| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste versionWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
15.06.2014, 09:03
| #31 |
 |  popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version und der 2te Teil: Code:
ATTFilter 09:55:23.0994 0x0ee8 ws2ifsl - ok 09:55:24.0007 0x0ee8 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll 09:55:24.0010 0x0ee8 wscsvc - ok 09:55:24.0014 0x0ee8 WSearch - ok 09:55:24.0160 0x0ee8 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll 09:55:24.0202 0x0ee8 wuauserv - ok 09:55:24.0310 0x0ee8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 09:55:24.0318 0x0ee8 WudfPf - ok 09:55:24.0351 0x0ee8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 09:55:24.0358 0x0ee8 WUDFRd - ok 09:55:24.0393 0x0ee8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 09:55:24.0396 0x0ee8 wudfsvc - ok 09:55:24.0426 0x0ee8 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll 09:55:24.0431 0x0ee8 WwanSvc - ok 09:55:24.0446 0x0ee8 ================ Scan global =============================== 09:55:24.0491 0x0ee8 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll 09:55:24.0540 0x0ee8 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 09:55:24.0556 0x0ee8 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 09:55:24.0580 0x0ee8 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 09:55:24.0612 0x0ee8 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe 09:55:24.0618 0x0ee8 [ Global ] - ok 09:55:24.0618 0x0ee8 ================ Scan MBR ================================== 09:55:24.0633 0x0ee8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 09:55:24.0825 0x0ee8 \Device\Harddisk0\DR0 - ok 09:55:24.0833 0x0ee8 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1 09:55:24.0839 0x0ee8 \Device\Harddisk1\DR1 - ok 09:55:24.0840 0x0ee8 ================ Scan VBR ================================== 09:55:24.0845 0x0ee8 [ 38C6F3CC909A6682E63A56FB7BC75F41 ] \Device\Harddisk0\DR0\Partition1 09:55:24.0847 0x0ee8 \Device\Harddisk0\DR0\Partition1 - ok 09:55:24.0850 0x0ee8 [ 678CF4BE75C14309AEA1E5EB16BA91F2 ] \Device\Harddisk0\DR0\Partition2 09:55:24.0852 0x0ee8 \Device\Harddisk0\DR0\Partition2 - ok 09:55:24.0857 0x0ee8 [ E3AE7A4B3EC908EF2CA2A5116E20BEB8 ] \Device\Harddisk1\DR1\Partition1 09:55:24.0858 0x0ee8 \Device\Harddisk1\DR1\Partition1 - ok 09:55:24.0859 0x0ee8 ================ Scan generic autorun ====================== 09:55:24.0887 0x0ee8 [ AA2B12C14BF6EC49706EC30AF98B03DC, E7405A2853929CC1685C4292D739F7001D767781C46965C9E93EC734A6E12CB9 ] C:\Windows\system32\hkcmd.exe 09:55:24.0894 0x0ee8 HotKeysCmds - ok 09:55:24.0894 0x0ee8 SynTPEnh - ok 09:55:25.0024 0x0ee8 [ 6B08632F7634F344372B25A507DA7C47, C955BFB0F4601A4D1077119B204785FE4CB975E961D2AEE9C2BFA6EDC27E3CE2 ] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe 09:55:25.0044 0x0ee8 Nvtmru - ok 09:55:25.0097 0x0ee8 [ E8D40E43ACA4138753A5B5A6CEA5E556, 9A448976D96FC11837BD6CAA690D1D4608C50B548BB0B15E61EADE9F0340F7BA ] C:\Program Files (x86)\Launch Manager\LManager.exe 09:55:25.0115 0x0ee8 LManager - ok 09:55:25.0196 0x0ee8 [ 5374D3363F5B87CF03125F5FB584C8CE, 905C6F08A616A31566C7510EC4B0F02BA66E1928968343FB22ED37C4FB8BABDD ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe 09:55:25.0216 0x0ee8 avgnt - ok 09:55:25.0335 0x0ee8 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 09:55:25.0360 0x0ee8 Adobe ARM - ok 09:55:25.0405 0x0ee8 [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 09:55:25.0410 0x0ee8 SunJavaUpdateSched - ok 09:55:25.0501 0x0ee8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:55:25.0540 0x0ee8 Sidebar - ok 09:55:25.0565 0x0ee8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:55:25.0568 0x0ee8 mctadmin - ok 09:55:25.0619 0x0ee8 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:55:25.0622 0x0ee8 ScrSav - ok 09:55:25.0663 0x0ee8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:55:25.0681 0x0ee8 Sidebar - ok 09:55:25.0698 0x0ee8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:55:25.0702 0x0ee8 mctadmin - ok 09:55:25.0720 0x0ee8 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:55:25.0723 0x0ee8 ScrSav - ok 09:55:25.0764 0x0ee8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:55:25.0784 0x0ee8 Sidebar - ok 09:55:25.0799 0x0ee8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:55:25.0801 0x0ee8 mctadmin - ok 09:55:25.0820 0x0ee8 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:55:25.0823 0x0ee8 ScrSav - ok 09:55:25.0864 0x0ee8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:55:25.0882 0x0ee8 Sidebar - ok 09:55:25.0899 0x0ee8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:55:25.0901 0x0ee8 mctadmin - ok 09:55:25.0920 0x0ee8 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:55:25.0923 0x0ee8 ScrSav - ok 09:55:25.0964 0x0ee8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:55:25.0982 0x0ee8 Sidebar - ok 09:55:25.0999 0x0ee8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:55:26.0001 0x0ee8 mctadmin - ok 09:55:26.0020 0x0ee8 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:55:26.0023 0x0ee8 ScrSav - ok 09:55:26.0064 0x0ee8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:55:26.0082 0x0ee8 Sidebar - ok 09:55:26.0099 0x0ee8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:55:26.0101 0x0ee8 mctadmin - ok 09:55:26.0120 0x0ee8 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:55:26.0123 0x0ee8 ScrSav - ok 09:55:26.0124 0x0ee8 Waiting for KSN requests completion. In queue: 80 09:55:27.0124 0x0ee8 Waiting for KSN requests completion. In queue: 80 09:55:28.0124 0x0ee8 Waiting for KSN requests completion. In queue: 80 09:55:29.0201 0x0ee8 AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.4.620 ), 0x40000 ( disabled : updated ) 09:55:29.0207 0x0ee8 Win FW state via NFP2: disabled 09:55:31.0938 0x0ee8 ============================================================ 09:55:31.0938 0x0ee8 Scan finished 09:55:31.0938 0x0ee8 ============================================================ 09:55:31.0954 0x090c Detected object count: 0 09:55:31.0954 0x090c Actual detected object count: 0 09:56:35.0497 0x1140 ============================================================ 09:56:35.0497 0x1140 Scan started 09:56:35.0497 0x1140 Mode: Manual; SigCheck; TDLFS; 09:56:35.0497 0x1140 ============================================================ 09:56:35.0497 0x1140 KSN ping started 09:56:49.0154 0x1140 KSN ping finished: true 09:56:49.0437 0x1140 ================ Scan system memory ======================== 09:56:49.0437 0x1140 System memory - ok 09:56:49.0438 0x1140 ================ Scan services ============================= 09:56:49.0580 0x1140 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 09:56:49.0621 0x1140 1394ohci - ok 09:56:49.0647 0x1140 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 09:56:49.0661 0x1140 ACPI - ok 09:56:49.0667 0x1140 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 09:56:49.0697 0x1140 AcpiPmi - ok 09:56:49.0778 0x1140 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 09:56:49.0803 0x1140 AdobeARMservice - ok 09:56:49.0885 0x1140 [ B5D8DE922237CEDDC7992297654A4BE4, 88EF0B5EBFB383C9069A29AEA8D76EDBE1E70DD6F7C18970EE01ECAE9F408B38 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 09:56:49.0926 0x1140 AdobeFlashPlayerUpdateSvc - ok 09:56:49.0975 0x1140 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 09:56:50.0001 0x1140 adp94xx - ok 09:56:50.0022 0x1140 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys 09:56:50.0035 0x1140 adpahci - ok 09:56:50.0070 0x1140 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 09:56:50.0080 0x1140 adpu320 - ok 09:56:50.0106 0x1140 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 09:56:50.0200 0x1140 AeLookupSvc - ok 09:56:50.0249 0x1140 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys 09:56:50.0304 0x1140 AFD - ok 09:56:50.0333 0x1140 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 09:56:50.0341 0x1140 agp440 - ok 09:56:50.0375 0x1140 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 09:56:50.0431 0x1140 ALG - ok 09:56:50.0458 0x1140 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 09:56:50.0471 0x1140 aliide - ok 09:56:50.0483 0x1140 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 09:56:50.0496 0x1140 amdide - ok 09:56:50.0515 0x1140 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 09:56:50.0551 0x1140 AmdK8 - ok 09:56:50.0576 0x1140 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 09:56:50.0638 0x1140 AmdPPM - ok 09:56:50.0660 0x1140 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys 09:56:50.0679 0x1140 amdsata - ok 09:56:50.0701 0x1140 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 09:56:50.0724 0x1140 amdsbs - ok 09:56:50.0734 0x1140 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys 09:56:50.0743 0x1140 amdxata - ok 09:56:50.0797 0x1140 [ 0BF3BE441B226D018767C28F92830D34, F4737DB09D2CDF1AD3516711E6A7B230D02630D7A7481CCAD046D99AF165CA23 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe 09:56:50.0811 0x1140 AntiVirSchedulerService - ok 09:56:50.0832 0x1140 [ 0BF3BE441B226D018767C28F92830D34, F4737DB09D2CDF1AD3516711E6A7B230D02630D7A7481CCAD046D99AF165CA23 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe 09:56:50.0845 0x1140 AntiVirService - ok 09:56:50.0877 0x1140 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys 09:56:51.0005 0x1140 AppID - ok 09:56:51.0028 0x1140 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll 09:56:51.0062 0x1140 AppIDSvc - ok 09:56:51.0098 0x1140 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll 09:56:51.0157 0x1140 Appinfo - ok 09:56:51.0187 0x1140 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys 09:56:51.0212 0x1140 arc - ok 09:56:51.0245 0x1140 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys 09:56:51.0255 0x1140 arcsas - ok 09:56:51.0355 0x1140 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 09:56:51.0386 0x1140 aspnet_state - ok 09:56:51.0402 0x1140 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 09:56:51.0459 0x1140 AsyncMac - ok 09:56:51.0489 0x1140 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 09:56:51.0496 0x1140 atapi - ok 09:56:51.0576 0x1140 [ C8679A07267F030704168E45E27C3D43, E682D9B6439D8F8ED17D9A5536154ED6BA99EE22DD4885CFB7F442D15BB81477 ] athr C:\Windows\system32\DRIVERS\athrx.sys 09:56:51.0664 0x1140 athr - ok 09:56:51.0710 0x1140 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 09:56:51.0764 0x1140 AudioEndpointBuilder - ok 09:56:51.0781 0x1140 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll 09:56:51.0821 0x1140 AudioSrv - ok 09:56:51.0858 0x1140 [ 46552023B54E374C887A3A9AAF1279F2, 02A365675C4C9A7C67615EB635418DD6392467878FAB84AE97BF1D74EAC0A623 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys 09:56:51.0871 0x1140 avgntflt - ok 09:56:51.0902 0x1140 [ 8902AEC2382A37E9E99A4E0D52DBD42B, 138F2D7E7430132B2C527D413BC845CC467F084F39C232EC3A17DD2A74EE401E ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys 09:56:51.0912 0x1140 avipbb - ok 09:56:51.0950 0x1140 [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys 09:56:51.0958 0x1140 avkmgr - ok 09:56:51.0980 0x1140 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 09:56:52.0013 0x1140 AxInstSV - ok 09:56:52.0074 0x1140 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 09:56:52.0119 0x1140 b06bdrv - ok 09:56:52.0145 0x1140 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 09:56:52.0187 0x1140 b57nd60a - ok 09:56:52.0217 0x1140 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 09:56:52.0245 0x1140 BDESVC - ok 09:56:52.0272 0x1140 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 09:56:52.0342 0x1140 Beep - ok 09:56:52.0386 0x1140 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll 09:56:52.0436 0x1140 BFE - ok 09:56:52.0483 0x1140 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll 09:56:52.0536 0x1140 BITS - ok 09:56:52.0551 0x1140 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 09:56:52.0573 0x1140 blbdrive - ok 09:56:52.0589 0x1140 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 09:56:52.0623 0x1140 bowser - ok 09:56:52.0653 0x1140 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 09:56:52.0681 0x1140 BrFiltLo - ok 09:56:52.0697 0x1140 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 09:56:52.0712 0x1140 BrFiltUp - ok 09:56:52.0754 0x1140 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 09:56:52.0813 0x1140 BridgeMP - ok 09:56:52.0842 0x1140 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 09:56:52.0854 0x1140 Browser - ok 09:56:52.0872 0x1140 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 09:56:52.0906 0x1140 Brserid - ok 09:56:52.0932 0x1140 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 09:56:52.0954 0x1140 BrSerWdm - ok 09:56:52.0972 0x1140 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 09:56:52.0997 0x1140 BrUsbMdm - ok 09:56:53.0000 0x1140 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 09:56:53.0021 0x1140 BrUsbSer - ok 09:56:53.0035 0x1140 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 09:56:53.0063 0x1140 BTHMODEM - ok 09:56:53.0087 0x1140 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 09:56:53.0115 0x1140 bthserv - ok 09:56:53.0137 0x1140 catchme - ok 09:56:53.0158 0x1140 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 09:56:53.0201 0x1140 cdfs - ok 09:56:53.0236 0x1140 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 09:56:53.0257 0x1140 cdrom - ok 09:56:53.0271 0x1140 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 09:56:53.0310 0x1140 CertPropSvc - ok 09:56:53.0323 0x1140 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys 09:56:53.0349 0x1140 circlass - ok 09:56:53.0381 0x1140 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys 09:56:53.0395 0x1140 CLFS - ok 09:56:53.0464 0x1140 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 09:56:53.0487 0x1140 clr_optimization_v2.0.50727_32 - ok 09:56:53.0539 0x1140 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 09:56:53.0562 0x1140 clr_optimization_v2.0.50727_64 - ok 09:56:53.0627 0x1140 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 09:56:53.0655 0x1140 clr_optimization_v4.0.30319_32 - ok 09:56:53.0669 0x1140 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 09:56:53.0683 0x1140 clr_optimization_v4.0.30319_64 - ok 09:56:53.0708 0x1140 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys 09:56:53.0733 0x1140 CmBatt - ok 09:56:53.0753 0x1140 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 09:56:53.0761 0x1140 cmdide - ok 09:56:53.0796 0x1140 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys 09:56:53.0817 0x1140 CNG - ok 09:56:53.0927 0x1140 [ 2A214FCC149E2A061BD2EB6FB00BB0ED, A38E40002DA33FC31F39E0C9940FC6807F802A9C21298453A403BCA712D8121C ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys 09:56:53.0967 0x1140 CnxtHdAudService - ok 09:56:53.0999 0x1140 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 09:56:54.0006 0x1140 Compbatt - ok 09:56:54.0012 0x1140 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 09:56:54.0039 0x1140 CompositeBus - ok 09:56:54.0042 0x1140 COMSysApp - ok 09:56:54.0061 0x1140 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 09:56:54.0069 0x1140 crcdisk - ok 09:56:54.0102 0x1140 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll 09:56:54.0121 0x1140 CryptSvc - ok 09:56:54.0292 0x1140 [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE 09:56:54.0335 0x1140 cvhsvc - ok 09:56:54.0373 0x1140 [ 9D0D050170D47E778B624A28C90F23DE, 48528AA9EB0C9FB5086D992EF1F9556C8249D267C2E3D4E681D5C8B6BC316C71 ] CxAudMsg C:\Windows\system32\CxAudMsg64.exe 09:56:54.0401 0x1140 CxAudMsg - ok 09:56:54.0433 0x1140 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll 09:56:54.0483 0x1140 DcomLaunch - ok 09:56:54.0507 0x1140 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 09:56:54.0557 0x1140 defragsvc - ok 09:56:54.0567 0x1140 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys 09:56:54.0610 0x1140 DfsC - ok 09:56:54.0629 0x1140 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll 09:56:54.0663 0x1140 Dhcp - ok 09:56:54.0691 0x1140 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 09:56:54.0717 0x1140 discache - ok 09:56:54.0726 0x1140 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys 09:56:54.0735 0x1140 Disk - ok 09:56:54.0763 0x1140 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 09:56:54.0796 0x1140 Dnscache - ok 09:56:54.0810 0x1140 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll 09:56:54.0851 0x1140 dot3svc - ok 09:56:54.0857 0x1140 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 09:56:54.0890 0x1140 DPS - ok 09:56:54.0927 0x1140 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 09:56:54.0971 0x1140 drmkaud - ok 09:56:55.0026 0x1140 [ 0F1BA8F7F4B33C87031E0B0916958B26, 7303EB9DA3D78A3B3BC21EF523D16A180017DF784DE5B2EDE5948EDF8B330151 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe 09:56:55.0058 0x1140 DsiWMIService - ok 09:56:55.0112 0x1140 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 09:56:55.0138 0x1140 DXGKrnl - ok 09:56:55.0163 0x1140 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 09:56:55.0207 0x1140 EapHost - ok 09:56:55.0352 0x1140 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys 09:56:55.0504 0x1140 ebdrv - ok 09:56:55.0543 0x1140 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe 09:56:55.0576 0x1140 EFS - ok 09:56:55.0666 0x1140 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 09:56:55.0719 0x1140 ehRecvr - ok 09:56:55.0732 0x1140 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 09:56:55.0762 0x1140 ehSched - ok 09:56:55.0801 0x1140 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys 09:56:55.0822 0x1140 elxstor - ok 09:56:55.0928 0x1140 [ AC5C64F828C0A6A1350971501AC2A0C7, 920EB0AC38AD65930A747EDC98144010AE97A4B74153B90EE36E9C45055649A1 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe 09:56:55.0956 0x1140 ePowerSvc - ok 09:56:55.0972 0x1140 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 09:56:55.0989 0x1140 ErrDev - ok 09:56:56.0030 0x1140 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 09:56:56.0077 0x1140 EventSystem - ok 09:56:56.0106 0x1140 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 09:56:56.0136 0x1140 exfat - ok 09:56:56.0152 0x1140 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 09:56:56.0194 0x1140 fastfat - ok 09:56:56.0247 0x1140 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe 09:56:56.0294 0x1140 Fax - ok 09:56:56.0334 0x1140 [ 7A8B03D45AF9B43FFAE9D61D5F7FB813, 1A248BFD212DF6DA127BCB645F08EA2D6864E21C44C59F15F35F6D89DCA47116 ] FA_MINISCH C:\Program Files (x86)\Fortinet\FortiClient VPN\FCMiniSch.exe 09:56:56.0347 0x1140 FA_MINISCH - detected UnsignedFile.Multi.Generic ( 1 ) 09:56:56.0347 0x1140 Detect skipped due to KSN trusted 09:56:56.0347 0x1140 FA_MINISCH - ok 09:56:56.0369 0x1140 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys 09:56:56.0387 0x1140 fdc - ok 09:56:56.0412 0x1140 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 09:56:56.0443 0x1140 fdPHost - ok 09:56:56.0458 0x1140 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 09:56:56.0497 0x1140 FDResPub - ok 09:56:56.0512 0x1140 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 09:56:56.0521 0x1140 FileInfo - ok 09:56:56.0536 0x1140 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 09:56:56.0575 0x1140 Filetrace - ok 09:56:56.0618 0x1140 [ BB0667B0171B632B97EA759515476F07, 07A123B2182D5813D2898928C231638353CF086606E9D5A5AF4A2A73E17CEC27 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 09:56:56.0636 0x1140 FLEXnet Licensing Service - ok 09:56:56.0665 0x1140 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 09:56:56.0675 0x1140 flpydisk - ok 09:56:56.0696 0x1140 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 09:56:56.0708 0x1140 FltMgr - ok 09:56:56.0771 0x1140 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll 09:56:56.0808 0x1140 FontCache - ok 09:56:56.0869 0x1140 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 09:56:56.0891 0x1140 FontCache3.0.0.0 - ok 09:56:56.0900 0x1140 [ 4CAF297779B4CBDEB2B239BA8C8A5161, 720F2D3F6EC87A1E0C7691AE37B51F530EFB9FB259455D907DFF163DD7D601B1 ] Fortidrv2 C:\Windows\system32\DRIVERS\fortidrv.sys 09:56:56.0914 0x1140 Fortidrv2 - ok 09:56:56.0951 0x1140 [ FE945086F5AEB108A44C14CF9690869D, A2A7669BD5F6FA5DFC72E84F9532BED515143CB04FA1F628B3811DFA1F81D1DD ] Fortips C:\Windows\system32\drivers\fortips.sys 09:56:56.0977 0x1140 Fortips - ok 09:56:57.0012 0x1140 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 09:56:57.0020 0x1140 FsDepends - ok 09:56:57.0054 0x1140 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 09:56:57.0062 0x1140 Fs_Rec - ok 09:56:57.0087 0x1140 [ BEB74D1707DA5EE996B53B67C8E910F2, C30836D312CB34B5597CFD35633B2DCF897934C2A624571200A9FE0C94681EAA ] ft_vnic C:\Windows\system32\DRIVERS\ftvnic.sys 09:56:57.0095 0x1140 ft_vnic - ok 09:56:57.0151 0x1140 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 09:56:57.0183 0x1140 fvevol - ok 09:56:57.0211 0x1140 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 09:56:57.0220 0x1140 gagp30kx - ok 09:56:57.0263 0x1140 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll 09:56:57.0309 0x1140 gpsvc - ok 09:56:57.0364 0x1140 [ 84E58FEA8B1A7537696A20C59CB9B0C9, 21F36D45612247DD81CC55FCDA56496BE8BBE384E8FBCCB6184D69F77A59F5C0 ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe 09:56:57.0377 0x1140 GREGService - detected UnsignedFile.Multi.Generic ( 1 ) 09:56:57.0377 0x1140 Detect skipped due to KSN trusted 09:56:57.0377 0x1140 GREGService - ok 09:56:57.0451 0x1140 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 09:56:57.0475 0x1140 gupdate - ok 09:56:57.0486 0x1140 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 09:56:57.0498 0x1140 gupdatem - ok 09:56:57.0514 0x1140 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 09:56:57.0538 0x1140 hcw85cir - ok 09:56:57.0566 0x1140 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 09:56:57.0602 0x1140 HdAudAddService - ok 09:56:57.0617 0x1140 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 09:56:57.0645 0x1140 HDAudBus - ok 09:56:57.0655 0x1140 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 09:56:57.0675 0x1140 HidBatt - ok 09:56:57.0690 0x1140 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys 09:56:57.0713 0x1140 HidBth - ok 09:56:57.0741 0x1140 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys 09:56:57.0753 0x1140 HidIr - ok 09:56:57.0772 0x1140 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll 09:56:57.0812 0x1140 hidserv - ok 09:56:57.0851 0x1140 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys 09:56:57.0879 0x1140 HidUsb - ok 09:56:57.0902 0x1140 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 09:56:57.0961 0x1140 hkmsvc - ok 09:56:57.0996 0x1140 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 09:56:58.0025 0x1140 HomeGroupListener - ok 09:56:58.0072 0x1140 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 09:56:58.0117 0x1140 HomeGroupProvider - ok 09:56:58.0143 0x1140 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 09:56:58.0157 0x1140 HpSAMD - ok 09:56:58.0180 0x1140 [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys 09:56:58.0203 0x1140 HTCAND64 - ok 09:56:58.0288 0x1140 [ 5C8BC8A28798FD010E7ABC4E0D588CAA, 622CAFD3DCBB05E15539589FDD4002DA6F24790FC55BDF05AA3D043E8A34E53E ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe 09:56:58.0313 0x1140 HTCMonitorService - ok 09:56:58.0329 0x1140 [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys 09:56:58.0341 0x1140 htcnprot - ok 09:56:58.0384 0x1140 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys 09:56:58.0443 0x1140 HTTP - ok 09:56:58.0462 0x1140 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 09:56:58.0470 0x1140 hwpolicy - ok 09:56:58.0502 0x1140 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys 09:56:58.0513 0x1140 i8042prt - ok 09:56:58.0537 0x1140 [ 2FDAEC4B02729C48C0FD1B0B4695995B, 87331D91FA3A23257B9913067B7B16D08710408070795B638058DBF728BBB288 ] iaStor C:\Windows\system32\drivers\iaStor.sys 09:56:58.0555 0x1140 iaStor - ok 09:56:58.0617 0x1140 [ D41861E56E7552C13674D7F147A02464, A361AE723FEEFD8D34D259F667ED14EEEC3B8ED6458522AC5D50C08E281B298B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 09:56:58.0638 0x1140 IAStorDataMgrSvc - ok 09:56:58.0690 0x1140 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 09:56:58.0721 0x1140 iaStorV - ok 09:56:58.0842 0x1140 [ 2C3CC41FEFCB77E2826886E6B7EF93AE, 25715B759CA7399D818157DB724B530FC9FA49CFE77DAA6C5A60FF2EA492749C ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe 09:56:58.0883 0x1140 IconMan_R - ok 09:56:58.0966 0x1140 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 09:56:59.0000 0x1140 idsvc - ok 09:56:59.0004 0x1140 IEEtwCollectorService - ok 09:56:59.0417 0x1140 [ A47D902F5C0C43DCF5EE2CAE02BF39A8, 9616B25152BB8B51D5EBC7CB3004902A089E56899EC55D975246F7F6D1FEBF00 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 09:56:59.0751 0x1140 igfx - ok 09:56:59.0786 0x1140 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys 09:56:59.0799 0x1140 iirsp - ok 09:56:59.0857 0x1140 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll 09:56:59.0901 0x1140 IKEEXT - ok 09:56:59.0922 0x1140 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 09:56:59.0930 0x1140 intelide - ok 09:56:59.0956 0x1140 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 09:56:59.0973 0x1140 intelppm - ok 09:57:00.0000 0x1140 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 09:57:00.0044 0x1140 IPBusEnum - ok 09:57:00.0070 0x1140 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 09:57:00.0096 0x1140 IpFilterDriver - ok 09:57:00.0150 0x1140 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 09:57:00.0182 0x1140 iphlpsvc - ok 09:57:00.0198 0x1140 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 09:57:00.0217 0x1140 IPMIDRV - ok 09:57:00.0238 0x1140 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 09:57:00.0281 0x1140 IPNAT - ok 09:57:00.0309 0x1140 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 09:57:00.0322 0x1140 IRENUM - ok 09:57:00.0336 0x1140 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 09:57:00.0343 0x1140 isapnp - ok 09:57:00.0387 0x1140 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 09:57:00.0400 0x1140 iScsiPrt - ok 09:57:00.0425 0x1140 [ F415A88162D23977B5EDAE4F0410E903, B86FD88B4285ED96BFDB9430E4DB134AC1B09DBB541929C4D6C1EEAF792D444D ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe 09:57:00.0433 0x1140 IviRegMgr - ok 09:57:00.0442 0x1140 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys 09:57:00.0451 0x1140 kbdclass - ok 09:57:00.0483 0x1140 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 09:57:00.0499 0x1140 kbdhid - ok 09:57:00.0510 0x1140 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe 09:57:00.0519 0x1140 KeyIso - ok 09:57:00.0556 0x1140 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 09:57:00.0578 0x1140 KSecDD - ok 09:57:00.0596 0x1140 [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 09:57:00.0608 0x1140 KSecPkg - ok 09:57:00.0620 0x1140 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 09:57:00.0654 0x1140 ksthunk - ok 09:57:00.0686 0x1140 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 09:57:00.0734 0x1140 KtmRm - ok 09:57:00.0764 0x1140 [ 95CA93FC12BE372BB952669F37FFF9C5, 5B4EE910E676ABD0E12B6AD72DBB564DBEB05D63C43AFFC24CE155D0DF8A3820 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys 09:57:00.0772 0x1140 L1C - ok 09:57:00.0803 0x1140 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll 09:57:00.0848 0x1140 LanmanServer - ok 09:57:00.0869 0x1140 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 09:57:00.0905 0x1140 LanmanWorkstation - ok 09:57:00.0964 0x1140 [ 6BB516A31DE232DAB436FF3A117E1E80, 1B91633C9D2FDD27B1712557E95D5642973105F0161D57E074A0601B666F1221 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe 09:57:00.0993 0x1140 Live Updater Service - ok 09:57:01.0113 0x1140 [ 20CDB07017497C94A0BAD253C4BAFCBC, 5633D245525F9B8CAC4E87A95B0E19D1F34839483ED75AC8F7661DA29BC87EE7 ] LkCitadelServer C:\Windows\SysWOW64\lkcitdl.exe 09:57:01.0145 0x1140 LkCitadelServer - ok 09:57:01.0158 0x1140 [ C373079F8D6A3543FAADB96C874CF06B, AF080C0839383E08C8B6CE71120559AFEF2D36F69FBA76F0AB3F2138D6763E15 ] lkClassAds C:\Windows\SysWOW64\lkads.exe 09:57:01.0165 0x1140 lkClassAds - ok 09:57:01.0179 0x1140 [ ED1C2F1B9B7DEDEE5C6287211AC4422E, A85CC3FB2E1D479CDA0F77778F4DB7A5806B1A708CACCC8C2E068568906B7487 ] lkTimeSync C:\Windows\SysWOW64\lktsrv.exe 09:57:01.0187 0x1140 lkTimeSync - ok 09:57:01.0214 0x1140 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 09:57:01.0258 0x1140 lltdio - ok 09:57:01.0288 0x1140 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 09:57:01.0334 0x1140 lltdsvc - ok 09:57:01.0349 0x1140 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 09:57:01.0392 0x1140 lmhosts - ok 09:57:01.0423 0x1140 [ 2ED1786B7542CDA261029F6B526EDF44, C6131B65B045EF5B4F62CF6CF089DF0921BA6A8EFC83BCBA45D5DDE78E9D78E2 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 09:57:01.0435 0x1140 LMS - ok 09:57:01.0453 0x1140 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 09:57:01.0462 0x1140 LSI_FC - ok 09:57:01.0486 0x1140 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 09:57:01.0495 0x1140 LSI_SAS - ok 09:57:01.0505 0x1140 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 09:57:01.0514 0x1140 LSI_SAS2 - ok 09:57:01.0524 0x1140 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 09:57:01.0533 0x1140 LSI_SCSI - ok 09:57:01.0545 0x1140 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 09:57:01.0592 0x1140 luafv - ok 09:57:01.0617 0x1140 [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 09:57:01.0625 0x1140 MBAMProtector - ok 09:57:01.0736 0x1140 [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe 09:57:01.0780 0x1140 MBAMScheduler - ok 09:57:01.0817 0x1140 [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe 09:57:01.0840 0x1140 MBAMService - ok 09:57:01.0879 0x1140 [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys 09:57:01.0889 0x1140 MBAMSwissArmy - ok 09:57:01.0899 0x1140 [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys 09:57:01.0908 0x1140 MBAMWebAccessControl - ok 09:57:01.0910 0x1140 McAfee SiteAdvisor Service - ok 09:57:01.0934 0x1140 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 09:57:01.0956 0x1140 Mcx2Svc - ok 09:57:01.0973 0x1140 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys 09:57:01.0981 0x1140 megasas - ok 09:57:01.0999 0x1140 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 09:57:02.0012 0x1140 MegaSR - ok 09:57:02.0040 0x1140 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 09:57:02.0048 0x1140 MEIx64 - ok 09:57:02.0062 0x1140 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 09:57:02.0095 0x1140 MMCSS - ok 09:57:02.0110 0x1140 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys 09:57:02.0153 0x1140 Modem - ok 09:57:02.0168 0x1140 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 09:57:02.0187 0x1140 monitor - ok 09:57:02.0220 0x1140 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys 09:57:02.0232 0x1140 mouclass - ok 09:57:02.0247 0x1140 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\drivers\mouhid.sys 09:57:02.0276 0x1140 mouhid - ok 09:57:02.0305 0x1140 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 09:57:02.0315 0x1140 mountmgr - ok 09:57:02.0367 0x1140 [ E1B6FCAE82474FC071155263E2841D54, 341E2CEB1A86586730130311C4FAF86851151D5F08EF915A5F89B6C4094AE1F4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 09:57:02.0394 0x1140 MozillaMaintenance - ok 09:57:02.0410 0x1140 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 09:57:02.0423 0x1140 mpio - ok 09:57:02.0454 0x1140 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 09:57:02.0481 0x1140 mpsdrv - ok 09:57:02.0524 0x1140 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 09:57:02.0578 0x1140 MpsSvc - ok 09:57:02.0621 0x1140 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 09:57:02.0654 0x1140 MRxDAV - ok 09:57:02.0683 0x1140 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 09:57:02.0730 0x1140 mrxsmb - ok 09:57:02.0754 0x1140 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 09:57:02.0778 0x1140 mrxsmb10 - ok 09:57:02.0801 0x1140 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 09:57:02.0818 0x1140 mrxsmb20 - ok 09:57:02.0851 0x1140 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 09:57:02.0859 0x1140 msahci - ok 09:57:02.0888 0x1140 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 09:57:02.0898 0x1140 msdsm - ok 09:57:02.0909 0x1140 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 09:57:02.0922 0x1140 MSDTC - ok 09:57:02.0934 0x1140 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 09:57:02.0961 0x1140 Msfs - ok 09:57:02.0967 0x1140 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 09:57:03.0010 0x1140 mshidkmdf - ok 09:57:03.0025 0x1140 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 09:57:03.0032 0x1140 msisadrv - ok 09:57:03.0060 0x1140 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 09:57:03.0099 0x1140 MSiSCSI - ok 09:57:03.0102 0x1140 msiserver - ok 09:57:03.0129 0x1140 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 09:57:03.0164 0x1140 MSKSSRV - ok 09:57:03.0173 0x1140 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 09:57:03.0207 0x1140 MSPCLOCK - ok 09:57:03.0210 0x1140 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 09:57:03.0238 0x1140 MSPQM - ok 09:57:03.0261 0x1140 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 09:57:03.0275 0x1140 MsRPC - ok 09:57:03.0291 0x1140 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 09:57:03.0299 0x1140 mssmbios - ok 09:57:03.0302 0x1140 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 09:57:03.0345 0x1140 MSTEE - ok 09:57:03.0364 0x1140 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 09:57:03.0382 0x1140 MTConfig - ok 09:57:03.0402 0x1140 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 09:57:03.0410 0x1140 Mup - ok 09:57:03.0485 0x1140 [ A3BA8A14490FDBF106939C37A125E82C, 261CADBE9E5C2C533746B6AACC1C10D9CCA1C74208DBA6F04A5A339924B2DAC9 ] mxssvr C:\Program Files (x86)\National Instruments\MAX\nimxs.exe 09:57:03.0507 0x1140 mxssvr - ok 09:57:03.0550 0x1140 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 09:57:03.0606 0x1140 napagent - ok 09:57:03.0667 0x1140 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 09:57:03.0697 0x1140 NativeWifiP - ok 09:57:03.0767 0x1140 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys 09:57:03.0793 0x1140 NDIS - ok 09:57:03.0820 0x1140 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 09:57:03.0870 0x1140 NdisCap - ok 09:57:03.0887 0x1140 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 09:57:03.0913 0x1140 NdisTapi - ok 09:57:03.0925 0x1140 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 09:57:03.0951 0x1140 Ndisuio - ok 09:57:03.0962 0x1140 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 09:57:04.0001 0x1140 NdisWan - ok 09:57:04.0036 0x1140 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 09:57:04.0070 0x1140 NDProxy - ok 09:57:04.0082 0x1140 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 09:57:04.0109 0x1140 NetBIOS - ok 09:57:04.0125 0x1140 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 09:57:04.0155 0x1140 NetBT - ok 09:57:04.0165 0x1140 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe 09:57:04.0175 0x1140 Netlogon - ok 09:57:04.0237 0x1140 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 09:57:04.0300 0x1140 Netman - ok 09:57:04.0367 0x1140 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 09:57:04.0399 0x1140 NetMsmqActivator - ok 09:57:04.0410 0x1140 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 09:57:04.0425 0x1140 NetPipeActivator - ok 09:57:04.0452 0x1140 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 09:57:04.0500 0x1140 netprofm - ok 09:57:04.0517 0x1140 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 09:57:04.0528 0x1140 NetTcpActivator - ok 09:57:04.0535 0x1140 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 09:57:04.0546 0x1140 NetTcpPortSharing - ok 09:57:04.0563 0x1140 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 09:57:04.0571 0x1140 nfrd960 - ok 09:57:04.0632 0x1140 [ A36307747E7BB2DC015F9FE4350A4A08, 5ECCA595383C61E13E837200C7CF18EE635F5BE3062003CA61BE5436F8A870DB ] NIDomainService C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe 09:57:04.0661 0x1140 NIDomainService - ok 09:57:04.0754 0x1140 [ B17093B9A2C5F874975C732C1A8BA771, EAF5AF9A5CCBF982D0A4F8ACEDED25588E67981D938FE17A94F1C9B331709FAB ] NILM License Manager C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe 09:57:04.0792 0x1140 NILM License Manager - detected UnsignedFile.Multi.Generic ( 1 ) 09:57:04.0792 0x1140 Detect skipped due to KSN trusted 09:57:04.0793 0x1140 NILM License Manager - ok 09:57:04.0796 0x1140 niSvcLoc - ok 09:57:04.0870 0x1140 [ E559CE29CD58CD6B58F3654C24D7A812, E6A40335CF7883A6CF8F2E67C39A08EA32F7F6AD468A91487BE18BA45B276950 ] NITaggerService C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe 09:57:04.0895 0x1140 NITaggerService - ok 09:57:04.0943 0x1140 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll 09:57:04.0975 0x1140 NlaSvc - ok 09:57:04.0987 0x1140 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 09:57:05.0018 0x1140 Npfs - ok 09:57:05.0045 0x1140 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 09:57:05.0072 0x1140 nsi - ok 09:57:05.0099 0x1140 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 09:57:05.0151 0x1140 nsiproxy - ok 09:57:05.0265 0x1140 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 09:57:05.0309 0x1140 Ntfs - ok 09:57:05.0365 0x1140 [ 1873214666F6F0A883742DF91FBC48C9, DCF5382CE338D4B5B0C3A3B722A19B6C7BAB59EB7B266FEF04698B79070E2C4B ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe 09:57:05.0402 0x1140 NTI IScheduleSvc - ok 09:57:05.0434 0x1140 [ EE3BA1024594D5D09E314F206B94069E, 34C8EC3DF1C3088D8A0442CAA4F5506665AFB2DF016709457ED2AB7DA45F53A6 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys 09:57:05.0442 0x1140 NTIDrvr - ok 09:57:05.0459 0x1140 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 09:57:05.0501 0x1140 Null - ok 09:57:05.0532 0x1140 [ 805F0C2B9C07E4C0F74D0EF70E9E827A, 32D3DA095788F7F7BA52AC56C8C0DD6D9D388ED3ECEAFEF23EDB8F5812FF953E ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 09:57:05.0543 0x1140 NVHDA - ok 09:57:05.0592 0x1140 [ 9C13BE8806D430B72CC2E80BA72990FB, C8A500DF7DC78A3209DA9DB8032C77B0CACDD2C31704933E197391F546FB4C92 ] nvkflt C:\Windows\system32\DRIVERS\nvkflt.sys 09:57:05.0621 0x1140 nvkflt - ok 09:57:05.0971 0x1140 [ 7A711D08F1FD1AB8149B6199F84A0EB7, 973597EE38B238902C7355E91B0A2FA79AD67BA26C30DE5C3E6649AA934F639B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 09:57:06.0197 0x1140 nvlddmkm - ok 09:57:06.0252 0x1140 [ 1B43B01078D3CC3F0322A49E7CEDC99B, 7291F037E7D6D5507F8A08B61E6FC2AF335CAA68E0A068E0A5463EB29F586B00 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys 09:57:06.0277 0x1140 nvpciflt - ok 09:57:06.0300 0x1140 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 09:57:06.0314 0x1140 nvraid - ok 09:57:06.0329 0x1140 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 09:57:06.0344 0x1140 nvstor - ok 09:57:06.0402 0x1140 [ B9F3591981D761A5CA1D24C369764D96, 74C0CB77129F3B9929469489BCFCCA77B4692E2C06FB038401C5671C25A6CCDB ] nvsvc C:\Windows\system32\nvvsvc.exe 09:57:06.0435 0x1140 nvsvc - ok 09:57:06.0579 0x1140 [ A9AFE5B0648C8D7A411A72D8222F7F6E, A58AF8C615D97C769DA778D56F7E6999AAEB577C82C65455D3B2A8ED5B742777 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 09:57:06.0621 0x1140 nvUpdatusService - ok 09:57:06.0637 0x1140 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 09:57:06.0646 0x1140 nv_agp - ok 09:57:06.0662 0x1140 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 09:57:06.0688 0x1140 ohci1394 - ok 09:57:06.0714 0x1140 [ EAE6208900E2986F66F68B30AEF86E4D, 31D70C867DAFB3E93753D12156844394A987859D15C6D0658032D573B3C92A0E ] OpcEnum C:\Windows\SysWOW64\OpcEnum.exe 09:57:06.0733 0x1140 OpcEnum - detected UnsignedFile.Multi.Generic ( 1 ) 09:57:06.0733 0x1140 Detect skipped due to KSN trusted 09:57:06.0733 0x1140 OpcEnum - ok 09:57:06.0808 0x1140 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 09:57:06.0833 0x1140 ose - ok 09:57:07.0073 0x1140 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 09:57:07.0175 0x1140 osppsvc - ok 09:57:07.0224 0x1140 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 09:57:07.0248 0x1140 p2pimsvc - ok 09:57:07.0275 0x1140 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 09:57:07.0293 0x1140 p2psvc - ok 09:57:07.0317 0x1140 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys 09:57:07.0328 0x1140 Parport - ok 09:57:07.0351 0x1140 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 09:57:07.0360 0x1140 partmgr - ok 09:57:07.0401 0x1140 [ 5F731DD45D3B176C071E4CCEEB87B06B, 9B090813203FE4A2AA1BEAE942F4023FFE00599A52712B306330565816E55FA1 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe 09:57:07.0428 0x1140 PassThru Service - detected UnsignedFile.Multi.Generic ( 1 ) 09:57:07.0428 0x1140 Detect skipped due to KSN trusted 09:57:07.0428 0x1140 PassThru Service - ok 09:57:07.0492 0x1140 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll 09:57:07.0555 0x1140 PcaSvc - ok 09:57:07.0590 0x1140 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 09:57:07.0602 0x1140 pci - ok 09:57:07.0628 0x1140 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 09:57:07.0637 0x1140 pciide - ok 09:57:07.0654 0x1140 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 09:57:07.0668 0x1140 pcmcia - ok 09:57:07.0685 0x1140 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 09:57:07.0695 0x1140 pcw - ok 09:57:07.0732 0x1140 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys 09:57:07.0782 0x1140 PEAUTH - ok 09:57:07.0812 0x1140 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 09:57:07.0832 0x1140 PerfHost - ok 09:57:07.0898 0x1140 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 09:57:07.0970 0x1140 pla - ok 09:57:08.0010 0x1140 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 09:57:08.0036 0x1140 PlugPlay - ok 09:57:08.0067 0x1140 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 09:57:08.0088 0x1140 PNRPAutoReg - ok 09:57:08.0113 0x1140 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 09:57:08.0128 0x1140 PNRPsvc - ok 09:57:08.0166 0x1140 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 09:57:08.0214 0x1140 PolicyAgent - ok 09:57:08.0239 0x1140 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll 09:57:08.0278 0x1140 Power - ok 09:57:08.0296 0x1140 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 09:57:08.0339 0x1140 PptpMiniport - ok 09:57:08.0349 0x1140 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys 09:57:08.0376 0x1140 Processor - ok 09:57:08.0421 0x1140 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll 09:57:08.0444 0x1140 ProfSvc - ok 09:57:08.0454 0x1140 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe 09:57:08.0463 0x1140 ProtectedStorage - ok 09:57:08.0475 0x1140 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 09:57:08.0515 0x1140 Psched - ok 09:57:08.0541 0x1140 [ F036CFB275D0C55F4E45FBBF5F98B3C8, D8D1CA9F65B34A93AB9F7FD9BB6C453B2BF4E8320E620F56055B743DF1D56DE8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe 09:57:08.0552 0x1140 PSI_SVC_2 - ok 09:57:08.0608 0x1140 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 09:57:08.0645 0x1140 ql2300 - ok 09:57:08.0681 0x1140 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 09:57:08.0691 0x1140 ql40xx - ok 09:57:08.0728 0x1140 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 09:57:08.0746 0x1140 QWAVE - ok 09:57:08.0764 0x1140 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 09:57:08.0786 0x1140 QWAVEdrv - ok 09:57:08.0800 0x1140 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 09:57:08.0833 0x1140 RasAcd - ok 09:57:08.0860 0x1140 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 09:57:08.0888 0x1140 RasAgileVpn - ok 09:57:08.0906 0x1140 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 09:57:08.0948 0x1140 RasAuto - ok 09:57:08.0976 0x1140 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 09:57:09.0013 0x1140 Rasl2tp - ok 09:57:09.0036 0x1140 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 09:57:09.0069 0x1140 RasMan - ok 09:57:09.0086 0x1140 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 09:57:09.0125 0x1140 RasPppoe - ok 09:57:09.0140 0x1140 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 09:57:09.0176 0x1140 RasSstp - ok 09:57:09.0193 0x1140 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 09:57:09.0225 0x1140 rdbss - ok 09:57:09.0239 0x1140 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 09:57:09.0256 0x1140 rdpbus - ok 09:57:09.0269 0x1140 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 09:57:09.0295 0x1140 RDPCDD - ok 09:57:09.0319 0x1140 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 09:57:09.0346 0x1140 RDPENCDD - ok 09:57:09.0364 0x1140 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 09:57:09.0390 0x1140 RDPREFMP - ok 09:57:09.0424 0x1140 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 09:57:09.0437 0x1140 RDPWD - ok 09:57:09.0450 0x1140 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 09:57:09.0461 0x1140 rdyboost - ok 09:57:09.0495 0x1140 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll 09:57:09.0532 0x1140 RemoteAccess - ok 09:57:09.0556 0x1140 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 09:57:09.0598 0x1140 RemoteRegistry - ok 09:57:09.0610 0x1140 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 09:57:09.0654 0x1140 RpcEptMapper - ok 09:57:09.0689 0x1140 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 09:57:09.0724 0x1140 RpcLocator - ok 09:57:09.0789 0x1140 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll 09:57:09.0836 0x1140 RpcSs - ok 09:57:09.0861 0x1140 [ D5C3E1629A3F7F0857D27949252B94CE, E6DC44D9A1325D61CEE9E76AE442988ED6EB29DE322844CF8689A1F5184C1E05 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys 09:57:09.0874 0x1140 RSPCIESTOR - ok 09:57:09.0895 0x1140 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 09:57:09.0937 0x1140 rspndr - ok 09:57:09.0991 0x1140 [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A, A6810A901620119E1809297A568DC903729471F4F4F813F1C60378E122D2358E ] RS_Service C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe 09:57:10.0002 0x1140 RS_Service - ok 09:57:10.0020 0x1140 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe 09:57:10.0030 0x1140 SamSs - ok 09:57:10.0039 0x1140 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 09:57:10.0047 0x1140 sbp2port - ok 09:57:10.0078 0x1140 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 09:57:10.0109 0x1140 SCardSvr - ok 09:57:10.0136 0x1140 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 09:57:10.0170 0x1140 scfilter - ok 09:57:10.0216 0x1140 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll 09:57:10.0276 0x1140 Schedule - ok 09:57:10.0315 0x1140 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 09:57:10.0342 0x1140 SCPolicySvc - ok 09:57:10.0375 0x1140 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 09:57:10.0399 0x1140 SDRSVC - ok 09:57:10.0422 0x1140 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 09:57:10.0458 0x1140 secdrv - ok 09:57:10.0478 0x1140 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll 09:57:10.0512 0x1140 seclogon - ok 09:57:10.0530 0x1140 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll 09:57:10.0569 0x1140 SENS - ok 09:57:10.0575 0x1140 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 09:57:10.0586 0x1140 SensrSvc - ok 09:57:10.0605 0x1140 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys 09:57:10.0627 0x1140 Serenum - ok 09:57:10.0656 0x1140 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys 09:57:10.0677 0x1140 Serial - ok 09:57:10.0687 0x1140 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys 09:57:10.0707 0x1140 sermouse - ok 09:57:10.0745 0x1140 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll 09:57:10.0784 0x1140 SessionEnv - ok 09:57:10.0798 0x1140 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 09:57:10.0810 0x1140 sffdisk - ok 09:57:10.0817 0x1140 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 09:57:10.0842 0x1140 sffp_mmc - ok 09:57:10.0856 0x1140 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 09:57:10.0876 0x1140 sffp_sd - ok 09:57:10.0896 0x1140 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 09:57:10.0919 0x1140 sfloppy - ok 09:57:10.0995 0x1140 [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys 09:57:11.0027 0x1140 Sftfs - ok 09:57:11.0109 0x1140 [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe 09:57:11.0136 0x1140 sftlist - ok 09:57:11.0180 0x1140 [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys 09:57:11.0204 0x1140 Sftplay - ok 09:57:11.0214 0x1140 [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys 09:57:11.0223 0x1140 Sftredir - ok 09:57:11.0236 0x1140 [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys 09:57:11.0244 0x1140 Sftvol - ok 09:57:11.0255 0x1140 [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe 09:57:11.0267 0x1140 sftvsa - ok 09:57:11.0300 0x1140 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 09:57:11.0346 0x1140 SharedAccess - ok 09:57:11.0379 0x1140 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 09:57:11.0422 0x1140 ShellHWDetection - ok 09:57:11.0441 0x1140 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 09:57:11.0449 0x1140 SiSRaid2 - ok 09:57:11.0468 0x1140 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 09:57:11.0477 0x1140 SiSRaid4 - ok 09:57:11.0519 0x1140 [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 09:57:11.0531 0x1140 SkypeUpdate - ok 09:57:11.0552 0x1140 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 09:57:11.0590 0x1140 Smb - ok 09:57:11.0612 0x1140 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 09:57:11.0634 0x1140 SNMPTRAP - ok 09:57:11.0655 0x1140 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 09:57:11.0663 0x1140 spldr - ok 09:57:11.0737 0x1140 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe 09:57:11.0762 0x1140 Spooler - ok 09:57:11.0933 0x1140 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 09:57:12.0150 0x1140 sppsvc - ok 09:57:12.0179 0x1140 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 09:57:12.0212 0x1140 sppuinotify - ok 09:57:12.0235 0x1140 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys 09:57:12.0273 0x1140 srv - ok 09:57:12.0307 0x1140 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 09:57:12.0331 0x1140 srv2 - ok 09:57:12.0349 0x1140 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 09:57:12.0362 0x1140 srvnet - ok 09:57:12.0415 0x1140 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 09:57:12.0489 0x1140 SSDPSRV - ok 09:57:12.0509 0x1140 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 09:57:12.0537 0x1140 SstpSvc - ok 09:57:12.0568 0x1140 [ EF806D212D34B0E173BAEB3564D53E37, 6EF229A7B7AFF0268CDF47B77F961BD44335C3B35499BB00CBA494A22B2BA39E ] ss_bbus C:\Windows\system32\DRIVERS\ss_bbus.sys 09:57:12.0577 0x1140 ss_bbus - ok 09:57:12.0607 0x1140 [ 08B1B34ABEBEB6AC2DEA06900C56411E, 928EF9B9F194DB07049BA2D7127756B021C2729F562E54F7FECD0F2B2FF5A209 ] ss_bmdfl C:\Windows\system32\DRIVERS\ss_bmdfl.sys 09:57:12.0614 0x1140 ss_bmdfl - ok 09:57:12.0633 0x1140 [ 71A9DA6BEAA4CB54DFB827FB78600A5D, 6393CA17CF6A6F30447FF599B2D27CAB44BA1A709D986AC5E14463303094BE5F ] ss_bmdm C:\Windows\system32\DRIVERS\ss_bmdm.sys 09:57:12.0642 0x1140 ss_bmdm - ok 09:57:12.0673 0x1140 [ 677CDC98F8363ACCAAE783FDE1599C2A, 2ED5125A93AF824CA4D394A36F79996F9EBC84305F565F6024ECDD490A4A1FE2 ] ss_bserd C:\Windows\system32\DRIVERS\ss_bserd.sys 09:57:12.0682 0x1140 ss_bserd - ok 09:57:12.0728 0x1140 [ 0887B293199AA2055888FABA989ED0A6, 25B0B95F461E90549F17B09143BC7553ACD8C2860064F1146F8EC163DDFFD26A ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 09:57:12.0743 0x1140 Stereo Service - ok 09:57:12.0759 0x1140 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys 09:57:12.0767 0x1140 stexstor - ok 09:57:12.0817 0x1140 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 09:57:12.0853 0x1140 stisvc - ok 09:57:12.0878 0x1140 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys 09:57:12.0885 0x1140 swenum - ok 09:57:12.0932 0x1140 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 09:57:12.0980 0x1140 swprv - ok 09:57:13.0061 0x1140 [ B49FA98AFAD439CD7E33164C3A19BB88, 272497955D1CAAB5CDC3450B3F2DC43F2056EC03586AACD1C3453E5921BFDAD7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 09:57:13.0096 0x1140 SynTP - ok 09:57:13.0211 0x1140 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll 09:57:13.0278 0x1140 SysMain - ok 09:57:13.0310 0x1140 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 09:57:13.0325 0x1140 TabletInputService - ok 09:57:13.0346 0x1140 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 09:57:13.0379 0x1140 TapiSrv - ok 09:57:13.0402 0x1140 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll 09:57:13.0437 0x1140 TBS - ok 09:57:13.0544 0x1140 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 09:57:13.0589 0x1140 Tcpip - ok 09:57:13.0634 0x1140 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 09:57:13.0678 0x1140 TCPIP6 - ok 09:57:13.0709 0x1140 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 09:57:13.0719 0x1140 tcpipreg - ok 09:57:13.0743 0x1140 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 09:57:13.0764 0x1140 TDPIPE - ok 09:57:13.0801 0x1140 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 09:57:13.0809 0x1140 TDTCP - ok 09:57:13.0833 0x1140 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 09:57:13.0867 0x1140 tdx - ok 09:57:13.0884 0x1140 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys 09:57:13.0893 0x1140 TermDD - ok 09:57:13.0932 0x1140 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll 09:57:13.0983 0x1140 TermService - ok 09:57:13.0997 0x1140 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 09:57:14.0011 0x1140 Themes - ok 09:57:14.0041 0x1140 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 09:57:14.0068 0x1140 THREADORDER - ok 09:57:14.0096 0x1140 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 09:57:14.0134 0x1140 TrkWks - ok 09:57:14.0183 0x1140 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 09:57:14.0230 0x1140 TrustedInstaller - ok 09:57:14.0263 0x1140 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 09:57:14.0280 0x1140 tssecsrv - ok 09:57:14.0301 0x1140 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 09:57:14.0311 0x1140 TsUsbFlt - ok 09:57:14.0328 0x1140 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 09:57:14.0355 0x1140 TsUsbGD - ok 09:57:14.0375 0x1140 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 09:57:14.0415 0x1140 tunnel - ok 09:57:14.0440 0x1140 [ 48743B69EA47C020A792D8649F753F44, 58BFF60271F62F5CB02A1181F44E94C230DF4A6EC5C072A476B2BED13239A70C ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys 09:57:14.0447 0x1140 TurboB - ok 09:57:14.0476 0x1140 [ 759F59E3EA3802FF23F93DCDB6FE9171, DB5A6C1EDA10380C14A8C318D6C65ED691C36F726A6A20DB3038D8F55F1B76D8 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe 09:57:14.0485 0x1140 TurboBoost - ok 09:57:14.0492 0x1140 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 09:57:14.0500 0x1140 uagp35 - ok 09:57:14.0510 0x1140 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D, 1EA835F172B6BF3D7F496E079DF1CDF00122B2110C08D61427582BC9405D2B7B ] UBHelper C:\Windows\system32\drivers\UBHelper.sys 09:57:14.0516 0x1140 UBHelper - ok 09:57:14.0555 0x1140 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 09:57:14.0594 0x1140 udfs - ok 09:57:14.0640 0x1140 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 09:57:14.0651 0x1140 UI0Detect - ok 09:57:14.0666 0x1140 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 09:57:14.0675 0x1140 uliagpkx - ok 09:57:14.0692 0x1140 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 09:57:14.0708 0x1140 umbus - ok 09:57:14.0724 0x1140 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys 09:57:14.0742 0x1140 UmPass - ok 09:57:14.0920 0x1140 [ 7E5E1603D0FF2D240AE70295C5C3FEFC, 1E5F8E415ACE3C6DFBE636473DBE051329174F2A085516B6FC1515A54014D02B ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 09:57:14.0982 0x1140 UNS - ok 09:57:15.0020 0x1140 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 09:57:15.0062 0x1140 upnphost - ok 09:57:15.0088 0x1140 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 09:57:15.0109 0x1140 usbccgp - ok 09:57:15.0139 0x1140 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 09:57:15.0157 0x1140 usbcir - ok 09:57:15.0193 0x1140 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys 09:57:15.0217 0x1140 usbehci - ok 09:57:15.0237 0x1140 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 09:57:15.0262 0x1140 usbhub - ok 09:57:15.0278 0x1140 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys 09:57:15.0287 0x1140 usbohci - ok 09:57:15.0315 0x1140 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 09:57:15.0333 0x1140 usbprint - ok 09:57:15.0349 0x1140 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 09:57:15.0368 0x1140 USBSTOR - ok 09:57:15.0403 0x1140 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 09:57:15.0425 0x1140 usbuhci - ok 09:57:15.0472 0x1140 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 09:57:15.0523 0x1140 usbvideo - ok 09:57:15.0551 0x1140 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 09:57:15.0609 0x1140 UxSms - ok 09:57:15.0621 0x1140 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe 09:57:15.0630 0x1140 VaultSvc - ok 09:57:15.0661 0x1140 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 09:57:15.0670 0x1140 vdrvroot - ok 09:57:15.0692 0x1140 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 09:57:15.0745 0x1140 vds - ok 09:57:15.0758 0x1140 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 09:57:15.0769 0x1140 vga - ok 09:57:15.0795 0x1140 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 09:57:15.0833 0x1140 VgaSave - ok 09:57:15.0872 0x1140 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 09:57:15.0884 0x1140 vhdmp - ok 09:57:15.0908 0x1140 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 09:57:15.0915 0x1140 viaide - ok 09:57:15.0924 0x1140 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 09:57:15.0933 0x1140 volmgr - ok 09:57:15.0957 0x1140 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 09:57:15.0971 0x1140 volmgrx - ok 09:57:15.0993 0x1140 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys 09:57:16.0006 0x1140 volsnap - ok 09:57:16.0034 0x1140 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 09:57:16.0045 0x1140 vsmraid - ok 09:57:16.0148 0x1140 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 09:57:16.0209 0x1140 VSS - ok 09:57:16.0229 0x1140 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 09:57:16.0253 0x1140 vwifibus - ok 09:57:16.0266 0x1140 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 09:57:16.0286 0x1140 vwififlt - ok 09:57:16.0349 0x1140 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 09:57:16.0399 0x1140 W32Time - ok 09:57:16.0425 0x1140 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 09:57:16.0447 0x1140 WacomPen - ok 09:57:16.0467 0x1140 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 09:57:16.0503 0x1140 WANARP - ok 09:57:16.0510 0x1140 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 09:57:16.0537 0x1140 Wanarpv6 - ok 09:57:16.0631 0x1140 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 09:57:16.0688 0x1140 wbengine - ok 09:57:16.0724 0x1140 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 09:57:16.0741 0x1140 WbioSrvc - ok 09:57:16.0761 0x1140 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 09:57:16.0796 0x1140 wcncsvc - ok 09:57:16.0807 0x1140 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 09:57:16.0823 0x1140 WcsPlugInService - ok 09:57:16.0851 0x1140 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys 09:57:16.0858 0x1140 Wd - ok 09:57:16.0933 0x1140 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 09:57:16.0968 0x1140 Wdf01000 - ok 09:57:17.0000 0x1140 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll 09:57:17.0026 0x1140 WdiServiceHost - ok 09:57:17.0032 0x1140 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll 09:57:17.0047 0x1140 WdiSystemHost - ok 09:57:17.0086 0x1140 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll 09:57:17.0101 0x1140 WebClient - ok 09:57:17.0145 0x1140 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll 09:57:17.0228 0x1140 Wecsvc - ok 09:57:17.0241 0x1140 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 09:57:17.0270 0x1140 wercplsupport - ok 09:57:17.0286 0x1140 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 09:57:17.0314 0x1140 WerSvc - ok 09:57:17.0334 0x1140 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 09:57:17.0360 0x1140 WfpLwf - ok 09:57:17.0373 0x1140 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 09:57:17.0381 0x1140 WIMMount - ok 09:57:17.0403 0x1140 WinDefend - ok 09:57:17.0413 0x1140 WinHttpAutoProxySvc - ok 09:57:17.0489 0x1140 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 09:57:17.0539 0x1140 Winmgmt - ok 09:57:17.0640 0x1140 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll 09:57:17.0715 0x1140 WinRM - ok 09:57:17.0754 0x1140 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 09:57:17.0791 0x1140 WinUsb - ok 09:57:17.0869 0x1140 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 09:57:17.0920 0x1140 Wlansvc - ok 09:57:17.0975 0x1140 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 09:57:17.0997 0x1140 wlcrasvc - ok 09:57:18.0133 0x1140 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 09:57:18.0184 0x1140 wlidsvc - ok 09:57:18.0303 0x1140 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 09:57:18.0343 0x1140 WmiAcpi - ok 09:57:18.0402 0x1140 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 09:57:18.0438 0x1140 wmiApSrv - ok 09:57:18.0463 0x1140 WMPNetworkSvc - ok 09:57:18.0494 0x1140 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 09:57:18.0509 0x1140 WPCSvc - ok 09:57:18.0529 0x1140 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 09:57:18.0550 0x1140 WPDBusEnum - ok 09:57:18.0585 0x1140 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 09:57:18.0639 0x1140 ws2ifsl - ok 09:57:18.0654 0x1140 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll 09:57:18.0675 0x1140 wscsvc - ok 09:57:18.0680 0x1140 WSearch - ok 09:57:18.0812 0x1140 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll 09:57:18.0867 0x1140 wuauserv - ok 09:57:18.0913 0x1140 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 09:57:18.0972 0x1140 WudfPf - ok 09:57:19.0024 0x1140 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 09:57:19.0067 0x1140 WUDFRd - ok 09:57:19.0107 0x1140 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 09:57:19.0139 0x1140 wudfsvc - ok 09:57:19.0174 0x1140 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll 09:57:19.0206 0x1140 WwanSvc - ok 09:57:19.0226 0x1140 ================ Scan global =============================== 09:57:19.0259 0x1140 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll 09:57:19.0300 0x1140 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 09:57:19.0323 0x1140 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 09:57:19.0349 0x1140 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 09:57:19.0381 0x1140 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe 09:57:19.0387 0x1140 [ Global ] - ok 09:57:19.0387 0x1140 ================ Scan MBR ================================== 09:57:19.0402 0x1140 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 09:57:19.0645 0x1140 \Device\Harddisk0\DR0 - ok 09:57:19.0653 0x1140 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1 09:57:19.0767 0x1140 \Device\Harddisk1\DR1 - ok 09:57:19.0768 0x1140 ================ Scan VBR ================================== 09:57:19.0774 0x1140 [ 38C6F3CC909A6682E63A56FB7BC75F41 ] \Device\Harddisk0\DR0\Partition1 09:57:19.0777 0x1140 \Device\Harddisk0\DR0\Partition1 - ok 09:57:19.0786 0x1140 [ 678CF4BE75C14309AEA1E5EB16BA91F2 ] \Device\Harddisk0\DR0\Partition2 09:57:19.0789 0x1140 \Device\Harddisk0\DR0\Partition2 - ok 09:57:19.0796 0x1140 [ E3AE7A4B3EC908EF2CA2A5116E20BEB8 ] \Device\Harddisk1\DR1\Partition1 09:57:19.0799 0x1140 \Device\Harddisk1\DR1\Partition1 - ok 09:57:19.0800 0x1140 ================ Scan generic autorun ====================== 09:57:19.0849 0x1140 [ AA2B12C14BF6EC49706EC30AF98B03DC, E7405A2853929CC1685C4292D739F7001D767781C46965C9E93EC734A6E12CB9 ] C:\Windows\system32\hkcmd.exe 09:57:19.0870 0x1140 HotKeysCmds - ok 09:57:19.0871 0x1140 SynTPEnh - ok 09:57:19.0980 0x1140 [ 6B08632F7634F344372B25A507DA7C47, C955BFB0F4601A4D1077119B204785FE4CB975E961D2AEE9C2BFA6EDC27E3CE2 ] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe 09:57:20.0009 0x1140 Nvtmru - ok 09:57:20.0091 0x1140 [ E8D40E43ACA4138753A5B5A6CEA5E556, 9A448976D96FC11837BD6CAA690D1D4608C50B548BB0B15E61EADE9F0340F7BA ] C:\Program Files (x86)\Launch Manager\LManager.exe 09:57:20.0123 0x1140 LManager - ok 09:57:20.0198 0x1140 [ 5374D3363F5B87CF03125F5FB584C8CE, 905C6F08A616A31566C7510EC4B0F02BA66E1928968343FB22ED37C4FB8BABDD ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe 09:57:20.0220 0x1140 avgnt - ok 09:57:20.0323 0x1140 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 09:57:20.0351 0x1140 Adobe ARM - ok 09:57:20.0395 0x1140 [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 09:57:20.0407 0x1140 SunJavaUpdateSched - ok 09:57:20.0486 0x1140 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:57:20.0525 0x1140 Sidebar - ok 09:57:20.0545 0x1140 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:57:20.0573 0x1140 mctadmin - ok 09:57:20.0628 0x1140 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:57:20.0652 0x1140 ScrSav - ok 09:57:20.0702 0x1140 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:57:20.0738 0x1140 Sidebar - ok 09:57:20.0756 0x1140 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:57:20.0771 0x1140 mctadmin - ok 09:57:20.0788 0x1140 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:57:20.0798 0x1140 ScrSav - ok 09:57:20.0843 0x1140 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:57:20.0878 0x1140 Sidebar - ok 09:57:20.0890 0x1140 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:57:20.0904 0x1140 mctadmin - ok 09:57:20.0922 0x1140 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:57:20.0931 0x1140 ScrSav - ok 09:57:20.0977 0x1140 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:57:21.0012 0x1140 Sidebar - ok 09:57:21.0023 0x1140 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:57:21.0038 0x1140 mctadmin - ok 09:57:21.0055 0x1140 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:57:21.0064 0x1140 ScrSav - ok 09:57:21.0110 0x1140 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:57:21.0145 0x1140 Sidebar - ok 09:57:21.0156 0x1140 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:57:21.0171 0x1140 mctadmin - ok 09:57:21.0188 0x1140 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:57:21.0197 0x1140 ScrSav - ok 09:57:21.0243 0x1140 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 09:57:21.0278 0x1140 Sidebar - ok 09:57:21.0290 0x1140 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 09:57:21.0304 0x1140 mctadmin - ok 09:57:21.0322 0x1140 [ 8E27F731A1BDED1B13DEBA9E54FE0B20, 326F0CFC75AD7E552DA5DD64964C06AC0AD6E71BF0D5F568C2AEE9206C2FD0BE ] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe 09:57:21.0331 0x1140 ScrSav - ok 09:57:21.0335 0x1140 AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.4.620 ), 0x40000 ( disabled : updated ) 09:57:21.0338 0x1140 Win FW state via NFP2: disabled 09:57:24.0188 0x1140 ============================================================ 09:57:24.0188 0x1140 Scan finished 09:57:24.0188 0x1140 ============================================================ 09:57:24.0201 0x0bb4 Detected object count: 0 09:57:24.0201 0x0bb4 Actual detected object count: 0 |
|
15.06.2014, 19:11
| #32 |
| /// TB-Ausbilder /// Anleitungs-Guru  | popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version Diesen Scan kannst Du dann auch noch machen bitte...
__________________ Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ |
|
16.06.2014, 17:32
| #33 |
| | popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version Okay, hier das Log-File. Das Programm hat allerdings keinen Neustart durchgeführt.
__________________Code:
ATTFilter ---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.07.0.1012
(c) Malwarebytes Corporation 2011-2012
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
Account is Administrative
Internet Explorer version: 11.0.9600.17126
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXED
CPU speed: 2.494000 GHz
Memory total: 8434597888, free: 6001754112
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.07.0.1012
(c) Malwarebytes Corporation 2011-2012
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
Account is Administrative
Internet Explorer version: 11.0.9600.17126
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXED
CPU speed: 2.494000 GHz
Memory total: 8434597888, free: 6024687616
Downloaded database version: v2014.06.16.06
Downloaded database version: v2014.06.02.01
=======================================
Initializing...
Done!
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 67D5AB18
Partition information:
Partition 0 type is Other (0x27)
Partition is NOT ACTIVE.
Partition starts at LBA: 2048 Numsec = 27262976
Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 27265024 Numsec = 204800
Partition file system is NTFS
Partition is bootable
Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 27469824 Numsec = 949301248
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Disk Size: 500107862016 bytes
Sector size: 512 bytes
Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...
Done!
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 0
Partition information:
Partition 0 type is Other (0xc)
Partition is NOT ACTIVE.
Partition starts at LBA: 32 Numsec = 62535648
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Disk Size: 32018268160 bytes
Sector size: 512 bytes
Done!
Infected: HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Userinit --> [Hijack.UserInit]
Scan finished
Creating System Restore point...
Cleaning up...
Removal successful. No system shutdown is required.
=======================================
Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-27265024-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-r.mbam...
Removal finished
|
|
16.06.2014, 18:22
| #34 |
| /// TB-Ausbilder /// Anleitungs-Guru | popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version Hm..... Ist das Log vollständig?
__________________ Gruß deeprybka  Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
16.06.2014, 23:50
| #35 |
| | popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste versionCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org
Database version: v2014.06.16.07
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17126
Silke :: SILKE-PC [administrator]
17.06.2014 00:22:24
mbar-log-2014-06-17 (00-22-24).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 322742
Time elapsed: 7 minute(s), 57 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
16.06.2014, 23:55
| #36 |
| /// TB-Ausbilder /// Anleitungs-Guru | popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version Schritt 1   Bitte starte FRST erneut, markiere auch die checkbox  und drücke auf Scan. Bitte poste mir den Inhalt der beiden Logs die erstellt werden.
__________________ --> popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version |
|
17.06.2014, 12:18
| #37 |
| | popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version FRST-File: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-06-2014 Ran by Silke (administrator) on SILKE-PC on 17-06-2014 13:15:41 Running from C:\Users\Silke\Desktop Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (Dropbox, Inc.) C:\Users\Silke\AppData\Roaming\Dropbox\bin\Dropbox.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient VPN\FCMiniSch.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe (Fortinet Inc.) C:\Program Files (x86)\Fortinet\FortiClient VPN\FCCOMInt.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2697512 2011-02-17] (Synaptics Incorporated) HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1012000 2013-05-16] (NVIDIA Corporation) HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1110096 2011-07-01] (Dritek System Inc.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-17] (AVAST Software) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-2032327208-3002283268-2618255439-1008\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162408 2011-09-13] () Startup: C:\Users\Silke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\Silke\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM-x32 - DefaultScope value is missing. SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {2E270E13-59CA-4E3F-907A-713010237A2A} URL = hxxp://go.gmx.net/tb/ie_searchplugin/?su={searchTerms} SearchScopes: HKCU - {39E6BC6C-ED11-4E21-B42C-0F2CB3E9E4C3} URL = hxxp://search.gmx.com/web?q={searchTerms}&origin=tb_splugin_ie SearchScopes: HKCU - {BF6FFF60-F055-4EA7-8E54-7FB091694675} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?su={searchTerms} SearchScopes: HKCU - {F9F0CE95-774E-474B-AFBB-E7BED31FBB9E} URL = hxxp://go.web.de/tb/ie_searchplugin/?su={searchTerms} BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: WEB.DE Toolbar BHO - {BF42D4A8-016E-4fcd-B1EB-837659FD77C6} - C:\Program Files\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH) BHO-x32: ICQ Sparberater - {0766C1B9-B2DC-46E5-8934-4F3D6B42B1BD} - C:\Program Files (x86)\icq\Internet Explorer\icq.dll (solute gmbh) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: WEB.DE Toolbar BHO - {BF42D4A8-016E-4fcd-B1EB-837659FD77C6} - C:\Program Files (x86)\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - No File Handler: webde - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - C:\Program Files\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH) Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation) Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Handler-x32: webde - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - C:\Program Files (x86)\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 FireFox: ======== FF ProfilePath: C:\Users\Silke\AppData\Roaming\Mozilla\Firefox\Profiles\kqknjv4p.default FF NewTab: chrome://quick_start/content/index.html FF Homepage: www.google.de FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll () FF Plugin: @java.com/DTPlugin,version=10.5.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll () FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Fast Start - C:\Users\Silke\AppData\Roaming\Mozilla\Firefox\Profiles\kqknjv4p.default\Extensions\faststartff@gmail.com [2014-06-12] FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-17] FF HKLM-x32\...\Firefox\Extensions: [{d4da7309-b89a-45ec-8ebb-cfb2ae13618b}] - C:\Program Files\Acer ProShield\FFExt20 FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-17] Chrome: ======= CHR HomePage: hxxp://www.google.com/ CHR StartupUrls: "hxxp://www.google.com/" CHR Extension: (Google Docs) - C:\Users\Silke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-05-22] CHR Extension: (Google Drive) - C:\Users\Silke\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-22] CHR Extension: (YouTube) - C:\Users\Silke\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-22] CHR Extension: (Google-Suche) - C:\Users\Silke\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-22] CHR Extension: (Google Wallet) - C:\Users\Silke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-12] CHR Extension: (Google Mail) - C:\Users\Silke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-22] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-06-17] ==================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-17] (AVAST Software) R2 FA_MINISCH; C:\Program Files (x86)\Fortinet\FortiClient VPN\FCMiniSch.exe [40978 2010-02-26] (Fortinet Inc.) [File not signed] S4 GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [29696 2011-05-26] (Acer Incorporated) [File not signed] S4 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2012-07-16] (Nero AG) S4 LkCitadelServer; C:\Windows\SysWOW64\lkcitdl.exe [695136 2008-10-31] (National Instruments, Inc.) S4 lkClassAds; C:\Windows\SysWOW64\lkads.exe [42544 2009-06-18] (National Instruments Corporation) S4 lkTimeSync; C:\Windows\SysWOW64\lktsrv.exe [53296 2009-06-18] (National Instruments Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) S4 mxssvr; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [12696 2009-06-15] (National Instruments Corporation) S4 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [356912 2009-06-18] (National Instruments Corporation) S4 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1007616 2009-06-23] (Macrovision Corporation) [File not signed] S4 niSvcLoc; C:\Windows\SysWOW64\nisvcloc.exe [13896 2009-06-04] (National Instruments Corporation) S4 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [740968 2009-06-23] (National Instruments Corporation) S4 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256832 2011-04-24] (NTI Corporation) S4 OpcEnum; C:\Windows\SysWOW64\OpcEnum.exe [98304 2009-06-03] (OPC Foundation) [File not signed] S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2012-10-08] () [File not signed] S4 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-30] (Acer Incorporated) S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X] ==================== Drivers (Whitelisted) ==================== U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-06-17] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-06-17] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-06-17] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-06-17] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-06-17] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-06-17] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-06-17] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-06-17] () R3 Fortidrv2; C:\Windows\System32\DRIVERS\fortidrv.sys [28264 2010-01-04] (Fortinet Inc) R2 Fortips; C:\Windows\system32\drivers\fortips.sys [119912 2010-02-26] (Fortinet Inc) R3 ft_vnic; C:\Windows\System32\DRIVERS\ftvnic.sys [16928 2009-02-16] (Fortinet Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-17] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation) R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [284448 2013-05-12] (NVIDIA Corporation) S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) S3 ss_bserd; C:\Windows\System32\DRIVERS\ss_bserd.sys [128000 2009-09-19] (MCCI Corporation) S3 catchme; \??\C:\ComboFix\catchme.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-06-17 00:50 - 2014-06-17 00:50 - 00001970 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2014-06-17 00:50 - 2014-06-17 00:50 - 00000000 ____D () C:\Users\Silke\AppData\Roaming\AVAST Software 2014-06-17 00:50 - 2014-06-17 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast 2014-06-17 00:49 - 2014-06-17 13:12 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-06-17 00:49 - 2014-06-17 00:49 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1402958981532 2014-06-17 00:49 - 2014-06-17 00:49 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1402958981532 2014-06-17 00:49 - 2014-06-17 00:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2014-06-17 00:49 - 2014-06-17 00:49 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2014-06-17 00:49 - 2014-06-17 00:49 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2014-06-17 00:48 - 2014-06-17 00:48 - 00000000 ____D () C:\Program Files\AVAST Software 2014-06-17 00:47 - 2014-06-17 00:47 - 00000000 ____D () C:\ProgramData\AVAST Software 2014-06-17 00:43 - 2014-06-17 00:44 - 94714880 _____ (AVAST Software) C:\Users\Silke\Downloads\avast_free_antivirus_setup2018.exe 2014-06-17 00:36 - 2014-06-17 00:36 - 04646008 _____ (TeamViewer) C:\Users\Silke\Desktop\TeamViewerQS_de(1).exe 2014-06-17 00:21 - 2014-06-17 00:21 - 00046450 _____ () C:\Users\Silke\Desktop\FRSTohne.txt 2014-06-16 23:52 - 2014-06-16 23:52 - 04646008 _____ (TeamViewer) C:\Users\Silke\Downloads\TeamViewerQS_de.exe 2014-06-16 18:16 - 2014-06-17 00:32 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2014-06-16 18:14 - 2014-06-17 00:32 - 00000000 ____D () C:\Users\Silke\Desktop\mbar 2014-06-16 18:14 - 2014-06-16 18:14 - 14349744 _____ (Malwarebytes Corp.) C:\Users\Silke\Desktop\mbar-1.07.0.1012.exe 2014-06-15 09:53 - 2014-06-15 09:53 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Silke\Desktop\tdsskiller.exe 2014-06-14 19:46 - 2014-06-14 19:46 - 00024740 _____ () C:\ComboFix.txt 2014-06-14 19:46 - 2014-06-14 19:46 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\temp 2014-06-14 19:46 - 2014-06-14 19:46 - 00000000 ____D () C:\Users\Public\AppData\Local\temp 2014-06-14 19:46 - 2014-06-14 19:46 - 00000000 ____D () C:\Users\Default\AppData\Local\temp 2014-06-14 19:46 - 2014-06-14 19:46 - 00000000 ____D () C:\Users\Default User\AppData\Local\temp 2014-06-14 19:30 - 2014-06-14 19:46 - 00000000 ____D () C:\ComboFix 2014-06-14 19:27 - 2014-06-14 19:27 - 05206928 ____R (Swearware) C:\Users\Silke\Desktop\ComboFix.exe 2014-06-14 19:26 - 2014-06-14 19:27 - 05206928 _____ (Swearware) C:\Users\Silke\Downloads\ComboFix.exe 2014-06-13 11:00 - 2014-06-14 19:46 - 00000000 ____D () C:\Qoobox 2014-06-13 11:00 - 2014-06-13 11:14 - 00000000 ____D () C:\Windows\erdnt 2014-06-13 11:00 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe 2014-06-13 11:00 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe 2014-06-13 11:00 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2014-06-13 11:00 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2014-06-13 11:00 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2014-06-13 11:00 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe 2014-06-13 11:00 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe 2014-06-13 11:00 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe 2014-06-12 21:09 - 2014-06-12 21:09 - 02081792 _____ (Farbar) C:\Users\Silke\Downloads\FRST64.exe 2014-06-12 21:05 - 2014-06-12 21:07 - 00000000 ____D () C:\Users\Silke\Desktop\Usb stick 2014-06-12 10:35 - 2014-06-12 10:35 - 00000000 ____D () C:\Users\Silke\AppData\Local\Adobe 2014-06-12 10:25 - 2014-06-12 10:25 - 00000000 ____D () C:\ProgramData\Sun 2014-06-12 10:25 - 2014-06-12 10:25 - 00000000 ____D () C:\ProgramData\Oracle 2014-06-12 10:25 - 2014-06-12 10:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-06-12 10:25 - 2014-06-12 10:24 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-06-12 10:25 - 2014-06-12 10:24 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-06-12 10:25 - 2014-06-12 10:24 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-06-12 10:25 - 2014-06-12 10:24 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-06-12 10:24 - 2014-06-12 10:24 - 00000000 ____D () C:\Program Files (x86)\Java 2014-06-12 10:23 - 2014-06-12 10:23 - 00918952 _____ (Oracle Corporation) C:\Users\Silke\Downloads\jxpiinstall.exe 2014-06-12 10:20 - 2014-06-12 10:41 - 00002179 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-06-12 10:20 - 2014-06-12 10:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-06-12 10:19 - 2014-06-17 13:12 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-06-12 10:19 - 2014-06-17 00:33 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-06-12 10:19 - 2014-06-12 10:28 - 00004104 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-06-12 10:19 - 2014-06-12 10:28 - 00003852 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-06-12 10:19 - 2014-06-12 10:19 - 01057176 _____ (Adobe) C:\Users\Silke\Downloads\install_flashplayer14x32_ltr5x64d_awc_aih.exe 2014-06-12 10:07 - 2014-06-12 10:07 - 00448512 _____ (OldTimer Tools) C:\Users\Silke\Desktop\TFC.exe 2014-06-11 10:10 - 2014-06-12 19:02 - 00048256 _____ () C:\Users\Silke\Desktop\Addition.txt 2014-06-11 10:09 - 2014-06-17 13:16 - 00017294 _____ () C:\Users\Silke\Desktop\FRST.txt 2014-06-11 10:09 - 2014-06-17 00:15 - 00000000 ____D () C:\Users\Silke\Desktop\FRST-OlderVersion 2014-06-11 06:15 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-06-11 06:15 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-06-11 06:15 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-06-11 06:15 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-06-11 06:15 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-06-11 06:15 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-06-11 06:15 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-06-11 06:15 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-06-11 06:15 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-06-11 06:15 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-06-11 06:15 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-06-11 06:15 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-06-11 06:15 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-06-11 06:15 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-06-11 06:15 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-06-11 06:15 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-06-11 06:15 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-06-11 06:15 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-06-11 06:15 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-06-11 06:15 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-06-11 06:15 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-06-11 06:15 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-06-11 06:15 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-06-11 06:15 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-06-11 06:15 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-06-11 06:15 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-06-11 06:15 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-06-11 06:15 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-06-11 06:15 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-06-11 06:15 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-06-11 06:15 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-06-11 06:15 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-06-11 06:15 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-06-11 06:15 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-06-11 06:15 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-06-11 06:15 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-06-11 06:15 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-06-11 06:15 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-06-11 06:15 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-06-11 06:15 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-06-11 06:15 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-06-11 06:15 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-06-11 06:15 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-06-11 06:15 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-06-11 06:15 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-06-11 06:15 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-06-11 06:15 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-06-11 06:15 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-06-11 06:15 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-06-11 06:15 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-06-11 06:15 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-06-11 06:15 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-06-11 06:14 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-06-11 06:14 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-06-11 06:14 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2014-06-11 06:14 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll 2014-06-11 06:14 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-06-11 06:14 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-06-11 06:14 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2014-06-11 06:14 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-06-11 06:14 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2014-06-11 06:14 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-06-11 06:14 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2014-06-11 06:14 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-06-11 06:14 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2014-06-11 06:14 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2014-06-10 23:10 - 2014-06-10 23:10 - 02347384 _____ (ESET) C:\Users\Silke\Desktop\esetsmartinstaller_deu.exe 2014-06-10 23:10 - 2014-06-10 23:10 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-06-10 22:40 - 2014-06-17 13:14 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-06-10 22:40 - 2014-06-17 00:21 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-06-10 22:40 - 2014-06-10 22:40 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-06-10 22:40 - 2014-06-10 22:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-06-10 22:40 - 2014-06-10 22:40 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-06-10 22:40 - 2014-06-10 22:40 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-06-10 22:40 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-06-10 22:40 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-06-10 22:38 - 2014-06-10 22:38 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Silke\Desktop\mbam-setup-2.0.2.1012.exe 2014-06-10 22:28 - 2014-06-10 22:34 - 00000000 ____D () C:\AdwCleaner 2014-06-10 22:28 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-06-10 22:22 - 2014-06-10 22:22 - 01333465 _____ () C:\Users\Silke\Desktop\adwcleaner_3.212.exe 2014-06-10 19:44 - 2014-06-10 21:28 - 00042027 _____ () C:\Users\Silke\Downloads\Addition.txt 2014-06-10 19:43 - 2014-06-17 13:15 - 00000000 ____D () C:\FRST 2014-06-10 19:43 - 2014-06-10 21:28 - 00035545 _____ () C:\Users\Silke\Downloads\FRST.txt 2014-06-10 19:42 - 2014-06-17 00:15 - 02081280 _____ (Farbar) C:\Users\Silke\Desktop\FRST64.exe 2014-06-02 20:22 - 2014-06-02 20:22 - 00000000 __SHD () C:\Users\Silke\AppData\Local\EmieUserList 2014-06-02 20:22 - 2014-06-02 20:22 - 00000000 __SHD () C:\Users\Silke\AppData\Local\EmieSiteList ==================== One Month Modified Files and Folders ======= 2014-06-17 13:16 - 2014-06-11 10:09 - 00017294 _____ () C:\Users\Silke\Desktop\FRST.txt 2014-06-17 13:16 - 2012-05-13 05:42 - 00000000 ____D () C:\Users\Silke\AppData\Local\Temp 2014-06-17 13:15 - 2014-06-10 19:43 - 00000000 ____D () C:\FRST 2014-06-17 13:14 - 2014-06-10 22:40 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-06-17 13:13 - 2014-05-14 20:23 - 00000000 ____D () C:\Users\Silke\AppData\Roaming\DropboxMaster 2014-06-17 13:13 - 2013-05-22 18:07 - 00000000 ___RD () C:\Users\Silke\Dropbox 2014-06-17 13:13 - 2013-05-22 18:05 - 00000000 ____D () C:\Users\Silke\AppData\Roaming\Dropbox 2014-06-17 13:12 - 2014-06-17 00:49 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-06-17 13:12 - 2014-06-12 10:19 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-06-17 13:12 - 2013-03-26 21:01 - 00000326 _____ () C:\Windows\Tasks\GlaryInitialize.job 2014-06-17 13:12 - 2012-05-24 19:46 - 00056322 _____ () C:\Windows\setupact.log 2014-06-17 13:12 - 2012-03-12 17:35 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-06-17 13:12 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-06-17 00:53 - 2012-09-21 18:43 - 00277328 _____ () C:\Windows\PFRO.log 2014-06-17 00:53 - 2012-03-12 17:29 - 01651770 _____ () C:\Windows\WindowsUpdate.log 2014-06-17 00:50 - 2014-06-17 00:50 - 00001970 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2014-06-17 00:50 - 2014-06-17 00:50 - 00000000 ____D () C:\Users\Silke\AppData\Roaming\AVAST Software 2014-06-17 00:50 - 2014-06-17 00:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast 2014-06-17 00:49 - 2014-06-17 00:49 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1402958981532 2014-06-17 00:49 - 2014-06-17 00:49 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1402958981532 2014-06-17 00:49 - 2014-06-17 00:49 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2014-06-17 00:49 - 2014-06-17 00:49 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2014-06-17 00:49 - 2014-06-17 00:49 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2014-06-17 00:49 - 2014-06-17 00:49 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2014-06-17 00:48 - 2014-06-17 00:48 - 00000000 ____D () C:\Program Files\AVAST Software 2014-06-17 00:47 - 2014-06-17 00:47 - 00000000 ____D () C:\ProgramData\AVAST Software 2014-06-17 00:44 - 2014-06-17 00:43 - 94714880 _____ (AVAST Software) C:\Users\Silke\Downloads\avast_free_antivirus_setup2018.exe 2014-06-17 00:42 - 2009-07-14 06:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-06-17 00:42 - 2009-07-14 06:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-06-17 00:36 - 2014-06-17 00:36 - 04646008 _____ (TeamViewer) C:\Users\Silke\Desktop\TeamViewerQS_de(1).exe 2014-06-17 00:33 - 2014-06-12 10:19 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-06-17 00:32 - 2014-06-16 18:16 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2014-06-17 00:32 - 2014-06-16 18:14 - 00000000 ____D () C:\Users\Silke\Desktop\mbar 2014-06-17 00:21 - 2014-06-17 00:21 - 00046450 _____ () C:\Users\Silke\Desktop\FRSTohne.txt 2014-06-17 00:21 - 2014-06-10 22:40 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-06-17 00:15 - 2014-06-11 10:09 - 00000000 ____D () C:\Users\Silke\Desktop\FRST-OlderVersion 2014-06-17 00:15 - 2014-06-10 19:42 - 02081280 _____ (Farbar) C:\Users\Silke\Desktop\FRST64.exe 2014-06-17 00:00 - 2012-05-12 23:11 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-06-16 23:52 - 2014-06-16 23:52 - 04646008 _____ (TeamViewer) C:\Users\Silke\Downloads\TeamViewerQS_de.exe 2014-06-16 23:52 - 2013-04-11 14:25 - 00000000 ____D () C:\Users\Silke\AppData\Roaming\TeamViewer 2014-06-16 18:14 - 2014-06-16 18:14 - 14349744 _____ (Malwarebytes Corp.) C:\Users\Silke\Desktop\mbar-1.07.0.1012.exe 2014-06-15 09:53 - 2014-06-15 09:53 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Silke\Desktop\tdsskiller.exe 2014-06-14 19:46 - 2014-06-14 19:46 - 00024740 _____ () C:\ComboFix.txt 2014-06-14 19:46 - 2014-06-14 19:46 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\temp 2014-06-14 19:46 - 2014-06-14 19:46 - 00000000 ____D () C:\Users\Public\AppData\Local\temp 2014-06-14 19:46 - 2014-06-14 19:46 - 00000000 ____D () C:\Users\Default\AppData\Local\temp 2014-06-14 19:46 - 2014-06-14 19:46 - 00000000 ____D () C:\Users\Default User\AppData\Local\temp 2014-06-14 19:46 - 2014-06-14 19:30 - 00000000 ____D () C:\ComboFix 2014-06-14 19:46 - 2014-06-13 11:00 - 00000000 ____D () C:\Qoobox 2014-06-14 19:39 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini 2014-06-14 19:27 - 2014-06-14 19:27 - 05206928 ____R (Swearware) C:\Users\Silke\Desktop\ComboFix.exe 2014-06-14 19:27 - 2014-06-14 19:26 - 05206928 _____ (Swearware) C:\Users\Silke\Downloads\ComboFix.exe 2014-06-13 11:16 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default 2014-06-13 11:14 - 2014-06-13 11:00 - 00000000 ____D () C:\Windows\erdnt 2014-06-13 11:14 - 2012-03-13 02:23 - 00700134 _____ () C:\Windows\system32\perfh007.dat 2014-06-13 11:14 - 2012-03-13 02:23 - 00149984 _____ () C:\Windows\system32\perfc007.dat 2014-06-13 11:14 - 2009-07-14 07:13 - 01622236 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-06-12 21:09 - 2014-06-12 21:09 - 02081792 _____ (Farbar) C:\Users\Silke\Downloads\FRST64.exe 2014-06-12 21:07 - 2014-06-12 21:05 - 00000000 ____D () C:\Users\Silke\Desktop\Usb stick 2014-06-12 19:02 - 2014-06-11 10:10 - 00048256 _____ () C:\Users\Silke\Desktop\Addition.txt 2014-06-12 11:16 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-06-12 10:41 - 2014-06-12 10:20 - 00002179 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-06-12 10:35 - 2014-06-12 10:35 - 00000000 ____D () C:\Users\Silke\AppData\Local\Adobe 2014-06-12 10:28 - 2014-06-12 10:19 - 00004104 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-06-12 10:28 - 2014-06-12 10:19 - 00003852 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-06-12 10:25 - 2014-06-12 10:25 - 00000000 ____D () C:\ProgramData\Sun 2014-06-12 10:25 - 2014-06-12 10:25 - 00000000 ____D () C:\ProgramData\Oracle 2014-06-12 10:25 - 2014-06-12 10:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-06-12 10:24 - 2014-06-12 10:25 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-06-12 10:24 - 2014-06-12 10:25 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-06-12 10:24 - 2014-06-12 10:25 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-06-12 10:24 - 2014-06-12 10:25 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-06-12 10:24 - 2014-06-12 10:24 - 00000000 ____D () C:\Program Files (x86)\Java 2014-06-12 10:23 - 2014-06-12 10:23 - 00918952 _____ (Oracle Corporation) C:\Users\Silke\Downloads\jxpiinstall.exe 2014-06-12 10:22 - 2012-05-12 23:11 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-06-12 10:22 - 2012-05-12 23:11 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-06-12 10:22 - 2011-11-08 14:22 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-06-12 10:20 - 2014-06-12 10:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-06-12 10:20 - 2013-04-11 14:15 - 00000000 ____D () C:\Program Files (x86)\Google 2014-06-12 10:19 - 2014-06-12 10:19 - 01057176 _____ (Adobe) C:\Users\Silke\Downloads\install_flashplayer14x32_ltr5x64d_awc_aih.exe 2014-06-12 10:07 - 2014-06-12 10:07 - 00448512 _____ (OldTimer Tools) C:\Users\Silke\Desktop\TFC.exe 2014-06-12 10:05 - 2012-05-13 05:42 - 00000000 ____D () C:\Users\Silke 2014-06-11 23:27 - 2013-07-15 10:35 - 00000000 ____D () C:\Windows\system32\MRT 2014-06-11 23:26 - 2012-05-12 23:15 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-06-11 23:24 - 2014-05-08 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-06-10 23:10 - 2014-06-10 23:10 - 02347384 _____ (ESET) C:\Users\Silke\Desktop\esetsmartinstaller_deu.exe 2014-06-10 23:10 - 2014-06-10 23:10 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-06-10 22:59 - 2011-11-08 14:03 - 00000000 ____D () C:\Windows\oem 2014-06-10 22:40 - 2014-06-10 22:40 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-06-10 22:40 - 2014-06-10 22:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-06-10 22:40 - 2014-06-10 22:40 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-06-10 22:40 - 2014-06-10 22:40 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-06-10 22:38 - 2014-06-10 22:38 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Silke\Desktop\mbam-setup-2.0.2.1012.exe 2014-06-10 22:34 - 2014-06-10 22:28 - 00000000 ____D () C:\AdwCleaner 2014-06-10 22:34 - 2012-05-12 22:48 - 00000969 _____ () C:\Users\Silke\Desktop\Internet Explorer.lnk 2014-06-10 22:34 - 2012-05-12 22:46 - 00000999 _____ () C:\Users\Silke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-06-10 22:22 - 2014-06-10 22:22 - 01333465 _____ () C:\Users\Silke\Desktop\adwcleaner_3.212.exe 2014-06-10 21:28 - 2014-06-10 19:44 - 00042027 _____ () C:\Users\Silke\Downloads\Addition.txt 2014-06-10 21:28 - 2014-06-10 19:43 - 00035545 _____ () C:\Users\Silke\Downloads\FRST.txt 2014-06-10 19:06 - 2013-07-27 00:02 - 00000047 _____ () C:\Users\Silke\AppData\Roaming\WB.CFG 2014-06-08 11:13 - 2014-06-11 06:14 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-06-08 11:08 - 2014-06-11 06:14 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-06-02 20:22 - 2014-06-02 20:22 - 00000000 __SHD () C:\Users\Silke\AppData\Local\EmieUserList 2014-06-02 20:22 - 2014-06-02 20:22 - 00000000 __SHD () C:\Users\Silke\AppData\Local\EmieSiteList 2014-05-30 12:21 - 2014-06-11 06:15 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-30 12:02 - 2014-06-11 06:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-05-30 12:02 - 2014-06-11 06:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-05-30 11:45 - 2014-06-11 06:15 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-05-30 11:39 - 2014-06-11 06:15 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-05-30 11:39 - 2014-06-11 06:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-05-30 11:38 - 2014-06-11 06:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-05-30 11:28 - 2014-06-11 06:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-05-30 11:27 - 2014-06-11 06:15 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-05-30 11:24 - 2014-06-11 06:15 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-05-30 11:21 - 2014-06-11 06:15 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-05-30 11:21 - 2014-06-11 06:15 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-05-30 11:20 - 2014-06-11 06:15 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-05-30 11:18 - 2014-06-11 06:15 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-30 11:11 - 2014-06-11 06:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-05-30 11:08 - 2014-06-11 06:15 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-05-30 11:06 - 2014-06-11 06:15 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-05-30 11:02 - 2014-06-11 06:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-05-30 10:55 - 2014-06-11 06:15 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-05-30 10:49 - 2014-06-11 06:15 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-05-30 10:46 - 2014-06-11 06:15 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-30 10:44 - 2014-06-11 06:15 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-05-30 10:44 - 2014-06-11 06:15 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-05-30 10:43 - 2014-06-11 06:15 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-05-30 10:42 - 2014-06-11 06:15 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-05-30 10:38 - 2014-06-11 06:15 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-05-30 10:35 - 2014-06-11 06:15 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-05-30 10:34 - 2014-06-11 06:15 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-05-30 10:33 - 2014-06-11 06:15 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-05-30 10:30 - 2014-06-11 06:15 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-05-30 10:29 - 2014-06-11 06:15 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-05-30 10:28 - 2014-06-11 06:15 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-05-30 10:27 - 2014-06-11 06:15 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-05-30 10:24 - 2014-06-11 06:15 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-05-30 10:23 - 2014-06-11 06:15 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-05-30 10:16 - 2014-06-11 06:15 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-05-30 10:10 - 2014-06-11 06:15 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-05-30 10:06 - 2014-06-11 06:15 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-05-30 10:04 - 2014-06-11 06:15 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-30 10:02 - 2014-06-11 06:15 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-05-30 09:56 - 2014-06-11 06:15 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-05-30 09:56 - 2014-06-11 06:15 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-05-30 09:54 - 2014-06-11 06:15 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-05-30 09:50 - 2014-06-11 06:15 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-05-30 09:49 - 2014-06-11 06:15 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-05-30 09:43 - 2014-06-11 06:15 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-05-30 09:40 - 2014-06-11 06:15 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-05-30 09:30 - 2014-06-11 06:15 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-05-30 09:21 - 2014-06-11 06:15 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-05-30 09:15 - 2014-06-11 06:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-05-30 09:13 - 2014-06-11 06:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-05-30 09:13 - 2014-06-11 06:15 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-05-30 00:14 - 2012-05-12 22:46 - 00000000 ___RD () C:\Users\Silke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2014-05-30 00:13 - 2013-05-22 18:07 - 00001021 _____ () C:\Users\Silke\Desktop\Dropbox.lnk 2014-05-30 00:13 - 2013-05-22 18:06 - 00000000 ____D () C:\Users\Silke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-05-18 22:12 - 2012-05-12 22:46 - 00000000 ___RD () C:\Users\Silke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools Some content of TEMP: ==================== C:\Users\Silke\AppData\Local\Temp\avgnt.exe C:\Users\Silke\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbk6p36.dll ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-06-10 20:41 ==================== End Of Log ============================ Und das Addition-File  Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-06-2014
Ran by Silke at 2014-06-17 13:16:39
Running from C:\Users\Silke\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
Acer Backup Manager (HKLM-x32\...\InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}) (Version: 3.0.0.99 - NTI Corporation)
Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 1.0.1710 - CyberLink Corp.)
Acer Crystal Eye Webcam (x32 Version: 1.0.1710 - CyberLink Corp.) Hidden
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3007 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3502 - Acer Incorporated)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3502 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0913.2011 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3501 - Acer Incorporated)
Acer VCM (HKLM-x32\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3501 - Acer Incorporated)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader X (10.1.10) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Backup Manager V3 (x32 Version: 3.0.0.99 - NTI Corporation) Hidden
Bullzip PDF Printer 9.8.0.1599 (HKLM\...\Bullzip PDF Printer_is1) (Version: 9.8.0.1599 - Bullzip)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon iP4800 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4800_series) (Version: - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - )
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version: - )
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.52.0.50 - Conexant)
Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.5.899 - Corel Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DC-Bass Source 1.3.0 (HKLM-x32\...\DC-Bass Source) (Version: - )
Dia (nur entfernen) (HKLM-x32\...\Dia) (Version: - )
DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
ffdshow v1.1.4399 [2012-03-22] (HKLM-x32\...\ffdshow_is1) (Version: 1.1.4399.0 - )
FortiClient VPN (HKLM\...\{5FED163B-78E6-4002-90DE-B4E080C1781C}) (Version: 4.1.3.0143 - Fortinet Inc)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotogràfica del Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Git Extensions 2.44 (HKLM-x32\...\{A5EEEE64-572A-4F97-9CFA-E83CE180455D}) (Version: 2.44 - Henk)
Git version 1.8.1.2-preview20130201 (HKLM-x32\...\Git_is1) (Version: 1.8.1.2-preview20130201 - The Git Development Community)
Glary Utilities 2.54.0.1758 (HKLM-x32\...\Glary Utilities_is1) (Version: 2.54.0.1758 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.0.0.007 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{7477F26F-CC6A-4F68-8C9D-496DBFF45E05}) (Version: 1.1.27.0 - HTC)
ICQ Sparberater (HKLM-x32\...\{0766C1B9-B2DC-46E5-8934-4F3D6B42B1BD}) (Version: 1.3.671 - solute gmbh)
ICQ7M (HKLM-x32\...\{781B39EC-2E18-41FC-9B00-B84E4FFCA85F}) (Version: 7.8 - ICQ)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)
Install Absolute Data Protect (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 1.0.0.42 - Absolute Software)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2345 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{6965F2F4-1CD2-4F42-A8EF-9EF433F9AA72}) (Version: 4.0.4 - HTC)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Launch Manager (HKLM-x32\...\LManager) (Version: 6.0.8s1 - Acer Inc.)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Marc 2013.0.0 Student Edition (HKLM-x32\...\{79E2563F-C221-4E0D-9A99-1E7FE7179E12}) (Version: 13.0.0 - MSC.Software Corporation)
MATLAB R2010b (HKLM\...\MatlabR2010b) (Version: 7.11 - The MathWorks, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.5128.5002 - Microsoft Corporation)
Microsoft Office XP Professional mit FrontPage (HKLM-x32\...\{90280407-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2701.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NI Assistant Framework (x32 Version: 6.5.191.0 - National Instruments) Hidden
NI Assistant Framework 64-bit (Version: 6.5.62.0 - National Instruments) Hidden
NI Assistant Framework LabVIEW 2009 Support (x32 Version: 6.5.112.0 - National Instruments) Hidden
NI Assistant Framework LabVIEW Code Generator 2009 (x32 Version: 6.5.121.0 - National Instruments) Hidden
NI CodeSignAPI (x32 Version: 2.70.346 - National Instruments) Hidden
NI DataSocket 4.7.0 (64-bit) (Version: 4.7.39.0 - National Instruments) Hidden
NI DataSocket 4.7.0 (x32 Version: 4.7.82.0 - National Instruments) Hidden
NI EULA Depot (x32 Version: 2.70.346 - National Instruments) Hidden
NI Example Finder 9.0 (x32 Version: 9.0.136.0 - National Instruments) Hidden
NI Help Assistant (64bit) (Version: 1.0.10 - National Instruments) Hidden
NI Help Assistant (x32 Version: 1.0.10 - National Instruments) Hidden
NI Instrument IO Assistant for LabVIEW 9.0 32 (x32 Version: 1.0.49.0 - National Instruments) Hidden
NI LabVIEW 2009 Applibs (x32 Version: 9.0.91.0 - National Instruments) Hidden
NI LabVIEW 2009 CINtools (x32 Version: 9.0.89.0 - National Instruments) Hidden
NI LabVIEW 2009 Deployment Framework (x32 Version: 9.0.5.0 - National Instruments) Hidden
NI LabVIEW 2009 Deutsch (x32 Version: 9.0.85.0 - National Instruments) Hidden
NI LabVIEW 2009 Examples (x32 Version: 9.0.89.0 - National Instruments) Hidden
NI LabVIEW 2009 gMath (x32 Version: 9.0.87.0 - National Instruments) Hidden
NI LabVIEW 2009 Help (x32 Version: 9.0.94.0 - National Instruments) Hidden
NI LabVIEW 2009 Help File (x32 Version: 9.0.261.0 - National Instruments) Hidden
NI LabVIEW 2009 Instr.lib (x32 Version: 9.0.89.0 - National Instruments) Hidden
NI LabVIEW 2009 License (x32 Version: 9.0.253.0 - National Instruments) Hidden
NI LabVIEW 2009 Manuals (x32 Version: 9.0.92.0 - National Instruments) Hidden
NI LabVIEW 2009 MeasAppChm File (x32 Version: 9.0.259.0 - National Instruments) Hidden
NI LabVIEW 2009 Menus (x32 Version: 9.0.89.0 - National Instruments) Hidden
NI LabVIEW 2009 Project (x32 Version: 9.0.88.0 - National Instruments) Hidden
NI LabVIEW 2009 Resource (x32 Version: 9.0.88.0 - National Instruments) Hidden
NI LabVIEW 2009 Simulation (x32 Version: 9.0.253.0 - National Instruments) Hidden
NI LabVIEW 2009 Templates (x32 Version: 9.0.88.0 - National Instruments) Hidden
NI LabVIEW 2009 User.lib (x32 Version: 9.0.88.0 - National Instruments) Hidden
NI LabVIEW 2009 VI.lib (x32 Version: 9.0.87.0 - National Instruments) Hidden
NI LabVIEW 2009 Web Server (x32 Version: 9.0.180.0 - National Instruments) Hidden
NI LabVIEW 2009 WWW (x32 Version: 9.0.87.0 - National Instruments) Hidden
NI LabVIEW Broker (64 bit) (Version: 6.7.21.0 - National Instruments) Hidden
NI LabVIEW Broker (x32 Version: 6.7.21.0 - National Instruments) Hidden
NI LabVIEW C Interface (x32 Version: 1.0.1 - National Instruments) Hidden
NI LabVIEW Compare Utility 9.0.0 (x32 Version: 9.0.108.0 - National Instruments) Hidden
NI LabVIEW Deployable License 2009 (x32 Version: 9.0.253.0 - National Instruments) Hidden
NI LabVIEW MAX XML (x32 Version: 9.0.6.0 - National Instruments) Hidden
NI LabVIEW Merge Utility 9.0.0 (x32 Version: 9.0.148.0 - National Instruments) Hidden
NI LabVIEW Real-Time Error Dialog (x32 Version: 8.5.294.0 - National Instruments) Hidden
NI LabVIEW Real-Time FIFO for Runtime (x32 Version: 8.2.74.0 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (x32 Version: 9.0.222.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2009 (x32 Version: 9.0.266.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 8.2.1 (x32 Version: 8.2.379.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2009 (x32 Version: 9.0.22.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Web Services (x32 Version: 9.0.197.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (x32 Version: 9.0.185.0 - National Instruments) Hidden
NI LabVIEW Web Services Runtime (x32 Version: 9.0.176.0 - National Instruments) Hidden
NI LabWindows/CVI 9.0 Run-Time Engine (x32 Version: 9.0.0355 - National Instruments) Hidden
NI LabWindows/CVI Code Generator (x32 Version: 9.0.1376 - National Instruments) Hidden
NI LabWindows/CVI DLL Builder for LabVIEW (x32 Version: 9.0.1376 - National Instruments) Hidden
NI License Manager (x32 Version: 3.4.25 - National Instruments) Hidden
NI Logos 5.1 (x32 Version: 5.1.118.0 - National Instruments) Hidden
NI Logos LabVIEW 2009 Support (x32 Version: 9.0.92.0 - National Instruments) Hidden
NI Logos XT Support (x32 Version: 5.1.66.0 - National Instruments) Hidden
NI Logos64 5.1 (Version: 5.1.71.0 - National Instruments) Hidden
NI Logos64 XT Support (Version: 5.1.63.0 - National Instruments) Hidden
NI LVBrokerAux 8.2.1 (x32 Version: 8.2.303.0 - National Instruments) Hidden
NI Math Kernel Libraries (64-bit) (Version: 1.0.14.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.28.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.861.0 - National Instruments) Hidden
NI MAX LabVIEW Support 4.6.0 (x32 Version: 4.60.49153 - National Instruments) Hidden
NI MAX Remote Configuration Installer 4.6 (x32 Version: 4.60.49152 - National Instruments) Hidden
NI MAX Support for 64 Bit Windows (Version: 4.60.49153 - National Instruments) Hidden
NI MDF Support (x32 Version: 2.70.346 - National Instruments) Hidden
NI Measurement & Automation Explorer 4.6.0 (x32 Version: 4.60.49153 - National Instruments) Hidden
NI Measurement Studio Recipe Processor (x32 Version: 8.0.0101 - National Instruments) Hidden
NI MXS 4.6.0 (x32 Version: 4.60.49152 - National Instruments) Hidden
NI MXS 4.6.0 for 64 Bit Windows (Version: 4.60.49152 - National Instruments) Hidden
NI MXS 4.6.0f0 for LabVIEW Real-Time (x32 Version: 4.60.49152 - National Instruments) Hidden
NI OPC Support (x32 Version: 9.0.35.0 - National Instruments) Hidden
NI Portable Configuration 4.6.0 (x32 Version: 4.60.49152 - National Instruments) Hidden
NI Portable Configuration Help for 64 Bit Windows 4.6.0 (Version: 4.60.49152 - National Instruments) Hidden
NI Registration Wizard (x32 Version: 1.2.71 - National Instruments) Hidden
NI Remote Provider for MAX 4.6.0 (x32 Version: 4.60.49152 - National Instruments) Hidden
NI Remote PXI Provider for MAX 4.6.0 (x32 Version: 4.60.49152 - National Instruments) Hidden
NI Service Locator (x32 Version: 9.0.260.0 - National Instruments) Hidden
NI Software Provider for MAX 4.6.0 (x32 Version: 4.60.49152 - National Instruments) Hidden
NI SSL LabVIEW 2009 Support (x32 Version: 9.0.103.0 - National Instruments) Hidden
NI SSL Support (64-bit) (Version: 9.0.11.0 - National Instruments) Hidden
NI SSL Support (x32 Version: 9.0.5.0 - National Instruments) Hidden
NI System API RT (x32 Version: 1.0.45.0 - National Instruments) Hidden
NI System API Windows 32-bit (x32 Version: 1.0.48.0 - National Instruments) Hidden
NI System API Windows 64-bit (Version: 1.0.41.0 - National Instruments) Hidden
NI System State Publisher (64-bit) (Version: 9.0.128.0 - National Instruments) Hidden
NI System State Publisher (x32 Version: 9.0.150.0 - National Instruments) Hidden
NI TDM Excel Add-In 2.1 (x32 Version: 2.1.37.0 - National Instruments) Hidden
NI TDMS (64-bit) (Version: 2.0.170.0 - National Instruments) Hidden
NI TDMS (x32 Version: 2.0.170.0 - National Instruments) Hidden
NI Trace Engine (64-bit) (Version: 9.0.128.0 - National Instruments) Hidden
NI Trace Engine (x32 Version: 9.0.146.0 - National Instruments) Hidden
NI Uninstaller (x32 Version: 2.70.346 - National Instruments) Hidden
NI USI 1.7.0 (x32 Version: 1.7.03805 - National Instruments) Hidden
NI USI 1.7.0 64-Bit (Version: 1.7.03805 - National Instruments) Hidden
NI Variable Engine (64-bit) (Version: 2.3.26.0 - National Instruments) Hidden
NI Variable Engine 2.3.0 (x32 Version: 2.3.59.0 - National Instruments) Hidden
NI Variable Engine LabVIEW 2009 Support (x32 Version: 9.0.92.0 - National Instruments) Hidden
NI VC2005MSMs x64 (Version: 8.01.5 - National Instruments) Hidden
NI VC2005MSMs x86 (x32 Version: 8.01.5 - National Instruments) Hidden
NI VC2008MSMs x64 (Version: 9.0.100 - National Instruments) Hidden
NI VC2008MSMs x86 (x32 Version: 9.0.100 - National Instruments) Hidden
NI Web Pipeline 2.0.1 (x32 Version: 2.0.128.0 - National Instruments) Hidden
NI Web Pipeline 2.0.1 64-bit support (Version: 2.0.122.0 - National Instruments) Hidden
NI Xalan Delay Load 1.10.1 (x32 Version: 1.10.46.0 - National Instruments) Hidden
NI Xalan Delay Load 1.10.1 64-bit (Version: 1.10.47.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.1 (x32 Version: 2.7.123.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.1 64-bit (Version: 2.7.128.0 - National Instruments) Hidden
NI-DAQmx - LabVIEW shared documentation (x32 Version: 1.50.49152 - National Instruments) Hidden
NI-DAQmx - LabVIEW shared documentation for 64 Bit Windows 1.5.0 (Version: 1.50.49152 - National Instruments) Hidden
NI-DSM 2009 (x32 Version: 9.0.146.0 - National Instruments) Hidden
NI-RPC 4.1.1f0 (x32 Version: 4.11.49152 - National Instruments) Hidden
NI-RPC 4.1.1f0 for 64 Bit Windows (Version: 4.11.49152 - National Instruments) Hidden
NI-RPC 4.1.1f0 for Phar Lap ETS (x32 Version: 4.11.49152 - National Instruments) Hidden
NTI Media Maker 9 (HKLM-x32\...\InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}) (Version: 9.0.2.8942 - NTI Corporation)
NTI Media Maker 9 (x32 Version: 9.0.2.8942 - NTI Corporation) Hidden
NVIDIA 3D Vision Treiber 320.18 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 320.18 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 320.18 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 320.18 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.124.810 - NVIDIA Corporation) Hidden
NVIDIA Optimus 4.11.9 (Version: 4.11.9 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2018 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 320.18 (Version: 320.18 - NVIDIA Corporation) Hidden
NVIDIA Update 4.11.9 (Version: 4.11.9 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 4.11.9 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4 (HKLM-x32\...\{4C552FD3-2CCD-4E00-AC64-0681DBB3F8B5}) (Version: 3.4.9590 - OpenOffice.org)
OpenSource Flash Video Splitter 1.0.0.5 (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: 1.0.0.5 - )
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7600.74 - Realtek Semiconductor Corp.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Software von National Instruments (HKLM-x32\...\NI Uninstaller) (Version: - National Instruments)
SopCast 3.5.0 (HKLM-x32\...\SopCast) (Version: 3.5.0 - www.sopcast.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.14.0 - Synaptics Incorporated)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.0.82.0 - Intel)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 2.1.1 (HKLM\...\VLC media player) (Version: 2.1.1 - VideoLAN)
WEB.DE Softwareaktualisierung (HKLM-x32\...\1&1 Mail & Media GmbH 1und1Softwareaktualisierung) (Version: 2.0.1.9 - 1&1 Mail & Media GmbH)
WEB.DE Toolbar für Internet Explorer (HKLM-x32\...\1&1 Mail & Media GmbH Toolbar IE8) (Version: 1.7.2.0 - 1&1 Mail & Media GmbH)
WEB.DE Toolbar MSVC100 CRT x64 (Version: 1.0.0 - 1&1 Mail & Media GmbH) Hidden
WEB.DE Toolbar MSVC100 CRT x86 (x32 Version: 1.0.0 - 1&1 Mail & Media GmbH) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3504 - Acer Incorporated)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalleri (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galerija fotografija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Корпорация Майкрософт) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven sähköposti (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
==================== Restore Points =========================
10-06-2014 18:48:29 Geplanter Prüfpunkt
10-06-2014 20:21:18 Removed Java(TM) 7 Update 5 (64-bit)
11-06-2014 04:11:22 Windows Update
11-06-2014 21:24:17 Windows Update
12-06-2014 08:24:28 Installed Java 7 Update 60
14-06-2014 17:31:06 ComboFix created restore point
16-06-2014 16:28:21 Malwarebytes Anti-Rootkit Restore Point
16-06-2014 22:48:29 avast! antivirus system restore point
==================== Hosts content: ==========================
2009-07-14 04:34 - 2014-06-14 19:39 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {01B0A4A0-90F3-46F1-8F7A-3F7648212CBC} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {0CD444A8-3DF1-4DF0-93EB-45E73E3DEB03} - System32\Tasks\Registration 1und1 Task => C:\Program Files (x86)\1und1Softwareaktualisierung\cdsupdclient.exe [2011-07-28] (1&1 Mail & Media GmbH)
Task: {14481E1E-B5EE-4599-94F6-99663ECE8459} - \Re-markit Update No Task File <==== ATTENTION
Task: {2A161143-A663-4B9A-B3BF-6B47B7A4BBAC} - \Digital Sites No Task File <==== ATTENTION
Task: {48D36FE2-132A-4316-971A-A4EE38397A20} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-06-17] (AVAST Software)
Task: {490E7214-E88E-41D1-96FA-A3FB688B95FE} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {74B92D02-50CB-4298-88F5-B8FB633F6577} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-12] (Google Inc.)
Task: {9BCAD4A3-7954-4B72-AB78-0F235BB3CB8F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-12] (Adobe Systems Incorporated)
Task: {9E6DFEAC-3065-4F39-9EDA-1D5F8D71CE68} - System32\Tasks\Absolute Reminder => C:\Program Files (x86)\Absolute Software\Absolute Reminder\AbsoluteReminder.exe [2011-01-19] (Absolute Software)
Task: {A60B15B0-79C1-43DE-9B8A-D39C86D6630A} - System32\Tasks\UALU notificatin => C:\Program Files\Acer\Acer Updater\UALU.exe [2012-02-06] (Acer Incorporated)
Task: {CA6F5595-E324-4CAC-9F69-C114586A3D1C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-12] (Google Inc.)
Task: {FF682B44-489B-4A56-9130-3FEDB9C3AD64} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [2013-03-19] (Glarysoft Ltd)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-06-16 20:07 - 2013-05-12 22:34 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-17 13:12 - 2014-06-17 13:12 - 02776064 _____ () C:\Program Files\AVAST Software\Avast\defs\14061700\algo.dll
2014-06-17 13:13 - 2014-06-17 13:13 - 00043008 _____ () c:\users\silke\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbk6p36.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\Silke\AppData\Roaming\Dropbox\bin\libcef.dll
2014-06-17 00:49 - 2014-06-17 00:49 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-10 00:08 - 2014-05-10 00:08 - 03839088 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-06-12 10:16 - 2014-06-12 10:16 - 17024688 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== MSCONFIG/TASK MANAGER disabled items =========
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: CxAudMsg => 2
MSCONFIG\Services: DsiWMIService => 2
MSCONFIG\Services: ePowerSvc => 2
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: GREGService => 2
MSCONFIG\Services: Guard.Mail.ru => 2
MSCONFIG\Services: HTCMonitorService => 2
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: IconMan_R => 2
MSCONFIG\Services: ICQ Service => 2
MSCONFIG\Services: IviRegMgr => 2
MSCONFIG\Services: Live Updater Service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NTI IScheduleSvc => 2
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: nvUpdatusService => 2
MSCONFIG\Services: PassThru Service => 2
MSCONFIG\Services: PSI_SVC_2 => 2
MSCONFIG\Services: RS_Service => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: TurboBoost => 3
MSCONFIG\Services: UNS => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk => C:\Windows\pss\Acer VCM.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: Power Management => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
MSCONFIG\startupreg: ProShieldTSR => "C:\Program Files\Acer ProShield\EgisTSR.exe" /run
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/17/2014 01:13:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/17/2014 00:55:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/17/2014 00:48:38 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary ukuqohyo.
System Error:
Das System kann die angegebene Datei nicht finden.
.
Error: (06/17/2014 00:36:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/16/2014 11:16:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/15/2014 09:33:23 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/14/2014 07:52:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/14/2014 07:50:07 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Nur zur Information.
(Patch task for {90140011-0066-0407-0000-0000000FF1CE}): DownloadLatest Failed: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Error: (06/14/2014 07:40:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/14/2014 07:40:14 PM) (Source: Avira Antivirus) (EventID: 4122) (User: NT-AUTORITÄT)
Description: AvShadow0x3fa
System errors:
=============
Error: (06/17/2014 01:12:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/17/2014 00:54:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/17/2014 00:34:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/17/2014 00:33:56 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AD3EDBCA-0901-415B-82E9-C16D3B65E38C}
Error: (06/16/2014 11:15:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/15/2014 09:31:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/14/2014 07:51:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/14/2014 07:42:18 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "FortiClient Mini Scheduler" wurde nicht richtig gestartet.
Error: (06/14/2014 07:39:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/14/2014 07:38:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
Microsoft Office Sessions:
=========================
Error: (06/17/2014 01:13:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/17/2014 00:55:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/17/2014 00:48:38 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary ukuqohyo.
System Error:
Das System kann die angegebene Datei nicht finden.
Error: (06/17/2014 00:36:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/16/2014 11:16:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/15/2014 09:33:23 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/14/2014 07:52:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/14/2014 07:50:07 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-0407-0000-0000000FF1CE}): DownloadLatest Failed: Der Servername oder die Serveradresse konnte nicht verarbeitet werden.
Error: (06/14/2014 07:40:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/14/2014 07:40:14 PM) (Source: Avira Antivirus) (EventID: 4122) (User: NT-AUTORITÄT)
Description: AvShadow0x3fa
CodeIntegrity Errors:
===================================
Date: 2014-06-14 19:32:13.138
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-06-14 19:32:13.060
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-06-14 19:32:12.982
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-06-14 19:32:12.889
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-06-13 11:07:20.863
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-06-13 11:07:20.800
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 31%
Total physical RAM: 8043.86 MB
Available physical RAM: 5533.39 MB
Total Pagefile: 16085.9 MB
Available Pagefile: 13611.15 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:452.66 GB) (Free:379.16 GB) NTFS
Drive f: (INTENSO) (Removable) (Total:29.8 GB) (Free:29.8 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 67D5AB18)
Partition 1: (Not Active) - (Size=13 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=453 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 30 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
17.06.2014, 12:30
| #38 |
| /// TB-Ausbilder /// Anleitungs-Guru | popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version Aufräumen: Defogger: Falls benutzt worden, Defogger nochmal starten und auf re-enable klicken. Anschließend: Schritt 1  Combofix-Deinstallation.
 Gibts jetzt noch Probleme mit Deinem Rechner? Oder hast Du noch Fragen? NEIN? Alle Logs gepostet? Ja! Dann lade Dir bitte  DelFix herunter.
Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen. >>clean<< Wir haben es geschafft!  Die Logs sehen für mich im Moment sauber aus.  Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  und/oder das Forum mit einer kleinen Spende  unterstützen.  Es bleibt mir nur noch, Dir unbeschwertes und sicheres Surfen zu wünschen und dass wir uns hier so bald nicht wiedersehen. Epilog: Tipps, Dos & Don'ts  Aktualität von System und SoftwareDas Betriebsystem  Windows muss zwingend immer auf dem neusten Stand sein. Stelle sicher, dass die  automatischen Updates aktiviert sind.Auch die installierte Software sollte immer in der aktuellsten Version vorliegen. Speziell gilt das für die Browser  , Java  , Flash-Player  und PDF-Reader  , denn bekannte Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim blossen Besuch einer präparierten Website per Drive-by Download Malware zu installieren. Das kann sogar auf normalerweise legitimen Websites geschehen, wenn es einem Angreifer gelungen ist, seinen Code in die Seite einzuschleusen, und ist deshalb relativ unberechenbar.
Sicherheits-SoftwareEine Bemerkung vorneweg: Jede Softwarelösung hat ihre Schwächen. Die gesamte Verantwortung für die Sicherheit auf Software zu übertragen und einen Rundum-Schutz zu erwarten, wäre eine gefährliche Illusion. Bei unbedachtem oder bewusst risikoreichem Verhalten wird auch das beste Programm früher oder später seinen Dienst versagen (z.B. ein Virenscanner, der eine infizierte Datei nicht erkennt). Trotzdem ist entsprechende Software natürlich wichtig und hilft dir in Kombination mit einem gut gewarteten (up-to-date) System und durchdachtem Verhalten, deinen Rechner sauber zu halten.
Es liegt in der Natur der Sache, dass die am weitesten verbreitete Anwendungs-Software auch am häufigsten von Malware-Autoren attackiert wird. Es kann daher bereits einen kleinen Sicherheitsgewinn darstellen, wenn man alternative Software (z.B. einen alternativen PDF Reader) benutzt. Anstelle des Internet Explorers kann man beispielsweise den Mozilla Firefox  einsetzen, für welchen es zwei nützliche Addons als Empfehlung gibt:
(Un-)Sicheres Verhalten im InternetNebst unbemerkten Drive-by Installationen wird Malware aber auch oft mehr oder weniger aktiv vom Benutzer selbst installiert. Der Besuch zwielichtiger Websites kann bereits Risiken bergen. Und Downloads aus dubiosen Quellen sind immer russisches Roulette. Auch wenn der Virenscanner im Moment darin keine Bedrohung erkennt, muss das nichts bedeuten.
Oft wird auch versucht, den Benutzer mit mehr oder weniger trickreichen Methoden dazu zu bringen, eine für ihn verhängnisvolle Handlung selbst auszuführen (Überbegriff Social Engineering).
Nervige Adware (Werbung) und unnötige Toolbars werden auch meist durch den Benutzer selbst mitinstalliert.
Allgemeine HinweiseAbschließend noch ein paar grundsätzliche Bemerkungen:
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
| Themen zu popup:Seite kann nicht angezeigt werden - aktualisieren sie flash Player aud die neueste version |
| exploit.drop.gsa, hijack.userinit, msil/domaiq.t, pup.optional.babylon.a, pup.optional.bandoo, pup.optional.bundleinstaller.a, pup.optional.crossrider.a, pup.optional.delta, pup.optional.delta.a, pup.optional.nationzoom.a, pup.optional.nextlive.a, pup.optional.qone8, pup.optional.scramblepacker.a, pup.optional.skytech.a, pup.optional.tugluu.a, pup.optional.wpmanager, seite kann nicht angezeigt werden, trojan.rotbrowse, win32/dealply.o, win32/downloadsponsor.a, win32/elex.ad, win32/elex.ae, win32/nationzoom.a, win32/nextlive.a, win32/thinknice.a, win32/thinknice.b |
+ R Taste und schreibe Combofix /Uninstall in das 
Avast! Free Antivirus
Firewall. Die in Windows integrierte genügt im Normalfall völlig.
NoScript
Adblock Plus
Linear-Darstellung
