|
Log-Analyse und Auswertung: Avast meldet Bedrohung: HTML:Framer-inf [Trj]Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
22.01.2017, 22:02 | #1 |
| Avast meldet Bedrohung: HTML:Framer-inf [Trj] Hallo zusammen! Avast hat heute bei mir die Bedrohung "HTML:Framer-inf [Trj]" gemeldet, die immer aufkommt, wenn ich bei Firefox einen neuen Tab öffne/in die Adresszeile schreibe. Als Objekt gibt Avast folgendes an: hxxp://bidr.trellian.com(...ich kann den Link leider nicht kopieren). Wie werde ich das ganze wieder los? Hier das FRST-Log: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 22-01-2017 durchgeführt von Anna (Administrator) auf ANNA-VAIO (22-01-2017 21:54:32) Gestartet von C:\Users\Anna\Desktop Geladene Profile: Anna (Verfügbare Profile: Anna & Gast) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Adobe Systems Incorporated) C:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe () C:\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Spotify Ltd) C:\Users\Anna\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Spotify Ltd) C:\Users\Anna\AppData\Roaming\Spotify\Spotify.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (shbox.de) C:\Program Files (x86)\FreePDF_XP\fpassist.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAdmin.exe (Adobe Sytems Incorporated) C:\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Spotify Ltd) C:\Users\Anna\AppData\Roaming\Spotify\SpotifyCrashService.exe (Spotify Ltd) C:\Users\Anna\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd) C:\Users\Anna\AppData\Roaming\Spotify\Spotify.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712 2012-03-13] (Realtek Semiconductor) HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [1022592 2012-04-28] (Atheros Communications) HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [801920 2012-04-28] (Atheros Commnucations) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2885944 2012-09-20] (Synaptics Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-26] (Apple Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2012-02-10] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-04-09] (Intel Corporation) HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [60552 2011-09-20] (Sony Corporation) HKLM-x32\...\Run: [PMBVolumeWatcher] => c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [693608 2012-02-21] (Sony Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software) HKLM-x32\...\Run: [FreePDF Assistant] => C:\Program Files (x86)\FreePDF_XP\fpassist.exe [373760 2014-03-18] (shbox.de) HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-26] (cyberlink) HKLM-x32\...\Run: [Adobe Version Cue CS2] => c:\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26142864 2017-01-18] (Dropbox, Inc.) HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1223168 2016-12-09] (Cisco Systems, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation) HKU\S-1-5-21-1695557451-403283895-2565799833-1001\...\Run: [Spotify Web Helper] => C:\Users\Anna\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1444976 2016-12-22] (Spotify Ltd) HKU\S-1-5-21-1695557451-403283895-2565799833-1001\...\Run: [Spotify] => C:\Users\Anna\AppData\Roaming\Spotify\Spotify.exe [7153264 2016-12-22] (Spotify Ltd) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-09] (AVAST Software) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) Startup: C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2016-08-06] ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0C4D7364-2B5F-47B6-B944-D8CFCE9F9A01}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-1695557451-403283895-2565799833-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://vaioportal.sony.eu/ HKU\S-1-5-21-1695557451-403283895-2565799833-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://vaioportal.sony.eu HKU\S-1-5-21-1695557451-403283895-2565799833-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://sony.msn.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-1695557451-403283895-2565799833-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1695557451-403283895-2565799833-1001 -> {8196F850-F666-46CF-8527-BD3CE2DAF116} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q212&_nkw={searchTerms} BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll => Keine Datei BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-21] (Oracle Corporation) BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-04-28] (Atheros Commnucations) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-24] (AVAST Software) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-21] (Oracle Corporation) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.) FireFox: ======== FF DefaultProfile: 1z7h68lw.default FF ProfilePath: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\1z7h68lw.default [2017-01-22] FF Homepage: Mozilla\Firefox\Profiles\1z7h68lw.default -> hxxps://www.google.de FF Extension: (Adblock Plus) - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\1z7h68lw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-25] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-09] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-09] FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-11] () FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-11] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-03-13] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-03-13] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-21] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-21] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @playstation.com/PsndlCheck,version=1.00 -> C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll [2011-08-03] (Sony Computer Entertainment Inc.) FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2011-08-02] (Sony Network Entertainment International LLC) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2011-09-28] () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.) ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2016-08-06] (Adobe Systems) [Datei ist nicht signiert] R2 Adobe Version Cue CS2; c:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated) [Datei ist nicht signiert] R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [119424 2012-04-28] (Atheros Commnucations) [Datei ist nicht signiert] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-09] (AVAST Software) S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [247768 2013-04-26] (CyberLink) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-17] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-17] (Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46400 2017-01-04] (Dropbox, Inc.) S3 DCDhcpService; C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [112256 2012-03-21] (Atheros Communication Inc.) [Datei ist nicht signiert] R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-13] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-03-13] (Intel Corporation) R2 PMBDeviceInfoProvider; c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [473960 2012-02-21] (Sony Corporation) R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.) S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [960160 2011-12-29] (Sony Corporation) R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [163456 2012-04-28] (Atheros) [Datei ist nicht signiert] S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X] S2 McMPFSvc; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-09] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-09] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-09] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-09] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-09] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-13] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-22] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-09] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software) R3 BTATH_VDP; C:\Windows\System32\drivers\btath_vdp.sys [422144 2012-04-28] (Atheros) S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc.) S3 dbx; system32\DRIVERS\dbx.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-01-22 21:54 - 2017-01-22 21:56 - 00025063 _____ C:\Users\Anna\Desktop\FRST.txt 2017-01-22 21:54 - 2017-01-22 21:54 - 00000000 ____D C:\FRST 2017-01-22 21:53 - 2017-01-22 21:53 - 02420736 _____ (Farbar) C:\Users\Anna\Desktop\FRST64.exe 2017-01-22 21:50 - 2017-01-22 21:50 - 01762816 _____ (Farbar) C:\Users\Anna\Desktop\FRST.exe 2017-01-22 09:35 - 2017-01-22 09:35 - 00000000 ___RD C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2017-01-20 20:17 - 2017-01-20 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2017-01-20 20:13 - 2017-01-20 20:13 - 00002555 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk 2017-01-20 20:12 - 2017-01-20 20:12 - 00000000 ____D C:\Program Files (x86)\MSECache 2017-01-20 20:02 - 2017-01-20 20:12 - 63363736 _____ (Microsoft Corporation) C:\Users\Anna\Desktop\PowerPointViewer.exe 2017-01-20 17:22 - 2017-01-20 17:22 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2017-01-20 17:22 - 2017-01-20 17:22 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Sun 2017-01-20 17:22 - 2017-01-20 17:22 - 00000000 ____D C:\Users\Gast\AppData\LocalLow\Sun 2017-01-20 17:22 - 2017-01-20 17:22 - 00000000 ____D C:\Users\Gast\.oracle_jre_usage 2017-01-20 17:17 - 2017-01-20 17:23 - 00000000 ____D C:\Users\Gast\AppData\LocalLow\Mozilla 2017-01-20 17:17 - 2017-01-20 17:17 - 00000000 ____D C:\Users\Gast\.cisco 2017-01-16 20:48 - 2017-01-16 20:48 - 00000000 ____D C:\Users\Anna\.cisco 2017-01-16 20:48 - 2017-01-16 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco 2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2017-01-11 13:12 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2017-01-11 13:12 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2017-01-11 13:12 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2017-01-11 13:12 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2017-01-11 13:12 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2017-01-11 13:12 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-01-11 13:12 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-01-11 13:12 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-01-11 13:12 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2017-01-11 13:12 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2017-01-11 13:12 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2017-01-04 06:25 - 2017-01-04 06:25 - 00046400 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-01-22 21:54 - 2016-08-06 18:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2017-01-22 21:31 - 2016-11-18 11:29 - 00000000 ____D C:\Users\Anna\AppData\LocalLow\Mozilla 2017-01-22 21:16 - 2016-09-17 10:14 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2017-01-22 19:11 - 2016-09-27 18:27 - 00000000 ____D C:\Users\Anna\AppData\Roaming\Spotify 2017-01-22 13:16 - 2016-09-17 10:14 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2017-01-22 09:36 - 2016-09-27 18:28 - 00000000 ____D C:\Users\Anna\AppData\Local\Spotify 2017-01-22 09:36 - 2016-09-17 10:16 - 00000000 ___RD C:\Users\Anna\Dropbox 2017-01-22 04:38 - 2009-07-14 05:45 - 00021200 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-01-22 04:38 - 2009-07-14 05:45 - 00021200 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-01-22 04:29 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-01-22 04:29 - 2009-07-14 05:45 - 00357888 _____ C:\Windows\system32\FNTCACHE.DAT 2017-01-21 18:06 - 2016-08-06 19:12 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2017-01-21 18:06 - 2016-08-06 19:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-01-21 18:05 - 2016-08-06 19:11 - 00000000 ____D C:\Program Files (x86)\Java 2017-01-21 10:54 - 2016-08-06 18:50 - 00084688 _____ C:\Users\Anna\AppData\Local\GDIPFONTCACHEV1.DAT 2017-01-21 09:49 - 2016-08-06 19:21 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2017-01-20 20:17 - 2016-09-17 10:14 - 00000000 ____D C:\Program Files (x86)\Dropbox 2017-01-20 17:22 - 2016-09-26 18:21 - 00000000 ____D C:\Users\Gast\Documents\Bluetooth Folder 2017-01-20 17:22 - 2016-09-26 18:20 - 00000000 ____D C:\Users\Gast 2017-01-20 17:19 - 2016-09-26 18:20 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore 2017-01-20 12:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2017-01-18 21:02 - 2016-08-09 09:11 - 00000000 ____D C:\Users\Anna\AppData\Roaming\Skype 2017-01-16 20:48 - 2016-09-18 15:34 - 00000000 ____D C:\ProgramData\Cisco 2017-01-16 20:48 - 2016-09-18 15:34 - 00000000 ____D C:\Program Files (x86)\Cisco 2017-01-16 20:48 - 2016-08-06 18:50 - 00000000 ____D C:\Users\Anna 2017-01-15 22:28 - 2016-08-06 19:16 - 00000000 ____D C:\Users\Anna\AppData\Roaming\SoftGrid Client 2017-01-15 21:11 - 2016-08-11 14:17 - 00000000 ____D C:\Users\Anna\Desktop\tickets 2017-01-14 18:34 - 2016-08-06 18:23 - 00000000 ____D C:\ProgramData\Skype 2017-01-11 13:54 - 2016-08-06 18:12 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-01-11 13:54 - 2016-08-06 18:12 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-01-11 13:54 - 2016-08-06 18:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-01-11 13:54 - 2016-08-06 18:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-01-11 13:54 - 2016-08-06 18:12 - 00000000 ____D C:\Windows\system32\Macromed 2017-01-10 14:23 - 2016-11-25 21:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2017-01-10 14:23 - 2016-08-06 19:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-01-08 17:37 - 2016-08-21 13:46 - 00000000 ____D C:\Users\Anna\Documents\Anna_Privat 2017-01-06 01:09 - 2016-08-06 19:39 - 00000000 ____D C:\Users\Anna\AppData\Roaming\vlc 2017-01-06 01:00 - 2016-08-06 19:29 - 00000000 ____D C:\Users\Anna\AppData\Local\CrashDumps 2016-12-30 11:02 - 2016-08-06 18:33 - 00699892 _____ C:\Windows\system32\perfh007.dat 2016-12-30 11:02 - 2016-08-06 18:33 - 00149742 _____ C:\Windows\system32\perfc007.dat 2016-12-30 11:02 - 2009-07-14 06:13 - 01621316 _____ C:\Windows\system32\PerfStringBackup.INI 2016-12-30 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-12-30 11:02 - 2009-07-14 03:36 - 00654690 _____ C:\Windows\system32\perfh009.dat 2016-12-30 11:02 - 2009-07-14 03:36 - 00122304 _____ C:\Windows\system32\perfc009.dat 2016-12-30 11:00 - 2016-08-06 18:50 - 00000000 ___SD C:\Users\Anna\AppData\LocalLow\Microsoft 2016-12-29 14:35 - 2016-08-06 18:55 - 00000000 ____D C:\Users\Anna\AppData\Local\Sony Corporation 2016-12-29 14:25 - 2016-08-06 19:28 - 00000000 ____D C:\Update 2016-12-29 14:25 - 2016-08-06 18:35 - 00000000 ____D C:\ProgramData\Sony Corporation 2016-12-29 14:25 - 2016-08-06 18:35 - 00000000 ____D C:\Program Files\Sony 2016-12-29 14:25 - 2016-08-06 17:55 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation 2016-12-29 14:25 - 2016-08-06 17:46 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-08-06 23:40 - 2016-08-07 00:53 - 0007636 _____ () C:\Users\Anna\AppData\Local\Resmon.ResmonCfg Einige Dateien in TEMP: ==================== 2016-10-01 12:03 - 2016-10-01 12:03 - 0225016 _____ (Cisco Systems, Inc.) C:\Users\Anna\AppData\Local\Temp\20161001010328987jniverify.dll 2016-08-06 19:39 - 2016-08-06 19:40 - 30533688 _____ () C:\Users\Anna\AppData\Local\Temp\vlc-2.2.4-win32.exe ==================== Bamital & volsnap ====================== (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2017-01-18 19:17 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 22-01-2017 durchgeführt von Anna (22-01-2017 21:56:21) Gestartet von C:\Users\Anna\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2016-08-06 17:50:08) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-1695557451-403283895-2565799833-500 - Administrator - Disabled) Anna (S-1-5-21-1695557451-403283895-2565799833-1001 - Administrator - Enabled) => C:\Users\Anna Gast (S-1-5-21-1695557451-403283895-2565799833-501 - Limited - Enabled) => C:\Users\Gast HomeGroupUser$ (S-1-5-21-1695557451-403283895-2565799833-1002 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 7-Zip 16.00 (x64) (HKLM\...\7-Zip) (Version: 16.00 - Igor Pavlov) ActiveX контрола на Windows Live Mesh за отдалечени връзки (HKLM-x32\...\{B3BA4D1C-23EF-4859-9C11-1B2CCB7FADBB}) (Version: 15.4.5722.2 - Microsoft Corporation) ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (HKLM-x32\...\{376D59B1-42D9-4FA2-B6CC-E346B6BE14F5}) (Version: 15.4.5722.2 - Microsoft Corporation) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.7.0.19460 - Adobe Systems Incorporated) Adobe Creative Suite 2 (HKLM-x32\...\{0134A1A1-C283-4A47-91A1-92F19F960372}) (Version: - ) Adobe Flash Player 24 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 24.0.0.194 - Adobe Systems Incorporated) Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated) Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.) Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated) Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.) Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden AMD Catalyst Install Manager (HKLM\...\{EBF1529E-D2D5-47CF-97EC-7D90CEF0FE04}) (Version: 3.0.859.0 - Advanced Micro Devices, Inc.) Apple Application Support (32-Bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.) Apple Application Support (64-Bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.161 - ArcSoft) ArcSoft WebCam Companion 4 (HKLM-x32\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.457 - ArcSoft) Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.135 - Atheros) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Bing Bar (HKLM-x32\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BPCx64 (Version: 1.0.0 - Sony Corporation) Hidden BPCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden Build-a-lot 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden Cake Mania (x32 Version: 2.2.0.98 - WildTangent) Hidden Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.4.00243 - Cisco Systems, Inc.) Cisco AnyConnect Secure Mobility Client (x32 Version: 4.4.00243 - Cisco Systems, Inc.) Hidden Control ActiveX Windows Live Mesh pentru conexiuni la distanță (HKLM-x32\...\{260E3D78-94E6-47EC-8E29-46301572BB1E}) (Version: 15.4.5722.2 - Microsoft Corporation) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation) CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6426.52 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Dropbox (HKLM-x32\...\Dropbox) (Version: 18.4.32 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden Evernote v. 4.5.2 (HKLM-x32\...\{8CE152BA-1D16-11E1-867D-984BE15F174E}) (Version: 4.5.2.5904 - Evernote Corp.) FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden Fishdom (TM) 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation) Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden FreePDF (Remove only) (HKLM-x32\...\FreePDF_XP) (Version: - ) Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden GPL Ghostscript (HKLM\...\GPL Ghostscript 9.10) (Version: 9.10 - Artifex Software Inc.) Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) iTunes (HKLM\...\{955524E7-79EB-4CA9-BA4D-FD2DF587651B}) (Version: 12.4.3.1 - Apple Inc.) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Jewel Quest Solitaire 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (HKLM-x32\...\{CA227A9D-09BE-4BFB-9764-48FED2DA5454}) (Version: 15.4.5722.2 - Microsoft Corporation) KUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden LibreOffice 5.0.5.2 (HKLM-x32\...\{43D862C3-739D-4FF6-91C0-25612368CC81}) (Version: 5.0.5.2 - The Document Foundation) Mahjongg Artifacts (x32 Version: 2.2.0.95 - WildTangent) Hidden Media Gallery (HKLM\...\{0EB7792D-EFA2-42AB-9A22-F33D9458E974}) (Version: 2.2.3.04170 - Sony Corporation) Media Go (HKLM-x32\...\{167A1F6A-9BF2-4B24-83DB-C6D659F680EA}) (Version: 2.0.317 - Sony) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0407-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Mozilla Firefox 50.1.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla) Mozilla Thunderbird 45.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.6.0 (x86 de)) (Version: 45.6.0 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden Mystery P.I. - The London Caper (x32 Version: 2.2.0.95 - WildTangent) Hidden Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation) Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation) paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC) Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.1.01.14210 - Sony Corporation) PlayMemories Home/PMB VAIO Edition Plug-in 3D Theme Data (x32 Version: 1.0.00.16130 - Sony Corporation) Hidden PlayMemories Home/PMB VAIO Edition Plug-in Ver.2.2 Upgrade Program (x32 Version: 2.2.00.18250 - Sony Corporation) Hidden PlayStation(R)Network Downloader (HKLM-x32\...\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}) (Version: 2.07.00849 - Sony Computer Entertainment Inc.) PlayStation(R)Store (HKLM-x32\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 4.5.15.13232 - Sony Computer Entertainment Inc.) Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden PYV_x86 (x32 Version: 1.0.0 - Sony Corporation) Hidden Qualcomm Atheros Direct Connect (x32 Version: 3.1 - Qualcomm Atheros) Hidden Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{E727B31A-8B24-4C1C-934A-69634E0D2C0B}) (Version: 3.0 - Qualcomm Atheros) Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6564 - Realtek Semiconductor Corp.) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.91 - Realtek Semiconductor Corp.) RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: 1.90 - Ghostgum Software Pty Ltd) Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden Remote Play with PlayStation(R)3 (x32 Version: 1.1.0.21090 - Sony Corporation) Hidden SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1695557451-403283895-2565799833-1001\...\Spotify) (Version: 1.0.45.186.g3b5036d6 - Spotify AB) SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden Suite Specific (x32 Version: 2.0.0 - Adobe Systems, Incorporated) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.0.1.6 - Synaptics Incorporated) The Hidden Object Game Show (x32 Version: 2.2.0.97 - WildTangent) Hidden TrackID(TM) with BRAVIA (x32 Version: 1.2.0.09270 - Sony Corportaion) Hidden TriDef 3D (Sony) 2.0.5 (HKLM-x32\...\experience-sony-bundle) (Version: 2.0.5 - Dynamic Digital Depth Australia Pty Ltd) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation) V3DPx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden VAIO - Media Gallery - VAIO Personalization Manager Update (HKLM\...\{50A7190B-5DA6-4A51-B275-3D413E617BA6}) (Version: 4.2.5.07160 - Sony Corporation) VAIO - Microsoft Visual C++ 2010 SP1 Runtime 10.0.40219.325 (HKLM\...\{34EB42BE-F4D3-44C1-B28E-9740115DB72C}) (Version: 1.0.00.01300 - Sony Corporation) VAIO - PlayMemories Home Plug-in (HKLM\...\{886C0C18-F905-49B2-90BA-EFC0FEDF27C6}) (Version: 2.0.00.14200 - Sony Corporation) VAIO - PlayMemories Home Plug-in (HKLM-x32\...\InstallShield_{F9395F3D-4198-476C-8C41-63D0B5B51E35}) (Version: 2.2.00.18250 - Sony Corporation) VAIO - Remote Play mit PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.1.0.21090 - Sony Corporation) VAIO - Remote-Tastatur (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.2.0.09270 - Sony Corporation) VAIO - Remote-Tastatur mit PlayStation®3 (HKLM-x32\...\{E682702C-609C-4017-99E7-3129C163955F}) (Version: 1.2.0.09210 - Sony Corporation) VAIO - TrackID™ mit BRAVIA (HKLM-x32\...\{2F41EF61-A066-4EBF-84F8-21C1B317A780}) (Version: 1.2.0.09270 - Sony Corporation) VAIO 3D Portal (HKLM-x32\...\{C14EAE86-C526-4E00-B245-CFF86233C3D2}) (Version: 1.2.0.10131 - Sony Corporation) VAIO Care (HKLM\...\{28D70998-F9F8-4F4B-BB1D-64C11123C01B}) (Version: 8.4.5.06021 - Sony Corporation) VAIO Care Recovery (HKLM\...\{6ED1750E-F44F-4635-8F0D-B76B9262B7FB}) (Version: 1.1.1.13230 - Sony Corporation) VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 5.2.1.15070 - Sony Corporation) VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.9.0.13190 - Sony Corporation) VAIO Data Restore Tool (x32 Version: 1.9.0.13190 - Sony Corporation) Hidden VAIO Easy Connect (HKLM-x32\...\InstallShield_{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.1.2.01120 - Sony Corporation) VAIO Easy Connect (x32 Version: 1.1.2.01120 - Sony Corporation) Hidden VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.4.2.02200 - Sony Corporation) VAIO Gate (x32 Version: 2.4.1.09230 - Sony Corporation) Hidden VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.5.2.02090 - Sony Corporation) VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 1.0.0.12300 - Sony Corporation) VAIO Gesture Control (x32 Version: 1.0.0.12300 - Sony Corporation) Hidden VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 1.3.0.12280 - Sony Corporation) VAIO Improvement Validation (HKLM\...\{75C95C84-264F-4CC7-8A7E-346444E6C7C1}) (Version: 1.0.4.01190 - Sony Corporation) VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.2.09010 - Sony Corporation) VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.14.1.07010 - Sony Corporation) VAIO Transfer Support (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.7.1.06040 - Sony Corporation) VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation) VAIO*CPU-Lüfterdiagnose (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.1.0.09200 - Sony Corporation) VAIO-Handbuch (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 2.3.0.12300 - Sony Corporation) VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden VGClientX86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VHD (x32 Version: 1.0.0 - Microsoft) Hidden Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden VIx64 (Version: 1.0.0 - Sony Corporation) Hidden VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden VSNx64 (Version: 1.0.0 - Sony Corporation) Hidden VSNx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden VUx64 (Version: 1.2.0 - Sony Corporation) Hidden VUx86 (x32 Version: 1.2.0 - Sony Corporation) Hidden VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden WildTangent Games App (x32 Version: 4.0.5.36 - WildTangent) Hidden WildTangent-Spiele (HKLM-x32\...\WildTangent sony Master Uninstall) (Version: 1.0.2.5 - WildTangent) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (HKLM-x32\...\{09B7C7EB-3140-4B5E-842F-9C79A7137139}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Meshin etäyhteyksien ActiveX-komponentti (HKLM-x32\...\{4CF6F287-5121-483C-A5A2-07BDE19D8B4E}) (Version: 15.4.5722.2 - Microsoft Corporation) Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation) Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Елемент керування Windows Live Mesh ActiveX для віддалених підключень (HKLM-x32\...\{6756D5CA-3E31-4308-9BF0-79DFD1AF196E}) (Version: 15.4.5722.2 - Microsoft Corporation) Основи Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Фотоколекція Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {057FB4BF-444E-4AD9-8503-8BACF89BE246} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {070A7560-29A6-4427-91DE-E87395916707} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2011-12-27] (Sony Corporation) Task: {0C34078C-56EB-4E9B-883C-8FC32A64C30E} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2012-02-20] (Sony Corporation) Task: {10094A98-BE94-4820-972F-E6675FEF4F7C} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-07] (Sony Corporation) Task: {10FDD079-F0F2-473E-BD18-8AAFFD9DDF3B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-17] (Dropbox, Inc.) Task: {16055FBD-4C40-4EE8-BD79-5427148F7C8D} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-03-29] (Sony Corporation) Task: {18616DA0-BA9D-464E-884A-6D588D20F6C3} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-17] (Dropbox, Inc.) Task: {1B99EAC9-3149-4D44-8A43-CBFE3A5F268A} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => net [Argument = start VSNService] Task: {2EFB9BCA-EC5A-453D-BF47-4D9920584A59} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcWeekly => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation) Task: {31204728-31AC-4B69-9AAD-FC3C94A9599F} - System32\Tasks\SafeZone scheduled Autoupdate 1470507827 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software) Task: {3C19480C-F46C-4D20-97AE-30DC6204DD50} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {4B9DBF1C-8795-46DD-BEC8-DC63E55850D6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-11] (Adobe Systems Incorporated) Task: {617E1340-0C80-46D1-A76D-73014D39BF74} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {62E4908B-ABF0-49DD-BA93-BCB79737BF44} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {666EF3FA-0D5B-41B6-B057-486294C0098B} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-03-29] (Sony Corporation) Task: {66A586C2-73E0-4D62-85DC-3990037B1D57} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation) Task: {68D06080-6160-4094-BA3B-CAE99F5165D0} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {7AA238D7-FCBD-4732-A7A2-9BE25451F7CD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {80C35528-3CA3-45EE-AFD8-1058FA65C621} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation) Task: {80C4AEB8-A310-459D-9BB4-C4725B9F6973} - System32\Tasks\Sony Corporation\VAIO Care\VTSvc => C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe [2016-05-30] (Sony Corporation) Task: {86014E98-7389-4150-99F1-144091065B7F} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2016-03-24] (Sony Corporation) Task: {A2633880-0D69-40DA-89BA-088BFE7B12E1} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2016-03-31] (Sony Corporation) Task: {A36A291E-FE7D-4D9C-8807-B364386C6DB1} - System32\Tasks\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-02-24] (Sony Corporation) Task: {A8EA7BA5-70C0-4DEA-AA11-C636F3085141} - System32\Tasks\Sony Corporation\BP Checker\CheckBPStatusLogon => C:\Program Files\Sony\BP Checker\BPChecker.exe [2016-11-29] (Sony Corporation) Task: {BC0A8411-B7CA-425F-A93B-8DFC7BC7B9D9} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcDaily => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation) Task: {BF594193-B9BA-48EE-B482-DE5850A83BCE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-09] (AVAST Software) Task: {C45954A9-E47E-45A7-8021-AD7B230EC800} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {C4FEB694-65CB-4907-AA14-C964A37D043F} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {C513B15F-E1BA-44EE-9E67-A792435836A9} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2011-12-27] (Sony Corporation) Task: {D4C956D2-DCB8-4CD6-929C-4A98FA99BDAB} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {D8209147-8667-467B-A5DC-299781F158B4} - System32\Tasks\Sony Corporation\BP Checker\CheckBPStatusCreate => C:\Program Files\Sony\BP Checker\BPChecker.exe [2016-11-29] (Sony Corporation) Task: {E131FC87-A8B0-458E-8249-B00E0447AA3D} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation) Task: {E1481173-CBB0-4E75-8763-0E642C5CE23A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-08-06] (AVAST Software) Task: {E4FCAA09-7557-479F-A546-3835D3CB73FD} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {EA236041-B0D6-43FA-95D3-6A4CDAF511B2} - System32\Tasks\Sony Corporation\VAIO Care\VTUsr => C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe [2016-05-30] (Sony Corporation) Task: {F14F212A-E394-4B5C-BDAA-D0C924B1BF0C} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate Restart => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation) Task: {F1ABF0C5-CC85-4E47-B518-026379B3D252} - System32\Tasks\Sony Corporation\VAIO Improvement Validation\VAIO Improvement Validation => C:\Program Files\Sony\VAIO Improvement Validation\viv.exe [2011-01-20] (Sony Corporation) Task: {F8BC3BC8-9340-41D3-BCEC-3FA1C0DDDAE2} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-07] (Sony Corporation) Task: {FD5B1049-7EBA-4198-A6C7-BF13C8D06346} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2016-03-18] (Sony Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2016-08-06 19:32 - 2012-06-21 06:25 - 00113152 _____ () C:\Windows\System32\redmon64.dll 2016-07-05 14:23 - 2016-07-05 14:23 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-07-05 14:23 - 2016-07-05 14:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-08-06 17:51 - 2012-03-13 17:01 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe 2005-04-06 15:53 - 2005-04-06 15:53 - 03502080 _____ () c:\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe 2011-11-09 08:55 - 2011-11-09 08:55 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll 2012-02-09 22:19 - 2012-02-09 22:19 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2016-12-09 17:09 - 2016-12-09 17:09 - 00073728 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll 2016-09-09 17:39 - 2016-09-09 17:39 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-01-21 17:50 - 2017-01-21 17:50 - 04458584 _____ () C:\Program Files\AVAST Software\Avast\defs\17012100\algo.dll 2016-09-09 17:39 - 2016-09-09 17:39 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2017-01-22 16:30 - 2017-01-22 16:30 - 04376576 _____ () C:\Program Files\AVAST Software\Avast\defs\17012200\algo.dll 2005-04-06 15:52 - 2005-04-06 15:52 - 00028791 _____ () c:\Adobe\Adobe Version Cue CS2\jre\bin\hpi.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00057453 _____ () c:\Adobe\Adobe Version Cue CS2\jre\bin\verify.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00102515 _____ () c:\Adobe\Adobe Version Cue CS2\jre\bin\java.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00053364 _____ () c:\Adobe\Adobe Version Cue CS2\jre\bin\zip.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00057455 _____ () C:\Adobe\Adobe Version Cue CS2\jre\bin\net.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00032880 _____ () C:\Adobe\Adobe Version Cue CS2\jre\bin\nio.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00434255 _____ () c:\Adobe\Adobe Version Cue CS2\bin\ps-rw-vc-v8_58.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 01019904 _____ () c:\Adobe\Adobe Version Cue CS2\bin\ps-vc-v8_58.dll 2016-08-06 18:07 - 2012-03-07 17:57 - 00021128 _____ () C:\Program Files (x86)\Sony\VAIO Control Center\VESBasePS.dll 2016-08-09 10:55 - 2016-08-09 10:55 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5a8eeeddc97028a9f94d0518c22f4c2c\IsdiInterop.ni.dll 2016-08-06 17:52 - 2011-11-29 19:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2016-08-06 17:51 - 2012-03-13 17:02 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2016-09-27 18:28 - 2016-12-22 10:48 - 51777648 _____ () C:\Users\Anna\AppData\Roaming\Spotify\libcef.dll 2016-08-06 19:20 - 2016-08-06 19:20 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-01-20 20:17 - 2017-01-18 19:39 - 00801600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll 2017-01-12 14:33 - 2016-12-21 09:44 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2017-01-12 14:33 - 2016-12-21 09:44 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2016-11-11 21:40 - 2016-12-21 09:44 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2016-11-11 21:40 - 2017-01-18 19:42 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2016-11-11 21:40 - 2016-12-21 09:44 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2017-01-12 14:33 - 2016-12-21 09:45 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 01682768 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2017-01-20 20:17 - 2016-12-21 09:44 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2017-01-20 20:17 - 2016-12-21 09:45 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd 2017-01-20 20:17 - 2016-12-21 09:44 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2016-11-11 21:40 - 2016-12-21 09:46 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2016-11-11 21:40 - 2017-01-18 19:42 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00052032 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2017-01-20 20:17 - 2016-12-21 09:44 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2017-01-20 20:17 - 2016-12-21 09:46 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2016-11-11 21:40 - 2016-12-21 09:47 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2016-11-11 21:40 - 2017-01-18 19:42 - 00381760 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2016-11-11 21:40 - 2017-01-18 19:42 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2016-11-11 21:40 - 2016-12-21 09:47 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd 2017-01-12 14:33 - 2016-12-21 09:45 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2016-11-11 21:40 - 2016-12-21 09:47 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2017-01-12 14:33 - 2017-01-18 19:42 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2016-11-11 21:40 - 2016-12-21 09:45 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 01972536 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd 2017-01-12 14:33 - 2016-12-21 09:47 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2017-01-12 14:33 - 2017-01-18 19:42 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2017-01-20 20:17 - 2016-12-21 09:42 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2017-01-20 20:17 - 2017-01-18 19:42 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2017-01-20 20:17 - 2016-12-21 09:50 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll 2017-01-20 20:17 - 2016-12-21 09:50 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll 2017-01-20 20:17 - 2017-01-18 19:42 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd 2016-11-11 21:40 - 2016-12-21 09:46 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd 2016-11-11 21:40 - 2017-01-18 19:42 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd 2017-01-20 20:17 - 2017-01-18 19:42 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2016-09-27 18:28 - 2016-12-22 10:48 - 01803888 _____ () C:\Users\Anna\AppData\Roaming\Spotify\libglesv2.dll 2016-09-27 18:28 - 2016-12-22 10:47 - 00086128 _____ () C:\Users\Anna\AppData\Roaming\Spotify\libegl.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-1695557451-403283895-2565799833-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{A82F5BAD-7966-40E4-8AD7-E60BEA28F612}] => C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe FirewallRules: [{222E85FE-9A08-46CD-B5A3-2A4AC3FDEE0A}] => C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe FirewallRules: [{2EF4EACD-03A9-48AA-8955-F93753CFD362}] => C:\Program Files\Sony\VAIO Smart Network\WFDA\WiFiDirectApplication.exe FirewallRules: [{78CF12C7-22D9-47B6-A670-8FF589D0A08A}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{24F9CC8E-832E-48FA-A02E-513E42937116}] => LPort=2869 FirewallRules: [{2E3AB0F3-7B3E-4FD6-A490-0EE5A7135D96}] => LPort=1900 FirewallRules: [{8B873859-9EB5-4994-86DB-67229C5133A6}] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{66CC5BD0-7008-40B2-AC17-C867515977AC}] => C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{8F7B2646-E04D-41F6-916A-69E58F150C35}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{31613476-E4A8-49D8-8772-69F2A6FD03AB}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{0CCD190C-0ABC-46C9-A3F4-ABB5F1DEE6F1}] => C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE FirewallRules: [{5094F9F4-5C23-4A3B-8B9D-9F5541477E4B}] => C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe FirewallRules: [{9292BA24-2D8F-47CB-B386-AB0CE2AF4FFA}] => C:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe FirewallRules: [{76886804-2168-473F-9075-EE61F6B19D7C}] => C:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe FirewallRules: [{22581546-0B6C-4AAD-A925-2AB95B5D37D4}] => C:\Program Files\Sony\VAIO Care\VCAgent.exe FirewallRules: [{31ABD328-2D41-48F6-A275-D00A08FA398E}] => C:\Program Files\Sony\VAIO Care\VCAdmin.exe FirewallRules: [{8BB14E2E-73B1-407C-8C5A-A83FF380CD37}] => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe FirewallRules: [{485DF9B3-F93E-4B80-AD2D-557BDE45ACF2}] => C:\Program Files\Sony\VAIO Care\VAIOShell.exe FirewallRules: [{F0C04B91-C99A-44BC-81F7-066EE90C9905}] => C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe FirewallRules: [{98659B63-FD28-4238-B042-4ABBE1D49F1A}] => C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe FirewallRules: [{9DEB8150-7544-44D0-954C-4F57140EAF7D}] => C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe FirewallRules: [{1BE374D7-D4D1-4924-B5E8-25711F983999}] => C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{8AB818E3-1ADA-44B3-8F1E-D5E68B8419C1}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C1693ACF-6852-47DE-9FB0-B7005D68E0DC}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{32C37116-5D1C-4E8A-B768-6FDB720CDFAE}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{91BBE072-2E22-4012-A9AF-BBA4F8DDB5EE}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{C0A8F44B-9A92-41B7-BA58-9B255309F88A}] => C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{86C8388D-A1E2-4CB8-A3E8-539795ACABDD}C:\users\anna\appdata\roaming\spotify\spotify.exe] => C:\users\anna\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{580C6BEB-F452-4577-9F26-0EA15FD6E6CD}C:\users\anna\appdata\roaming\spotify\spotify.exe] => C:\users\anna\appdata\roaming\spotify\spotify.exe FirewallRules: [{FC2E974D-BB57-4E32-BA58-873C0617E142}] => C:\users\anna\appdata\roaming\spotify\spotify.exe FirewallRules: [{684E2CC4-CA7C-41A5-9AD0-92FE9481A063}] => C:\users\anna\appdata\roaming\spotify\spotify.exe FirewallRules: [{5F6C6DEE-ABF0-45C9-984C-88F89CB1A332}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\TriDef 3D\TriDef\TriDefMediaPlayer\TriDefMediaPlayer.exe] => Enabled:TriDef 3D Media Player ==================== Wiederherstellungspunkte ========================= 09-01-2017 13:36:01 Geplanter Prüfpunkt 11-01-2017 14:52:06 Windows Update 14-01-2017 18:33:27 ASU_MSI_TRAN 20-01-2017 20:12:49 Microsoft PowerPoint Viewer wird installiert 22-01-2017 03:00:12 Windows Update ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Cisco Systems Service: vpnva Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (01/22/2017 04:30:08 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist. Error: (01/22/2017 04:29:29 AM) (Source: DbxSvc) (EventID: 320) (User: ) Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden. Error: (01/21/2017 08:49:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 9079 Error: (01/21/2017 08:49:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 9079 Error: (01/21/2017 08:49:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (01/21/2017 08:49:24 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 8019 Error: (01/21/2017 08:49:24 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 8019 Error: (01/21/2017 08:49:24 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (01/21/2017 08:49:23 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 7020 Error: (01/21/2017 08:49:23 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 7020 Systemfehler: ============= Error: (01/22/2017 04:29:29 AM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Der Dienst "McAfee Personal Firewall Service" ist von folgendem Dienst abhängig: MfeFire. Dieser Dienst ist eventuell nicht installiert. Error: (01/22/2017 04:29:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: Das System kann die angegebene Datei nicht finden. Error: (01/20/2017 05:22:46 PM) (Source: DCOM) (EventID: 10016) (User: Anna-VAIO) Description: Durch die Berechtigungseinstellungen (Anwendungsspezifisch) wird der SID (S-1-5-21-1695557451-403283895-2565799833-501) für Benutzer Anna-VAIO\Gast von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} und APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden. Error: (01/20/2017 05:18:53 PM) (Source: DCOM) (EventID: 10016) (User: Anna-VAIO) Description: Durch die Berechtigungseinstellungen (Anwendungsspezifisch) wird der SID (S-1-5-21-1695557451-403283895-2565799833-501) für Benutzer Anna-VAIO\Gast von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} und APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden. Error: (01/20/2017 05:17:48 PM) (Source: DCOM) (EventID: 10016) (User: Anna-VAIO) Description: Durch die Berechtigungseinstellungen (Anwendungsspezifisch) wird der SID (S-1-5-21-1695557451-403283895-2565799833-501) für Benutzer Anna-VAIO\Gast von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} und APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden. Error: (01/20/2017 05:17:30 PM) (Source: DCOM) (EventID: 10016) (User: Anna-VAIO) Description: Durch die Berechtigungseinstellungen (Anwendungsspezifisch) wird der SID (S-1-5-21-1695557451-403283895-2565799833-501) für Benutzer Anna-VAIO\Gast von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} und APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden. Error: (01/20/2017 05:17:26 PM) (Source: DCOM) (EventID: 10016) (User: Anna-VAIO) Description: Durch die Berechtigungseinstellungen (Anwendungsspezifisch) wird der SID (S-1-5-21-1695557451-403283895-2565799833-501) für Benutzer Anna-VAIO\Gast von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} und APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden. Error: (01/20/2017 05:16:23 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Der Dienst "McAfee Personal Firewall Service" ist von folgendem Dienst abhängig: MfeFire. Dieser Dienst ist eventuell nicht installiert. Error: (01/20/2017 05:16:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: Das System kann die angegebene Datei nicht finden. Error: (01/20/2017 09:59:47 AM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Der Dienst "McAfee Personal Firewall Service" ist von folgendem Dienst abhängig: MfeFire. Dieser Dienst ist eventuell nicht installiert. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz Prozentuale Nutzung des RAM: 40% Installierter physikalischer RAM: 8162.36 MB Verfügbarer physikalischer RAM: 4818.43 MB Summe virtueller Speicher: 16322.9 MB Verfügbarer virtueller Speicher: 12546.37 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:681.57 GB) (Free:311.32 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: CC078AC4) Partition 1: (Not Active) - (Size=16.7 GB) - (Type=27) Partition 2: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=681.6 GB) - (Type=07 NTFS) ==================== Ende von Addition.txt ============================ Danke für die Hilfe. Sve |
23.01.2017, 12:14 | #2 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Avast meldet Bedrohung: HTML:Framer-inf [Trj]+++ WICHTIGER HINWEIS +++ Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache. Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung! Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben. Gelesen und verstanden? Bitte Avast deinstallieren. Das Teil können wir einfach nicht mehr guten Gewissens empfehlen. => Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog Auch andere Freewareanbieter wie Avira, AVG oder Panda springen auf diesen oder ähnlichen Zügen rauf, basteln Junkware in die Setups, arbeiten mit ASK zusammen etc; so was ist bei Sicherheitssoftware einfach inakzeptabel. Gib Bescheid wenn Avast weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ |
23.01.2017, 12:15 | #3 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Avast meldet Bedrohung: HTML:Framer-inf [Trj]+++ WICHTIGER HINWEIS +++ Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache. Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung! Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben. Gelesen und verstanden? Bitte Avast deinstallieren. Das Teil können wir einfach nicht mehr guten Gewissens empfehlen. => Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog Auch andere Freewareanbieter wie Avira, AVG oder Panda springen auf diesen oder ähnlichen Zügen rauf, basteln Junkware in die Setups, arbeiten mit ASK zusammen etc; so was ist bei Sicherheitssoftware einfach inakzeptabel. Gib Bescheid wenn Avast weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ |
23.01.2017, 12:19 | #4 |
| Avast meldet Bedrohung: HTML:Framer-inf [Trj] Danke für die Antwort! Avast ist jetzt deinstalliert. Soll ich einen Neustart durchführen? |
23.01.2017, 12:22 | #5 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Avast meldet Bedrohung: HTML:Framer-inf [Trj] selbstverständlich musst den Windows dann neu starten...
__________________ Logfiles bitte immer in CODE-Tags posten |
23.01.2017, 12:29 | #6 |
| Avast meldet Bedrohung: HTML:Framer-inf [Trj] Gut, ist erledigt.. |
23.01.2017, 12:59 | #7 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Avast meldet Bedrohung: HTML:Framer-inf [Trj] 1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop
Lesestoff: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
23.01.2017, 13:28 | #8 |
| Avast meldet Bedrohung: HTML:Framer-inf [Trj] Malwarebytes Anti-Rootkit (MBAR) hat beim ersten Durchlauf nichts gefunden: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001 www.malwarebytes.org Database version: main: v2017.01.23.05 rootkit: v2016.11.20.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.18537 Anna :: ANNA-VAIO [administrator] 23.01.2017 13:04:00 mbar-log-2017-01-23 (13-04-00).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken Scan options disabled: Objects scanned: 359806 Time elapsed: 20 minute(s), 3 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) Code:
ATTFilter 13:26:20.0041 0x19b4 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01 13:26:23.0776 0x19b4 ============================================================ 13:26:23.0776 0x19b4 Current date / time: 2017/01/23 13:26:23.0776 13:26:23.0776 0x19b4 SystemInfo: 13:26:23.0776 0x19b4 13:26:23.0776 0x19b4 OS Version: 6.1.7601 ServicePack: 1.0 13:26:23.0776 0x19b4 Product type: Workstation 13:26:23.0776 0x19b4 ComputerName: ANNA-VAIO 13:26:23.0776 0x19b4 UserName: Anna 13:26:23.0776 0x19b4 Windows directory: C:\Windows 13:26:23.0776 0x19b4 System windows directory: C:\Windows 13:26:23.0776 0x19b4 Running under WOW64 13:26:23.0776 0x19b4 Processor architecture: Intel x64 13:26:23.0776 0x19b4 Number of processors: 4 13:26:23.0776 0x19b4 Page size: 0x1000 13:26:23.0776 0x19b4 Boot type: Normal boot 13:26:23.0776 0x19b4 CodeIntegrityOptions = 0x00000001 13:26:23.0776 0x19b4 ============================================================ 13:26:23.0897 0x19b4 KLMD registered as C:\Windows\system32\drivers\57167731.sys 13:26:23.0897 0x19b4 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23572, osProperties = 0x1 13:26:24.0292 0x19b4 System UUID: {A71D90AA-29B3-819E-07FB-F1E90803066A} 13:26:24.0589 0x19b4 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 13:26:24.0592 0x19b4 ============================================================ 13:26:24.0592 0x19b4 \Device\Harddisk0\DR0: 13:26:24.0593 0x19b4 MBR partitions: 13:26:24.0593 0x19b4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2172800, BlocksNum 0xAF000 13:26:24.0593 0x19b4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2221800, BlocksNum 0x55324000 13:26:24.0593 0x19b4 ============================================================ 13:26:24.0621 0x19b4 C: <-> \Device\Harddisk0\DR0\Partition2 13:26:24.0621 0x19b4 ============================================================ 13:26:24.0621 0x19b4 Initialize success 13:26:24.0621 0x19b4 ============================================================ 13:27:21.0216 0x1c7c ============================================================ 13:27:21.0216 0x1c7c Scan started 13:27:21.0216 0x1c7c Mode: Manual; SigCheck; TDLFS; 13:27:21.0216 0x1c7c ============================================================ 13:27:21.0216 0x1c7c KSN ping started 13:27:21.0382 0x1c7c KSN ping finished: true 13:27:22.0146 0x1c7c ================ Scan system memory ======================== 13:27:22.0146 0x1c7c System memory - ok 13:27:22.0146 0x1c7c ================ Scan services ============================= 13:27:22.0368 0x1c7c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 13:27:22.0438 0x1c7c 1394ohci - ok 13:27:22.0580 0x1c7c [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe 13:27:22.0591 0x1c7c ACDaemon - ok 13:27:22.0617 0x1c7c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 13:27:22.0632 0x1c7c ACPI - ok 13:27:22.0696 0x1c7c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 13:27:22.0718 0x1c7c AcpiPmi - ok 13:27:22.0809 0x1c7c [ CE40CA1C7994B92A2970E35A62F3E8F0, 15CE8681866E5A150BA6CCED57D442DC6E868110DAD4C8786B8742F1EE7041D6 ] acsock C:\Windows\system32\DRIVERS\acsock64.sys 13:27:22.0824 0x1c7c acsock - ok 13:27:22.0884 0x1c7c [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe 13:27:22.0904 0x1c7c Adobe LM Service - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:23.0208 0x1c7c Detect skipped due to KSN trusted 13:27:23.0208 0x1c7c Adobe LM Service - ok 13:27:23.0276 0x1c7c [ 41D15EAD554396BF35B7C5246AD47A28, 456835B33E95D083CD0076F06B591D63FB969025940A5CFD87CAB37C658B6855 ] Adobe Version Cue CS2 c:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe 13:27:23.0295 0x1c7c Adobe Version Cue CS2 - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:23.0390 0x1c7c Detect skipped due to KSN trusted 13:27:23.0390 0x1c7c Adobe Version Cue CS2 - ok 13:27:23.0470 0x1c7c [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 13:27:23.0478 0x1c7c AdobeARMservice - ok 13:27:23.0594 0x1c7c [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 13:27:23.0606 0x1c7c AdobeFlashPlayerUpdateSvc - ok 13:27:23.0651 0x1c7c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 13:27:23.0669 0x1c7c adp94xx - ok 13:27:23.0700 0x1c7c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys 13:27:23.0716 0x1c7c adpahci - ok 13:27:23.0736 0x1c7c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 13:27:23.0747 0x1c7c adpu320 - ok 13:27:23.0773 0x1c7c [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 13:27:23.0798 0x1c7c AeLookupSvc - ok 13:27:23.0835 0x1c7c [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys 13:27:23.0868 0x1c7c AFD - ok 13:27:23.0895 0x1c7c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 13:27:23.0903 0x1c7c agp440 - ok 13:27:23.0927 0x1c7c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 13:27:23.0946 0x1c7c ALG - ok 13:27:23.0995 0x1c7c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 13:27:24.0002 0x1c7c aliide - ok 13:27:24.0053 0x1c7c [ 3BCC907366522A9E051B517678C2D4F9, 0E72C90AE1795F44C6EAE92944A474148332BD3CEF946E6E34F69101334C33D7 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 13:27:24.0076 0x1c7c AMD External Events Utility - ok 13:27:24.0080 0x1c7c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 13:27:24.0087 0x1c7c amdide - ok 13:27:24.0122 0x1c7c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 13:27:24.0146 0x1c7c AmdK8 - ok 13:27:24.0455 0x1c7c [ 616B6715B90445402138389E6C024203, 2C47193F68D39A8C689CBCB0B882EDC06A4DF88B9310CD677725C6CB3F8B6361 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys 13:27:24.0805 0x1c7c amdkmdag - ok 13:27:24.0855 0x1c7c [ EBFD5E4723D51B69C9BD907168C6F5C1, 5AB4FDD001E7A7A3522FE669DD632FB67B520AF73F8ADD0790D9C64B5CCB361B ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys 13:27:24.0882 0x1c7c amdkmdap - ok 13:27:24.0910 0x1c7c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 13:27:24.0929 0x1c7c AmdPPM - ok 13:27:24.0960 0x1c7c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys 13:27:24.0969 0x1c7c amdsata - ok 13:27:24.0986 0x1c7c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 13:27:24.0998 0x1c7c amdsbs - ok 13:27:25.0015 0x1c7c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys 13:27:25.0022 0x1c7c amdxata - ok 13:27:25.0067 0x1c7c [ FCE5C79717A487BDC71F3DEC78A684CA, F5520F112A4EBDD10444AA5E9FDB9125219FCF768FEB95AB608BC84D60136816 ] AppID C:\Windows\system32\drivers\appid.sys 13:27:25.0093 0x1c7c AppID - ok 13:27:25.0132 0x1c7c [ 8921E1D8AE5171691F186A7C5B98B630, 4A37313BB94D4B49D0294C9439AD0793DE328F9F4DA1C47E34E6ACEA46AF6E14 ] AppIDSvc C:\Windows\System32\appidsvc.dll 13:27:25.0155 0x1c7c AppIDSvc - ok 13:27:25.0172 0x1c7c [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo C:\Windows\System32\appinfo.dll 13:27:25.0193 0x1c7c Appinfo - ok 13:27:25.0274 0x1c7c [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 13:27:25.0282 0x1c7c Apple Mobile Device Service - ok 13:27:25.0310 0x1c7c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys 13:27:25.0319 0x1c7c arc - ok 13:27:25.0330 0x1c7c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys 13:27:25.0339 0x1c7c arcsas - ok 13:27:25.0370 0x1c7c [ C130BC4A51B1382B2BE8E44579EC4C0A, CC1FD33ED7CAD87A504D8678F8482CAECACD18C727BB97FFB86F39255563EEF2 ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys 13:27:25.0377 0x1c7c ArcSoftKsUFilter - ok 13:27:25.0503 0x1c7c [ EE424A5CE56E3923D59BB7DE2E15036D, 8B8196870EFE74D43EDA72674021A46846D370E97A6A058134D84A721AECD091 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 13:27:25.0512 0x1c7c aspnet_state - ok 13:27:25.0533 0x1c7c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 13:27:25.0568 0x1c7c AsyncMac - ok 13:27:25.0628 0x1c7c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 13:27:25.0635 0x1c7c atapi - ok 13:27:25.0693 0x1c7c [ 78B183A794A08978EA0A8D017054352B, 5C9BEF59619F235BB1F81A9BD88A39D7C7D594443F198B68B5373F20001937C3 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys 13:27:25.0711 0x1c7c AthBTPort - ok 13:27:25.0794 0x1c7c [ 42EF52D591A53CBE43D82C6C96F50A59, DABABDD7AA6C8D31FA5432EBEC41D4BC79D51A4EB93F7B2CB5D130915B367B3F ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe 13:27:25.0816 0x1c7c AtherosSvc - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:25.0995 0x1c7c Detect skipped due to KSN trusted 13:27:25.0995 0x1c7c AtherosSvc - ok 13:27:26.0086 0x1c7c [ 237EE0B7A65D55E08EB7530F77423480, FE54046F56B0F4BA8BD53B3ECAB570EBE0E2128D0DB3B4EFAE9E4221565C86F6 ] athr C:\Windows\system32\DRIVERS\athrx.sys 13:27:26.0183 0x1c7c athr - ok 13:27:26.0217 0x1c7c [ 2B3B05C0A7768BF033217EB8F33F9C35, F7B13158440CAE46EC93F29BA47A960194A5A2AD71B5BF628AF4661CEE096402 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys 13:27:26.0225 0x1c7c AtiHDAudioService - ok 13:27:26.0280 0x1c7c [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 13:27:26.0321 0x1c7c AudioEndpointBuilder - ok 13:27:26.0339 0x1c7c [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll 13:27:26.0360 0x1c7c AudioSrv - ok 13:27:26.0425 0x1c7c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 13:27:26.0440 0x1c7c AxInstSV - ok 13:27:26.0477 0x1c7c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 13:27:26.0510 0x1c7c b06bdrv - ok 13:27:26.0535 0x1c7c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 13:27:26.0564 0x1c7c b57nd60a - ok 13:27:26.0653 0x1c7c [ 01A24B415926BB5F772DBE12459D97DE, 1FA2EEF283025D788051E6145DAEF26CB481F87F641156FC4D89B8DEE4B244A5 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE 13:27:26.0663 0x1c7c BBSvc - ok 13:27:26.0718 0x1c7c [ 785DE7ABDA13309D6065305542829E76, 78F49A5349B66042836615EF99B4EB70FA708369D315D105513C04F33070D297 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE 13:27:26.0729 0x1c7c BBUpdate - ok 13:27:26.0759 0x1c7c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 13:27:26.0778 0x1c7c BDESVC - ok 13:27:26.0797 0x1c7c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 13:27:26.0831 0x1c7c Beep - ok 13:27:26.0874 0x1c7c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll 13:27:26.0914 0x1c7c BFE - ok 13:27:26.0962 0x1c7c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll 13:27:27.0024 0x1c7c BITS - ok 13:27:27.0059 0x1c7c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 13:27:27.0079 0x1c7c blbdrive - ok 13:27:27.0124 0x1c7c [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 13:27:27.0139 0x1c7c Bonjour Service - ok 13:27:27.0181 0x1c7c [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys 13:27:27.0205 0x1c7c bowser - ok 13:27:27.0225 0x1c7c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 13:27:27.0236 0x1c7c BrFiltLo - ok 13:27:27.0247 0x1c7c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 13:27:27.0271 0x1c7c BrFiltUp - ok 13:27:27.0307 0x1c7c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 13:27:27.0325 0x1c7c Browser - ok 13:27:27.0348 0x1c7c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 13:27:27.0370 0x1c7c Brserid - ok 13:27:27.0381 0x1c7c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 13:27:27.0393 0x1c7c BrSerWdm - ok 13:27:27.0411 0x1c7c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 13:27:27.0422 0x1c7c BrUsbMdm - ok 13:27:27.0435 0x1c7c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 13:27:27.0449 0x1c7c BrUsbSer - ok 13:27:27.0506 0x1c7c [ EDEBD26DF631A78483707C3F7429027F, C0D78A3C7CF93A58B68978D919B496DEEAEA307534845393ACEB8BAEAC07398A ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys 13:27:27.0533 0x1c7c BTATH_A2DP - ok 13:27:27.0579 0x1c7c [ 2F22177BFEA75326DC0C535D71985A4E, B376062624EFE2DA677412FEA699178ED77CB0F395F5A97929A30A0CE84699C0 ] btath_avdt C:\Windows\system32\drivers\btath_avdt.sys 13:27:27.0590 0x1c7c btath_avdt - ok 13:27:27.0611 0x1c7c [ D438A33D568C76C24E8D7394981F42DC, E5884C20E55B8EDC8E19C55DDFBE4A8FDFBE2327ACE94BFC2BFD3BCEE6EBC2AD ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys 13:27:27.0632 0x1c7c BTATH_BUS - ok 13:27:27.0647 0x1c7c [ 6EFA8C93009E0BE0886C2422C7D20BC5, 55717C459893B533C9F21FAA997004001646F43629F4DA9D8464408E20575F02 ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys 13:27:27.0672 0x1c7c BTATH_HCRP - ok 13:27:27.0712 0x1c7c [ 168506D0F0C8DF588F8A7E25C58A2DE6, EF744D95797F66D8D7F79B3256AEB3255D161A61BCA9D39CDB3F3699079AC61B ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys 13:27:27.0737 0x1c7c BTATH_LWFLT - ok 13:27:27.0786 0x1c7c [ 7C8FB1D73BD279DD914CCA6ED0F4F62B, 936492E05E760A65DF507651E18A7BB331FDEE9FBEF7ABC556389308F53726F0 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys 13:27:27.0814 0x1c7c BTATH_RCP - ok 13:27:27.0844 0x1c7c [ A7D693ACD823066C92A6955B3FAD8D71, CF7DC7DBADBD76620798E56884797140A049977A03679182A2BBBD6E8818534F ] BTATH_VDP C:\Windows\system32\drivers\btath_vdp.sys 13:27:27.0863 0x1c7c BTATH_VDP - ok 13:27:27.0905 0x1c7c [ 58D67C18894F96E89C076150BB76AD40, 8F7281092B8487F53683A14AADD4340BE825F6ADD1C4A63F269EF92538FC41FE ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys 13:27:27.0939 0x1c7c BtFilter - ok 13:27:27.0959 0x1c7c [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys 13:27:27.0968 0x1c7c BthEnum - ok 13:27:27.0979 0x1c7c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 13:27:27.0998 0x1c7c BTHMODEM - ok 13:27:28.0016 0x1c7c [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 13:27:28.0035 0x1c7c BthPan - ok 13:27:28.0059 0x1c7c [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys 13:27:28.0087 0x1c7c BTHPORT - ok 13:27:28.0114 0x1c7c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 13:27:28.0158 0x1c7c bthserv - ok 13:27:28.0171 0x1c7c [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys 13:27:28.0191 0x1c7c BTHUSB - ok 13:27:28.0208 0x1c7c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 13:27:28.0245 0x1c7c cdfs - ok 13:27:28.0279 0x1c7c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 13:27:28.0301 0x1c7c cdrom - ok 13:27:28.0329 0x1c7c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 13:27:28.0354 0x1c7c CertPropSvc - ok 13:27:28.0375 0x1c7c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys 13:27:28.0401 0x1c7c circlass - ok 13:27:28.0456 0x1c7c [ 3D67C27DD17B254D7915FA16A5AE3573, 5B3A6C6A7F940C06362775DAF13CEADA37C7AA84A509458A57C23B4369970A90 ] CLFS C:\Windows\system32\CLFS.sys 13:27:28.0470 0x1c7c CLFS - ok 13:27:28.0562 0x1c7c [ 5FD7CAB20C7E5B745F5F06EB1D8C3A58, 213FF7982F8F378D9FD89A76974D7F8E41208302CFB2EAF2003E3CE318DC9D54 ] CLKMSVC10_9EC60124 C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe 13:27:28.0575 0x1c7c CLKMSVC10_9EC60124 - ok 13:27:28.0643 0x1c7c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 13:27:28.0652 0x1c7c clr_optimization_v2.0.50727_32 - ok 13:27:28.0713 0x1c7c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 13:27:28.0722 0x1c7c clr_optimization_v2.0.50727_64 - ok 13:27:28.0821 0x1c7c [ 5BAF4F1296D4D91FC28560CDB4C37C4B, ACA4BC57ED1F8432F18F0F215EC7FF956BAEF6E02760779E264E4008A979E9DD ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 13:27:28.0831 0x1c7c clr_optimization_v4.0.30319_32 - ok 13:27:28.0874 0x1c7c [ 569B54004A7E85A74FD92841DE6058E2, 58949313D0F6B1C06359B2F3C68E29940B1655A17E93FFC3718F6D2EAE1633E4 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 13:27:28.0884 0x1c7c clr_optimization_v4.0.30319_64 - ok 13:27:28.0926 0x1c7c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 13:27:28.0941 0x1c7c CmBatt - ok 13:27:28.0949 0x1c7c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 13:27:28.0956 0x1c7c cmdide - ok 13:27:29.0012 0x1c7c [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys 13:27:29.0035 0x1c7c CNG - ok 13:27:29.0052 0x1c7c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 13:27:29.0060 0x1c7c Compbatt - ok 13:27:29.0076 0x1c7c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 13:27:29.0099 0x1c7c CompositeBus - ok 13:27:29.0116 0x1c7c COMSysApp - ok 13:27:29.0130 0x1c7c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 13:27:29.0138 0x1c7c crcdisk - ok 13:27:29.0188 0x1c7c [ 2C6632CECFDBBE793FDA8AF9CA55A9CC, 335188515F798483660E529204A13012E4D21B0ECA489224A11C26F91A5B3CCE ] CryptSvc C:\Windows\system32\cryptsvc.dll 13:27:29.0217 0x1c7c CryptSvc - ok 13:27:29.0342 0x1c7c [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE 13:27:29.0365 0x1c7c cvhsvc - ok 13:27:29.0449 0x1c7c [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe 13:27:29.0458 0x1c7c dbupdate - ok 13:27:29.0469 0x1c7c [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe 13:27:29.0477 0x1c7c dbupdatem - ok 13:27:29.0480 0x1c7c dbx - ok 13:27:29.0535 0x1c7c [ 2C5A991F0320D95BAC80D0C31F43A79E, CC7887132AF15C77676A3186429FE0071DCC8DC9C6252314D99C02E54867BE10 ] DbxSvc C:\Windows\system32\DbxSvc.exe 13:27:29.0543 0x1c7c DbxSvc - ok 13:27:29.0655 0x1c7c [ 461A0688205D088D2A2EBEEDEE81622E, 3CE54EFD190F666937ADF7088304FB9D41FAA4FF24EE59D067085441257C46D9 ] DCDhcpService C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe 13:27:29.0663 0x1c7c DCDhcpService - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:29.0851 0x1c7c Detect skipped due to KSN trusted 13:27:29.0851 0x1c7c DCDhcpService - ok 13:27:29.0913 0x1c7c [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll 13:27:29.0931 0x1c7c DcomLaunch - ok 13:27:29.0968 0x1c7c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 13:27:30.0000 0x1c7c defragsvc - ok 13:27:30.0050 0x1c7c [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys 13:27:30.0073 0x1c7c DfsC - ok 13:27:30.0101 0x1c7c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll 13:27:30.0116 0x1c7c Dhcp - ok 13:27:30.0183 0x1c7c [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll 13:27:30.0241 0x1c7c DiagTrack - ok 13:27:30.0269 0x1c7c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 13:27:30.0309 0x1c7c discache - ok 13:27:30.0375 0x1c7c [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys 13:27:30.0384 0x1c7c Disk - ok 13:27:30.0415 0x1c7c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 13:27:30.0437 0x1c7c Dnscache - ok 13:27:30.0464 0x1c7c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll 13:27:30.0510 0x1c7c dot3svc - ok 13:27:30.0539 0x1c7c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 13:27:30.0568 0x1c7c DPS - ok 13:27:30.0591 0x1c7c [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 13:27:30.0599 0x1c7c drmkaud - ok 13:27:30.0651 0x1c7c [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 13:27:30.0695 0x1c7c DXGKrnl - ok 13:27:30.0735 0x1c7c [ 50AD8FC1DC800FF36087994C8F7FDFF2, E3DA8DCE76599E0E1F0D80AA1483D6BECFE0F7242147D986A6AF3A4362FC2C80 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys 13:27:30.0759 0x1c7c e1yexpress - ok 13:27:30.0802 0x1c7c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 13:27:30.0837 0x1c7c EapHost - ok 13:27:30.0968 0x1c7c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys 13:27:31.0098 0x1c7c ebdrv - ok 13:27:31.0139 0x1c7c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] EFS C:\Windows\System32\lsass.exe 13:27:31.0155 0x1c7c EFS - ok 13:27:31.0226 0x1c7c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 13:27:31.0282 0x1c7c ehRecvr - ok 13:27:31.0296 0x1c7c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 13:27:31.0322 0x1c7c ehSched - ok 13:27:31.0365 0x1c7c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys 13:27:31.0391 0x1c7c elxstor - ok 13:27:31.0401 0x1c7c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 13:27:31.0420 0x1c7c ErrDev - ok 13:27:31.0472 0x1c7c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 13:27:31.0507 0x1c7c EventSystem - ok 13:27:31.0533 0x1c7c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 13:27:31.0569 0x1c7c exfat - ok 13:27:31.0587 0x1c7c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 13:27:31.0615 0x1c7c fastfat - ok 13:27:31.0659 0x1c7c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe 13:27:31.0691 0x1c7c Fax - ok 13:27:31.0713 0x1c7c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys 13:27:31.0726 0x1c7c fdc - ok 13:27:31.0754 0x1c7c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 13:27:31.0787 0x1c7c fdPHost - ok 13:27:31.0804 0x1c7c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 13:27:31.0847 0x1c7c FDResPub - ok 13:27:31.0877 0x1c7c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 13:27:31.0886 0x1c7c FileInfo - ok 13:27:31.0903 0x1c7c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 13:27:31.0941 0x1c7c Filetrace - ok 13:27:31.0971 0x1c7c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 13:27:31.0989 0x1c7c flpydisk - ok 13:27:32.0013 0x1c7c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 13:27:32.0028 0x1c7c FltMgr - ok 13:27:32.0105 0x1c7c [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache C:\Windows\system32\FntCache.dll 13:27:32.0158 0x1c7c FontCache - ok 13:27:32.0203 0x1c7c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 13:27:32.0209 0x1c7c FontCache3.0.0.0 - ok 13:27:32.0234 0x1c7c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 13:27:32.0242 0x1c7c FsDepends - ok 13:27:32.0294 0x1c7c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 13:27:32.0301 0x1c7c Fs_Rec - ok 13:27:32.0340 0x1c7c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 13:27:32.0353 0x1c7c fvevol - ok 13:27:32.0381 0x1c7c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 13:27:32.0390 0x1c7c gagp30kx - ok 13:27:32.0447 0x1c7c [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe 13:27:32.0457 0x1c7c GamesAppService - ok 13:27:32.0505 0x1c7c [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll 13:27:32.0564 0x1c7c gpsvc - ok 13:27:32.0581 0x1c7c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 13:27:32.0600 0x1c7c hcw85cir - ok 13:27:32.0636 0x1c7c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 13:27:32.0656 0x1c7c HdAudAddService - ok 13:27:32.0694 0x1c7c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 13:27:32.0717 0x1c7c HDAudBus - ok 13:27:32.0730 0x1c7c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 13:27:32.0746 0x1c7c HidBatt - ok 13:27:32.0762 0x1c7c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys 13:27:32.0786 0x1c7c HidBth - ok 13:27:32.0805 0x1c7c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys 13:27:32.0823 0x1c7c HidIr - ok 13:27:32.0851 0x1c7c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll 13:27:32.0879 0x1c7c hidserv - ok 13:27:32.0920 0x1c7c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys 13:27:32.0940 0x1c7c HidUsb - ok 13:27:32.0976 0x1c7c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 13:27:33.0019 0x1c7c hkmsvc - ok 13:27:33.0039 0x1c7c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 13:27:33.0068 0x1c7c HomeGroupListener - ok 13:27:33.0096 0x1c7c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 13:27:33.0109 0x1c7c HomeGroupProvider - ok 13:27:33.0145 0x1c7c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 13:27:33.0154 0x1c7c HpSAMD - ok 13:27:33.0201 0x1c7c [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys 13:27:33.0246 0x1c7c HTTP - ok 13:27:33.0264 0x1c7c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 13:27:33.0271 0x1c7c hwpolicy - ok 13:27:33.0290 0x1c7c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 13:27:33.0300 0x1c7c i8042prt - ok 13:27:33.0334 0x1c7c [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor C:\Windows\system32\drivers\iaStor.sys 13:27:33.0350 0x1c7c iaStor - ok 13:27:33.0449 0x1c7c [ 7D4B9A48430ED57ACA6373B71D5904CA, 6ED72DAA7A4951142F036364E8F237E74246EF3E9EA089448DEF15380DAB0DB3 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 13:27:33.0454 0x1c7c IAStorDataMgrSvc - ok 13:27:33.0489 0x1c7c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 13:27:33.0505 0x1c7c iaStorV - ok 13:27:33.0643 0x1c7c [ 3CC7B3BB1A9EA201A040883EDFAA67A0, F543A779BA8CBFD5E0B939844B9CB47A2C05A400C693635F520438C18FFDFAF1 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe 13:27:33.0695 0x1c7c IconMan_R - ok 13:27:33.0762 0x1c7c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 13:27:33.0806 0x1c7c idsvc - ok 13:27:33.0820 0x1c7c IEEtwCollectorService - ok 13:27:33.0855 0x1c7c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys 13:27:33.0863 0x1c7c iirsp - ok 13:27:33.0923 0x1c7c [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll 13:27:33.0980 0x1c7c IKEEXT - ok 13:27:34.0155 0x1c7c [ 602788BF364D43E5878AA1B4F85C232B, 589B983C708B6B8A32760D00F21CB2C3331C3E439ECF8D2464FF77C1D9760D72 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 13:27:34.0311 0x1c7c IntcAzAudAddService - ok 13:27:34.0366 0x1c7c [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel(R) Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe 13:27:34.0383 0x1c7c Intel(R) Capability Licensing Service Interface - ok 13:27:34.0425 0x1c7c [ 9571D8BDB56EBC52280E8020574508E6, 0BF66B718E8261D3964CE0B24785F265DD31D4002CDA6F8AE24DDB4D66BF9DD0 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe 13:27:34.0433 0x1c7c Intel(R) ME Service - ok 13:27:34.0472 0x1c7c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 13:27:34.0479 0x1c7c intelide - ok 13:27:34.0515 0x1c7c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 13:27:34.0538 0x1c7c intelppm - ok 13:27:34.0572 0x1c7c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 13:27:34.0606 0x1c7c IPBusEnum - ok 13:27:34.0624 0x1c7c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 13:27:34.0661 0x1c7c IpFilterDriver - ok 13:27:34.0703 0x1c7c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 13:27:34.0725 0x1c7c iphlpsvc - ok 13:27:34.0737 0x1c7c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 13:27:34.0747 0x1c7c IPMIDRV - ok 13:27:34.0757 0x1c7c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 13:27:34.0791 0x1c7c IPNAT - ok 13:27:34.0826 0x1c7c [ EECB45F889E99174DA56FBDF37962D25, 12B407C45C9D0396FF3B5B118A863CBDEE0867034AE365F4CF5A8F66A4DB2003 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 13:27:34.0845 0x1c7c iPod Service - ok 13:27:34.0866 0x1c7c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 13:27:34.0879 0x1c7c IRENUM - ok 13:27:34.0896 0x1c7c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 13:27:34.0903 0x1c7c isapnp - ok 13:27:34.0933 0x1c7c [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 13:27:34.0946 0x1c7c iScsiPrt - ok 13:27:34.0968 0x1c7c [ B2381712638B0B714D0EEAB9A1F7C640, 113BCA8868057156EFDC7C079171308C1EBA4F979C85EB1265F42F95A499B086 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys 13:27:34.0974 0x1c7c iusb3hcs - ok 13:27:35.0020 0x1c7c [ FD2C6457232E95C014DAD21DEBC64867, 4CC4F488A2555761208D8401265788281B6EC76A8F16C8E115778E571450B90B ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys 13:27:35.0034 0x1c7c iusb3hub - ok 13:27:35.0068 0x1c7c [ F6A2B5D030BE7EDF8ADC12C9A40825A8, 03EFAFD6B7801D83D7689435DED8DC321D153AAC4FD69D46ED8C9D7E7F56B44A ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys 13:27:35.0109 0x1c7c iusb3xhc - ok 13:27:35.0146 0x1c7c [ DBD76BC1D498FE368F2C8CB76C3E00A4, CDFB082B57807CE89509A16D1C8A5BAEEC026EDD7068F5E359AA50557D2525DC ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe 13:27:35.0155 0x1c7c jhi_service - ok 13:27:35.0173 0x1c7c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 13:27:35.0181 0x1c7c kbdclass - ok 13:27:35.0198 0x1c7c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 13:27:35.0216 0x1c7c kbdhid - ok 13:27:35.0227 0x1c7c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] KeyIso C:\Windows\system32\lsass.exe 13:27:35.0235 0x1c7c KeyIso - ok 13:27:35.0274 0x1c7c [ 6F5F0C6160EF237F0243C1E416EEBA98, 8BA8AA0D71350A74E294A731226B1638C6059013D645ABDE7188F7733E320FBD ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 13:27:35.0283 0x1c7c KSecDD - ok 13:27:35.0298 0x1c7c [ 05529E53B286FD60E7EF04EF138CABFD, 6C045750DCD3EE76F748582513AD4FA99C0E8E56B616725CD48DCA1068FF8923 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 13:27:35.0308 0x1c7c KSecPkg - ok 13:27:35.0316 0x1c7c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 13:27:35.0341 0x1c7c ksthunk - ok 13:27:35.0372 0x1c7c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 13:27:35.0420 0x1c7c KtmRm - ok 13:27:35.0484 0x1c7c [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll 13:27:35.0523 0x1c7c LanmanServer - ok 13:27:35.0553 0x1c7c [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 13:27:35.0589 0x1c7c LanmanWorkstation - ok 13:27:35.0610 0x1c7c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 13:27:35.0652 0x1c7c lltdio - ok 13:27:35.0682 0x1c7c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 13:27:35.0740 0x1c7c lltdsvc - ok 13:27:35.0749 0x1c7c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 13:27:35.0791 0x1c7c lmhosts - ok 13:27:35.0823 0x1c7c [ 86E4CC39C953D11EF57CF54C4DC78238, 076973CA22E8BA94877241EC39D97612C32F3E744E026FA0E518C4DDE8277A55 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 13:27:35.0833 0x1c7c LMS - ok 13:27:35.0867 0x1c7c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 13:27:35.0877 0x1c7c LSI_FC - ok 13:27:35.0891 0x1c7c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 13:27:35.0901 0x1c7c LSI_SAS - ok 13:27:35.0917 0x1c7c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 13:27:35.0925 0x1c7c LSI_SAS2 - ok 13:27:35.0943 0x1c7c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 13:27:35.0953 0x1c7c LSI_SCSI - ok 13:27:35.0974 0x1c7c [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 13:27:36.0015 0x1c7c luafv - ok 13:27:36.0041 0x1c7c McAfee SiteAdvisor Service - ok 13:27:36.0070 0x1c7c McMPFSvc - ok 13:27:36.0097 0x1c7c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 13:27:36.0109 0x1c7c Mcx2Svc - ok 13:27:36.0122 0x1c7c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys 13:27:36.0130 0x1c7c megasas - ok 13:27:36.0163 0x1c7c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 13:27:36.0177 0x1c7c MegaSR - ok 13:27:36.0201 0x1c7c [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 13:27:36.0208 0x1c7c MEIx64 - ok 13:27:36.0227 0x1c7c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 13:27:36.0264 0x1c7c MMCSS - ok 13:27:36.0275 0x1c7c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys 13:27:36.0305 0x1c7c Modem - ok 13:27:36.0319 0x1c7c [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 13:27:36.0341 0x1c7c monitor - ok 13:27:36.0361 0x1c7c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 13:27:36.0369 0x1c7c mouclass - ok 13:27:36.0390 0x1c7c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 13:27:36.0409 0x1c7c mouhid - ok 13:27:36.0457 0x1c7c [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 13:27:36.0465 0x1c7c mountmgr - ok 13:27:36.0529 0x1c7c [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 13:27:36.0539 0x1c7c MozillaMaintenance - ok 13:27:36.0561 0x1c7c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 13:27:36.0572 0x1c7c mpio - ok 13:27:36.0586 0x1c7c [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 13:27:36.0612 0x1c7c mpsdrv - ok 13:27:36.0654 0x1c7c [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 13:27:36.0714 0x1c7c MpsSvc - ok 13:27:36.0755 0x1c7c [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 13:27:36.0775 0x1c7c MRxDAV - ok 13:27:36.0815 0x1c7c [ 632E8A00090E4F85F304E152C92C7F2C, A3098941251A8327C95E6B1122384D54FB0ED705A9215577D968EA5B5FD88C87 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 13:27:36.0844 0x1c7c mrxsmb - ok 13:27:36.0892 0x1c7c [ 0D9C05484F2F4BD9D33A615D5DBE67EA, 1E164B631B1CD85DD5B205284CB547B189609946490AAABD22741743BFB413DF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 13:27:36.0907 0x1c7c mrxsmb10 - ok 13:27:36.0953 0x1c7c [ 6123E6FECC1C164022868FB1982271BE, 417E6C7AFF8B014B31AFCC202B0DCEECBDBB73205DF8C3EFC7E313664E284178 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 13:27:36.0977 0x1c7c mrxsmb20 - ok 13:27:37.0017 0x1c7c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 13:27:37.0025 0x1c7c msahci - ok 13:27:37.0062 0x1c7c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 13:27:37.0073 0x1c7c msdsm - ok 13:27:37.0088 0x1c7c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 13:27:37.0103 0x1c7c MSDTC - ok 13:27:37.0136 0x1c7c [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 13:27:37.0162 0x1c7c Msfs - ok 13:27:37.0177 0x1c7c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 13:27:37.0202 0x1c7c mshidkmdf - ok 13:27:37.0212 0x1c7c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 13:27:37.0220 0x1c7c msisadrv - ok 13:27:37.0248 0x1c7c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 13:27:37.0284 0x1c7c MSiSCSI - ok 13:27:37.0286 0x1c7c msiserver - ok 13:27:37.0308 0x1c7c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 13:27:37.0333 0x1c7c MSKSSRV - ok 13:27:37.0342 0x1c7c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 13:27:37.0380 0x1c7c MSPCLOCK - ok 13:27:37.0382 0x1c7c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 13:27:37.0421 0x1c7c MSPQM - ok 13:27:37.0447 0x1c7c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 13:27:37.0460 0x1c7c MsRPC - ok 13:27:37.0473 0x1c7c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 13:27:37.0481 0x1c7c mssmbios - ok 13:27:37.0484 0x1c7c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 13:27:37.0515 0x1c7c MSTEE - ok 13:27:37.0526 0x1c7c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 13:27:37.0543 0x1c7c MTConfig - ok 13:27:37.0559 0x1c7c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 13:27:37.0568 0x1c7c Mup - ok 13:27:37.0602 0x1c7c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 13:27:37.0652 0x1c7c napagent - ok 13:27:37.0682 0x1c7c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 13:27:37.0712 0x1c7c NativeWifiP - ok 13:27:37.0762 0x1c7c [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys 13:27:37.0788 0x1c7c NDIS - ok 13:27:37.0805 0x1c7c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 13:27:37.0832 0x1c7c NdisCap - ok 13:27:37.0847 0x1c7c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 13:27:37.0884 0x1c7c NdisTapi - ok 13:27:37.0903 0x1c7c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 13:27:37.0929 0x1c7c Ndisuio - ok 13:27:37.0948 0x1c7c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 13:27:37.0989 0x1c7c NdisWan - ok 13:27:38.0005 0x1c7c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 13:27:38.0029 0x1c7c NDProxy - ok 13:27:38.0044 0x1c7c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 13:27:38.0082 0x1c7c NetBIOS - ok 13:27:38.0109 0x1c7c [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 13:27:38.0134 0x1c7c NetBT - ok 13:27:38.0149 0x1c7c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] Netlogon C:\Windows\system32\lsass.exe 13:27:38.0156 0x1c7c Netlogon - ok 13:27:38.0181 0x1c7c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 13:27:38.0227 0x1c7c Netman - ok 13:27:38.0275 0x1c7c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 13:27:38.0288 0x1c7c NetMsmqActivator - ok 13:27:38.0298 0x1c7c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 13:27:38.0308 0x1c7c NetPipeActivator - ok 13:27:38.0321 0x1c7c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 13:27:38.0356 0x1c7c netprofm - ok 13:27:38.0362 0x1c7c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 13:27:38.0372 0x1c7c NetTcpActivator - ok 13:27:38.0378 0x1c7c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 13:27:38.0388 0x1c7c NetTcpPortSharing - ok 13:27:38.0430 0x1c7c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 13:27:38.0438 0x1c7c nfrd960 - ok 13:27:38.0470 0x1c7c [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll 13:27:38.0502 0x1c7c NlaSvc - ok 13:27:38.0521 0x1c7c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 13:27:38.0546 0x1c7c Npfs - ok 13:27:38.0552 0x1c7c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 13:27:38.0588 0x1c7c nsi - ok 13:27:38.0605 0x1c7c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 13:27:38.0630 0x1c7c nsiproxy - ok 13:27:38.0695 0x1c7c [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 13:27:38.0745 0x1c7c Ntfs - ok 13:27:38.0760 0x1c7c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 13:27:38.0784 0x1c7c Null - ok 13:27:39.0125 0x1c7c [ DD81FBC57AB9134CDDC5CE90880BFD80, 16DF4D9645238D1014FA9189FF171DCF7B7C7573F759B5AC73025518139D86B1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 13:27:39.0511 0x1c7c nvlddmkm - ok 13:27:39.0548 0x1c7c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 13:27:39.0559 0x1c7c nvraid - ok 13:27:39.0571 0x1c7c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 13:27:39.0582 0x1c7c nvstor - ok 13:27:39.0600 0x1c7c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 13:27:39.0610 0x1c7c nv_agp - ok 13:27:39.0639 0x1c7c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 13:27:39.0648 0x1c7c ohci1394 - ok 13:27:39.0673 0x1c7c [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 13:27:39.0682 0x1c7c ose - ok 13:27:39.0830 0x1c7c [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 13:27:39.0990 0x1c7c osppsvc - ok 13:27:40.0017 0x1c7c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 13:27:40.0038 0x1c7c p2pimsvc - ok 13:27:40.0062 0x1c7c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 13:27:40.0089 0x1c7c p2psvc - ok 13:27:40.0112 0x1c7c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys 13:27:40.0137 0x1c7c Parport - ok 13:27:40.0162 0x1c7c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 13:27:40.0171 0x1c7c partmgr - ok 13:27:40.0214 0x1c7c [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll 13:27:40.0237 0x1c7c PcaSvc - ok 13:27:40.0251 0x1c7c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 13:27:40.0263 0x1c7c pci - ok 13:27:40.0302 0x1c7c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 13:27:40.0309 0x1c7c pciide - ok 13:27:40.0328 0x1c7c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 13:27:40.0341 0x1c7c pcmcia - ok 13:27:40.0356 0x1c7c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 13:27:40.0364 0x1c7c pcw - ok 13:27:40.0400 0x1c7c [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys 13:27:40.0441 0x1c7c PEAUTH - ok 13:27:40.0550 0x1c7c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 13:27:40.0559 0x1c7c PerfHost - ok 13:27:40.0619 0x1c7c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 13:27:40.0692 0x1c7c pla - ok 13:27:40.0731 0x1c7c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 13:27:40.0765 0x1c7c PlugPlay - ok 13:27:40.0884 0x1c7c [ 9C4D0DE187CBC24F658C52EFC93B1C73, 06BFE4BD5E78D19DAAE4088885E4356B05206EE24A132C1EE735E2DC48286EFA ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe 13:27:40.0907 0x1c7c PMBDeviceInfoProvider - ok 13:27:40.0925 0x1c7c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 13:27:40.0941 0x1c7c PNRPAutoReg - ok 13:27:40.0962 0x1c7c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 13:27:40.0976 0x1c7c PNRPsvc - ok 13:27:41.0016 0x1c7c [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 13:27:41.0036 0x1c7c PolicyAgent - ok 13:27:41.0053 0x1c7c [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll 13:27:41.0088 0x1c7c Power - ok 13:27:41.0131 0x1c7c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 13:27:41.0174 0x1c7c PptpMiniport - ok 13:27:41.0198 0x1c7c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys 13:27:41.0209 0x1c7c Processor - ok 13:27:41.0242 0x1c7c [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll 13:27:41.0256 0x1c7c ProfSvc - ok 13:27:41.0272 0x1c7c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] ProtectedStorage C:\Windows\system32\lsass.exe 13:27:41.0280 0x1c7c ProtectedStorage - ok 13:27:41.0311 0x1c7c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 13:27:41.0343 0x1c7c Psched - ok 13:27:41.0403 0x1c7c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 13:27:41.0475 0x1c7c ql2300 - ok 13:27:41.0498 0x1c7c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 13:27:41.0508 0x1c7c ql40xx - ok 13:27:41.0542 0x1c7c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 13:27:41.0560 0x1c7c QWAVE - ok 13:27:41.0571 0x1c7c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 13:27:41.0590 0x1c7c QWAVEdrv - ok 13:27:41.0607 0x1c7c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 13:27:41.0632 0x1c7c RasAcd - ok 13:27:41.0665 0x1c7c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 13:27:41.0697 0x1c7c RasAgileVpn - ok 13:27:41.0709 0x1c7c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 13:27:41.0738 0x1c7c RasAuto - ok 13:27:41.0752 0x1c7c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 13:27:41.0786 0x1c7c Rasl2tp - ok 13:27:41.0809 0x1c7c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 13:27:41.0851 0x1c7c RasMan - ok 13:27:41.0865 0x1c7c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 13:27:41.0902 0x1c7c RasPppoe - ok 13:27:41.0925 0x1c7c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 13:27:41.0951 0x1c7c RasSstp - ok 13:27:41.0968 0x1c7c [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 13:27:42.0013 0x1c7c rdbss - ok 13:27:42.0027 0x1c7c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 13:27:42.0038 0x1c7c rdpbus - ok 13:27:42.0057 0x1c7c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 13:27:42.0082 0x1c7c RDPCDD - ok 13:27:42.0099 0x1c7c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 13:27:42.0136 0x1c7c RDPENCDD - ok 13:27:42.0152 0x1c7c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 13:27:42.0188 0x1c7c RDPREFMP - ok 13:27:42.0222 0x1c7c [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 13:27:42.0238 0x1c7c RDPWD - ok 13:27:42.0288 0x1c7c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 13:27:42.0300 0x1c7c rdyboost - ok 13:27:42.0323 0x1c7c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll 13:27:42.0363 0x1c7c RemoteAccess - ok 13:27:42.0402 0x1c7c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 13:27:42.0432 0x1c7c RemoteRegistry - ok 13:27:42.0459 0x1c7c [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 13:27:42.0474 0x1c7c RFCOMM - ok 13:27:42.0484 0x1c7c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 13:27:42.0525 0x1c7c RpcEptMapper - ok 13:27:42.0550 0x1c7c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 13:27:42.0574 0x1c7c RpcLocator - ok 13:27:42.0624 0x1c7c [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll 13:27:42.0642 0x1c7c RpcSs - ok 13:27:42.0665 0x1c7c [ 9BD6DEBC9862FBE0C0467F0633B34962, F244BF3F2E997C18D7CF755941B5E1CEA11406FACADF6DB4341708622D3AADAC ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys 13:27:42.0680 0x1c7c RSPCIESTOR - ok 13:27:42.0727 0x1c7c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 13:27:42.0758 0x1c7c rspndr - ok 13:27:42.0805 0x1c7c [ EB8EA1C4C5E076D9EA61FB59960C5830, 3D3631E71584E89847BAC79EB22416175E92D0234662A4E3AF21D5E04ABB8D40 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 13:27:42.0836 0x1c7c RTL8167 - ok 13:27:42.0852 0x1c7c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] SamSs C:\Windows\system32\lsass.exe 13:27:42.0867 0x1c7c SamSs - ok 13:27:42.0883 0x1c7c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 13:27:42.0883 0x1c7c sbp2port - ok 13:27:42.0914 0x1c7c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 13:27:42.0945 0x1c7c SCardSvr - ok 13:27:42.0961 0x1c7c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 13:27:43.0008 0x1c7c scfilter - ok 13:27:43.0086 0x1c7c [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll 13:27:43.0148 0x1c7c Schedule - ok 13:27:43.0179 0x1c7c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 13:27:43.0195 0x1c7c SCPolicySvc - ok 13:27:43.0242 0x1c7c [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 13:27:43.0257 0x1c7c sdbus - ok 13:27:43.0289 0x1c7c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 13:27:43.0304 0x1c7c SDRSVC - ok 13:27:43.0335 0x1c7c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 13:27:43.0351 0x1c7c secdrv - ok 13:27:43.0367 0x1c7c [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll 13:27:43.0382 0x1c7c seclogon - ok 13:27:43.0413 0x1c7c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll 13:27:43.0460 0x1c7c SENS - ok 13:27:43.0538 0x1c7c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 13:27:43.0554 0x1c7c SensrSvc - ok 13:27:43.0554 0x1c7c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys 13:27:43.0569 0x1c7c Serenum - ok 13:27:43.0616 0x1c7c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys 13:27:43.0647 0x1c7c Serial - ok 13:27:43.0679 0x1c7c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys 13:27:43.0679 0x1c7c sermouse - ok 13:27:43.0710 0x1c7c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll 13:27:43.0725 0x1c7c SessionEnv - ok 13:27:43.0772 0x1c7c [ 85D0F874734C105D02280B39BF0AD23F, 8067852BC131363629B686D4DD6296748889482E2FC50C7A50F29906AF99C4C2 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys 13:27:43.0788 0x1c7c SFEP - ok 13:27:43.0803 0x1c7c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 13:27:43.0819 0x1c7c sffdisk - ok 13:27:43.0819 0x1c7c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 13:27:43.0850 0x1c7c sffp_mmc - ok 13:27:43.0850 0x1c7c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 13:27:43.0881 0x1c7c sffp_sd - ok 13:27:43.0897 0x1c7c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 13:27:43.0897 0x1c7c sfloppy - ok 13:27:43.0959 0x1c7c [ 21AB491BBCC8C1B26FDC402A374AB196, DD973C9963C840200D153A15078152D499639730D065BB8122C6BE65D4372300 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys 13:27:44.0006 0x1c7c Sftfs - ok 13:27:44.0069 0x1c7c [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe 13:27:44.0084 0x1c7c sftlist - ok 13:27:44.0100 0x1c7c [ 3B8D43FEEFF7A187534DDDFD675FE123, 9308D5C552FE3AF1121A3F7B7595547C6B892FF500377953F3B623511D84698C ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys 13:27:44.0115 0x1c7c Sftplay - ok 13:27:44.0131 0x1c7c [ F1D1B1DC7A8765A09D7640FBF8D20970, 72E59B04BC44DAFFB88987C16CF3F9DC35438B15879E102FD83013673E0DB66F ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys 13:27:44.0147 0x1c7c Sftredir - ok 13:27:44.0147 0x1c7c [ B3B9ADE7F8C4AF0C20E712E040588543, 9A6BB11DA046BF6F0239952871263E148FAE91FB21065613645114B5FA054EC5 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys 13:27:44.0162 0x1c7c Sftvol - ok 13:27:44.0178 0x1c7c [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe 13:27:44.0178 0x1c7c sftvsa - ok 13:27:44.0209 0x1c7c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 13:27:44.0240 0x1c7c SharedAccess - ok 13:27:44.0271 0x1c7c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 13:27:44.0303 0x1c7c ShellHWDetection - ok 13:27:44.0349 0x1c7c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 13:27:44.0365 0x1c7c SiSRaid2 - ok 13:27:44.0381 0x1c7c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 13:27:44.0381 0x1c7c SiSRaid4 - ok 13:27:44.0459 0x1c7c [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 13:27:44.0474 0x1c7c SkypeUpdate - ok 13:27:44.0490 0x1c7c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 13:27:44.0537 0x1c7c Smb - ok 13:27:44.0568 0x1c7c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 13:27:44.0583 0x1c7c SNMPTRAP - ok 13:27:44.0661 0x1c7c [ 4AEA7A1C3CA06D95D6966C34D13C0D8B, 94C90DCBD9CCFE465746F554808A4752FB1E452790477D118ED76D7F35CE3576 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe 13:27:44.0661 0x1c7c SOHCImp - ok 13:27:44.0693 0x1c7c [ 16FD95781117E13107D477AE36219E6F, CD201C01C1FA6BB1B67411C45AA155B112584C9E4A1D68EE091B6723644D37D2 ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe 13:27:44.0693 0x1c7c SOHDs - ok 13:27:44.0739 0x1c7c [ C03E480E63A80D73FABE28D24D3B6B47, F8C68DC63A5492587F9343158348ADD99A99AF34DC7ED29E5562EE90C0AB8F25 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe 13:27:44.0755 0x1c7c SpfService - ok 13:27:44.0786 0x1c7c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 13:27:44.0786 0x1c7c spldr - ok 13:27:44.0817 0x1c7c [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler C:\Windows\System32\spoolsv.exe 13:27:44.0864 0x1c7c Spooler - ok 13:27:44.0958 0x1c7c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 13:27:45.0098 0x1c7c sppsvc - ok 13:27:45.0129 0x1c7c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 13:27:45.0145 0x1c7c sppuinotify - ok 13:27:45.0207 0x1c7c [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv C:\Windows\system32\DRIVERS\srv.sys 13:27:45.0254 0x1c7c srv - ok 13:27:45.0301 0x1c7c [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 13:27:45.0332 0x1c7c srv2 - ok 13:27:45.0363 0x1c7c [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 13:27:45.0379 0x1c7c srvnet - ok 13:27:45.0395 0x1c7c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 13:27:45.0426 0x1c7c SSDPSRV - ok 13:27:45.0441 0x1c7c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 13:27:45.0473 0x1c7c SstpSvc - ok 13:27:45.0488 0x1c7c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys 13:27:45.0504 0x1c7c stexstor - ok 13:27:45.0551 0x1c7c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 13:27:45.0597 0x1c7c stisvc - ok 13:27:45.0613 0x1c7c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 13:27:45.0613 0x1c7c swenum - ok 13:27:45.0644 0x1c7c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 13:27:45.0691 0x1c7c swprv - ok 13:27:45.0738 0x1c7c [ A585607D5D3A2AB41DF03A714718133E, ABE535F2433D662E5F13788421DB6B2392641E3D17FF2A07FB5BA284C1203E7D ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 13:27:45.0753 0x1c7c SynTP - ok 13:27:45.0847 0x1c7c [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll 13:27:45.0909 0x1c7c SysMain - ok 13:27:45.0956 0x1c7c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 13:27:45.0987 0x1c7c TabletInputService - ok 13:27:46.0003 0x1c7c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 13:27:46.0050 0x1c7c TapiSrv - ok 13:27:46.0128 0x1c7c [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip C:\Windows\system32\drivers\tcpip.sys 13:27:46.0190 0x1c7c Tcpip - ok 13:27:46.0237 0x1c7c [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 13:27:46.0284 0x1c7c TCPIP6 - ok 13:27:46.0331 0x1c7c [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 13:27:46.0331 0x1c7c tcpipreg - ok 13:27:46.0362 0x1c7c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 13:27:46.0377 0x1c7c TDPIPE - ok 13:27:46.0393 0x1c7c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 13:27:46.0409 0x1c7c TDTCP - ok 13:27:46.0424 0x1c7c [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 13:27:46.0440 0x1c7c tdx - ok 13:27:46.0471 0x1c7c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 13:27:46.0487 0x1c7c TermDD - ok 13:27:46.0549 0x1c7c [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll 13:27:46.0580 0x1c7c TermService - ok 13:27:46.0596 0x1c7c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 13:27:46.0627 0x1c7c Themes - ok 13:27:46.0658 0x1c7c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 13:27:46.0674 0x1c7c THREADORDER - ok 13:27:46.0689 0x1c7c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 13:27:46.0736 0x1c7c TrkWks - ok 13:27:46.0783 0x1c7c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 13:27:46.0814 0x1c7c TrustedInstaller - ok 13:27:46.0861 0x1c7c [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 13:27:46.0877 0x1c7c tssecsrv - ok 13:27:46.0892 0x1c7c [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 13:27:46.0908 0x1c7c TsUsbFlt - ok 13:27:46.0923 0x1c7c [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 13:27:46.0939 0x1c7c TsUsbGD - ok 13:27:46.0955 0x1c7c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 13:27:46.0970 0x1c7c tunnel - ok 13:27:46.0986 0x1c7c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 13:27:47.0001 0x1c7c uagp35 - ok 13:27:47.0064 0x1c7c [ 1FE69F3C1CA1CF4B7EC7E2E9090FFFDC, 30BD61BA46955BD6A48EC78538FAAB46026DD048347F8280352335EB0ECE16AD ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe 13:27:47.0064 0x1c7c uCamMonitor - ok 13:27:47.0095 0x1c7c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 13:27:47.0142 0x1c7c udfs - ok 13:27:47.0173 0x1c7c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 13:27:47.0189 0x1c7c UI0Detect - ok 13:27:47.0204 0x1c7c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 13:27:47.0204 0x1c7c uliagpkx - ok 13:27:47.0235 0x1c7c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 13:27:47.0267 0x1c7c umbus - ok 13:27:47.0267 0x1c7c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys 13:27:47.0282 0x1c7c UmPass - ok 13:27:47.0391 0x1c7c [ D80B1075B69B57A3AB78F750CE463ECE, E8435B723C3D9F5B28D5588365E7D6BED298565BCF61240C2B505B1033180DAA ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 13:27:47.0391 0x1c7c UNS - ok 13:27:47.0423 0x1c7c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 13:27:47.0454 0x1c7c upnphost - ok 13:27:47.0485 0x1c7c [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 13:27:47.0501 0x1c7c USBAAPL64 - ok 13:27:47.0563 0x1c7c [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys 13:27:47.0579 0x1c7c usbccgp - ok 13:27:47.0610 0x1c7c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 13:27:47.0625 0x1c7c usbcir - ok 13:27:47.0641 0x1c7c [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci C:\Windows\system32\drivers\usbehci.sys 13:27:47.0657 0x1c7c usbehci - ok 13:27:47.0688 0x1c7c [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub C:\Windows\system32\drivers\usbhub.sys 13:27:47.0703 0x1c7c usbhub - ok 13:27:47.0719 0x1c7c [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci C:\Windows\system32\drivers\usbohci.sys 13:27:47.0750 0x1c7c usbohci - ok 13:27:47.0750 0x1c7c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys 13:27:47.0781 0x1c7c usbprint - ok 13:27:47.0797 0x1c7c [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 13:27:47.0828 0x1c7c USBSTOR - ok 13:27:47.0859 0x1c7c [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 13:27:47.0859 0x1c7c usbuhci - ok 13:27:47.0891 0x1c7c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 13:27:47.0922 0x1c7c usbvideo - ok 13:27:47.0937 0x1c7c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 13:27:47.0969 0x1c7c UxSms - ok 13:27:48.0031 0x1c7c [ 203FD19D70549A2939E1AE3A36608151, 2B965E52571B6F409132E5D7608B794D56538314BD4E68E58F9CBA39450A94B2 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe 13:27:48.0031 0x1c7c VAIO Event Service - ok 13:27:48.0125 0x1c7c [ 59308CD511A5F3EE33595FFD46F76B31, 757A8245AB2424DC245E5516BA6DB7DF30AF83E217CDA8EADAC0CA1DB24F457A ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe 13:27:48.0140 0x1c7c VAIO Power Management - ok 13:27:48.0156 0x1c7c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] VaultSvc C:\Windows\system32\lsass.exe 13:27:48.0171 0x1c7c VaultSvc - ok 13:27:48.0234 0x1c7c [ ADD5A5BA64D0710E1C764A8D4DAD510E, 77A56EDAB6FEBB684E2F6B91DB4E5363D40930CCC3F44DA681BEBB9201851B1C ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe 13:27:48.0265 0x1c7c VCFw - ok 13:27:48.0343 0x1c7c [ EEE5AD6FB40B35F7867C3A49B98BB4EF, BEB7A8261C627E4FC8A57386700D25F78257B8CCA720174FEBC7DC53E871B6FF ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe 13:27:48.0359 0x1c7c VcmIAlzMgr - ok 13:27:48.0421 0x1c7c [ FD5BD55C1854208BC9C51DBCFC3C1941, 450A5DA99C55D3F34353B7FC0710AC7BCDB23EB43A096EB5C0ED796552E6EA73 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe 13:27:48.0437 0x1c7c VcmINSMgr - ok 13:27:48.0468 0x1c7c [ 9BC1F203C5604C24F345BCFCD6956BAE, 44D277B041FD6902AE61CCA0C96E5555EAC35E356EC91E22485781D66C68009D ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe 13:27:48.0468 0x1c7c VcmXmlIfHelper - ok 13:27:48.0546 0x1c7c [ 213B5C9C5D13EF583574C87EDA2F4BB5, 039BD34F4739FE4D64FCD1A7CF73F47A59C106D8EEC2C9B7B62A6E6718EDBD1C ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe 13:27:48.0546 0x1c7c VCService - ok 13:27:48.0593 0x1c7c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 13:27:48.0593 0x1c7c vdrvroot - ok 13:27:48.0639 0x1c7c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 13:27:48.0686 0x1c7c vds - ok 13:27:48.0702 0x1c7c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 13:27:48.0717 0x1c7c vga - ok 13:27:48.0717 0x1c7c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 13:27:48.0749 0x1c7c VgaSave - ok 13:27:48.0764 0x1c7c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 13:27:48.0780 0x1c7c vhdmp - ok 13:27:48.0827 0x1c7c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 13:27:48.0827 0x1c7c viaide - ok 13:27:48.0842 0x1c7c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 13:27:48.0858 0x1c7c volmgr - ok 13:27:48.0873 0x1c7c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 13:27:48.0889 0x1c7c volmgrx - ok 13:27:48.0905 0x1c7c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys 13:27:48.0920 0x1c7c volsnap - ok 13:27:49.0045 0x1c7c [ 36BE686F97BD128B1A0EBF68E7AEDF8D, 5A154E075CFA5AF599649EECC21D614E0CB8A86BC2E5EDDD9188A05C448FD599 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe 13:27:49.0061 0x1c7c vpnagent - ok 13:27:49.0107 0x1c7c [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva C:\Windows\system32\DRIVERS\vpnva64-6.sys 13:27:49.0107 0x1c7c vpnva - ok 13:27:49.0139 0x1c7c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 13:27:49.0154 0x1c7c vsmraid - ok 13:27:49.0217 0x1c7c [ B64F4E8CBD5428C20FB10E66808A56B3, C694BCA0B3CEE28A1419E908EBC92802EE91FEEE23C0A82C66F1780AF5E1CFA9 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe 13:27:49.0248 0x1c7c VSNService - ok 13:27:49.0310 0x1c7c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 13:27:49.0419 0x1c7c VSS - ok 13:27:49.0513 0x1c7c [ 16595E67A5AE390C70F4A482644C6D3D, 5D233199963E4970CDE93A800E4C40E675979AE255590E060391AE315D45DA71 ] VUAgent C:\Program Files\Sony\VAIO Update\vuagent.exe 13:27:49.0544 0x1c7c VUAgent - ok 13:27:49.0560 0x1c7c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 13:27:49.0575 0x1c7c vwifibus - ok 13:27:49.0607 0x1c7c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 13:27:49.0638 0x1c7c vwififlt - ok 13:27:49.0669 0x1c7c [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 13:27:49.0685 0x1c7c vwifimp - ok 13:27:49.0716 0x1c7c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 13:27:49.0747 0x1c7c W32Time - ok 13:27:49.0763 0x1c7c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 13:27:49.0778 0x1c7c WacomPen - ok 13:27:49.0809 0x1c7c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 13:27:49.0841 0x1c7c WANARP - ok 13:27:49.0841 0x1c7c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 13:27:49.0872 0x1c7c Wanarpv6 - ok 13:27:49.0965 0x1c7c [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 13:27:50.0043 0x1c7c WatAdminSvc - ok 13:27:50.0106 0x1c7c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 13:27:50.0168 0x1c7c wbengine - ok 13:27:50.0199 0x1c7c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 13:27:50.0231 0x1c7c WbioSrvc - ok 13:27:50.0246 0x1c7c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 13:27:50.0277 0x1c7c wcncsvc - ok 13:27:50.0293 0x1c7c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 13:27:50.0293 0x1c7c WcsPlugInService - ok 13:27:50.0324 0x1c7c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys 13:27:50.0324 0x1c7c Wd - ok 13:27:50.0371 0x1c7c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 13:27:50.0418 0x1c7c Wdf01000 - ok 13:27:50.0465 0x1c7c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll 13:27:50.0480 0x1c7c WdiServiceHost - ok 13:27:50.0480 0x1c7c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll 13:27:50.0496 0x1c7c WdiSystemHost - ok 13:27:50.0543 0x1c7c [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll 13:27:50.0558 0x1c7c WebClient - ok 13:27:50.0589 0x1c7c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll 13:27:50.0621 0x1c7c Wecsvc - ok 13:27:50.0636 0x1c7c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 13:27:50.0667 0x1c7c wercplsupport - ok 13:27:50.0683 0x1c7c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 13:27:50.0730 0x1c7c WerSvc - ok 13:27:50.0761 0x1c7c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 13:27:50.0792 0x1c7c WfpLwf - ok 13:27:50.0792 0x1c7c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 13:27:50.0808 0x1c7c WIMMount - ok 13:27:50.0839 0x1c7c WinDefend - ok 13:27:50.0839 0x1c7c WinHttpAutoProxySvc - ok 13:27:50.0901 0x1c7c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 13:27:50.0933 0x1c7c Winmgmt - ok 13:27:51.0026 0x1c7c [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll 13:27:51.0120 0x1c7c WinRM - ok 13:27:51.0182 0x1c7c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 13:27:51.0182 0x1c7c WinUsb - ok 13:27:51.0245 0x1c7c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 13:27:51.0291 0x1c7c Wlansvc - ok 13:27:51.0354 0x1c7c [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 13:27:51.0354 0x1c7c wlcrasvc - ok 13:27:51.0479 0x1c7c [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 13:27:51.0525 0x1c7c wlidsvc - ok 13:27:51.0541 0x1c7c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 13:27:51.0572 0x1c7c WmiAcpi - ok 13:27:51.0588 0x1c7c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 13:27:51.0603 0x1c7c wmiApSrv - ok 13:27:51.0635 0x1c7c WMPNetworkSvc - ok 13:27:51.0666 0x1c7c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 13:27:51.0681 0x1c7c WPCSvc - ok 13:27:51.0713 0x1c7c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 13:27:51.0728 0x1c7c WPDBusEnum - ok 13:27:51.0744 0x1c7c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 13:27:51.0759 0x1c7c ws2ifsl - ok 13:27:51.0791 0x1c7c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll 13:27:51.0806 0x1c7c wscsvc - ok 13:27:51.0806 0x1c7c WSearch - ok 13:27:51.0915 0x1c7c [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv C:\Windows\system32\wuaueng.dll 13:27:52.0025 0x1c7c wuauserv - ok 13:27:52.0071 0x1c7c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 13:27:52.0087 0x1c7c WudfPf - ok 13:27:52.0118 0x1c7c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 13:27:52.0134 0x1c7c WUDFRd - ok 13:27:52.0181 0x1c7c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 13:27:52.0196 0x1c7c wudfsvc - ok 13:27:52.0243 0x1c7c [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll 13:27:52.0259 0x1c7c WwanSvc - ok 13:27:52.0321 0x1c7c [ D65B42FBF19C676AA01AE95EC62F7764, 20536DEE96A2F00456AF14A8893AABA6801132EBDA8E4F600FEE85DC0903F77F ] ZAtheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe 13:27:52.0337 0x1c7c ZAtheros Bt&Wlan Coex Agent - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:52.0446 0x1c7c Detect skipped due to KSN trusted 13:27:52.0446 0x1c7c ZAtheros Bt&Wlan Coex Agent - ok 13:27:52.0477 0x1c7c ================ Scan global =============================== 13:27:52.0508 0x1c7c [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll 13:27:52.0555 0x1c7c [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll 13:27:52.0571 0x1c7c [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll 13:27:52.0586 0x1c7c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 13:27:52.0617 0x1c7c [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe 13:27:52.0633 0x1c7c [ Global ] - ok 13:27:52.0633 0x1c7c ================ Scan MBR ================================== 13:27:52.0649 0x1c7c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 13:27:53.0288 0x1c7c \Device\Harddisk0\DR0 - ok 13:27:53.0288 0x1c7c ================ Scan VBR ================================== 13:27:53.0288 0x1c7c [ 8D99A31ACDB6D08816A6CB3E37EC3451 ] \Device\Harddisk0\DR0\Partition1 13:27:53.0288 0x1c7c \Device\Harddisk0\DR0\Partition1 - ok 13:27:53.0288 0x1c7c [ 170CB175AE332623AB967E7D435E27D1 ] \Device\Harddisk0\DR0\Partition2 13:27:53.0288 0x1c7c \Device\Harddisk0\DR0\Partition2 - ok 13:27:53.0288 0x1c7c ================ Scan generic autorun ====================== 13:27:53.0335 0x1c7c [ 350AE710634AF327DDC90B897BBBA23A, E4F0C0D50894A9CA63311AC48EA22F7B9BCA35AE3AC71AD6259C0FAC6FA134B9 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe 13:27:53.0366 0x1c7c RtHDVBg - ok 13:27:53.0413 0x1c7c [ BC672C9DA769CAB42F8875DFD5BC8E29, 1EE8BD14158E44889895EE27FAFB933A6BFE45909682AA6BD88C5FE270C513DA ] C:\Program Files (x86)\Bluetooth Suite\btvstack.exe 13:27:53.0444 0x1c7c AtherosBtStack - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:53.0569 0x1c7c Detect skipped due to KSN trusted 13:27:53.0569 0x1c7c AtherosBtStack - ok 13:27:53.0600 0x1c7c [ 7CCC08E6A236F6C458A3623E1953A2E2, 71A75DB265E0A42A9E74F41A5E880B101B2434203940F63762A331C3CAC576AA ] C:\Program Files (x86)\Bluetooth Suite\athbttray.exe 13:27:53.0616 0x1c7c AthBtTray - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:53.0741 0x1c7c Detect skipped due to KSN trusted 13:27:53.0741 0x1c7c AthBtTray - ok 13:27:53.0741 0x1c7c SynTPEnh - ok 13:27:53.0772 0x1c7c [ ADEA393B2B49EB25578702F4F5525E93, 8F0AB94BEA3751C566CBFF2F9A29495CCAC029DE3721107BBA892A418FD70581 ] C:\Program Files\iTunes\iTunesHelper.exe 13:27:53.0772 0x1c7c iTunesHelper - ok 13:27:53.0865 0x1c7c [ E4467B3D2FCA263DE551432A1709F24A, 370F193FAC2068CCEBE0844159B5276B0AFAF69543FACC88F8726F1ADB301BAD ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe 13:27:53.0881 0x1c7c StartCCC - ok 13:27:53.0928 0x1c7c [ 766AE515B1749F2141E418CC6C08515B, 02DDB5A7DB8278AA47A951604818E73DB69155DBF1ECD06B6E11926204EADAE7 ] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 13:27:53.0943 0x1c7c IAStorIcon - ok 13:27:53.0990 0x1c7c [ 6BA8D86746935498D64CB5CF6286F2EB, E47D1DEE39451428344233DB15412BCB486C4F6FE1D0426F20AA4C6245387926 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe 13:27:54.0006 0x1c7c USB3MON - ok 13:27:54.0021 0x1c7c [ 4AD491D49890D794BFA77AAB935046C5, 9A3D575C4CF99844DAA1CD11D0F5BAD13653B12941F211A42C27A09B6E079BE8 ] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe 13:27:54.0037 0x1c7c ISBMgr.exe - ok 13:27:54.0099 0x1c7c [ E8DD2FBC10895C0814FD4620AEFCF8D6, 2FEB54BA37C6D1DAB4C313112A00D40B988F19BCB82265882D852AD41A74DDEC ] c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe 13:27:54.0115 0x1c7c PMBVolumeWatcher - ok 13:27:54.0162 0x1c7c [ 2B282A4050FE3B4B70EF9E3070BBFF78, 019B667781F5CE411AEB569EAA4095FA2B9942E43A6A1DFC6EEBB2DA214131FE ] C:\Program Files (x86)\FreePDF_XP\fpassist.exe 13:27:54.0177 0x1c7c FreePDF Assistant - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:54.0458 0x1c7c Detect skipped due to KSN trusted 13:27:54.0458 0x1c7c FreePDF Assistant - ok 13:27:54.0521 0x1c7c [ 5EC52DA5A84F39F98DD4E614B167DB2C, 9472982F2F6F02B8B1E707844C54C8CF2D79E3C5DDABCB0742FA8D1F0E94D5A4 ] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe 13:27:54.0536 0x1c7c BDRegion - ok 13:27:54.0614 0x1c7c [ 98FAFD82E4F0674D2D7BB3C8FD141D32, 4F44F6B17E40268B8EE0251E6D913157CA1E7CE4C9D9B434262E74F136453A10 ] c:\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe 13:27:54.0645 0x1c7c Adobe Version Cue CS2 - detected UnsignedFile.Multi.Generic ( 1 ) 13:27:54.0926 0x1c7c Detect skipped due to KSN trusted 13:27:54.0926 0x1c7c Adobe Version Cue CS2 - ok 13:27:55.0035 0x1c7c Dropbox - ok 13:27:55.0098 0x1c7c [ 3D4FE53C8BFADAC1B05B4F25F874634F, 78B37B31477964DE48669E12CE4264EF13E04F19432B4F9DB236BDB76DF24435 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe 13:27:55.0129 0x1c7c Cisco AnyConnect Secure Mobility Agent for Windows - ok 13:27:55.0176 0x1c7c [ 395CB6E8C67BFB1063AD86987909C184, 15F3BA6DF6D0C5C8FB9FF0AB661A5A652F26BAB7A0FB0DB47874069522400B16 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 13:27:55.0191 0x1c7c SunJavaUpdateSched - ok 13:27:55.0254 0x1c7c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 13:27:55.0301 0x1c7c Sidebar - ok 13:27:55.0332 0x1c7c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 13:27:55.0347 0x1c7c mctadmin - ok 13:27:55.0363 0x1c7c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 13:27:55.0394 0x1c7c Sidebar - ok 13:27:55.0410 0x1c7c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 13:27:55.0410 0x1c7c mctadmin - ok 13:27:55.0566 0x1c7c [ 0C2D8CBA28E12D170FC5343F03E6D20C, 73A66AEF5D89E69E6B19172328AC043542FD7628DD44A569B23625261A0B56FB ] C:\Users\Anna\AppData\Roaming\Spotify\SpotifyWebHelper.exe 13:27:55.0597 0x1c7c Spotify Web Helper - ok 13:27:55.0815 0x1c7c [ C654101E928F9C1EC19A3C3AA78D4482, 925C51A2B1DD082EA5F7035CDAD481F6017DD943B005042703CCE1D5F9572AF2 ] C:\Users\Anna\AppData\Roaming\Spotify\Spotify.exe 13:27:55.0956 0x1c7c Spotify - ok 13:27:55.0956 0x1c7c Waiting for KSN requests completion. In queue: 133 13:27:56.0970 0x1c7c Waiting for KSN requests completion. In queue: 133 13:27:57.0984 0x1c7c Win FW state via NFP2: enabled ( trusted ) 13:27:58.0202 0x1c7c ============================================================ 13:27:58.0202 0x1c7c Scan finished 13:27:58.0202 0x1c7c ============================================================ 13:27:58.0202 0x0690 Detected object count: 0 13:27:58.0202 0x0690 Actual detected object count: 0 |
23.01.2017, 13:33 | #9 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Avast meldet Bedrohung: HTML:Framer-inf [Trj] Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
23.01.2017, 13:53 | #10 |
| Avast meldet Bedrohung: HTML:Framer-inf [Trj] adwCleaner Log: Code:
ATTFilter # AdwCleaner v6.042 - Bericht erstellt am 23/01/2017 um 13:42:25 # Aktualisiert am 06/01/2017 von Malwarebytes # Datenbank : 2017-01-23.1 [Lokal] # Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64) # Benutzername : Anna - ANNA-VAIO # Gestartet von : C:\Users\Anna\Desktop\AdwCleaner_6.042.exe # Modus: Löschen # Unterstützung : https://www.malwarebytes.com/support ***** [ Dienste ] ***** ***** [ Ordner ] ***** ***** [ Dateien ] ***** ***** [ DLL ] ***** ***** [ WMI ] ***** ***** [ Verknüpfungen ] ***** ***** [ Aufgabenplanung ] ***** ***** [ Registrierungsdatenbank ] ***** [-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780} ***** [ Browser ] ***** ************************* :: "Tracing" Schlüssel gelöscht :: Winsock Einstellungen zurückgesetzt :: Proxy Einstellungen zurückgesetzt :: Internet Explorer Richtlinien gelöscht :: Chrome Richtlinien gelöscht ************************* C:\AdwCleaner\AdwCleaner[C0].txt - [1043 Bytes] - [23/01/2017 13:42:25] C:\AdwCleaner\AdwCleaner[S0].txt - [1381 Bytes] - [23/01/2017 13:38:39] C:\AdwCleaner\AdwCleaner[S1].txt - [1454 Bytes] - [23/01/2017 13:41:25] ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1262 Bytes] ########## Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 8.1.0 (12.05.2016) Operating System: Windows 7 Home Premium x64 Ran by Anna (Administrator) on 23.01.2017 at 13:50:02,23 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 32 Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4YTYRMDC (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5EI7USGH (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\94WU4DMM (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DBO1OW7M (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G2RKHR5Y (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GEAGVHAF (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L9DCTLEZ (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OHKE2LYI (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R83MRWD8 (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UQIMWD3E (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XMOYP9AY (Temporary Internet Files Folder) Successfully deleted: C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y9UW7YLH (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4YTYRMDC (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5EI7USGH (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\94WU4DMM (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DBO1OW7M (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G2RKHR5Y (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GEAGVHAF (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L9DCTLEZ (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OHKE2LYI (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R83MRWD8 (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UQIMWD3E (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XMOYP9AY (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y9UW7YLH (Temporary Internet Files Folder) Registry: 0 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 23.01.2017 at 13:52:11,65 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
23.01.2017, 14:14 | #11 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Avast meldet Bedrohung: HTML:Framer-inf [Trj] Wir haben leider noch ne ältere Anleitung vom adwCleaner, bitte nochmal ausführen und so einstellen:
__________________ Logfiles bitte immer in CODE-Tags posten |
23.01.2017, 15:00 | #12 |
| Avast meldet Bedrohung: HTML:Framer-inf [Trj] Erledigt. Danach kam die Meldung, dass das Programm nichts gefunden hat. Code:
ATTFilter # AdwCleaner v6.042 - Bericht erstellt am 23/01/2017 um 15:01:52 # Aktualisiert am 06/01/2017 von Malwarebytes # Datenbank : 2017-01-23.1 [Lokal] # Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64) # Benutzername : Anna - ANNA-VAIO # Gestartet von : C:\Users\Anna\Desktop\AdwCleaner_6.042.exe # Modus: Suchlauf # Unterstützung : https://www.malwarebytes.com/support ***** [ Dienste ] ***** Keine schädlichen Dienste gefunden. ***** [ Ordner ] ***** Keine schädlichen Ordner gefunden. ***** [ Dateien ] ***** Keine schädlichen Dateien gefunden. ***** [ DLL ] ***** Keine infizierten DLLs gefunden. ***** [ WMI ] ***** Keine schädlichen Schlüssel gefunden. ***** [ Verknüpfungen ] ***** Keine infizierten Verknüpfungen gefunden. ***** [ Aufgabenplanung ] ***** Keine schädlichen Aufgaben gefunden. ***** [ Registrierungsdatenbank ] ***** Keine schädlichen Elemente in der Registrierungsdatenbank gefunden. ***** [ Internetbrowser ] ***** Keine schädlichen Elemente in Firefox basierten Browsern gefunden. Keine schädlichen Elemente in Chrome basierten Browsern gefunden. ************************* C:\AdwCleaner\AdwCleaner[C0].txt - [1341 Bytes] - [23/01/2017 13:42:25] C:\AdwCleaner\AdwCleaner[S0].txt - [1381 Bytes] - [23/01/2017 13:38:39] C:\AdwCleaner\AdwCleaner[S1].txt - [1454 Bytes] - [23/01/2017 13:41:25] C:\AdwCleaner\AdwCleaner[S2].txt - [1577 Bytes] - [23/01/2017 14:59:44] C:\AdwCleaner\AdwCleaner[S3].txt - [1498 Bytes] - [23/01/2017 15:01:52] ########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1571 Bytes] ########## |
23.01.2017, 15:32 | #13 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Avast meldet Bedrohung: HTML:Framer-inf [Trj] Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
23.01.2017, 15:35 | #14 |
| Avast meldet Bedrohung: HTML:Framer-inf [Trj]Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 22-01-2017 durchgeführt von Anna (Administrator) auf ANNA-VAIO (23-01-2017 15:33:39) Gestartet von C:\Users\Anna\Desktop Geladene Profile: Anna (Verfügbare Profile: Anna & Gast) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Adobe Systems Incorporated) C:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE () C:\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe (Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712 2012-03-13] (Realtek Semiconductor) HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\btvstack.exe [1022592 2012-04-28] (Atheros Communications) HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\athbttray.exe [801920 2012-04-28] (Atheros Commnucations) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2885944 2012-09-20] (Synaptics Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-26] (Apple Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2012-02-10] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-04-09] (Intel Corporation) HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [60552 2011-09-20] (Sony Corporation) HKLM-x32\...\Run: [PMBVolumeWatcher] => c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [693608 2012-02-21] (Sony Corporation) HKLM-x32\...\Run: [FreePDF Assistant] => C:\Program Files (x86)\FreePDF_XP\fpassist.exe [373760 2014-03-18] (shbox.de) HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-26] (cyberlink) HKLM-x32\...\Run: [Adobe Version Cue CS2] => c:\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26142864 2017-01-18] (Dropbox, Inc.) HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1223168 2016-12-09] (Cisco Systems, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation) HKU\S-1-5-21-1695557451-403283895-2565799833-1001\...\Run: [Spotify Web Helper] => C:\Users\Anna\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1444976 2016-12-22] (Spotify Ltd) HKU\S-1-5-21-1695557451-403283895-2565799833-1001\...\Run: [Spotify] => C:\Users\Anna\AppData\Roaming\Spotify\Spotify.exe [7153264 2016-12-22] (Spotify Ltd) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.) Startup: C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2016-08-06] ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 159.84.24.31 159.84.24.131 Tcpip\..\Interfaces\{0C4D7364-2B5F-47B6-B944-D8CFCE9F9A01}: [DhcpNameServer] 159.84.24.31 159.84.24.131 Internet Explorer: ================== HKU\S-1-5-21-1695557451-403283895-2565799833-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://vaioportal.sony.eu/ HKU\S-1-5-21-1695557451-403283895-2565799833-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://vaioportal.sony.eu HKU\S-1-5-21-1695557451-403283895-2565799833-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://sony.msn.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-1695557451-403283895-2565799833-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1695557451-403283895-2565799833-1001 -> {8196F850-F666-46CF-8527-BD3CE2DAF116} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q212&_nkw={searchTerms} BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll => Keine Datei BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll => Keine Datei BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-21] (Oracle Corporation) BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-04-28] (Atheros Commnucations) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-21] (Oracle Corporation) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.) FireFox: ======== FF DefaultProfile: 1z7h68lw.default FF ProfilePath: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\1z7h68lw.default [2017-01-23] FF Homepage: Mozilla\Firefox\Profiles\1z7h68lw.default -> hxxps://www.google.de FF Extension: (Adblock Plus) - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\1z7h68lw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-25] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-11] () FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-11] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-03-13] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-03-13] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-21] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-21] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @playstation.com/PsndlCheck,version=1.00 -> C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll [2011-08-03] (Sony Computer Entertainment Inc.) FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files (x86)\Sony\Media Go\npmediago.dll [2011-08-02] (Sony Network Entertainment International LLC) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2011-09-28] () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.) ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2016-08-06] (Adobe Systems) [Datei ist nicht signiert] R2 Adobe Version Cue CS2; c:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated) [Datei ist nicht signiert] R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [119424 2012-04-28] (Atheros Commnucations) [Datei ist nicht signiert] S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [247768 2013-04-26] (CyberLink) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-17] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-17] (Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46400 2017-01-04] (Dropbox, Inc.) S3 DCDhcpService; C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [112256 2012-03-21] (Atheros Communication Inc.) [Datei ist nicht signiert] R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-13] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-03-13] (Intel Corporation) R2 PMBDeviceInfoProvider; c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [473960 2012-02-21] (Sony Corporation) R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.) S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [960160 2011-12-29] (Sony Corporation) R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [163456 2012-04-28] (Atheros) [Datei ist nicht signiert] S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X] S2 McMPFSvc; "C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.) R3 BTATH_VDP; C:\Windows\System32\drivers\btath_vdp.sys [422144 2012-04-28] (Atheros) S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc.) U0 aswVmm; kein ImagePath S3 dbx; system32\DRIVERS\dbx.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-01-23 15:02 - 2017-01-23 15:02 - 00000000 ____D C:\ProgramData\Synaptics 2017-01-23 13:52 - 2017-01-23 13:52 - 00005786 _____ C:\Users\Anna\Desktop\JRT.txt 2017-01-23 13:49 - 2017-01-23 13:49 - 01663040 _____ (Malwarebytes) C:\Users\Anna\Desktop\JRT.exe 2017-01-23 13:44 - 2017-01-23 13:44 - 00000000 ___RD C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2017-01-23 13:36 - 2017-01-23 15:01 - 00000000 ____D C:\AdwCleaner 2017-01-23 13:36 - 2017-01-23 13:36 - 03988944 _____ C:\Users\Anna\Desktop\AdwCleaner_6.042.exe 2017-01-23 13:26 - 2017-01-23 13:29 - 00225676 _____ C:\TDSSKiller.3.1.0.12_23.01.2017_13.26.20_log.txt 2017-01-23 13:26 - 2017-01-23 13:26 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Anna\Desktop\tdsskiller.exe 2017-01-23 13:04 - 2017-01-23 13:04 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-01-23 13:03 - 2017-01-23 13:24 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2017-01-23 13:03 - 2017-01-23 13:03 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2017-01-23 13:03 - 2017-01-23 13:03 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2017-01-23 13:02 - 2017-01-23 13:24 - 00000000 ____D C:\Users\Anna\Desktop\mbar 2017-01-23 13:02 - 2017-01-23 13:02 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Anna\Desktop\mbar-1.09.3.1001.exe 2017-01-22 21:56 - 2017-01-22 21:57 - 00055809 _____ C:\Users\Anna\Desktop\Addition.txt 2017-01-22 21:54 - 2017-01-23 15:33 - 00021367 _____ C:\Users\Anna\Desktop\FRST.txt 2017-01-22 21:54 - 2017-01-23 15:33 - 00000000 ____D C:\FRST 2017-01-22 21:53 - 2017-01-22 21:53 - 02420736 _____ (Farbar) C:\Users\Anna\Desktop\FRST64.exe 2017-01-20 20:17 - 2017-01-20 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2017-01-20 20:13 - 2017-01-20 20:13 - 00002555 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk 2017-01-20 20:12 - 2017-01-20 20:12 - 00000000 ____D C:\Program Files (x86)\MSECache 2017-01-20 20:02 - 2017-01-20 20:12 - 63363736 _____ (Microsoft Corporation) C:\Users\Anna\Desktop\PowerPointViewer.exe 2017-01-20 17:22 - 2017-01-20 17:22 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2017-01-20 17:22 - 2017-01-20 17:22 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Sun 2017-01-20 17:22 - 2017-01-20 17:22 - 00000000 ____D C:\Users\Gast\AppData\LocalLow\Sun 2017-01-20 17:22 - 2017-01-20 17:22 - 00000000 ____D C:\Users\Gast\.oracle_jre_usage 2017-01-20 17:17 - 2017-01-20 17:23 - 00000000 ____D C:\Users\Gast\AppData\LocalLow\Mozilla 2017-01-20 17:17 - 2017-01-20 17:17 - 00000000 ____D C:\Users\Gast\.cisco 2017-01-16 20:48 - 2017-01-16 20:48 - 00000000 ____D C:\Users\Anna\.cisco 2017-01-16 20:48 - 2017-01-16 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco 2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2017-01-11 13:12 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2017-01-11 13:12 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2017-01-11 13:12 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2017-01-11 13:12 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2017-01-11 13:12 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2017-01-11 13:12 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2017-01-11 13:12 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2017-01-11 13:12 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-01-11 13:12 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-01-11 13:12 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-01-11 13:12 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2017-01-11 13:12 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2017-01-11 13:12 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2017-01-04 06:25 - 2017-01-04 06:25 - 00046400 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-01-23 15:16 - 2016-09-17 10:14 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2017-01-23 14:55 - 2016-11-18 11:29 - 00000000 ____D C:\Users\Anna\AppData\LocalLow\Mozilla 2017-01-23 14:55 - 2016-08-06 18:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2017-01-23 13:54 - 2009-07-14 05:45 - 00021200 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-01-23 13:54 - 2009-07-14 05:45 - 00021200 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-01-23 13:49 - 2016-09-27 18:28 - 00000000 ____D C:\Users\Anna\AppData\Local\Spotify 2017-01-23 13:49 - 2016-09-27 18:27 - 00000000 ____D C:\Users\Anna\AppData\Roaming\Spotify 2017-01-23 13:45 - 2016-09-17 10:16 - 00000000 ___RD C:\Users\Anna\Dropbox 2017-01-23 13:44 - 2016-09-17 10:14 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2017-01-23 13:43 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-01-23 12:25 - 2016-08-06 19:18 - 00000000 ____D C:\ProgramData\AVAST Software 2017-01-22 04:29 - 2009-07-14 05:45 - 00357888 _____ C:\Windows\system32\FNTCACHE.DAT 2017-01-21 18:06 - 2016-08-06 19:12 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2017-01-21 18:06 - 2016-08-06 19:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-01-21 18:05 - 2016-08-06 19:11 - 00000000 ____D C:\Program Files (x86)\Java 2017-01-21 10:54 - 2016-08-06 18:50 - 00084688 _____ C:\Users\Anna\AppData\Local\GDIPFONTCACHEV1.DAT 2017-01-20 20:17 - 2016-09-17 10:14 - 00000000 ____D C:\Program Files (x86)\Dropbox 2017-01-20 17:22 - 2016-09-26 18:21 - 00000000 ____D C:\Users\Gast\Documents\Bluetooth Folder 2017-01-20 17:22 - 2016-09-26 18:20 - 00000000 ____D C:\Users\Gast 2017-01-20 17:19 - 2016-09-26 18:20 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore 2017-01-20 12:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2017-01-18 21:02 - 2016-08-09 09:11 - 00000000 ____D C:\Users\Anna\AppData\Roaming\Skype 2017-01-16 20:48 - 2016-09-18 15:34 - 00000000 ____D C:\ProgramData\Cisco 2017-01-16 20:48 - 2016-09-18 15:34 - 00000000 ____D C:\Program Files (x86)\Cisco 2017-01-16 20:48 - 2016-08-06 18:50 - 00000000 ____D C:\Users\Anna 2017-01-15 22:28 - 2016-08-06 19:16 - 00000000 ____D C:\Users\Anna\AppData\Roaming\SoftGrid Client 2017-01-15 21:11 - 2016-08-11 14:17 - 00000000 ____D C:\Users\Anna\Desktop\tickets 2017-01-14 18:34 - 2016-08-06 18:23 - 00000000 ____D C:\ProgramData\Skype 2017-01-11 13:54 - 2016-08-06 18:12 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-01-11 13:54 - 2016-08-06 18:12 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-01-11 13:54 - 2016-08-06 18:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-01-11 13:54 - 2016-08-06 18:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-01-11 13:54 - 2016-08-06 18:12 - 00000000 ____D C:\Windows\system32\Macromed 2017-01-10 14:23 - 2016-11-25 21:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2017-01-10 14:23 - 2016-08-06 19:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-01-08 17:37 - 2016-08-21 13:46 - 00000000 ____D C:\Users\Anna\Documents\Anna_Privat 2017-01-06 01:09 - 2016-08-06 19:39 - 00000000 ____D C:\Users\Anna\AppData\Roaming\vlc 2017-01-06 01:00 - 2016-08-06 19:29 - 00000000 ____D C:\Users\Anna\AppData\Local\CrashDumps 2016-12-30 11:02 - 2016-08-06 18:33 - 00699892 _____ C:\Windows\system32\perfh007.dat 2016-12-30 11:02 - 2016-08-06 18:33 - 00149742 _____ C:\Windows\system32\perfc007.dat 2016-12-30 11:02 - 2009-07-14 06:13 - 01621316 _____ C:\Windows\system32\PerfStringBackup.INI 2016-12-30 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-12-30 11:02 - 2009-07-14 03:36 - 00654690 _____ C:\Windows\system32\perfh009.dat 2016-12-30 11:02 - 2009-07-14 03:36 - 00122304 _____ C:\Windows\system32\perfc009.dat 2016-12-30 11:00 - 2016-08-06 18:50 - 00000000 ___SD C:\Users\Anna\AppData\LocalLow\Microsoft 2016-12-29 14:35 - 2016-08-06 18:55 - 00000000 ____D C:\Users\Anna\AppData\Local\Sony Corporation 2016-12-29 14:25 - 2016-08-06 19:28 - 00000000 ____D C:\Update 2016-12-29 14:25 - 2016-08-06 18:35 - 00000000 ____D C:\ProgramData\Sony Corporation 2016-12-29 14:25 - 2016-08-06 18:35 - 00000000 ____D C:\Program Files\Sony 2016-12-29 14:25 - 2016-08-06 17:55 - 00000000 ____D C:\Windows\System32\Tasks\Sony Corporation 2016-12-29 14:25 - 2016-08-06 17:46 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-08-06 23:40 - 2016-08-07 00:53 - 0007636 _____ () C:\Users\Anna\AppData\Local\Resmon.ResmonCfg Einige Dateien in TEMP: ==================== 2016-10-01 12:03 - 2016-10-01 12:03 - 0225016 _____ (Cisco Systems, Inc.) C:\Users\Anna\AppData\Local\Temp\20161001010328987jniverify.dll 2016-08-06 19:39 - 2016-08-06 19:40 - 30533688 _____ () C:\Users\Anna\AppData\Local\Temp\vlc-2.2.4-win32.exe ==================== Bamital & volsnap ====================== (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2017-01-18 19:17 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 22-01-2017 durchgeführt von Anna (23-01-2017 15:34:44) Gestartet von C:\Users\Anna\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2016-08-06 17:50:08) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-1695557451-403283895-2565799833-500 - Administrator - Disabled) Anna (S-1-5-21-1695557451-403283895-2565799833-1001 - Administrator - Enabled) => C:\Users\Anna Gast (S-1-5-21-1695557451-403283895-2565799833-501 - Limited - Enabled) => C:\Users\Gast HomeGroupUser$ (S-1-5-21-1695557451-403283895-2565799833-1002 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 7-Zip 16.00 (x64) (HKLM\...\7-Zip) (Version: 16.00 - Igor Pavlov) ActiveX контрола на Windows Live Mesh за отдалечени връзки (HKLM-x32\...\{B3BA4D1C-23EF-4859-9C11-1B2CCB7FADBB}) (Version: 15.4.5722.2 - Microsoft Corporation) ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (HKLM-x32\...\{376D59B1-42D9-4FA2-B6CC-E346B6BE14F5}) (Version: 15.4.5722.2 - Microsoft Corporation) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.7.0.19460 - Adobe Systems Incorporated) Adobe Creative Suite 2 (HKLM-x32\...\{0134A1A1-C283-4A47-91A1-92F19F960372}) (Version: - ) Adobe Flash Player 24 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 24.0.0.194 - Adobe Systems Incorporated) Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated) Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.) Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated) Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.) Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden AMD Catalyst Install Manager (HKLM\...\{EBF1529E-D2D5-47CF-97EC-7D90CEF0FE04}) (Version: 3.0.859.0 - Advanced Micro Devices, Inc.) Apple Application Support (32-Bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.) Apple Application Support (64-Bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.161 - ArcSoft) ArcSoft WebCam Companion 4 (HKLM-x32\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.457 - ArcSoft) Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.135 - Atheros) Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Bing Bar (HKLM-x32\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BPCx64 (Version: 1.0.0 - Sony Corporation) Hidden BPCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden Build-a-lot 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden Cake Mania (x32 Version: 2.2.0.98 - WildTangent) Hidden Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.4.00243 - Cisco Systems, Inc.) Cisco AnyConnect Secure Mobility Client (x32 Version: 4.4.00243 - Cisco Systems, Inc.) Hidden Control ActiveX Windows Live Mesh pentru conexiuni la distanță (HKLM-x32\...\{260E3D78-94E6-47EC-8E29-46301572BB1E}) (Version: 15.4.5722.2 - Microsoft Corporation) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation) CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6426.52 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Dropbox (HKLM-x32\...\Dropbox) (Version: 18.4.32 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden Evernote v. 4.5.2 (HKLM-x32\...\{8CE152BA-1D16-11E1-867D-984BE15F174E}) (Version: 4.5.2.5904 - Evernote Corp.) FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden Fishdom (TM) 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation) Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden FreePDF (Remove only) (HKLM-x32\...\FreePDF_XP) (Version: - ) Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden GPL Ghostscript (HKLM\...\GPL Ghostscript 9.10) (Version: 9.10 - Artifex Software Inc.) Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) iTunes (HKLM\...\{955524E7-79EB-4CA9-BA4D-FD2DF587651B}) (Version: 12.4.3.1 - Apple Inc.) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Jewel Quest Solitaire 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (HKLM-x32\...\{CA227A9D-09BE-4BFB-9764-48FED2DA5454}) (Version: 15.4.5722.2 - Microsoft Corporation) KUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden LibreOffice 5.0.5.2 (HKLM-x32\...\{43D862C3-739D-4FF6-91C0-25612368CC81}) (Version: 5.0.5.2 - The Document Foundation) Mahjongg Artifacts (x32 Version: 2.2.0.95 - WildTangent) Hidden Media Gallery (HKLM\...\{0EB7792D-EFA2-42AB-9A22-F33D9458E974}) (Version: 2.2.3.04170 - Sony Corporation) Media Go (HKLM-x32\...\{167A1F6A-9BF2-4B24-83DB-C6D659F680EA}) (Version: 2.0.317 - Sony) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0407-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Mozilla Firefox 50.1.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla) Mozilla Thunderbird 45.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.6.0 (x86 de)) (Version: 45.6.0 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden Mystery P.I. - The London Caper (x32 Version: 2.2.0.95 - WildTangent) Hidden Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation) Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation) paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC) Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.1.01.14210 - Sony Corporation) PlayMemories Home/PMB VAIO Edition Plug-in 3D Theme Data (x32 Version: 1.0.00.16130 - Sony Corporation) Hidden PlayMemories Home/PMB VAIO Edition Plug-in Ver.2.2 Upgrade Program (x32 Version: 2.2.00.18250 - Sony Corporation) Hidden PlayStation(R)Network Downloader (HKLM-x32\...\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}) (Version: 2.07.00849 - Sony Computer Entertainment Inc.) PlayStation(R)Store (HKLM-x32\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 4.5.15.13232 - Sony Computer Entertainment Inc.) Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden PYV_x86 (x32 Version: 1.0.0 - Sony Corporation) Hidden Qualcomm Atheros Direct Connect (x32 Version: 3.1 - Qualcomm Atheros) Hidden Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{E727B31A-8B24-4C1C-934A-69634E0D2C0B}) (Version: 3.0 - Qualcomm Atheros) Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6564 - Realtek Semiconductor Corp.) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.91 - Realtek Semiconductor Corp.) RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: 1.90 - Ghostgum Software Pty Ltd) Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden Remote Play with PlayStation(R)3 (x32 Version: 1.1.0.21090 - Sony Corporation) Hidden Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1695557451-403283895-2565799833-1001\...\Spotify) (Version: 1.0.45.186.g3b5036d6 - Spotify AB) SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden Suite Specific (x32 Version: 2.0.0 - Adobe Systems, Incorporated) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.0.1.6 - Synaptics Incorporated) The Hidden Object Game Show (x32 Version: 2.2.0.97 - WildTangent) Hidden TrackID(TM) with BRAVIA (x32 Version: 1.2.0.09270 - Sony Corportaion) Hidden TriDef 3D (Sony) 2.0.5 (HKLM-x32\...\experience-sony-bundle) (Version: 2.0.5 - Dynamic Digital Depth Australia Pty Ltd) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation) V3DPx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden VAIO - Media Gallery - VAIO Personalization Manager Update (HKLM\...\{50A7190B-5DA6-4A51-B275-3D413E617BA6}) (Version: 4.2.5.07160 - Sony Corporation) VAIO - Microsoft Visual C++ 2010 SP1 Runtime 10.0.40219.325 (HKLM\...\{34EB42BE-F4D3-44C1-B28E-9740115DB72C}) (Version: 1.0.00.01300 - Sony Corporation) VAIO - PlayMemories Home Plug-in (HKLM\...\{886C0C18-F905-49B2-90BA-EFC0FEDF27C6}) (Version: 2.0.00.14200 - Sony Corporation) VAIO - PlayMemories Home Plug-in (HKLM-x32\...\InstallShield_{F9395F3D-4198-476C-8C41-63D0B5B51E35}) (Version: 2.2.00.18250 - Sony Corporation) VAIO - Remote Play mit PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.1.0.21090 - Sony Corporation) VAIO - Remote-Tastatur (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.2.0.09270 - Sony Corporation) VAIO - Remote-Tastatur mit PlayStation®3 (HKLM-x32\...\{E682702C-609C-4017-99E7-3129C163955F}) (Version: 1.2.0.09210 - Sony Corporation) VAIO - TrackID™ mit BRAVIA (HKLM-x32\...\{2F41EF61-A066-4EBF-84F8-21C1B317A780}) (Version: 1.2.0.09270 - Sony Corporation) VAIO 3D Portal (HKLM-x32\...\{C14EAE86-C526-4E00-B245-CFF86233C3D2}) (Version: 1.2.0.10131 - Sony Corporation) VAIO Care (HKLM\...\{28D70998-F9F8-4F4B-BB1D-64C11123C01B}) (Version: 8.4.5.06021 - Sony Corporation) VAIO Care Recovery (HKLM\...\{6ED1750E-F44F-4635-8F0D-B76B9262B7FB}) (Version: 1.1.1.13230 - Sony Corporation) VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 5.2.1.15070 - Sony Corporation) VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.9.0.13190 - Sony Corporation) VAIO Data Restore Tool (x32 Version: 1.9.0.13190 - Sony Corporation) Hidden VAIO Easy Connect (HKLM-x32\...\InstallShield_{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.1.2.01120 - Sony Corporation) VAIO Easy Connect (x32 Version: 1.1.2.01120 - Sony Corporation) Hidden VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.4.2.02200 - Sony Corporation) VAIO Gate (x32 Version: 2.4.1.09230 - Sony Corporation) Hidden VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.5.2.02090 - Sony Corporation) VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 1.0.0.12300 - Sony Corporation) VAIO Gesture Control (x32 Version: 1.0.0.12300 - Sony Corporation) Hidden VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 1.3.0.12280 - Sony Corporation) VAIO Improvement Validation (HKLM\...\{75C95C84-264F-4CC7-8A7E-346444E6C7C1}) (Version: 1.0.4.01190 - Sony Corporation) VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.2.09010 - Sony Corporation) VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.14.1.07010 - Sony Corporation) VAIO Transfer Support (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.7.1.06040 - Sony Corporation) VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation) VAIO*CPU-Lüfterdiagnose (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.1.0.09200 - Sony Corporation) VAIO-Handbuch (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 2.3.0.12300 - Sony Corporation) VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden VGClientX86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VHD (x32 Version: 1.0.0 - Microsoft) Hidden Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden VIx64 (Version: 1.0.0 - Sony Corporation) Hidden VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden VSNx64 (Version: 1.0.0 - Sony Corporation) Hidden VSNx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden VUx64 (Version: 1.2.0 - Sony Corporation) Hidden VUx86 (x32 Version: 1.2.0 - Sony Corporation) Hidden VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden WildTangent Games App (x32 Version: 4.0.5.36 - WildTangent) Hidden WildTangent-Spiele (HKLM-x32\...\WildTangent sony Master Uninstall) (Version: 1.0.2.5 - WildTangent) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (HKLM-x32\...\{09B7C7EB-3140-4B5E-842F-9C79A7137139}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Meshin etäyhteyksien ActiveX-komponentti (HKLM-x32\...\{4CF6F287-5121-483C-A5A2-07BDE19D8B4E}) (Version: 15.4.5722.2 - Microsoft Corporation) Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation) Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Елемент керування Windows Live Mesh ActiveX для віддалених підключень (HKLM-x32\...\{6756D5CA-3E31-4308-9BF0-79DFD1AF196E}) (Version: 15.4.5722.2 - Microsoft Corporation) Основи Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Фотоколекція Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {057FB4BF-444E-4AD9-8503-8BACF89BE246} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {070A7560-29A6-4427-91DE-E87395916707} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2011-12-27] (Sony Corporation) Task: {0C34078C-56EB-4E9B-883C-8FC32A64C30E} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2012-02-20] (Sony Corporation) Task: {10094A98-BE94-4820-972F-E6675FEF4F7C} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-07] (Sony Corporation) Task: {10FDD079-F0F2-473E-BD18-8AAFFD9DDF3B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-17] (Dropbox, Inc.) Task: {16055FBD-4C40-4EE8-BD79-5427148F7C8D} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-03-29] (Sony Corporation) Task: {18616DA0-BA9D-464E-884A-6D588D20F6C3} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-17] (Dropbox, Inc.) Task: {1B99EAC9-3149-4D44-8A43-CBFE3A5F268A} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => net [Argument = start VSNService] Task: {2EFB9BCA-EC5A-453D-BF47-4D9920584A59} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcWeekly => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation) Task: {3C19480C-F46C-4D20-97AE-30DC6204DD50} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {4B9DBF1C-8795-46DD-BEC8-DC63E55850D6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-11] (Adobe Systems Incorporated) Task: {617E1340-0C80-46D1-A76D-73014D39BF74} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {62E4908B-ABF0-49DD-BA93-BCB79737BF44} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {666EF3FA-0D5B-41B6-B057-486294C0098B} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-03-29] (Sony Corporation) Task: {66A586C2-73E0-4D62-85DC-3990037B1D57} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation) Task: {68D06080-6160-4094-BA3B-CAE99F5165D0} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {7AA238D7-FCBD-4732-A7A2-9BE25451F7CD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {80C4AEB8-A310-459D-9BB4-C4725B9F6973} - System32\Tasks\Sony Corporation\VAIO Care\VTSvc => C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe [2016-05-30] (Sony Corporation) Task: {86014E98-7389-4150-99F1-144091065B7F} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2016-03-24] (Sony Corporation) Task: {A2633880-0D69-40DA-89BA-088BFE7B12E1} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2016-03-31] (Sony Corporation) Task: {A36A291E-FE7D-4D9C-8807-B364386C6DB1} - System32\Tasks\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-02-24] (Sony Corporation) Task: {A8EA7BA5-70C0-4DEA-AA11-C636F3085141} - System32\Tasks\Sony Corporation\BP Checker\CheckBPStatusLogon => C:\Program Files\Sony\BP Checker\BPChecker.exe [2016-11-29] (Sony Corporation) Task: {BC0A8411-B7CA-425F-A93B-8DFC7BC7B9D9} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcDaily => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation) Task: {C45954A9-E47E-45A7-8021-AD7B230EC800} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {C4FEB694-65CB-4907-AA14-C964A37D043F} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {C513B15F-E1BA-44EE-9E67-A792435836A9} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2011-12-27] (Sony Corporation) Task: {D4C956D2-DCB8-4CD6-929C-4A98FA99BDAB} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {D8209147-8667-467B-A5DC-299781F158B4} - System32\Tasks\Sony Corporation\BP Checker\CheckBPStatusCreate => C:\Program Files\Sony\BP Checker\BPChecker.exe [2016-11-29] (Sony Corporation) Task: {DFD0C212-524E-4BD9-8C60-FC894F10208D} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation) Task: {E131FC87-A8B0-458E-8249-B00E0447AA3D} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation) Task: {E1481173-CBB0-4E75-8763-0E642C5CE23A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-08-06] (AVAST Software) Task: {E4FCAA09-7557-479F-A546-3835D3CB73FD} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation) Task: {EA236041-B0D6-43FA-95D3-6A4CDAF511B2} - System32\Tasks\Sony Corporation\VAIO Care\VTUsr => C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe [2016-05-30] (Sony Corporation) Task: {F14F212A-E394-4B5C-BDAA-D0C924B1BF0C} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate Restart => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation) Task: {F1ABF0C5-CC85-4E47-B518-026379B3D252} - System32\Tasks\Sony Corporation\VAIO Improvement Validation\VAIO Improvement Validation => C:\Program Files\Sony\VAIO Improvement Validation\viv.exe [2011-01-20] (Sony Corporation) Task: {F8BC3BC8-9340-41D3-BCEC-3FA1C0DDDAE2} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-07] (Sony Corporation) Task: {FD5B1049-7EBA-4198-A6C7-BF13C8D06346} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2016-03-18] (Sony Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2016-08-06 19:32 - 2012-06-21 06:25 - 00113152 _____ () C:\Windows\System32\redmon64.dll 2016-07-05 14:23 - 2016-07-05 14:23 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-07-05 14:23 - 2016-07-05 14:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-08-06 17:51 - 2012-03-13 17:01 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe 2005-04-06 15:53 - 2005-04-06 15:53 - 03502080 _____ () c:\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe 2016-12-09 17:09 - 2016-12-09 17:09 - 00073728 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll 2005-04-06 15:52 - 2005-04-06 15:52 - 00028791 _____ () c:\Adobe\Adobe Version Cue CS2\jre\bin\hpi.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00057453 _____ () c:\Adobe\Adobe Version Cue CS2\jre\bin\verify.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00102515 _____ () c:\Adobe\Adobe Version Cue CS2\jre\bin\java.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00053364 _____ () c:\Adobe\Adobe Version Cue CS2\jre\bin\zip.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00057455 _____ () C:\Adobe\Adobe Version Cue CS2\jre\bin\net.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00032880 _____ () C:\Adobe\Adobe Version Cue CS2\jre\bin\nio.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 00434255 _____ () c:\Adobe\Adobe Version Cue CS2\bin\ps-rw-vc-v8_58.dll 2005-04-06 15:53 - 2005-04-06 15:53 - 01019904 _____ () c:\Adobe\Adobe Version Cue CS2\bin\ps-vc-v8_58.dll 2016-08-09 10:55 - 2016-08-09 10:55 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5a8eeeddc97028a9f94d0518c22f4c2c\IsdiInterop.ni.dll 2016-08-06 17:52 - 2011-11-29 19:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2016-08-06 17:51 - 2012-03-13 17:02 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2016-08-06 18:07 - 2012-03-07 17:57 - 00021128 _____ () C:\Program Files (x86)\Sony\VAIO Control Center\VESBasePS.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-1695557451-403283895-2565799833-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 159.84.24.31 - 159.84.24.131 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{A82F5BAD-7966-40E4-8AD7-E60BEA28F612}] => C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe FirewallRules: [{222E85FE-9A08-46CD-B5A3-2A4AC3FDEE0A}] => C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe FirewallRules: [{2EF4EACD-03A9-48AA-8955-F93753CFD362}] => C:\Program Files\Sony\VAIO Smart Network\WFDA\WiFiDirectApplication.exe FirewallRules: [{78CF12C7-22D9-47B6-A670-8FF589D0A08A}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{24F9CC8E-832E-48FA-A02E-513E42937116}] => LPort=2869 FirewallRules: [{2E3AB0F3-7B3E-4FD6-A490-0EE5A7135D96}] => LPort=1900 FirewallRules: [{8B873859-9EB5-4994-86DB-67229C5133A6}] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{66CC5BD0-7008-40B2-AC17-C867515977AC}] => C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{8F7B2646-E04D-41F6-916A-69E58F150C35}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{31613476-E4A8-49D8-8772-69F2A6FD03AB}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{0CCD190C-0ABC-46C9-A3F4-ABB5F1DEE6F1}] => C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE FirewallRules: [{5094F9F4-5C23-4A3B-8B9D-9F5541477E4B}] => C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe FirewallRules: [{9292BA24-2D8F-47CB-B386-AB0CE2AF4FFA}] => C:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe FirewallRules: [{76886804-2168-473F-9075-EE61F6B19D7C}] => C:\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe FirewallRules: [{22581546-0B6C-4AAD-A925-2AB95B5D37D4}] => C:\Program Files\Sony\VAIO Care\VCAgent.exe FirewallRules: [{31ABD328-2D41-48F6-A275-D00A08FA398E}] => C:\Program Files\Sony\VAIO Care\VCAdmin.exe FirewallRules: [{8BB14E2E-73B1-407C-8C5A-A83FF380CD37}] => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe FirewallRules: [{485DF9B3-F93E-4B80-AD2D-557BDE45ACF2}] => C:\Program Files\Sony\VAIO Care\VAIOShell.exe FirewallRules: [{F0C04B91-C99A-44BC-81F7-066EE90C9905}] => C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe FirewallRules: [{98659B63-FD28-4238-B042-4ABBE1D49F1A}] => C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe FirewallRules: [{9DEB8150-7544-44D0-954C-4F57140EAF7D}] => C:\Program Files (x86)\Sony\VAIO Creations\VAIO Movie Story\VMStory.exe FirewallRules: [{1BE374D7-D4D1-4924-B5E8-25711F983999}] => C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{8AB818E3-1ADA-44B3-8F1E-D5E68B8419C1}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C1693ACF-6852-47DE-9FB0-B7005D68E0DC}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{32C37116-5D1C-4E8A-B768-6FDB720CDFAE}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{91BBE072-2E22-4012-A9AF-BBA4F8DDB5EE}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{C0A8F44B-9A92-41B7-BA58-9B255309F88A}] => C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{86C8388D-A1E2-4CB8-A3E8-539795ACABDD}C:\users\anna\appdata\roaming\spotify\spotify.exe] => C:\users\anna\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{580C6BEB-F452-4577-9F26-0EA15FD6E6CD}C:\users\anna\appdata\roaming\spotify\spotify.exe] => C:\users\anna\appdata\roaming\spotify\spotify.exe FirewallRules: [{FC2E974D-BB57-4E32-BA58-873C0617E142}] => C:\users\anna\appdata\roaming\spotify\spotify.exe FirewallRules: [{684E2CC4-CA7C-41A5-9AD0-92FE9481A063}] => C:\users\anna\appdata\roaming\spotify\spotify.exe FirewallRules: [{5F6C6DEE-ABF0-45C9-984C-88F89CB1A332}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\TriDef 3D\TriDef\TriDefMediaPlayer\TriDefMediaPlayer.exe] => Enabled:TriDef 3D Media Player ==================== Wiederherstellungspunkte ========================= 09-01-2017 13:36:01 Geplanter Prüfpunkt 11-01-2017 14:52:06 Windows Update 14-01-2017 18:33:27 ASU_MSI_TRAN 20-01-2017 20:12:49 Microsoft PowerPoint Viewer wird installiert 22-01-2017 03:00:12 Windows Update 23-01-2017 13:50:10 JRT Pre-Junkware Removal ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Cisco Systems Service: vpnva Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (01/23/2017 01:45:28 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist. Error: (01/23/2017 01:44:14 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 17 122.216.84.159.in-addr.arpa. PTR Anna-VAIO.local. Error: (01/23/2017 01:44:14 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 159.84.216.122:5353 19 122.216.84.159.in-addr.arpa. PTR Anna-VAIO-2.local. Error: (01/23/2017 01:43:51 PM) (Source: DbxSvc) (EventID: 320) (User: ) Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden. Error: (01/23/2017 12:27:01 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist. Error: (01/23/2017 12:25:41 PM) (Source: DbxSvc) (EventID: 320) (User: ) Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden. Error: (01/23/2017 03:02:13 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 8002 Error: (01/23/2017 03:02:13 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 8002 Error: (01/23/2017 03:02:13 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (01/23/2017 03:02:12 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 7004 Systemfehler: ============= Error: (01/23/2017 01:43:52 PM) (Source: Service Control Manager) (EventID: 7003) (User: ) Description: Der Dienst "McAfee Personal Firewall Service" ist von folgendem Dienst abhängig: MfeFire. Dieser Dienst ist eventuell nicht installiert. Error: (01/23/2017 01:43:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: Das System kann die angegebene Datei nicht finden. Error: (01/23/2017 01:43:12 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet. Modulpfad: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll Error: (01/23/2017 01:43:12 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet. Modulpfad: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll Error: (01/23/2017 01:43:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Druckwarteschlange" wurde aufgrund folgenden Fehlers nicht gestartet: Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung. Error: (01/23/2017 01:43:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Druckwarteschlange erreicht. Error: (01/23/2017 01:43:03 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet. Modulpfad: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll Error: (01/23/2017 01:42:41 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: Es wird bereits eine Instanz des Dienstes ausgeführt. Error: (01/23/2017 01:42:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Application Virtualization Client" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (01/23/2017 01:42:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "VCService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz Prozentuale Nutzung des RAM: 24% Installierter physikalischer RAM: 8162.36 MB Verfügbarer physikalischer RAM: 6161.63 MB Summe virtueller Speicher: 16322.9 MB Verfügbarer virtueller Speicher: 13681.5 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:681.57 GB) (Free:312.35 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: CC078AC4) Partition 1: (Not Active) - (Size=16.7 GB) - (Type=27) Partition 2: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=681.6 GB) - (Type=07 NTFS) ==================== Ende von Addition.txt ============================ |
23.01.2017, 15:50 | #15 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | Avast meldet Bedrohung: HTML:Framer-inf [Trj]Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
Themen zu Avast meldet Bedrohung: HTML:Framer-inf [Trj] |
.com, antivirus, bonjour, computer, device driver, downloader, failed, firefox, flash player, home, homepage, installation, mozilla, object, problem gelöst, prozesse, realtek, registry, scan, security, siteadvisor, software, svchost.exe, system, udp, usb, windows |