| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken gebliebenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
08.03.2014, 09:43
| #1 |
 |  Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Guten Morgen, seit längerer Zeit versucht mein Windows 7 automatisch Updates einzuspielen und bricht das offensichtlich immer wieder ab. Ich habe ein Problem mit MSE angenommen und versucht, dies zu deinstallieren und wieder zu installieren, damit haben aber die Probleme erst richtig begonnen. Denn seither erhalte ich beim Start eine Fehlermeldung, dass Microsoft Security Essentials nicht starten konnte. Weder eine Deinstallation mit Unterstützung von Fixit noch eine Neuinstallation funktionieren. Eine im Internet gefundene Anleitung zur Registry-Bereinigung habe ich abgearbeitet, ohne Erfolg. In der Konsequenz ist mein Rechner jetzt offen und ungeschützt. Ich füge die Logfiles an, die ich gem. Anleitung erstellt habe. Gmer ist allerdings nicht durchgelaufen, sondern Windows hat eine Meldung ausgegeben, dass das Programm "nicht mehr funktioniert". Es werde "aufgrund eines Problems geschlossen", ich würde eine Benachrichtigung erhalten, wenn eine Lösung verfügbar sei. Falls das eine Rolle spielt: der Rechner steht inzwischen nicht mehr in Deutschland (wo es schon das Update-Problem gab), sondern ich habe ihn mit ins Ausland genommen, wo ich jetzt für einige Zeit arbeite. Der im Addition-Log enthaltene Hinweis auf den Fehler "Objekt ist bereits vorhanden" ist aufgetreten, als ich ein Partyvideo, das mir ein Freund per wetransfer zur Verfügung gestellt hat und das ich für unvollständig benannt hielt, mit einer Dateiendung versehen wollte. Vielen Dank im Vorhinein für die HIlfe! Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 08:44 on 08/03/2014 (Konfiguration)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-03-2014 01
Ran by Konfiguration (administrator) on DESK on 08-03-2014 08:47:46
Running from C:\Users\Konfiguration\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SbieSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
() C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Protexis Inc.) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(shbox.de) C:\Program Files\FreePDF_XP\fpassist.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SbieCtrl.exe
() C:\Users\Konfiguration\AppData\Local\Viber\Viber.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe
(Dropbox, Inc.) C:\Users\Konfiguration\AppData\Roaming\Dropbox\bin\Dropbox.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9288296 2010-06-14] (Realtek Semiconductor)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-10-01] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [FreePDF Assistant] - C:\Program Files\FreePDF_XP\fpassist.exe [370176 2010-06-17] (shbox.de)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [HTC Sync Loader] - C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [651264 2012-04-17] ()
HKLM\...\Run: [CLMLServer] - "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
HKLM\...\Run: [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-12-18] (Adobe Systems Incorporated)
HKU\S-1-5-21-1871391012-2986654079-385949586-1001\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [452880 2012-04-10] (SANDBOXIE L.T.D)
HKU\S-1-5-21-1871391012-2986654079-385949586-1001\...\Run: [Viber] - C:\Users\Konfiguration\AppData\Local\Viber\Viber.exe [906240 2013-05-08] ()
HKU\S-1-5-21-1871391012-2986654079-385949586-1001\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.)
Startup: C:\Users\Konfiguration\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Konfiguration\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.aldi.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} hxxp://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Konfiguration\AppData\Roaming\Mozilla\Firefox\Profiles\89e6vabj.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: CoolPreviews - C:\Users\Konfiguration\AppData\Roaming\Mozilla\Firefox\Profiles\89e6vabj.default\Extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}.xpi [2011-05-03]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-02-16]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-02-16]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-02-16]
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Users\Konfiguration\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-04-18]
CHR Extension: (Google-Suche) - C:\Users\Konfiguration\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-04-18]
CHR Extension: (Foxtab Speed Dial) - C:\Users\Konfiguration\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchmpbaclbiioedakpcldenooikekokm [2014-01-28]
CHR Extension: (Google Wallet) - C:\Users\Konfiguration\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-08]
CHR Extension: (Google Mail) - C:\Users\Konfiguration\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-04-18]
CHR HKLM\...\Chrome\Extension: [dchmpbaclbiioedakpcldenooikekokm] - C:\Users\KONFIG~1\AppData\Local\foxtab_speeddial.crx [2014-01-28]
CHR HKCU\...\Chrome\Extension: [dchmpbaclbiioedakpcldenooikekokm] - C:\Users\KONFIG~1\AppData\Local\foxtab_speeddial.crx [2014-01-28]
========================== Services (Whitelisted) =================
R2 ALDITALKVerbindungsassistent_Service; C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe [358968 2013-07-27] ()
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [88576 2011-09-15] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [74512 2012-04-10] (SANDBOXIE L.T.D)
S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [297984 2014-03-08] ()
R2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.)
S3 ehRecvr; %systemroot%\ehome\ehRecvr.exe [X]
S3 ehSched; %systemroot%\ehome\ehsched.exe [X]
S4 Mcx2Svc; %SystemRoot%\system32\Mcx2Svc.dll [X]
S2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [X]
S3 NisSrv; "c:\Program Files\Microsoft Security Client\NisSrv.exe" [X]
S2 TeamViewer6; C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [X]
S2 WMPNetworkSvc; "%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe" [X]
==================== Drivers (Whitelisted) ====================
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [62592 2010-05-14] (Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [24192 2010-05-14] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [102416 2010-09-24] (ATI Technologies, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [135440 2012-04-10] (SANDBOXIE L.T.D)
R3 teamviewervpn; C:\Windows\System32\DRIVERS\teamviewervpn.sys [25088 2011-03-30] (TeamViewer GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\KONFIG~1\AppData\Local\Temp\catchme.sys [X]
S1 MpKsl8fa421b6; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AACD575F-A75B-4CA2-90BC-96E9B9B9C18E}\MpKsl8fa421b6.sys [X]
S3 MpNWMon; system32\DRIVERS\MpNWMon.sys [X]
S1 truecrypt; System32\drivers\truecrypt.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-08 08:47 - 2014-03-08 08:47 - 00013691 _____ () C:\Users\Konfiguration\Downloads\FRST.txt
2014-03-08 08:47 - 2014-03-08 08:47 - 00000000 ____D () C:\FRST
2014-03-08 08:46 - 2014-03-08 08:47 - 01145344 _____ (Farbar) C:\Users\Konfiguration\Downloads\FRST.exe
2014-03-08 08:44 - 2014-03-08 08:45 - 00000488 _____ () C:\Users\Konfiguration\Downloads\defogger_disable.log
2014-03-08 08:44 - 2014-03-08 08:44 - 00050477 _____ () C:\Users\Konfiguration\Downloads\Defogger.exe
2014-03-07 18:44 - 2014-03-07 19:12 - 633931646 _____ () C:\Users\Konfiguration\Downloads\wetransfer-4eec10.zip
2014-03-07 12:57 - 2014-03-07 12:57 - 126467774 ____N () C:\Users\Konfiguration\Desktop\IMG_2717.MOV
2014-03-01 08:56 - 2014-03-01 08:56 - 185108002 _____ () C:\Users\Konfiguration\Desktop\Sicherung.reg
2014-03-01 08:54 - 2014-03-01 08:54 - 00347816 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\MicrosoftFixit.wu.LB.54317087158150761.2.1.Run.exe
2014-03-01 08:50 - 2014-03-01 08:50 - 11157328 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\mseinstall(2).exe
2014-03-01 08:46 - 2014-03-01 08:46 - 00347816 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.54317087158150761.1.1.Run.exe
2014-02-25 01:12 - 2014-02-25 01:12 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-25 01:10 - 2014-02-25 01:10 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-25 01:10 - 2014-02-25 01:10 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-25 01:10 - 2014-02-25 01:10 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-25 01:10 - 2014-02-25 01:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-25 01:10 - 2014-02-25 01:10 - 00000000 ____D () C:\Program Files\Java
2014-02-25 01:10 - 2014-02-25 01:10 - 00000000 _____ () C:\Windows\system32\RENC5E1.tmp
2014-02-25 01:10 - 2014-02-25 01:10 - 00000000 _____ () C:\Windows\system32\RENC5E0.tmp
2014-02-25 00:55 - 2014-02-25 00:55 - 00921000 _____ (Oracle Corporation) C:\Users\Konfiguration\Downloads\jxpiinstall(2).exe
2014-02-21 07:18 - 2014-02-21 07:18 - 00002579 _____ () C:\Users\Konfiguration\Desktop\msremoval.bat
2014-02-21 07:13 - 2014-02-21 07:13 - 00347816 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.5131639033939942.1.1.Run.exe
2014-02-19 20:37 - 2014-02-19 20:37 - 11157328 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\mseinstall(1).exe
2014-02-17 19:27 - 2014-02-17 19:27 - 00007139 _____ () C:\Users\Konfiguration\.recently-used.xbel
2014-02-17 19:00 - 2014-02-17 19:00 - 00240308 _____ () C:\Users\Konfiguration\Desktop\script.tif
2014-02-17 18:59 - 2014-02-17 18:59 - 00008738 _____ () C:\Users\Konfiguration\Desktop\script.xcf
2014-02-17 18:24 - 2014-02-17 18:24 - 00922524 _____ () C:\Users\Konfiguration\Desktop\OoGoodVibe.tif
2014-02-16 09:15 - 2014-02-16 09:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-15 06:07 - 2014-02-05 09:58 - 12345344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-15 06:07 - 2014-02-05 09:56 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-15 06:07 - 2014-02-05 09:53 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-15 06:07 - 2014-02-05 09:51 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-15 06:07 - 2014-02-05 09:50 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-15 06:07 - 2014-02-05 09:49 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-15 06:07 - 2014-02-05 09:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-15 06:07 - 2014-02-05 09:48 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-15 06:07 - 2014-02-05 09:48 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-15 06:07 - 2014-02-05 09:48 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-15 06:07 - 2014-02-05 09:48 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-15 06:07 - 2014-02-05 09:48 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-15 06:07 - 2014-02-05 09:47 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-15 06:07 - 2014-02-05 09:47 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-15 06:07 - 2014-02-05 09:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-15 06:07 - 2014-02-05 09:46 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-14 07:23 - 2014-02-14 07:23 - 00000000 ____D () C:\Users\Konfiguration\AppData\Local\{331EA07D-41B0-46A5-8D63-9D780496447B}
2014-02-14 07:18 - 2014-02-14 07:18 - 00000000 ____D () C:\Users\Konfiguration\AppData\Local\Apps\2.0
==================== One Month Modified Files and Folders =======
2014-03-08 08:47 - 2014-03-08 08:47 - 00013691 _____ () C:\Users\Konfiguration\Downloads\FRST.txt
2014-03-08 08:47 - 2014-03-08 08:47 - 00000000 ____D () C:\FRST
2014-03-08 08:47 - 2014-03-08 08:46 - 01145344 _____ (Farbar) C:\Users\Konfiguration\Downloads\FRST.exe
2014-03-08 08:45 - 2014-03-08 08:44 - 00000488 _____ () C:\Users\Konfiguration\Downloads\defogger_disable.log
2014-03-08 08:44 - 2014-03-08 08:44 - 00050477 _____ () C:\Users\Konfiguration\Downloads\Defogger.exe
2014-03-08 08:37 - 2014-01-21 16:12 - 00000000 ___RD () C:\Users\Konfiguration\Dropbox
2014-03-08 08:37 - 2014-01-21 16:10 - 00000000 ____D () C:\Users\Konfiguration\AppData\Roaming\Dropbox
2014-03-08 08:37 - 2013-11-05 09:11 - 00000000 ____D () C:\Users\Konfiguration\AppData\Roaming\Skype
2014-03-08 08:37 - 2013-06-17 23:06 - 00000000 ____D () C:\Users\Konfiguration\AppData\Roaming\ViberPC
2014-03-08 08:37 - 2013-06-17 23:05 - 00000000 ____D () C:\Users\Konfiguration\AppData\Local\Viber
2014-03-08 08:37 - 2012-04-18 16:23 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-08 08:37 - 2011-08-30 06:52 - 00000000 ____D () C:\Users\Konfiguration\AppData\Local\Htc
2014-03-08 08:37 - 2011-04-09 14:14 - 01771125 _____ () C:\Windows\WindowsUpdate.log
2014-03-08 08:37 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-03-08 08:35 - 2009-07-14 05:34 - 00010096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-08 08:35 - 2009-07-14 05:34 - 00010096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-08 08:28 - 2012-04-18 10:43 - 00067317 _____ () C:\Windows\setupact.log
2014-03-08 08:28 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-08 00:41 - 2011-05-06 12:43 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-08 00:06 - 2014-01-28 22:55 - 00000314 _____ () C:\Windows\Tasks\Digital Sites.job
2014-03-08 00:06 - 2014-01-28 22:55 - 00000176 _____ () C:\Users\Konfiguration\AppData\Roaming\WB.CFG
2014-03-07 23:56 - 2012-04-18 11:46 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-07 23:55 - 2014-01-28 22:55 - 00000310 _____ () C:\Windows\Tasks\FoxTab.job
2014-03-07 23:49 - 2012-04-18 16:23 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-07 19:12 - 2014-03-07 18:44 - 633931646 _____ () C:\Users\Konfiguration\Downloads\wetransfer-4eec10.zip
2014-03-07 12:57 - 2014-03-07 12:57 - 126467774 ____N () C:\Users\Konfiguration\Desktop\IMG_2717.MOV
2014-03-03 23:39 - 2012-04-18 16:12 - 00003814 _____ () C:\Windows\Sandboxie.ini
2014-03-03 23:35 - 2011-05-17 20:18 - 00000000 ____D () C:\Users\Konfiguration\AppData\Local\FreePDF_XP
2014-03-01 09:35 - 2011-04-20 08:54 - 00002122 _____ () C:\Windows\epplauncher.mif
2014-03-01 08:56 - 2014-03-01 08:56 - 185108002 _____ () C:\Users\Konfiguration\Desktop\Sicherung.reg
2014-03-01 08:54 - 2014-03-01 08:54 - 00347816 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\MicrosoftFixit.wu.LB.54317087158150761.2.1.Run.exe
2014-03-01 08:50 - 2014-03-01 08:50 - 11157328 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\mseinstall(2).exe
2014-03-01 08:46 - 2014-03-01 08:46 - 00347816 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.54317087158150761.1.1.Run.exe
2014-02-26 05:02 - 2012-06-23 22:59 - 00000000 ____D () C:\Program Files\FK_Monitor
2014-02-26 01:45 - 2009-07-14 05:53 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-25 01:12 - 2014-02-25 01:12 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-25 01:10 - 2014-02-25 01:10 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-25 01:10 - 2014-02-25 01:10 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-25 01:10 - 2014-02-25 01:10 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-25 01:10 - 2014-02-25 01:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-25 01:10 - 2014-02-25 01:10 - 00000000 ____D () C:\Program Files\Java
2014-02-25 01:10 - 2014-02-25 01:10 - 00000000 _____ () C:\Windows\system32\RENC5E1.tmp
2014-02-25 01:10 - 2014-02-25 01:10 - 00000000 _____ () C:\Windows\system32\RENC5E0.tmp
2014-02-25 00:55 - 2014-02-25 00:55 - 00921000 _____ (Oracle Corporation) C:\Users\Konfiguration\Downloads\jxpiinstall(2).exe
2014-02-21 07:18 - 2014-02-21 07:18 - 00002579 _____ () C:\Users\Konfiguration\Desktop\msremoval.bat
2014-02-21 07:13 - 2014-02-21 07:13 - 00347816 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.5131639033939942.1.1.Run.exe
2014-02-20 20:56 - 2012-04-18 11:46 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-20 20:56 - 2012-04-18 11:46 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-19 20:37 - 2014-02-19 20:37 - 11157328 _____ (Microsoft Corporation) C:\Users\Konfiguration\Downloads\mseinstall(1).exe
2014-02-18 07:42 - 2010-07-06 21:23 - 01760044 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-17 19:27 - 2014-02-17 19:27 - 00007139 _____ () C:\Users\Konfiguration\.recently-used.xbel
2014-02-17 19:27 - 2012-04-09 08:06 - 00000000 ____D () C:\Users\Konfiguration\.gimp-2.6
2014-02-17 19:27 - 2011-04-09 14:21 - 00000000 ____D () C:\Users\Konfiguration
2014-02-17 19:00 - 2014-02-17 19:00 - 00240308 _____ () C:\Users\Konfiguration\Desktop\script.tif
2014-02-17 19:00 - 2012-04-09 08:08 - 00000000 ____D () C:\Users\Konfiguration\AppData\Roaming\gtk-2.0
2014-02-17 18:59 - 2014-02-17 18:59 - 00008738 _____ () C:\Users\Konfiguration\Desktop\script.xcf
2014-02-17 18:24 - 2014-02-17 18:24 - 00922524 _____ () C:\Users\Konfiguration\Desktop\OoGoodVibe.tif
2014-02-17 17:39 - 2011-04-20 08:53 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-02-17 07:12 - 2012-04-27 00:35 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-16 09:15 - 2014-02-16 09:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-15 06:13 - 2013-08-06 17:14 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 06:12 - 2010-07-06 22:03 - 85946576 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-14 20:14 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-14 07:23 - 2014-02-14 07:23 - 00000000 ____D () C:\Users\Konfiguration\AppData\Local\{331EA07D-41B0-46A5-8D63-9D780496447B}
2014-02-14 07:18 - 2014-02-14 07:18 - 00000000 ____D () C:\Users\Konfiguration\AppData\Local\Apps\2.0
2014-02-06 19:07 - 2013-12-01 09:32 - 00000000 ____D () C:\Users\Konfiguration\AppData\Roaming\Canon
2014-02-06 11:14 - 2013-10-27 14:56 - 00000000 ____D () C:\Users\Konfiguration\Documents\Zeltinger Str
Some content of TEMP:
====================
C:\Users\Konfiguration\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp34gfgv.dll
C:\Users\Konfiguration\AppData\Local\Temp\ICReinstall_VideoConverterSetup.exe
C:\Users\Konfiguration\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Konfiguration\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Konfiguration\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Konfiguration\AppData\Local\Temp\jre-6u39-windows-i586-iftw.exe
C:\Users\Konfiguration\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Konfiguration\AppData\Local\Temp\OutlookConnector.exe
C:\Users\Konfiguration\AppData\Local\Temp\setup_3.2.10.exe
C:\Users\Konfiguration\AppData\Local\Temp\setup_3.2.20.exe
C:\Users\Konfiguration\AppData\Local\Temp\tmp3043.tmp.exe
C:\Users\Konfiguration\AppData\Local\Temp\VersionUpdater.exe
C:\Users\Konfiguration\AppData\Local\Temp\WtgZip.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-01 06:35
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-03-2014 01
Ran by Konfiguration at 2014-03-08 08:48:13
Running from C:\Users\Konfiguration\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.0.16600 - Adobe Systems Inc.)
Adobe AIR (Version: 2.5.0.16600 - Adobe Systems Inc.) Hidden
Adobe AIR (Version: 3.2.0.2070 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader X (10.0.1) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA0000000001}) (Version: 10.0.1 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM\...\Adobe Shockwave Player) (Version: 11.5.9.615 - Adobe Systems, Inc.)
ALDI TALK Verbindungsassistent (HKLM\...\ALDITALKVerbindungsassistent) (Version: ALDI TALK 4.0 - ALDI TALK Verbindungsassistent)
Any Video Converter 3.5.3 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
ATI Catalyst Install Manager (HKLM\...\{586647DB-C4AC-6691-FD95-9A1B3B603502}) (Version: 3.0.795.0 - ATI Technologies, Inc.)
Audiograbber 1.83 SE (HKLM\...\Audiograbber) (Version: 1.83 SE - Audiograbber)
Audiograbber MP3-Plugin (HKLM\...\Audiograbber-Lame) (Version: 1.0 - AG)
CanoScan Toolbox Ver4.1 (HKLM\...\{BCE46757-7674-4416-BEDB-68205A60409E}) (Version: - )
Catalyst Control Center Graphics Previews Vista (Version: 2010.0930.2237.38732 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2010.0930.2237.38732 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2010.0930.2237.38732 - ATI) Hidden
CCC Help Danish (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help Dutch (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help English (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help Finnish (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help French (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help German (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help Italian (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help Japanese (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help Norwegian (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help Spanish (Version: 2010.0930.2236.38732 - ATI) Hidden
CCC Help Swedish (Version: 2010.0930.2236.38732 - ATI) Hidden
ccc-core-static (Version: 2010.0930.2237.38732 - ATI) Hidden
ccc-utility (Version: 2010.0930.2237.38732 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.05 - Piriform)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CorelDRAW Essentials 4 - Content (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Draw (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Filters (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - ICA (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - IPM - No VBA (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang BR (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang DE (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang EN (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang ES (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang FR (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang IT (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang NL (Version: 4.0 - Uw bedrijfsnaam) Hidden
CorelDRAW Essentials 4 - PHOTO-PAINT (Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Windows Shell Extension (HKLM\...\_{CF0ADC18-6D8F-4353-8EAA-DF45456B7853}) (Version: - Corel Corporation)
CorelDRAW Essentials 4 - Windows Shell Extension (Version: 1.1 - Corel Corporation) Hidden
CorelDRAW Essentials 4 (HKLM\...\_{C0237AA4-1BFB-46EA-860D-7B0EB365CA13}) (Version: - Corel Corporation)
CorelDRAW Essentials 4 (Version: 4.0 - Corel Corporation) Hidden
CyberLink LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2515 - CyberLink Corp.)
CyberLink LabelPrint (Version: 2.5.2515 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
CyberLink Power2Go (Version: 6.1.3602c - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (HKLM\...\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (Version: 1.5.1306 - CyberLink Corp.) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Definition update for Microsoft Office 2010 (KB982726) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2FD3FD50-4D6B-433B-9AB8-83F04675DA44}) (Version: - Microsoft)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.2 - Dropbox, Inc.)
ElsterFormular (HKLM\...\ElsterFormular) (Version: 14.3.11574 - Landesfinanzdirektion Thüringen)
FileZilla Client 3.6.0.2 (HKCU\...\FileZilla Client) (Version: 3.6.0.2 - FileZilla Project)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
Fotogalerija Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Foxtab (HKLM\...\foxtab) (Version: - FoxTab) <==== ATTENTION
Free Video Dub version 2.0.21.822 (HKLM\...\Free Video Dub_is1) (Version: 2.0.21.822 - DVDVideoSoft Ltd.)
FreeOCR v4.2 (HKLM\...\freeocr_is1) (Version: - )
FreePDF (Remove only) (HKLM\...\FreePDF_XP) (Version: - )
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Gigaset QuickSync (HKLM\...\{2c2f4c57-83a8-4790-a281-e83d306a9199}) (Version: 6.1.0822.15063 - Gigaset Communications GmbH)
GIMP 2.6.12 (HKLM\...\WinGimp-2.0_is1) (Version: 2.6.12 - The GIMP Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)
Google Update Helper (Version: 1.3.22.5 - Google Inc.) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript) (Version: 9.02 - Artifex Software Inc.)
HTC BMP USB Driver (HKLM\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC)
HTC Driver Installer (HKLM\...\{6D6664A9-3342-4948-9B7E-034EFE366F0F}) (Version: 3.0.0.021 - HTC Corporation)
HTC Sync (HKLM\...\{AB77DFDE-9949-4AEF-B180-BE322C3E65D0}) (Version: 3.2.20 - HTC Corporation)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.0.3.1 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 24 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.240 - Oracle)
JoGoVEREIN (HKLM\...\{B6A6D550-53E2-49F2-AB47-2EA3262B369D}) (Version: 9.2.5 - J.G. Software)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (HKLM\...\{CA227A9D-09BE-4BFB-9764-48FED2DA5454}) (Version: 15.4.5722.2 - Microsoft Corporation)
Medion Home Cinema (HKLM\...\InstallShield_{AB770FDE-8087-4C98-9A85-BD64262C104C}) (Version: 6.0.0000 - CyberLink Corp.)
Medion Home Cinema (Version: 6.0.0000 - CyberLink Corp.) Hidden
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware (Version: 3.0.8107.0 - Microsoft Corporation) Hidden
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8107.0 - Microsoft Corporation) Hidden
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 2.0.0657.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.0.0657.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 de) (HKLM\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MyDriveConnect 3.3.0.1342 (HKLM\...\MyDriveConnect) (Version: 3.3.0.1342 - TomTom)
Oracle VM VirtualBox 4.0.4 (HKLM\...\{408CD2E8-3977-449B-8102-76F158D4885F}) (Version: 4.0.4 - Oracle Corporation)
PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pošta Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raccolta foto di Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6136 - Realtek Semiconductor Corp.)
RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: - )
Sandboxie 3.68 (32-bit) (HKLM\...\Sandboxie) (Version: 3.68 - SANDBOXIE L.T.D)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version: - Microsoft) Hidden
Skype™ 6.13 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.13.104 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.10 - Piriform)
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
TeamViewer 6 (HKLM\...\TeamViewer 6) (Version: 6.0.10511 - TeamViewer GmbH)
TeamViewer 8 (HKLM\...\TeamViewer 8) (Version: 8.0.20202 - TeamViewer)
TrueCrypt (HKLM\...\TrueCrypt) (Version: 7.0a - TrueCrypt Foundation)
TubeBox (HKLM\...\{60597b3f-d714-4f4e-8094-be088a31ff25}) (Version: 4.1.1.0 - Freetec)
TubeBox (Version: 4.1.1.0 - Freetec) Hidden
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2473228) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2010 (KB2202188) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2413186) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{556146F7-74AE-4E0A-B64F-5B8B93469F61}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2413186) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B5516874-E926-4BFD-B412-D0E70112F244}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2413186) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{D6CE7280-6EE3-419A-8F47-DB111C040B1B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2493983) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{309EEC22-83CE-4109-B019-BA9392FAA322}) (Version: - Microsoft)
Update for Microsoft Outlook Social Connector (KB2441641) (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{A10DC2B7-6FDA-4C17-9DF0-6A834CAC4306}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version: - Microsoft)
Update for Video Converter (HKCU\...\Digital Sites) (Version: - Update for Video Converter) <==== ATTENTION
Update für Microsoft Outlook Social Connector (KB2441641) (HKLM\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{78E1D7DA-059C-4E8D-8FAD-0EFD5BFE6779}) (Version: - Microsoft)
Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation)
Versandhelfer (HKLM\...\dpdhl.versandhelfer.medionpc.CDA82DC3FEDD13302C6424313D9A2999F162D21A.1) (Version: 0.9.511 - Deutsche Post AG)
Versandhelfer (Version: 0.9.511 - Deutsche Post AG) Hidden
Viber (HKCU\...\Viber) (Version: 3.0.0.132799 - Viber Media Inc)
Video Converter (HKCU\...\Video Converter) (Version: - )
Video Converter Packages (HKCU\...\Video Converter Packages) (Version: - ) <==== ATTENTION
Visual Studio C++ 10.0 Runtime (HKLM\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
==================== Restore Points =========================
28-01-2014 22:15:22 TuneUp Utilities 2014 (de-DE) wird entfernt
28-01-2014 23:45:10 Windows Update
29-01-2014 20:43:59 Windows Update
29-01-2014 22:00:27 Windows Update
30-01-2014 12:22:14 Windows Update
31-01-2014 00:27:55 Windows Update
31-01-2014 09:05:20 Windows Update
31-01-2014 13:12:57 Windows Update
31-01-2014 18:11:40 Windows Update
01-02-2014 01:15:08 Windows Update
01-02-2014 10:13:33 Windows Update
01-02-2014 16:17:05 Windows Update
02-02-2014 18:03:34 Windows Modules Installer
02-02-2014 18:08:34 Windows Update
02-02-2014 20:41:44 Windows Update
06-02-2014 18:07:10 Windows Update
14-02-2014 18:11:10 Windows Modules Installer
14-02-2014 19:29:26 Windows Update
15-02-2014 05:05:11 Windows Update
16-02-2014 06:37:13 Windows Update
16-02-2014 09:20:14 Windows Update
16-02-2014 21:32:59 Windows Update
17-02-2014 06:38:29 Windows Update
17-02-2014 16:31:08 Windows Update
17-02-2014 22:21:40 Windows Update
18-02-2014 05:53:00 Windows Update
18-02-2014 06:12:22 Windows Update
18-02-2014 07:16:14 Windows Update
18-02-2014 17:36:55 Windows Update
19-02-2014 07:17:38 Windows Update
19-02-2014 16:50:39 Windows Update
19-02-2014 21:25:56 Windows Update
20-02-2014 00:55:29 Windows Update
20-02-2014 07:30:21 Windows Update
20-02-2014 22:35:07 Windows Update
21-02-2014 06:53:54 Windows Update
21-02-2014 13:28:35 Windows Update
23-02-2014 18:33:42 Windows Update
24-02-2014 04:17:55 Windows Update
24-02-2014 08:45:10 Windows Update
24-02-2014 20:17:15 Windows Update
25-02-2014 00:09:53 Installed Java 7 Update 51
25-02-2014 00:19:49 Windows Update
25-02-2014 07:26:51 Windows Update
26-02-2014 04:02:01 Windows Defender Checkpoint
26-02-2014 06:07:18 Windows Update
26-02-2014 19:48:33 Windows Update
27-02-2014 12:21:14 Windows Update
27-02-2014 23:49:23 Windows Update
28-02-2014 07:10:17 Windows Update
28-02-2014 18:57:23 Windows Update
01-03-2014 08:35:47 Windows Update
01-03-2014 23:08:16 Windows Update
02-03-2014 07:59:23 Windows Update
02-03-2014 22:10:08 Windows Update
03-03-2014 18:42:47 Windows Update
03-03-2014 19:02:48 Windows Update
03-03-2014 22:45:21 Windows Update
04-03-2014 05:33:07 Windows Update
04-03-2014 23:40:09 Windows Update
05-03-2014 06:44:16 Windows Update
06-03-2014 07:39:56 Windows Update
06-03-2014 15:35:42 Windows Update
07-03-2014 23:38:41 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:04 - 2012-04-16 12:46 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {02A4927E-F99D-4F7A-B829-EF567F6D6D21} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {0579670C-53C2-4954-8DB1-598E6D33734B} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-12-18] ()
Task: {0989A0F4-BEB2-4325-863F-76680E03DFBD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-18] (Google Inc.)
Task: {55684258-9A92-4DCE-B488-0CF3ABAEF3CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-18] (Google Inc.)
Task: {7C601468-BCB5-4CD2-AC9D-5F96E38EFE9A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {966E0B39-7D62-4DA8-AB76-7E380E140AC1} - System32\Tasks\FoxTab => C:\Users\Konfiguration\AppData\Roaming\FoxTab\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {B8169D50-124F-44E4-8CE1-FCD50E0A3922} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {C9DEBE93-DFFD-4C96-925C-5B2EE77651AB} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {CC90C593-8C3B-4616-B3DF-8963F1D39DC7} - System32\Tasks\Digital Sites => C:\Users\Konfiguration\AppData\Roaming\DigitalSites\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {F211C2E0-CF40-4653-83A4-F474545F8D4C} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-12-18] ()
Task: {FA8A40E0-41F2-4BC9-B9C5-02A9D02C828A} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2012-04-17] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\KONFIG~1\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\FoxTab.job => C:\Users\KONFIG~1\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2011-04-20 10:49 - 2010-06-17 20:56 - 00116224 _____ () C:\Windows\System32\redmonnt.dll
2013-07-27 13:54 - 2013-07-27 13:56 - 00358968 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe
2011-09-15 12:06 - 2011-09-15 12:06 - 00088576 _____ () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
2012-11-29 22:59 - 2012-11-29 22:59 - 00093696 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2012-04-17 14:05 - 2012-04-17 14:05 - 00651264 _____ () C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
2012-04-17 14:05 - 2012-04-17 14:05 - 00103936 _____ () C:\Program Files\HTC\HTC Sync 3.0\OutputLog.dll
2012-04-17 14:05 - 2012-04-17 14:05 - 00516599 _____ () C:\Program Files\HTC\HTC Sync 3.0\sqlite3.dll
2012-04-17 14:05 - 2012-04-17 14:05 - 00094208 _____ () C:\Program Files\HTC\HTC Sync 3.0\fdHttpd.dll
2012-04-17 14:05 - 2012-04-17 14:05 - 00389120 _____ () C:\Program Files\HTC\HTC Sync 3.0\HtcDetect.dll
2012-04-17 14:05 - 2012-04-17 14:05 - 00151552 _____ () C:\Program Files\HTC\HTC Sync 3.0\htcDisk.dll
2012-04-17 14:05 - 2012-04-17 14:05 - 00172032 _____ () C:\Program Files\HTC\HTC Sync 3.0\htcDetectLegend.dll
2012-04-17 14:05 - 2012-04-17 14:05 - 00559244 _____ () C:\Program Files\HTC\HTC Sync 3.0\sqlite3.7.dll
2012-04-17 14:05 - 2012-04-17 14:05 - 01515520 _____ () C:\Program Files\HTC\HTC Sync 3.0\Maps\R66Api.dll
2013-06-17 23:06 - 2013-05-08 18:42 - 00906240 _____ () C:\Users\Konfiguration\AppData\Local\Viber\Viber.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 14884864 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\libViber.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00729088 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\libGLESv2.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00049152 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\libEGL.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00835584 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\platforms\qwindows.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00024576 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\imageformats\qgif.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00024576 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\imageformats\qico.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00212992 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\imageformats\qjpeg.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00221184 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\imageformats\qmng.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00016384 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\imageformats\qsvg.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00016384 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\imageformats\qtga.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00278528 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\imageformats\qtiff.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00016384 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\imageformats\qwbmp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00622592 _____ () C:\Users\Konfiguration\AppData\Local\Viber\4.0.3.3\sqldrivers\qsqlite.dll
2013-07-27 13:54 - 2013-07-27 13:56 - 00510520 _____ () C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe
2014-03-08 08:37 - 2014-03-08 08:37 - 00041984 _____ () C:\Users\Konfiguration\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp34gfgv.dll
2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Konfiguration\AppData\Roaming\Dropbox\bin\libcef.dll
2010-10-01 07:36 - 2010-10-01 07:36 - 00270336 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-02-16 09:15 - 2014-02-16 09:15 - 03578992 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: Microsoft-ISATAP-Adapter #2
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (03/08/2014 08:47:50 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:47:50 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:47:50 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:37:12 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:37:12 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:37:12 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:36:50 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (03/08/2014 08:36:49 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (03/08/2014 08:36:49 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
Error: (03/08/2014 08:36:46 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
System errors:
=============
Error: (03/08/2014 08:47:50 AM) (Source: Service Control Manager) (User: )
Description: Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 5 Mal passiert.
Error: (03/08/2014 08:47:50 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147218174.
Error: (03/08/2014 08:37:12 AM) (Source: Service Control Manager) (User: )
Description: Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 4 Mal passiert.
Error: (03/08/2014 08:37:12 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147218174.
Error: (03/08/2014 08:31:46 AM) (Source: Service Control Manager) (User: )
Description: Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (03/08/2014 08:31:46 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147218174.
Error: (03/08/2014 08:31:15 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/08/2014 08:31:15 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147218174.
Error: (03/08/2014 08:30:44 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/08/2014 08:30:44 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147218174.
Microsoft Office Sessions:
=========================
Error: (03/08/2014 08:47:50 AM) (Source: Windows Search Service)(User: )
Description:
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:47:50 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:47:50 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:37:12 AM) (Source: Windows Search Service)(User: )
Description:
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:37:12 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:37:12 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Das Objekt, das Sie erstellen wollen, ist bereits vorhanden. Verwenden Sie einen anderen Namen. (HRESULT : 0x80040d02) (0x80040d02)
Error: (03/08/2014 08:36:50 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (03/08/2014 08:36:49 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (03/08/2014 08:36:49 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (03/08/2014 08:36:46 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Code:
ATTFilter HWiNFO32 Version 4.34-2130
DESK ----------------------------------------------------------------------
[Current Computer]
Computer Name: DESK
Computer Brand Name: MEDIONPC MS-7646
[Operating System]
Operating System: Microsoft Windows 7 Home Premium Build 7601
Service Pack: Service Pack 1
Central Processor(s) ------------------------------------------------------
[CPU Unit Count]
Number Of Processor Packages (Physical): 1
Number Of Processors Cores: 3
Number Of Logical Processors: 3
AMD Athlon II X3 440 ------------------------------------------------------
[General Information]
Processor Name: AMD Athlon II X3 440
Original Processor Frequency: 3000.0 MHz
Original Processor Frequency [MHz]: 3000
CPU ID: 00100F53
Extended CPU ID: 00100F53
CPU Brand Name: AMD Athlon(tm) II X3 440 Processor
CPU Vendor: AuthenticAMD
CPU Stepping: BL-C3 (Bloodhound)
CPU Code Name: Rana
CPU Thermal Design Power (TDP): 94.7 W
CPU Thermal Design Current (TDC): 75.0 A
CPU Platform: Socket AM3
Microcode Update Revision: 10000B6
Number of CPU Cores: 3
Number of Logical CPUs: 3
[Operating Points]
CPU HFM (Maximum): 3000.0 MHz = 15.00 x 200.0 MHz @ 1.4000 V
CPU Current: 3007.7 MHz = 15.00 x 200.5 MHz @ 1.4000 V
Northbridge Maximum: 2000.0 MHz = 10.00 x 200.0 MHz @ 1.4000 V
Northbridge Current: 2005.1 MHz = 10.00 x 200.5 MHz @ 1.1750 V
CPU Bus Type: Hyper-Transport v3.00
Maximum Supported Hyper-Transport Link Clock: 2000 MHz
Current Hyper-Transport Link Clock: 2000 MHz
[Cache and TLB]
L1 Cache: Instruction: 3 x 64 KBytes, Data: 3 x 64 KBytes
L2 Cache: Integrated: 3 x 512 KBytes
Instruction TLB: Fully associative, 32 entries
Data TLB: Fully associative, 48 entries
[Standard Feature Flags]
FPU on Chip Present
Enhanced Virtual-86 Mode Present
I/O Breakpoints Present
Page Size Extensions Present
Time Stamp Counter Present
Pentium-style Model Specific Registers Present
Physical Address Extension Present
Machine Check Exception Present
CMPXCHG8B Instruction Present
APIC On Chip / PGE (AMD) Present
Fast System Call Present
Memory Type Range Registers Present
Page Global Feature Present
Machine Check Architecture Present
CMOV Instruction Present
Page Attribute Table Present
36-bit Page Size Extensions Present
Processor Number Not Present
CLFLUSH Instruction Present
Debug Trace and EMON Store Not Present
Internal ACPI Support Not Present
MMX Technology Present
Fast FP Save/Restore (IA MMX-2) Present
Streaming SIMD Extensions Present
Streaming SIMD Extensions 2 Present
Self-Snoop Not Present
Multi-Threading Capable Present
Automatic Clock Control Not Present
IA-64 Processor Not Present
Signal Break on FERR Not Present
Streaming SIMD Extensions 3 Present
PCLMULQDQ Instruction Support Not Present
MONITOR/MWAIT Support Present
Supplemental Streaming SIMD Extensions 3 Not Present
FMA Extension Not Present
CMPXCHG16B Support Present
Streaming SIMD Extensions 4.1 Not Present
Streaming SIMD Extensions 4.2 Not Present
x2APIC Not Present
POPCNT Instruction Present
AES Cryptography Support Not Present
XSAVE/XRSTOR/XSETBV/XGETBV Instructions Not Present
XGETBV/XSETBV OS Enabled Not Present
AVX Support Not Present
Half-Precision Convert (CVT16) Not Present
[Extended Feature Flags]
FPU on Chip Present
Enhanced Virtual-86 Mode Present
I/O Breakpoints Present
Page Size Extensions Present
Time Stamp Counter Present
AMD-style Model Specific Registers Present
Machine Check Exception Present
CMPXCHG8B Instruction Present
APIC On Chip Present
SYSCALL and SYSRET Instructions Present
Memory Type Range Registers Present
Page Global Feature Present
Machine Check Architecture Present
CMOV Instruction Present
Page Attribute Table Present
36-bit Page Size Extensions Present
Multi-Processing / Brand feature Not Present
No Execute Present
MMX Technology Present
MMX+ Extensions Present
Fast FP Save/Restore Present
Fast FP Save/Restore Optimizations Present
1 GB large page support Present
RDTSCP Instruction Present
x86-64 Long Mode Present
3DNow! Technology Extensions Present
3DNow! Technology Present
LAHF/SAHF Long Mode Support Present
Core Multi-Processing Legacy Mode Present
Secure Virtual Machine Present
Extended APIC Register Space Present
LOCK MOV CR0 Support Present
Advanced Bit Manipulation Present
SSE4A Support Present
Misaligned SSE Mode Present
PREFETCH(W) Support Present
OS Visible Work-around Support Present
Instruction Based Sampling Present
XOP Instruction Support Not Present
SKINIT, STGI, and DEV Support Present
Watchdog Timer Support Present
TBM0 Instruction Support Not Present
Lightweight Profiling Support Not Present
FMA4 Instruction Support Not Present
Translation Cache Extension Not Present
NodeId Support Not Present
Trailing Bit Manipulation Not Present
Topology Extensions Not Present
Core Performance Counter Extensions Not Present
NB Performance Counter Extensions Not Present
Streaming Performance Monitor Architecture Not Present
Data Breakpoint Extension Not Present
Performance Time-Stamp Counter Not Present
L2I Performance Counter Extensions Not Present
MWAITX/MONITORX Support Not Present
[Enhanced Features]
Core Performance Boost Not Supported
[Memory Ranges]
Maximum Physical Address Size: 48-bit (256 TBytes)
Maximum Virtual Address Size: 48-bit (256 TBytes)
[MTRRs]
Range 0-80000000 (0MB-2048MB) Type: Write Back (WB)
Range 80000000-C0000000 (2048MB-3072MB) Type: Write Back (WB)
Range C0000000-D0000000 (3072MB-3328MB) Type: Write Back (WB)
Motherboard ---------------------------------------------------------------
[Computer]
Computer Brand Name: MEDIONPC MS-7646
[Motherboard]
Motherboard Model: MEDIONPC MS-7646
Motherboard Chipset: AMD 770/870 (RX780) + SP5100 (SB700)
Motherboard Slots: 1xPCI, 1xAGP
USB Version Supported: v2.0
[BIOS]
BIOS Manufacturer: American Megatrends
BIOS Date: 09/23/10
BIOS Version: A7646MLN.109
EFI BIOS: Not Capable
Super-IO/LPC Chip: Unknown
ACPI Devices --------------------------------------------------------------
AMD Processor -------------------------------------------------------------
Device Name: AMD Processor
AMD Processor -------------------------------------------------------------
Device Name: AMD Processor
AMD Processor -------------------------------------------------------------
Device Name: AMD Processor
ACPI Fixed Feature Button -------------------------------------------------
Device Name: ACPI Fixed Feature Button
Programmable interrupt controller -----------------------------------------
Device Name: Programmable interrupt controller
[Assigned Resources]
I/O Port: 0020 - 0021
I/O Port: 00A0 - 00A1
[Alternative 1]
I/O Port: 0020 - 0021
I/O Port: 00A0 - 00A1
BIOS ----------------------------------------------------------------------
BIOS Vendor: American Megatrends Inc.
BIOS Version: A7646MLN.109
BIOS Release Date: 09/23/2010
BIOS Start Segment: F000
BIOS Size: 1024 KBytes
System BIOS Version: 8.14
ISA Support: Present
MCA Support: Not Present
EISA Support: Not Present
PCI Support: Present
PC Card (PCMCIA) Support: Not Present
Plug-and-Play Support: Present
APM Support: Present
Flash BIOS: Present
BIOS Shadow: Present
VL-VESA Support: Not Present
ESCD Support: Present
Boot from CD: Present
Selectable Boot: Present
BIOS ROM Socketed: Present
Boot from PC Card: Not Present
EDD Support: Present
NEC PC-98 Support: Not Present
ACPI Support: Present
USB Legacy Support: Present
AGP Support: Not Present
I2O Boot Support: Not Present
LS-120 Boot Support: Present
ATAPI ZIP Drive Boot Support: Present
IEE1394 Boot Support: Not Present
Smart Battery Support: Not Present
BIOS Boot Specification Support: Present
Function key-initiated Network Service Boot Support: Not Present
Targeted Content Distribution Support: Present
UEFI Specification Support: Not Present
System --------------------------------------------------------------------
System Manufacturer: MEDIONPC
Product Name: MS-7646
Product Version: 1.0
Product Serial Number: To Be Filled By O.E.M.
UUID: {DED77294-D826-11DD-FB81-BFB690D3298A}
SKU Number: To Be Filled By O.E.M.
Family: To Be Filled By O.E.M.
Mainboard -----------------------------------------------------------------
Mainboard Manufacturer: MEDIONPC
Mainboard Name: MS-7646
Mainboard Version: 1.0
Mainboard Serial Number: To be filled by O.E.M.
Asset Tag: To Be Filled By O.E.M.
Location in chassis: To Be Filled By O.E.M.
System Enclosure ----------------------------------------------------------
Manufacturer: MEDIONPC
Case Type: Desktop
Version: 1.0
Serial Number: To Be Filled By O.E.M.
Asset Tag Number: To Be Filled By O.E.M.
Processor -----------------------------------------------------------------
Processor Manufacturer: AMD
Processor Version: AMD Athlon(tm) II X3 440 Processor
External Clock: 200 MHz
Maximum Clock Supported: 3000 MHz
Current Clock: 3000 MHz
CPU Socket: Populated
CPU Status: Enabled
Processor Type: Central Processor
Processor Voltage: 1.5 V
Processor Upgrade: Unknown (1)
Socket Designation: CPU 1
L1-Cache ------------------------------------------------------------------
Socket Designation: L1-Cache
Cache State: Enabled
Cache Type: Internal
Cache Scheme: Write-Through and Write-Back
Supported SRAM Type: Pipeline Burst
Current SRAM Type: Pipeline Burst
Cache Speed: Unknown
Error Correction Type:
Maximum Cache Size: 384 KBytes
Installed Cache Size: 384 KBytes
Cache Associativity: 4-way Set-Associative
L2-Cache ------------------------------------------------------------------
Socket Designation: L2-Cache
Cache State: Enabled
Cache Type: Internal
Cache Scheme: Write-Through and Write-Back
Supported SRAM Type: Pipeline Burst
Current SRAM Type: Pipeline Burst
Cache Speed: Unknown
Error Correction Type:
Maximum Cache Size: 1536 KBytes
Installed Cache Size: 1536 KBytes
Cache Associativity: 4-way Set-Associative
L3-Cache ------------------------------------------------------------------
Socket Designation: L3-Cache
Cache State: Disabled
Cache Type: Internal
Cache Scheme: Unknown
Supported SRAM Type:
Current SRAM Type:
Cache Speed: Unknown
Error Correction Type: Unknown
Maximum Cache Size: 0 KBytes
Installed Cache Size: 0 KBytes
Cache Associativity: Unknown
Memory Devices ------------------------------------------------------------
Memory Controller ---------------------------------------------------------
Error Detecting Method: 64-bit ECC
Error Correction: None
Supported Interleave: 1-Way
Current Interleave: 1-Way
Max. Memory Module Size: 512 MBytes
Supported Memory Speed: 70 ns, 60 ns
Supported Memory Type: SIMM, DIMM, SDRAM
Supported Memory Voltage: 3.3 V
Associated Memory Slots: 4
Geändert von SCSC (08.03.2014 um 09:58 Uhr) Grund: Nachtrag Systeminformationen |
|
12.03.2014, 23:04
| #3 |
| | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Danke zuerst mal dafür, dass Du (ist das ok hier, zu duzen?) Dich meiner Frage annimmst.
__________________Im Text meines ersten Postings habe ich aber schon beschrieben, dass GMER nicht durchläuft und mit welcher Fehlermeldung ("funktioniert nicht mehr") es abbricht (und zwar obwohl es frisch installiert ist). Ich bin ja gerne bereit, etwas zu unternehmen, aber ohne irgendeinen Trick läuft GMER also jedenfalls nicht. Sorry! |
|
13.03.2014, 13:33
| #4 | |
| /// the machine /// TB-Ausbilder    | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken gebliebenZitat:
 Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
13.03.2014, 22:35
| #5 |
| | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Vielen Dank. Ich denke, die Scans habe ich hinbekommen, Hier sind die Logs: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1009
v0000.00.00.00
Windows 7 Service Pack 1 x86 NTFS
9.0.8112.16421
Konfiguration :: DESK
13.03.2014 22:19:53
mbar-log-2014-03-13 (22-19-53).txt
4481
2 , 20
0
0
0
0
0
0
0
0
Code:
ATTFilter 22:28:59.0505 5364 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:29:00.0020 5364 ============================================================
22:29:00.0020 5364 Current date / time: 2014/03/13 22:29:00.0020
22:29:00.0020 5364 SystemInfo:
22:29:00.0020 5364
22:29:00.0020 5364 OS Version: 6.1.7601 ServicePack: 1.0
22:29:00.0020 5364 Product type: Workstation
22:29:00.0020 5364 ComputerName: DESK
22:29:00.0020 5364 UserName: Konfiguration
22:29:00.0020 5364 Windows directory: C:\Windows
22:29:00.0020 5364 System windows directory: C:\Windows
22:29:00.0020 5364 Processor architecture: Intel x86
22:29:00.0020 5364 Number of processors: 3
22:29:00.0020 5364 Page size: 0x1000
22:29:00.0020 5364 Boot type: Normal boot
22:29:00.0020 5364 ============================================================
22:29:01.0143 5364 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:29:01.0159 5364 ============================================================
22:29:01.0159 5364 \Device\Harddisk0\DR0:
22:29:01.0159 5364 MBR partitions:
22:29:01.0159 5364 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:29:01.0159 5364 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x708D3000
22:29:01.0159 5364 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x70906000, BlocksNum 0x3C00000
22:29:01.0159 5364 ============================================================
22:29:01.0174 5364 C: <-> \Device\Harddisk0\DR0\Partition2
22:29:01.0237 5364 D: <-> \Device\Harddisk0\DR0\Partition3
22:29:01.0237 5364 ============================================================
22:29:01.0237 5364 Initialize success
22:29:01.0237 5364 ============================================================
22:29:12.0438 4596 ============================================================
22:29:12.0438 4596 Scan started
22:29:12.0438 4596 Mode: Manual; SigCheck; TDLFS;
22:29:12.0438 4596 ============================================================
22:29:13.0342 4596 ================ Scan system memory ========================
22:29:13.0342 4596 System memory - ok
22:29:13.0342 4596 ================ Scan services =============================
22:29:13.0514 4596 [ D01E0B1CEF9EE82100C2BB07294880EF ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
22:29:13.0623 4596 1394ohci - ok
22:29:13.0654 4596 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
22:29:13.0670 4596 ACPI - ok
22:29:13.0701 4596 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
22:29:13.0748 4596 AcpiPmi - ok
22:29:13.0888 4596 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:29:13.0904 4596 AdobeARMservice - ok
22:29:13.0966 4596 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:29:13.0982 4596 AdobeFlashPlayerUpdateSvc - ok
22:29:14.0029 4596 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:29:14.0044 4596 adp94xx - ok
22:29:14.0060 4596 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:29:14.0076 4596 adpahci - ok
22:29:14.0107 4596 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:29:14.0122 4596 adpu320 - ok
22:29:14.0138 4596 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:29:14.0200 4596 AeLookupSvc - ok
22:29:14.0247 4596 [ 1151FD4FB0216CFED887BFDE29EBD516 ] AFD C:\Windows\system32\drivers\afd.sys
22:29:14.0372 4596 AFD - ok
22:29:14.0388 4596 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
22:29:14.0403 4596 agp440 - ok
22:29:14.0434 4596 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
22:29:14.0434 4596 aic78xx - ok
22:29:14.0497 4596 [ AA9D7E3F221222EEF8F069BE7F45DF49 ] ALDITALKVerbindungsassistent_Service C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe
22:29:14.0512 4596 ALDITALKVerbindungsassistent_Service - ok
22:29:14.0559 4596 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
22:29:14.0622 4596 ALG - ok
22:29:14.0653 4596 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
22:29:14.0668 4596 aliide - ok
22:29:14.0715 4596 [ AA8C7A0A40D3B8992EA1845EF89FE2D4 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:29:14.0778 4596 AMD External Events Utility - ok
22:29:14.0793 4596 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
22:29:14.0809 4596 amdagp - ok
22:29:14.0824 4596 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
22:29:14.0840 4596 amdide - ok
22:29:14.0871 4596 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:29:14.0918 4596 AmdK8 - ok
22:29:15.0074 4596 [ 5AB10C74C8EA15E98A6C771B7269615E ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:29:15.0136 4596 amdkmdag - ok
22:29:15.0168 4596 [ E9890F7EC1AB4D09AFEB09DD76334622 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
22:29:15.0214 4596 amdkmdap - ok
22:29:15.0246 4596 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:29:15.0292 4596 AmdPPM - ok
22:29:15.0339 4596 [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:29:15.0339 4596 amdsata - ok
22:29:15.0370 4596 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:29:15.0386 4596 amdsbs - ok
22:29:15.0402 4596 [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:29:15.0402 4596 amdxata - ok
22:29:15.0433 4596 [ 437C824DEAC935DEA9E9C488675EFD09 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
22:29:15.0480 4596 amd_sata - ok
22:29:15.0511 4596 [ D919795612EABBA7D5F5222377BEBD7B ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
22:29:15.0511 4596 amd_xata - ok
22:29:15.0542 4596 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
22:29:15.0589 4596 AppID - ok
22:29:15.0620 4596 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:29:15.0682 4596 AppIDSvc - ok
22:29:15.0714 4596 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
22:29:15.0745 4596 Appinfo - ok
22:29:15.0776 4596 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
22:29:15.0776 4596 arc - ok
22:29:15.0807 4596 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:29:15.0807 4596 arcsas - ok
22:29:15.0901 4596 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:29:15.0948 4596 aspnet_state - ok
22:29:15.0979 4596 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:29:16.0088 4596 AsyncMac - ok
22:29:16.0119 4596 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
22:29:16.0119 4596 atapi - ok
22:29:16.0166 4596 [ C8B17AC82AD2EE9E0E58E3461008C5F7 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
22:29:16.0166 4596 AtiHDAudioService - ok
22:29:16.0213 4596 [ 8DF873D0587596C1D35A9CECECC61DA1 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
22:29:16.0213 4596 AtiHdmiService - ok
22:29:16.0260 4596 [ 4FFE74E33BD9170950116F0CA46EAC89 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
22:29:16.0275 4596 AtiPcie - ok
22:29:16.0306 4596 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:29:16.0369 4596 AudioEndpointBuilder - ok
22:29:16.0384 4596 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
22:29:16.0416 4596 Audiosrv - ok
22:29:16.0431 4596 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:29:16.0494 4596 AxInstSV - ok
22:29:16.0525 4596 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
22:29:16.0572 4596 b06bdrv - ok
22:29:16.0587 4596 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
22:29:16.0603 4596 b57nd60x - ok
22:29:16.0634 4596 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
22:29:16.0665 4596 BDESVC - ok
22:29:16.0696 4596 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
22:29:16.0743 4596 Beep - ok
22:29:16.0774 4596 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
22:29:16.0852 4596 BFE - ok
22:29:16.0868 4596 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
22:29:16.0899 4596 BITS - ok
22:29:16.0930 4596 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:29:16.0930 4596 blbdrive - ok
22:29:16.0977 4596 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:29:17.0024 4596 bowser - ok
22:29:17.0055 4596 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:29:17.0086 4596 BrFiltLo - ok
22:29:17.0149 4596 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:29:17.0196 4596 BrFiltUp - ok
22:29:17.0398 4596 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:29:17.0492 4596 BridgeMP - ok
22:29:17.0523 4596 [ 6E11F33D14D020F58D5E02E4D67DFA19 ] Browser C:\Windows\System32\browser.dll
22:29:17.0554 4596 Browser - ok
22:29:17.0586 4596 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:29:17.0617 4596 Brserid - ok
22:29:17.0648 4596 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:29:17.0679 4596 BrSerWdm - ok
22:29:17.0710 4596 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:29:17.0726 4596 BrUsbMdm - ok
22:29:17.0757 4596 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:29:17.0773 4596 BrUsbSer - ok
22:29:17.0788 4596 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:29:17.0835 4596 BTHMODEM - ok
22:29:17.0882 4596 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
22:29:17.0944 4596 bthserv - ok
22:29:18.0069 4596 catchme - ok
22:29:18.0100 4596 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:29:18.0147 4596 cdfs - ok
22:29:18.0178 4596 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:29:18.0194 4596 cdrom - ok
22:29:18.0225 4596 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
22:29:18.0272 4596 CertPropSvc - ok
22:29:18.0288 4596 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:29:18.0303 4596 circlass - ok
22:29:18.0334 4596 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
22:29:18.0350 4596 CLFS - ok
22:29:18.0397 4596 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:29:18.0397 4596 clr_optimization_v2.0.50727_32 - ok
22:29:18.0428 4596 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:29:18.0444 4596 clr_optimization_v4.0.30319_32 - ok
22:29:18.0459 4596 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:29:18.0490 4596 CmBatt - ok
22:29:18.0522 4596 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
22:29:18.0522 4596 cmdide - ok
22:29:18.0553 4596 [ 1B675691ED940766149C93E8F4488D68 ] CNG C:\Windows\system32\Drivers\cng.sys
22:29:18.0584 4596 CNG - ok
22:29:18.0600 4596 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:29:18.0615 4596 Compbatt - ok
22:29:18.0631 4596 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
22:29:18.0646 4596 CompositeBus - ok
22:29:18.0662 4596 COMSysApp - ok
22:29:18.0693 4596 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:29:18.0693 4596 crcdisk - ok
22:29:18.0724 4596 [ A585BEBF7D054BD9618EDA0922D5484A ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:29:18.0756 4596 CryptSvc - ok
22:29:18.0787 4596 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
22:29:18.0818 4596 DcomLaunch - ok
22:29:18.0849 4596 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
22:29:18.0896 4596 defragsvc - ok
22:29:18.0927 4596 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:29:18.0974 4596 DfsC - ok
22:29:19.0005 4596 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
22:29:19.0036 4596 Dhcp - ok
22:29:19.0052 4596 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
22:29:19.0068 4596 discache - ok
22:29:19.0099 4596 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:29:19.0099 4596 Disk - ok
22:29:19.0130 4596 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:29:19.0177 4596 Dnscache - ok
22:29:19.0208 4596 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
22:29:19.0255 4596 dot3svc - ok
22:29:19.0286 4596 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
22:29:19.0333 4596 DPS - ok
22:29:19.0364 4596 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:29:19.0395 4596 drmkaud - ok
22:29:19.0426 4596 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:29:19.0458 4596 DXGKrnl - ok
22:29:19.0489 4596 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
22:29:19.0520 4596 EapHost - ok
22:29:19.0614 4596 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
22:29:19.0660 4596 ebdrv - ok
22:29:19.0676 4596 [ F42309C4191C506B71DB5D1126D26318 ] EFS C:\Windows\System32\lsass.exe
22:29:19.0723 4596 EFS - ok
22:29:19.0738 4596 ehRecvr - ok
22:29:19.0754 4596 ehSched - ok
22:29:19.0785 4596 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:29:19.0801 4596 elxstor - ok
22:29:19.0816 4596 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
22:29:19.0832 4596 ErrDev - ok
22:29:19.0863 4596 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
22:29:19.0879 4596 EventSystem - ok
22:29:19.0910 4596 [ E1556AF3FB0284C32896B9AC8494D9C2 ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
22:29:19.0957 4596 ewusbnet - ok
22:29:20.0004 4596 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
22:29:20.0050 4596 ew_hwusbdev - ok
22:29:20.0082 4596 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
22:29:20.0113 4596 exfat - ok
22:29:20.0128 4596 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:29:20.0160 4596 fastfat - ok
22:29:20.0191 4596 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
22:29:20.0238 4596 Fax - ok
22:29:20.0269 4596 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:29:20.0300 4596 fdc - ok
22:29:20.0331 4596 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
22:29:20.0409 4596 fdPHost - ok
22:29:20.0440 4596 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
22:29:20.0487 4596 FDResPub - ok
22:29:20.0518 4596 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:29:20.0534 4596 FileInfo - ok
22:29:20.0550 4596 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:29:20.0581 4596 Filetrace - ok
22:29:20.0596 4596 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:29:20.0612 4596 flpydisk - ok
22:29:20.0628 4596 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:29:20.0643 4596 FltMgr - ok
22:29:20.0659 4596 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
22:29:20.0706 4596 FontCache - ok
22:29:20.0768 4596 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:29:20.0784 4596 FontCache3.0.0.0 - ok
22:29:20.0799 4596 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:29:20.0830 4596 FsDepends - ok
22:29:20.0846 4596 [ A574B4360E438977038AAE4BF60D79A2 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:29:20.0862 4596 Fs_Rec - ok
22:29:20.0893 4596 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:29:20.0908 4596 fvevol - ok
22:29:20.0940 4596 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:29:20.0955 4596 gagp30kx - ok
22:29:20.0971 4596 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
22:29:21.0018 4596 gpsvc - ok
22:29:21.0111 4596 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:29:21.0142 4596 gupdate - ok
22:29:21.0142 4596 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:29:21.0142 4596 gupdatem - ok
22:29:21.0158 4596 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:29:21.0205 4596 hcw85cir - ok
22:29:21.0236 4596 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:29:21.0267 4596 HdAudAddService - ok
22:29:21.0298 4596 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:29:21.0330 4596 HDAudBus - ok
22:29:21.0345 4596 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:29:21.0376 4596 HidBatt - ok
22:29:21.0392 4596 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:29:21.0408 4596 HidBth - ok
22:29:21.0439 4596 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:29:21.0470 4596 HidIr - ok
22:29:21.0501 4596 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
22:29:21.0532 4596 hidserv - ok
22:29:21.0564 4596 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:29:21.0579 4596 HidUsb - ok
22:29:21.0626 4596 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:29:21.0688 4596 hkmsvc - ok
22:29:21.0720 4596 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:29:21.0751 4596 HomeGroupListener - ok
22:29:21.0782 4596 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:29:21.0813 4596 HomeGroupProvider - ok
22:29:21.0844 4596 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
22:29:21.0844 4596 HpSAMD - ok
22:29:21.0876 4596 [ 950CC1E6AE3A6CD23E0945CDE089B02C ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys
22:29:21.0922 4596 HTCAND32 - ok
22:29:21.0954 4596 [ 339ADEFAD60353F960E3CA67CE468C24 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
22:29:22.0000 4596 htcnprot - ok
22:29:22.0047 4596 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:29:22.0094 4596 HTTP - ok
22:29:22.0110 4596 [ A89423D0132C8AB69BA621B6CE191714 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
22:29:22.0125 4596 hwdatacard - ok
22:29:22.0172 4596 [ 4745A8B2BE115B054F31A86B0E64BB01 ] HWiNFO32 C:\Windows\system32\drivers\HWiNFO32.SYS
22:29:22.0188 4596 HWiNFO32 - ok
22:29:22.0219 4596 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:29:22.0219 4596 hwpolicy - ok
22:29:22.0250 4596 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:29:22.0281 4596 i8042prt - ok
22:29:22.0312 4596 [ 71F1A494FEDF4B33C02C4A6A28D6D9E9 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:29:22.0328 4596 iaStorV - ok
22:29:22.0359 4596 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:29:22.0390 4596 idsvc - ok
22:29:22.0422 4596 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:29:22.0437 4596 iirsp - ok
22:29:22.0484 4596 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
22:29:22.0546 4596 IKEEXT - ok
22:29:22.0640 4596 [ 4BE85CF5831A41104C2DDED55FBC3565 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
22:29:22.0687 4596 IntcAzAudAddService - ok
22:29:22.0702 4596 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
22:29:22.0718 4596 intelide - ok
22:29:22.0749 4596 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:29:22.0780 4596 intelppm - ok
22:29:22.0812 4596 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:29:22.0858 4596 IPBusEnum - ok
22:29:22.0874 4596 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:29:22.0890 4596 IpFilterDriver - ok
22:29:22.0921 4596 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:29:22.0952 4596 iphlpsvc - ok
22:29:22.0983 4596 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
22:29:22.0999 4596 IPMIDRV - ok
22:29:23.0030 4596 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:29:23.0061 4596 IPNAT - ok
22:29:23.0077 4596 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:29:23.0108 4596 IRENUM - ok
22:29:23.0124 4596 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
22:29:23.0124 4596 isapnp - ok
22:29:23.0155 4596 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
22:29:23.0155 4596 iScsiPrt - ok
22:29:23.0202 4596 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:29:23.0202 4596 kbdclass - ok
22:29:23.0217 4596 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:29:23.0233 4596 kbdhid - ok
22:29:23.0248 4596 [ F42309C4191C506B71DB5D1126D26318 ] KeyIso C:\Windows\system32\lsass.exe
22:29:23.0264 4596 KeyIso - ok
22:29:23.0280 4596 [ 412CEA1AA78CC02A447F5C9E62B32FF1 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:29:23.0280 4596 KSecDD - ok
22:29:23.0311 4596 [ 26C046977E85B95036453D7B88BA1820 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:29:23.0311 4596 KSecPkg - ok
22:29:23.0342 4596 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
22:29:23.0373 4596 KtmRm - ok
22:29:23.0404 4596 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
22:29:23.0482 4596 LanmanServer - ok
22:29:23.0498 4596 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:29:23.0545 4596 LanmanWorkstation - ok
22:29:23.0576 4596 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:29:23.0623 4596 lltdio - ok
22:29:23.0654 4596 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:29:23.0701 4596 lltdsvc - ok
22:29:23.0716 4596 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
22:29:23.0763 4596 lmhosts - ok
22:29:23.0810 4596 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:29:23.0826 4596 LSI_FC - ok
22:29:23.0841 4596 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:29:23.0857 4596 LSI_SAS - ok
22:29:23.0872 4596 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:29:23.0888 4596 LSI_SAS2 - ok
22:29:23.0904 4596 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:29:23.0904 4596 LSI_SCSI - ok
22:29:23.0935 4596 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
22:29:23.0966 4596 luafv - ok
22:29:23.0997 4596 [ ED643E777BA3F7151EF3F0FB6BE4F7F0 ] LVRS C:\Windows\system32\DRIVERS\lvrs.sys
22:29:23.0997 4596 LVRS - ok
22:29:24.0091 4596 [ 5BC80451109A8DD7F2DDD35BCE2929A3 ] LVUVC C:\Windows\system32\DRIVERS\lvuvc.sys
22:29:24.0153 4596 LVUVC - ok
22:29:24.0169 4596 Mcx2Svc - ok
22:29:24.0184 4596 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:29:24.0200 4596 megasas - ok
22:29:24.0231 4596 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:29:24.0247 4596 MegaSR - ok
22:29:24.0262 4596 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
22:29:24.0294 4596 MMCSS - ok
22:29:24.0309 4596 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
22:29:24.0356 4596 Modem - ok
22:29:24.0372 4596 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:29:24.0403 4596 monitor - ok
22:29:24.0434 4596 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:29:24.0450 4596 mouclass - ok
22:29:24.0465 4596 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:29:24.0496 4596 mouhid - ok
22:29:24.0512 4596 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:29:24.0528 4596 mountmgr - ok
22:29:24.0590 4596 [ 338037EFA0E8E8699B2667D57B751574 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:29:24.0621 4596 MozillaMaintenance - ok
22:29:24.0668 4596 [ E77DC03DD3C8E5A388BF9EED2A28F3D1 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
22:29:24.0699 4596 MpFilter - ok
22:29:24.0715 4596 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
22:29:24.0730 4596 mpio - ok
22:29:24.0808 4596 MpKsl8fa421b6 - ok
22:29:24.0824 4596 MpNWMon - ok
22:29:24.0855 4596 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:29:24.0918 4596 mpsdrv - ok
22:29:24.0949 4596 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:29:24.0996 4596 MpsSvc - ok
22:29:25.0027 4596 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:29:25.0058 4596 MRxDAV - ok
22:29:25.0105 4596 [ ED3D3419B064F28D812995ED8CADC541 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:29:25.0120 4596 mrxsmb - ok
22:29:25.0136 4596 [ DC914446049169A964E27FD8888FFAEE ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:29:25.0152 4596 mrxsmb10 - ok
22:29:25.0167 4596 [ E7D90388D14FAE057C166C1801E0BF94 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:29:25.0183 4596 mrxsmb20 - ok
22:29:25.0198 4596 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
22:29:25.0214 4596 msahci - ok
22:29:25.0230 4596 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
22:29:25.0245 4596 msdsm - ok
22:29:25.0261 4596 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
22:29:25.0276 4596 MSDTC - ok
22:29:25.0323 4596 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:29:25.0370 4596 Msfs - ok
22:29:25.0386 4596 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:29:25.0417 4596 mshidkmdf - ok
22:29:25.0448 4596 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
22:29:25.0448 4596 msisadrv - ok
22:29:25.0479 4596 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:29:25.0510 4596 MSiSCSI - ok
22:29:25.0510 4596 msiserver - ok
22:29:25.0542 4596 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:29:25.0604 4596 MSKSSRV - ok
22:29:25.0620 4596 MsMpSvc - ok
22:29:25.0635 4596 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:29:25.0666 4596 MSPCLOCK - ok
22:29:25.0682 4596 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:29:25.0713 4596 MSPQM - ok
22:29:25.0729 4596 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:29:25.0744 4596 MsRPC - ok
22:29:25.0760 4596 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:29:25.0776 4596 mssmbios - ok
22:29:25.0807 4596 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:29:25.0854 4596 MSTEE - ok
22:29:25.0869 4596 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:29:25.0885 4596 MTConfig - ok
22:29:25.0900 4596 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
22:29:25.0916 4596 Mup - ok
22:29:25.0932 4596 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
22:29:25.0978 4596 napagent - ok
22:29:26.0010 4596 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:29:26.0056 4596 NativeWifiP - ok
22:29:26.0103 4596 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:29:26.0134 4596 NDIS - ok
22:29:26.0166 4596 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:29:26.0212 4596 NdisCap - ok
22:29:26.0228 4596 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:29:26.0259 4596 NdisTapi - ok
22:29:26.0290 4596 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:29:26.0306 4596 Ndisuio - ok
22:29:26.0337 4596 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:29:26.0353 4596 NdisWan - ok
22:29:26.0368 4596 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:29:26.0400 4596 NDProxy - ok
22:29:26.0431 4596 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:29:26.0462 4596 NetBIOS - ok
22:29:26.0493 4596 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:29:26.0524 4596 NetBT - ok
22:29:26.0540 4596 [ F42309C4191C506B71DB5D1126D26318 ] Netlogon C:\Windows\system32\lsass.exe
22:29:26.0556 4596 Netlogon - ok
22:29:26.0587 4596 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
22:29:26.0618 4596 Netman - ok
22:29:26.0649 4596 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:29:26.0680 4596 NetMsmqActivator - ok
22:29:26.0696 4596 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:29:26.0712 4596 NetPipeActivator - ok
22:29:26.0727 4596 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
22:29:26.0758 4596 netprofm - ok
22:29:26.0774 4596 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:29:26.0790 4596 NetTcpActivator - ok
22:29:26.0790 4596 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:29:26.0790 4596 NetTcpPortSharing - ok
22:29:26.0836 4596 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:29:26.0836 4596 nfrd960 - ok
22:29:26.0899 4596 [ 32FF06EC6D946EF791D98D6C838A3090 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:29:26.0914 4596 NisDrv - ok
22:29:26.0914 4596 NisSrv - ok
22:29:26.0961 4596 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:29:26.0992 4596 NlaSvc - ok
22:29:27.0024 4596 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:29:27.0055 4596 Npfs - ok
22:29:27.0070 4596 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
22:29:27.0102 4596 nsi - ok
22:29:27.0117 4596 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:29:27.0133 4596 nsiproxy - ok
22:29:27.0180 4596 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:29:27.0211 4596 Ntfs - ok
22:29:27.0226 4596 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
22:29:27.0258 4596 Null - ok
22:29:27.0445 4596 [ B0881DDA5A8160422561FFAB7F0008B1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:29:27.0538 4596 nvlddmkm - ok
22:29:27.0570 4596 [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:29:27.0570 4596 nvraid - ok
22:29:27.0601 4596 [ 4520B63899E867F354EE012D34E11536 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:29:27.0601 4596 nvstor - ok
22:29:27.0632 4596 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
22:29:27.0648 4596 nv_agp - ok
22:29:27.0663 4596 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
22:29:27.0694 4596 ohci1394 - ok
22:29:27.0741 4596 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:29:27.0757 4596 ose - ok
22:29:27.0897 4596 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:29:27.0960 4596 osppsvc - ok
22:29:27.0991 4596 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:29:28.0022 4596 p2pimsvc - ok
22:29:28.0038 4596 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
22:29:28.0053 4596 p2psvc - ok
22:29:28.0069 4596 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:29:28.0084 4596 Parport - ok
22:29:28.0084 4596 [ BF8F6AF06DA75B336F07E23AEF97D93B ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:29:28.0100 4596 partmgr - ok
22:29:28.0131 4596 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
22:29:28.0131 4596 Parvdm - ok
22:29:28.0194 4596 [ 39B9DCD7040654C2E57D7396736C718E ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
22:29:28.0209 4596 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
22:29:28.0209 4596 PassThru Service - detected UnsignedFile.Multi.Generic (1)
22:29:28.0240 4596 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:29:28.0287 4596 PcaSvc - ok
22:29:28.0287 4596 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
22:29:28.0303 4596 pci - ok
22:29:28.0334 4596 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
22:29:28.0334 4596 pciide - ok
22:29:28.0365 4596 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:29:28.0381 4596 pcmcia - ok
22:29:28.0396 4596 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
22:29:28.0412 4596 pcw - ok
22:29:28.0428 4596 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:29:28.0459 4596 PEAUTH - ok
22:29:28.0521 4596 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
22:29:28.0584 4596 pla - ok
22:29:28.0630 4596 [ 92DC6E68D2C856C5C2F21AE9E22112B8 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:29:28.0662 4596 PlugPlay - ok
22:29:28.0677 4596 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:29:28.0693 4596 PNRPAutoReg - ok
22:29:28.0708 4596 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:29:28.0724 4596 PNRPsvc - ok
22:29:28.0755 4596 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:29:28.0786 4596 PolicyAgent - ok
22:29:28.0818 4596 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
22:29:28.0864 4596 Power - ok
22:29:28.0896 4596 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:29:28.0942 4596 PptpMiniport - ok
22:29:28.0974 4596 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:29:28.0989 4596 Processor - ok
22:29:29.0005 4596 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
22:29:29.0036 4596 ProfSvc - ok
22:29:29.0052 4596 [ F42309C4191C506B71DB5D1126D26318 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:29:29.0067 4596 ProtectedStorage - ok
22:29:29.0083 4596 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:29:29.0114 4596 Psched - ok
22:29:29.0145 4596 [ A6A7AD767BF5141665F5C675F671B3E1 ] PSI_SVC_2 c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
22:29:29.0145 4596 PSI_SVC_2 - ok
22:29:29.0208 4596 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:29:29.0223 4596 ql2300 - ok
22:29:29.0254 4596 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:29:29.0286 4596 ql40xx - ok
22:29:29.0301 4596 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
22:29:29.0348 4596 QWAVE - ok
22:29:29.0364 4596 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:29:29.0395 4596 QWAVEdrv - ok
22:29:29.0395 4596 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:29:29.0426 4596 RasAcd - ok
22:29:29.0473 4596 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:29:29.0520 4596 RasAgileVpn - ok
22:29:29.0551 4596 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
22:29:29.0582 4596 RasAuto - ok
22:29:29.0613 4596 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:29:29.0629 4596 Rasl2tp - ok
22:29:29.0660 4596 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
22:29:29.0738 4596 RasMan - ok
22:29:29.0754 4596 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:29:29.0800 4596 RasPppoe - ok
22:29:29.0816 4596 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:29:29.0832 4596 RasSstp - ok
22:29:29.0863 4596 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:29:29.0894 4596 rdbss - ok
22:29:29.0910 4596 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:29:29.0925 4596 rdpbus - ok
22:29:29.0941 4596 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:29:29.0972 4596 RDPCDD - ok
22:29:30.0003 4596 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:29:30.0034 4596 RDPENCDD - ok
22:29:30.0050 4596 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:29:30.0081 4596 RDPREFMP - ok
22:29:30.0097 4596 [ 288B06960D78428FF89E811632684E20 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:29:30.0128 4596 RDPWD - ok
22:29:30.0175 4596 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:29:30.0206 4596 rdyboost - ok
22:29:30.0222 4596 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
22:29:30.0253 4596 RemoteAccess - ok
22:29:30.0284 4596 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:29:30.0331 4596 RemoteRegistry - ok
22:29:30.0346 4596 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:29:30.0378 4596 RpcEptMapper - ok
22:29:30.0393 4596 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
22:29:30.0409 4596 RpcLocator - ok
22:29:30.0424 4596 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
22:29:30.0456 4596 RpcSs - ok
22:29:30.0502 4596 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:29:30.0565 4596 rspndr - ok
22:29:30.0612 4596 [ 5283B9A27FF230F2FF70D92451FF409A ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
22:29:30.0627 4596 RTL8167 - ok
22:29:30.0643 4596 [ 9CE8DEFFAFFCCBF473015D76AE8EE514 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
22:29:30.0674 4596 RTL8192su - ok
22:29:30.0674 4596 [ F42309C4191C506B71DB5D1126D26318 ] SamSs C:\Windows\system32\lsass.exe
22:29:30.0690 4596 SamSs - ok
22:29:30.0752 4596 [ 408D5DEFD7D919C03F9F47386C830FE5 ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
22:29:30.0768 4596 SbieDrv - ok
22:29:30.0799 4596 [ 64911F6ED2E3EDDE7AFF9BE754E8D0DE ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
22:29:30.0814 4596 SbieSvc - ok
22:29:30.0830 4596 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
22:29:30.0846 4596 sbp2port - ok
22:29:30.0861 4596 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:29:30.0908 4596 SCardSvr - ok
22:29:30.0908 4596 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:29:30.0939 4596 scfilter - ok
22:29:30.0970 4596 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
22:29:31.0048 4596 Schedule - ok
22:29:31.0048 4596 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:29:31.0064 4596 SCPolicySvc - ok
22:29:31.0095 4596 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:29:31.0142 4596 SDRSVC - ok
22:29:31.0173 4596 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:29:31.0220 4596 secdrv - ok
22:29:31.0236 4596 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
22:29:31.0267 4596 seclogon - ok
22:29:31.0267 4596 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
22:29:31.0298 4596 SENS - ok
22:29:31.0314 4596 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:29:31.0329 4596 SensrSvc - ok
22:29:31.0360 4596 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:29:31.0392 4596 Serenum - ok
22:29:31.0407 4596 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:29:31.0423 4596 Serial - ok
22:29:31.0454 4596 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:29:31.0485 4596 sermouse - ok
22:29:31.0548 4596 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
22:29:31.0579 4596 SessionEnv - ok
22:29:31.0594 4596 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
22:29:31.0641 4596 sffdisk - ok
22:29:31.0657 4596 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
22:29:31.0704 4596 sffp_mmc - ok
22:29:31.0719 4596 [ A0708BBD07D245C06FF9DE549CA47185 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
22:29:31.0750 4596 sffp_sd - ok
22:29:31.0766 4596 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:29:31.0813 4596 sfloppy - ok
22:29:31.0844 4596 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:29:31.0906 4596 SharedAccess - ok
22:29:31.0922 4596 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:29:31.0938 4596 ShellHWDetection - ok
22:29:31.0969 4596 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
22:29:31.0969 4596 sisagp - ok
22:29:31.0984 4596 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:29:32.0000 4596 SiSRaid2 - ok
22:29:32.0016 4596 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:29:32.0031 4596 SiSRaid4 - ok
22:29:32.0078 4596 [ 50D9949020E02B847CD48F1243FCB895 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
22:29:32.0109 4596 SkypeUpdate - ok
22:29:32.0140 4596 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:29:32.0187 4596 Smb - ok
22:29:32.0234 4596 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:29:32.0250 4596 SNMPTRAP - ok
22:29:32.0265 4596 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
22:29:32.0265 4596 spldr - ok
22:29:32.0296 4596 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
22:29:32.0328 4596 Spooler - ok
22:29:32.0421 4596 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
22:29:32.0468 4596 sppsvc - ok
22:29:32.0499 4596 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:29:32.0515 4596 sppuinotify - ok
22:29:32.0530 4596 [ 4E636465A8653BA3BF29F929AA578E6F ] srv C:\Windows\system32\DRIVERS\srv.sys
22:29:32.0577 4596 srv - ok
22:29:32.0593 4596 [ 4E4E17A3865F650EE8C67726872D9431 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:29:32.0608 4596 srv2 - ok
22:29:32.0624 4596 [ 1346DFF5BE932939997D373D61A35626 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:29:32.0640 4596 srvnet - ok
22:29:32.0671 4596 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:29:32.0702 4596 SSDPSRV - ok
22:29:32.0718 4596 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:29:32.0749 4596 SstpSvc - ok
22:29:32.0764 4596 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:29:32.0780 4596 stexstor - ok
22:29:32.0827 4596 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
22:29:32.0858 4596 StiSvc - ok
22:29:32.0889 4596 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:29:32.0889 4596 swenum - ok
22:29:32.0920 4596 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
22:29:32.0967 4596 swprv - ok
22:29:32.0998 4596 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
22:29:33.0045 4596 SysMain - ok
22:29:33.0123 4596 [ C7A3D0DA9A546B9127A88CDFC514A531 ] SystemStoreService C:\Program Files\SoftwareUpdater\SystemStore.exe
22:29:33.0154 4596 SystemStoreService ( UnsignedFile.Multi.Generic ) - warning
22:29:33.0154 4596 SystemStoreService - detected UnsignedFile.Multi.Generic (1)
22:29:33.0170 4596 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:29:33.0201 4596 TabletInputService - ok
22:29:33.0217 4596 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
22:29:33.0264 4596 TapiSrv - ok
22:29:33.0279 4596 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
22:29:33.0310 4596 TBS - ok
22:29:33.0342 4596 [ 37E8FA3779668837CA9E2C36D2415949 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:29:33.0357 4596 Tcpip - ok
22:29:33.0388 4596 [ 37E8FA3779668837CA9E2C36D2415949 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:29:33.0404 4596 TCPIP6 - ok
22:29:33.0420 4596 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:29:33.0451 4596 tcpipreg - ok
22:29:33.0482 4596 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:29:33.0513 4596 TDPIPE - ok
22:29:33.0544 4596 [ 2C10395BAA4847F83042813C515CC289 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:29:33.0560 4596 TDTCP - ok
22:29:33.0591 4596 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:29:33.0607 4596 tdx - ok
22:29:33.0638 4596 TeamViewer6 - ok
22:29:33.0810 4596 [ D53118C165AE5D188632B6CDEEE82A1B ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
22:29:33.0856 4596 TeamViewer8 - ok
22:29:33.0903 4596 [ 9101FFFCFCCD1A30E870A5B8A9091B10 ] teamviewervpn C:\Windows\system32\DRIVERS\teamviewervpn.sys
22:29:33.0934 4596 teamviewervpn - ok
22:29:33.0981 4596 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:29:33.0981 4596 TermDD - ok
22:29:34.0012 4596 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
22:29:34.0059 4596 TermService - ok
22:29:34.0090 4596 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
22:29:34.0122 4596 Themes - ok
22:29:34.0137 4596 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
22:29:34.0168 4596 THREADORDER - ok
22:29:34.0184 4596 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
22:29:34.0215 4596 TrkWks - ok
22:29:34.0231 4596 truecrypt - ok
22:29:34.0262 4596 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:29:34.0340 4596 TrustedInstaller - ok
22:29:34.0356 4596 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:29:34.0387 4596 tssecsrv - ok
22:29:34.0434 4596 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:29:34.0480 4596 TsUsbFlt - ok
22:29:34.0512 4596 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:29:34.0558 4596 tunnel - ok
22:29:34.0574 4596 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:29:34.0590 4596 uagp35 - ok
22:29:34.0605 4596 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:29:34.0636 4596 udfs - ok
22:29:34.0668 4596 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:29:34.0683 4596 UI0Detect - ok
22:29:34.0714 4596 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
22:29:34.0714 4596 uliagpkx - ok
22:29:34.0746 4596 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:29:34.0746 4596 umbus - ok
22:29:34.0761 4596 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:29:34.0808 4596 UmPass - ok
22:29:34.0839 4596 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
22:29:34.0855 4596 UMVPFSrv - ok
22:29:34.0902 4596 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
22:29:34.0948 4596 upnphost - ok
22:29:34.0964 4596 [ 2436A42AAB4AD48A9B714E5B0F344627 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:29:34.0980 4596 usbaudio - ok
22:29:34.0995 4596 [ 8455C4ED038EFD09E99327F9D2D48FFA ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:29:35.0026 4596 usbccgp - ok
22:29:35.0042 4596 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
22:29:35.0058 4596 usbcir - ok
22:29:35.0089 4596 [ FF32D4F3EC3C68B2CA61782C7964F54E ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:29:35.0104 4596 usbehci - ok
22:29:35.0151 4596 [ FB0E8B624D1F7E214EDB3D6E56B4EC88 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
22:29:35.0167 4596 usbfilter - ok
22:29:35.0182 4596 [ B0DFC7B484E0CA0C27BDA5433B82D94A ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:29:35.0214 4596 usbhub - ok
22:29:35.0229 4596 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:29:35.0245 4596 usbohci - ok
22:29:35.0276 4596 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:29:35.0307 4596 usbprint - ok
22:29:35.0354 4596 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:29:35.0370 4596 usbscan - ok
22:29:35.0385 4596 [ 694C991CD0B8138888F086DA6009ADBC ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:29:35.0432 4596 USBSTOR - ok
22:29:35.0448 4596 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:29:35.0463 4596 usbuhci - ok
22:29:35.0494 4596 [ 53CD7AEC95054E585457D27D1D255D73 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
22:29:35.0526 4596 usb_rndisx - ok
22:29:35.0541 4596 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
22:29:35.0572 4596 UxSms - ok
22:29:35.0572 4596 [ F42309C4191C506B71DB5D1126D26318 ] VaultSvc C:\Windows\system32\lsass.exe
22:29:35.0588 4596 VaultSvc - ok
22:29:35.0619 4596 [ F6D4E8BE72D03A6B1A72C12790C51C48 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
22:29:35.0635 4596 VBoxDrv - ok
22:29:35.0650 4596 [ 42934F05BA89F589A34A11E0661C233B ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
22:29:35.0650 4596 VBoxNetAdp - ok
22:29:35.0666 4596 VBoxNetFlt - ok
22:29:35.0682 4596 [ 0115E38F398DD71830B522BA28C1B2C5 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
22:29:35.0682 4596 VBoxUSBMon - ok
22:29:35.0713 4596 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
22:29:35.0728 4596 vdrvroot - ok
22:29:35.0744 4596 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
22:29:35.0775 4596 vds - ok
22:29:35.0791 4596 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:29:35.0822 4596 vga - ok
22:29:35.0838 4596 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:29:35.0869 4596 VgaSave - ok
22:29:35.0900 4596 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
22:29:35.0931 4596 vhdmp - ok
22:29:35.0947 4596 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
22:29:35.0962 4596 viaagp - ok
22:29:35.0978 4596 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
22:29:35.0994 4596 ViaC7 - ok
22:29:36.0009 4596 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
22:29:36.0025 4596 viaide - ok
22:29:36.0025 4596 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
22:29:36.0040 4596 volmgr - ok
22:29:36.0056 4596 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:29:36.0072 4596 volmgrx - ok
22:29:36.0087 4596 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
22:29:36.0103 4596 volsnap - ok
22:29:36.0118 4596 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:29:36.0134 4596 vsmraid - ok
22:29:36.0165 4596 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
22:29:36.0196 4596 VSS - ok
22:29:36.0212 4596 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:29:36.0228 4596 vwifibus - ok
22:29:36.0228 4596 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:29:36.0243 4596 vwififlt - ok
22:29:36.0274 4596 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
22:29:36.0290 4596 vwifimp - ok
22:29:36.0306 4596 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
22:29:36.0337 4596 W32Time - ok
22:29:36.0352 4596 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:29:36.0368 4596 WacomPen - ok
22:29:36.0399 4596 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:29:36.0415 4596 WANARP - ok
22:29:36.0415 4596 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:29:36.0430 4596 Wanarpv6 - ok
22:29:36.0477 4596 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:29:36.0508 4596 WatAdminSvc - ok
22:29:36.0540 4596 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
22:29:36.0586 4596 wbengine - ok
22:29:36.0602 4596 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:29:36.0649 4596 WbioSrvc - ok
22:29:36.0696 4596 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:29:36.0727 4596 wcncsvc - ok
22:29:36.0742 4596 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:29:36.0774 4596 WcsPlugInService - ok
22:29:36.0789 4596 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:29:36.0805 4596 Wd - ok
22:29:36.0836 4596 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:29:36.0852 4596 Wdf01000 - ok
22:29:36.0883 4596 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:29:36.0930 4596 WdiServiceHost - ok
22:29:36.0930 4596 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:29:36.0976 4596 WdiSystemHost - ok
22:29:36.0992 4596 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
22:29:37.0023 4596 WebClient - ok
22:29:37.0054 4596 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:29:37.0117 4596 Wecsvc - ok
22:29:37.0132 4596 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:29:37.0164 4596 wercplsupport - ok
22:29:37.0195 4596 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
22:29:37.0226 4596 WerSvc - ok
22:29:37.0242 4596 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:29:37.0273 4596 WfpLwf - ok
22:29:37.0288 4596 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:29:37.0288 4596 WIMMount - ok
22:29:37.0366 4596 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
22:29:37.0398 4596 WinDefend - ok
22:29:37.0413 4596 WinHttpAutoProxySvc - ok
22:29:37.0460 4596 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:29:37.0507 4596 Winmgmt - ok
22:29:37.0569 4596 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
22:29:37.0616 4596 WinRM - ok
22:29:37.0663 4596 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:29:37.0710 4596 WinUsb - ok
22:29:37.0741 4596 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:29:37.0772 4596 Wlansvc - ok
22:29:37.0819 4596 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:29:37.0819 4596 wlcrasvc - ok
22:29:37.0897 4596 [ 0A70F4022EC2E14C159EFC4F69AA2477 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:29:37.0928 4596 wlidsvc - ok
22:29:37.0944 4596 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:29:37.0959 4596 WmiAcpi - ok
22:29:37.0990 4596 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:29:38.0022 4596 wmiApSrv - ok
22:29:38.0037 4596 WMPNetworkSvc - ok
22:29:38.0068 4596 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:29:38.0115 4596 WPCSvc - ok
22:29:38.0146 4596 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:29:38.0178 4596 WPDBusEnum - ok
22:29:38.0209 4596 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:29:38.0240 4596 ws2ifsl - ok
22:29:38.0271 4596 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
22:29:38.0302 4596 wscsvc - ok
22:29:38.0302 4596 WSearch - ok
22:29:38.0349 4596 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
22:29:38.0380 4596 wuauserv - ok
22:29:38.0396 4596 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:29:38.0458 4596 WudfPf - ok
22:29:38.0474 4596 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:29:38.0505 4596 WUDFRd - ok
22:29:38.0536 4596 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:29:38.0583 4596 wudfsvc - ok
22:29:38.0614 4596 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
22:29:38.0630 4596 WwanSvc - ok
22:29:38.0646 4596 ================ Scan global ===============================
22:29:38.0677 4596 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
22:29:38.0692 4596 [ A9F564F254E9DDDE120A7135767EC24B ] C:\Windows\system32\winsrv.dll
22:29:38.0692 4596 [ A9F564F254E9DDDE120A7135767EC24B ] C:\Windows\system32\winsrv.dll
22:29:38.0724 4596 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
22:29:38.0739 4596 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
22:29:38.0739 4596 [Global] - ok
22:29:38.0739 4596 ================ Scan MBR ==================================
22:29:38.0755 4596 [ 8BCB23B30DB1819E7D8DDAE01AEBB583 ] \Device\Harddisk0\DR0
22:29:41.0048 4596 \Device\Harddisk0\DR0 - ok
22:29:41.0048 4596 ================ Scan VBR ==================================
22:29:41.0079 4596 [ E5E09F3A3F57DF6DDB8DF9574030AA67 ] \Device\Harddisk0\DR0\Partition1
22:29:41.0079 4596 \Device\Harddisk0\DR0\Partition1 - ok
22:29:41.0095 4596 [ 97F7CF239436882D20A672EABE986F93 ] \Device\Harddisk0\DR0\Partition2
22:29:41.0111 4596 \Device\Harddisk0\DR0\Partition2 - ok
22:29:41.0142 4596 [ A549E879ECBF85AA75F70ED669E492C8 ] \Device\Harddisk0\DR0\Partition3
22:29:41.0142 4596 \Device\Harddisk0\DR0\Partition3 - ok
22:29:41.0142 4596 ============================================================
22:29:41.0142 4596 Scan finished
22:29:41.0142 4596 ============================================================
22:29:41.0157 3172 Detected object count: 2
22:29:41.0157 3172 Actual detected object count: 2
22:29:55.0993 3172 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
22:29:55.0993 3172 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:29:56.0009 3172 SystemStoreService ( UnsignedFile.Multi.Generic ) - skipped by user
22:29:56.0009 3172 SystemStoreService ( UnsignedFile.Multi.Generic ) - User select action: Skip
:-) :-) Ciao SCSC |
|
14.03.2014, 19:20
| #6 |
| /// the machine /// TB-Ausbilder | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben MBAR bitte nochmal, das Log ist komisch.
__________________ --> Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben |
|
15.03.2014, 09:18
| #7 |
| | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Als Ergebnis des Scans hat MBAR in einer Textbox angezeigt, dass nichts gefunden wurde. Ich wiederhole das aber auf jeden Fall, kein Problem. Es kann jetzt allerdings ein paar Tage dauern. Mein Vermieter hat das Internet nicht bezahlt (das laeuft hier anders als in D) und ich bin jetzt offline (poste das hier von einem anderen Rechner aus). Danke! |
|
15.03.2014, 17:27
| #8 |
| /// the machine /// TB-Ausbilder | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben ok
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
16.03.2014, 00:10
| #9 |
| | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben "Scan finished, no malware found" ... irgendwie schon komisch, weil ich waehrend der Scan noch lief, etwas von drei infizierten Dateien (in einem Temp-Verzeichnis, Dateiname war nicht ganz sichtbar) gelesen hatte. Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org
Database version: v2014.03.15.04
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Konfiguration :: DESK [administrator]
15.03.2014 22:35:52
mbar-log-2014-03-15 (22-35-52).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 296890
Time elapsed: 1 hour(s), 4 minute(s), 57 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
16.03.2014, 17:50
| #10 |
| /// the machine /// TB-Ausbilder | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Also Malware ist hier keine. Immer noch so Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
16.03.2014, 18:19
| #11 |
| | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Ja leider. Ich habe von Anfang an nicht an ein Malware-Problem geglaubt, daher hatte ich den Fred auch unter "Windows..." begonnen. In Langform: Es stehen immer die gleichen 9 (!) Updates an, die Windows versucht zu installieren, wenn ich den Rechner runterfahren will. Es klappt aber nicht und irgendwann geht er dann aus. Ich wollte ihn davon erloesen, indem ich die automatische Update-Funktion ausschalte, aber das hat nichts gebracht, die scheinen in einer festen Pipeline zu stehen. Ich bin auch nicht so fit, ohne Anleitung finden zu koennen, welche das genau sind. Die Fehlermeldung bei Starten, dass eine MSE-Datei nicht da ist, ist auch noch aktuell. Und das Problem, den MSE auf normalem Wege (also mit den Windows-Funktionen dafuer) weder deinstallieren noch installieren zu koennen ist auch noch da. Mein Versuch, das mit dem Win-Tool dafuer ("Fixit" - kannte ich vorher gar nicht) in den Griff zu kriegen ist erfolglos geblieben. Und der Versuch einer manuellen Registry-Bereinigung nach einer im Internet gefundenen Anleitung hat halt auch nicht gefruchtet. Mit Registry-Schluesseln hantiere ich sonst nicht, das uebersteigt meinen PC-Sachverstand. Kann ich noch irgendwas machen, um die Konfiguration transparenter zu machen? ... Danke fuer Deine Unterstuetzung! |
|
17.03.2014, 10:24
| #12 |
| /// the machine /// TB-Ausbilder | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Bevor wir jetzt händisch an der Kiste rummachen: Windows DVD da? Downloade dir bitte Windows Repair (All In One) von hier.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
17.03.2014, 20:07
| #13 |
| | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Die Windows DVD habe ich leider zu Hause gelassen, über 1000 km weg von hier :-( Aber sind die benötigten Daten denn nicht auf der separaten Partition (versteckt)? Kann ich die von Dir ausgesuchte Operation auch ohne die DVD in der Hinterhand wagen? Vielen Dank und viele Grüße |
|
18.03.2014, 12:03
| #14 |
| /// the machine /// TB-Ausbilder | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Dann mach erstmal das Windows Repair Tool, überspring den Schritt wo nach DVD gefragt wird.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
20.03.2014, 09:14
| #15 |
| | Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben Das ist jetzt leider nicht so gut gelaufen. Im Einzelnen: "Step 2" habe ich abgearbeitet und eine Meldung bekommen, dass und wo ein logfile abgelegt wurde. Nach Neustart habe ich "Step 3" abgearbeitet und eine Meldung bekommen, dass Fehler gefunden und repariert wurden. Nach Neustart sah erst alles fast normal aus (nur dass das Fenster mit der Warnmeldung, dass der MSE nicht starten konnte, verstuemmelt war: kein Text mehr, kein Button, nur noch ein geschrumpftes "Rest"-Fenster, das aber - wie zuvor die Meldung auch - sich ohne mein Zutun geschlossen hat). Nach Auswahl des Benutzerprofils zum Windows Start sah auch alles gut aus, aber dann bemerkte ich, dass der Klick auf ein Programmsymbol in der Schnellstartleiste zwar den Fokus angenommen hat, aber das Programm nicht kam. Weitere Klicks hatten gar keine Reaktion mehr. Der Windows-Button warnicht ansprechbar, auch nicht ueber die Win-Taste. Ich musste den Rechner hart ausschalten (auch bei allen nachfolgenden Aktionen). Neustart brachte keine Besserung. Neustart im abgesicherten Modus mit Netzwerktreibern brachte kein funktionierendes Windos zu Stande. Neustart mit einem anderen Benutzerprofil brachte auch nichts besseres, nur dass ploetzlich der Bidlschirmhintergrund fast komplett weg war und wieder ein defektes (textloses) Fenster ohne Button erschien. Mit der Maus suchte ich daraufhin den Bildschirm ab, um evtl. einen unsichtbaren Button zu finden. Das schien irgendwann den Speicher zu ueberfordern und wurde mit blue screen quittiert (crash dump des Speichers auf die Festplatte soll angeblich funktioniert haben). Den Fehlercode des blue screen habe ich notiert. Ein erneuter Neustart brachte wieder nur das Windows, das auf den ersten Blick i.O. aussieht, bei dem aber gar nichts funktioniert. Unter dem Strich kann ich mit dem Rechner jetzt gar nichts mehr tun (das hier schreibe ich von einem anderen Rechner aus). Vermutlich muss ich nun doch eine Reparatur mit der CD unternehmen. Wenn ich in ein paar Monaten mal auf Besuch nach Hause fliege, werde ich sie hoffentlich finden. Es waere nett, wenn Du mir einen Tipp geben koenntest, wie ich ggf. versuchen kann, meine Daten zu retten und ob ich hier vor Ort einen Reparaturversuch mit einer anderen Windows CD unternehmen kann. Vielen Dank SCSC |
|
| Themen zu Win 7 Updates hängen UND Microsoft Security Essentials-Deinstallation/Installation stecken geblieben |
| 4d36e972-e325-11ce-bfc1-08002be10318, browser, desktop, dvdvideosoft ltd., error, excel, failed, firefox, flash player, helper, home, homepage, hängen, icreinstall, mozilla, mp3, problem, programm, realtek, security, software, starten, svchost.exe, system, updates, usb, virtual machine, virtualbox, vista, windows |
Linear-Darstellung
