| |
| |||||||
Log-Analyse und Auswertung: Trend Micro Titanium Maximum Security lässt sich nicht einschaltenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
09.09.2013, 08:06
| #1 |
| |  Trend Micro Titanium Maximum Security lässt sich nicht einschalten "Pc-Probleme lösen" meldet mir, dass ich meinen Virenschutz aktivieren muss. Will ich dies tun, kommt das kleine Trend Micro Symbol mit dem ToolTip "wird gestartet" und verschwindet wieder. Dank Herr Google bin ich auf folgenden Thread gestoßen: http://www.trojaner-board.de/132073-...t-malware.html Ich hatte bereits im Vorfeld den Housecall Test von TrendMicro durchlaufen lassen: keine Befunde. Nun habe ich die drei Tools aus dem oben verlinkten Thread nach der Anleitung durchlaufen lassen. Logs folgen. Alle jedoch ohne Befund. Hat jemand eine Idee, was ich tun kann? MBAR (Malwarebytes Anti-Rootkit) Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1005
www.malwarebytes.org
Database version: v2013.09.09.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Daniel :: LENOVOG550 [administrator]
09.09.2013 07:51:28
mbar-log-2013-09-09 (07-51-28).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 227226
Time elapsed: 8 minute(s), 11 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
mit AV Scan auf "C:" --> Programm abgestürzt mit AV Scan auf "Quick" --> Programm abgestürzt mit AV Scan auf "(none)": Code:
ATTFilter aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-09-09 08:37:24
-----------------------------
08:37:24.765 OS Version: Windows x64 6.1.7601 Service Pack 1
08:37:24.765 Number of processors: 2 586 0x170A
08:37:24.766 ComputerName: LENOVOG550 UserName: Daniel
08:37:26.101 Initialize success
08:37:43.698 AVAST engine defs: 13090801
08:37:49.637 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
08:37:49.639 Disk 0 Vendor: WDC_WD3200BEVT-22ZCT0 11.01A11 Size: 305245MB BusType: 11
08:37:49.818 Disk 0 MBR read successfully
08:37:49.820 Disk 0 MBR scan
08:37:49.825 Disk 0 Windows 7 default MBR code
08:37:49.834 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
08:37:49.855 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 305143 MB offset 206848
08:37:49.916 Disk 0 scanning C:\Windows\system32\drivers
08:38:12.264 Service scanning
08:38:29.171 Modules scanning
08:38:29.179 Disk 0 trace - called modules:
08:38:29.243 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
08:38:29.247 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c3a060]
08:38:29.253 3 CLASSPNP.SYS[fffff880018c443f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004aa8060]
08:38:29.272 Scan finished successfully
08:38:43.987 Disk 0 MBR has been saved successfully to "C:\Users\Daniel\Desktop\MBR.dat"
08:38:43.993 The log file has been saved successfully to "C:\Users\Daniel\Desktop\aswMBR.txt"
Code:
ATTFilter 08:39:44.0330 0768 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:39:44.0923 0768 ============================================================
08:39:44.0923 0768 Current date / time: 2013/09/09 08:39:44.0923
08:39:44.0923 0768 SystemInfo:
08:39:44.0923 0768
08:39:44.0923 0768 OS Version: 6.1.7601 ServicePack: 1.0
08:39:44.0923 0768 Product type: Workstation
08:39:44.0923 0768 ComputerName: LENOVOG550
08:39:44.0924 0768 UserName: Daniel
08:39:44.0924 0768 Windows directory: C:\Windows
08:39:44.0924 0768 System windows directory: C:\Windows
08:39:44.0924 0768 Running under WOW64
08:39:44.0924 0768 Processor architecture: Intel x64
08:39:44.0924 0768 Number of processors: 2
08:39:44.0924 0768 Page size: 0x1000
08:39:44.0924 0768 Boot type: Normal boot
08:39:44.0924 0768 ============================================================
08:39:46.0092 0768 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:39:46.0100 0768 ============================================================
08:39:46.0100 0768 \Device\Harddisk0\DR0:
08:39:46.0100 0768 MBR partitions:
08:39:46.0100 0768 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
08:39:46.0100 0768 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x253FB800
08:39:46.0100 0768 ============================================================
08:39:46.0121 0768 C: <-> \Device\Harddisk0\DR0\Partition2
08:39:46.0121 0768 ============================================================
08:39:46.0121 0768 Initialize success
08:39:46.0121 0768 ============================================================
08:40:02.0533 1304 ============================================================
08:40:02.0533 1304 Scan started
08:40:02.0533 1304 Mode: Manual; SigCheck; TDLFS;
08:40:02.0533 1304 ============================================================
08:40:02.0900 1304 ================ Scan system memory ========================
08:40:02.0900 1304 System memory - ok
08:40:02.0900 1304 ================ Scan services =============================
08:40:03.0046 1304 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
08:40:03.0157 1304 1394ohci - ok
08:40:03.0188 1304 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:40:03.0208 1304 ACPI - ok
08:40:03.0234 1304 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:40:03.0288 1304 AcpiPmi - ok
08:40:03.0332 1304 [ 2E68544BCE94DE6677F700CF1D582B6D ] ACPIVPC C:\Windows\system32\DRIVERS\AcpiVpc.sys
08:40:03.0348 1304 ACPIVPC - ok
08:40:03.0428 1304 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:40:03.0441 1304 AdobeARMservice - ok
08:40:03.0500 1304 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
08:40:03.0523 1304 adp94xx - ok
08:40:03.0550 1304 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
08:40:03.0569 1304 adpahci - ok
08:40:03.0577 1304 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
08:40:03.0592 1304 adpu320 - ok
08:40:03.0626 1304 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:40:03.0757 1304 AeLookupSvc - ok
08:40:03.0837 1304 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
08:40:03.0919 1304 AFD - ok
08:40:03.0963 1304 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
08:40:03.0977 1304 agp440 - ok
08:40:04.0022 1304 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
08:40:04.0083 1304 ALG - ok
08:40:04.0111 1304 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
08:40:04.0124 1304 aliide - ok
08:40:04.0129 1304 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
08:40:04.0142 1304 amdide - ok
08:40:04.0150 1304 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
08:40:04.0189 1304 AmdK8 - ok
08:40:04.0195 1304 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
08:40:04.0222 1304 AmdPPM - ok
08:40:04.0249 1304 [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:40:04.0262 1304 amdsata - ok
08:40:04.0297 1304 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
08:40:04.0313 1304 amdsbs - ok
08:40:04.0319 1304 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:40:04.0333 1304 amdxata - ok
08:40:04.0437 1304 [ 1E7B61301E75B734BC2D60DB0E15183B ] Amsp C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
08:40:04.0455 1304 Amsp - ok
08:40:04.0482 1304 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
08:40:04.0648 1304 AppID - ok
08:40:04.0678 1304 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:40:04.0727 1304 AppIDSvc - ok
08:40:04.0762 1304 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
08:40:04.0805 1304 Appinfo - ok
08:40:04.0873 1304 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
08:40:04.0923 1304 AppMgmt - ok
08:40:04.0957 1304 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
08:40:04.0972 1304 arc - ok
08:40:04.0988 1304 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
08:40:05.0004 1304 arcsas - ok
08:40:05.0032 1304 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:40:05.0090 1304 AsyncMac - ok
08:40:05.0105 1304 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
08:40:05.0119 1304 atapi - ok
08:40:05.0173 1304 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:40:05.0257 1304 AudioEndpointBuilder - ok
08:40:05.0279 1304 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:40:05.0323 1304 AudioSrv - ok
08:40:05.0352 1304 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:40:05.0434 1304 AxInstSV - ok
08:40:05.0475 1304 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
08:40:05.0520 1304 b06bdrv - ok
08:40:05.0548 1304 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:40:05.0570 1304 b57nd60a - ok
08:40:05.0603 1304 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
08:40:05.0661 1304 BDESVC - ok
08:40:05.0670 1304 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
08:40:05.0725 1304 Beep - ok
08:40:05.0768 1304 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
08:40:05.0835 1304 BFE - ok
08:40:05.0881 1304 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
08:40:05.0963 1304 BITS - ok
08:40:06.0022 1304 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
08:40:06.0069 1304 blbdrive - ok
08:40:06.0142 1304 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:40:06.0180 1304 bowser - ok
08:40:06.0209 1304 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
08:40:06.0245 1304 BrFiltLo - ok
08:40:06.0252 1304 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
08:40:06.0274 1304 BrFiltUp - ok
08:40:06.0311 1304 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
08:40:06.0348 1304 Browser - ok
08:40:06.0367 1304 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:40:06.0434 1304 Brserid - ok
08:40:06.0439 1304 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:40:06.0473 1304 BrSerWdm - ok
08:40:06.0478 1304 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:40:06.0498 1304 BrUsbMdm - ok
08:40:06.0504 1304 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:40:06.0526 1304 BrUsbSer - ok
08:40:06.0572 1304 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
08:40:06.0602 1304 BthEnum - ok
08:40:06.0607 1304 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
08:40:06.0640 1304 BTHMODEM - ok
08:40:06.0667 1304 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
08:40:06.0698 1304 BthPan - ok
08:40:06.0751 1304 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
08:40:06.0797 1304 BTHPORT - ok
08:40:06.0829 1304 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
08:40:06.0866 1304 bthserv - ok
08:40:06.0920 1304 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
08:40:06.0964 1304 BTHUSB - ok
08:40:07.0000 1304 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:40:07.0061 1304 cdfs - ok
08:40:07.0093 1304 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
08:40:07.0109 1304 cdrom - ok
08:40:07.0128 1304 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
08:40:07.0180 1304 CertPropSvc - ok
08:40:07.0193 1304 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
08:40:07.0236 1304 circlass - ok
08:40:07.0260 1304 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
08:40:07.0280 1304 CLFS - ok
08:40:07.0330 1304 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:40:07.0342 1304 clr_optimization_v2.0.50727_32 - ok
08:40:07.0366 1304 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:40:07.0378 1304 clr_optimization_v2.0.50727_64 - ok
08:40:07.0404 1304 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
08:40:07.0426 1304 CmBatt - ok
08:40:07.0454 1304 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:40:07.0469 1304 cmdide - ok
08:40:07.0507 1304 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
08:40:07.0601 1304 CNG - ok
08:40:07.0680 1304 [ 7247A4D0875F5F28919E0787E11B7B57 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
08:40:07.0716 1304 CnxtHdAudService - ok
08:40:07.0735 1304 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
08:40:07.0751 1304 Compbatt - ok
08:40:07.0757 1304 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
08:40:07.0792 1304 CompositeBus - ok
08:40:07.0815 1304 COMSysApp - ok
08:40:07.0829 1304 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
08:40:07.0842 1304 crcdisk - ok
08:40:07.0885 1304 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:40:07.0929 1304 CryptSvc - ok
08:40:07.0966 1304 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
08:40:08.0041 1304 CSC - ok
08:40:08.0074 1304 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
08:40:08.0122 1304 CscService - ok
08:40:08.0172 1304 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:40:08.0234 1304 DcomLaunch - ok
08:40:08.0265 1304 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
08:40:08.0324 1304 defragsvc - ok
08:40:08.0358 1304 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:40:08.0406 1304 DfsC - ok
08:40:08.0430 1304 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
08:40:08.0491 1304 Dhcp - ok
08:40:08.0496 1304 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
08:40:08.0548 1304 discache - ok
08:40:08.0579 1304 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
08:40:08.0593 1304 Disk - ok
08:40:08.0634 1304 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
08:40:08.0694 1304 dmvsc - ok
08:40:08.0726 1304 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:40:08.0795 1304 Dnscache - ok
08:40:08.0832 1304 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
08:40:08.0887 1304 dot3svc - ok
08:40:08.0898 1304 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
08:40:08.0946 1304 DPS - ok
08:40:08.0996 1304 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:40:09.0027 1304 drmkaud - ok
08:40:09.0073 1304 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:40:09.0113 1304 DXGKrnl - ok
08:40:09.0132 1304 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
08:40:09.0191 1304 EapHost - ok
08:40:09.0295 1304 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
08:40:09.0425 1304 ebdrv - ok
08:40:09.0456 1304 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
08:40:09.0495 1304 EFS - ok
08:40:09.0565 1304 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:40:09.0654 1304 ehRecvr - ok
08:40:09.0677 1304 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
08:40:09.0703 1304 ehSched - ok
08:40:09.0738 1304 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
08:40:09.0761 1304 elxstor - ok
08:40:09.0775 1304 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:40:09.0799 1304 ErrDev - ok
08:40:09.0852 1304 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
08:40:09.0912 1304 EventSystem - ok
08:40:09.0928 1304 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
08:40:09.0968 1304 exfat - ok
08:40:09.0976 1304 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:40:10.0026 1304 fastfat - ok
08:40:10.0063 1304 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
08:40:10.0150 1304 Fax - ok
08:40:10.0165 1304 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
08:40:10.0191 1304 fdc - ok
08:40:10.0231 1304 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
08:40:10.0284 1304 fdPHost - ok
08:40:10.0299 1304 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
08:40:10.0356 1304 FDResPub - ok
08:40:10.0382 1304 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:40:10.0397 1304 FileInfo - ok
08:40:10.0405 1304 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:40:10.0463 1304 Filetrace - ok
08:40:10.0469 1304 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
08:40:10.0485 1304 flpydisk - ok
08:40:10.0503 1304 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:40:10.0524 1304 FltMgr - ok
08:40:10.0604 1304 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
08:40:10.0666 1304 FontCache - ok
08:40:10.0711 1304 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:40:10.0723 1304 FontCache3.0.0.0 - ok
08:40:10.0737 1304 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:40:10.0750 1304 FsDepends - ok
08:40:10.0774 1304 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:40:10.0786 1304 Fs_Rec - ok
08:40:10.0812 1304 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:40:10.0832 1304 fvevol - ok
08:40:10.0848 1304 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
08:40:10.0861 1304 gagp30kx - ok
08:40:10.0905 1304 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
08:40:10.0960 1304 gpsvc - ok
08:40:10.0980 1304 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:40:11.0019 1304 hcw85cir - ok
08:40:11.0059 1304 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:40:11.0094 1304 HdAudAddService - ok
08:40:11.0115 1304 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
08:40:11.0141 1304 HDAudBus - ok
08:40:11.0156 1304 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
08:40:11.0177 1304 HidBatt - ok
08:40:11.0187 1304 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
08:40:11.0209 1304 HidBth - ok
08:40:11.0215 1304 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
08:40:11.0233 1304 HidIr - ok
08:40:11.0261 1304 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
08:40:11.0299 1304 hidserv - ok
08:40:11.0312 1304 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
08:40:11.0326 1304 HidUsb - ok
08:40:11.0345 1304 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:40:11.0405 1304 hkmsvc - ok
08:40:11.0426 1304 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:40:11.0463 1304 HomeGroupListener - ok
08:40:11.0493 1304 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:40:11.0520 1304 HomeGroupProvider - ok
08:40:11.0526 1304 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:40:11.0540 1304 HpSAMD - ok
08:40:11.0577 1304 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:40:11.0641 1304 HTTP - ok
08:40:11.0646 1304 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:40:11.0660 1304 hwpolicy - ok
08:40:11.0676 1304 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
08:40:11.0691 1304 i8042prt - ok
08:40:11.0715 1304 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:40:11.0736 1304 iaStorV - ok
08:40:11.0791 1304 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:40:11.0825 1304 idsvc - ok
08:40:11.0831 1304 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
08:40:11.0845 1304 iirsp - ok
08:40:11.0890 1304 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
08:40:11.0961 1304 IKEEXT - ok
08:40:11.0970 1304 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
08:40:11.0984 1304 intelide - ok
08:40:12.0001 1304 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
08:40:12.0029 1304 intelppm - ok
08:40:12.0050 1304 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:40:12.0109 1304 IPBusEnum - ok
08:40:12.0121 1304 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:40:12.0158 1304 IpFilterDriver - ok
08:40:12.0184 1304 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:40:12.0236 1304 iphlpsvc - ok
08:40:12.0243 1304 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:40:12.0258 1304 IPMIDRV - ok
08:40:12.0265 1304 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:40:12.0311 1304 IPNAT - ok
08:40:12.0328 1304 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:40:12.0360 1304 IRENUM - ok
08:40:12.0366 1304 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:40:12.0379 1304 isapnp - ok
08:40:12.0403 1304 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:40:12.0422 1304 iScsiPrt - ok
08:40:12.0433 1304 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
08:40:12.0447 1304 kbdclass - ok
08:40:12.0465 1304 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
08:40:12.0486 1304 kbdhid - ok
08:40:12.0502 1304 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
08:40:12.0516 1304 KeyIso - ok
08:40:12.0534 1304 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:40:12.0547 1304 KSecDD - ok
08:40:12.0554 1304 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:40:12.0570 1304 KSecPkg - ok
08:40:12.0583 1304 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:40:12.0629 1304 ksthunk - ok
08:40:12.0658 1304 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
08:40:12.0715 1304 KtmRm - ok
08:40:12.0746 1304 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
08:40:12.0794 1304 LanmanServer - ok
08:40:12.0821 1304 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:40:12.0870 1304 LanmanWorkstation - ok
08:40:12.0909 1304 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:40:12.0955 1304 lltdio - ok
08:40:12.0981 1304 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:40:13.0032 1304 lltdsvc - ok
08:40:13.0060 1304 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:40:13.0108 1304 lmhosts - ok
08:40:13.0128 1304 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
08:40:13.0143 1304 LSI_FC - ok
08:40:13.0159 1304 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
08:40:13.0172 1304 LSI_SAS - ok
08:40:13.0178 1304 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
08:40:13.0192 1304 LSI_SAS2 - ok
08:40:13.0205 1304 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
08:40:13.0219 1304 LSI_SCSI - ok
08:40:13.0233 1304 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
08:40:13.0286 1304 luafv - ok
08:40:13.0301 1304 MBAMSwissArmy - ok
08:40:13.0348 1304 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:40:13.0378 1304 Mcx2Svc - ok
08:40:13.0400 1304 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
08:40:13.0412 1304 megasas - ok
08:40:13.0421 1304 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
08:40:13.0441 1304 MegaSR - ok
08:40:13.0482 1304 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
08:40:13.0533 1304 MMCSS - ok
08:40:13.0546 1304 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
08:40:13.0603 1304 Modem - ok
08:40:13.0623 1304 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:40:13.0657 1304 monitor - ok
08:40:13.0671 1304 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:40:13.0687 1304 mouclass - ok
08:40:13.0725 1304 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:40:13.0755 1304 mouhid - ok
08:40:13.0767 1304 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:40:13.0782 1304 mountmgr - ok
08:40:13.0824 1304 [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:40:13.0839 1304 MozillaMaintenance - ok
08:40:13.0847 1304 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
08:40:13.0867 1304 mpio - ok
08:40:13.0873 1304 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:40:13.0916 1304 mpsdrv - ok
08:40:13.0962 1304 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:40:14.0024 1304 MpsSvc - ok
08:40:14.0054 1304 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:40:14.0079 1304 MRxDAV - ok
08:40:14.0111 1304 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:40:14.0169 1304 mrxsmb - ok
08:40:14.0187 1304 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:40:14.0207 1304 mrxsmb10 - ok
08:40:14.0219 1304 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:40:14.0234 1304 mrxsmb20 - ok
08:40:14.0259 1304 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
08:40:14.0272 1304 msahci - ok
08:40:14.0287 1304 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:40:14.0301 1304 msdsm - ok
08:40:14.0329 1304 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
08:40:14.0359 1304 MSDTC - ok
08:40:14.0383 1304 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:40:14.0436 1304 Msfs - ok
08:40:14.0456 1304 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:40:14.0510 1304 mshidkmdf - ok
08:40:14.0518 1304 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:40:14.0532 1304 msisadrv - ok
08:40:14.0567 1304 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:40:14.0620 1304 MSiSCSI - ok
08:40:14.0625 1304 msiserver - ok
08:40:14.0662 1304 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:40:14.0734 1304 MSKSSRV - ok
08:40:14.0749 1304 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:40:14.0802 1304 MSPCLOCK - ok
08:40:14.0827 1304 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:40:14.0888 1304 MSPQM - ok
08:40:14.0916 1304 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:40:14.0938 1304 MsRPC - ok
08:40:14.0962 1304 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
08:40:14.0977 1304 mssmbios - ok
08:40:14.0996 1304 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:40:15.0045 1304 MSTEE - ok
08:40:15.0050 1304 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
08:40:15.0074 1304 MTConfig - ok
08:40:15.0080 1304 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
08:40:15.0094 1304 Mup - ok
08:40:15.0125 1304 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
08:40:15.0186 1304 napagent - ok
08:40:15.0230 1304 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:40:15.0266 1304 NativeWifiP - ok
08:40:15.0299 1304 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
08:40:15.0354 1304 NDIS - ok
08:40:15.0375 1304 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:40:15.0413 1304 NdisCap - ok
08:40:15.0440 1304 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:40:15.0478 1304 NdisTapi - ok
08:40:15.0484 1304 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:40:15.0536 1304 Ndisuio - ok
08:40:15.0552 1304 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:40:15.0603 1304 NdisWan - ok
08:40:15.0609 1304 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:40:15.0646 1304 NDProxy - ok
08:40:15.0651 1304 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:40:15.0704 1304 NetBIOS - ok
08:40:15.0712 1304 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:40:15.0752 1304 NetBT - ok
08:40:15.0771 1304 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
08:40:15.0784 1304 Netlogon - ok
08:40:15.0828 1304 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
08:40:15.0894 1304 Netman - ok
08:40:15.0922 1304 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
08:40:15.0983 1304 netprofm - ok
08:40:16.0008 1304 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:40:16.0023 1304 NetTcpPortSharing - ok
08:40:16.0196 1304 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
08:40:16.0381 1304 netw5v64 - ok
08:40:16.0399 1304 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
08:40:16.0413 1304 nfrd960 - ok
08:40:16.0450 1304 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
08:40:16.0507 1304 NlaSvc - ok
08:40:16.0513 1304 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:40:16.0552 1304 Npfs - ok
08:40:16.0566 1304 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
08:40:16.0624 1304 nsi - ok
08:40:16.0641 1304 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:40:16.0689 1304 nsiproxy - ok
08:40:16.0756 1304 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:40:16.0830 1304 Ntfs - ok
08:40:16.0854 1304 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
08:40:16.0906 1304 Null - ok
08:40:16.0945 1304 [ C5C2250DBFF2F0EA1BC3C5978A409E50 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
08:40:16.0956 1304 NVHDA - ok
08:40:17.0239 1304 [ 704297AD1DF59AA4AB2EF89A81778DE8 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
08:40:17.0619 1304 nvlddmkm - ok
08:40:17.0688 1304 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:40:17.0703 1304 nvraid - ok
08:40:17.0711 1304 [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:40:17.0726 1304 nvstor - ok
08:40:17.0764 1304 [ 2485623C572A7BE1F3AE13031FF5EBBB ] nvsvc C:\Windows\system32\nvvsvc.exe
08:40:17.0781 1304 nvsvc - ok
08:40:17.0804 1304 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:40:17.0818 1304 nv_agp - ok
08:40:17.0823 1304 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:40:17.0845 1304 ohci1394 - ok
08:40:17.0905 1304 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:40:17.0918 1304 ose - ok
08:40:18.0083 1304 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:40:18.0266 1304 osppsvc - ok
08:40:18.0304 1304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:40:18.0359 1304 p2pimsvc - ok
08:40:18.0388 1304 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
08:40:18.0409 1304 p2psvc - ok
08:40:18.0441 1304 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
08:40:18.0466 1304 Parport - ok
08:40:18.0497 1304 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:40:18.0511 1304 partmgr - ok
08:40:18.0520 1304 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
08:40:18.0559 1304 PcaSvc - ok
08:40:18.0576 1304 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
08:40:18.0593 1304 pci - ok
08:40:18.0608 1304 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
08:40:18.0620 1304 pciide - ok
08:40:18.0638 1304 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
08:40:18.0656 1304 pcmcia - ok
08:40:18.0662 1304 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
08:40:18.0676 1304 pcw - ok
08:40:18.0742 1304 [ 20372BE109FEE1C37E2D5216680DB9EB ] PDF Architect Helper Service C:\Program Files (x86)\PDF Architect\HelperService.exe
08:40:18.0796 1304 PDF Architect Helper Service - ok
08:40:18.0839 1304 [ B90A279073A815A4AA2C45A09EE004FA ] PDF Architect Service C:\Program Files (x86)\PDF Architect\ConversionService.exe
08:40:18.0873 1304 PDF Architect Service - ok
08:40:18.0885 1304 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:40:18.0948 1304 PEAUTH - ok
08:40:18.0994 1304 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
08:40:19.0073 1304 PeerDistSvc - ok
08:40:19.0140 1304 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:40:19.0156 1304 PerfHost - ok
08:40:19.0244 1304 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
08:40:19.0338 1304 pla - ok
08:40:19.0392 1304 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:40:19.0427 1304 PlugPlay - ok
08:40:19.0442 1304 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:40:19.0469 1304 PNRPAutoReg - ok
08:40:19.0477 1304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:40:19.0495 1304 PNRPsvc - ok
08:40:19.0525 1304 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:40:19.0582 1304 PolicyAgent - ok
08:40:19.0605 1304 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
08:40:19.0660 1304 Power - ok
08:40:19.0697 1304 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:40:19.0750 1304 PptpMiniport - ok
08:40:19.0764 1304 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
08:40:19.0778 1304 Processor - ok
08:40:19.0810 1304 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
08:40:19.0864 1304 ProfSvc - ok
08:40:19.0884 1304 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:40:19.0899 1304 ProtectedStorage - ok
08:40:19.0932 1304 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:40:19.0977 1304 Psched - ok
08:40:20.0032 1304 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
08:40:20.0091 1304 ql2300 - ok
08:40:20.0102 1304 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
08:40:20.0116 1304 ql40xx - ok
08:40:20.0137 1304 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
08:40:20.0160 1304 QWAVE - ok
08:40:20.0165 1304 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:40:20.0194 1304 QWAVEdrv - ok
08:40:20.0208 1304 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:40:20.0246 1304 RasAcd - ok
08:40:20.0284 1304 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:40:20.0322 1304 RasAgileVpn - ok
08:40:20.0340 1304 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
08:40:20.0389 1304 RasAuto - ok
08:40:20.0405 1304 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:40:20.0458 1304 Rasl2tp - ok
08:40:20.0487 1304 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
08:40:20.0529 1304 RasMan - ok
08:40:20.0535 1304 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:40:20.0581 1304 RasPppoe - ok
08:40:20.0602 1304 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:40:20.0641 1304 RasSstp - ok
08:40:20.0678 1304 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:40:20.0735 1304 rdbss - ok
08:40:20.0743 1304 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
08:40:20.0767 1304 rdpbus - ok
08:40:20.0782 1304 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:40:20.0820 1304 RDPCDD - ok
08:40:20.0850 1304 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
08:40:20.0882 1304 RDPDR - ok
08:40:20.0901 1304 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:40:20.0951 1304 RDPENCDD - ok
08:40:20.0958 1304 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:40:20.0996 1304 RDPREFMP - ok
08:40:21.0039 1304 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:40:21.0095 1304 RDPWD - ok
08:40:21.0136 1304 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:40:21.0152 1304 rdyboost - ok
08:40:21.0177 1304 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:40:21.0217 1304 RemoteAccess - ok
08:40:21.0250 1304 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:40:21.0309 1304 RemoteRegistry - ok
08:40:21.0336 1304 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
08:40:21.0363 1304 RFCOMM - ok
08:40:21.0390 1304 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:40:21.0436 1304 RpcEptMapper - ok
08:40:21.0457 1304 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
08:40:21.0488 1304 RpcLocator - ok
08:40:21.0513 1304 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
08:40:21.0556 1304 RpcSs - ok
08:40:21.0582 1304 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:40:21.0620 1304 rspndr - ok
08:40:21.0647 1304 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
08:40:21.0676 1304 s3cap - ok
08:40:21.0696 1304 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
08:40:21.0710 1304 SamSs - ok
08:40:21.0752 1304 [ F758025811001CBBDA8448A8AC29D73F ] SAService C:\Windows\system32\SAsrv.exe
08:40:21.0771 1304 SAService - ok
08:40:21.0785 1304 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:40:21.0800 1304 sbp2port - ok
08:40:21.0826 1304 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:40:21.0868 1304 SCardSvr - ok
08:40:21.0884 1304 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:40:21.0938 1304 scfilter - ok
08:40:21.0973 1304 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
08:40:22.0056 1304 Schedule - ok
08:40:22.0070 1304 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
08:40:22.0107 1304 SCPolicySvc - ok
08:40:22.0124 1304 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:40:22.0155 1304 SDRSVC - ok
08:40:22.0201 1304 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:40:22.0249 1304 secdrv - ok
08:40:22.0266 1304 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
08:40:22.0303 1304 seclogon - ok
08:40:22.0316 1304 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
08:40:22.0369 1304 SENS - ok
08:40:22.0384 1304 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:40:22.0439 1304 SensrSvc - ok
08:40:22.0459 1304 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
08:40:22.0486 1304 Serenum - ok
08:40:22.0499 1304 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
08:40:22.0527 1304 Serial - ok
08:40:22.0532 1304 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
08:40:22.0563 1304 sermouse - ok
08:40:22.0594 1304 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
08:40:22.0642 1304 SessionEnv - ok
08:40:22.0647 1304 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:40:22.0668 1304 sffdisk - ok
08:40:22.0673 1304 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:40:22.0696 1304 sffp_mmc - ok
08:40:22.0701 1304 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:40:22.0728 1304 sffp_sd - ok
08:40:22.0733 1304 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
08:40:22.0760 1304 sfloppy - ok
08:40:22.0786 1304 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:40:22.0836 1304 SharedAccess - ok
08:40:22.0905 1304 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:40:22.0948 1304 ShellHWDetection - ok
08:40:22.0963 1304 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
08:40:22.0977 1304 SiSRaid2 - ok
08:40:22.0994 1304 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
08:40:23.0008 1304 SiSRaid4 - ok
08:40:23.0104 1304 [ 9CD1BB2DB803B6AC642BD643DDB773BC ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
08:40:23.0120 1304 SkypeUpdate - ok
08:40:23.0151 1304 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:40:23.0199 1304 Smb - ok
08:40:23.0232 1304 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:40:23.0249 1304 SNMPTRAP - ok
08:40:23.0263 1304 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
08:40:23.0277 1304 spldr - ok
08:40:23.0308 1304 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
08:40:23.0356 1304 Spooler - ok
08:40:23.0453 1304 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
08:40:23.0715 1304 sppsvc - ok
08:40:23.0731 1304 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:40:23.0773 1304 sppuinotify - ok
08:40:23.0807 1304 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
08:40:23.0874 1304 srv - ok
08:40:23.0898 1304 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:40:23.0932 1304 srv2 - ok
08:40:23.0955 1304 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:40:23.0970 1304 srvnet - ok
08:40:24.0006 1304 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:40:24.0047 1304 SSDPSRV - ok
08:40:24.0066 1304 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:40:24.0107 1304 SstpSvc - ok
08:40:24.0156 1304 [ 394BC2EEC0D81F70B80B0D951665A690 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
08:40:24.0174 1304 Steam Client Service - ok
08:40:24.0211 1304 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
08:40:24.0224 1304 stexstor - ok
08:40:24.0265 1304 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
08:40:24.0329 1304 stisvc - ok
08:40:24.0353 1304 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
08:40:24.0366 1304 storflt - ok
08:40:24.0391 1304 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
08:40:24.0445 1304 StorSvc - ok
08:40:24.0464 1304 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
08:40:24.0477 1304 storvsc - ok
08:40:24.0501 1304 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
08:40:24.0514 1304 swenum - ok
08:40:24.0549 1304 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
08:40:24.0606 1304 swprv - ok
08:40:24.0662 1304 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
08:40:24.0743 1304 SysMain - ok
08:40:24.0760 1304 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:40:24.0796 1304 TabletInputService - ok
08:40:24.0815 1304 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
08:40:24.0869 1304 TapiSrv - ok
08:40:24.0885 1304 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
08:40:24.0925 1304 TBS - ok
08:40:24.0996 1304 [ DB74544B75566C974815E79A62433F29 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:40:25.0071 1304 Tcpip - ok
08:40:25.0131 1304 [ DB74544B75566C974815E79A62433F29 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:40:25.0172 1304 TCPIP6 - ok
08:40:25.0198 1304 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:40:25.0248 1304 tcpipreg - ok
08:40:25.0270 1304 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:40:25.0306 1304 TDPIPE - ok
08:40:25.0334 1304 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:40:25.0363 1304 TDTCP - ok
08:40:25.0390 1304 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:40:25.0428 1304 tdx - ok
08:40:25.0433 1304 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
08:40:25.0447 1304 TermDD - ok
08:40:25.0489 1304 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
08:40:25.0559 1304 TermService - ok
08:40:25.0576 1304 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
08:40:25.0598 1304 Themes - ok
08:40:25.0612 1304 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
08:40:25.0651 1304 THREADORDER - ok
08:40:25.0715 1304 [ 0236C23F66473DD99248BC3E7C5A433F ] tmactmon C:\Windows\system32\DRIVERS\tmactmon.sys
08:40:25.0725 1304 tmactmon - ok
08:40:25.0752 1304 [ 46EDB648C1B5C3ABD76BD5E912DAC026 ] tmcomm C:\Windows\system32\DRIVERS\tmcomm.sys
08:40:25.0764 1304 tmcomm - ok
08:40:25.0820 1304 [ 9D86A57FB83E39A967CD8D3AAE8A170A ] TMEBC C:\Windows\system32\DRIVERS\TMEBC64.sys
08:40:25.0830 1304 TMEBC - ok
08:40:25.0838 1304 [ C2E07FB90E9B02096A20E01A562BDCF7 ] tmevtmgr C:\Windows\system32\DRIVERS\tmevtmgr.sys
08:40:25.0850 1304 tmevtmgr - ok
08:40:25.0871 1304 [ 48951FBFFFCAE52FADFCDFB76ED19749 ] tmtdi C:\Windows\system32\DRIVERS\tmtdi.sys
08:40:25.0882 1304 tmtdi - ok
08:40:25.0911 1304 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
08:40:25.0969 1304 TrkWks - ok
08:40:26.0015 1304 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:40:26.0071 1304 TrustedInstaller - ok
08:40:26.0113 1304 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:40:26.0159 1304 tssecsrv - ok
08:40:26.0189 1304 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:40:26.0222 1304 TsUsbFlt - ok
08:40:26.0236 1304 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
08:40:26.0262 1304 TsUsbGD - ok
08:40:26.0285 1304 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:40:26.0335 1304 tunnel - ok
08:40:26.0340 1304 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
08:40:26.0355 1304 uagp35 - ok
08:40:26.0376 1304 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:40:26.0427 1304 udfs - ok
08:40:26.0460 1304 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:40:26.0484 1304 UI0Detect - ok
08:40:26.0499 1304 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:40:26.0512 1304 uliagpkx - ok
08:40:26.0537 1304 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
08:40:26.0558 1304 umbus - ok
08:40:26.0563 1304 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
08:40:26.0581 1304 UmPass - ok
08:40:26.0614 1304 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
08:40:26.0646 1304 UmRdpService - ok
08:40:26.0669 1304 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
08:40:26.0731 1304 upnphost - ok
08:40:26.0771 1304 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:40:26.0797 1304 usbccgp - ok
08:40:26.0832 1304 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:40:26.0849 1304 usbcir - ok
08:40:26.0855 1304 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
08:40:26.0884 1304 usbehci - ok
08:40:26.0921 1304 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:40:26.0955 1304 usbhub - ok
08:40:26.0973 1304 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
08:40:26.0995 1304 usbohci - ok
08:40:27.0007 1304 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
08:40:27.0038 1304 usbprint - ok
08:40:27.0049 1304 [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:40:27.0068 1304 USBSTOR - ok
08:40:27.0088 1304 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
08:40:27.0114 1304 usbuhci - ok
08:40:27.0160 1304 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
08:40:27.0193 1304 usbvideo - ok
08:40:27.0228 1304 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
08:40:27.0293 1304 UxSms - ok
08:40:27.0312 1304 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
08:40:27.0330 1304 VaultSvc - ok
08:40:27.0361 1304 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:40:27.0375 1304 vdrvroot - ok
08:40:27.0413 1304 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
08:40:27.0483 1304 vds - ok
08:40:27.0515 1304 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:40:27.0532 1304 vga - ok
08:40:27.0544 1304 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
08:40:27.0594 1304 VgaSave - ok
08:40:27.0602 1304 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
08:40:27.0618 1304 vhdmp - ok
08:40:27.0623 1304 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
08:40:27.0637 1304 viaide - ok
08:40:27.0660 1304 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
08:40:27.0676 1304 vmbus - ok
08:40:27.0696 1304 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
08:40:27.0716 1304 VMBusHID - ok
08:40:27.0731 1304 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:40:27.0744 1304 volmgr - ok
08:40:27.0763 1304 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:40:27.0782 1304 volmgrx - ok
08:40:27.0791 1304 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:40:27.0809 1304 volsnap - ok
08:40:27.0817 1304 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
08:40:27.0832 1304 vsmraid - ok
08:40:27.0897 1304 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
08:40:28.0001 1304 VSS - ok
08:40:28.0015 1304 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
08:40:28.0046 1304 vwifibus - ok
08:40:28.0070 1304 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
08:40:28.0123 1304 W32Time - ok
08:40:28.0149 1304 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
08:40:28.0174 1304 WacomPen - ok
08:40:28.0211 1304 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:40:28.0264 1304 WANARP - ok
08:40:28.0284 1304 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:40:28.0321 1304 Wanarpv6 - ok
08:40:28.0375 1304 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
08:40:28.0478 1304 wbengine - ok
08:40:28.0499 1304 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:40:28.0523 1304 WbioSrvc - ok
08:40:28.0546 1304 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:40:28.0589 1304 wcncsvc - ok
08:40:28.0602 1304 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:40:28.0660 1304 WcsPlugInService - ok
08:40:28.0682 1304 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
08:40:28.0695 1304 Wd - ok
08:40:28.0719 1304 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:40:28.0744 1304 Wdf01000 - ok
08:40:28.0761 1304 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:40:28.0860 1304 WdiServiceHost - ok
08:40:28.0864 1304 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:40:28.0885 1304 WdiSystemHost - ok
08:40:28.0900 1304 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
08:40:28.0935 1304 WebClient - ok
08:40:28.0960 1304 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:40:29.0020 1304 Wecsvc - ok
08:40:29.0035 1304 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:40:29.0076 1304 wercplsupport - ok
08:40:29.0105 1304 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
08:40:29.0145 1304 WerSvc - ok
08:40:29.0173 1304 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:40:29.0211 1304 WfpLwf - ok
08:40:29.0245 1304 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:40:29.0260 1304 WIMMount - ok
08:40:29.0280 1304 WinDefend - ok
08:40:29.0286 1304 WinHttpAutoProxySvc - ok
08:40:29.0350 1304 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:40:29.0408 1304 Winmgmt - ok
08:40:29.0500 1304 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
08:40:29.0593 1304 WinRM - ok
08:40:29.0651 1304 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
08:40:29.0686 1304 WinUsb - ok
08:40:29.0729 1304 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
08:40:29.0770 1304 Wlansvc - ok
08:40:29.0790 1304 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
08:40:29.0805 1304 WmiAcpi - ok
08:40:29.0838 1304 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:40:29.0870 1304 wmiApSrv - ok
08:40:29.0895 1304 WMPNetworkSvc - ok
08:40:29.0914 1304 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:40:29.0947 1304 WPCSvc - ok
08:40:29.0963 1304 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:40:29.0998 1304 WPDBusEnum - ok
08:40:30.0029 1304 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:40:30.0066 1304 ws2ifsl - ok
08:40:30.0079 1304 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
08:40:30.0118 1304 wscsvc - ok
08:40:30.0122 1304 WSearch - ok
08:40:30.0209 1304 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
08:40:30.0311 1304 wuauserv - ok
08:40:30.0329 1304 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:40:30.0377 1304 WudfPf - ok
08:40:30.0397 1304 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:40:30.0446 1304 WUDFRd - ok
08:40:30.0472 1304 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:40:30.0510 1304 wudfsvc - ok
08:40:30.0533 1304 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
08:40:30.0567 1304 WwanSvc - ok
08:40:30.0588 1304 ================ Scan global ===============================
08:40:30.0615 1304 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:40:30.0647 1304 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:40:30.0657 1304 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:40:30.0691 1304 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:40:30.0724 1304 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:40:30.0729 1304 [Global] - ok
08:40:30.0729 1304 ================ Scan MBR ==================================
08:40:30.0745 1304 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:40:31.0029 1304 \Device\Harddisk0\DR0 - ok
08:40:31.0030 1304 ================ Scan VBR ==================================
08:40:31.0033 1304 [ 3D6DBC0118A658225DF1693677DD92CB ] \Device\Harddisk0\DR0\Partition1
08:40:31.0035 1304 \Device\Harddisk0\DR0\Partition1 - ok
08:40:31.0071 1304 [ 555B645595ACC89C87DACF813B755E28 ] \Device\Harddisk0\DR0\Partition2
08:40:31.0073 1304 \Device\Harddisk0\DR0\Partition2 - ok
08:40:31.0074 1304 ============================================================
08:40:31.0074 1304 Scan finished
08:40:31.0074 1304 ============================================================
08:40:31.0089 2276 Detected object count: 0
08:40:31.0089 2276 Actual detected object count: 0
08:41:56.0122 2584 Deinitialize success
|
|
09.09.2013, 08:24
| #2 |
| /// Malwareteam   | Trend Micro Titanium Maximum Security lässt sich nicht einschalten Mein Name ist Heiko und ich werde dir helfen. Ich habe dein Thema in Arbeit und melde mich so schnell als möglich mit weiteren Anweisungen.  Bitte beachte, dass alle meine Antworten zuerst von einem Ausbilder freigegeben werden müssen, bevor ich diese hier posten darf. Dies garantiert, dass Du Hilfe von einem ausgebildeten Helfer bekommst. Ich bedanke mich für deine Geduld 
__________________ |
|
09.09.2013, 08:46
| #3 |
| /// Malwareteam | Trend Micro Titanium Maximum Security lässt sich nicht einschaltenEine Bereinigung ist mitunter mit viel Arbeit für Dich verbunden.
Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der Schnellere und immer der sicherste Weg. Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis dir jemand vom Team sagt, dass Du clean bist. Vista und Win7 User Alle Tools mit Rechtsklick "als Administrator ausführen" starten. Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
09.09.2013, 09:47
| #4 |
| | Trend Micro Titanium Maximum Security lässt sich nicht einschalten Hallo Heiko, vielen Dank, dass Du dich um mich kümmerst! hier die Log-Files: Addition.txt: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-09-2013
Ran by Daniel at 2013-09-09 10:41:12
Running from C:\Users\Daniel\Desktop
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
Tools for .Net 3.5 - DEU Lang Pack (x32 Version: 3.11.50727)
Tools for .Net 3.5 (x32 Version: 3.11.50727)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
Blend for Visual Studio 2012 (x32 Version: 5.0.30709.0)
Blend for Visual Studio 2012 DEU resources (x32 Version: 5.0.30709.0)
Conexant HD Audio (Version: 4.119.0.60)
DAEMON Tools Lite (x32 Version: 4.47.1.0333)
Devenv-Ressourcen für Microsoft Visual Studio 2012 (x32 Version: 11.0.50727)
Dota 2 (x32)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4521.29298)
Dotfuscator and Analytics Community Edition Language Pack (x32 Version: 5.5.4521.29298)
dows-Treiberpaket - Lenovo (ACPIVPC) System (05/19/2009 4.4.0.1) (Version: 05/19/2009 4.4.0.1)
Dropbox (HKCU Version: 2.0.26)
Energy Management (x32 Version: 4.4.1.0)
Entity Framework Designer für Visual Studio 2012 - DEU (x32 Version: 11.1.20702.00)
Erforderliche Komponenten für SSDT (x32 Version: 11.0.2100.60)
IIS 8.0 Express (Version: 8.0.1557)
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
King Arthur - The Role-playing Wargame Demo (x32)
LocalESPC (x32 Version: 8.59.25584)
LocalESPCui for de-de (x32 Version: 8.59.25584)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (x32 Version: 4.5.50709)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (x32 Version: 4.5.50709)
Microsoft .NET Framework 4.5 SDK (x32 Version: 4.5.50709)
Microsoft ASP.NET MVC 3 - DEU (x32 Version: 3.0.20105.0)
Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update - DEU (x32 Version: 3.0.30710.0)
Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update (x32 Version: 3.0.30710.0)
Microsoft ASP.NET MVC 3 (x32 Version: 3.0.20105.0)
Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools - DEU (x32 Version: 4.0.20710.0)
Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools (x32 Version: 4.0.20710.0)
Microsoft ASP.NET MVC 4 Runtime - DEU (x32 Version: 4.0.20710.0)
Microsoft ASP.NET MVC 4 Runtime (x32 Version: 4.0.20710.0)
Microsoft ASP.NET Web Pages - DEU (x32 Version: 1.0.20105.0)
Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools - DEU (x32 Version: 1.0.20710.0)
Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools (x32 Version: 1.0.20710.0)
Microsoft ASP.NET Web Pages (x32 Version: 1.0.20105.0)
Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools - DEU (x32 Version: 2.0.20710.0)
Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools (x32 Version: 2.0.20710.0)
Microsoft ASP.NET Web Pages 2 Runtime - DEU (x32 Version: 2.0.20710.0)
Microsoft ASP.NET Web Pages 2 Runtime (x32 Version: 2.0.20710.0)
Microsoft Help Viewer 2.0 (x32 Version: 2.0.50727)
Microsoft Help Viewer 2.0 Language Pack - DEU (x32 Version: 2.0.50727)
Microsoft LightSwitch for Visual Studio 2012 Core (x32 Version: 11.0.50727)
Microsoft LightSwitch für Visual Studio 2012 CoreRes - DEU (x32 Version: 11.0.50727)
Microsoft NuGet - Visual Studio 2012 (x32 Version: 2.0.30625.9003)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4763.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Professional 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.4763.1000)
Microsoft Portable Library Multi-Targeting Pack (x32 Version: 11.0.50709.17929)
Microsoft Portable Library Multi-Targeting Pack Language Pack - deu (x32 Version: 11.0.50709.17929)
Microsoft Report Viewer Add-On for Visual Studio 2012 (x32 Version: 11.1.2802.16)
Microsoft Report Viewer Add-On für Visual Studio 2012 (x32 Version: 11.1.2802.16)
Microsoft Silverlight (x32 Version: 5.1.10411.0)
Microsoft Silverlight 4 SDK - Deutsch (x32 Version: 4.0.60310.0)
Microsoft Silverlight 5 SDK - DEU (x32 Version: 5.0.61118.0)
Microsoft SQL Server 2012 Command Line Utilities (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Data-Tier App Framework (Version: 11.0.2316.0)
Microsoft SQL Server 2012 Data-Tier App Framework (x32 Version: 11.0.2316.0)
Microsoft SQL Server 2012 Express LocalDB (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects (x32 Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects (x64) (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Native Client (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Transact-SQL Compiler Service (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (Version: 11.0.2100.60)
Microsoft SQL Server 2012 T-SQL Language Service (x32 Version: 11.0.2100.60)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (Version: 4.0.8876.1)
Microsoft SQL Server Data Tools - DEU (11.1.20627.00) (x32 Version: 11.1.20627.00)
Microsoft SQL Server Data Tools Build Utilities - DEU (11.1.20627.00) (x32 Version: 11.1.20627.00)
Microsoft SQL Server System CLR Types (x32 Version: 10.50.1600.1)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1600.1)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2012 x64 Designtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 Compilers - DEU Resources (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 Compilers (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 Core Libraries (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 Extended Libraries (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 11.0.50727)
Microsoft Visual Studio 2010 Office Developer Tools (x64) Language Pack - DEU (Version: 11.0.50727)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31125)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31130)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.31125)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (Version: 10.0.31125)
Microsoft Visual Studio 2012 Devenv (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 IntelliTrace Core amd64 (Version: 11.0.50727)
Microsoft Visual Studio 2012 IntelliTrace Core x86 (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 IntelliTrace Front End x86 (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 IntelliTraceFrontEndLoc (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 IntelliTraceLoc (Version: 11.0.50727)
Microsoft Visual Studio 2012 IntelliTraceLoc (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 SharePoint Developer Tools (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 SharePoint Developer Tools DEU Language Pack (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 Shell (Minimum) (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 Shell-(Mindest)-Ressourcen (x32 Version: 11.0.50727)
Microsoft Visual Studio 2012 Tools für SQL Server Compact 4.0 SP1 DEU (x32 Version: 4.0.8876.1)
Microsoft Visual Studio 2012-Leistungserfassungstools - DEU (Version: 11.0.50727)
Microsoft Visual Studio 2012-Leistungserfassungstools (Version: 11.0.50727)
Microsoft Visual Studio 2012-Vorbereitung (x32 Version: 11.0.50727)
Microsoft Visual Studio Premium 2012 - DEU (x32 Version: 11.0.50727)
Microsoft Visual Studio Premium 2012 (x32 Version: 11.0.50727)
Microsoft Visual Studio Professional 2012 - DEU (x32 Version: 11.0.50727)
Microsoft Visual Studio Professional 2012 (x32 Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Object Model (Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - DEU (Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Storyboarding (Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Storyboarding Language Pack - DEU (Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer (x32 Version: 11.0.50727)
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - DEU (x32 Version: 11.0.50727)
Microsoft Visual Studio Ultimate 2012 - DEU (x32 Version: 11.0.50727)
Microsoft Visual Studio Ultimate 2012 (x32 Version: 11.0.50727)
Microsoft Visual Studio Ultimate 2012 (x32 Version: 11.0.50727.26)
Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core (x32 Version: 11.0.50727)
Microsoft Visual Studio Ultimate 2012 XAML UI Designer deu Resources (x32 Version: 11.0.50727)
Microsoft Web Deploy 3.0 (Version: 3.1236.1631)
Microsoft Web Deploy dbSqlPackage Provider - DEU (x32 Version: 10.3.20225.0)
Microsoft Web Developer Tools - Visual Studio 2012 - DEU (x32 Version: 1.0.30710.0)
Microsoft Web Developer Tools - Visual Studio 2012 (x32 Version: 1.0.30710.0)
Microsoft Web Platform Installer 4.0 (Version: 4.0.1622)
Microsoft-System-CLR-Typen für SQL Server 2012 (x32 Version: 11.0.2100.60)
Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (Version: 11.0.2100.60)
Might & Magic: Heroes VI - Demo (x32)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
NVIDIA Drivers (Version: 1.10.57.35)
NVIDIA PhysX (x32 Version: 9.09.0814)
PDF Architect (x32 Version: 1.1.83.9982)
PDFCreator (x32 Version: 1.7.1)
PreEmptive Analytics Client German Language Pack (x32 Version: 1.0.2180.1)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.2180.1)
Secure Download Manager (x32 Version: 3.1.10)
Sid Meier's Civilization V (x32)
Skype™ 6.7 (x32 Version: 6.7.102)
Snap.Do (x32 Version: 1.102.1.11691)
Steam (x32 Version: 1.0.0.0)
Trend Micro Titanium (Version: 6.00)
Trend Micro Titanium Maximum Security (Version: 6.0)
Update for (KB2504637) (x32 Version: 1)
Visual Studio 2012 Prerequisites - DEU Language Pack (Version: 11.0.50727)
Visual Studio 2012 Prerequisites (Version: 11.0.50727)
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 1.0.8514.0)
VLC media player 2.1.0-rc1 (Version: 2.1.0-rc1)
WCF Data Services 5.0 (for OData v3) DEU Language Pack (x32 Version: 5.0.50628.0)
WCF Data Services 5.0 (for OData v3) Primary Components (x32 Version: 5.0.50628.0)
WCF Data Services Tools for Microsoft Visual Studio 2012 (x32 Version: 5.0.50710.0)
WCF Data Services Tools for Visual Studio 11 DEU Language Pack (x32 Version: 5.0.50710.0)
WCF RIA Services V1.0 SP2 (x32 Version: 4.1.61829.0)
Windows App Certification Kit Native Components (Version: 8.59.25584)
Windows App Certification Kit x64 (x32 Version: 8.59.25584)
Windows Runtime Intellisense Content - de-de (x32 Version: 8.59.25584)
Windows Software Development Kit (x32 Version: 8.59.25584)
Windows Software Development Kit DirectX x64 Remote (Version: 8.59.25584)
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.25584)
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.59.25584)
==================== Restore Points =========================
07-09-2013 20:05:07 DirectX wurde installiert
07-09-2013 21:08:02 DirectX wurde installiert
07-09-2013 23:18:41 Windows Update
08-09-2013 16:41:24 Windows Update
08-09-2013 16:54:31 Windows-Sicherung
08-09-2013 17:00:02 Windows-Sicherung
08-09-2013 17:02:04 Windows Update
08-09-2013 17:31:33 DirectX wurde installiert
09-09-2013 07:18:12 Secure Download Manager wird installiert
09-09-2013 07:48:25 Gerätetreiber-Paketinstallation: DT Soft Ltd Systemgeräte
09-09-2013 07:51:41 Microsoft Visual Studio Ultimate 2012
09-09-2013 07:53:17 Windows Update
09-09-2013 08:14:37 DirectX wurde installiert
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {48BF8A48-0F8E-44FC-B945-31FEA6A5B40C} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-21] (Microsoft Corporation)
Task: {63E81D7A-67F6-404A-A51E-3C26145039CA} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {9494C62B-0E39-4DFD-AE86-D46CA4D18EC1} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\System32\sdengin2.dll [2010-11-21] (Microsoft Corporation)
==================== Loaded Modules (whitelisted) =============
2010-02-03 21:32 - 2010-02-03 21:32 - 04459624 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-06-05 19:17 - 2013-06-05 19:17 - 00164016 _____ (Dropbox, Inc.) C:\Users\Daniel\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
2010-02-04 00:24 - 2010-02-04 00:24 - 00244840 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2010-02-03 21:32 - 2010-02-03 21:32 - 01323112 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-09-07 02:17 - 2013-02-04 16:11 - 00174728 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll
2013-09-07 02:17 - 2013-01-28 10:26 - 00373784 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\SEShellExt.dll
2013-09-07 01:52 - 2012-07-13 13:35 - 00098032 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\utilDebugLog.dll
2013-09-07 01:52 - 2012-05-02 21:27 - 00049664 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_49.dll
2013-09-07 01:52 - 2012-07-13 13:36 - 00582632 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\utilInstallation.dll
2013-09-07 01:52 - 2012-07-13 13:35 - 00093400 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\utilComponentInfo.dll
2013-09-07 01:52 - 2012-07-13 13:36 - 00090816 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\utilMsgBuffer.dll
2013-09-07 01:52 - 2012-07-13 13:35 - 00030552 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\utilGenericLoader.dll
2013-09-07 01:52 - 2012-07-13 13:36 - 00016136 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\utilThread.dll
2013-09-07 01:52 - 2012-07-13 13:32 - 00382312 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\outer_AMSP_ClientLibrary.dll
2013-09-07 01:52 - 2012-07-13 13:36 - 00107808 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\utilIPC.dll
2013-09-07 01:52 - 2012-07-13 13:36 - 00138208 _____ (Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\utilRPC.dll
2010-02-04 00:24 - 2010-02-04 00:24 - 00150632 _____ (NVIDIA Corporation) C:\Windows\system32\Nv3DAppShExt.dll
2013-09-05 17:55 - 2009-07-15 15:55 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll
2013-09-05 17:55 - 2009-07-15 15:55 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll
2013-09-07 04:17 - 2013-09-07 04:17 - 01374208 _____ (Conexant Systems, Inc) C:\Windows\assembly\NativeImages_v2.0.50727_32\SmartAudio\aed7f57529c40f47aee95b212e9e3a9e\SmartAudio.ni.exe
2013-09-07 04:17 - 2013-09-07 04:17 - 00253952 _____ ( ) C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.CxHDAudioAP#\e0329e50f7f58d4d923d3e31469e7069\Interop.CxHDAudioAPILib.ni.dll
2013-09-05 17:37 - 2010-05-05 14:59 - 00335872 _____ (Conexant Systems, Inc) C:\Program Files\Conexant\SAII\de-DE\SmartAudio.resources.dll
2013-09-05 17:37 - 2010-04-30 16:14 - 00933432 ____N (Conexant Systems, Inc.) C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll
2013-09-05 17:37 - 2010-05-05 14:49 - 06475776 _____ (Conexant Systems, Inc) C:\Program Files\Conexant\SAII\en-US\SmartAudio.resources.dll
2013-09-05 17:37 - 2009-12-10 16:20 - 00017464 ____N (Conexant Systems, Inc.) C:\Program Files\Conexant\SAII\CXHDMI.DLL
2012-11-14 01:32 - 2012-11-14 01:32 - 03558400 _____ (wxWidgets development team) C:\Users\Daniel\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
2013-03-13 22:48 - 2013-03-13 22:48 - 24978944 _____ () C:\Users\Daniel\AppData\Roaming\Dropbox\bin\libcef.dll
2013-03-13 22:48 - 2013-03-13 22:48 - 09956864 _____ (The ICU Project) C:\Users\Daniel\AppData\Roaming\Dropbox\bin\icudt.dll
2013-09-05 18:08 - 2013-08-28 23:47 - 00288680 _____ (Valve Corporation) C:\Program Files (x86)\Steam\crashhandler.dll
2013-07-15 14:32 - 2013-07-16 00:32 - 02895272 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steam.dll
2013-08-28 13:47 - 2013-08-28 23:47 - 10654632 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steamui.dll
2013-08-21 14:18 - 2013-08-22 00:18 - 00687104 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2013-08-28 13:47 - 2013-08-28 23:47 - 00263080 _____ (Valve Corporation) C:\Program Files (x86)\Steam\tier0_s.dll
2013-08-28 13:47 - 2013-08-28 23:47 - 00236456 _____ (Valve Corporation) C:\Program Files (x86)\Steam\vstdlib_s.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00122864 _____ (Valve) C:\Program Files (x86)\Steam\CSERHelper.dll
2013-08-28 13:47 - 2013-08-28 23:47 - 00169384 _____ (Valve Corporation) C:\Program Files (x86)\Steam\bin\filesystem_stdio.DLL
2013-08-28 13:47 - 2013-08-28 23:47 - 00694696 _____ (Valve Corporation) C:\Program Files (x86)\Steam\bin\vgui2_s.DLL
2013-08-28 13:47 - 2013-08-28 23:47 - 01120680 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2013-08-07 11:31 - 2013-08-07 21:31 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 09955112 _____ (The ICU Project) C:\Program Files (x86)\Steam\bin\icudt.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2013-08-28 13:47 - 2013-08-28 23:47 - 07745960 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steamclient.dll
2013-08-28 13:47 - 2013-08-28 23:47 - 02449832 _____ (Valve Corporation) c:\program files (x86)\steam\bin\friendsui.DLL
2013-08-28 13:47 - 2013-08-28 23:47 - 01804712 _____ (Valve Corporation) c:\program files (x86)\steam\bin\serverbrowser.DLL
2013-09-05 17:39 - 2013-08-14 19:55 - 03551640 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-06-05 19:17 - 2013-06-05 19:17 - 00130736 _____ (Dropbox, Inc.) C:\Users\Daniel\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
==================== Alternate Data Streams (whitelisted) ==========
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/09/2013 10:34:53 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: SnapDo.exe, Version: 1.102.1.11691, Zeitstempel: 0x51fe8633
Name des fehlerhaften Moduls: mscorwks.dll, Version: 2.0.50727.5472, Zeitstempel: 0x5174dd69
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00001a00
ID des fehlerhaften Prozesses: 0x%9
Startzeit der fehlerhaften Anwendung: 0xSnapDo.exe0
Pfad der fehlerhaften Anwendung: SnapDo.exe1
Pfad des fehlerhaften Moduls: SnapDo.exe2
Berichtskennung: SnapDo.exe3
Error: (09/09/2013 10:34:53 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 2.0.50727.5472 - Schwerwiegender Fehler im Ausführungsmodul (73ADF7AE) (80131506).
Error: (09/09/2013 08:37:01 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: aswMBR.exe, Version: 0.9.9.1771, Zeitstempel: 0x5147644e
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18205, Zeitstempel: 0x51db9710
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0002e41b
ID des fehlerhaften Prozesses: 0xca8
Startzeit der fehlerhaften Anwendung: 0xaswMBR.exe0
Pfad der fehlerhaften Anwendung: aswMBR.exe1
Pfad des fehlerhaften Moduls: aswMBR.exe2
Berichtskennung: aswMBR.exe3
Error: (09/09/2013 08:33:16 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: aswMBR.exe, Version: 0.9.9.1771, Zeitstempel: 0x5147644e
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18205, Zeitstempel: 0x51db9710
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0002e3be
ID des fehlerhaften Prozesses: 0xc2c
Startzeit der fehlerhaften Anwendung: 0xaswMBR.exe0
Pfad der fehlerhaften Anwendung: aswMBR.exe1
Pfad des fehlerhaften Moduls: aswMBR.exe2
Berichtskennung: aswMBR.exe3
Error: (09/08/2013 07:05:38 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/08/2013 06:49:41 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/08/2013 10:52:05 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/07/2013 10:40:25 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CivilizationV_DX11.exe, Version: 1.0.3.80, Zeitstempel: 0x52171629
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17725, Zeitstempel: 0x4ec49b8f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00038dc9
ID des fehlerhaften Prozesses: 0xa04
Startzeit der fehlerhaften Anwendung: 0xCivilizationV_DX11.exe0
Pfad der fehlerhaften Anwendung: CivilizationV_DX11.exe1
Pfad des fehlerhaften Moduls: CivilizationV_DX11.exe2
Berichtskennung: CivilizationV_DX11.exe3
Error: (09/07/2013 10:09:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 23.0.1.4974, Zeitstempel: 0x520bc252
Name des fehlerhaften Moduls: xul.dll, Version: 23.0.1.4974, Zeitstempel: 0x520bc166
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0017af08
ID des fehlerhaften Prozesses: 0x2f0
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3
Error: (09/07/2013 09:52:27 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (09/09/2013 07:50:43 AM) (Source: mbamchameleon) (User: )
Description: \Device\HarddiskVolume2\PROGRAM FILES\TREND MICRO\UNICLIENT\UIFRMWRK\UIWATCHDOG.EXE
Error: (09/09/2013 07:50:42 AM) (Source: mbamchameleon) (User: )
Description: \Device\HarddiskVolume2\PROGRAM FILES\TREND MICRO\UNICLIENT\UIFRMWRK\UIWATCHDOG.EXE
Error: (09/09/2013 07:50:42 AM) (Source: mbamchameleon) (User: )
Description: \Device\HarddiskVolume2\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
Error: (09/09/2013 07:50:41 AM) (Source: mbamchameleon) (User: )
Description: \Device\HarddiskVolume2\PROGRAM FILES\TREND MICRO\UNICLIENT\UIFRMWRK\UIWATCHDOG.EXE
Error: (09/08/2013 07:04:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Conexant SmartAudio service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (09/08/2013 06:48:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Conexant SmartAudio service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (09/08/2013 10:50:47 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Conexant SmartAudio service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (09/08/2013 10:49:22 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Conexant SmartAudio service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (09/08/2013 01:19:06 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Error: (09/07/2013 09:51:12 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Conexant SmartAudio service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Microsoft Office Sessions:
=========================
Error: (09/09/2013 10:34:53 AM) (Source: Application Error)(User: )
Description: SnapDo.exe1.102.1.1169151fe8633mscorwks.dll2.0.50727.54725174dd69c000000500001a00
Error: (09/09/2013 10:34:53 AM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 2.0.50727.5472 - Schwerwiegender Fehler im Ausführungsmodul (73ADF7AE) (80131506).
Error: (09/09/2013 08:37:01 AM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.17715147644entdll.dll6.1.7601.1820551db9710c00000050002e41bca801cead2680c3db11C:\Users\Daniel\Desktop\aswMBR.exeC:\Windows\SysWOW64\ntdll.dll3b71a61d-191a-11e3-8a7b-0c6076dde8ad
Error: (09/09/2013 08:33:16 AM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.17715147644entdll.dll6.1.7601.1820551db9710c00000050002e3bec2c01cead24dd4b5384C:\Users\Daniel\Desktop\aswMBR.exeC:\Windows\SysWOW64\ntdll.dllb511cb0b-1919-11e3-8a7b-0c6076dde8ad
Error: (09/08/2013 07:05:38 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/08/2013 06:49:41 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/08/2013 10:52:05 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/07/2013 10:40:25 PM) (Source: Application Error)(User: )
Description: CivilizationV_DX11.exe1.0.3.8052171629ntdll.dll6.1.7601.177254ec49b8fc000000500038dc9a0401ceac061a5975b0C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\CivilizationV_DX11.exeC:\Windows\SysWOW64\ntdll.dllb9089a53-17fd-11e3-a49e-0c6076dde8ad
Error: (09/07/2013 10:09:11 PM) (Source: Application Error)(User: )
Description: firefox.exe23.0.1.4974520bc252xul.dll23.0.1.4974520bc166c00000050017af082f001ceac056dde4654C:\Program Files (x86)\Mozilla Firefox\firefox.exeC:\Program Files (x86)\Mozilla Firefox\xul.dll5ba3f7db-17f9-11e3-a49e-0c6076dde8ad
Error: (09/07/2013 09:52:27 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
==================== Memory info ===========================
Percentage of memory in use: 50%
Total physical RAM: 4060.6 MB
Available physical RAM: 2029.96 MB
Total Pagefile: 8119.39 MB
Available Pagefile: 5945.85 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:297.99 GB) (Free:235.24 GB) NTFS
Drive e: (VS2012_ULT_MSDN_DEU) (CDROM) (Total:1.54 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 274BF56F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
09.09.2013, 09:50
| #5 |
| | Trend Micro Titanium Maximum Security lässt sich nicht einschalten FRST.txt war wohl zu lang. Im Anhang noch mal beide Logfiles |
|
09.09.2013, 09:50
| #6 |
| /// Malwareteam | Trend Micro Titanium Maximum Security lässt sich nicht einschalten hi das FRST Logfile fehlt noch , bitte Poste es noch
__________________ --> Trend Micro Titanium Maximum Security lässt sich nicht einschalten |
|
09.09.2013, 09:59
| #7 |
| | Trend Micro Titanium Maximum Security lässt sich nicht einschalten sry, der Text vom Logfile war zu groß. Geht das so als ZIP? |
|
09.09.2013, 10:11
| #8 |
| /// Malwareteam | Trend Micro Titanium Maximum Security lässt sich nicht einschalten Ja , zwar mehr arbeit so aber es geht noch  |
|
09.09.2013, 11:33
| #9 |
| /// Malwareteam | Trend Micro Titanium Maximum Security lässt sich nicht einschalten Hi die Logfiles sehen soweit gut aus. Schritt 1: Deinstallation von Programmen:
Schritt 2: Deinstalliere und installiere deine Antivirenlösung bitte einmal neu. Teile mir mit ob sich etwas verändert hat. Schritt 3: Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 4: Starte noch einmal FRST.
|
|
09.09.2013, 12:16
| #10 |
| | Trend Micro Titanium Maximum Security lässt sich nicht einschalten Hi Aneri, also die Neuinstallation hat das Problem wohl behoben. Ich hoffe auch, dass das in Zukunft auch so bleibt (nach der Erstinstallation hat es ja auch zeitweilig funktioniert). Falls es erneut zu Problemen kommen sollte, würde ich mich noch ein mal melden. Vielen Dank für deine Hilfe Gruß Sifiker |
|
09.09.2013, 12:28
| #11 |
| /// Malwareteam | Trend Micro Titanium Maximum Security lässt sich nicht einschalten bekomm ich die Logfiles noch? Wir sind noch nicht fertig... dein System kann immernoch Sicherheitslücken aufweisen... |
|
09.09.2013, 13:45
| #12 |
| | Trend Micro Titanium Maximum Security lässt sich nicht einschalten klar, nur hat grad windows jede menge updates installiert und deshalb hat das so lang gedauert. also ADWCleaner: AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.003 - Bericht erstellt am 09/09/2013 um 14:34:32
# Updated 07/09/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : Daniel - LENOVOG550
# Gestartet von : C:\Users\Daniel\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Users\Daniel\AppData\Roaming\OpenCandy
Ordner Gelöscht : C:\Users\Daniel\AppData\Roaming\pdfforge
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\heoldelcflnigdllmlopiefhkkobendj
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : HKCU\Software\SmartBar
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16660
-\\ Mozilla Firefox v23.0.1 (de)
[ Datei : C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\d6e5rjqo.default\prefs.js ]
Zeile gelöscht : user_pref("browser.search.defaultenginename", "Web Search");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Web Search");
Zeile gelöscht : user_pref("extensions.helperbar.DockingPositionDown", false);
Zeile gelöscht : user_pref("extensions.helperbar.SmartbarDisabled", false);
Zeile gelöscht : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
Zeile gelöscht : user_pref("extensions.helperbar.Visibility", true);
Zeile gelöscht : user_pref("extensions.helperbar.countryiso", "de");
Zeile gelöscht : user_pref("extensions.helperbar.installationid", "7d9d5d38-d487-e30d-366f-ddf10be872ef");
Zeile gelöscht : user_pref("extensions.helperbar.installdate", "09/09/2013");
*************************
AdwCleaner[R0].txt - [3651 octets] - [09/09/2013 14:33:09]
AdwCleaner[S0].txt - [3395 octets] - [09/09/2013 14:34:32]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3455 octets] ##########
der FRST wurde, wärend er gescannt hat, von TrandMicro gelöscht weil es ein gefährliches programm zu sein scheint^^ brauchst du den Log dann noch? wenn ja TrendMicro runterfahren und noch mal durchlaufen lassen? |
|
09.09.2013, 14:26
| #13 |
| /// Malwareteam | Trend Micro Titanium Maximum Security lässt sich nicht einschalten ja das Log brauch ich nochmal FRST macht nur dass was ich im sage |
|
09.09.2013, 14:40
| #14 |
| | Trend Micro Titanium Maximum Security lässt sich nicht einschalten hehe , bis das aber grad TrendMicro begriffen hat^^ hier der Log:Der Logging Text ist wieder 30.000 Zeichen zu lang für einen Beitrag, deshalb wieder im Anhang |
|
09.09.2013, 14:50
| #15 |
| /// Malwareteam | Trend Micro Titanium Maximum Security lässt sich nicht einschalten So dann machen wir hier weiter: Schritt 1: Downloade Dir bitte  Malwarebytes Anti-Malware
Schritt 2: Achtung das Tool kann mehrere Stunden laufen, nimm dir Zeit dafür... ESET Online Scanner
Schritt 3: Downloade Dir bitte  SecurityCheck und:
|
|
| Themen zu Trend Micro Titanium Maximum Security lässt sich nicht einschalten |
| administrator, avast, browser, cdrom, classpnp.sys, computer, desktop, detected, dxgkrnl, explorer, file, fontcache, google, hal.dll, harddisk, helper, log file, malwarebytes, micro, monitor, pdf, policyagent, programm, registry, schutz, security, server, sigcheck, system, system32, trustedinstaller, tunnel, wlansvc, wmp, wsearch |
Gruß Aneri 
Linear-Darstellung
