:50.0021 6172  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:34:50.0022 6172  hkmsvc - ok
11:34:50.0039 6172  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:34:50.0041 6172  HomeGroupListener - ok
11:34:50.0067 6172  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:34:50.0069 6172  HomeGroupProvider - ok
11:34:50.0126 6172  [ 5DB012836189C25241701B99E72B2745 ] hotcore3        C:\Windows\system32\DRIVERS\hotcore3.sys
11:34:50.0127 6172  hotcore3 - ok
11:34:50.0217 6172  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
11:34:50.0222 6172  hpqcxs08 - ok
11:34:50.0268 6172  [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
11:34:50.0269 6172  hpqddsvc - ok
11:34:50.0287 6172  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:34:50.0288 6172  HpSAMD - ok
11:34:50.0356 6172  [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
11:34:50.0377 6172  HPSLPSVC - ok
11:34:50.0431 6172  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:34:50.0444 6172  HTTP - ok
11:34:50.0471 6172  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:34:50.0472 6172  hwpolicy - ok
11:34:50.0524 6172  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
11:34:50.0528 6172  i8042prt - ok
11:34:50.0572 6172  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:34:50.0576 6172  iaStorV - ok
11:34:50.0648 6172  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:34:50.0649 6172  IDriverT - ok
11:34:50.0688 6172  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:34:50.0693 6172  idsvc - ok
11:34:50.0718 6172  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
11:34:50.0719 6172  iirsp - ok
11:34:50.0755 6172  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
11:34:50.0767 6172  IKEEXT - ok
11:34:50.0871 6172  [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:34:50.0891 6172  IntcAzAudAddService - ok
11:34:50.0932 6172  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
11:34:50.0933 6172  intelide - ok
11:34:50.0968 6172  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:34:50.0970 6172  intelppm - ok
11:34:50.0998 6172  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:34:51.0000 6172  IPBusEnum - ok
11:34:51.0028 6172  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:34:51.0029 6172  IpFilterDriver - ok
11:34:51.0063 6172  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:34:51.0071 6172  iphlpsvc - ok
11:34:51.0094 6172  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:34:51.0096 6172  IPMIDRV - ok
11:34:51.0102 6172  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:34:51.0104 6172  IPNAT - ok
11:34:51.0135 6172  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:34:51.0136 6172  IRENUM - ok
11:34:51.0148 6172  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:34:51.0149 6172  isapnp - ok
11:34:51.0163 6172  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:34:51.0167 6172  iScsiPrt - ok
11:34:51.0182 6172  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:34:51.0183 6172  kbdclass - ok
11:34:51.0216 6172  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:34:51.0217 6172  kbdhid - ok
11:34:51.0232 6172  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
11:34:51.0234 6172  KeyIso - ok
11:34:51.0301 6172  [ 8B5219318DF5895ABD230C373F2DF18A ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
11:34:51.0307 6172  kl1 - ok
11:34:51.0371 6172  [ 8191BB24F61EBCAF84719993C7F7B5C6 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
11:34:51.0380 6172  KLIF - ok
11:34:51.0419 6172  [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
11:34:51.0419 6172  KLIM6 - ok
11:34:51.0467 6172  [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
11:34:51.0469 6172  klkbdflt - ok
11:34:51.0481 6172  [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
11:34:51.0483 6172  klmouflt - ok
11:34:51.0517 6172  [ FFC0501A1EA742406F1904A0CFE3BFE2 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
11:34:51.0518 6172  kltdi - ok
11:34:51.0542 6172  [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
11:34:51.0544 6172  kneps - ok
11:34:51.0574 6172  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:34:51.0575 6172  KSecDD - ok
11:34:51.0598 6172  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:34:51.0600 6172  KSecPkg - ok
11:34:51.0618 6172  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:34:51.0619 6172  ksthunk - ok
11:34:51.0644 6172  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:34:51.0650 6172  KtmRm - ok
11:34:51.0702 6172  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
11:34:51.0710 6172  LanmanServer - ok
11:34:51.0877 6172  [ 7772DFAB22611050B79504E671B06E6E ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
11:34:51.0884 6172  LBTServ - ok
11:34:51.0943 6172  [ ED7EC050CD6C20E1A93A4DAFB7EFD14D ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
11:34:51.0945 6172  LEqdUsb - ok
11:34:51.0975 6172  [ 3267BC698E29474A8381E68904EB0390 ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
11:34:51.0976 6172  LHidEqd - ok
11:34:51.0994 6172  [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:34:51.0996 6172  LHidFilt - ok
11:34:52.0028 6172  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:34:52.0030 6172  lltdio - ok
11:34:52.0060 6172  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:34:52.0068 6172  lltdsvc - ok
11:34:52.0084 6172  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:34:52.0087 6172  lmhosts - ok
11:34:52.0125 6172  [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:34:52.0126 6172  LMouFilt - ok
11:34:52.0181 6172  [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55 ] LPDSVC          C:\Windows\system32\lpdsvc.dll
11:34:52.0184 6172  LPDSVC - ok
11:34:52.0221 6172  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
11:34:52.0224 6172  LSI_FC - ok
11:34:52.0246 6172  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
11:34:52.0249 6172  LSI_SAS - ok
11:34:52.0259 6172  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:34:52.0262 6172  LSI_SAS2 - ok
11:34:52.0274 6172  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:34:52.0278 6172  LSI_SCSI - ok
11:34:52.0306 6172  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
11:34:52.0308 6172  luafv - ok
11:34:52.0343 6172  [ 29C733E1DE824670DC9315CFC9BDBCD3 ] LUsbFilt        C:\Windows\system32\Drivers\LUsbFilt.Sys
11:34:52.0344 6172  LUsbFilt - ok
11:34:52.0372 6172  McComponentHostService - ok
11:34:52.0413 6172  MCSWASVR - ok
11:34:52.0448 6172  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:34:52.0453 6172  Mcx2Svc - ok
11:34:52.0470 6172  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
11:34:52.0472 6172  megasas - ok
11:34:52.0485 6172  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
11:34:52.0491 6172  MegaSR - ok
11:34:52.0519 6172  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
11:34:52.0522 6172  MMCSS - ok
11:34:52.0537 6172  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
11:34:52.0539 6172  Modem - ok
11:34:52.0568 6172  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:34:52.0568 6172  monitor - ok
11:34:52.0598 6172  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:34:52.0599 6172  mouclass - ok
11:34:52.0609 6172  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:34:52.0610 6172  mouhid - ok
11:34:52.0654 6172  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:34:52.0656 6172  mountmgr - ok
11:34:52.0698 6172  [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:34:52.0700 6172  MozillaMaintenance - ok
11:34:52.0711 6172  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:34:52.0713 6172  mpio - ok
11:34:52.0720 6172  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:34:52.0723 6172  mpsdrv - ok
11:34:52.0786 6172  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:34:52.0805 6172  MpsSvc - ok
11:34:52.0863 6172  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:34:52.0867 6172  MRxDAV - ok
11:34:52.0895 6172  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:34:52.0897 6172  mrxsmb - ok
11:34:52.0912 6172  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:34:52.0916 6172  mrxsmb10 - ok
11:34:52.0939 6172  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:34:52.0941 6172  mrxsmb20 - ok
11:34:52.0968 6172  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:34:52.0969 6172  msahci - ok
11:34:53.0003 6172  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:34:53.0006 6172  msdsm - ok
11:34:53.0024 6172  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
11:34:53.0027 6172  MSDTC - ok
11:34:53.0053 6172  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:34:53.0054 6172  Msfs - ok
11:34:53.0062 6172  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:34:53.0063 6172  mshidkmdf - ok
11:34:53.0072 6172  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:34:53.0073 6172  msisadrv - ok
11:34:53.0093 6172  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:34:53.0096 6172  MSiSCSI - ok
11:34:53.0101 6172  msiserver - ok
11:34:53.0116 6172  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:34:53.0117 6172  MSKSSRV - ok
11:34:53.0128 6172  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:34:53.0129 6172  MSPCLOCK - ok
11:34:53.0135 6172  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:34:53.0136 6172  MSPQM - ok
11:34:53.0173 6172  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:34:53.0177 6172  MsRPC - ok
11:34:53.0185 6172  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
11:34:53.0186 6172  mssmbios - ok
11:34:53.0222 6172  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:34:53.0223 6172  MSTEE - ok
11:34:53.0231 6172  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
11:34:53.0233 6172  MTConfig - ok
11:34:53.0249 6172  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:34:53.0251 6172  Mup - ok
11:34:53.0282 6172  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
11:34:53.0291 6172  napagent - ok
11:34:53.0325 6172  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:34:53.0332 6172  NativeWifiP - ok
11:34:53.0402 6172  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:34:53.0412 6172  NDIS - ok
11:34:53.0439 6172  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:34:53.0440 6172  NdisCap - ok
11:34:53.0458 6172  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:34:53.0459 6172  NdisTapi - ok
11:34:53.0485 6172  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:34:53.0487 6172  Ndisuio - ok
11:34:53.0502 6172  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:34:53.0504 6172  NdisWan - ok
11:34:53.0520 6172  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:34:53.0522 6172  NDProxy - ok
11:34:53.0539 6172  Nero BackItUp Scheduler 3 - ok
11:34:53.0575 6172  [ 2C723E42FC8D7B0209492828F921FB50 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:34:53.0577 6172  Net Driver HPZ12 - ok
11:34:53.0582 6172  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:34:53.0583 6172  NetBIOS - ok
11:34:53.0614 6172  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:34:53.0619 6172  NetBT - ok
11:34:53.0640 6172  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
11:34:53.0643 6172  Netlogon - ok
11:34:53.0685 6172  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
11:34:53.0690 6172  Netman - ok
11:34:53.0722 6172  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:53.0724 6172  NetMsmqActivator - ok
11:34:53.0730 6172  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:53.0731 6172  NetPipeActivator - ok
11:34:53.0741 6172  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
11:34:53.0747 6172  netprofm - ok
11:34:53.0753 6172  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:53.0754 6172  NetTcpActivator - ok
11:34:53.0759 6172  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:34:53.0761 6172  NetTcpPortSharing - ok
11:34:53.0766 6172  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
11:34:53.0767 6172  nfrd960 - ok
11:34:53.0799 6172  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:34:53.0802 6172  NlaSvc - ok
11:34:53.0860 6172  [ CB992AE1506985D9167E85883B4C3240 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
11:34:53.0866 6172  NMIndexingService - ok
11:34:53.0910 6172  [ 1381E95D4E0F94F22DD484B5F8C1D61D ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
11:34:53.0911 6172  nmwcd - ok
11:34:53.0951 6172  [ 205510CDB7B6084BF31760B5D06F9242 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
11:34:53.0952 6172  nmwcdc - ok
11:34:53.0956 6172  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:34:53.0957 6172  Npfs - ok
11:34:53.0973 6172  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
11:34:53.0975 6172  nsi - ok
11:34:53.0978 6172  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:34:53.0979 6172  nsiproxy - ok
11:34:54.0020 6172  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:34:54.0031 6172  Ntfs - ok
11:34:54.0046 6172  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
11:34:54.0046 6172  Null - ok
11:34:54.0066 6172  [ B01C1E6D7477961D6D1CBDCD44AF3E67 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
11:34:54.0067 6172  nusb3hub - ok
11:34:54.0119 6172  [ 796BAE22DD827DB8AD7AE7C3F775E92F ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
11:34:54.0123 6172  nusb3xhc - ok
11:34:54.0169 6172  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:34:54.0173 6172  nvraid - ok
11:34:54.0212 6172  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:34:54.0216 6172  nvstor - ok
11:34:54.0235 6172  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:34:54.0237 6172  nv_agp - ok
11:34:54.0254 6172  ocster_backup - ok
11:34:54.0388 6172  [ CE8AD6748DBA78A9D3CBB7094176D6C8 ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
11:34:54.0403 6172  OfficeSvc - ok
11:34:54.0425 6172  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:34:54.0426 6172  ohci1394 - ok
11:34:54.0458 6172  [ 17553AE5699D2BFE46C746B9C059C0C1 ] oodrvled        C:\Windows\system32\DRIVERS\oodrvled.sys
11:34:54.0459 6172  oodrvled - ok
11:34:54.0533 6172  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:34:54.0537 6172  ose - ok
11:34:54.0738 6172  [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:34:54.0782 6172  osppsvc - ok
11:34:54.0828 6172  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:34:54.0832 6172  p2pimsvc - ok
11:34:54.0844 6172  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
11:34:54.0848 6172  p2psvc - ok
11:34:54.0890 6172  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:34:54.0894 6172  Parport - ok
11:34:54.0921 6172  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:34:54.0922 6172  partmgr - ok
11:34:54.0939 6172  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:34:54.0945 6172  PcaSvc - ok
11:34:54.0988 6172  [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
11:34:54.0990 6172  pccsmcfd - ok
11:34:55.0015 6172  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
11:34:55.0018 6172  pci - ok
11:34:55.0040 6172  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
11:34:55.0041 6172  pciide - ok
11:34:55.0065 6172  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
11:34:55.0068 6172  pcmcia - ok
11:34:55.0081 6172  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:34:55.0082 6172  pcw - ok
11:34:55.0099 6172  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:34:55.0106 6172  PEAUTH - ok
11:34:55.0148 6172  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
11:34:55.0172 6172  PeerDistSvc - ok
11:34:55.0244 6172  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:34:55.0248 6172  PerfHost - ok
11:34:55.0314 6172  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
11:34:55.0332 6172  pla - ok
11:34:55.0365 6172  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:34:55.0369 6172  PlugPlay - ok
11:34:55.0429 6172  [ 171E6D91A20AAC8D02172A64E82CE90B ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:34:55.0430 6172  Pml Driver HPZ12 - ok
11:34:55.0449 6172  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:34:55.0453 6172  PNRPAutoReg - ok
11:34:55.0472 6172  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:34:55.0480 6172  PNRPsvc - ok
11:34:55.0517 6172  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:34:55.0528 6172  PolicyAgent - ok
11:34:55.0562 6172  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
11:34:55.0567 6172  Power - ok
11:34:55.0596 6172  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:34:55.0598 6172  PptpMiniport - ok
11:34:55.0621 6172  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
11:34:55.0622 6172  Processor - ok
11:34:55.0642 6172  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:34:55.0646 6172  ProfSvc - ok
11:34:55.0656 6172  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:34:55.0658 6172  ProtectedStorage - ok
11:34:55.0682 6172  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:34:55.0684 6172  Psched - ok
11:34:55.0714 6172  [ 07D57B890DD5693A6AB660CBAE8F91B4 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
11:34:55.0716 6172  PxHlpa64 - ok
11:34:55.0767 6172  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
11:34:55.0798 6172  ql2300 - ok
11:34:55.0824 6172  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
11:34:55.0827 6172  ql40xx - ok
11:34:55.0854 6172  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
11:34:55.0859 6172  QWAVE - ok
11:34:55.0864 6172  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:34:55.0865 6172  QWAVEdrv - ok
11:34:55.0917 6172  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
11:34:55.0919 6172  RapiMgr - ok
11:34:55.0931 6172  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:34:55.0932 6172  RasAcd - ok
11:34:55.0965 6172  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:34:55.0966 6172  RasAgileVpn - ok
11:34:55.0976 6172  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
11:34:55.0978 6172  RasAuto - ok
11:34:55.0997 6172  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:34:55.0999 6172  Rasl2tp - ok
11:34:56.0012 6172  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
11:34:56.0016 6172  RasMan - ok
11:34:56.0038 6172  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:34:56.0040 6172  RasPppoe - ok
11:34:56.0070 6172  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:34:56.0072 6172  RasSstp - ok
11:34:56.0077 6172  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:34:56.0079 6172  rdbss - ok
11:34:56.0091 6172  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:34:56.0092 6172  rdpbus - ok
11:34:56.0100 6172  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:34:56.0101 6172  RDPCDD - ok
11:34:56.0127 6172  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
11:34:56.0128 6172  RDPDR - ok
11:34:56.0132 6172  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:34:56.0132 6172  RDPENCDD - ok
11:34:56.0137 6172  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:34:56.0137 6172  RDPREFMP - ok
11:34:56.0188 6172  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:34:56.0188 6172  RdpVideoMiniport - ok
11:34:56.0214 6172  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:34:56.0219 6172  RDPWD - ok
11:34:56.0263 6172  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:34:56.0267 6172  rdyboost - ok
11:34:56.0309 6172  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:34:56.0314 6172  RemoteAccess - ok
11:34:56.0331 6172  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:34:56.0337 6172  RemoteRegistry - ok
11:34:56.0370 6172  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
11:34:56.0374 6172  RFCOMM - ok
11:34:56.0393 6172  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:34:56.0395 6172  RpcEptMapper - ok
11:34:56.0417 6172  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
11:34:56.0419 6172  RpcLocator - ok
11:34:56.0451 6172  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
11:34:56.0457 6172  RpcSs - ok
11:34:56.0496 6172  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:34:56.0500 6172  rspndr - ok
11:34:56.0534 6172  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
11:34:56.0539 6172  RSUSBSTOR - ok
11:34:56.0581 6172  [ C435AC77704EB16E85C9D630F4D4B4F7 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
11:34:56.0583 6172  RTHDMIAzAudService - ok
11:34:56.0622 6172  [ BD9BA262CF26EFE9A9867EBE32D12164 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
11:34:56.0628 6172  RTL8167 - ok
11:34:56.0660 6172  [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60        C:\Windows\system32\DRIVERS\RtNdPt60.sys
11:34:56.0661 6172  RtNdPt60 - ok
11:34:56.0698 6172  [ 3183388DA27655085960A22B4B29CAA9 ] RTTEAMPT        C:\Windows\system32\DRIVERS\RtTeam60.sys
11:34:56.0700 6172  RTTEAMPT - ok
11:34:56.0713 6172  [ 8B6B42D782202363A562F82B0E13B1C0 ] RTVLANPT        C:\Windows\system32\DRIVERS\RtVlan60.sys
11:34:56.0715 6172  RTVLANPT - ok
11:34:56.0737 6172  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
11:34:56.0738 6172  s3cap - ok
11:34:56.0747 6172  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
11:34:56.0748 6172  SamSs - ok
11:34:56.0768 6172  SANDRA - ok
11:34:56.0786 6172  SandraAgentSrv - ok
11:34:56.0812 6172  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:34:56.0813 6172  sbp2port - ok
11:34:56.0836 6172  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:34:56.0839 6172  SCardSvr - ok
11:34:56.0857 6172  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:34:56.0859 6172  scfilter - ok
11:34:56.0908 6172  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
11:34:56.0949 6172  Schedule - ok
11:34:56.0982 6172  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:34:56.0984 6172  SCPolicySvc - ok
11:34:57.0008 6172  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:34:57.0012 6172  SDRSVC - ok
11:34:57.0033 6172  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:34:57.0034 6172  secdrv - ok
11:34:57.0046 6172  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
11:34:57.0049 6172  seclogon - ok
11:34:57.0080 6172  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
11:34:57.0083 6172  SENS - ok
11:34:57.0105 6172  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:34:57.0108 6172  SensrSvc - ok
11:34:57.0156 6172  [ 2437720D4480523562360B2B6B5864A7 ] Ser2pl          C:\Windows\system32\DRIVERS\ser2pl64.sys
11:34:57.0160 6172  Ser2pl - ok
11:34:57.0181 6172  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:34:57.0183 6172  Serenum - ok
11:34:57.0205 6172  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:34:57.0207 6172  Serial - ok
11:34:57.0235 6172  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
11:34:57.0237 6172  sermouse - ok
11:34:57.0307 6172  [ 78F7BB9F4924BE164294C59B8C3FC096 ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
11:34:57.0315 6172  ServiceLayer - ok
11:34:57.0360 6172  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
11:34:57.0364 6172  SessionEnv - ok
11:34:57.0393 6172  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:34:57.0395 6172  sffdisk - ok
11:34:57.0409 6172  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:34:57.0412 6172  sffp_mmc - ok
11:34:57.0429 6172  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:34:57.0430 6172  sffp_sd - ok
11:34:57.0458 6172  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
11:34:57.0459 6172  sfloppy - ok
11:34:57.0482 6172  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:34:57.0487 6172  SharedAccess - ok
11:34:57.0513 6172  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:34:57.0518 6172  ShellHWDetection - ok
11:34:57.0529 6172  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:34:57.0531 6172  SiSRaid2 - ok
11:34:57.0539 6172  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
11:34:57.0540 6172  SiSRaid4 - ok
11:34:57.0555 6172  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:34:57.0557 6172  Smb - ok
11:34:57.0594 6172  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:34:57.0595 6172  SNMPTRAP - ok
11:34:57.0605 6172  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:34:57.0606 6172  spldr - ok
11:34:57.0646 6172  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
11:34:57.0657 6172  Spooler - ok
11:34:57.0771 6172  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
11:34:57.0787 6172  sppsvc - ok
11:34:57.0807 6172  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:34:57.0809 6172  sppuinotify - ok
11:34:57.0868 6172  [ D6AB7C13FCDD2E4CAC35244D2C172D9A ] sptd            C:\Windows\System32\Drivers\sptd.sys
11:34:57.0878 6172  sptd - ok
11:34:57.0930 6172  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:34:57.0936 6172  srv - ok
11:34:57.0954 6172  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:34:57.0959 6172  srv2 - ok
11:34:57.0982 6172  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:34:57.0985 6172  srvnet - ok
11:34:58.0025 6172  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:34:58.0029 6172  SSDPSRV - ok
11:34:58.0043 6172  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:34:58.0046 6172  SstpSvc - ok
11:34:58.0082 6172  StarWindServiceAE - ok
11:34:58.0113 6172  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
11:34:58.0115 6172  stexstor - ok
11:34:58.0155 6172  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
11:34:58.0164 6172  stisvc - ok
11:34:58.0194 6172  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
11:34:58.0195 6172  storflt - ok
11:34:58.0216 6172  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
11:34:58.0219 6172  StorSvc - ok
11:34:58.0227 6172  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
11:34:58.0228 6172  storvsc - ok
11:34:58.0242 6172  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
11:34:58.0243 6172  swenum - ok
11:34:58.0270 6172  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
11:34:58.0278 6172  swprv - ok
11:34:58.0325 6172  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
11:34:58.0360 6172  SysMain - ok
11:34:58.0388 6172  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:34:58.0391 6172  TabletInputService - ok
11:34:58.0414 6172  [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
11:34:58.0415 6172  tap0901 - ok
11:34:58.0442 6172  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:34:58.0447 6172  TapiSrv - ok
11:34:58.0470 6172  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
11:34:58.0474 6172  TBS - ok
11:34:58.0540 6172  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:34:58.0569 6172  Tcpip - ok
11:34:58.0600 6172  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:34:58.0611 6172  TCPIP6 - ok
11:34:58.0639 6172  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:34:58.0640 6172  tcpipreg - ok
11:34:58.0660 6172  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:34:58.0663 6172  TDPIPE - ok
11:34:58.0685 6172  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:34:58.0686 6172  TDTCP - ok
11:34:58.0708 6172  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:34:58.0711 6172  tdx - ok
11:34:58.0739 6172  [ 3183388DA27655085960A22B4B29CAA9 ] TEAM            C:\Windows\system32\DRIVERS\RtTeam60.sys
11:34:58.0740 6172  TEAM - ok
11:34:58.0763 6172  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
11:34:58.0764 6172  TermDD - ok
11:34:58.0792 6172  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
11:34:58.0799 6172  TermService - ok
11:34:58.0835 6172  [ 48D9D00C2E0E72C3D4F52772C80355F6 ] TFsExDisk       C:\Windows\System32\Drivers\TFsExDisk.sys
11:34:58.0837 6172  TFsExDisk - ok
11:34:58.0862 6172  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
11:34:58.0866 6172  Themes - ok
11:34:58.0885 6172  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
11:34:58.0886 6172  THREADORDER - ok
11:34:58.0903 6172  TomTomHOMEService - ok
11:34:58.0912 6172  TPkd - ok
11:34:58.0934 6172  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
11:34:58.0937 6172  TrkWks - ok
11:34:58.0972 6172  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:34:58.0977 6172  TrustedInstaller - ok
11:34:59.0006 6172  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:34:59.0007 6172  tssecsrv - ok
11:34:59.0029 6172  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:34:59.0030 6172  TsUsbFlt - ok
11:34:59.0064 6172  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:34:59.0068 6172  tunnel - ok
11:34:59.0100 6172  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
11:34:59.0102 6172  uagp35 - ok
11:34:59.0118 6172  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:34:59.0125 6172  udfs - ok
11:34:59.0147 6172  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:34:59.0150 6172  UI0Detect - ok
11:34:59.0183 6172  [ 34859D3801F4BD3DACFA131DD928455A ] UimBus          C:\Windows\system32\DRIVERS\uimx64.sys
11:34:59.0185 6172  UimBus - ok
11:34:59.0208 6172  [ D3CE4776E7FFB25E6935B1C797F4650C ] Uim_IM          C:\Windows\system32\Drivers\Uim_IMx64.sys
11:34:59.0213 6172  Uim_IM - ok
11:34:59.0235 6172  [ 532E4BED5C7803B2EE5681818B2528B7 ] Uim_VIM         C:\Windows\system32\Drivers\uim_vimx64.sys
11:34:59.0239 6172  Uim_VIM - ok
11:34:59.0255 6172  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:34:59.0257 6172  uliagpkx - ok
11:34:59.0301 6172  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
11:34:59.0303 6172  umbus - ok
11:34:59.0324 6172  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
11:34:59.0326 6172  UmPass - ok
11:34:59.0342 6172  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
11:34:59.0347 6172  UmRdpService - ok
11:34:59.0365 6172  Update-Service - ok
11:34:59.0396 6172  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
11:34:59.0402 6172  upnphost - ok
11:34:59.0456 6172  [ 311C90F0767A63000AC35DD0A7078A30 ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
11:34:59.0458 6172  upperdev - ok
11:34:59.0494 6172  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:34:59.0497 6172  usbccgp - ok
11:34:59.0543 6172  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:34:59.0546 6172  usbcir - ok
11:34:59.0565 6172  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
11:34:59.0567 6172  usbehci - ok
11:34:59.0614 6172  [ 5AE9C87A1ED4B243942B3FDDD902134B ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
11:34:59.0616 6172  usbfilter - ok
11:34:59.0650 6172  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:34:59.0657 6172  usbhub - ok
11:34:59.0679 6172  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
11:34:59.0681 6172  usbohci - ok
11:34:59.0716 6172  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:34:59.0718 6172  usbprint - ok
11:34:59.0753 6172  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
11:34:59.0756 6172  usbscan - ok
11:34:59.0799 6172  [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser          C:\Windows\system32\drivers\usbser.sys
11:34:59.0800 6172  usbser - ok
11:34:59.0837 6172  [ C03DA998E412D69D18DD11D835229AF0 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
11:34:59.0838 6172  UsbserFilt - ok
11:34:59.0856 6172  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:34:59.0859 6172  USBSTOR - ok
11:34:59.0876 6172  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
11:34:59.0879 6172  usbuhci - ok
11:34:59.0928 6172  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
11:34:59.0930 6172  usb_rndisx - ok
11:34:59.0955 6172  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
11:34:59.0961 6172  UxSms - ok
11:34:59.0981 6172  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
11:34:59.0984 6172  VaultSvc - ok
11:35:00.0027 6172  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:35:00.0028 6172  vdrvroot - ok
11:35:00.0056 6172  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
11:35:00.0063 6172  vds - ok
11:35:00.0068 6172  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:35:00.0070 6172  vga - ok
11:35:00.0084 6172  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:35:00.0085 6172  VgaSave - ok
11:35:00.0108 6172  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:35:00.0110 6172  vhdmp - ok
11:35:00.0126 6172  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:35:00.0128 6172  viaide - ok
11:35:00.0145 6172  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
11:35:00.0150 6172  vmbus - ok
11:35:00.0166 6172  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
11:35:00.0167 6172  VMBusHID - ok
11:35:00.0177 6172  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:35:00.0178 6172  volmgr - ok
11:35:00.0221 6172  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:35:00.0228 6172  volmgrx - ok
11:35:00.0278 6172  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:35:00.0284 6172  volsnap - ok
11:35:00.0312 6172  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
11:35:00.0315 6172  vsmraid - ok
11:35:00.0361 6172  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
11:35:00.0391 6172  VSS - ok
11:35:00.0510 6172  [ 8754BA5FCC85325C229ADCB72087706E ] vToolbarUpdater15.4.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe
11:35:00.0521 6172  vToolbarUpdater15.4.0 - ok
11:35:00.0536 6172  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
11:35:00.0537 6172  vwifibus - ok
11:35:00.0556 6172  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
11:35:00.0560 6172  W32Time - ok
11:35:00.0583 6172  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
11:35:00.0584 6172  WacomPen - ok
11:35:00.0618 6172  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:35:00.0621 6172  WANARP - ok
11:35:00.0643 6172  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:35:00.0646 6172  Wanarpv6 - ok
11:35:00.0741 6172  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
11:35:00.0758 6172  WatAdminSvc - ok
11:35:00.0792 6172  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
11:35:00.0804 6172  wbengine - ok
11:35:00.0832 6172  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:35:00.0835 6172  WbioSrvc - ok
11:35:00.0886 6172  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
11:35:00.0895 6172  WcesComm - ok
11:35:00.0932 6172  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:35:00.0941 6172  wcncsvc - ok
11:35:00.0953 6172  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:35:00.0959 6172  WcsPlugInService - ok
11:35:00.0987 6172  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
11:35:00.0988 6172  Wd - ok
11:35:01.0035 6172  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:35:01.0049 6172  Wdf01000 - ok
11:35:01.0070 6172  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:35:01.0073 6172  WdiServiceHost - ok
11:35:01.0076 6172  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:35:01.0078 6172  WdiSystemHost - ok
11:35:01.0104 6172  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
11:35:01.0108 6172  WebClient - ok
11:35:01.0127 6172  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:35:01.0131 6172  Wecsvc - ok
11:35:01.0135 6172  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:35:01.0138 6172  wercplsupport - ok
11:35:01.0150 6172  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:35:01.0152 6172  WerSvc - ok
11:35:01.0184 6172  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:35:01.0185 6172  WfpLwf - ok
11:35:01.0198 6172  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:35:01.0199 6172  WIMMount - ok
11:35:01.0220 6172  WinDefend - ok
11:35:01.0234 6172  WinHttpAutoProxySvc - ok
11:35:01.0295 6172  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:35:01.0300 6172  Winmgmt - ok
11:35:01.0369 6172  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
11:35:01.0410 6172  WinRM - ok
11:35:01.0458 6172  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
11:35:01.0460 6172  WinUsb - ok
11:35:01.0491 6172  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:35:01.0503 6172  Wlansvc - ok
11:35:01.0523 6172  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:35:01.0524 6172  WmiAcpi - ok
11:35:01.0552 6172  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:35:01.0555 6172  wmiApSrv - ok
11:35:01.0590 6172  WMPNetworkSvc - ok
11:35:01.0602 6172  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:35:01.0605 6172  WPCSvc - ok
11:35:01.0632 6172  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:35:01.0636 6172  WPDBusEnum - ok
11:35:01.0662 6172  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:35:01.0663 6172  ws2ifsl - ok
11:35:01.0680 6172  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
11:35:01.0683 6172  wscsvc - ok
11:35:01.0688 6172  WSearch - ok
11:35:01.0805 6172  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:35:01.0824 6172  wuauserv - ok
11:35:01.0841 6172  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:35:01.0842 6172  WudfPf - ok
11:35:01.0866 6172  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:35:01.0871 6172  WUDFRd - ok
11:35:01.0899 6172  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:35:01.0906 6172  wudfsvc - ok
11:35:01.0937 6172  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:35:01.0946 6172  WwanSvc - ok
11:35:01.0994 6172  ================ Scan global ===============================
11:35:02.0022 6172  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:35:02.0047 6172  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:35:02.0064 6172  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:35:02.0113 6172  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:35:02.0150 6172  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:35:02.0158 6172  [Global] - ok
11:35:02.0159 6172  ================ Scan MBR ==================================
11:35:02.0172 6172  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:35:03.0675 6172  \Device\Harddisk0\DR0 - ok
11:35:03.0700 6172  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
11:35:03.0707 6172  \Device\Harddisk1\DR1 - ok
11:35:04.0003 6172  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
11:35:04.0075 6172  \Device\Harddisk2\DR2 - ok
11:35:04.0133 6172  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk3\DR3
11:35:04.0146 6172  \Device\Harddisk3\DR3 - ok
11:35:04.0148 6172  ================ Scan VBR ==================================
11:35:04.0164 6172  [ 6F69E5D8684287108C89046EBFCDDCFB ] \Device\Harddisk0\DR0\Partition1
11:35:04.0178 6172  \Device\Harddisk0\DR0\Partition1 - ok
11:35:04.0185 6172  [ 6905A7941A427EBBF4462515BF494A81 ] \Device\Harddisk1\DR1\Partition1
11:35:04.0189 6172  \Device\Harddisk1\DR1\Partition1 - ok
11:35:04.0197 6172  [ D59DC1BC55FFC27F7ECA062B5AD6F2E5 ] \Device\Harddisk2\DR2\Partition1
11:35:04.0201 6172  \Device\Harddisk2\DR2\Partition1 - ok
11:35:04.0206 6172  [ 1D4EAA37EDC3097E5982FE6E680A7559 ] \Device\Harddisk3\DR3\Partition1
11:35:04.0208 6172  \Device\Harddisk3\DR3\Partition1 - ok
11:35:04.0209 6172  ============================================================
11:35:04.0209 6172  Scan finished
11:35:04.0209 6172  ============================================================
11:35:04.0223 6308  Detected object count: 0
11:35:04.0223 6308  Actual detected object count: 0
11:35:18.0529 6404  Deinitialize success


Alt 04.09.2013, 18:46   #6
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Code:
ATTFilter
15:47:22.0742 0x1984  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
15:47:23.0551 0x1984  ============================================================
15:47:23.0552 0x1984  Current date / time: 2013/08/28 15:47:23.0551
15:47:23.0552 0x1984  SystemInfo:
15:47:23.0552 0x1984  
15:47:23.0552 0x1984  OS Version: 6.1.7601 ServicePack: 1.0
15:47:23.0552 0x1984  Product type: Workstation
15:47:23.0552 0x1984  ComputerName: KOBOLT
15:47:23.0553 0x1984  UserName: Marko
15:47:23.0553 0x1984  Windows directory: C:\Windows
15:47:23.0553 0x1984  System windows directory: C:\Windows
15:47:23.0553 0x1984  Running under WOW64
15:47:23.0553 0x1984  Processor architecture: Intel x64
15:47:23.0553 0x1984  Number of processors: 6
15:47:23.0553 0x1984  Page size: 0x1000
15:47:23.0553 0x1984  Boot type: Normal boot
15:47:23.0553 0x1984  ============================================================
15:47:24.0029 0x1984  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:47:24.0030 0x1984  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:47:24.0033 0x1984  Drive \Device\Harddisk2\DR2 - Size: 0x7470C05E00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:47:24.0037 0x1984  Drive \Device\Harddisk4\DR4 - Size: 0x2BAA1476000 (2794.52 Gb), SectorSize: 0x1000, Cylinders: 0xB220, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:47:24.0039 0x1984  ============================================================
15:47:24.0039 0x1984  \Device\Harddisk0\DR0:
15:47:24.0039 0x1984  MBR partitions:
15:47:24.0039 0x1984  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xD17F0AB
15:47:24.0054 0x1984  \Device\Harddisk1\DR1:
15:47:24.0055 0x1984  MBR partitions:
15:47:24.0055 0x1984  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
15:47:24.0055 0x1984  \Device\Harddisk2\DR2:
15:47:24.0056 0x1984  MBR partitions:
15:47:24.0056 0x1984  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C41
15:47:24.0056 0x1984  \Device\Harddisk4\DR4:
15:47:24.0320 0x1984  GPT partitions:
15:47:24.0321 0x1984  \Device\Harddisk4\DR4\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {6CBD0141-C0B6-4284-8C2D-C57E68E194BD}, Name: unknown, StartLBA 0x100, BlocksNum 0x2BAA1300
15:47:24.0321 0x1984  MBR partitions:
15:47:24.0321 0x1984  ============================================================
15:47:24.0341 0x1984  C: <-> \Device\Harddisk0\DR0\Partition1
15:47:27.0974 0x1984  D: <-> \Device\Harddisk2\DR2\Partition1
15:47:33.0990 0x1984  K: <-> \Device\Harddisk1\DR1\Partition1
15:47:33.0991 0x1984  P: <-> \Device\Harddisk4\DR4\Partition1
15:47:33.0991 0x1984  ============================================================
15:47:33.0992 0x1984  Initialize success
15:47:33.0992 0x1984  ============================================================
15:47:48.0000 0x1814  ============================================================
15:47:48.0000 0x1814  Scan started
15:47:48.0000 0x1814  Mode: Manual; 
15:47:48.0000 0x1814  ============================================================
15:47:48.0557 0x1814  ================ Scan system memory ========================
15:47:48.0557 0x1814  System memory - ok
15:47:48.0558 0x1814  ================ Scan services =============================
15:47:48.0691 0x1814  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
15:47:48.0694 0x1814  1394ohci - ok
15:47:48.0708 0x1814  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:47:48.0713 0x1814  ACPI - ok
15:47:48.0730 0x1814  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:47:48.0731 0x1814  AcpiPmi - ok
15:47:48.0789 0x1814  [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
15:47:48.0790 0x1814  Adobe LM Service - ok
15:47:48.0816 0x1814  AdobeActiveFileMonitor11.0 - ok
15:47:48.0852 0x1814  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
15:47:48.0858 0x1814  adp94xx - ok
15:47:48.0877 0x1814  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
15:47:48.0883 0x1814  adpahci - ok
15:47:48.0890 0x1814  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
15:47:48.0893 0x1814  adpu320 - ok
15:47:48.0934 0x1814  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:47:48.0935 0x1814  AeLookupSvc - ok
15:47:48.0990 0x1814  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
15:47:48.0996 0x1814  AFD - ok
15:47:49.0019 0x1814  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:47:49.0020 0x1814  agp440 - ok
15:47:49.0037 0x1814  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
15:47:49.0039 0x1814  ALG - ok
15:47:49.0064 0x1814  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:47:49.0065 0x1814  aliide - ok
15:47:49.0107 0x1814  [ 20C8A3E435A47F0408A1EA674AFA6194 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:47:49.0110 0x1814  AMD External Events Utility - ok
15:47:49.0180 0x1814  AMD FUEL Service - ok
15:47:49.0197 0x1814  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
15:47:49.0199 0x1814  amdide - ok
15:47:49.0239 0x1814  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
15:47:49.0240 0x1814  amdiox64 - ok
15:47:49.0277 0x1814  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
15:47:49.0278 0x1814  AmdK8 - ok
15:47:49.0493 0x1814  [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:47:49.0651 0x1814  amdkmdag - ok
15:47:49.0670 0x1814  [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
15:47:49.0672 0x1814  amdkmdap - ok
15:47:49.0702 0x1814  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:47:49.0703 0x1814  AmdPPM - ok
15:47:49.0731 0x1814  [ 53D8D46D51D390ABDB54ECA623165CB7 ] amdsata         C:\Windows\system32\DRIVERS\amdsata.sys
15:47:49.0732 0x1814  amdsata - ok
15:47:49.0752 0x1814  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:47:49.0754 0x1814  amdsbs - ok
15:47:49.0765 0x1814  [ 75C51148154E34EB3D7BB84749A758D5 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:47:49.0765 0x1814  amdxata - ok
15:47:49.0787 0x1814  [ EE4797DFEBBE8ACDB548DD8E80BE0A88 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
15:47:49.0787 0x1814  amd_sata - ok
15:47:49.0800 0x1814  [ D56EAD71A86FD2ACAE2DB47D0A6A3A41 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
15:47:49.0800 0x1814  amd_xata - ok
15:47:49.0833 0x1814  AODDriver4.01 - ok
15:47:49.0892 0x1814  [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1    C:\ATI\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:47:49.0893 0x1814  AODDriver4.1 - ok
15:47:49.0939 0x1814  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
15:47:49.0941 0x1814  AppID - ok
15:47:49.0965 0x1814  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:47:49.0967 0x1814  AppIDSvc - ok
15:47:49.0989 0x1814  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
15:47:49.0990 0x1814  Appinfo - ok
15:47:50.0029 0x1814  [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
15:47:50.0030 0x1814  AppleCharger - ok
15:47:50.0058 0x1814  [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
15:47:50.0059 0x1814  AppleChargerSrv - ok
15:47:50.0107 0x1814  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
15:47:50.0110 0x1814  AppMgmt - ok
15:47:50.0153 0x1814  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
15:47:50.0154 0x1814  arc - ok
15:47:50.0162 0x1814  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:47:50.0163 0x1814  arcsas - ok
15:47:50.0268 0x1814  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:47:50.0269 0x1814  aspnet_state - ok
15:47:50.0282 0x1814  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:47:50.0283 0x1814  AsyncMac - ok
15:47:50.0306 0x1814  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
15:47:50.0306 0x1814  atapi - ok
15:47:50.0359 0x1814  [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:47:50.0360 0x1814  AtiHDAudioService - ok
15:47:50.0417 0x1814  atillk64 - ok
15:47:50.0468 0x1814  [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
15:47:50.0469 0x1814  AtiPcie - ok
15:47:50.0514 0x1814  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:47:50.0520 0x1814  AudioEndpointBuilder - ok
15:47:50.0529 0x1814  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:47:50.0533 0x1814  AudioSrv - ok
15:47:50.0572 0x1814  [ 18AAAC7ED383C465E319B5DD07D0A0B6 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
15:47:50.0573 0x1814  avgtp - ok
15:47:50.0738 0x1814  [ F1CA8ED683D6945EFDC4492AB60B1460 ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
15:47:50.0742 0x1814  AVP - ok
15:47:50.0785 0x1814  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:47:50.0787 0x1814  AxInstSV - ok
15:47:50.0833 0x1814  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
15:47:50.0839 0x1814  b06bdrv - ok
15:47:50.0879 0x1814  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:47:50.0883 0x1814  b57nd60a - ok
15:47:50.0922 0x1814  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:47:50.0924 0x1814  BDESVC - ok
15:47:50.0935 0x1814  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:47:50.0936 0x1814  Beep - ok
15:47:50.0981 0x1814  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
15:47:50.0989 0x1814  BFE - ok
15:47:51.0032 0x1814  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
15:47:51.0043 0x1814  BITS - ok
15:47:51.0070 0x1814  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:47:51.0071 0x1814  blbdrive - ok
15:47:51.0096 0x1814  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:47:51.0098 0x1814  bowser - ok
15:47:51.0130 0x1814  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:47:51.0131 0x1814  BrFiltLo - ok
15:47:51.0137 0x1814  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:47:51.0138 0x1814  BrFiltUp - ok
15:47:51.0160 0x1814  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
15:47:51.0163 0x1814  Browser - ok
15:47:51.0171 0x1814  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:47:51.0175 0x1814  Brserid - ok
15:47:51.0189 0x1814  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:47:51.0190 0x1814  BrSerWdm - ok
15:47:51.0196 0x1814  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:47:51.0197 0x1814  BrUsbMdm - ok
15:47:51.0203 0x1814  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:47:51.0204 0x1814  BrUsbSer - ok
15:47:51.0251 0x1814  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
15:47:51.0252 0x1814  BthEnum - ok
15:47:51.0280 0x1814  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:47:51.0282 0x1814  BTHMODEM - ok
15:47:51.0303 0x1814  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
15:47:51.0306 0x1814  BthPan - ok
15:47:51.0331 0x1814  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
15:47:51.0338 0x1814  BTHPORT - ok
15:47:51.0372 0x1814  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
15:47:51.0374 0x1814  bthserv - ok
15:47:51.0395 0x1814  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
15:47:51.0397 0x1814  BTHUSB - ok
15:47:51.0423 0x1814  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:47:51.0425 0x1814  cdfs - ok
15:47:51.0468 0x1814  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:47:51.0470 0x1814  cdrom - ok
15:47:51.0511 0x1814  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
15:47:51.0512 0x1814  CertPropSvc - ok
15:47:51.0615 0x1814  [ 213B6EC3DE19E35373A1906397588429 ] CGVPNCliSrvc    C:\Program Files\CyberGhost VPN\CGVPNCliService.exe
15:47:51.0658 0x1814  CGVPNCliSrvc - ok
15:47:51.0671 0x1814  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:47:51.0672 0x1814  circlass - ok
15:47:51.0697 0x1814  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
15:47:51.0700 0x1814  CLFS - ok
15:47:51.0749 0x1814  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:47:51.0752 0x1814  clr_optimization_v2.0.50727_32 - ok
15:47:51.0791 0x1814  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:47:51.0793 0x1814  clr_optimization_v2.0.50727_64 - ok
15:47:51.0881 0x1814  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:47:51.0885 0x1814  clr_optimization_v4.0.30319_32 - ok
15:47:51.0906 0x1814  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:47:51.0909 0x1814  clr_optimization_v4.0.30319_64 - ok
15:47:51.0945 0x1814  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:47:51.0946 0x1814  CmBatt - ok
15:47:51.0976 0x1814  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:47:51.0977 0x1814  cmdide - ok
15:47:52.0007 0x1814  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
15:47:52.0013 0x1814  CNG - ok
15:47:52.0028 0x1814  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:47:52.0030 0x1814  Compbatt - ok
15:47:52.0065 0x1814  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:47:52.0067 0x1814  CompositeBus - ok
15:47:52.0080 0x1814  COMSysApp - ok
15:47:52.0143 0x1814  [ C08063F052308B6F5882482615387F30 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
15:47:52.0144 0x1814  cpuz135 - ok
15:47:52.0149 0x1814  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
15:47:52.0151 0x1814  crcdisk - ok
15:47:52.0189 0x1814  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:47:52.0192 0x1814  CryptSvc - ok
15:47:52.0226 0x1814  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
15:47:52.0232 0x1814  CSC - ok
15:47:52.0264 0x1814  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
15:47:52.0272 0x1814  CscService - ok
15:47:52.0329 0x1814  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:47:52.0337 0x1814  DcomLaunch - ok
15:47:52.0364 0x1814  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
15:47:52.0368 0x1814  defragsvc - ok
15:47:52.0389 0x1814  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:47:52.0391 0x1814  DfsC - ok
15:47:52.0432 0x1814  DfSdkS - ok
15:47:52.0460 0x1814  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:47:52.0463 0x1814  Dhcp - ok
15:47:52.0487 0x1814  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
15:47:52.0488 0x1814  discache - ok
15:47:52.0514 0x1814  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:47:52.0515 0x1814  Disk - ok
15:47:52.0536 0x1814  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:47:52.0538 0x1814  Dnscache - ok
15:47:52.0580 0x1814  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:47:52.0586 0x1814  dot3svc - ok
15:47:52.0634 0x1814  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
15:47:52.0635 0x1814  Dot4 - ok
15:47:52.0653 0x1814  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:47:52.0654 0x1814  Dot4Print - ok
15:47:52.0664 0x1814  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
15:47:52.0665 0x1814  dot4usb - ok
15:47:52.0692 0x1814  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
15:47:52.0693 0x1814  DPS - ok
15:47:52.0712 0x1814  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:47:52.0713 0x1814  drmkaud - ok
15:47:52.0746 0x1814  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:47:52.0751 0x1814  DXGKrnl - ok
15:47:52.0782 0x1814  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
15:47:52.0783 0x1814  EapHost - ok
15:47:52.0844 0x1814  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
15:47:52.0887 0x1814  ebdrv - ok
15:47:52.0917 0x1814  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
15:47:52.0918 0x1814  EFS - ok
15:47:52.0977 0x1814  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:47:52.0990 0x1814  ehRecvr - ok
15:47:53.0019 0x1814  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
15:47:53.0020 0x1814  ehSched - ok
15:47:53.0046 0x1814  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
15:47:53.0050 0x1814  elxstor - ok
15:47:53.0073 0x1814  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:47:53.0074 0x1814  ErrDev - ok
15:47:53.0112 0x1814  [ 84486624268E078255BC7AA47F0960BC ] etdrv           C:\Windows\etdrv.sys
15:47:53.0113 0x1814  etdrv - ok
15:47:53.0137 0x1814  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
15:47:53.0142 0x1814  EventSystem - ok
15:47:53.0159 0x1814  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
15:47:53.0162 0x1814  exfat - ok
15:47:53.0227 0x1814  Fabs - ok
15:47:53.0241 0x1814  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:47:53.0243 0x1814  fastfat - ok
15:47:53.0285 0x1814  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
15:47:53.0292 0x1814  Fax - ok
15:47:53.0314 0x1814  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
15:47:53.0315 0x1814  fdc - ok
15:47:53.0334 0x1814  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
15:47:53.0335 0x1814  fdPHost - ok
15:47:53.0344 0x1814  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:47:53.0346 0x1814  FDResPub - ok
15:47:53.0352 0x1814  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:47:53.0353 0x1814  FileInfo - ok
15:47:53.0357 0x1814  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:47:53.0358 0x1814  Filetrace - ok
15:47:53.0421 0x1814  [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
15:47:53.0464 0x1814  FirebirdServerMAGIXInstance - ok
15:47:53.0488 0x1814  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:47:53.0489 0x1814  flpydisk - ok
15:47:53.0528 0x1814  [ CF145A57AEBA71B82B1C6F103461F6FA ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:47:53.0530 0x1814  FltMgr - ok
15:47:53.0586 0x1814  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
15:47:53.0615 0x1814  FontCache - ok
15:47:53.0680 0x1814  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:47:53.0681 0x1814  FontCache3.0.0.0 - ok
15:47:53.0695 0x1814  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:47:53.0697 0x1814  FsDepends - ok
15:47:53.0726 0x1814  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:47:53.0726 0x1814  Fs_Rec - ok
15:47:53.0779 0x1814  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:47:53.0782 0x1814  fvevol - ok
15:47:53.0794 0x1814  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:47:53.0796 0x1814  gagp30kx - ok
15:47:53.0832 0x1814  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
15:47:53.0834 0x1814  gdrv - ok
15:47:53.0883 0x1814  [ B93252C4C5A3733ECD5522CAF88DE02D ] GigasetGenericUSB_x64 C:\Windows\system32\DRIVERS\GigasetGenericUSB_x64.sys
15:47:53.0885 0x1814  GigasetGenericUSB_x64 - ok
15:47:53.0917 0x1814  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
15:47:53.0926 0x1814  gpsvc - ok
15:47:54.0002 0x1814  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:47:54.0004 0x1814  gupdate - ok
15:47:54.0010 0x1814  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:47:54.0011 0x1814  gupdatem - ok
15:47:54.0055 0x1814  [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64        C:\Windows\GVTDrv64.sys
15:47:54.0057 0x1814  GVTDrv64 - ok
15:47:54.0085 0x1814  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:47:54.0086 0x1814  hcw85cir - ok
15:47:54.0131 0x1814  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:47:54.0136 0x1814  HdAudAddService - ok
15:47:54.0176 0x1814  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:47:54.0178 0x1814  HDAudBus - ok
15:47:54.0184 0x1814  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
15:47:54.0185 0x1814  HidBatt - ok
15:47:54.0197 0x1814  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:47:54.0200 0x1814  HidBth - ok
15:47:54.0205 0x1814  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
15:47:54.0208 0x1814  HidIr - ok
15:47:54.0243 0x1814  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
15:47:54.0244 0x1814  hidserv - ok
15:47:54.0272 0x1814  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:47:54.0272 0x1814  HidUsb - ok
15:47:54.0297 0x1814  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:47:54.0299 0x1814  hkmsvc - ok
15:47:54.0324 0x1814  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:47:54.0326 0x1814  HomeGroupListener - ok
15:47:54.0352 0x1814  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:47:54.0355 0x1814  HomeGroupProvider - ok
15:47:54.0393 0x1814  [ 5DB012836189C25241701B99E72B2745 ] hotcore3        C:\Windows\system32\DRIVERS\hotcore3.sys
15:47:54.0394 0x1814  hotcore3 - ok
15:47:54.0475 0x1814  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
15:47:54.0477 0x1814  hpqcxs08 - ok
15:47:54.0519 0x1814  [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
15:47:54.0521 0x1814  hpqddsvc - ok
15:47:54.0547 0x1814  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:47:54.0548 0x1814  HpSAMD - ok
15:47:54.0625 0x1814  [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
15:47:54.0645 0x1814  HPSLPSVC - ok
15:47:54.0702 0x1814  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:47:54.0709 0x1814  HTTP - ok
15:47:54.0730 0x1814  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:47:54.0731 0x1814  hwpolicy - ok
15:47:54.0758 0x1814  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:47:54.0760 0x1814  i8042prt - ok
15:47:54.0798 0x1814  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:47:54.0802 0x1814  iaStorV - ok
15:47:54.0858 0x1814  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:47:54.0861 0x1814  IDriverT - ok
15:47:54.0901 0x1814  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:47:54.0910 0x1814  idsvc - ok
15:47:54.0936 0x1814  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
15:47:54.0938 0x1814  iirsp - ok
15:47:54.0968 0x1814  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:47:54.0979 0x1814  IKEEXT - ok
15:47:55.0103 0x1814  [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:47:55.0126 0x1814  IntcAzAudAddService - ok
15:47:55.0150 0x1814  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
15:47:55.0151 0x1814  intelide - ok
15:47:55.0177 0x1814  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:47:55.0178 0x1814  intelppm - ok
15:47:55.0217 0x1814  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:47:55.0222 0x1814  IPBusEnum - ok
15:47:55.0238 0x1814  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:47:55.0242 0x1814  IpFilterDriver - ok
15:47:55.0276 0x1814  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:47:55.0281 0x1814  iphlpsvc - ok
15:47:55.0304 0x1814  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:47:55.0305 0x1814  IPMIDRV - ok
15:47:55.0321 0x1814  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:47:55.0323 0x1814  IPNAT - ok
15:47:55.0353 0x1814  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:47:55.0354 0x1814  IRENUM - ok
15:47:55.0374 0x1814  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:47:55.0375 0x1814  isapnp - ok
15:47:55.0389 0x1814  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:47:55.0392 0x1814  iScsiPrt - ok
15:47:55.0417 0x1814  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:47:55.0417 0x1814  kbdclass - ok
15:47:55.0440 0x1814  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:47:55.0441 0x1814  kbdhid - ok
15:47:55.0450 0x1814  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
15:47:55.0451 0x1814  KeyIso - ok
15:47:55.0510 0x1814  [ 8B5219318DF5895ABD230C373F2DF18A ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
15:47:55.0514 0x1814  kl1 - ok
15:47:55.0585 0x1814  [ 8191BB24F61EBCAF84719993C7F7B5C6 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
15:47:55.0594 0x1814  KLIF - ok
15:47:55.0641 0x1814  [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
15:47:55.0641 0x1814  KLIM6 - ok
15:47:55.0658 0x1814  [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
15:47:55.0659 0x1814  klkbdflt - ok
15:47:55.0689 0x1814  [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
15:47:55.0689 0x1814  klmouflt - ok
15:47:55.0698 0x1814  [ FFC0501A1EA742406F1904A0CFE3BFE2 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
15:47:55.0699 0x1814  kltdi - ok
15:47:55.0726 0x1814  [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
15:47:55.0728 0x1814  kneps - ok
15:47:55.0758 0x1814  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:47:55.0759 0x1814  KSecDD - ok
15:47:55.0774 0x1814  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:47:55.0776 0x1814  KSecPkg - ok
15:47:55.0811 0x1814  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:47:55.0812 0x1814  ksthunk - ok
15:47:55.0836 0x1814  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:47:55.0841 0x1814  KtmRm - ok
15:47:55.0878 0x1814  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:47:55.0887 0x1814  LanmanServer - ok
15:47:56.0011 0x1814  [ 7772DFAB22611050B79504E671B06E6E ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
15:47:56.0019 0x1814  LBTServ - ok
15:47:56.0060 0x1814  [ ED7EC050CD6C20E1A93A4DAFB7EFD14D ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
15:47:56.0061 0x1814  LEqdUsb - ok
15:47:56.0084 0x1814  [ 3267BC698E29474A8381E68904EB0390 ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
15:47:56.0085 0x1814  LHidEqd - ok
15:47:56.0095 0x1814  [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
15:47:56.0095 0x1814  LHidFilt - ok
15:47:56.0129 0x1814  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:47:56.0130 0x1814  lltdio - ok
15:47:56.0151 0x1814  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:47:56.0155 0x1814  lltdsvc - ok
15:47:56.0169 0x1814  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:47:56.0171 0x1814  lmhosts - ok
15:47:56.0210 0x1814  [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
15:47:56.0212 0x1814  LMouFilt - ok
15:47:56.0265 0x1814  [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55 ] LPDSVC          C:\Windows\system32\lpdsvc.dll
15:47:56.0268 0x1814  LPDSVC - ok
15:47:56.0292 0x1814  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:47:56.0294 0x1814  LSI_FC - ok
15:47:56.0300 0x1814  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
15:47:56.0302 0x1814  LSI_SAS - ok
15:47:56.0309 0x1814  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:47:56.0310 0x1814  LSI_SAS2 - ok
15:47:56.0316 0x1814  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:47:56.0319 0x1814  LSI_SCSI - ok
15:47:56.0348 0x1814  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
15:47:56.0349 0x1814  luafv - ok
15:47:56.0386 0x1814  [ 29C733E1DE824670DC9315CFC9BDBCD3 ] LUsbFilt        C:\Windows\system32\Drivers\LUsbFilt.Sys
15:47:56.0387 0x1814  LUsbFilt - ok
15:47:56.0406 0x1814  McComponentHostService - ok
15:47:56.0430 0x1814  MCSWASVR - ok
15:47:56.0457 0x1814  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:47:56.0460 0x1814  Mcx2Svc - ok
15:47:56.0464 0x1814  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
15:47:56.0465 0x1814  megasas - ok
15:47:56.0478 0x1814  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:47:56.0481 0x1814  MegaSR - ok
15:47:56.0542 0x1814  [ 6F62B8758B0C164E6D9BA7CACF9476C6 ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
15:47:56.0543 0x1814  MemeoBackgroundService - ok
15:47:56.0570 0x1814  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
15:47:56.0572 0x1814  MMCSS - ok
15:47:56.0580 0x1814  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
15:47:56.0581 0x1814  Modem - ok
15:47:56.0611 0x1814  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:47:56.0611 0x1814  monitor - ok
15:47:56.0640 0x1814  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:47:56.0641 0x1814  mouclass - ok
15:47:56.0645 0x1814  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:47:56.0645 0x1814  mouhid - ok
15:47:56.0672 0x1814  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:47:56.0673 0x1814  mountmgr - ok
15:47:56.0708 0x1814  [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:47:56.0710 0x1814  MozillaMaintenance - ok
15:47:56.0721 0x1814  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:47:56.0723 0x1814  mpio - ok
15:47:56.0727 0x1814  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:47:56.0728 0x1814  mpsdrv - ok
15:47:56.0756 0x1814  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:47:56.0763 0x1814  MpsSvc - ok
15:47:56.0780 0x1814  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:47:56.0782 0x1814  MRxDAV - ok
15:47:56.0812 0x1814  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:47:56.0814 0x1814  mrxsmb - ok
15:47:56.0830 0x1814  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:47:56.0832 0x1814  mrxsmb10 - ok
15:47:56.0848 0x1814  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:47:56.0849 0x1814  mrxsmb20 - ok
15:47:56.0870 0x1814  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:47:56.0870 0x1814  msahci - ok
15:47:56.0904 0x1814  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:47:56.0906 0x1814  msdsm - ok
15:47:56.0925 0x1814  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
15:47:56.0927 0x1814  MSDTC - ok
15:47:56.0946 0x1814  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:47:56.0946 0x1814  Msfs - ok
15:47:56.0955 0x1814  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:47:56.0956 0x1814  mshidkmdf - ok
15:47:56.0965 0x1814  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:47:56.0966 0x1814  msisadrv - ok
15:47:57.0002 0x1814  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:47:57.0005 0x1814  MSiSCSI - ok
15:47:57.0008 0x1814  msiserver - ok
15:47:57.0018 0x1814  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:47:57.0019 0x1814  MSKSSRV - ok
15:47:57.0029 0x1814  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:47:57.0030 0x1814  MSPCLOCK - ok
15:47:57.0033 0x1814  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:47:57.0034 0x1814  MSPQM - ok
15:47:57.0065 0x1814  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:47:57.0068 0x1814  MsRPC - ok
15:47:57.0084 0x1814  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:47:57.0084 0x1814  mssmbios - ok
15:47:57.0099 0x1814  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:47:57.0100 0x1814  MSTEE - ok
15:47:57.0103 0x1814  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:47:57.0104 0x1814  MTConfig - ok
15:47:57.0130 0x1814  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:47:57.0130 0x1814  Mup - ok
15:47:57.0158 0x1814  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
15:47:57.0163 0x1814  napagent - ok
15:47:57.0202 0x1814  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:47:57.0209 0x1814  NativeWifiP - ok
15:47:57.0270 0x1814  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:47:57.0286 0x1814  NDIS - ok
15:47:57.0307 0x1814  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:47:57.0308 0x1814  NdisCap - ok
15:47:57.0325 0x1814  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:47:57.0326 0x1814  NdisTapi - ok
15:47:57.0353 0x1814  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:47:57.0354 0x1814  Ndisuio - ok
15:47:57.0370 0x1814  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:47:57.0371 0x1814  NdisWan - ok
15:47:57.0389 0x1814  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:47:57.0390 0x1814  NDProxy - ok
15:47:57.0407 0x1814  Nero BackItUp Scheduler 3 - ok
15:47:57.0443 0x1814  [ 2C723E42FC8D7B0209492828F921FB50 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:47:57.0444 0x1814  Net Driver HPZ12 - ok
15:47:57.0449 0x1814  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:47:57.0450 0x1814  NetBIOS - ok
15:47:57.0482 0x1814  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:47:57.0484 0x1814  NetBT - ok
15:47:57.0500 0x1814  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
15:47:57.0501 0x1814  Netlogon - ok
15:47:57.0544 0x1814  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
15:47:57.0547 0x1814  Netman - ok
15:47:57.0573 0x1814  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:47:57.0575 0x1814  NetMsmqActivator - ok
15:47:57.0578 0x1814  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:47:57.0579 0x1814  NetPipeActivator - ok
15:47:57.0585 0x1814  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
15:47:57.0589 0x1814  netprofm - ok
15:47:57.0593 0x1814  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:47:57.0594 0x1814  NetTcpActivator - ok
15:47:57.0597 0x1814  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:47:57.0598 0x1814  NetTcpPortSharing - ok
15:47:57.0602 0x1814  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
15:47:57.0603 0x1814  nfrd960 - ok
15:47:57.0634 0x1814  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:47:57.0637 0x1814  NlaSvc - ok
15:47:57.0702 0x1814  [ CB992AE1506985D9167E85883B4C3240 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
15:47:57.0708 0x1814  NMIndexingService - ok
15:47:57.0753 0x1814  [ 1381E95D4E0F94F22DD484B5F8C1D61D ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
15:47:57.0754 0x1814  nmwcd - ok
15:47:57.0794 0x1814  [ 205510CDB7B6084BF31760B5D06F9242 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
15:47:57.0795 0x1814  nmwcdc - ok
15:47:57.0799 0x1814  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:47:57.0799 0x1814  Npfs - ok
15:47:57.0817 0x1814  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
15:47:57.0818 0x1814  nsi - ok
15:47:57.0821 0x1814  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:47:57.0822 0x1814  nsiproxy - ok
15:47:57.0864 0x1814  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:47:57.0875 0x1814  Ntfs - ok
15:47:57.0889 0x1814  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
15:47:57.0890 0x1814  Null - ok
15:47:57.0909 0x1814  [ B01C1E6D7477961D6D1CBDCD44AF3E67 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
15:47:57.0910 0x1814  nusb3hub - ok
15:47:57.0962 0x1814  [ 796BAE22DD827DB8AD7AE7C3F775E92F ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
15:47:57.0967 0x1814  nusb3xhc - ok
15:47:58.0011 0x1814  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:47:58.0013 0x1814  nvraid - ok
15:47:58.0046 0x1814  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:47:58.0048 0x1814  nvstor - ok
15:47:58.0086 0x1814  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:47:58.0088 0x1814  nv_agp - ok
15:47:58.0106 0x1814  ocster_backup - ok
15:47:58.0217 0x1814  [ 5239571EC40C990C6FC4B03685D56777 ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
15:47:58.0233 0x1814  OfficeSvc - ok
15:47:58.0260 0x1814  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:47:58.0261 0x1814  ohci1394 - ok
15:47:58.0292 0x1814  [ 17553AE5699D2BFE46C746B9C059C0C1 ] oodrvled        C:\Windows\system32\DRIVERS\oodrvled.sys
15:47:58.0293 0x1814  oodrvled - ok
15:47:58.0358 0x1814  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:47:58.0360 0x1814  ose - ok
15:47:58.0524 0x1814  [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:47:58.0551 0x1814  osppsvc - ok
15:47:58.0580 0x1814  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:47:58.0584 0x1814  p2pimsvc - ok
15:47:58.0612 0x1814  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:47:58.0617 0x1814  p2psvc - ok
15:47:58.0658 0x1814  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
15:47:58.0659 0x1814  Parport - ok
15:47:58.0681 0x1814  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:47:58.0682 0x1814  partmgr - ok
15:47:58.0697 0x1814  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:47:58.0700 0x1814  PcaSvc - ok
15:47:58.0739 0x1814  [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
15:47:58.0740 0x1814  pccsmcfd - ok
15:47:58.0759 0x1814  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
15:47:58.0764 0x1814  pci - ok
15:47:58.0817 0x1814  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
15:47:58.0818 0x1814  pciide - ok
15:47:58.0842 0x1814  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:47:58.0848 0x1814  pcmcia - ok
15:47:58.0859 0x1814  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:47:58.0861 0x1814  pcw - ok
15:47:58.0890 0x1814  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:47:58.0895 0x1814  PEAUTH - ok
15:47:58.0929 0x1814  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
15:47:58.0940 0x1814  PeerDistSvc - ok
15:47:59.0004 0x1814  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:47:59.0008 0x1814  PerfHost - ok
15:47:59.0072 0x1814  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
15:47:59.0096 0x1814  pla - ok
15:47:59.0125 0x1814  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:47:59.0131 0x1814  PlugPlay - ok
15:47:59.0190 0x1814  [ 171E6D91A20AAC8D02172A64E82CE90B ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:47:59.0194 0x1814  Pml Driver HPZ12 - ok
15:47:59.0217 0x1814  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:47:59.0219 0x1814  PNRPAutoReg - ok
15:47:59.0230 0x1814  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:47:59.0233 0x1814  PNRPsvc - ok
15:47:59.0256 0x1814  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:47:59.0262 0x1814  PolicyAgent - ok
15:47:59.0280 0x1814  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
15:47:59.0284 0x1814  Power - ok
15:47:59.0322 0x1814  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:47:59.0323 0x1814  PptpMiniport - ok
15:47:59.0348 0x1814  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
15:47:59.0351 0x1814  Processor - ok
15:47:59.0385 0x1814  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:47:59.0390 0x1814  ProfSvc - ok
15:47:59.0399 0x1814  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:47:59.0402 0x1814  ProtectedStorage - ok
15:47:59.0425 0x1814  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:47:59.0427 0x1814  Psched - ok
15:47:59.0458 0x1814  [ 07D57B890DD5693A6AB660CBAE8F91B4 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
15:47:59.0459 0x1814  PxHlpa64 - ok
15:47:59.0511 0x1814  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:47:59.0539 0x1814  ql2300 - ok
15:47:59.0576 0x1814  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:47:59.0577 0x1814  ql40xx - ok
15:47:59.0596 0x1814  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
15:47:59.0599 0x1814  QWAVE - ok
15:47:59.0603 0x1814  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:47:59.0603 0x1814  QWAVEdrv - ok
15:47:59.0670 0x1814  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
15:47:59.0675 0x1814  RapiMgr - ok
15:47:59.0699 0x1814  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:47:59.0700 0x1814  RasAcd - ok
15:47:59.0734 0x1814  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:47:59.0735 0x1814  RasAgileVpn - ok
15:47:59.0752 0x1814  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
15:47:59.0756 0x1814  RasAuto - ok
15:47:59.0774 0x1814  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:47:59.0777 0x1814  Rasl2tp - ok
15:47:59.0798 0x1814  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
15:47:59.0804 0x1814  RasMan - ok
15:47:59.0832 0x1814  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:47:59.0834 0x1814  RasPppoe - ok
15:47:59.0864 0x1814  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:47:59.0866 0x1814  RasSstp - ok
15:47:59.0874 0x1814  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:47:59.0877 0x1814  rdbss - ok
15:47:59.0909 0x1814  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:47:59.0910 0x1814  rdpbus - ok
15:47:59.0918 0x1814  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:47:59.0919 0x1814  RDPCDD - ok
15:47:59.0945 0x1814  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:47:59.0948 0x1814  RDPDR - ok
15:47:59.0967 0x1814  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:47:59.0968 0x1814  RDPENCDD - ok
15:47:59.0977 0x1814  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:47:59.0977 0x1814  RDPREFMP - ok
15:48:00.0031 0x1814  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:48:00.0032 0x1814  RdpVideoMiniport - ok
15:48:00.0055 0x1814  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:48:00.0058 0x1814  RDPWD - ok
15:48:00.0098 0x1814  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:48:00.0102 0x1814  rdyboost - ok
15:48:00.0127 0x1814  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:48:00.0130 0x1814  RemoteAccess - ok
15:48:00.0148 0x1814  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:48:00.0152 0x1814  RemoteRegistry - ok
15:48:00.0187 0x1814  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
15:48:00.0190 0x1814  RFCOMM - ok
15:48:00.0219 0x1814  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:48:00.0223 0x1814  RpcEptMapper - ok
15:48:00.0244 0x1814  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
15:48:00.0246 0x1814  RpcLocator - ok
15:48:00.0278 0x1814  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
15:48:00.0284 0x1814  RpcSs - ok
15:48:00.0323 0x1814  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:48:00.0325 0x1814  rspndr - ok
15:48:00.0351 0x1814  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
15:48:00.0354 0x1814  RSUSBSTOR - ok
15:48:00.0391 0x1814  [ C435AC77704EB16E85C9D630F4D4B4F7 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
15:48:00.0393 0x1814  RTHDMIAzAudService - ok
15:48:00.0444 0x1814  [ BD9BA262CF26EFE9A9867EBE32D12164 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:48:00.0455 0x1814  RTL8167 - ok
15:48:00.0495 0x1814  [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60        C:\Windows\system32\DRIVERS\RtNdPt60.sys
15:48:00.0497 0x1814  RtNdPt60 - ok
15:48:00.0532 0x1814  [ 3183388DA27655085960A22B4B29CAA9 ] RTTEAMPT        C:\Windows\system32\DRIVERS\RtTeam60.sys
15:48:00.0534 0x1814  RTTEAMPT - ok
15:48:00.0548 0x1814  [ 8B6B42D782202363A562F82B0E13B1C0 ] RTVLANPT        C:\Windows\system32\DRIVERS\RtVlan60.sys
15:48:00.0549 0x1814  RTVLANPT - ok
15:48:00.0572 0x1814  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
15:48:00.0573 0x1814  s3cap - ok
15:48:00.0582 0x1814  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
15:48:00.0584 0x1814  SamSs - ok
15:48:00.0612 0x1814  SANDRA - ok
15:48:00.0623 0x1814  SandraAgentSrv - ok
15:48:00.0655 0x1814  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:48:00.0657 0x1814  sbp2port - ok
15:48:00.0679 0x1814  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:48:00.0682 0x1814  SCardSvr - ok
15:48:00.0708 0x1814  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:48:00.0709 0x1814  scfilter - ok
15:48:00.0742 0x1814  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
15:48:00.0751 0x1814  Schedule - ok
15:48:00.0775 0x1814  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:48:00.0776 0x1814  SCPolicySvc - ok
15:48:00.0800 0x1814  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:48:00.0803 0x1814  SDRSVC - ok
15:48:00.0834 0x1814  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:48:00.0835 0x1814  secdrv - ok
15:48:00.0848 0x1814  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
15:48:00.0849 0x1814  seclogon - ok
15:48:00.0873 0x1814  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
15:48:00.0875 0x1814  SENS - ok
15:48:00.0882 0x1814  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:48:00.0883 0x1814  SensrSvc - ok
15:48:00.0929 0x1814  [ 2437720D4480523562360B2B6B5864A7 ] Ser2pl          C:\Windows\system32\DRIVERS\ser2pl64.sys
15:48:00.0934 0x1814  Ser2pl - ok
15:48:00.0957 0x1814  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:48:00.0958 0x1814  Serenum - ok
15:48:00.0973 0x1814  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:48:00.0975 0x1814  Serial - ok
15:48:00.0995 0x1814  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:48:00.0996 0x1814  sermouse - ok
15:48:01.0077 0x1814  [ 78F7BB9F4924BE164294C59B8C3FC096 ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
15:48:01.0090 0x1814  ServiceLayer - ok
15:48:01.0145 0x1814  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:48:01.0148 0x1814  SessionEnv - ok
15:48:01.0169 0x1814  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:48:01.0170 0x1814  sffdisk - ok
15:48:01.0186 0x1814  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:48:01.0187 0x1814  sffp_mmc - ok
15:48:01.0197 0x1814  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:48:01.0198 0x1814  sffp_sd - ok
15:48:01.0226 0x1814  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
15:48:01.0227 0x1814  sfloppy - ok
15:48:01.0249 0x1814  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:48:01.0254 0x1814  SharedAccess - ok
15:48:01.0280 0x1814  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:48:01.0285 0x1814  ShellHWDetection - ok
15:48:01.0297 0x1814  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:48:01.0299 0x1814  SiSRaid2 - ok
15:48:01.0307 0x1814  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:48:01.0308 0x1814  SiSRaid4 - ok
15:48:01.0322 0x1814  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:48:01.0324 0x1814  Smb - ok
15:48:01.0370 0x1814  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:48:01.0376 0x1814  SNMPTRAP - ok
15:48:01.0390 0x1814  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:48:01.0392 0x1814  spldr - ok
15:48:01.0426 0x1814  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
15:48:01.0431 0x1814  Spooler - ok
15:48:01.0520 0x1814  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
15:48:01.0576 0x1814  sppsvc - ok
15:48:01.0592 0x1814  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:48:01.0594 0x1814  sppuinotify - ok
15:48:01.0648 0x1814  [ D6AB7C13FCDD2E4CAC35244D2C172D9A ] sptd            C:\Windows\System32\Drivers\sptd.sys
15:48:01.0652 0x1814  sptd - ok
15:48:01.0680 0x1814  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:48:01.0684 0x1814  srv - ok
15:48:01.0696 0x1814  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:48:01.0699 0x1814  srv2 - ok
15:48:01.0708 0x1814  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:48:01.0710 0x1814  srvnet - ok
15:48:01.0750 0x1814  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:48:01.0753 0x1814  SSDPSRV - ok
15:48:01.0761 0x1814  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:48:01.0764 0x1814  SstpSvc - ok
15:48:01.0791 0x1814  StarWindServiceAE - ok
15:48:01.0815 0x1814  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:48:01.0816 0x1814  stexstor - ok
15:48:01.0863 0x1814  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
15:48:01.0869 0x1814  stisvc - ok
15:48:01.0895 0x1814  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
15:48:01.0896 0x1814  storflt - ok
15:48:01.0918 0x1814  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
15:48:01.0920 0x1814  StorSvc - ok
15:48:01.0929 0x1814  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:48:01.0930 0x1814  storvsc - ok
15:48:01.0935 0x1814  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:48:01.0936 0x1814  swenum - ok
15:48:01.0962 0x1814  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
15:48:01.0967 0x1814  swprv - ok
15:48:02.0005 0x1814  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
15:48:02.0033 0x1814  SysMain - ok
15:48:02.0081 0x1814  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:48:02.0083 0x1814  TabletInputService - ok
15:48:02.0107 0x1814  [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
15:48:02.0108 0x1814  tap0901 - ok
15:48:02.0134 0x1814  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:48:02.0138 0x1814  TapiSrv - ok
15:48:02.0155 0x1814  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
15:48:02.0157 0x1814  TBS - ok
15:48:02.0198 0x1814  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:48:02.0226 0x1814  Tcpip - ok
15:48:02.0260 0x1814  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:48:02.0269 0x1814  TCPIP6 - ok
15:48:02.0299 0x1814  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:48:02.0300 0x1814  tcpipreg - ok
15:48:02.0320 0x1814  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:48:02.0321 0x1814  TDPIPE - ok
15:48:02.0336 0x1814  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:48:02.0337 0x1814  TDTCP - ok
15:48:02.0376 0x1814  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:48:02.0378 0x1814  tdx - ok
15:48:02.0407 0x1814  [ 3183388DA27655085960A22B4B29CAA9 ] TEAM            C:\Windows\system32\DRIVERS\RtTeam60.sys
15:48:02.0409 0x1814  TEAM - ok
15:48:02.0440 0x1814  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:48:02.0443 0x1814  TermDD - ok
15:48:02.0482 0x1814  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
15:48:02.0500 0x1814  TermService - ok
15:48:02.0537 0x1814  [ 48D9D00C2E0E72C3D4F52772C80355F6 ] TFsExDisk       C:\Windows\System32\Drivers\TFsExDisk.sys
15:48:02.0538 0x1814  TFsExDisk - ok
15:48:02.0555 0x1814  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
15:48:02.0557 0x1814  Themes - ok
15:48:02.0578 0x1814  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
15:48:02.0579 0x1814  THREADORDER - ok
15:48:02.0596 0x1814  TomTomHOMEService - ok
15:48:02.0605 0x1814  TPkd - ok
15:48:02.0635 0x1814  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
15:48:02.0638 0x1814  TrkWks - ok
15:48:02.0672 0x1814  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:48:02.0674 0x1814  TrustedInstaller - ok
15:48:02.0700 0x1814  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:48:02.0701 0x1814  tssecsrv - ok
15:48:02.0722 0x1814  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:48:02.0723 0x1814  TsUsbFlt - ok
15:48:02.0757 0x1814  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:48:02.0758 0x1814  tunnel - ok
15:48:02.0785 0x1814  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:48:02.0786 0x1814  uagp35 - ok
15:48:02.0800 0x1814  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:48:02.0803 0x1814  udfs - ok
15:48:02.0824 0x1814  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:48:02.0826 0x1814  UI0Detect - ok
15:48:02.0860 0x1814  [ 34859D3801F4BD3DACFA131DD928455A ] UimBus          C:\Windows\system32\DRIVERS\uimx64.sys
15:48:02.0860 0x1814  UimBus - ok
15:48:02.0875 0x1814  [ D3CE4776E7FFB25E6935B1C797F4650C ] Uim_IM          C:\Windows\system32\Drivers\Uim_IMx64.sys
15:48:02.0878 0x1814  Uim_IM - ok
15:48:02.0894 0x1814  [ 532E4BED5C7803B2EE5681818B2528B7 ] Uim_VIM         C:\Windows\system32\Drivers\uim_vimx64.sys
15:48:02.0896 0x1814  Uim_VIM - ok
15:48:02.0923 0x1814  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:48:02.0924 0x1814  uliagpkx - ok
15:48:02.0962 0x1814  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:48:02.0964 0x1814  umbus - ok
15:48:03.0001 0x1814  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:48:03.0002 0x1814  UmPass - ok
15:48:03.0018 0x1814  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
15:48:03.0022 0x1814  UmRdpService - ok
15:48:03.0033 0x1814  Update-Service - ok
15:48:03.0072 0x1814  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
15:48:03.0077 0x1814  upnphost - ok
15:48:03.0124 0x1814  [ 311C90F0767A63000AC35DD0A7078A30 ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
15:48:03.0125 0x1814  upperdev - ok
15:48:03.0153 0x1814  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:48:03.0154 0x1814  usbccgp - ok
15:48:03.0185 0x1814  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:48:03.0187 0x1814  usbcir - ok
15:48:03.0199 0x1814  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:48:03.0200 0x1814  usbehci - ok
15:48:03.0240 0x1814  [ 5AE9C87A1ED4B243942B3FDDD902134B ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
15:48:03.0241 0x1814  usbfilter - ok
15:48:03.0277 0x1814  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:48:03.0284 0x1814  usbhub - ok
15:48:03.0297 0x1814  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
15:48:03.0298 0x1814  usbohci - ok
15:48:03.0343 0x1814  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:48:03.0344 0x1814  usbprint - ok
15:48:03.0380 0x1814  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
15:48:03.0381 0x1814  usbscan - ok
15:48:03.0435 0x1814  [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser          C:\Windows\system32\drivers\usbser.sys
15:48:03.0436 0x1814  usbser - ok
15:48:03.0472 0x1814  [ C03DA998E412D69D18DD11D835229AF0 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
15:48:03.0473 0x1814  UsbserFilt - ok
15:48:03.0499 0x1814  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:48:03.0501 0x1814  USBSTOR - ok
15:48:03.0519 0x1814  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
15:48:03.0521 0x1814  usbuhci - ok
15:48:03.0564 0x1814  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
15:48:03.0565 0x1814  usb_rndisx - ok
15:48:03.0591 0x1814  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
15:48:03.0593 0x1814  UxSms - ok
15:48:03.0608 0x1814  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:48:03.0609 0x1814  VaultSvc - ok
15:48:03.0647 0x1814  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:48:03.0647 0x1814  vdrvroot - ok
15:48:03.0682 0x1814  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
15:48:03.0687 0x1814  vds - ok
15:48:03.0691 0x1814  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:48:03.0692 0x1814  vga - ok
15:48:03.0703 0x1814  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:48:03.0704 0x1814  VgaSave - ok
15:48:03.0727 0x1814  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:48:03.0729 0x1814  vhdmp - ok
15:48:03.0745 0x1814  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:48:03.0746 0x1814  viaide - ok
15:48:03.0763 0x1814  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:48:03.0765 0x1814  vmbus - ok
15:48:03.0777 0x1814  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
15:48:03.0778 0x1814  VMBusHID - ok
15:48:03.0788 0x1814  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:48:03.0789 0x1814  volmgr - ok
15:48:03.0812 0x1814  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:48:03.0815 0x1814  volmgrx - ok
15:48:03.0845 0x1814  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:48:03.0847 0x1814  volsnap - ok
15:48:03.0873 0x1814  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
15:48:03.0875 0x1814  vsmraid - ok
15:48:03.0918 0x1814  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
15:48:03.0938 0x1814  VSS - ok
15:48:04.0085 0x1814  [ 8754BA5FCC85325C229ADCB72087706E ] vToolbarUpdater15.4.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe
15:48:04.0116 0x1814  vToolbarUpdater15.4.0 - ok
15:48:04.0131 0x1814  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:48:04.0132 0x1814  vwifibus - ok
15:48:04.0150 0x1814  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
15:48:04.0155 0x1814  W32Time - ok
15:48:04.0177 0x1814  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:48:04.0178 0x1814  WacomPen - ok
15:48:04.0211 0x1814  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:48:04.0213 0x1814  WANARP - ok
15:48:04.0226 0x1814  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:48:04.0227 0x1814  Wanarpv6 - ok
15:48:04.0292 0x1814  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:48:04.0303 0x1814  WatAdminSvc - ok
15:48:04.0346 0x1814  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
15:48:04.0369 0x1814  wbengine - ok
15:48:04.0394 0x1814  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:48:04.0397 0x1814  WbioSrvc - ok
15:48:04.0435 0x1814  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
15:48:04.0439 0x1814  WcesComm - ok
15:48:04.0468 0x1814  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:48:04.0473 0x1814  wcncsvc - ok
15:48:04.0480 0x1814  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:48:04.0483 0x1814  WcsPlugInService - ok
15:48:04.0506 0x1814  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:48:04.0507 0x1814  Wd - ok
15:48:04.0540 0x1814  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:48:04.0547 0x1814  Wdf01000 - ok
15:48:04.0565 0x1814  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:48:04.0568 0x1814  WdiServiceHost - ok
15:48:04.0571 0x1814  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:48:04.0574 0x1814  WdiSystemHost - ok
15:48:04.0598 0x1814  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
15:48:04.0603 0x1814  WebClient - ok
15:48:04.0621 0x1814  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:48:04.0625 0x1814  Wecsvc - ok
15:48:04.0630 0x1814  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:48:04.0633 0x1814  wercplsupport - ok
15:48:04.0661 0x1814  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:48:04.0664 0x1814  WerSvc - ok
15:48:04.0695 0x1814  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:48:04.0696 0x1814  WfpLwf - ok
15:48:04.0709 0x1814  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:48:04.0711 0x1814  WIMMount - ok
15:48:04.0731 0x1814  WinDefend - ok
15:48:04.0753 0x1814  WinHttpAutoProxySvc - ok
15:48:04.0806 0x1814  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:48:04.0808 0x1814  Winmgmt - ok
15:48:04.0857 0x1814  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
15:48:04.0885 0x1814  WinRM - ok
15:48:04.0944 0x1814  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:48:04.0946 0x1814  WinUsb - ok
15:48:04.0976 0x1814  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:48:04.0985 0x1814  Wlansvc - ok
15:48:05.0001 0x1814  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:48:05.0002 0x1814  WmiAcpi - ok
15:48:05.0038 0x1814  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:48:05.0040 0x1814  wmiApSrv - ok
15:48:05.0076 0x1814  WMPNetworkSvc - ok
15:48:05.0087 0x1814  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:48:05.0090 0x1814  WPCSvc - ok
15:48:05.0118 0x1814  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:48:05.0121 0x1814  WPDBusEnum - ok
15:48:05.0140 0x1814  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:48:05.0141 0x1814  ws2ifsl - ok
15:48:05.0149 0x1814  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
15:48:05.0152 0x1814  wscsvc - ok
15:48:05.0155 0x1814  WSearch - ok
15:48:05.0231 0x1814  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:48:05.0280 0x1814  wuauserv - ok
15:48:05.0302 0x1814  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:48:05.0303 0x1814  WudfPf - ok
15:48:05.0326 0x1814  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:48:05.0328 0x1814  WUDFRd - ok
15:48:05.0351 0x1814  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:48:05.0354 0x1814  wudfsvc - ok
15:48:05.0380 0x1814  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:48:05.0384 0x1814  WwanSvc - ok
15:48:05.0411 0x1814  ================ Scan global ===============================
15:48:05.0433 0x1814  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:48:05.0456 0x1814  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:48:05.0463 0x1814  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:48:05.0482 0x1814  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:48:05.0516 0x1814  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:48:05.0520 0x1814  [Global] - ok
15:48:05.0520 0x1814  ================ Scan MBR ==================================
15:48:05.0525 0x1814  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:48:05.0756 0x1814  \Device\Harddisk0\DR0 - ok
15:48:05.0783 0x1814  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
15:48:05.0791 0x1814  \Device\Harddisk1\DR1 - ok
15:48:05.0795 0x1814  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
15:48:05.0802 0x1814  \Device\Harddisk2\DR2 - ok
15:48:05.0808 0x1814  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4
15:48:05.0840 0x1814  \Device\Harddisk4\DR4 - ok
15:48:05.0841 0x1814  ================ Scan VBR ==================================
15:48:05.0844 0x1814  [ 6F69E5D8684287108C89046EBFCDDCFB ] \Device\Harddisk0\DR0\Partition1
15:48:05.0846 0x1814  \Device\Harddisk0\DR0\Partition1 - ok
15:48:05.0850 0x1814  [ 6905A7941A427EBBF4462515BF494A81 ] \Device\Harddisk1\DR1\Partition1
15:48:05.0852 0x1814  \Device\Harddisk1\DR1\Partition1 - ok
15:48:05.0858 0x1814  [ D59DC1BC55FFC27F7ECA062B5AD6F2E5 ] \Device\Harddisk2\DR2\Partition1
15:48:05.0860 0x1814  \Device\Harddisk2\DR2\Partition1 - ok
15:48:05.0865 0x1814  [ 287E60CEA469BCE4FCC533189F1C84A0 ] \Device\Harddisk4\DR4\Partition1
15:48:05.0866 0x1814  \Device\Harddisk4\DR4\Partition1 - ok
15:48:05.0867 0x1814  ============================================================
15:48:05.0867 0x1814  Scan finished
15:48:05.0867 0x1814  ============================================================
15:48:05.0876 0x1bac  Detected object count: 0
15:48:05.0876 0x1bac  Actual detected object count: 0
15:48:41.0199 0x18a0  ============================================================
15:48:41.0199 0x18a0  Scan started
15:48:41.0199 0x18a0  Mode: Manual; SigCheck; TDLFS; 
15:48:41.0199 0x18a0  ============================================================
15:48:41.0653 0x18a0  ================ Scan system memory ========================
15:48:41.0653 0x18a0  System memory - ok
15:48:41.0654 0x18a0  ================ Scan services =============================
15:48:41.0810 0x18a0  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
15:48:41.0920 0x18a0  1394ohci - ok
15:48:41.0935 0x18a0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:48:41.0946 0x18a0  ACPI - ok
15:48:41.0958 0x18a0  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:48:42.0005 0x18a0  AcpiPmi - ok
15:48:42.0050 0x18a0  [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
15:48:42.0075 0x18a0  Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
15:48:42.0075 0x18a0  Adobe LM Service - detected UnsignedFile.Multi.Generic (1)
15:48:42.0079 0x18a0  AdobeActiveFileMonitor11.0 - ok
15:48:42.0112 0x18a0  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
15:48:42.0127 0x18a0  adp94xx - ok
15:48:42.0137 0x18a0  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
15:48:42.0148 0x18a0  adpahci - ok
15:48:42.0152 0x18a0  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
15:48:42.0162 0x18a0  adpu320 - ok
15:48:42.0186 0x18a0  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:48:42.0227 0x18a0  AeLookupSvc - ok
15:48:42.0266 0x18a0  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
15:48:42.0305 0x18a0  AFD - ok
15:48:42.0321 0x18a0  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:48:42.0329 0x18a0  agp440 - ok
15:48:42.0339 0x18a0  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
15:48:42.0368 0x18a0  ALG - ok
15:48:42.0383 0x18a0  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:48:42.0391 0x18a0  aliide - ok
15:48:42.0417 0x18a0  [ 20C8A3E435A47F0408A1EA674AFA6194 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:48:42.0463 0x18a0  AMD External Events Utility - ok
15:48:42.0499 0x18a0  AMD FUEL Service - ok
15:48:42.0517 0x18a0  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
15:48:42.0535 0x18a0  amdide - ok
15:48:42.0558 0x18a0  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
15:48:42.0590 0x18a0  amdiox64 - ok
15:48:42.0621 0x18a0  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
15:48:42.0671 0x18a0  AmdK8 - ok
15:48:42.0854 0x18a0  [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:48:43.0015 0x18a0  amdkmdag - ok
15:48:43.0039 0x18a0  [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
15:48:43.0068 0x18a0  amdkmdap - ok
15:48:43.0088 0x18a0  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:48:43.0114 0x18a0  AmdPPM - ok
15:48:43.0134 0x18a0  [ 53D8D46D51D390ABDB54ECA623165CB7 ] amdsata         C:\Windows\system32\DRIVERS\amdsata.sys
15:48:43.0143 0x18a0  amdsata - ok
15:48:43.0154 0x18a0  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:48:43.0164 0x18a0  amdsbs - ok
15:48:43.0175 0x18a0  [ 75C51148154E34EB3D7BB84749A758D5 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:48:43.0185 0x18a0  amdxata - ok
15:48:43.0206 0x18a0  [ EE4797DFEBBE8ACDB548DD8E80BE0A88 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
15:48:43.0215 0x18a0  amd_sata - ok
15:48:43.0227 0x18a0  [ D56EAD71A86FD2ACAE2DB47D0A6A3A41 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
15:48:43.0236 0x18a0  amd_xata - ok
15:48:43.0269 0x18a0  AODDriver4.01 - ok
15:48:43.0294 0x18a0  [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1    C:\ATI\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:48:43.0302 0x18a0  AODDriver4.1 - ok
15:48:43.0333 0x18a0  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
15:48:43.0370 0x18a0  AppID - ok
15:48:43.0393 0x18a0  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:48:43.0440 0x18a0  AppIDSvc - ok
15:48:43.0466 0x18a0  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
15:48:43.0511 0x18a0  Appinfo - ok
15:48:43.0532 0x18a0  [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
15:48:43.0541 0x18a0  AppleCharger - ok
15:48:43.0552 0x18a0  [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
15:48:43.0561 0x18a0  AppleChargerSrv - ok
15:48:43.0584 0x18a0  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
15:48:43.0620 0x18a0  AppMgmt - ok
15:48:43.0638 0x18a0  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
15:48:43.0647 0x18a0  arc - ok
15:48:43.0651 0x18a0  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:48:43.0659 0x18a0  arcsas - ok
15:48:43.0746 0x18a0  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:48:43.0762 0x18a0  aspnet_state - ok
15:48:43.0768 0x18a0  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:48:43.0828 0x18a0  AsyncMac - ok
15:48:43.0866 0x18a0  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
15:48:43.0874 0x18a0  atapi - ok
15:48:43.0903 0x18a0  [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:48:43.0912 0x18a0  AtiHDAudioService - ok
15:48:43.0936 0x18a0  atillk64 - ok
15:48:43.0953 0x18a0  [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
15:48:43.0962 0x18a0  AtiPcie - ok
15:48:43.0991 0x18a0  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:48:44.0039 0x18a0  AudioEndpointBuilder - ok
15:48:44.0046 0x18a0  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:48:44.0078 0x18a0  AudioSrv - ok
15:48:44.0100 0x18a0  [ 18AAAC7ED383C465E319B5DD07D0A0B6 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
15:48:44.0111 0x18a0  avgtp - ok
15:48:44.0231 0x18a0  [ F1CA8ED683D6945EFDC4492AB60B1460 ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
15:48:44.0252 0x18a0  AVP - ok
15:48:44.0279 0x18a0  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:48:44.0330 0x18a0  AxInstSV - ok
15:48:44.0358 0x18a0  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
15:48:44.0376 0x18a0  b06bdrv - ok
15:48:44.0397 0x18a0  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:48:44.0427 0x18a0  b57nd60a - ok
15:48:44.0449 0x18a0  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:48:44.0481 0x18a0  BDESVC - ok
15:48:44.0487 0x18a0  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:48:44.0525 0x18a0  Beep - ok
15:48:44.0556 0x18a0  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
15:48:44.0588 0x18a0  BFE - ok
15:48:44.0623 0x18a0  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
15:48:44.0667 0x18a0  BITS - ok
15:48:44.0681 0x18a0  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:48:44.0707 0x18a0  blbdrive - ok
15:48:44.0731 0x18a0  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:48:44.0764 0x18a0  bowser - ok
15:48:44.0799 0x18a0  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:48:44.0879 0x18a0  BrFiltLo - ok
15:48:44.0888 0x18a0  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:48:44.0911 0x18a0  BrFiltUp - ok
15:48:44.0938 0x18a0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
15:48:44.0965 0x18a0  Browser - ok
15:48:44.0982 0x18a0  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:48:45.0026 0x18a0  Brserid - ok
15:48:45.0033 0x18a0  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:48:45.0057 0x18a0  BrSerWdm - ok
15:48:45.0061 0x18a0  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:48:45.0094 0x18a0  BrUsbMdm - ok
15:48:45.0098 0x18a0  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:48:45.0108 0x18a0  BrUsbSer - ok
15:48:45.0136 0x18a0  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
15:48:45.0190 0x18a0  BthEnum - ok
15:48:45.0199 0x18a0  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:48:45.0224 0x18a0  BTHMODEM - ok
15:48:45.0247 0x18a0  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
15:48:45.0271 0x18a0  BthPan - ok
15:48:45.0299 0x18a0  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
15:48:45.0345 0x18a0  BTHPORT - ok
15:48:45.0366 0x18a0  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
15:48:45.0402 0x18a0  bthserv - ok
15:48:45.0422 0x18a0  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
15:48:45.0439 0x18a0  BTHUSB - ok
15:48:45.0458 0x18a0  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:48:45.0498 0x18a0  cdfs - ok
15:48:45.0528 0x18a0  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:48:45.0538 0x18a0  cdrom - ok
15:48:45.0562 0x18a0  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
15:48:45.0604 0x18a0  CertPropSvc - ok
15:48:45.0664 0x18a0  [ 213B6EC3DE19E35373A1906397588429 ] CGVPNCliSrvc    C:\Program Files\CyberGhost VPN\CGVPNCliService.exe
15:48:45.0692 0x18a0  CGVPNCliSrvc - ok
15:48:45.0706 0x18a0  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:48:45.0730 0x18a0  circlass - ok
15:48:45.0758 0x18a0  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
15:48:45.0769 0x18a0  CLFS - ok
15:48:45.0817 0x18a0  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:48:45.0826 0x18a0  clr_optimization_v2.0.50727_32 - ok
15:48:45.0868 0x18a0  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:48:45.0877 0x18a0  clr_optimization_v2.0.50727_64 - ok
15:48:45.0933 0x18a0  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:48:45.0964 0x18a0  clr_optimization_v4.0.30319_32 - ok
15:48:45.0982 0x18a0  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:48:45.0999 0x18a0  clr_optimization_v4.0.30319_64 - ok
15:48:46.0030 0x18a0  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:48:46.0052 0x18a0  CmBatt - ok
15:48:46.0069 0x18a0  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:48:46.0080 0x18a0  cmdide - ok
15:48:46.0109 0x18a0  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
15:48:46.0130 0x18a0  CNG - ok
15:48:46.0139 0x18a0  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:48:46.0147 0x18a0  Compbatt - ok
15:48:46.0168 0x18a0  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:48:46.0190 0x18a0  CompositeBus - ok
15:48:46.0194 0x18a0  COMSysApp - ok
15:48:46.0220 0x18a0  [ C08063F052308B6F5882482615387F30 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
15:48:46.0229 0x18a0  cpuz135 - ok
15:48:46.0240 0x18a0  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
15:48:46.0248 0x18a0  crcdisk - ok
15:48:46.0265 0x18a0  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:48:46.0300 0x18a0  CryptSvc - ok
15:48:46.0327 0x18a0  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
15:48:46.0382 0x18a0  CSC - ok
15:48:46.0417 0x18a0  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
15:48:46.0455 0x18a0  CscService - ok
15:48:46.0488 0x18a0  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:48:46.0531 0x18a0  DcomLaunch - ok
15:48:46.0566 0x18a0  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
15:48:46.0611 0x18a0  defragsvc - ok
15:48:46.0633 0x18a0  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:48:46.0672 0x18a0  DfsC - ok
15:48:46.0674 0x18a0  DfSdkS - ok
15:48:46.0705 0x18a0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:48:46.0737 0x18a0  Dhcp - ok
15:48:46.0756 0x18a0  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
15:48:46.0783 0x18a0  discache - ok
15:48:46.0799 0x18a0  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:48:46.0808 0x18a0  Disk - ok
15:48:46.0830 0x18a0  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:48:46.0865 0x18a0  Dnscache - ok
15:48:46.0888 0x18a0  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:48:46.0930 0x18a0  dot3svc - ok
15:48:46.0953 0x18a0  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
15:48:46.0978 0x18a0  Dot4 - ok
15:48:46.0997 0x18a0  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:48:47.0020 0x18a0  Dot4Print - ok
15:48:47.0033 0x18a0  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
15:48:47.0056 0x18a0  dot4usb - ok
15:48:47.0085 0x18a0  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
15:48:47.0122 0x18a0  DPS - ok
15:48:47.0147 0x18a0  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:48:47.0169 0x18a0  drmkaud - ok
15:48:47.0212 0x18a0  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:48:47.0246 0x18a0  DXGKrnl - ok
15:48:47.0276 0x18a0  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
15:48:47.0308 0x18a0  EapHost - ok
15:48:47.0390 0x18a0  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
15:48:47.0440 0x18a0  ebdrv - ok
15:48:47.0461 0x18a0  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
15:48:47.0496 0x18a0  EFS - ok
15:48:47.0546 0x18a0  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:48:47.0614 0x18a0  ehRecvr - ok
15:48:47.0637 0x18a0  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
15:48:47.0682 0x18a0  ehSched - ok
15:48:47.0714 0x18a0  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
15:48:47.0730 0x18a0  elxstor - ok
15:48:47.0758 0x18a0  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:48:47.0785 0x18a0  ErrDev - ok
15:48:47.0815 0x18a0  [ 84486624268E078255BC7AA47F0960BC ] etdrv           C:\Windows\etdrv.sys
15:48:47.0826 0x18a0  etdrv - ok
15:48:47.0856 0x18a0  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
15:48:47.0904 0x18a0  EventSystem - ok
15:48:47.0928 0x18a0  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
15:48:47.0956 0x18a0  exfat - ok
15:48:47.0987 0x18a0  Fabs - ok
15:48:48.0001 0x18a0  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:48:48.0043 0x18a0  fastfat - ok
15:48:48.0085 0x18a0  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
15:48:48.0126 0x18a0  Fax - ok
15:48:48.0132 0x18a0  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
15:48:48.0156 0x18a0  fdc - ok
15:48:48.0178 0x18a0  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
15:48:48.0217 0x18a0  fdPHost - ok
15:48:48.0230 0x18a0  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:48:48.0265 0x18a0  FDResPub - ok
15:48:48.0279 0x18a0  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:48:48.0288 0x18a0  FileInfo - ok
15:48:48.0292 0x18a0  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:48:48.0328 0x18a0  Filetrace - ok
15:48:48.0406 0x18a0  [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
15:48:48.0455 0x18a0  FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
15:48:48.0455 0x18a0  FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
15:48:48.0482 0x18a0  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:48:48.0491 0x18a0  flpydisk - ok
15:48:48.0513 0x18a0  [ CF145A57AEBA71B82B1C6F103461F6FA ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:48:48.0523 0x18a0  FltMgr - ok
15:48:48.0571 0x18a0  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
15:48:48.0628 0x18a0  FontCache - ok
15:48:48.0681 0x18a0  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:48:48.0689 0x18a0  FontCache3.0.0.0 - ok
15:48:48.0696 0x18a0  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:48:48.0705 0x18a0  FsDepends - ok
15:48:48.0728 0x18a0  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:48:48.0736 0x18a0  Fs_Rec - ok
15:48:48.0764 0x18a0  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:48:48.0776 0x18a0  fvevol - ok
15:48:48.0788 0x18a0  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:48:48.0796 0x18a0  gagp30kx - ok
15:48:48.0818 0x18a0  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
15:48:48.0827 0x18a0  gdrv - ok
15:48:48.0852 0x18a0  [ B93252C4C5A3733ECD5522CAF88DE02D ] GigasetGenericUSB_x64 C:\Windows\system32\DRIVERS\GigasetGenericUSB_x64.sys
15:48:48.0865 0x18a0  GigasetGenericUSB_x64 - ok
15:48:48.0892 0x18a0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
15:48:48.0941 0x18a0  gpsvc - ok
15:48:48.0980 0x18a0  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:48:49.0007 0x18a0  gupdate - ok
15:48:49.0010 0x18a0  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:48:49.0019 0x18a0  gupdatem - ok
15:48:49.0041 0x18a0  [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64        C:\Windows\GVTDrv64.sys
15:48:49.0050 0x18a0  GVTDrv64 - ok
15:48:49.0070 0x18a0  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:48:49.0121 0x18a0  hcw85cir - ok
15:48:49.0149 0x18a0  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:48:49.0180 0x18a0  HdAudAddService - ok
15:48:49.0195 0x18a0  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:48:49.0217 0x18a0  HDAudBus - ok
15:48:49.0221 0x18a0  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
15:48:49.0238 0x18a0  HidBatt - ok
15:48:49.0242 0x18a0  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:48:49.0261 0x18a0  HidBth - ok
15:48:49.0277 0x18a0  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
15:48:49.0298 0x18a0  HidIr - ok
15:48:49.0320 0x18a0  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
15:48:49.0362 0x18a0  hidserv - ok
15:48:49.0374 0x18a0  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:48:49.0382 0x18a0  HidUsb - ok
15:48:49.0408 0x18a0  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:48:49.0443 0x18a0  hkmsvc - ok
15:48:49.0467 0x18a0  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:48:49.0501 0x18a0  HomeGroupListener - ok
15:48:49.0530 0x18a0  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:48:49.0561 0x18a0  HomeGroupProvider - ok
15:48:49.0579 0x18a0  [ 5DB012836189C25241701B99E72B2745 ] hotcore3        C:\Windows\system32\DRIVERS\hotcore3.sys
15:48:49.0597 0x18a0  hotcore3 - ok
15:48:49.0671 0x18a0  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
15:48:49.0700 0x18a0  hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
15:48:49.0700 0x18a0  hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
15:48:49.0730 0x18a0  [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
15:48:49.0736 0x18a0  hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
15:48:49.0736 0x18a0  hpqddsvc - detected UnsignedFile.Multi.Generic (1)
15:48:49.0758 0x18a0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:48:49.0769 0x18a0  HpSAMD - ok
15:48:49.0803 0x18a0  [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
15:48:49.0822 0x18a0  HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
15:48:49.0822 0x18a0  HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
15:48:49.0853 0x18a0  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:48:49.0902 0x18a0  HTTP - ok
15:48:49.0924 0x18a0  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:48:49.0932 0x18a0  hwpolicy - ok
15:48:49.0960 0x18a0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:48:49.0970 0x18a0  i8042prt - ok
15:48:49.0991 0x18a0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:48:50.0002 0x18a0  iaStorV - ok
15:48:50.0043 0x18a0  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:48:50.0063 0x18a0  IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:48:50.0063 0x18a0  IDriverT - detected UnsignedFile.Multi.Generic (1)
15:48:50.0100 0x18a0  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:48:50.0114 0x18a0  idsvc - ok
15:48:50.0138 0x18a0  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
15:48:50.0147 0x18a0  iirsp - ok
15:48:50.0176 0x18a0  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:48:50.0225 0x18a0  IKEEXT - ok
15:48:50.0300 0x18a0  [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:48:50.0342 0x18a0  IntcAzAudAddService - ok
15:48:50.0368 0x18a0  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
15:48:50.0377 0x18a0  intelide - ok
15:48:50.0387 0x18a0  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:48:50.0404 0x18a0  intelppm - ok
15:48:50.0435 0x18a0  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:48:50.0462 0x18a0  IPBusEnum - ok
15:48:50.0490 0x18a0  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:48:50.0527 0x18a0  IpFilterDriver - ok
15:48:50.0562 0x18a0  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:48:50.0584 0x18a0  iphlpsvc - ok
15:48:50.0606 0x18a0  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:48:50.0631 0x18a0  IPMIDRV - ok
15:48:50.0635 0x18a0  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:48:50.0671 0x18a0  IPNAT - ok
15:48:50.0688 0x18a0  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:48:50.0738 0x18a0  IRENUM - ok
15:48:50.0751 0x18a0  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:48:50.0759 0x18a0  isapnp - ok
15:48:50.0774 0x18a0  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:48:50.0784 0x18a0  iScsiPrt - ok
15:48:50.0794 0x18a0  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:48:50.0802 0x18a0  kbdclass - ok
15:48:50.0806 0x18a0  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:48:50.0825 0x18a0  kbdhid - ok
15:48:50.0844 0x18a0  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
15:48:50.0853 0x18a0  KeyIso - ok
15:48:50.0879 0x18a0  [ 8B5219318DF5895ABD230C373F2DF18A ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
15:48:50.0892 0x18a0  kl1 - ok
15:48:50.0923 0x18a0  [ 8191BB24F61EBCAF84719993C7F7B5C6 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
15:48:50.0937 0x18a0  KLIF - ok
15:48:50.0951 0x18a0  [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
15:48:50.0961 0x18a0  KLIM6 - ok
15:48:50.0969 0x18a0  [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
15:48:50.0978 0x18a0  klkbdflt - ok
15:48:50.0991 0x18a0  [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
15:48:51.0000 0x18a0  klmouflt - ok
15:48:51.0008 0x18a0  [ FFC0501A1EA742406F1904A0CFE3BFE2 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
15:48:51.0018 0x18a0  kltdi - ok
15:48:51.0037 0x18a0  [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
15:48:51.0047 0x18a0  kneps - ok
15:48:51.0069 0x18a0  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:48:51.0077 0x18a0  KSecDD - ok
15:48:51.0093 0x18a0  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:48:51.0102 0x18a0  KSecPkg - ok
15:48:51.0122 0x18a0  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:48:51.0162 0x18a0  ksthunk - ok
15:48:51.0189 0x18a0  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:48:51.0235 0x18a0  KtmRm - ok
15:48:51.0261 0x18a0  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:48:51.0300 0x18a0  LanmanServer - ok
15:48:51.0378 0x18a0  [ 7772DFAB22611050B79504E671B06E6E ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
15:48:51.0401 0x18a0  LBTServ - ok
15:48:51.0429 0x18a0  [ ED7EC050CD6C20E1A93A4DAFB7EFD14D ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
15:48:51.0439 0x18a0  LEqdUsb - ok
15:48:51.0453 0x18a0  [ 3267BC698E29474A8381E68904EB0390 ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
15:48:51.0462 0x18a0  LHidEqd - ok
15:48:51.0472 0x18a0  [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
15:48:51.0481 0x18a0  LHidFilt - ok
15:48:51.0506 0x18a0  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:48:51.0545 0x18a0  lltdio - ok
15:48:51.0578 0x18a0  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:48:51.0608 0x18a0  lltdsvc - ok
15:48:51.0621 0x18a0  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:48:51.0648 0x18a0  lmhosts - ok
15:48:51.0661 0x18a0  [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
15:48:51.0670 0x18a0  LMouFilt - ok
15:48:51.0692 0x18a0  [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55 ] LPDSVC          C:\Windows\system32\lpdsvc.dll
15:48:51.0737 0x18a0  LPDSVC - ok
15:48:51.0746 0x18a0  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:48:51.0762 0x18a0  LSI_FC - ok
15:48:51.0767 0x18a0  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
15:48:51.0776 0x18a0  LSI_SAS - ok
15:48:51.0780 0x18a0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:48:51.0789 0x18a0  LSI_SAS2 - ok
15:48:51.0793 0x18a0  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:48:51.0802 0x18a0  LSI_SCSI - ok
15:48:51.0811 0x18a0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
15:48:51.0851 0x18a0  luafv - ok
15:48:51.0879 0x18a0  [ 29C733E1DE824670DC9315CFC9BDBCD3 ] LUsbFilt        C:\Windows\system32\Drivers\LUsbFilt.Sys
15:48:51.0889 0x18a0  LUsbFilt - ok
15:48:51.0891 0x18a0  McComponentHostService - ok
15:48:51.0895 0x18a0  MCSWASVR - ok
15:48:51.0918 0x18a0  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:48:51.0937 0x18a0  Mcx2Svc - ok
15:48:51.0941 0x18a0  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
15:48:51.0950 0x18a0  megasas - ok
15:48:51.0954 0x18a0  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:48:51.0965 0x18a0  MegaSR - ok
15:48:52.0003 0x18a0  [ 6F62B8758B0C164E6D9BA7CACF9476C6 ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
15:48:52.0027 0x18a0  MemeoBackgroundService - ok
15:48:52.0048 0x18a0  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
15:48:52.0079 0x18a0  MMCSS - ok
15:48:52.0091 0x18a0  [ 800BA92F7010378B09F9ED9270F07137 ] Modem

Alt 04.09.2013, 18:47   #7
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Das hier gehört noch zum log des vorigen Beitrages!

Code:
ATTFilter
C:\Windows\system32\drivers\modem.sys
15:48:52.0127 0x18a0  Modem - ok
15:48:52.0146 0x18a0  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:48:52.0173 0x18a0  monitor - ok
15:48:52.0184 0x18a0  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:48:52.0192 0x18a0  mouclass - ok
15:48:52.0205 0x18a0  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:48:52.0230 0x18a0  mouhid - ok
15:48:52.0249 0x18a0  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:48:52.0258 0x18a0  mountmgr - ok
15:48:52.0294 0x18a0  [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:48:52.0304 0x18a0  MozillaMaintenance - ok
15:48:52.0315 0x18a0  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:48:52.0325 0x18a0  mpio - ok
15:48:52.0337 0x18a0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:48:52.0364 0x18a0  mpsdrv - ok
15:48:52.0400 0x18a0  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:48:52.0461 0x18a0  MpsSvc - ok
15:48:52.0482 0x18a0  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:48:52.0508 0x18a0  MRxDAV - ok
15:48:52.0539 0x18a0  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:48:52.0571 0x18a0  mrxsmb - ok
15:48:52.0582 0x18a0  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:48:52.0606 0x18a0  mrxsmb10 - ok
15:48:52.0625 0x18a0  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:48:52.0634 0x18a0  mrxsmb20 - ok
15:48:52.0655 0x18a0  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:48:52.0663 0x18a0  msahci - ok
15:48:52.0690 0x18a0  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:48:52.0699 0x18a0  msdsm - ok
15:48:52.0710 0x18a0  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
15:48:52.0731 0x18a0  MSDTC - ok
15:48:52.0756 0x18a0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:48:52.0782 0x18a0  Msfs - ok
15:48:52.0791 0x18a0  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:48:52.0825 0x18a0  mshidkmdf - ok
15:48:52.0842 0x18a0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:48:52.0850 0x18a0  msisadrv - ok
15:48:52.0871 0x18a0  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:48:52.0915 0x18a0  MSiSCSI - ok
15:48:52.0919 0x18a0  msiserver - ok
15:48:52.0936 0x18a0  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:48:52.0978 0x18a0  MSKSSRV - ok
15:48:52.0981 0x18a0  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:48:53.0014 0x18a0  MSPCLOCK - ok
15:48:53.0017 0x18a0  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:48:53.0052 0x18a0  MSPQM - ok
15:48:53.0083 0x18a0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:48:53.0094 0x18a0  MsRPC - ok
15:48:53.0100 0x18a0  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:48:53.0108 0x18a0  mssmbios - ok
15:48:53.0117 0x18a0  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:48:53.0158 0x18a0  MSTEE - ok
15:48:53.0161 0x18a0  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:48:53.0178 0x18a0  MTConfig - ok
15:48:53.0198 0x18a0  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:48:53.0207 0x18a0  Mup - ok
15:48:53.0235 0x18a0  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
15:48:53.0278 0x18a0  napagent - ok
15:48:53.0301 0x18a0  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:48:53.0328 0x18a0  NativeWifiP - ok
15:48:53.0364 0x18a0  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:48:53.0379 0x18a0  NDIS - ok
15:48:53.0392 0x18a0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:48:53.0419 0x18a0  NdisCap - ok
15:48:53.0422 0x18a0  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:48:53.0459 0x18a0  NdisTapi - ok
15:48:53.0488 0x18a0  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:48:53.0525 0x18a0  Ndisuio - ok
15:48:53.0538 0x18a0  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:48:53.0575 0x18a0  NdisWan - ok
15:48:53.0599 0x18a0  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:48:53.0625 0x18a0  NDProxy - ok
15:48:53.0627 0x18a0  Nero BackItUp Scheduler 3 - ok
15:48:53.0653 0x18a0  [ 2C723E42FC8D7B0209492828F921FB50 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:48:53.0669 0x18a0  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:48:53.0669 0x18a0  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
15:48:53.0681 0x18a0  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:48:53.0720 0x18a0  NetBIOS - ok
15:48:53.0750 0x18a0  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:48:53.0778 0x18a0  NetBT - ok
15:48:53.0793 0x18a0  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
15:48:53.0802 0x18a0  Netlogon - ok
15:48:53.0820 0x18a0  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
15:48:53.0865 0x18a0  Netman - ok
15:48:53.0892 0x18a0  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:48:53.0901 0x18a0  NetMsmqActivator - ok
15:48:53.0904 0x18a0  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:48:53.0912 0x18a0  NetPipeActivator - ok
15:48:53.0919 0x18a0  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
15:48:53.0963 0x18a0  netprofm - ok
15:48:53.0966 0x18a0  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:48:53.0975 0x18a0  NetTcpActivator - ok
15:48:53.0978 0x18a0  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:48:53.0987 0x18a0  NetTcpPortSharing - ok
15:48:53.0991 0x18a0  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
15:48:53.0999 0x18a0  nfrd960 - ok
15:48:54.0019 0x18a0  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:48:54.0041 0x18a0  NlaSvc - ok
15:48:54.0087 0x18a0  [ CB992AE1506985D9167E85883B4C3240 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
15:48:54.0112 0x18a0  NMIndexingService - ok
15:48:54.0130 0x18a0  [ 1381E95D4E0F94F22DD484B5F8C1D61D ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
15:48:54.0173 0x18a0  nmwcd - ok
15:48:54.0196 0x18a0  [ 205510CDB7B6084BF31760B5D06F9242 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
15:48:54.0228 0x18a0  nmwcdc - ok
15:48:54.0232 0x18a0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:48:54.0259 0x18a0  Npfs - ok
15:48:54.0285 0x18a0  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
15:48:54.0324 0x18a0  nsi - ok
15:48:54.0339 0x18a0  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:48:54.0381 0x18a0  nsiproxy - ok
15:48:54.0432 0x18a0  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:48:54.0454 0x18a0  Ntfs - ok
15:48:54.0466 0x18a0  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
15:48:54.0501 0x18a0  Null - ok
15:48:54.0519 0x18a0  [ B01C1E6D7477961D6D1CBDCD44AF3E67 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
15:48:54.0530 0x18a0  nusb3hub - ok
15:48:54.0554 0x18a0  [ 796BAE22DD827DB8AD7AE7C3F775E92F ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
15:48:54.0565 0x18a0  nusb3xhc - ok
15:48:54.0587 0x18a0  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:48:54.0596 0x18a0  nvraid - ok
15:48:54.0606 0x18a0  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:48:54.0615 0x18a0  nvstor - ok
15:48:54.0638 0x18a0  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:48:54.0647 0x18a0  nv_agp - ok
15:48:54.0649 0x18a0  ocster_backup - ok
15:48:54.0745 0x18a0  [ 5239571EC40C990C6FC4B03685D56777 ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
15:48:54.0778 0x18a0  OfficeSvc - ok
15:48:54.0803 0x18a0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:48:54.0813 0x18a0  ohci1394 - ok
15:48:54.0828 0x18a0  [ 17553AE5699D2BFE46C746B9C059C0C1 ] oodrvled        C:\Windows\system32\DRIVERS\oodrvled.sys
15:48:54.0837 0x18a0  oodrvled - ok
15:48:54.0885 0x18a0  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:48:54.0917 0x18a0  ose - ok
15:48:55.0046 0x18a0  [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:48:55.0101 0x18a0  osppsvc - ok
15:48:55.0123 0x18a0  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:48:55.0158 0x18a0  p2pimsvc - ok
15:48:55.0172 0x18a0  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:48:55.0186 0x18a0  p2psvc - ok
15:48:55.0209 0x18a0  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
15:48:55.0219 0x18a0  Parport - ok
15:48:55.0241 0x18a0  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:48:55.0250 0x18a0  partmgr - ok
15:48:55.0265 0x18a0  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:48:55.0281 0x18a0  PcaSvc - ok
15:48:55.0299 0x18a0  [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
15:48:55.0334 0x18a0  pccsmcfd - ok
15:48:55.0351 0x18a0  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
15:48:55.0361 0x18a0  pci - ok
15:48:55.0377 0x18a0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
15:48:55.0385 0x18a0  pciide - ok
15:48:55.0409 0x18a0  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:48:55.0419 0x18a0  pcmcia - ok
15:48:55.0435 0x18a0  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:48:55.0443 0x18a0  pcw - ok
15:48:55.0458 0x18a0  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:48:55.0491 0x18a0  PEAUTH - ok
15:48:55.0531 0x18a0  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
15:48:55.0582 0x18a0  PeerDistSvc - ok
15:48:55.0639 0x18a0  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:48:55.0665 0x18a0  PerfHost - ok
15:48:55.0722 0x18a0  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
15:48:55.0777 0x18a0  pla - ok
15:48:55.0802 0x18a0  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:48:55.0840 0x18a0  PlugPlay - ok
15:48:55.0858 0x18a0  [ 171E6D91A20AAC8D02172A64E82CE90B ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:48:55.0877 0x18a0  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:48:55.0877 0x18a0  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
15:48:55.0902 0x18a0  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:48:55.0925 0x18a0  PNRPAutoReg - ok
15:48:55.0940 0x18a0  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:48:55.0953 0x18a0  PNRPsvc - ok
15:48:55.0991 0x18a0  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:48:56.0037 0x18a0  PolicyAgent - ok
15:48:56.0058 0x18a0  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
15:48:56.0095 0x18a0  Power - ok
15:48:56.0125 0x18a0  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:48:56.0161 0x18a0  PptpMiniport - ok
15:48:56.0183 0x18a0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
15:48:56.0207 0x18a0  Processor - ok
15:48:56.0229 0x18a0  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:48:56.0259 0x18a0  ProfSvc - ok
15:48:56.0269 0x18a0  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:48:56.0279 0x18a0  ProtectedStorage - ok
15:48:56.0294 0x18a0  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:48:56.0331 0x18a0  Psched - ok
15:48:56.0352 0x18a0  [ 07D57B890DD5693A6AB660CBAE8F91B4 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
15:48:56.0361 0x18a0  PxHlpa64 - ok
15:48:56.0392 0x18a0  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:48:56.0413 0x18a0  ql2300 - ok
15:48:56.0437 0x18a0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:48:56.0446 0x18a0  ql40xx - ok
15:48:56.0466 0x18a0  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
15:48:56.0490 0x18a0  QWAVE - ok
15:48:56.0493 0x18a0  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:48:56.0513 0x18a0  QWAVEdrv - ok
15:48:56.0563 0x18a0  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
15:48:56.0574 0x18a0  RapiMgr - ok
15:48:56.0585 0x18a0  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:48:56.0620 0x18a0  RasAcd - ok
15:48:56.0644 0x18a0  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:48:56.0671 0x18a0  RasAgileVpn - ok
15:48:56.0688 0x18a0  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
15:48:56.0717 0x18a0  RasAuto - ok
15:48:56.0735 0x18a0  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:48:56.0777 0x18a0  Rasl2tp - ok
15:48:56.0800 0x18a0  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
15:48:56.0830 0x18a0  RasMan - ok
15:48:56.0851 0x18a0  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:48:56.0895 0x18a0  RasPppoe - ok
15:48:56.0908 0x18a0  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:48:56.0943 0x18a0  RasSstp - ok
15:48:56.0948 0x18a0  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:48:56.0984 0x18a0  rdbss - ok
15:48:57.0003 0x18a0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:48:57.0015 0x18a0  rdpbus - ok
15:48:57.0021 0x18a0  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:48:57.0059 0x18a0  RDPCDD - ok
15:48:57.0089 0x18a0  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:48:57.0112 0x18a0  RDPDR - ok
15:48:57.0116 0x18a0  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:48:57.0150 0x18a0  RDPENCDD - ok
15:48:57.0170 0x18a0  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:48:57.0196 0x18a0  RDPREFMP - ok
15:48:57.0217 0x18a0  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:48:57.0251 0x18a0  RdpVideoMiniport - ok
15:48:57.0275 0x18a0  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:48:57.0312 0x18a0  RDPWD - ok
15:48:57.0340 0x18a0  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:48:57.0350 0x18a0  rdyboost - ok
15:48:57.0371 0x18a0  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:48:57.0411 0x18a0  RemoteAccess - ok
15:48:57.0425 0x18a0  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:48:57.0463 0x18a0  RemoteRegistry - ok
15:48:57.0490 0x18a0  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
15:48:57.0519 0x18a0  RFCOMM - ok
15:48:57.0572 0x18a0  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:48:57.0652 0x18a0  RpcEptMapper - ok
15:48:57.0680 0x18a0  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
15:48:57.0705 0x18a0  RpcLocator - ok
15:48:57.0737 0x18a0  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
15:48:57.0769 0x18a0  RpcSs - ok
15:48:57.0800 0x18a0  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:48:57.0827 0x18a0  rspndr - ok
15:48:57.0853 0x18a0  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
15:48:57.0864 0x18a0  RSUSBSTOR - ok
15:48:57.0884 0x18a0  [ C435AC77704EB16E85C9D630F4D4B4F7 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
15:48:57.0895 0x18a0  RTHDMIAzAudService - ok
15:48:57.0924 0x18a0  [ BD9BA262CF26EFE9A9867EBE32D12164 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:48:57.0939 0x18a0  RTL8167 - ok
15:48:57.0964 0x18a0  [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60        C:\Windows\system32\DRIVERS\RtNdPt60.sys
15:48:58.0001 0x18a0  RtNdPt60 - ok
15:48:58.0010 0x18a0  [ 3183388DA27655085960A22B4B29CAA9 ] RTTEAMPT        C:\Windows\system32\DRIVERS\RtTeam60.sys
15:48:58.0028 0x18a0  RTTEAMPT ( UnsignedFile.Multi.Generic ) - warning
15:48:58.0028 0x18a0  RTTEAMPT - detected UnsignedFile.Multi.Generic (1)
15:48:58.0042 0x18a0  [ 8B6B42D782202363A562F82B0E13B1C0 ] RTVLANPT        C:\Windows\system32\DRIVERS\RtVlan60.sys
15:48:58.0065 0x18a0  RTVLANPT - ok
15:48:58.0083 0x18a0  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
15:48:58.0119 0x18a0  s3cap - ok
15:48:58.0135 0x18a0  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
15:48:58.0145 0x18a0  SamSs - ok
15:48:58.0147 0x18a0  SANDRA - ok
15:48:58.0151 0x18a0  SandraAgentSrv - ok
15:48:58.0166 0x18a0  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:48:58.0175 0x18a0  sbp2port - ok
15:48:58.0199 0x18a0  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:48:58.0237 0x18a0  SCardSvr - ok
15:48:58.0261 0x18a0  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:48:58.0297 0x18a0  scfilter - ok
15:48:58.0336 0x18a0  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
15:48:58.0374 0x18a0  Schedule - ok
15:48:58.0395 0x18a0  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:48:58.0420 0x18a0  SCPolicySvc - ok
15:48:58.0436 0x18a0  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:48:58.0476 0x18a0  SDRSVC - ok
15:48:58.0495 0x18a0  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:48:58.0534 0x18a0  secdrv - ok
15:48:58.0550 0x18a0  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
15:48:58.0577 0x18a0  seclogon - ok
15:48:58.0601 0x18a0  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
15:48:58.0637 0x18a0  SENS - ok
15:48:58.0651 0x18a0  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:48:58.0680 0x18a0  SensrSvc - ok
15:48:58.0697 0x18a0  [ 2437720D4480523562360B2B6B5864A7 ] Ser2pl          C:\Windows\system32\DRIVERS\ser2pl64.sys
15:48:58.0721 0x18a0  Ser2pl - ok
15:48:58.0725 0x18a0  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:48:58.0749 0x18a0  Serenum - ok
15:48:58.0776 0x18a0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:48:58.0785 0x18a0  Serial - ok
15:48:58.0806 0x18a0  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:48:58.0831 0x18a0  sermouse - ok
15:48:58.0881 0x18a0  [ 78F7BB9F4924BE164294C59B8C3FC096 ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
15:48:58.0896 0x18a0  ServiceLayer - ok
15:48:58.0931 0x18a0  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:48:58.0972 0x18a0  SessionEnv - ok
15:48:58.0997 0x18a0  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:48:59.0017 0x18a0  sffdisk - ok
15:48:59.0030 0x18a0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:48:59.0051 0x18a0  sffp_mmc - ok
15:48:59.0066 0x18a0  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:48:59.0090 0x18a0  sffp_sd - ok
15:48:59.0112 0x18a0  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
15:48:59.0121 0x18a0  sfloppy - ok
15:48:59.0160 0x18a0  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:48:59.0199 0x18a0  SharedAccess - ok
15:48:59.0224 0x18a0  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:48:59.0265 0x18a0  ShellHWDetection - ok
15:48:59.0283 0x18a0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:48:59.0291 0x18a0  SiSRaid2 - ok
15:48:59.0301 0x18a0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:48:59.0310 0x18a0  SiSRaid4 - ok
15:48:59.0315 0x18a0  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:48:59.0342 0x18a0  Smb - ok
15:48:59.0373 0x18a0  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:48:59.0397 0x18a0  SNMPTRAP - ok
15:48:59.0401 0x18a0  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:48:59.0410 0x18a0  spldr - ok
15:48:59.0437 0x18a0  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
15:48:59.0466 0x18a0  Spooler - ok
15:48:59.0551 0x18a0  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
15:48:59.0632 0x18a0  sppsvc - ok
15:48:59.0661 0x18a0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:48:59.0705 0x18a0  sppuinotify - ok
15:48:59.0734 0x18a0  [ D6AB7C13FCDD2E4CAC35244D2C172D9A ] sptd            C:\Windows\System32\Drivers\sptd.sys
15:48:59.0747 0x18a0  sptd - ok
15:48:59.0775 0x18a0  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:48:59.0805 0x18a0  srv - ok
15:48:59.0824 0x18a0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:48:59.0846 0x18a0  srv2 - ok
15:48:59.0861 0x18a0  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:48:59.0885 0x18a0  srvnet - ok
15:48:59.0911 0x18a0  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:48:59.0955 0x18a0  SSDPSRV - ok
15:48:59.0980 0x18a0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:49:00.0009 0x18a0  SstpSvc - ok
15:49:00.0011 0x18a0  StarWindServiceAE - ok
15:49:00.0034 0x18a0  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:49:00.0042 0x18a0  stexstor - ok
15:49:00.0066 0x18a0  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
15:49:00.0086 0x18a0  stisvc - ok
15:49:00.0114 0x18a0  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
15:49:00.0123 0x18a0  storflt - ok
15:49:00.0145 0x18a0  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
15:49:00.0178 0x18a0  StorSvc - ok
15:49:00.0189 0x18a0  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:49:00.0198 0x18a0  storvsc - ok
15:49:00.0205 0x18a0  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:49:00.0213 0x18a0  swenum - ok
15:49:00.0239 0x18a0  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
15:49:00.0283 0x18a0  swprv - ok
15:49:00.0325 0x18a0  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
15:49:00.0373 0x18a0  SysMain - ok
15:49:00.0400 0x18a0  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:49:00.0415 0x18a0  TabletInputService - ok
15:49:00.0435 0x18a0  [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
15:49:00.0486 0x18a0  tap0901 - ok
15:49:00.0531 0x18a0  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:49:00.0598 0x18a0  TapiSrv - ok
15:49:00.0624 0x18a0  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
15:49:00.0669 0x18a0  TBS - ok
15:49:00.0734 0x18a0  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:49:00.0764 0x18a0  Tcpip - ok
15:49:00.0801 0x18a0  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:49:00.0824 0x18a0  TCPIP6 - ok
15:49:00.0851 0x18a0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:49:00.0860 0x18a0  tcpipreg - ok
15:49:00.0881 0x18a0  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:49:00.0915 0x18a0  TDPIPE - ok
15:49:00.0930 0x18a0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:49:00.0947 0x18a0  TDTCP - ok
15:49:00.0971 0x18a0  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:49:01.0011 0x18a0  tdx - ok
15:49:01.0026 0x18a0  [ 3183388DA27655085960A22B4B29CAA9 ] TEAM            C:\Windows\system32\DRIVERS\RtTeam60.sys
15:49:01.0032 0x18a0  TEAM ( UnsignedFile.Multi.Generic ) - warning
15:49:01.0032 0x18a0  TEAM - detected UnsignedFile.Multi.Generic (1)
15:49:01.0051 0x18a0  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:49:01.0059 0x18a0  TermDD - ok
15:49:01.0087 0x18a0  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
15:49:01.0121 0x18a0  TermService - ok
15:49:01.0139 0x18a0  [ 48D9D00C2E0E72C3D4F52772C80355F6 ] TFsExDisk       C:\Windows\System32\Drivers\TFsExDisk.sys
15:49:01.0148 0x18a0  TFsExDisk - ok
15:49:01.0165 0x18a0  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
15:49:01.0179 0x18a0  Themes - ok
15:49:01.0205 0x18a0  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
15:49:01.0234 0x18a0  THREADORDER - ok
15:49:01.0237 0x18a0  TomTomHOMEService - ok
15:49:01.0242 0x18a0  TPkd - ok
15:49:01.0254 0x18a0  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
15:49:01.0297 0x18a0  TrkWks - ok
15:49:01.0333 0x18a0  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:49:01.0375 0x18a0  TrustedInstaller - ok
15:49:01.0403 0x18a0  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:49:01.0438 0x18a0  tssecsrv - ok
15:49:01.0450 0x18a0  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:49:01.0480 0x18a0  TsUsbFlt - ok
15:49:01.0493 0x18a0  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:49:01.0519 0x18a0  tunnel - ok
15:49:01.0538 0x18a0  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:49:01.0546 0x18a0  uagp35 - ok
15:49:01.0561 0x18a0  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:49:01.0604 0x18a0  udfs - ok
15:49:01.0635 0x18a0  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:49:01.0646 0x18a0  UI0Detect - ok
15:49:01.0662 0x18a0  [ 34859D3801F4BD3DACFA131DD928455A ] UimBus          C:\Windows\system32\DRIVERS\uimx64.sys
15:49:01.0672 0x18a0  UimBus - ok
15:49:01.0686 0x18a0  [ D3CE4776E7FFB25E6935B1C797F4650C ] Uim_IM          C:\Windows\system32\Drivers\Uim_IMx64.sys
15:49:01.0700 0x18a0  Uim_IM - ok
15:49:01.0713 0x18a0  [ 532E4BED5C7803B2EE5681818B2528B7 ] Uim_VIM         C:\Windows\system32\Drivers\uim_vimx64.sys
15:49:01.0725 0x18a0  Uim_VIM - ok
15:49:01.0742 0x18a0  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:49:01.0751 0x18a0  uliagpkx - ok
15:49:01.0772 0x18a0  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:49:01.0796 0x18a0  umbus - ok
15:49:01.0820 0x18a0  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:49:01.0838 0x18a0  UmPass - ok
15:49:01.0862 0x18a0  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
15:49:01.0886 0x18a0  UmRdpService - ok
15:49:01.0889 0x18a0  Update-Service - ok
15:49:01.0924 0x18a0  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
15:49:01.0955 0x18a0  upnphost - ok
15:49:01.0977 0x18a0  [ 311C90F0767A63000AC35DD0A7078A30 ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
15:49:01.0998 0x18a0  upperdev - ok
15:49:02.0022 0x18a0  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:49:02.0057 0x18a0  usbccgp - ok
15:49:02.0079 0x18a0  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:49:02.0091 0x18a0  usbcir - ok
15:49:02.0102 0x18a0  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:49:02.0124 0x18a0  usbehci - ok
15:49:02.0150 0x18a0  [ 5AE9C87A1ED4B243942B3FDDD902134B ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
15:49:02.0160 0x18a0  usbfilter - ok
15:49:02.0176 0x18a0  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:49:02.0188 0x18a0  usbhub - ok
15:49:02.0208 0x18a0  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
15:49:02.0227 0x18a0  usbohci - ok
15:49:02.0245 0x18a0  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:49:02.0270 0x18a0  usbprint - ok
15:49:02.0290 0x18a0  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
15:49:02.0316 0x18a0  usbscan - ok
15:49:02.0337 0x18a0  [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser          C:\Windows\system32\drivers\usbser.sys
15:49:02.0374 0x18a0  usbser - ok
15:49:02.0391 0x18a0  [ C03DA998E412D69D18DD11D835229AF0 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
15:49:02.0420 0x18a0  UsbserFilt - ok
15:49:02.0443 0x18a0  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:49:02.0457 0x18a0  USBSTOR - ok
15:49:02.0472 0x18a0  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
15:49:02.0495 0x18a0  usbuhci - ok
15:49:02.0524 0x18a0  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
15:49:02.0540 0x18a0  usb_rndisx - ok
15:49:02.0559 0x18a0  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
15:49:02.0587 0x18a0  UxSms - ok
15:49:02.0593 0x18a0  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:49:02.0602 0x18a0  VaultSvc - ok
15:49:02.0623 0x18a0  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:49:02.0632 0x18a0  vdrvroot - ok
15:49:02.0658 0x18a0  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
15:49:02.0702 0x18a0  vds - ok
15:49:02.0723 0x18a0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:49:02.0734 0x18a0  vga - ok
15:49:02.0746 0x18a0  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:49:02.0782 0x18a0  VgaSave - ok
15:49:02.0804 0x18a0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:49:02.0813 0x18a0  vhdmp - ok
15:49:02.0817 0x18a0  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:49:02.0826 0x18a0  viaide - ok
15:49:02.0839 0x18a0  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:49:02.0849 0x18a0  vmbus - ok
15:49:02.0862 0x18a0  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
15:49:02.0883 0x18a0  VMBusHID - ok
15:49:02.0887 0x18a0  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:49:02.0896 0x18a0  volmgr - ok
15:49:02.0922 0x18a0  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:49:02.0932 0x18a0  volmgrx - ok
15:49:02.0955 0x18a0  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:49:02.0965 0x18a0  volsnap - ok
15:49:02.0991 0x18a0  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
15:49:03.0000 0x18a0  vsmraid - ok
15:49:03.0044 0x18a0  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
15:49:03.0101 0x18a0  VSS - ok
15:49:03.0212 0x18a0  [ 8754BA5FCC85325C229ADCB72087706E ] vToolbarUpdater15.4.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe
15:49:03.0248 0x18a0  vToolbarUpdater15.4.0 - ok
15:49:03.0253 0x18a0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:49:03.0275 0x18a0  vwifibus - ok
15:49:03.0301 0x18a0  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
15:49:03.0357 0x18a0  W32Time - ok
15:49:03.0378 0x18a0  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:49:03.0403 0x18a0  WacomPen - ok
15:49:03.0429 0x18a0  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:49:03.0466 0x18a0  WANARP - ok
15:49:03.0469 0x18a0  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:49:03.0495 0x18a0  Wanarpv6 - ok
15:49:03.0542 0x18a0  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:49:03.0562 0x18a0  WatAdminSvc - ok
15:49:03.0605 0x18a0  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
15:49:03.0693 0x18a0  wbengine - ok
15:49:03.0720 0x18a0  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:49:03.0740 0x18a0  WbioSrvc - ok
15:49:03.0770 0x18a0  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
15:49:03.0786 0x18a0  WcesComm - ok
15:49:03.0819 0x18a0  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:49:03.0844 0x18a0  wcncsvc - ok
15:49:03.0857 0x18a0  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:49:03.0874 0x18a0  WcsPlugInService - ok
15:49:03.0899 0x18a0  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:49:03.0908 0x18a0  Wd - ok
15:49:03.0941 0x18a0  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:49:03.0957 0x18a0  Wdf01000 - ok
15:49:03.0974 0x18a0  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:49:04.0027 0x18a0  WdiServiceHost - ok
15:49:04.0030 0x18a0  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:49:04.0044 0x18a0  WdiSystemHost - ok
15:49:04.0066 0x18a0  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
15:49:04.0091 0x18a0  WebClient - ok
15:49:04.0132 0x18a0  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:49:04.0189 0x18a0  Wecsvc - ok
15:49:04.0194 0x18a0  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:49:04.0234 0x18a0  wercplsupport - ok
15:49:04.0254 0x18a0  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:49:04.0282 0x18a0  WerSvc - ok
15:49:04.0313 0x18a0  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:49:04.0339 0x18a0  WfpLwf - ok
15:49:04.0352 0x18a0  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:49:04.0361 0x18a0  WIMMount - ok
15:49:04.0383 0x18a0  WinDefend - ok
15:49:04.0389 0x18a0  WinHttpAutoProxySvc - ok
15:49:04.0434 0x18a0  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:49:04.0490 0x18a0  Winmgmt - ok
15:49:04.0531 0x18a0  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
15:49:04.0593 0x18a0  WinRM - ok
15:49:04.0621 0x18a0  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:49:04.0645 0x18a0  WinUsb - ok
15:49:04.0676 0x18a0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:49:04.0699 0x18a0  Wlansvc - ok
15:49:04.0719 0x18a0  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:49:04.0728 0x18a0  WmiAcpi - ok
15:49:04.0756 0x18a0  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:49:04.0779 0x18a0  wmiApSrv - ok
15:49:04.0802 0x18a0  WMPNetworkSvc - ok
15:49:04.0814 0x18a0  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:49:04.0848 0x18a0  WPCSvc - ok
15:49:04.0869 0x18a0  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:49:04.0881 0x18a0  WPDBusEnum - ok
15:49:04.0899 0x18a0  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:49:04.0938 0x18a0  ws2ifsl - ok
15:49:04.0958 0x18a0  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
15:49:04.0986 0x18a0  wscsvc - ok
15:49:04.0989 0x18a0  WSearch - ok
15:49:05.0056 0x18a0  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:49:05.0085 0x18a0  wuauserv - ok
15:49:05.0111 0x18a0  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:49:05.0164 0x18a0  WudfPf - ok
15:49:05.0186 0x18a0  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:49:05.0196 0x18a0  WUDFRd - ok
15:49:05.0219 0x18a0  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:49:05.0242 0x18a0  wudfsvc - ok
15:49:05.0265 0x18a0  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:49:05.0302 0x18a0  WwanSvc - ok
15:49:05.0321 0x18a0  ================ Scan global 
===============================
15:49:05.0343 0x18a0  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:49:05.0376 0x18a0  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:49:05.0393 0x18a0  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:49:05.0425 0x18a0  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:49:05.0459 0x18a0  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:49:05.0463 0x18a0  [Global] - ok
15:49:05.0463 0x18a0  ================ Scan MBR ==================================
15:49:05.0468 0x18a0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:49:05.0799 0x18a0  \Device\Harddisk0\DR0 - ok
15:49:05.0826 0x18a0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
15:49:05.0895 0x18a0  \Device\Harddisk1\DR1 - ok
15:49:05.0903 0x18a0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
15:49:06.0384 0x18a0  \Device\Harddisk2\DR2 - ok
15:49:06.0390 0x18a0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4
15:49:06.0778 0x18a0  \Device\Harddisk4\DR4 - ok
15:49:06.0779 0x18a0  ================ Scan VBR ==================================
15:49:06.0786 0x18a0  [ 6F69E5D8684287108C89046EBFCDDCFB ] \Device\Harddisk0\DR0\Partition1
15:49:06.0789 0x18a0  \Device\Harddisk0\DR0\Partition1 - ok
15:49:06.0798 0x18a0  [ 6905A7941A427EBBF4462515BF494A81 ] \Device\Harddisk1\DR1\Partition1
15:49:06.0801 0x18a0  \Device\Harddisk1\DR1\Partition1 - ok
15:49:06.0811 0x18a0  [ D59DC1BC55FFC27F7ECA062B5AD6F2E5 ] \Device\Harddisk2\DR2\Partition1
15:49:06.0814 0x18a0  \Device\Harddisk2\DR2\Partition1 - ok
15:49:06.0825 0x18a0  [ 287E60CEA469BCE4FCC533189F1C84A0 ] \Device\Harddisk4\DR4\Partition1
15:49:06.0826 0x18a0  \Device\Harddisk4\DR4\Partition1 - ok
15:49:06.0827 0x18a0  ============================================================
15:49:06.0827 0x18a0  Scan finished
15:49:06.0827 0x18a0  ============================================================
15:49:06.0835 0x13f4  Detected object count: 10
15:49:06.0835 0x13f4  Actual detected object count: 10
15:54:32.0157 0x13f4  Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0157 0x13f4  Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0159 0x13f4  FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0159 0x13f4  FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0162 0x13f4  hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0162 0x13f4  hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0164 0x13f4  hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0164 0x13f4  hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0166 0x13f4  HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0167 0x13f4  HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0169 0x13f4  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0169 0x13f4  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0171 0x13f4  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0171 0x13f4  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0173 0x13f4  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0173 0x13f4  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0175 0x13f4  RTTEAMPT ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0175 0x13f4  RTTEAMPT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:32.0176 0x13f4  TEAM ( UnsignedFile.Multi.Generic ) - skipped by user
15:54:32.0176 0x13f4  TEAM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:54:39.0422 0x119c  Deinitialize success

Alt 05.09.2013, 07:58   #8
schrauber
/// the machine
/// TB-Ausbilder
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!
Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1


WICHTIG - Speichere Combofix auf deinem Desktop
  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 05.09.2013, 15:39   #9
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Hallo,
habe das Programm durchlaufen lassen. Ich finde es nur seltsam und nicht unbedingt in Ordnung, das das Tool meine ganzen Desktop-Apps und diverse Progammeinstellungen, z. B. des Win-Explorers(u.a. die Classic Shell Anzeige und der gleichen) einfach entfernt hat. Ich hoffe, es schadet der weiteren Fehlersuche nicht, wenn ich mir das alles wieder so einrichte, das ich wieder komfortabel arbeiten kann.

Code:
ATTFilter
ComboFix 13-09-04.04 - Marko 05.09.2013  15:27:54.1.6 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.8189.6057 [GMT 2:00]
ausgeführt von:: c:\users\Marko\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\ntuser.dat
c:\users\Marko\AppData\Local\assembly\tmp
c:\users\Marko\AppData\Local\Microsoft\Windows\Temporary Internet Files\{8E9890CE-DA01-4D2A-9207-D8ABBD388A84}.xps
c:\users\Marko\AppData\Roaming\CoreXPSP.dll
c:\users\Marko\AppData\Roaming\XnView
c:\users\Marko\AppData\Roaming\XnView\iptc.def
c:\windows\wininit.ini
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-08-05 bis 2013-09-05  ))))))))))))))))))))))))))))))
.
.
2013-09-05 13:37 . 2013-09-05 13:38	--------	d-----w-	c:\users\_ocster_backup_\AppData\Local\temp
2013-09-05 13:37 . 2013-09-05 13:37	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-09-04 12:22 . 2013-09-04 12:22	--------	d-----w-	C:\FRST
2013-08-28 14:21 . 2013-08-28 14:21	--------	d-----w-	c:\users\Marko\AppData\Roaming\Avira
2013-08-28 14:18 . 2013-09-04 09:36	81112	----a-w-	c:\windows\system32\drivers\avnetflt.sys
2013-08-28 14:17 . 2013-09-04 09:36	132088	----a-w-	c:\windows\system32\drivers\avipbb.sys
2013-08-28 14:17 . 2013-09-04 09:36	105344	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2013-08-28 14:17 . 2013-08-28 14:17	--------	d-----w-	c:\programdata\Avira
2013-08-28 14:17 . 2013-03-06 14:13	28600	----a-w-	c:\windows\system32\drivers\avkmgr.sys
2013-08-27 11:32 . 2013-08-06 08:58	9515512	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{A4F27BEE-B845-4887-8581-DEE8894A717A}\mpengine.dll
2013-08-25 16:15 . 2013-08-27 20:03	--------	d-----w-	c:\users\Marko\AppData\Local\BewerbungsMaster
2013-08-25 16:07 . 2013-08-25 16:14	335872	------w-	c:\windows\Setup1.exe
2013-08-25 16:07 . 2013-08-25 16:14	74752	----a-w-	c:\windows\ST6UNST.EXE
2013-08-22 13:01 . 2013-08-22 13:01	--------	d-----w-	c:\users\Marko\AppData\Roaming\dvdcss
2013-08-22 12:58 . 2013-08-22 12:58	--------	d-----w-	c:\users\Marko\AppData\Roaming\Broad Intelligence
2013-08-19 12:10 . 2013-08-25 19:41	--------	d-----w-	c:\users\Marko\MEDION NAS TOOL
2013-08-19 12:00 . 2013-08-19 12:00	--------	d-----w-	c:\users\Marko\AppData\Roaming\Memeo
2013-08-19 12:00 . 2013-08-19 12:00	--------	d-----w-	c:\program files (x86)\Common Files\Memeo
2013-08-19 12:00 . 2013-08-19 12:00	--------	d-----w-	c:\program files (x86)\Memeo
2013-08-14 20:27 . 2013-07-26 06:23	775256	----a-w-	c:\program files\Internet Explorer\iexplore.exe
2013-08-14 20:17 . 2013-07-09 05:03	3968960	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-14 20:26 . 2013-02-03 14:57	564432	----a-w-	c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2013-08-14 20:18 . 2011-12-06 12:35	78161360	----a-w-	c:\windows\system32\MRT.exe
2013-07-29 12:31 . 2013-07-29 12:31	45856	----a-w-	c:\windows\system32\drivers\avgtpx64.sys
2013-07-10 10:34 . 2012-04-02 09:46	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-07-10 10:34 . 2011-12-05 20:08	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-09 04:45 . 2013-08-14 20:17	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2013-06-24 14:22 . 2013-03-05 16:02	96168	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-24 14:22 . 2012-06-27 17:22	867240	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2013-06-24 14:22 . 2011-12-12 10:56	789416	----a-w-	c:\windows\SysWow64\deployJava1.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-02-03 15:06	220632	----a-w-	c:\users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-02-03 15:06	220632	----a-w-	c:\users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-02-03 15:06	220632	----a-w-	c:\users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2013-06-29 08:49	594432	----a-w-	e:\programme\Classic Shell\ClassicExplorer32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DeskDriveStartup"="e:\programme\Blue Onion Software\Desk Drive\DeskDrive.exe" [2009-12-06 66048]
"BrowserMask"="e:\programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe" [2011-06-21 101280]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"AmazonMP3DownloaderHelper"="c:\users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe" [2013-05-22 400704]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"DivXMediaServer"="e:\programme\DivX\DivX Media Server\DivXMediaServer.exe" [2013-05-20 450560]
"vspdfprsrv.exe"="e:\programme\Avanquest\PDF Experte 8 Ultimate\vspdfprsrv.exe" [2012-04-23 6082560]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
"StartCCC"="c:\ati\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-06 642216]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"Memeo Instant Backup"="c:\program files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe" [2011-09-15 136416]
"avgnt"="e:\programme\Antivir\Avira\AntiVir Desktop\avgnt.exe" [2013-09-04 347192]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
c:\users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
An OneNote senden.lnk - c:\program files\Microsoft Office 15\root\office15\ONENOTEM.EXE /tsr [2013-8-14 158896]
Mediencenter.lnk - c:\users\Marko\AppData\Roaming\Telekom\MediencenterSync\Mediencenter.exe [2013-8-22 557376]
Rainmeter.lnk - e:\programme\Rainmeter\Rainmeter.exe [2012-11-4 41160]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
FileBox eXtender.lnk - e:\programme\FileBX\FileBX.exe [2011-2-23 614400]
MadAppLauncher.lnk - e:\programme\MadAppLauncher\MadAppLauncher.exe [2012-5-22 483328]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux3"=wdmaud.drv
.
R2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
R3 atillk64;atillk64;c:\program files (x86)\AMD\System Monitor\atillk64.sys;c:\program files (x86)\AMD\System Monitor\atillk64.sys [x]
R3 CGVPNCliSrvc;CyberGhost VPN Client;c:\program files\CyberGhost VPN\CGVPNCliService.exe;c:\program files\CyberGhost VPN\CGVPNCliService.exe [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys;c:\windows\etdrv.sys [x]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [x]
R3 GigasetGenericUSB_x64;GigasetGenericUSB_x64;c:\windows\system32\DRIVERS\GigasetGenericUSB_x64.sys;c:\windows\SYSNATIVE\DRIVERS\GigasetGenericUSB_x64.sys [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan60.sys [x]
R3 SandraAgentSrv;SiSoftware Deployment Agent Service;e:\programme\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe;e:\programme\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys;c:\windows\SYSNATIVE\Drivers\TFsExDisk.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 AntiVirWebService;Avira Browser-Schutz;e:\programme\Antivir\Avira\AntiVir Desktop\AVWEBGRD.EXE;e:\programme\Antivir\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
R4 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [x]
R4 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
R4 vToolbarUpdater15.4.0;vToolbarUpdater15.4.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 hotcore3;hc3ServiceName;c:\windows\system32\DRIVERS\hotcore3.sys;c:\windows\SYSNATIVE\DRIVERS\hotcore3.sys [x]
S0 oodrvled;oodrvled;c:\windows\system32\DRIVERS\oodrvled.sys;c:\windows\SYSNATIVE\DRIVERS\oodrvled.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 Uim_VIM;UIM Virtual Image Plugin;c:\windows\system32\Drivers\uim_vimx64.sys;c:\windows\SYSNATIVE\Drivers\uim_vimx64.sys [x]
S2 AdobeActiveFileMonitor11.0;Adobe Active File Monitor V11;e:\programme\Adobe\Photoshop Elements 11\Elements 11 Organizer\PhotoshopElementsFileAgent.exe;e:\programme\Adobe\Photoshop Elements 11\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\ati\ATI.ACE\Fuel\Fuel.Service.exe;c:\ati\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AntiVirSchedulerService;Avira Planer;e:\programme\Antivir\Avira\AntiVir Desktop\sched.exe;e:\programme\Antivir\Avira\AntiVir Desktop\sched.exe [x]
S2 AODDriver4.1;AODDriver4.1;c:\ati\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\ati\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys;c:\windows\SYSNATIVE\drivers\cpuz135_x64.sys [x]
S2 DfSdkS;Defragmentation-Service;e:\programme\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe;e:\programme\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe [x]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [x]
S2 MCSWASVR;Mediencenter Service;e:\programme\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe;e:\programme\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe [x]
S2 MemeoBackgroundService;MemeoBackgroundService;c:\program files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe;c:\program files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe [x]
S2 ocster_backup;Ocster Backup;e:\programme\Ocster Backup\bin\backupService-ox.exe;e:\programme\Ocster Backup\bin\backupService-ox.exe [x]
S2 OfficeSvc;Microsoft Office-Dienst;c:\program files\Microsoft Office 15\ClientX64\integratedoffice.exe;c:\program files\Microsoft Office 15\ClientX64\integratedoffice.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 TomTomHOMEService;TomTomHOMEService;e:\programme\TomTom\TomTom HOME 2\TomTomHOMEService.exe;e:\programme\TomTom\TomTom HOME 2\TomTomHOMEService.exe [x]
S2 Update-Service;Update-Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys;c:\windows\SYSNATIVE\DRIVERS\LEqdUsb.Sys [x]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys;c:\windows\SYSNATIVE\DRIVERS\LHidEqd.Sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
Update-Service-Installer-Service	REG_MULTI_SZ   	Update-Service-Installer-Service
Update-Service	REG_MULTI_SZ   	Update-Service
.
Inhalt des "geplante Tasks" Ordners
.
2013-09-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-21 14:30]
.
2013-09-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-21 14:30]
.
2013-09-05 c:\windows\Tasks\HP Photo Creations Communicator.job
- c:\programdata\HP Photo Creations\Communicator.exe [2011-08-23 09:11]
.
2013-08-23 c:\windows\Tasks\One-Click Optimizer.job
- e:\programme\Ashampoo\Ashampoo WinOptimizer 10\WO10.exe [2013-07-29 13:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-02-03 15:06	244696	----a-w-	c:\users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-02-03 15:06	244696	----a-w-	c:\users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-02-03 15:06	244696	----a-w-	c:\users\Marko\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2013-08-14 20:28	2328776	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2013-08-14 20:28	2328776	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2013-08-14 20:28	2328776	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\01Mediencenter_InSync]
@="{77BC4082-DB5F-439A-8DC8-F9E24A63B0DE}"
"ReferenceCount"=dword:00000001
[HKEY_CLASSES_ROOT\CLSID\{77BC4082-DB5F-439A-8DC8-F9E24A63B0DE}]
2013-04-04 08:22	558592	----a-w-	c:\users\Marko\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.IconOverlayHandler.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\02Mediencenter_ToSync]
@="{528EE335-5034-4EFC-834E-63E5F02D2BC2}"
"ReferenceCount"=dword:00000001
[HKEY_CLASSES_ROOT\CLSID\{528EE335-5034-4EFC-834E-63E5F02D2BC2}]
2013-04-04 08:22	558592	----a-w-	c:\users\Marko\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.IconOverlayHandler.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\03Mediencenter_Failed]
@="{6066ADF0-9EB0-43E5-ADB6-990F5A3B979C}"
"ReferenceCount"=dword:00000001
[HKEY_CLASSES_ROOT\CLSID\{6066ADF0-9EB0-43E5-ADB6-990F5A3B979C}]
2013-04-04 08:22	558592	----a-w-	c:\users\Marko\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.IconOverlayHandler.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2013-06-29 08:50	724992	----a-w-	e:\programme\Classic Shell\ClassicExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
"LogiScrollApp"="c:\program files\Logitech\FlowScroll\KhalScroll.exe" [2012-02-08 166680]
"EvtMgr6"="e:\programme\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1744152]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2000-01-01 12503184]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
"Ocster Backup"="e:\programme\Ocster Backup\bin\backupClient-ox.exe" [2013-07-02 312488]
"Classic Start Menu"="e:\programme\Classic Shell\ClassicStartMenu.exe" [2013-06-29 151552]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.jan-records.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = fritz.box;192.168.178.1
IE: E&xport to Microsoft Excel - c:\program files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Nach Microsoft &Excel exportieren - e:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\program files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
LSP: e:\programme\Antivir\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 192.168.178.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.4.0\ViProtocol.dll
FF - ProfilePath - c:\users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\s0d1rked.default\
FF - ExtSQL: 2013-07-10 11:09; {9AA46F4F-4DC7-4c06-97AF-5035170634FE}; c:\users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\s0d1rked.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
FF - ExtSQL: !HIDDEN! 2012-09-14 09:48; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 250
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
Toolbar-{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-NPSStartup - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-FileBox eXtender - c:\programdata\{7A94EF79-C34B-444E-BECC-25AB7D77AA78}\Fbx64Setup.exe
AddRemove-FileZilla Client - e:\programme\FileZilla FTP Client\uninstall.exe
AddRemove-{23236FC2-648D-4ACF-AD16-68492D0F0AC9} - c:\programdata\{7A94EF79-C34B-444E-BECC-25AB7D77AA78}\Fbx64Setup.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\ú**]
"7040110900063D11C8EF10054038389C"="C?\\Windows\\SysWOW64\\FM20ENU.DLL"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
e:\programme\Antivir\Avira\AntiVir Desktop\avguard.exe
e:\programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2013-09-05  15:51:40 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2013-09-05 13:51
.
Vor Suchlauf: 13 Verzeichnis(se), 26.302.726.144 Bytes frei
Nach Suchlauf: 19 Verzeichnis(se), 28.501.110.784 Bytes frei
.
- - End Of File - - C2D750BBB615B4C7590699A8C2B3143A
A36C5E4F47E84449FF07ED3517B43A31

Alt 05.09.2013, 20:04   #10
schrauber
/// the machine
/// TB-Ausbilder
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 06.09.2013, 11:52   #11
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.09.06.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Marko :: KOBOLT [Administrator]

06.09.2013 11:12:55
mbam-log-2013-09-06 (11-12-55).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 275721
Laufzeit: 5 Minute(n), 21 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
Code:
ATTFilter
# AdwCleaner v3.002 - Bericht erstellt am 06/09/2013 um 11:44:46
# Updated 01/09/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : Marko - KOBOLT
# Gestartet von : C:\Users\Marko\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Program Files (x86)\Red Sky
Ordner Gelöscht : C:\Program Files (x86)\Common Files\AVG Secure Search
Ordner Gelöscht : C:\Users\Marko\IECompatCache
Ordner Gelöscht : C:\Users\Marko\AppData\Local\AVG Secure Search
Ordner Gelöscht : C:\Users\Marko\AppData\Local\DownTango
Ordner Gelöscht : C:\Users\Marko\AppData\LocalLow\AVG Secure Search
Ordner Gelöscht : C:\Users\Marko\AppData\LocalLow\boost_interprocess
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\s0d1rked.default\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\AVG Secure Search
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16660


-\\ Mozilla Firefox v18.0.1 (de)

[ Datei : C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\s0d1rked.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [6066 octets] - [06/09/2013 11:32:20]
AdwCleaner[S0].txt - [5825 octets] - [06/09/2013 11:44:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5885 octets] ##########
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.8 (09.05.2013:1)
OS: Windows 7 Professional x64
Ran by Marko on 06.09.2013 at 12:18:11,19
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.09.2013 at 12:22:55,27
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-09-2013
Ran by Marko (administrator) on KOBOLT on 06-09-2013 12:44:41
Running from C:\Users\Marko\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avshadow.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\sched.exe
(Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Fuel\Fuel.Service.exe
(mst software GmbH, Germany) E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Deutsche Telekom AG) E:\Programme\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe
(Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(StarWind Software) e:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Logitech, Inc.) C:\Program Files\Logitech\FlowScroll\KhalScroll.exe
(Logitech, Inc.) E:\Programme\Logitech\SetPointP\SetPoint.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
() E:\Programme\Ocster Backup\bin\backupClient-ox.exe
(IvoSoft) E:\Programme\Classic Shell\ClassicStartMenu.exe
(Blue Onion Software) E:\Programme\Blue Onion Software\Desk Drive\DeskDrive.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Hyperionics Technology LLC) E:\Programme\FileBX\FileBX.exe
() E:\Programme\MadAppLauncher\MadAppLauncher.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\Mediencenter.exe
() E:\Programme\Rainmeter\Rainmeter.exe
() e:\Programme\Ocster Backup\bin\oxHelper.exe
(Visagesoft) E:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfprsrv.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avgnt.exe
() E:\Programme\FileBX\Fbx32helper.exe
(Adobe Systems Incorporated) E:\Programme\Adobe\Photoshop Elements 11\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
() C:\Program Files (x86)\Memeo\AutoBackup\InstantBackup.exe
(Memeo Inc.) C:\Program Files (x86)\Memeo\AutoBackup\MemeoUpdater.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
() e:\Programme\Ocster Backup\bin\backupService-ox.exe
() e:\Programme\Ocster Backup\bin\oxHelper.exe
(TomTom) E:\Programme\TomTom\TomTom HOME 2\TomTomHOMEService.exe
(Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\ATI\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [LogiScrollApp] - C:\Program Files\Logitech\FlowScroll\KhalScroll.exe [166680 2012-02-08] (Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] - E:\Programme\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Ocster Backup] - E:\Programme\Ocster Backup\bin\backupClient-ox.exe [312488 2013-07-02] ()
HKLM\...\Run: [Classic Start Menu] - E:\Programme\Classic Shell\ClassicStartMenu.exe [151552 2013-06-29] (IvoSoft)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKLM\...\Policies\Explorer: [NoDriveTypeAutoRun] 60
HKLM\...\Policies\Explorer: [NoDrives] 0
HKCU\...\Run: [DeskDriveStartup] - E:\Programme\Blue Onion Software\Desk Drive\DeskDrive.exe [66048 2009-12-06] (Blue Onion Software)
HKCU\...\Run: [BrowserMask] - E:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe [101280 2011-06-21] (Microsoft)
HKCU\...\Run: [AmazonMP3DownloaderHelper] - C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKCU\...\Policies\Explorer: [NoCDBurning] 0
HKCU\...\Policies\Explorer: [NoDrives] 0
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [10752 2012-01-31] ()
HKLM-x32\...\Run: [DivXMediaServer] - e:\Programme\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-05-20] (DivX, LLC)
HKLM-x32\...\Run: [vspdfprsrv.exe] - e:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfprsrv.exe [6082560 2012-04-23] (Visagesoft)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\ATI\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Memeo Instant Backup] - C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe [136416 2011-09-16] (Memeo Inc.)
HKLM-x32\...\Run: [avgnt] - E:\Programme\Antivir\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-04] (Avira Operations GmbH & Co. KG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FileBox eXtender.lnk
ShortcutTarget: FileBox eXtender.lnk -> E:\Programme\FileBX\FileBX.exe (Hyperionics Technology LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MadAppLauncher.lnk
ShortcutTarget: MadAppLauncher.lnk -> E:\Programme\MadAppLauncher\MadAppLauncher.exe ()
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mediencenter.lnk
ShortcutTarget: Mediencenter.lnk -> C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\Mediencenter.exe (Deutsche Telekom AG)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> E:\Programme\Rainmeter\Rainmeter.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.jan-records.de/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKCU - {B8043587-EBE9-4754-9E02-4BD5899FE7BA} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=971163&p={searchTerms}
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - E:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll (Logitech, Inc.)
BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - E:\Programme\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - e:\Programme\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - E:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Programme\Java\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll (Logitech, Inc.)
BHO-x32: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - E:\Programme\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - E:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - E:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft)
DPF: HKLM-x32 {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} hxxp://download.gigabyte.com.tw/object/Dldrv.ocx
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Winsock: Catalog9 01 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 01 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 02 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 03 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 04 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 05 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 06 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 07 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 08 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 20 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Path=C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-812850846-3816870413-364722810-1001\FireFox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @canon.com/MycameraPlugin - E:\Programme\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - e:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - e:\Programme\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - E:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{5D3F3872-91E9-4d59-AD9F-AA174A3145DD}] C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt
FF Extension: Logitech Flow Scroll - C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] e:\Programme\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - e:\Programme\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF StartMenuInternet: FIREFOX.EXE - e:\Programme\Mozilla Firefox\firefox.exe

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-07-17] (Adobe Systems)
R2 AdobeActiveFileMonitor11.0; E:\Programme\Adobe\Photoshop Elements 11\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-17] (Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\ATI\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; E:\Programme\Antivir\Avira\AntiVir Desktop\sched.exe [84024 2013-09-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; E:\Programme\Antivir\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-04] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; E:\Programme\Antivir\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-04] (Avira Operations GmbH & Co. KG)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 CGVPNCliSrvc; C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 DfSdkS; E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany)
S2 LanmanWorkstation; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [45568 2009-07-14] (Microsoft Corporation)
R2 MCSWASVR; E:\Programme\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe [12800 2011-11-23] (Deutsche Telekom AG)
S4 Nero BackItUp Scheduler 3; E:\Programme\Nero\Nero\Nero8\Nero BackItUp\NBService.exe [877864 2008-06-08] (Nero AG)
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [537896 2008-06-24] (Nero AG)
R2 ocster_backup; e:\Programme\Ocster Backup\bin\backupService-ox.exe [23720 2013-07-02] ()
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1900728 2013-06-09] (Microsoft Corporation)
S3 SandraAgentSrv; E:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe [68760 2008-09-05] (SiSoftware)
R2 StarWindServiceAE; e:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software)
R2 TomTomHOMEService; E:\Programme\TomTom\TomTom HOME 2\TomTomHOMEService.exe [92632 2012-08-28] (TomTom)
S4 McComponentHostService; "C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe" [x]
R2 Update-Service; %SystemRoot%\System32\UpdSvc.dll [x]
S4 vToolbarUpdater15.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe [x]

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\ATI\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-07-29] (AVG Technologies)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-06] (Avira Operations GmbH & Co. KG)
R2 cpuz135; C:\Windows\system32\drivers\cpuz135_x64.sys [21992 2011-09-21] (CPUID)
S3 etdrv; C:\Windows\etdrv.sys [25640 2012-02-01] (Windows (R) Server 2003 DDK provider)
S3 etdrv; C:\Windows\etdrv.sys [25640 2012-02-01] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2012-10-09] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2012-10-09] (Windows (R) Server 2003 DDK provider)
S3 GigasetGenericUSB_x64; C:\Windows\System32\DRIVERS\GigasetGenericUSB_x64.sys [54272 2009-02-20] (Siemens Home and Office Communication Devices GmbH & Co. KG)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-02-01] ()
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-02-01] ()
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [39728 2011-11-04] (Paragon Software Group)
R0 oodrvled; C:\Windows\System32\DRIVERS\oodrvled.sys [30800 2011-03-02] (O&O Software GmbH)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
S3 SANDRA; E:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\WNt500x64\Sandra.sys [23112 2009-08-08] (SiSoftware)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-11-07] (Duplex Secure Ltd.)
R1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [59184 2011-11-04] (Windows (R) 2000 DDK provider)
R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [572336 2011-11-04] (Paragon)
R1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [352816 2011-11-04] (Paragon)
S2 AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S3 atillk64; \??\C:\Program Files (x86)\AMD\System Monitor\atillk64.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S0 TPkd; No ImagePath

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-06 12:18 - 2013-09-06 12:18 - 00000000 ____D C:\Windows\ERUNT
2013-09-06 11:32 - 2013-09-06 11:44 - 00000000 ____D C:\AdwCleaner
2013-09-06 11:00 - 2013-09-06 11:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-06 11:00 - 2013-09-06 11:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-06 11:00 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-06 10:59 - 2013-09-06 10:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Marko\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-05 15:26 - 2013-09-05 15:52 - 00000000 ____D C:\Qoobox
2013-09-05 15:26 - 2013-09-05 15:48 - 00000000 ____D C:\Windows\erdnt
2013-09-05 15:26 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-09-05 15:26 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-09-05 15:26 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-09-05 15:22 - 2013-09-06 12:37 - 00000000 ____D C:\Users\Marko\Desktop\Trojaner-Board
2013-09-04 14:43 - 2013-09-04 14:43 - 00276496 _____ C:\Windows\Minidump\090413-21590-01.dmp
2013-09-04 14:22 - 2013-09-04 14:22 - 00000000 ____D C:\FRST
2013-09-04 14:08 - 2013-09-04 14:08 - 00000344 _____ C:\Users\Marko\defogger_reenable
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(3).exe
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(2).exe
2013-09-04 13:51 - 2013-09-04 13:51 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(1).exe
2013-09-02 17:15 - 2013-09-02 17:15 - 00000787 _____ C:\Users\Marko\Desktop\DivX Movies.lnk
2013-09-02 17:15 - 2013-09-02 17:15 - 00000754 _____ C:\Users\Public\Desktop\DivX Plus Player.lnk
2013-08-29 08:59 - 2013-08-29 08:59 - 05192704 _____ (Geza Kovacs) C:\Users\Marko\Downloads\unetbootin-windows-585.exe
2013-08-29 08:53 - 2013-08-29 08:53 - 00000000 ____D C:\Users\Marko\Desktop\Hausbau
2013-08-28 19:23 - 2013-08-28 19:23 - 616382464 _____ C:\Users\Marko\Downloads\rescue-system.iso
2013-08-28 16:21 - 2013-08-28 16:21 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Avira
2013-08-28 16:18 - 2013-09-04 11:36 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-08-28 16:17 - 2013-09-04 11:36 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-08-28 16:17 - 2013-09-04 11:36 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-08-28 16:17 - 2013-08-28 16:17 - 00000000 ____D C:\ProgramData\Avira
2013-08-28 16:17 - 2013-03-06 16:13 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-08-28 15:58 - 2013-08-28 15:59 - 110344048 _____ C:\Users\Marko\Downloads\avira_free4045_antivirus_de.exe
2013-08-28 15:46 - 2013-08-28 15:46 - 02733958 _____ C:\Users\Marko\Downloads\tdsskiller.zip
2013-08-28 15:40 - 2013-08-28 15:40 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck.exe
2013-08-27 13:39 - 2013-09-05 15:39 - 00096166 _____ C:\Windows\PFRO.log
2013-08-26 14:38 - 2013-08-26 15:04 - 00000000 ____D C:\Users\Marko\Desktop\Kaspersky
2013-08-25 18:15 - 2013-08-27 22:03 - 00000000 ____D C:\Users\Marko\AppData\Local\BewerbungsMaster
2013-08-25 18:14 - 2013-08-27 23:00 - 00000000 ____D C:\Users\Marko\Documents\BewerbungsMaster
2013-08-25 18:13 - 2013-08-25 18:13 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BewerbungsMaster
2013-08-25 18:07 - 2013-08-25 18:14 - 00335872 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2013-08-25 18:07 - 2013-08-25 18:14 - 00074752 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE
2013-08-25 18:06 - 2013-08-25 18:06 - 11616256 _____ C:\Users\Marko\Downloads\master71.exe
2013-08-25 17:23 - 2013-09-02 17:00 - 00000000 ____D C:\Users\Marko\Desktop\Nick_Ausbildung
2013-08-24 11:32 - 2013-09-06 12:02 - 00002027 _____ C:\Windows\setupact.log
2013-08-24 11:32 - 2013-08-24 11:32 - 00000000 _____ C:\Windows\setuperr.log
2013-08-22 15:01 - 2013-08-22 15:01 - 00000000 ____D C:\Users\Marko\AppData\Roaming\dvdcss
2013-08-22 14:58 - 2013-08-22 14:58 - 00000687 _____ C:\Users\Marko\Desktop\MediaCoder x64.lnk
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder x64
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Broad Intelligence
2013-08-22 14:55 - 2013-08-22 14:57 - 68913986 _____ C:\Users\Marko\Downloads\MediaCoder-x64-0.8.25.5553.exe
2013-08-19 14:10 - 2013-08-25 21:41 - 00000000 ____D C:\Users\Marko\MEDION NAS TOOL
2013-08-19 14:00 - 2013-08-19 14:00 - 00001168 _____ C:\Users\Public\Desktop\Memeo Instant Backup.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000954 _____ C:\Users\Public\Desktop\MEDION NAS TOOL.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Memeo
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Program Files (x86)\Memeo
2013-08-18 13:50 - 2013-08-18 13:50 - 02899663 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.cab
2013-08-18 13:50 - 2013-08-18 13:50 - 02427392 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.exe
2013-08-15 11:34 - 2013-08-28 15:47 - 00000000 ____D C:\Users\Marko\Downloads\tdsskiller
2013-08-14 22:28 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-14 22:28 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 22:28 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 22:28 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-14 22:28 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-14 22:28 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-14 22:28 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 22:28 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 22:28 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 22:28 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-14 22:28 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-14 22:28 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-14 22:28 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 22:28 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 22:28 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-14 22:27 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 22:27 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 22:27 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 22:27 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 22:27 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 22:27 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 22:27 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 22:24 - 2013-08-14 22:24 - 02224290 _____ C:\Users\Marko\Downloads\tdsskiller.rar
2013-08-14 22:23 - 2013-08-14 22:26 - 176212264 _____ (Kaspersky Lab) C:\Users\Marko\Downloads\kis13.0.1.4190de-de(2).exe
2013-08-14 22:22 - 2013-08-14 22:25 - 181393840 _____ C:\Users\Marko\Downloads\setup_11.0.0.1245.x01_2013_08_14_23_13.exe
2013-08-14 22:17 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 22:17 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 22:17 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 22:17 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 22:17 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 22:17 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 22:17 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 22:17 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 22:17 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 22:17 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 22:17 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 22:17 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 22:17 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 22:17 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 22:17 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 22:17 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 22:17 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 22:17 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 22:17 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 22:17 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 22:17 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 22:17 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 22:17 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 22:17 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 22:17 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 22:17 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 22:17 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-13 15:34 - 2013-08-13 15:34 - 09143640 _____ (Abelssoft                                                   ) C:\Users\Marko\Downloads\6773_2_ABS_2014_CB.exe
2013-08-13 15:31 - 2013-08-13 15:32 - 21991048 _____ (abylonsoft                                                  ) C:\Users\Marko\Downloads\6219_2_Cryptdrive_CB.exe
2013-08-09 15:16 - 2013-08-09 15:16 - 03128152 _____ C:\Users\Marko\Downloads\org.geometerplus.zlibrary.ui.android_106042.apk
2013-08-09 15:16 - 2013-08-09 15:16 - 00230586 _____ C:\Users\Marko\Downloads\org.fdroid.fdroid_40.apk
2013-08-09 15:15 - 2013-08-09 15:15 - 06113402 _____ C:\Users\Marko\Downloads\mapfactor_navigator_0_12_x.apk

==================== One Month Modified Files and Folders =======

2013-09-06 12:37 - 2013-09-06 12:37 - 01948360 _____ (Farbar) C:\Users\Marko\Desktop\FRST64.exe
2013-09-06 12:37 - 2013-09-05 15:22 - 00000000 ____D C:\Users\Marko\Desktop\Trojaner-Board
2013-09-06 12:18 - 2013-09-06 12:18 - 00000000 ____D C:\Windows\ERUNT
2013-09-06 12:17 - 2012-09-14 10:49 - 00000338 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2013-09-06 12:15 - 2012-03-21 16:30 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-06 12:12 - 2009-07-14 06:45 - 00015856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-06 12:12 - 2009-07-14 06:45 - 00015856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-06 12:03 - 2012-03-21 16:30 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-06 12:02 - 2013-08-24 11:32 - 00002027 _____ C:\Windows\setupact.log
2013-09-06 12:02 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-06 12:01 - 2012-01-16 23:34 - 01355586 _____ C:\Windows\WindowsUpdate.log
2013-09-06 11:44 - 2013-09-06 11:32 - 00000000 ____D C:\AdwCleaner
2013-09-06 11:44 - 2011-12-05 17:51 - 00000000 ____D C:\Users\Marko
2013-09-06 11:00 - 2013-09-06 11:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-06 11:00 - 2013-09-06 11:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-06 10:59 - 2013-09-06 10:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Marko\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-05 17:01 - 2012-03-29 22:15 - 00071363 _____ C:\Windows\system32\log.xml
2013-09-05 17:01 - 2012-03-29 22:15 - 00000008 _____ C:\Windows\system32\log-suffix.xml
2013-09-05 16:46 - 2012-04-26 22:27 - 00003234 _____ C:\Windows\System32\Tasks\SidebarExecute
2013-09-05 15:52 - 2013-09-05 15:26 - 00000000 ____D C:\Qoobox
2013-09-05 15:52 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2013-09-05 15:48 - 2013-09-05 15:26 - 00000000 ____D C:\Windows\erdnt
2013-09-05 15:40 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2013-09-05 15:39 - 2013-08-27 13:39 - 00096166 _____ C:\Windows\PFRO.log
2013-09-05 15:14 - 2012-08-03 17:25 - 00000000 ____D C:\Users\Marko\AppData\Local\Adobe
2013-09-04 14:43 - 2013-09-04 14:43 - 00276496 _____ C:\Windows\Minidump\090413-21590-01.dmp
2013-09-04 14:43 - 2012-04-19 20:27 - 00000000 ____D C:\Windows\Minidump
2013-09-04 14:22 - 2013-09-04 14:22 - 00000000 ____D C:\FRST
2013-09-04 14:08 - 2013-09-04 14:08 - 00000344 _____ C:\Users\Marko\defogger_reenable
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(3).exe
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(2).exe
2013-09-04 13:51 - 2013-09-04 13:51 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(1).exe
2013-09-04 11:36 - 2013-08-28 16:18 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-04 11:36 - 2013-08-28 16:17 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-04 11:36 - 2013-08-28 16:17 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-02 17:43 - 2012-04-04 12:07 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Mp3tag
2013-09-02 17:16 - 2012-03-19 17:27 - 00000000 ____D C:\Users\Marko\Desktop\Auto
2013-09-02 17:15 - 2013-09-02 17:15 - 00000787 _____ C:\Users\Marko\Desktop\DivX Movies.lnk
2013-09-02 17:15 - 2013-09-02 17:15 - 00000754 _____ C:\Users\Public\Desktop\DivX Plus Player.lnk
2013-09-02 17:15 - 2012-08-21 13:36 - 00000000 ____D C:\ProgramData\DivX
2013-09-02 17:00 - 2013-08-25 17:23 - 00000000 ____D C:\Users\Marko\Desktop\Nick_Ausbildung
2013-09-02 15:12 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-08-29 20:08 - 2011-12-05 17:51 - 00000000 ___RD C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-08-29 19:31 - 2009-07-14 19:58 - 00700370 _____ C:\Windows\system32\perfh007.dat
2013-08-29 19:31 - 2009-07-14 19:58 - 00149184 _____ C:\Windows\system32\perfc007.dat
2013-08-29 19:31 - 2009-07-14 07:13 - 01622098 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-29 17:02 - 2013-02-03 18:03 - 00000000 ____D C:\Users\Marko\AppData\Local\Microsoft Help
2013-08-29 16:39 - 2013-07-19 13:45 - 00000000 ____D C:\Users\Marko\AppData\Roaming\onOne Software
2013-08-29 08:59 - 2013-08-29 08:59 - 05192704 _____ (Geza Kovacs) C:\Users\Marko\Downloads\unetbootin-windows-585.exe
2013-08-29 08:53 - 2013-08-29 08:53 - 00000000 ____D C:\Users\Marko\Desktop\Hausbau
2013-08-28 19:23 - 2013-08-28 19:23 - 616382464 _____ C:\Users\Marko\Downloads\rescue-system.iso
2013-08-28 16:21 - 2013-08-28 16:21 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Avira
2013-08-28 16:17 - 2013-08-28 16:17 - 00000000 ____D C:\ProgramData\Avira
2013-08-28 15:59 - 2013-08-28 15:58 - 110344048 _____ C:\Users\Marko\Downloads\avira_free4045_antivirus_de.exe
2013-08-28 15:47 - 2013-08-15 11:34 - 00000000 ____D C:\Users\Marko\Downloads\tdsskiller
2013-08-28 15:46 - 2013-08-28 15:46 - 02733958 _____ C:\Users\Marko\Downloads\tdsskiller.zip
2013-08-28 15:40 - 2013-08-28 15:40 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck.exe
2013-08-27 23:00 - 2013-08-25 18:14 - 00000000 ____D C:\Users\Marko\Documents\BewerbungsMaster
2013-08-27 22:03 - 2013-08-25 18:15 - 00000000 ____D C:\Users\Marko\AppData\Local\BewerbungsMaster
2013-08-26 16:55 - 2012-03-23 11:34 - 00000000 ____D C:\ProgramData\firebird
2013-08-26 15:04 - 2013-08-26 14:38 - 00000000 ____D C:\Users\Marko\Desktop\Kaspersky
2013-08-26 14:53 - 2013-05-24 12:28 - 00002453 _____ C:\Users\Public\Desktop\SeaTools for Windows.lnk
2013-08-25 21:41 - 2013-08-19 14:10 - 00000000 ____D C:\Users\Marko\MEDION NAS TOOL
2013-08-25 18:14 - 2013-08-25 18:07 - 00335872 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2013-08-25 18:14 - 2013-08-25 18:07 - 00074752 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE
2013-08-25 18:13 - 2013-08-25 18:13 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BewerbungsMaster
2013-08-25 18:06 - 2013-08-25 18:06 - 11616256 _____ C:\Users\Marko\Downloads\master71.exe
2013-08-24 11:32 - 2013-08-24 11:32 - 00000000 _____ C:\Windows\setuperr.log
2013-08-23 20:20 - 2013-07-29 14:57 - 00000370 _____ C:\Windows\Tasks\One-Click Optimizer.job
2013-08-23 20:18 - 2011-12-05 17:31 - 00000000 ____D C:\Windows\Panther
2013-08-23 13:05 - 2013-04-21 20:07 - 00001147 _____ C:\Users\Marko\Desktop\Mediencenter.lnk
2013-08-23 13:05 - 2013-04-21 20:07 - 00001133 _____ C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mediencenter.lnk
2013-08-22 15:01 - 2013-08-22 15:01 - 00000000 ____D C:\Users\Marko\AppData\Roaming\dvdcss
2013-08-22 14:58 - 2013-08-22 14:58 - 00000687 _____ C:\Users\Marko\Desktop\MediaCoder x64.lnk
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder x64
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Broad Intelligence
2013-08-22 14:57 - 2013-08-22 14:55 - 68913986 _____ C:\Users\Marko\Downloads\MediaCoder-x64-0.8.25.5553.exe
2013-08-22 14:33 - 2012-01-03 18:30 - 00018944 _____ C:\Users\Marko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-08-22 14:31 - 2012-08-21 13:39 - 00000000 ____D C:\Users\Marko\AppData\Roaming\DivX
2013-08-22 14:30 - 2012-02-28 17:45 - 00000124 _____ C:\Users\Marko\Documents\ax_files.xml
2013-08-21 12:09 - 2011-12-06 19:45 - 00000000 ____D C:\ProgramData\ashampoo
2013-08-19 14:00 - 2013-08-19 14:00 - 00001168 _____ C:\Users\Public\Desktop\Memeo Instant Backup.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000954 _____ C:\Users\Public\Desktop\MEDION NAS TOOL.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Memeo
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Program Files (x86)\Memeo
2013-08-18 13:50 - 2013-08-18 13:50 - 02899663 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.cab
2013-08-18 13:50 - 2013-08-18 13:50 - 02427392 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.exe
2013-08-15 14:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-15 11:42 - 2013-03-01 12:06 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-08-14 22:26 - 2013-08-14 22:23 - 176212264 _____ (Kaspersky Lab) C:\Users\Marko\Downloads\kis13.0.1.4190de-de(2).exe
2013-08-14 22:25 - 2013-08-14 22:22 - 181393840 _____ C:\Users\Marko\Downloads\setup_11.0.0.1245.x01_2013_08_14_23_13.exe
2013-08-14 22:24 - 2013-08-14 22:24 - 02224290 _____ C:\Users\Marko\Downloads\tdsskiller.rar
2013-08-14 22:24 - 2013-07-11 11:28 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 22:18 - 2011-12-06 14:35 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-13 15:34 - 2013-08-13 15:34 - 09143640 _____ (Abelssoft                                                   ) C:\Users\Marko\Downloads\6773_2_ABS_2014_CB.exe
2013-08-13 15:32 - 2013-08-13 15:31 - 21991048 _____ (abylonsoft                                                  ) C:\Users\Marko\Downloads\6219_2_Cryptdrive_CB.exe
2013-08-12 11:28 - 2013-07-10 10:20 - 00000000 ____D C:\Users\_ocster_backup_
2013-08-09 15:16 - 2013-08-09 15:16 - 03128152 _____ C:\Users\Marko\Downloads\org.geometerplus.zlibrary.ui.android_106042.apk
2013-08-09 15:16 - 2013-08-09 15:16 - 00230586 _____ C:\Users\Marko\Downloads\org.fdroid.fdroid_40.apk
2013-08-09 15:15 - 2013-08-09 15:15 - 06113402 _____ C:\Users\Marko\Downloads\mapfactor_navigator_0_12_x.apk

Files to move or delete:
====================
C:\Users\Marko\AppData\Local\Temp\Quarantine.exe
C:\Users\Marko\AppData\Local\Temp\jrt\erunt\ERUNT.EXE

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-02 12:29

==================== End Of Log ============================
--- --- ---

--- --- ---

Alt 06.09.2013, 17:21   #12
schrauber
/// the machine
/// TB-Ausbilder
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst



ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 09.09.2013, 21:53   #13
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=3f04cb9835762d468f9925e0357fe8f3
# engine=15061
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-09-09 08:07:16
# local_time=2013-09-09 10:07:16 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 94 33165 244180526 25951 0
# compatibility_mode=5893 16776573 100 94 291704 130387086 0 0
# scanned=367954
# found=1
# cleaned=0
# scan_time=23893
sh=70A06FA361E2579DFFE87487EB51647F32193D1F ft=1 fh=a37171a2ff105d8e vn="Win32/Adware.Yontoo application" ac=I fn="D:\Sicherung_von_C\Marko\Downloads\BestVideoDownloaderSetup-TurboUpgrade.exe"
Code:
ATTFilter
 Results of screen317's Security Check version 0.99.72  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
Avira Desktop   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 AntiBrowserSpy     
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 JavaFX 2.1.1    
 Java(TM) 6 Update 31  
 Java 7 Update 25  
 Adobe Flash Player 11.8.800.94  
 Mozilla Firefox 18.0.1 Firefox out of Date!  
````````Process Check: objlist.exe by Laurent````````  
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
Kannst du mir bitte noch mal den Link für die FRST.exe einstellen, ist mir irgendwie abhanden gekommen

Alt 10.09.2013, 08:24   #14
schrauber
/// the machine
/// TB-Ausbilder
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Zitat:
D:\Sicherung_von_C\Marko\Downloads\BestVideoDownloaderSetup-TurboUpgrade.exe
von hand löschen

Firefox bitte updaten.

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 16.09.2013, 16:48   #15
mk72
 
Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Standard

Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


Hallo,

hat leider ein paar Tage gedauert, da ich verreist war- aber hier nun der log:


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-09-2013 01
Ran by Marko (administrator) on KOBOLT on 16-09-2013 17:41:19
Running from C:\Users\Marko\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avshadow.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\sched.exe
(Advanced Micro Devices, Inc.) C:\ATI\ATI.ACE\Fuel\Fuel.Service.exe
(mst software GmbH, Germany) E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Deutsche Telekom AG) E:\Programme\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe
(Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(StarWind Software) e:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Adobe Systems Incorporated) E:\Programme\Adobe\Photoshop Elements 11\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
() e:\Programme\Ocster Backup\bin\backupService-ox.exe
() e:\Programme\Ocster Backup\bin\oxHelper.exe
(TomTom) E:\Programme\TomTom\TomTom HOME 2\TomTomHOMEService.exe
(Logitech, Inc.) C:\Program Files\Logitech\FlowScroll\KhalScroll.exe
(Logitech, Inc.) E:\Programme\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() E:\Programme\Ocster Backup\bin\backupClient-ox.exe
(IvoSoft) E:\Programme\Classic Shell\ClassicStartMenu.exe
(Blue Onion Software) E:\Programme\Blue Onion Software\Desk Drive\DeskDrive.exe
(Microsoft) E:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Hyperionics Technology LLC) E:\Programme\FileBX\FileBX.exe
() E:\Programme\MadAppLauncher\MadAppLauncher.exe
() e:\Programme\Ocster Backup\bin\oxHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(Deutsche Telekom AG) C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\Mediencenter.exe
() E:\Programme\Rainmeter\Rainmeter.exe
(Visagesoft) E:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfprsrv.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) E:\Programme\Antivir\Avira\AntiVir Desktop\avgnt.exe
() E:\Programme\FileBX\Fbx32helper.exe
() C:\Program Files (x86)\Memeo\AutoBackup\InstantBackup.exe
(Advanced Micro Devices Inc.) C:\ATI\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\ATI\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
(Mozilla Corporation) E:\Programme\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [LogiScrollApp] - C:\Program Files\Logitech\FlowScroll\KhalScroll.exe [166680 2012-02-08] (Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] - E:\Programme\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Ocster Backup] - E:\Programme\Ocster Backup\bin\backupClient-ox.exe [312488 2013-07-02] ()
HKLM\...\Run: [Classic Start Menu] - E:\Programme\Classic Shell\ClassicStartMenu.exe [151552 2013-06-29] (IvoSoft)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [DeskDriveStartup] - E:\Programme\Blue Onion Software\Desk Drive\DeskDrive.exe [66048 2009-12-06] (Blue Onion Software)
HKCU\...\Run: [BrowserMask] - E:\Programme\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe [101280 2011-06-21] (Microsoft)
HKCU\...\Run: [AmazonMP3DownloaderHelper] - C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [10752 2012-01-31] ()
HKLM-x32\...\Run: [DivXMediaServer] - e:\Programme\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-05-20] (DivX, LLC)
HKLM-x32\...\Run: [vspdfprsrv.exe] - e:\Programme\Avanquest\PDF Experte 8 Ultimate\vspdfprsrv.exe [6082560 2012-04-23] (Visagesoft)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\ATI\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Memeo Instant Backup] - C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe [136416 2011-09-16] (Memeo Inc.)
HKLM-x32\...\Run: [avgnt] - E:\Programme\Antivir\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-04] (Avira Operations GmbH & Co. KG)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mediencenter.lnk
ShortcutTarget: Mediencenter.lnk -> C:\Users\Marko\AppData\Roaming\Telekom\MediencenterSync\Mediencenter.exe (Deutsche Telekom AG)
Startup: C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> E:\Programme\Rainmeter\Rainmeter.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.jan-records.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x10F897CE9304CA01
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKCU - {B8043587-EBE9-4754-9E02-4BD5899FE7BA} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=971163&p={searchTerms}
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - E:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll (Logitech, Inc.)
BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - E:\Programme\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - e:\Programme\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - E:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Programme\Java\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Programme\Java\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll (Logitech, Inc.)
BHO-x32: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - E:\Programme\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - E:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - E:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft)
DPF: HKLM-x32 {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} hxxp://download.gigabyte.com.tw/object/Dldrv.ocx
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Winsock: Catalog9 01 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 01 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 02 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 03 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 04 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 05 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 06 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 07 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 08 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9-x64 20 E:\Programme\Antivir\Avira\AntiVir Desktop\avsda64.dll [231480] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Path=C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-812850846-3816870413-364722810-1001\FireFox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @canon.com/MycameraPlugin - E:\Programme\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - e:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - e:\Programme\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - E:\Programme\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Users\Marko\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{5D3F3872-91E9-4d59-AD9F-AA174A3145DD}] - C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt
FF Extension: Logitech Flow Scroll - C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - e:\Programme\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - e:\Programme\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF StartMenuInternet: FIREFOX.EXE - e:\Programme\Mozilla Firefox\firefox.exe

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-07-17] (Adobe Systems)
R2 AdobeActiveFileMonitor11.0; E:\Programme\Adobe\Photoshop Elements 11\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-17] (Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\ATI\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; E:\Programme\Antivir\Avira\AntiVir Desktop\sched.exe [84024 2013-09-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; E:\Programme\Antivir\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-04] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; E:\Programme\Antivir\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-04] (Avira Operations GmbH & Co. KG)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 CGVPNCliSrvc; C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 DfSdkS; E:\Programme\Ashampoo\Ashampoo WinOptimizer 10\DfsdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany)
S2 LanmanWorkstation; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [45568 2009-07-14] (Microsoft Corporation)
R2 MCSWASVR; E:\Programme\Telekom\Mediencenter\DTAG.Mediencenter.BackgroundService.exe [12800 2011-11-23] (Deutsche Telekom AG)
S4 Nero BackItUp Scheduler 3; E:\Programme\Nero\Nero\Nero8\Nero BackItUp\NBService.exe [877864 2008-06-08] (Nero AG)
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [537896 2008-06-24] (Nero AG)
R2 ocster_backup; e:\Programme\Ocster Backup\bin\backupService-ox.exe [23720 2013-07-02] ()
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1900728 2013-06-09] (Microsoft Corporation)
S3 SandraAgentSrv; E:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe [68760 2008-09-05] (SiSoftware)
R2 StarWindServiceAE; e:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software)
R2 TomTomHOMEService; E:\Programme\TomTom\TomTom HOME 2\TomTomHOMEService.exe [92632 2012-08-28] (TomTom)
S4 McComponentHostService; "C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe" [x]
R2 Update-Service; %SystemRoot%\System32\UpdSvc.dll [x]
S4 vToolbarUpdater15.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe [x]

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\ATI\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-07-29] (AVG Technologies)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-06] (Avira Operations GmbH & Co. KG)
R2 cpuz135; C:\Windows\system32\drivers\cpuz135_x64.sys [21992 2011-09-21] (CPUID)
S3 etdrv; C:\Windows\etdrv.sys [25640 2012-02-01] (Windows (R) Server 2003 DDK provider)
S3 etdrv; C:\Windows\etdrv.sys [25640 2012-02-01] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2012-10-09] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2012-10-09] (Windows (R) Server 2003 DDK provider)
S3 GigasetGenericUSB_x64; C:\Windows\System32\DRIVERS\GigasetGenericUSB_x64.sys [54272 2009-02-20] (Siemens Home and Office Communication Devices GmbH & Co. KG)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-02-01] ()
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-02-01] ()
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [39728 2011-11-04] (Paragon Software Group)
R0 oodrvled; C:\Windows\System32\DRIVERS\oodrvled.sys [30800 2011-03-02] (O&O Software GmbH)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
S3 SANDRA; E:\Programme\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\WNt500x64\Sandra.sys [23112 2009-08-08] (SiSoftware)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-11-07] (Duplex Secure Ltd.)
R1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [59184 2011-11-04] (Windows (R) 2000 DDK provider)
R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [572336 2011-11-04] (Paragon)
R1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [352816 2011-11-04] (Paragon)
S2 AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S3 atillk64; \??\C:\Program Files (x86)\AMD\System Monitor\atillk64.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S0 TPkd; No ImagePath

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-16 17:25 - 2013-09-16 17:26 - 01951150 _____ (Farbar) C:\Users\Marko\Desktop\FRST64.exe
2013-09-16 13:24 - 2013-09-16 13:24 - 97757658 _____ C:\Windows\SysWOW64\ἵ뻼‘
2013-09-11 10:01 - 2013-08-10 07:22 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 10:01 - 2013-08-10 07:22 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 10:01 - 2013-08-10 07:22 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 10:01 - 2013-08-10 07:21 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 10:01 - 2013-08-10 07:21 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 10:01 - 2013-08-10 07:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 10:01 - 2013-08-10 07:20 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 10:01 - 2013-08-10 07:20 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 10:01 - 2013-08-10 07:20 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 10:01 - 2013-08-10 07:20 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 10:01 - 2013-08-10 07:20 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 10:01 - 2013-08-10 07:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 10:01 - 2013-08-10 07:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 10:01 - 2013-08-10 07:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 10:01 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-11 10:01 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-11 10:01 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-11 10:01 - 2013-08-10 05:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 10:01 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-11 10:01 - 2013-08-10 04:27 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 10:01 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-11 09:41 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 09:41 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 09:41 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-11 09:41 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-11 09:41 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-11 09:41 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-11 09:41 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-11 09:41 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 09:41 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-11 09:41 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 09:41 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-11 09:41 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-11 09:41 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-11 09:41 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-11 09:41 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-11 09:41 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 09:41 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-11 09:41 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-11 09:41 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-11 09:41 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-11 09:41 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-11 09:41 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 09:41 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-11 09:41 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 09:41 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-11 09:41 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-11 09:41 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-09 15:22 - 2013-09-09 15:22 - 02347384 _____ (ESET) C:\Users\Marko\Downloads\esetsmartinstaller_enu.exe
2013-09-09 15:00 - 2013-09-09 15:00 - 00000000 ____D C:\Users\Marko\Desktop\Polli
2013-09-06 15:13 - 2013-09-06 15:13 - 09999832 _____ C:\Users\Marko\Downloads\FreeFileSync_5.21_Windows_Setup.exe
2013-09-06 15:05 - 2013-09-06 15:05 - 04410648 _____ C:\Users\Marko\Downloads\CloudConnectforOffice1.1.0.exe
2013-09-06 15:05 - 2013-09-06 15:05 - 04138776 _____ C:\Users\Marko\Downloads\CloudConnectforOutlook1.0.0.exe
2013-09-06 15:04 - 2013-09-06 15:04 - 00836632 _____ C:\Users\Marko\Downloads\ASUSWebStorageRemoteDrive1.0.0.171.exe
2013-09-06 12:18 - 2013-09-06 12:18 - 00000000 ____D C:\Windows\ERUNT
2013-09-06 11:32 - 2013-09-06 11:44 - 00000000 ____D C:\AdwCleaner
2013-09-06 11:00 - 2013-09-06 11:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-06 11:00 - 2013-09-06 11:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-06 11:00 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-06 10:59 - 2013-09-06 10:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Marko\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-05 15:26 - 2013-09-05 15:52 - 00000000 ____D C:\Qoobox
2013-09-05 15:26 - 2013-09-05 15:48 - 00000000 ____D C:\Windows\erdnt
2013-09-05 15:26 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-09-05 15:26 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-09-05 15:26 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-09-05 15:26 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-09-05 15:22 - 2013-09-16 17:40 - 00000000 ____D C:\Users\Marko\Desktop\Trojaner-Board
2013-09-04 14:43 - 2013-09-04 14:43 - 00276496 _____ C:\Windows\Minidump\090413-21590-01.dmp
2013-09-04 14:22 - 2013-09-04 14:22 - 00000000 ____D C:\FRST
2013-09-04 14:08 - 2013-09-04 14:08 - 00000344 _____ C:\Users\Marko\defogger_reenable
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(3).exe
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(2).exe
2013-09-04 13:51 - 2013-09-04 13:51 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(1).exe
2013-09-02 17:15 - 2013-09-02 17:15 - 00000787 _____ C:\Users\Marko\Desktop\DivX Movies.lnk
2013-09-02 17:15 - 2013-09-02 17:15 - 00000754 _____ C:\Users\Public\Desktop\DivX Plus Player.lnk
2013-08-29 08:59 - 2013-08-29 08:59 - 05192704 _____ (Geza Kovacs) C:\Users\Marko\Downloads\unetbootin-windows-585.exe
2013-08-29 08:53 - 2013-08-29 08:53 - 00000000 ____D C:\Users\Marko\Desktop\Hausbau
2013-08-28 19:23 - 2013-08-28 19:23 - 616382464 _____ C:\Users\Marko\Downloads\rescue-system.iso
2013-08-28 16:21 - 2013-08-28 16:21 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Avira
2013-08-28 16:18 - 2013-09-04 11:36 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-08-28 16:17 - 2013-09-04 11:36 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-08-28 16:17 - 2013-09-04 11:36 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-08-28 16:17 - 2013-08-28 16:17 - 00000000 ____D C:\ProgramData\Avira
2013-08-28 16:17 - 2013-03-06 16:13 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-08-28 15:58 - 2013-08-28 15:59 - 110344048 _____ C:\Users\Marko\Downloads\avira_free4045_antivirus_de.exe
2013-08-28 15:46 - 2013-08-28 15:46 - 02733958 _____ C:\Users\Marko\Downloads\tdsskiller.zip
2013-08-28 15:40 - 2013-08-28 15:40 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck.exe
2013-08-27 13:39 - 2013-09-11 09:28 - 00098260 _____ C:\Windows\PFRO.log
2013-08-26 14:38 - 2013-08-26 15:04 - 00000000 ____D C:\Users\Marko\Desktop\Kaspersky
2013-08-25 18:15 - 2013-08-27 22:03 - 00000000 ____D C:\Users\Marko\AppData\Local\BewerbungsMaster
2013-08-25 18:14 - 2013-08-27 23:00 - 00000000 ____D C:\Users\Marko\Documents\BewerbungsMaster
2013-08-25 18:13 - 2013-08-25 18:13 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BewerbungsMaster
2013-08-25 18:07 - 2013-08-25 18:14 - 00335872 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2013-08-25 18:07 - 2013-08-25 18:14 - 00074752 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE
2013-08-25 18:06 - 2013-08-25 18:06 - 11616256 _____ C:\Users\Marko\Downloads\master71.exe
2013-08-25 17:23 - 2013-09-02 17:00 - 00000000 ____D C:\Users\Marko\Desktop\Nick_Ausbildung
2013-08-24 11:32 - 2013-09-16 13:23 - 00002397 _____ C:\Windows\setupact.log
2013-08-24 11:32 - 2013-08-24 11:32 - 00000000 _____ C:\Windows\setuperr.log
2013-08-22 15:01 - 2013-08-22 15:01 - 00000000 ____D C:\Users\Marko\AppData\Roaming\dvdcss
2013-08-22 14:58 - 2013-08-22 14:58 - 00000687 _____ C:\Users\Marko\Desktop\MediaCoder x64.lnk
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder x64
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Broad Intelligence
2013-08-22 14:55 - 2013-08-22 14:57 - 68913986 _____ C:\Users\Marko\Downloads\MediaCoder-x64-0.8.25.5553.exe
2013-08-19 14:10 - 2013-08-25 21:41 - 00000000 ____D C:\Users\Marko\MEDION NAS TOOL
2013-08-19 14:00 - 2013-08-19 14:00 - 00001168 _____ C:\Users\Public\Desktop\Memeo Instant Backup.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000954 _____ C:\Users\Public\Desktop\MEDION NAS TOOL.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Memeo
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Program Files (x86)\Memeo
2013-08-18 13:50 - 2013-08-18 13:50 - 02899663 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.cab
2013-08-18 13:50 - 2013-08-18 13:50 - 02427392 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.exe

==================== One Month Modified Files and Folders =======

2013-09-16 17:40 - 2013-09-05 15:22 - 00000000 ____D C:\Users\Marko\Desktop\Trojaner-Board
2013-09-16 17:26 - 2013-09-16 17:25 - 01951150 _____ (Farbar) C:\Users\Marko\Desktop\FRST64.exe
2013-09-16 17:17 - 2012-09-14 10:49 - 00000338 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2013-09-16 17:15 - 2012-03-21 16:30 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-16 14:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-16 13:48 - 2012-04-02 11:46 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-16 13:48 - 2012-01-16 23:34 - 01602639 _____ C:\Windows\WindowsUpdate.log
2013-09-16 13:48 - 2011-12-05 22:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-16 13:34 - 2012-08-03 17:25 - 00000000 ____D C:\Users\Marko\AppData\Local\Adobe
2013-09-16 13:33 - 2009-07-14 06:45 - 00015856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-16 13:33 - 2009-07-14 06:45 - 00015856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-16 13:31 - 2012-03-21 16:30 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-16 13:24 - 2013-09-16 13:24 - 97757658 _____ C:\Windows\SysWOW64\ἵ뻼‘
2013-09-16 13:23 - 2013-08-24 11:32 - 00002397 _____ C:\Windows\setupact.log
2013-09-16 13:23 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-15 13:25 - 2012-03-29 22:15 - 00075599 _____ C:\Windows\system32\log.xml
2013-09-15 13:25 - 2012-03-29 22:15 - 00000008 _____ C:\Windows\system32\log-suffix.xml
2013-09-15 11:27 - 2011-12-05 17:51 - 00000000 ___RD C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-15 11:27 - 2011-12-05 17:51 - 00000000 ___RD C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-11 10:37 - 2011-12-05 17:31 - 00000000 ____D C:\Windows\Panther
2013-09-11 10:37 - 2009-07-14 06:45 - 03584480 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-11 10:01 - 2013-07-11 11:28 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 09:48 - 2011-12-06 14:35 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-11 09:28 - 2013-08-27 13:39 - 00098260 _____ C:\Windows\PFRO.log
2013-09-09 15:25 - 2009-07-14 19:58 - 00700370 _____ C:\Windows\system32\perfh007.dat
2013-09-09 15:25 - 2009-07-14 19:58 - 00149184 _____ C:\Windows\system32\perfc007.dat
2013-09-09 15:25 - 2009-07-14 07:13 - 01622098 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-09 15:22 - 2013-09-09 15:22 - 02347384 _____ (ESET) C:\Users\Marko\Downloads\esetsmartinstaller_enu.exe
2013-09-09 15:00 - 2013-09-09 15:00 - 00000000 ____D C:\Users\Marko\Desktop\Polli
2013-09-06 15:13 - 2013-09-06 15:13 - 09999832 _____ C:\Users\Marko\Downloads\FreeFileSync_5.21_Windows_Setup.exe
2013-09-06 15:05 - 2013-09-06 15:05 - 04410648 _____ C:\Users\Marko\Downloads\CloudConnectforOffice1.1.0.exe
2013-09-06 15:05 - 2013-09-06 15:05 - 04138776 _____ C:\Users\Marko\Downloads\CloudConnectforOutlook1.0.0.exe
2013-09-06 15:04 - 2013-09-06 15:04 - 00836632 _____ C:\Users\Marko\Downloads\ASUSWebStorageRemoteDrive1.0.0.171.exe
2013-09-06 12:18 - 2013-09-06 12:18 - 00000000 ____D C:\Windows\ERUNT
2013-09-06 11:44 - 2013-09-06 11:32 - 00000000 ____D C:\AdwCleaner
2013-09-06 11:44 - 2011-12-05 17:51 - 00000000 ____D C:\Users\Marko
2013-09-06 11:00 - 2013-09-06 11:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-06 11:00 - 2013-09-06 11:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-06 10:59 - 2013-09-06 10:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Marko\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-05 16:46 - 2012-04-26 22:27 - 00003234 _____ C:\Windows\System32\Tasks\SidebarExecute
2013-09-05 15:52 - 2013-09-05 15:26 - 00000000 ____D C:\Qoobox
2013-09-05 15:52 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2013-09-05 15:48 - 2013-09-05 15:26 - 00000000 ____D C:\Windows\erdnt
2013-09-05 15:40 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2013-09-04 14:43 - 2013-09-04 14:43 - 00276496 _____ C:\Windows\Minidump\090413-21590-01.dmp
2013-09-04 14:43 - 2012-04-19 20:27 - 00000000 ____D C:\Windows\Minidump
2013-09-04 14:22 - 2013-09-04 14:22 - 00000000 ____D C:\FRST
2013-09-04 14:08 - 2013-09-04 14:08 - 00000344 _____ C:\Users\Marko\defogger_reenable
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(3).exe
2013-09-04 13:52 - 2013-09-04 13:52 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(2).exe
2013-09-04 13:51 - 2013-09-04 13:51 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck(1).exe
2013-09-04 11:36 - 2013-08-28 16:18 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-04 11:36 - 2013-08-28 16:17 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-04 11:36 - 2013-08-28 16:17 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-02 17:43 - 2012-04-04 12:07 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Mp3tag
2013-09-02 17:16 - 2012-03-19 17:27 - 00000000 ____D C:\Users\Marko\Desktop\Auto
2013-09-02 17:15 - 2013-09-02 17:15 - 00000787 _____ C:\Users\Marko\Desktop\DivX Movies.lnk
2013-09-02 17:15 - 2013-09-02 17:15 - 00000754 _____ C:\Users\Public\Desktop\DivX Plus Player.lnk
2013-09-02 17:15 - 2012-08-21 13:36 - 00000000 ____D C:\ProgramData\DivX
2013-09-02 17:00 - 2013-08-25 17:23 - 00000000 ____D C:\Users\Marko\Desktop\Nick_Ausbildung
2013-09-02 15:12 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-08-29 17:02 - 2013-02-03 18:03 - 00000000 ____D C:\Users\Marko\AppData\Local\Microsoft Help
2013-08-29 16:39 - 2013-07-19 13:45 - 00000000 ____D C:\Users\Marko\AppData\Roaming\onOne Software
2013-08-29 08:59 - 2013-08-29 08:59 - 05192704 _____ (Geza Kovacs) C:\Users\Marko\Downloads\unetbootin-windows-585.exe
2013-08-29 08:53 - 2013-08-29 08:53 - 00000000 ____D C:\Users\Marko\Desktop\Hausbau
2013-08-28 19:23 - 2013-08-28 19:23 - 616382464 _____ C:\Users\Marko\Downloads\rescue-system.iso
2013-08-28 16:21 - 2013-08-28 16:21 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Avira
2013-08-28 16:17 - 2013-08-28 16:17 - 00000000 ____D C:\ProgramData\Avira
2013-08-28 15:59 - 2013-08-28 15:58 - 110344048 _____ C:\Users\Marko\Downloads\avira_free4045_antivirus_de.exe
2013-08-28 15:47 - 2013-08-15 11:34 - 00000000 ____D C:\Users\Marko\Downloads\tdsskiller
2013-08-28 15:46 - 2013-08-28 15:46 - 02733958 _____ C:\Users\Marko\Downloads\tdsskiller.zip
2013-08-28 15:40 - 2013-08-28 15:40 - 00623003 _____ (No company) C:\Users\Marko\Downloads\LanmanCheck.exe
2013-08-27 23:00 - 2013-08-25 18:14 - 00000000 ____D C:\Users\Marko\Documents\BewerbungsMaster
2013-08-27 22:03 - 2013-08-25 18:15 - 00000000 ____D C:\Users\Marko\AppData\Local\BewerbungsMaster
2013-08-26 16:55 - 2012-03-23 11:34 - 00000000 ____D C:\ProgramData\firebird
2013-08-26 15:04 - 2013-08-26 14:38 - 00000000 ____D C:\Users\Marko\Desktop\Kaspersky
2013-08-26 14:53 - 2013-05-24 12:28 - 00002453 _____ C:\Users\Public\Desktop\SeaTools for Windows.lnk
2013-08-25 21:41 - 2013-08-19 14:10 - 00000000 ____D C:\Users\Marko\MEDION NAS TOOL
2013-08-25 18:14 - 2013-08-25 18:07 - 00335872 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2013-08-25 18:14 - 2013-08-25 18:07 - 00074752 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE
2013-08-25 18:13 - 2013-08-25 18:13 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BewerbungsMaster
2013-08-25 18:06 - 2013-08-25 18:06 - 11616256 _____ C:\Users\Marko\Downloads\master71.exe
2013-08-24 11:32 - 2013-08-24 11:32 - 00000000 _____ C:\Windows\setuperr.log
2013-08-23 20:20 - 2013-07-29 14:57 - 00000370 _____ C:\Windows\Tasks\One-Click Optimizer.job
2013-08-23 13:05 - 2013-04-21 20:07 - 00001147 _____ C:\Users\Marko\Desktop\Mediencenter.lnk
2013-08-23 13:05 - 2013-04-21 20:07 - 00001133 _____ C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mediencenter.lnk
2013-08-22 15:01 - 2013-08-22 15:01 - 00000000 ____D C:\Users\Marko\AppData\Roaming\dvdcss
2013-08-22 14:58 - 2013-08-22 14:58 - 00000687 _____ C:\Users\Marko\Desktop\MediaCoder x64.lnk
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder x64
2013-08-22 14:58 - 2013-08-22 14:58 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Broad Intelligence
2013-08-22 14:57 - 2013-08-22 14:55 - 68913986 _____ C:\Users\Marko\Downloads\MediaCoder-x64-0.8.25.5553.exe
2013-08-22 14:33 - 2012-01-03 18:30 - 00018944 _____ C:\Users\Marko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-08-22 14:31 - 2012-08-21 13:39 - 00000000 ____D C:\Users\Marko\AppData\Roaming\DivX
2013-08-22 14:30 - 2012-02-28 17:45 - 00000124 _____ C:\Users\Marko\Documents\ax_files.xml
2013-08-21 12:09 - 2011-12-06 19:45 - 00000000 ____D C:\ProgramData\ashampoo
2013-08-19 14:00 - 2013-08-19 14:00 - 00001168 _____ C:\Users\Public\Desktop\Memeo Instant Backup.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000954 _____ C:\Users\Public\Desktop\MEDION NAS TOOL.lnk
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Users\Marko\AppData\Roaming\Memeo
2013-08-19 14:00 - 2013-08-19 14:00 - 00000000 ____D C:\Program Files (x86)\Memeo
2013-08-18 13:50 - 2013-08-18 13:50 - 02899663 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.cab
2013-08-18 13:50 - 2013-08-18 13:50 - 02427392 _____ C:\Users\Marko\Downloads\WMWifiRouter-International.exe

Some content of TEMP:
====================
C:\Users\Marko\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-16 14:06

==================== End Of Log ============================
--- --- ---
Antwort
Seite 1 von 3 1 23

Themen zu Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst
adware/yontoo.gen2, aktion, aktivierung, anhang, antivir, beschädigt, datei, deaktiviert, entfernt, free, kaspersky, kis, leute, liste, malware, namen, neuinstallation, nicht mehr, nichts, problem, programm, schutz, unerwünschtes programm, virus, win, zugriff


« BKA Trojaner auf meinem Rechner | Windows 7: Google Links werden auf Werbung umgeleitet. »


Ähnliche Themen: Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst


  1. WIN7 Nach automatischen Updates keine Anmeldung möglich
    Alles rund um Windows - 17.11.2015 (23)
  2. Nach Win7 Installation keine Updates mehr u. CPU Frequenz ständig über 100% Virus ?
    Log-Analyse und Auswertung - 11.11.2015 (44)
  3. Nach Adware Cleaner Meldung: "Keine Internetverbindung". Keine Updates, kein Skype u.ä. mehr möglich!
    Antiviren-, Firewall- und andere Schutzprogramme - 08.01.2015 (15)
  4. Windows 8.1 macht nach Vierenbefall/Trojaner keine Updates mehr
    Log-Analyse und Auswertung - 06.08.2014 (11)
  5. Kaspersky kann nach Installation von Hotspot Shield keine Updates mehr downloaden!
    Plagegeister aller Art und deren Bekämpfung - 18.08.2013 (8)
  6. keine internetkonnektivität nach neuinstallation
    Netzwerk und Hardware - 01.10.2012 (14)
  7. Keine Treiber nach Neuinstallation von Win 7
    Alles rund um Windows - 18.07.2012 (8)
  8. Keine Verbindung zu iTunes, Avira Guard, Windows Updates nach Sirefef.CH-Bekämpfung
    Plagegeister aller Art und deren Bekämpfung - 09.01.2012 (9)
  9. Nach Entfernung SecurityShield keine Windows Firewall-Aktivierung mehr möglich
    Plagegeister aller Art und deren Bekämpfung - 29.12.2011 (13)
  10. Keine Updates & einige Installationen mehr möglich - infiziert nach Malware
    Log-Analyse und Auswertung - 13.01.2011 (25)
  11. keine Virenscanner Updates mehr nach Entfernung von System Tool
    Log-Analyse und Auswertung - 30.12.2010 (1)
  12. Byavubohido rundll32.exe<-- internet abbruch, und keine updates mehr, fenster fehler
    Plagegeister aller Art und deren Bekämpfung - 13.10.2010 (53)
  13. Keine Windows Updates möglich: Fehler 0x80072EFD
    Plagegeister aller Art und deren Bekämpfung - 03.10.2010 (1)
  14. Kann keine updates mehr machen mit kaspersky
    Log-Analyse und Auswertung - 03.02.2009 (18)
  15. keine Win2k Installation nach Fehler bei Linux
    Alles rund um Windows - 23.11.2008 (9)
  16. Keine .exe, Keine Updates, Keine https
    Log-Analyse und Auswertung - 09.09.2008 (16)
  17. Nach Neuinstallation ist keine Anmeldung mehr möglich
    Alles rund um Windows - 13.09.2006 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst - Hallo Leute, nach der I-Net-Suche zu meinem Problem bin ich bei euch gelandet. Folgendes Problem trat vor einer ganzen Weile auf: - KIS 2013- Schwarze Liste beschädigt, Selbstschutz deaktiviert, dann - Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst...
Archiv
Du betrachtest: Win 7 64 bit- Kaspersky IS 2013-keine Updates-keine Aktivierung nach Neuinstallation-Fehler 2 Arbeitsstationsdienst auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19