|
blue screen...dauernder neustart...irql_not_less_or_equal Hi, Ich hoffe mir kann jreand helfen. Mein computer rastet dauernd aus. Es kommt immer wieder der selbe bluescreen und der pc startet neu... Ich wollte mein französisch aufpolieren und habe einen sprachtrainer von 1995 installiert und seitdem hab ich den fehler...deinstallieren konnte ich es leider nicht mehr, da die installation nicht vollständig ausgeführt worden ist... Hab manuell den ordner gelöscht, aber wahrscheinlich nicht die dateien erwichst, die woanders hinterlegt worden sind... Kann mir jemand helfen, ohne den pc neu zu installieren? Sorry, ich muss vom handy aus schreiben, da der pc andauernd neustartet... Den text kennt ihr ja bestimmt Technical information: *** STOP: 0x0000000A (0xC05EC000, 0x00000000, 0x00000000, 0x82AB97AD) Vielen dank hier die fehlermeldung von windows.... Problemsignatur: Problemereignisname: BlueScreen Betriebsystemversion: 6.0.6002.2.2.0.768.3 Gebietsschema-ID: 1031 Zusatzinformationen zum Problem: BCCode: a BCP1: C0645000 BCP2: 00000000 BCP3: 00000000 BCP4: 82AED7AD OS Version: 6_0_6002 Service Pack: 2_0 Product: 768_1 Dateien, die bei der Beschreibung des Problems hilfreich sind: C:\Windows\Minidump\Mini011913-06.dmp C:\Users\Wissem\AppData\Local\Temp\WER-125783-0.sysdata.xml C:\Users\Wissem\AppData\Local\Temp\WER2DB4.tmp.version.txt Lesen Sie unsere Datenschutzrichtlinie: Datenschutzbestimmungen für den Microsoft-Fehlerberichterstattungsdienst |
Also ohne Garantie können wir versuchen, den Fehler zu finden. :hallo: Ich werde dir bei deinem Problem helfen. Eine Bereinigung ist mitunter mit viel Arbeit für Dich (und mich) verbunden. Bevor es los geht, habe ich etwas Lesestoff für dich.  Bitte Lesen: Regeln für die Bereinigung Damit die Bereinigung funktioniert bitte ich dich, die folgenden Punkte aufmerksam zu lesen:
Gelesen und verstanden? Scan mit Farbar's Recovery Scan Tool
|
Hi danke das du mir wieder hilfst... Also ich habe einen sony vaio und daher besitze ich keine recovery cd. Ich habe frst gespeichert...auf dem stick und pc... Ich habe folgendes problem, mein usbstick wird mir im computer reparieren modus nicht angezeigt...meine mobile festplatte erkennt er dagegen... Ich habe es dann über meine mobile festplatte laufen lassen... Dann wird beim starten die mobile festplatte nicht erkannt....und was soll ich nun tun??? Korrektur...hab neu gestartet jetzt erkennt er wieder die mobile festplatte bei mir als h anstatt i: Der scan läuft, ich poste sobald es fertig ist.... |
Der Buchstabe ist immer anders. |
okay, war meine alternative lösung ohne usb ok? so hier die file...das sagt frst aus: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-01-2013 Ran by SYSTEM at 19-01-2013 12:38:51 Running from H:\ Windows Vista (TM) Home Premium Service Pack 1 (X86) OS Language: German Standard The current controlset is ControlSet001 ==================== Registry (Whitelisted) =================== HKLM\...\Run: [RtHDVCpl] RtHDVCpl.exe [x] HKLM\...\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [835584 2007-03-10] (Synaptics, Inc.) HKLM\...\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup [30192 2010-08-25] (Google) HKLM\...\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe" [317280 2008-04-03] (Sony Corporation) HKLM\...\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe [24576 2008-11-29] (Sony Corporation) HKLM\...\Run: [Skytel] Skytel.exe [x] HKLM\...\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [61440 2009-05-15] (Advanced Micro Devices, Inc.) HKLM\...\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [599328 2010-03-24] (Sony Corporation) HKLM\...\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [79192 2011-02-18] (Research In Motion Limited) HKLM\...\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun [618496 2010-06-07] () HKLM\...\Run: [PDFPrint] C:\Program Files\pdf24\pdf24.exe [220744 2012-02-03] (Geek Software GmbH) HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2011-10-24] (Apple Inc.) HKLM\...\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [310280 2012-12-20] (Samsung Electronics Co., Ltd.) HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-03] (Adobe Systems Incorporated) HKU\Default\...\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [x] HKU\Default\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [270336 2008-11-05] (Sony Corporation) HKU\Default User\...\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [x] HKU\Default User\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [270336 2008-11-05] (Sony Corporation) HKU\Gast\...\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [x] HKU\Gast\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [270336 2008-11-05] (Sony Corporation) HKU\Gast\...\Run: [Google Update] "C:\Users\Gast\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2011-11-09] (Google Inc.) HKU\Gast\...\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844296 2012-12-20] (Samsung) HKU\Gast\...\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background [4280184 2012-03-08] (Microsoft Corporation) HKU\Wissem\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [270336 2008-11-05] (Sony Corporation) HKU\Wissem\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation) HKU\Wissem\...\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" [247728 2012-01-23] (TomTom) HKU\Wissem\...\Run: [doubleTwist] C:\Program Files\doubleTwist 2.0\DoubleTwist.DeviceHelper.exe [24576 2010-09-18] (doubleTwist Corporation) HKU\Wissem\...\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [310280 2012-12-20] (Samsung Electronics Co., Ltd.) HKU\Wissem\...\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload [1476104 2012-12-20] (Samsung) HKU\Wissem\...\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup [578560 2012-12-18] (Samsung Electronics) Winlogon\Notify\igfxcui: igfxdev.dll [X] Winlogon\Notify\VESWinlogon: VESWinlogon.dll (Sony Corporation) AppInit_DLLs: c:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll ==================== Services (Whitelisted) =================== 2 AAV UpdateService; "C:\Program Files\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe" [128296 2008-10-24] () 3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) 2 dgdersvc; C:\Windows\system32\dgdersvc.exe [95568 2010-09-06] (Devguru Co., Ltd.) 3 GoogleDesktopManager-051210-111108; "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [30192 2010-08-25] (Google) 3 MozillaMaintenance; "C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe" [115168 2012-12-15] (Mozilla Foundation) 3 MSSQL$MSSMLBIZ; "C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ [29293408 2010-12-10] (Microsoft Corporation) 2 NAV; "C:\Program Files\Norton AntiVirus\Engine\20.2.0.19\ccSvcHst.exe" /s "NAV" /m "C:\Program Files\Norton AntiVirus\Engine\20.2.0.19\diMaster.dll" /prefetch:1 [535416 2012-10-11] (Symantec Corporation) 2 NCO; "C:\Program Files\Norton Identity Safe\Engine\2013.2.1.33\ccSvcHst.exe" /s "NCO" /m "C:\Program Files\Norton Identity Safe\Engine\2013.2.1.33\diMaster.dll" /prefetch:1 [535416 2012-12-05] (Symantec Corporation) 2 NMSAccess; C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096 2010-03-04] () 2 NvcRpcServer; "C:\Program Files\Nortel Networks\NvcRpcSvr.exe" [71176 2007-04-09] (Nortel Networks NA, Inc.) 3 SOHCImp; "C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe" [103712 2008-10-21] (Sony Corporation) 3 SOHDms; "C:\Program Files\Sony\VAIO Media plus\SOHDms.exe" [353568 2008-10-21] (Sony Corporation) 3 SOHDs; "C:\Program Files\Sony\VAIO Media plus\SOHDs.exe" [62752 2008-10-21] (Sony Corporation) 2 uCamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.) 3 VAIO Entertainment TV Device Arbitration Service; "C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe" [69632 2009-03-05] (Sony Corporation) 2 VCFw; "C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe" [5189992 2009-03-05] (Sony Corporation) 3 VcmIAlzMgr; "C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe" [480624 2009-09-16] (Sony Corporation) 3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe -RunBySCM [313264 2009-03-05] (Sony Corporation) 3 VUAgent; "C:\Program Files\Sony\VAIO Update Common\VUAgent.exe" [1086568 2011-09-23] (Sony Corporation) 2 VzCdbSvc; "C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe" [192512 2009-03-05] (Sony Corporation) 3 MSCSPTISRV; "C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe" [x] 3 SPTISRV; "C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe" [x] ==================== Drivers (Whitelisted) ==================== 3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [17920 2008-04-24] (ArcSoft, Inc.) 1 BHDrvx86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\BASHDefs\20130107.001\BHDrvx86.sys [995488 2012-11-30] (Symantec Corporation) 1 ccSet_NAV; C:\Windows\system32\drivers\NAV\1402000.013\ccSetx86.sys [134304 2012-10-03] (Symantec Corporation) 1 ccSet_NST; C:\Windows\system32\drivers\NST\7DD02010.021\ccSetx86.sys [134304 2012-08-20] (Symantec Corporation) 3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [18120 2010-09-06] (Devguru Co., Ltd) 3 Eacfilt; C:\Windows\System32\DRIVERS\eacfilt.sys [31784 2007-04-09] (Nortel Networks) 1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376480 2012-12-21] (Symantec Corporation) 3 EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [106656 2012-12-21] (Symantec Corporation) 3 FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [36640 2010-09-06] () 1 IDSVix86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\IPSDefs\20130111.002\IDSvix86.sys [386720 2012-12-28] (Symantec Corporation) 2 iPodDrv; \??\C:\Windows\system32\drivers\iPodDrv.sys [6656 2010-03-10] (Windows (R) Codename Longhorn DDK provider) 3 IPSECEXT; C:\Windows\System32\DRIVERS\ipsecw2k.sys [148232 2007-04-09] (Nortel Networks NA, Inc.) 3 IPSECSHM; C:\Windows\System32\DRIVERS\ipsecw2k.sys [148232 2007-04-09] (Nortel Networks NA, Inc.) 2 n5lpt.sys; \??\C:\Windows\system32\Drivers\n5lpt.sys [21196 2007-11-30] (Number Five Software) 3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\VirusDefs\20130118.022\NAVENG.SYS [93296 2013-01-19] (Symantec Corporation) 3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\VirusDefs\20130118.022\NAVEX15.SYS [1603824 2013-01-19] (Symantec Corporation) 3 SipIMNDI; C:\Windows\System32\DRIVERS\SipIMNDI.sys [24352 2009-10-15] (T-Systems International GmbH) 0 SMR311; C:\Windows\System32\drivers\SMR311.SYS [97440 2012-12-29] (Symantec Corporation) 3 SRTSP; C:\Windows\system32\drivers\NAV\1402000.013\SRTSP.SYS [586400 2012-10-08] (Symantec Corporation) 1 SRTSPX; C:\Windows\system32\drivers\NAV\1402000.013\SRTSPX.SYS [32888 2012-09-06] (Symantec Corporation) 3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [7168 2009-11-12] () 2 Stld; C:\Windows\System32\Drivers\Stld.sys [10240 2009-04-22] (Number Five Software) 0 SymDS; C:\Windows\System32\drivers\NAV\1402000.013\SYMDS.SYS [368288 2012-10-03] (Symantec Corporation) 0 SymEFA; C:\Windows\System32\drivers\NAV\1402000.013\SYMEFA.SYS [927904 2012-10-03] (Symantec Corporation) 3 SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [142496 2012-12-29] (Symantec Corporation) 1 SymIRON; C:\Windows\system32\drivers\NAV\1402000.013\Ironx86.SYS [175264 2012-09-06] (Symantec Corporation) 1 SYMTDIv; C:\Windows\system32\drivers\NAV\1402000.013\SYMTDIV.SYS [350368 2012-09-06] (Symantec Corporation) 3 catchme; \??\C:\Users\Wissem\AppData\Local\Temp\catchme.sys [x] 2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [x] 3 igfx; C:\Windows\System32\DRIVERS\igdkmd32.sys [x] 3 IpInIp; C:\Windows\System32\DRIVERS\ipinip.sys [x] 3 NwlnkFlt; C:\Windows\System32\DRIVERS\nwlnkflt.sys [x] 3 NwlnkFwd; C:\Windows\System32\DRIVERS\nwlnkfwd.sys [x] 4 UIUSys; C:\Windows\System32\DRIVERS\UIUSYS.SYS [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-01-19 12:27 - 2013-01-19 12:27 - 00142520 ____A C:\Windows\Minidump\Mini011913-07.dmp 2013-01-19 11:53 - 2013-01-19 11:53 - 00014452 ____A C:\Users\Wissem\Downloads\CBEB.tmp 2013-01-19 11:52 - 2013-01-19 11:53 - 00909506 ____A (Farbar) C:\Users\Wissem\Downloads\FRST.exe 2013-01-19 04:28 - 2013-01-19 04:28 - 06260632 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NRnR (1).exe 2013-01-19 04:27 - 2013-01-19 04:27 - 06258072 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NRnR.exe 2013-01-19 04:16 - 2013-01-19 04:16 - 00142520 ____A C:\Windows\Minidump\Mini011913-06.dmp 2013-01-19 04:07 - 2013-01-19 04:07 - 00142520 ____A C:\Windows\Minidump\Mini011913-05.dmp 2013-01-19 03:56 - 2013-01-19 03:56 - 00142520 ____A C:\Windows\Minidump\Mini011913-04.dmp 2013-01-19 03:31 - 2013-01-19 03:31 - 00142520 ____A C:\Windows\Minidump\Mini011913-03.dmp 2013-01-19 01:43 - 2013-01-19 01:43 - 00142520 ____A C:\Windows\Minidump\Mini011913-02.dmp 2013-01-19 01:16 - 2013-01-19 01:16 - 00142520 ____A C:\Windows\Minidump\Mini011913-01.dmp 2013-01-17 13:58 - 2013-01-17 13:58 - 00142520 ____A C:\Windows\Minidump\Mini011713-03.dmp 2013-01-17 13:17 - 2013-01-17 13:18 - 00000000 ____D C:\Program Files\Debugging Tools for Windows (x86) 2013-01-17 13:16 - 2013-01-17 13:16 - 17666048 ____A C:\Users\Wissem\Downloads\dbg_x86_6.10.3.233.msi 2013-01-17 13:03 - 2013-01-17 13:04 - 00142520 ____A C:\Windows\Minidump\Mini011713-02.dmp 2013-01-17 12:56 - 2013-01-17 12:56 - 00142520 ____A C:\Windows\Minidump\Mini011713-01.dmp 2013-01-17 11:19 - 2013-01-17 11:19 - 17666048 ____A C:\Users\Wissem\Downloads\Nicht bestätigt 449985.crdownload 2013-01-17 09:47 - 2013-01-17 09:48 - 00004097 ____A C:\Windows\System32\jupdate-1.7.0_11-b21.log 2013-01-12 07:13 - 2013-01-12 07:13 - 00000828 ____A C:\Users\Wissem\Desktop\PhotoScape.lnk 2013-01-12 07:01 - 2013-01-12 07:01 - 21322864 ____A (Mooii) C:\Users\Wissem\Downloads\PhotoScape_V3.6.3.exe 2013-01-12 06:06 - 2013-01-12 06:54 - 00000000 ____D C:\Users\Wissem\Documents\Steuerfälle 2013-01-12 06:05 - 2013-01-12 06:05 - 00000000 ____D C:\Users\Wissem\AppData\Local\AAV 2013-01-12 05:53 - 2013-01-12 06:03 - 00002094 ____A C:\Users\Public\Desktop\Steuer-Spar- Erklärung 2013.lnk 2013-01-12 05:39 - 2013-01-12 05:55 - 00000000 ____D C:\Program Files\Akademische Arbeitsgemeinschaft 2013-01-12 05:37 - 2013-01-12 06:01 - 00000000 ____D C:\Users\All Users\AAV 2013-01-12 04:10 - 2013-01-12 04:11 - 00142520 ____A C:\Windows\Minidump\Mini011213-01.dmp 2013-01-10 04:08 - 2013-01-10 04:08 - 00000000 ____D C:\Program Files\DVDVideoSoft 2013-01-10 04:08 - 2013-01-10 04:08 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft 2013-01-10 03:38 - 2013-01-10 03:38 - 25028024 ____A (DVDVideoSoft Ltd. ) C:\Users\Wissem\Downloads\FreeYouTubeToMP3Converter (1).exe 2013-01-09 17:53 - 2012-11-23 02:35 - 02048000 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys 2013-01-09 17:52 - 2012-11-20 05:22 - 00204288 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll 2013-01-09 17:52 - 2012-11-02 11:19 - 01400832 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll 2012-12-29 16:48 - 2012-12-29 16:48 - 00000000 ____D C:\Users\Wissem\Desktop\ESET 2012-12-29 16:32 - 2012-12-29 16:32 - 00000000 ____D C:\Users\Wissem\Documents\Symantec 2012-12-29 16:29 - 2013-01-11 19:57 - 00000000 ____D C:\Windows\System32\Drivers\NST 2012-12-29 16:29 - 2012-12-29 16:29 - 00142496 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS 2012-12-29 16:29 - 2012-12-29 16:29 - 00007446 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT 2012-12-29 16:29 - 2012-12-29 16:29 - 00002125 ____A C:\Users\Public\Desktop\Norton AntiVirus.lnk 2012-12-29 16:29 - 2012-12-29 16:29 - 00000000 ____D C:\Program Files\Symantec 2012-12-29 16:29 - 2012-12-29 16:29 - 00000000 ____D C:\Program Files\Norton Identity Safe 2012-12-29 16:28 - 2012-12-29 16:28 - 00000000 ____D C:\Windows\System32\Drivers\NAV 2012-12-29 16:28 - 2012-12-29 16:28 - 00000000 ____D C:\Program Files\Norton AntiVirus 2012-12-29 16:26 - 2012-12-29 16:26 - 00916600 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NAVDownloader (1).exe 2012-12-29 15:44 - 2012-12-29 15:44 - 00000735 ____A C:\DelFix[S2].txt 2012-12-29 15:43 - 2012-12-29 15:43 - 00001456 ____A C:\DelFix[S1].txt 2012-12-29 15:43 - 2012-12-29 15:43 - 00000620 ____A C:\DelFix[R1].txt 2012-12-29 14:30 - 2012-12-29 14:30 - 00000000 ____D C:\Users\All Users\SMR311 2012-12-29 14:28 - 2012-12-29 14:28 - 00097440 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SMR311.SYS 2012-12-29 14:26 - 2012-12-29 14:39 - 00000000 ____D C:\Users\Wissem\AppData\Local\NPE 2012-12-29 14:26 - 2012-12-29 14:26 - 02957840 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NPE.exe 2012-12-29 14:23 - 2012-12-29 14:24 - 00001892 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk 2012-12-29 14:22 - 2012-12-29 14:23 - 00000000 ____D C:\Program Files\Common Files\Adobe 2012-12-29 13:52 - 2012-11-28 10:31 - 00260528 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe 2012-12-29 13:50 - 2012-11-28 10:35 - 00093640 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll 2012-12-29 13:50 - 2012-11-28 10:31 - 00174000 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe 2012-12-29 13:50 - 2012-11-28 10:31 - 00173992 ____A (Oracle Corporation) C:\Windows\System32\java.exe 2012-12-29 13:48 - 2012-12-29 13:50 - 00004574 ____A C:\Windows\System32\jupdate-1.7.0_10-b18.log 2012-12-29 13:38 - 2012-12-29 13:38 - 00896016 ____A (Oracle Corporation) C:\Users\Wissem\Downloads\chromeinstall-7u10.exe 2012-12-28 16:35 - 2012-12-28 16:35 - 00000000 ____D C:\Program Files\ESET 2012-12-28 16:04 - 2012-12-28 16:04 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\Malwarebytes 2012-12-28 16:04 - 2012-12-28 16:04 - 00000000 ____D C:\Users\All Users\Malwarebytes 2012-12-28 16:03 - 2012-12-28 16:03 - 10156344 ____A (Malwarebytes Corporation ) C:\Users\Wissem\Downloads\mbam-setup-1.70.0.1100.exe 2012-12-28 13:44 - 2012-12-28 14:09 - 00000000 ____D C:\Windows\erdnt 2012-12-28 00:43 - 2012-12-28 00:43 - 00000000 ____D C:\Users\Public\Documents\CrashDump 2012-12-27 22:59 - 2013-01-11 01:22 - 00000000 ____D C:\Users\Wissem\AppData\Local\CrashDumps 2012-12-27 22:22 - 2012-12-27 22:22 - 00001783 ____A C:\Users\Public\Desktop\Samsung Kies (Lite).lnk 2012-12-27 22:22 - 2012-12-27 22:22 - 00001773 ____A C:\Users\Public\Desktop\Samsung Kies.lnk 2012-12-27 21:59 - 2012-12-27 22:00 - 68037104 ____A (Samsung Electronics Co., Ltd. ) C:\Users\Wissem\Downloads\KiesSetup.exe 2012-12-26 03:05 - 2012-12-26 03:05 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log 2012-12-26 02:36 - 2012-09-20 05:35 - 00181344 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudmdm.sys 2012-12-26 02:36 - 2012-09-20 05:35 - 00083168 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudbus.sys 2012-12-23 03:36 - 2012-12-29 16:28 - 00000829 ____A C:\Users\Wissem\Desktop\Norton-Installationsdateien.lnk 2012-12-23 03:36 - 2012-12-23 03:36 - 00000000 ____D C:\Users\Public\Downloads\Norton 2012-12-23 03:22 - 2012-12-23 03:22 - 00007296 ____A C:\Users\All Users\N360BUOptions.ini 2012-12-23 03:19 - 2012-12-23 03:19 - 00916584 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NAVDownloader.exe 2012-12-21 03:01 - 2012-12-16 14:12 - 00034304 ____A (Adobe Systems) C:\Windows\System32\atmlib.dll 2012-12-21 03:01 - 2012-12-16 11:50 - 00293376 ____A (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll ==================== One Month Modified Files and Folders ======== 2013-01-19 12:38 - 2013-01-19 12:38 - 00000000 ____D C:\FRST 2013-01-19 12:33 - 2009-05-13 16:14 - 01320794 ____A C:\Windows\WindowsUpdate.log 2013-01-19 12:33 - 2006-11-02 14:01 - 00032610 ____A C:\Windows\Tasks\SCHEDLGU.TXT 2013-01-19 12:33 - 2006-11-02 14:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-01-19 12:33 - 2006-11-02 13:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2013-01-19 12:33 - 2006-11-02 13:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2013-01-19 12:27 - 2013-01-19 12:27 - 00142520 ____A C:\Windows\Minidump\Mini011913-07.dmp 2013-01-19 12:27 - 2010-02-10 14:50 - 00001094 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-01-19 12:27 - 2009-05-22 05:12 - 00000000 ____D C:\Windows\Minidump 2013-01-19 12:26 - 2009-05-22 05:11 - 341416561 ____A C:\Windows\MEMORY.DMP 2013-01-19 12:09 - 2008-01-21 08:16 - 01606662 ____A C:\Windows\System32\PerfStringBackup.INI 2013-01-19 12:05 - 2011-01-23 01:40 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1190657541-1879476424-4156719937-1003UA.job 2013-01-19 12:04 - 2010-02-10 14:50 - 00001098 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-01-19 11:53 - 2013-01-19 11:53 - 00014452 ____A C:\Users\Wissem\Downloads\CBEB.tmp 2013-01-19 11:53 - 2013-01-19 11:52 - 00909506 ____A (Farbar) C:\Users\Wissem\Downloads\FRST.exe 2013-01-19 04:28 - 2013-01-19 04:28 - 06260632 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NRnR (1).exe 2013-01-19 04:27 - 2013-01-19 04:27 - 06258072 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NRnR.exe 2013-01-19 04:16 - 2013-01-19 04:16 - 00142520 ____A C:\Windows\Minidump\Mini011913-06.dmp 2013-01-19 04:07 - 2013-01-19 04:07 - 00142520 ____A C:\Windows\Minidump\Mini011913-05.dmp 2013-01-19 04:04 - 2010-04-08 09:45 - 00026112 ____A C:\Users\Wissem\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-01-19 03:56 - 2013-01-19 03:56 - 00142520 ____A C:\Windows\Minidump\Mini011913-04.dmp 2013-01-19 03:31 - 2013-01-19 03:31 - 00142520 ____A C:\Windows\Minidump\Mini011913-03.dmp 2013-01-19 01:43 - 2013-01-19 01:43 - 00142520 ____A C:\Windows\Minidump\Mini011913-02.dmp 2013-01-19 01:16 - 2013-01-19 01:16 - 00142520 ____A C:\Windows\Minidump\Mini011913-01.dmp 2013-01-19 01:15 - 2008-01-21 03:47 - 01598020 ____A C:\Windows\PFRO.log 2013-01-17 13:58 - 2013-01-17 13:58 - 00142520 ____A C:\Windows\Minidump\Mini011713-03.dmp 2013-01-17 13:18 - 2013-01-17 13:17 - 00000000 ____D C:\Program Files\Debugging Tools for Windows (x86) 2013-01-17 13:16 - 2013-01-17 13:16 - 17666048 ____A C:\Users\Wissem\Downloads\dbg_x86_6.10.3.233.msi 2013-01-17 13:04 - 2013-01-17 13:03 - 00142520 ____A C:\Windows\Minidump\Mini011713-02.dmp 2013-01-17 12:56 - 2013-01-17 12:56 - 00142520 ____A C:\Windows\Minidump\Mini011713-01.dmp 2013-01-17 12:54 - 2009-05-13 16:18 - 00002032 ____A C:\Users\Wissem\AppData\Local\d3d9caps.dat 2013-01-17 12:43 - 2011-08-12 01:11 - 00000000 ____D C:\users\Gast 2013-01-17 12:43 - 2009-05-13 16:18 - 00000000 ____D C:\users\Wissem 2013-01-17 12:43 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\System32\spool 2013-01-17 12:43 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\System32\Msdtc 2013-01-17 12:43 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration 2013-01-17 12:43 - 2006-11-02 11:22 - 62652416 ____A C:\Windows\System32\config\software_previous 2013-01-17 12:43 - 2006-11-02 11:22 - 30670848 ____A C:\Windows\System32\config\system_previous 2013-01-17 12:30 - 2006-11-02 11:22 - 00262144 ____A C:\Windows\System32\config\security_previous 2013-01-17 12:30 - 2006-11-02 11:22 - 00262144 ____A C:\Windows\System32\config\sam_previous 2013-01-17 12:29 - 2006-11-02 11:22 - 37224448 ____A C:\Windows\System32\config\components_previous 2013-01-17 12:29 - 2006-11-02 11:22 - 00786432 ____A C:\Windows\System32\config\default_previous 2013-01-17 11:19 - 2013-01-17 11:19 - 17666048 ____A C:\Users\Wissem\Downloads\Nicht bestätigt 449985.crdownload 2013-01-17 09:48 - 2013-01-17 09:47 - 00004097 ____A C:\Windows\System32\jupdate-1.7.0_11-b21.log 2013-01-17 09:48 - 2008-10-23 13:39 - 00000000 ____D C:\Program Files\Java 2013-01-13 19:12 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET 2013-01-12 07:13 - 2013-01-12 07:13 - 00000828 ____A C:\Users\Wissem\Desktop\PhotoScape.lnk 2013-01-12 07:13 - 2012-05-26 14:00 - 00000000 ____D C:\Program Files\PhotoScape 2013-01-12 07:01 - 2013-01-12 07:01 - 21322864 ____A (Mooii) C:\Users\Wissem\Downloads\PhotoScape_V3.6.3.exe 2013-01-12 06:54 - 2013-01-12 06:06 - 00000000 ____D C:\Users\Wissem\Documents\Steuerfälle 2013-01-12 06:05 - 2013-01-12 06:05 - 00000000 ____D C:\Users\Wissem\AppData\Local\AAV 2013-01-12 06:03 - 2013-01-12 05:53 - 00002094 ____A C:\Users\Public\Desktop\Steuer-Spar- Erklärung 2013.lnk 2013-01-12 06:01 - 2013-01-12 05:37 - 00000000 ____D C:\Users\All Users\AAV 2013-01-12 05:55 - 2013-01-12 05:39 - 00000000 ____D C:\Program Files\Akademische Arbeitsgemeinschaft 2013-01-12 04:11 - 2013-01-12 04:10 - 00142520 ____A C:\Windows\Minidump\Mini011213-01.dmp 2013-01-11 21:05 - 2011-01-23 01:40 - 00001072 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1190657541-1879476424-4156719937-1003Core.job 2013-01-11 19:57 - 2012-12-29 16:29 - 00000000 ____D C:\Windows\System32\Drivers\NST 2013-01-11 01:22 - 2012-12-27 22:59 - 00000000 ____D C:\Users\Wissem\AppData\Local\CrashDumps 2013-01-10 04:09 - 2012-11-17 13:26 - 00001191 ____A C:\Users\Wissem\Desktop\Free YouTube to MP3 Converter.lnk 2013-01-10 04:08 - 2013-01-10 04:08 - 00000000 ____D C:\Program Files\DVDVideoSoft 2013-01-10 04:08 - 2013-01-10 04:08 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft 2013-01-10 04:08 - 2011-08-19 04:15 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\DVDVideoSoft 2013-01-10 03:38 - 2013-01-10 03:38 - 25028024 ____A (DVDVideoSoft Ltd. ) C:\Users\Wissem\Downloads\FreeYouTubeToMP3Converter (1).exe 2013-01-09 19:47 - 2006-11-02 13:47 - 00404440 ____A C:\Windows\System32\FNTCACHE.DAT 2013-01-09 19:27 - 2008-11-29 10:06 - 00000000 ____D C:\Users\All Users\Microsoft Help 2013-01-09 19:02 - 2006-11-02 11:24 - 65273848 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe 2013-01-08 11:33 - 2012-12-07 23:08 - 00000000 ____D C:\Users\Wissem\Downloads\moni 2013-01-04 00:03 - 2011-05-01 12:28 - 00000000 ____D C:\Users\Wissem\Desktop\Uni 2013-01-01 01:52 - 2010-12-01 20:11 - 00000000 ____D C:\Users\Wissem\Desktop\wiss Hausi 2012-12-30 04:00 - 2008-10-23 13:38 - 00000000 ____D C:\Users\All Users\Adobe 2012-12-30 03:58 - 2009-05-13 22:26 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\Adobe 2012-12-29 16:48 - 2012-12-29 16:48 - 00000000 ____D C:\Users\Wissem\Desktop\ESET 2012-12-29 16:36 - 2009-05-13 19:02 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared 2012-12-29 16:32 - 2012-12-29 16:32 - 00000000 ____D C:\Users\Wissem\Documents\Symantec 2012-12-29 16:32 - 2010-04-29 11:40 - 00000000 ____D C:\Users\All Users\Norton 2012-12-29 16:29 - 2012-12-29 16:29 - 00142496 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS 2012-12-29 16:29 - 2012-12-29 16:29 - 00007446 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT 2012-12-29 16:29 - 2012-12-29 16:29 - 00002125 ____A C:\Users\Public\Desktop\Norton AntiVirus.lnk 2012-12-29 16:29 - 2012-12-29 16:29 - 00000000 ____D C:\Program Files\Symantec 2012-12-29 16:29 - 2012-12-29 16:29 - 00000000 ____D C:\Program Files\Norton Identity Safe 2012-12-29 16:28 - 2012-12-29 16:28 - 00000000 ____D C:\Windows\System32\Drivers\NAV 2012-12-29 16:28 - 2012-12-29 16:28 - 00000000 ____D C:\Program Files\Norton AntiVirus 2012-12-29 16:28 - 2012-12-23 03:36 - 00000829 ____A C:\Users\Wissem\Desktop\Norton-Installationsdateien.lnk 2012-12-29 16:26 - 2012-12-29 16:26 - 00916600 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NAVDownloader (1).exe 2012-12-29 15:44 - 2012-12-29 15:44 - 00000735 ____A C:\DelFix[S2].txt 2012-12-29 15:43 - 2012-12-29 15:43 - 00001456 ____A C:\DelFix[S1].txt 2012-12-29 15:43 - 2012-12-29 15:43 - 00000620 ____A C:\DelFix[R1].txt 2012-12-29 14:39 - 2012-12-29 14:26 - 00000000 ____D C:\Users\Wissem\AppData\Local\NPE 2012-12-29 14:30 - 2012-12-29 14:30 - 00000000 ____D C:\Users\All Users\SMR311 2012-12-29 14:28 - 2012-12-29 14:28 - 00097440 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SMR311.SYS 2012-12-29 14:26 - 2012-12-29 14:26 - 02957840 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NPE.exe 2012-12-29 14:24 - 2012-12-29 14:23 - 00001892 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk 2012-12-29 14:23 - 2012-12-29 14:22 - 00000000 ____D C:\Program Files\Common Files\Adobe 2012-12-29 14:22 - 2009-05-13 22:52 - 00000000 ____D C:\Program Files\Adobe 2012-12-29 14:07 - 2009-05-13 16:18 - 00000000 ____D C:\Users\Wissem\AppData\Local\Adobe 2012-12-29 13:50 - 2012-12-29 13:48 - 00004574 ____A C:\Windows\System32\jupdate-1.7.0_10-b18.log 2012-12-29 13:38 - 2012-12-29 13:38 - 00896016 ____A (Oracle Corporation) C:\Users\Wissem\Downloads\chromeinstall-7u10.exe 2012-12-28 16:35 - 2012-12-28 16:35 - 00000000 ____D C:\Program Files\ESET 2012-12-28 16:21 - 2008-10-23 10:25 - 00000000 ____D C:\Windows\InstDrvs 2012-12-28 16:04 - 2012-12-28 16:04 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\Malwarebytes 2012-12-28 16:04 - 2012-12-28 16:04 - 00000000 ____D C:\Users\All Users\Malwarebytes 2012-12-28 16:03 - 2012-12-28 16:03 - 10156344 ____A (Malwarebytes Corporation ) C:\Users\Wissem\Downloads\mbam-setup-1.70.0.1100.exe 2012-12-28 15:58 - 2009-05-13 19:00 - 00000000 ____D C:\Users\All Users\T-Online 2012-12-28 15:58 - 2008-10-23 12:25 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2012-12-28 14:24 - 2008-10-23 13:39 - 00000000 ____D C:\Program Files\Google 2012-12-28 14:12 - 2006-11-02 12:18 - 00000000 __RHD C:\users\Default 2012-12-28 14:12 - 2006-11-02 12:18 - 00000000 ___RD C:\users\Public 2012-12-28 14:09 - 2012-12-28 13:44 - 00000000 ____D C:\Windows\erdnt 2012-12-28 14:07 - 2006-11-02 11:23 - 00000215 ____A C:\Windows\system.ini 2012-12-28 13:34 - 2008-10-23 13:39 - 00000000 ____D C:\Program Files\Common Files\Java 2012-12-28 13:30 - 2011-02-13 03:36 - 00000000 ____D C:\Program Files\Biet-O-Matic 2012-12-28 13:29 - 2011-02-13 03:37 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\BOM 2012-12-28 13:21 - 2009-05-13 16:18 - 00000000 ____D C:\Users\Wissem\AppData\Local\Google 2012-12-28 13:21 - 2008-11-29 10:00 - 00000000 ____D C:\Users\All Users\Google 2012-12-28 13:19 - 2011-02-19 12:21 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\Gutscheinmieze 2012-12-28 12:21 - 2010-04-15 19:57 - 00000000 ____D C:\Users\All Users\ICQ 2012-12-28 11:49 - 2010-04-15 19:55 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\ICQ 2012-12-28 00:43 - 2012-12-28 00:43 - 00000000 ____D C:\Users\Public\Documents\CrashDump 2012-12-28 00:43 - 2011-03-29 10:28 - 00000000 ____D C:\Users\Wissem\Documents\SelfMV 2012-12-27 22:23 - 2011-04-09 03:22 - 00000000 ____D C:\Users\Wissem\AppData\Local\Samsung 2012-12-27 22:22 - 2012-12-27 22:22 - 00001783 ____A C:\Users\Public\Desktop\Samsung Kies (Lite).lnk 2012-12-27 22:22 - 2012-12-27 22:22 - 00001773 ____A C:\Users\Public\Desktop\Samsung Kies.lnk 2012-12-27 22:18 - 2011-01-25 19:53 - 00000000 ____D C:\Users\All Users\Samsung 2012-12-27 22:05 - 2011-03-29 11:02 - 00000000 ____D C:\Users\Wissem\AppData\Local\Downloaded Installations 2012-12-27 22:00 - 2012-12-27 21:59 - 68037104 ____A (Samsung Electronics Co., Ltd. ) C:\Users\Wissem\Downloads\KiesSetup.exe 2012-12-27 21:48 - 2006-11-02 13:52 - 00135333 ____A C:\Windows\setupact.log 2012-12-26 03:05 - 2012-12-26 03:05 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log 2012-12-23 03:36 - 2012-12-23 03:36 - 00000000 ____D C:\Users\Public\Downloads\Norton 2012-12-23 03:33 - 2012-11-21 18:44 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2012-12-23 03:27 - 2009-05-13 19:02 - 00000000 ____D C:\Users\All Users\Symantec 2012-12-23 03:22 - 2012-12-23 03:22 - 00007296 ____A C:\Users\All Users\N360BUOptions.ini 2012-12-23 03:19 - 2012-12-23 03:19 - 00916584 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NAVDownloader.exe ==================== Known DLLs (Whitelisted) ================= ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2012-12-12 00:13] - [2012-08-21 12:47] - 0224640 ____A (Microsoft Corporation) 786DB5771F05EF300390399F626BF30A ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= Restore point made on: 2012-12-01 16:07:52 Restore point made on: 2012-12-12 01:41:33 Restore point made on: 2012-12-16 23:40:19 Restore point made on: 2012-12-21 03:01:22 Restore point made on: 2012-12-26 02:37:37 Restore point made on: 2012-12-26 02:38:53 Restore point made on: 2012-12-26 02:40:57 Restore point made on: 2012-12-26 02:42:48 Restore point made on: 2012-12-26 02:44:10 Restore point made on: 2012-12-26 02:45:36 Restore point made on: 2012-12-26 02:46:46 Restore point made on: 2012-12-26 02:47:55 Restore point made on: 2012-12-26 02:49:10 Restore point made on: 2012-12-26 02:51:50 Restore point made on: 2012-12-26 02:54:15 Restore point made on: 2012-12-26 02:56:23 Restore point made on: 2012-12-26 02:59:55 Restore point made on: 2012-12-26 03:01:15 Restore point made on: 2012-12-26 04:33:50 Restore point made on: 2012-12-26 17:28:02 Restore point made on: 2012-12-27 22:07:52 Restore point made on: 2012-12-27 22:16:37 Restore point made on: 2012-12-28 13:15:29 Restore point made on: 2012-12-28 13:19:41 Restore point made on: 2012-12-28 13:33:27 Restore point made on: 2012-12-28 13:35:03 Restore point made on: 2012-12-28 14:50:10 Restore point made on: 2012-12-29 13:48:32 Restore point made on: 2012-12-29 13:52:03 Restore point made on: 2012-12-29 14:06:19 Restore point made on: 2012-12-29 14:09:52 Restore point made on: 2012-12-29 14:12:59 Restore point made on: 2012-12-29 14:14:29 Restore point made on: 2012-12-29 17:02:59 Restore point made on: 2013-01-09 19:01:30 Restore point made on: 2013-01-12 05:38:46 Restore point made on: 2013-01-12 05:54:35 Restore point made on: 2013-01-12 18:48:42 Restore point made on: 2013-01-17 09:47:05 Restore point made on: 2013-01-17 13:17:42 ==================== Memory info =========================== Percentage of memory in use: 11% Total physical RAM: 4062.13 MB Available physical RAM: 3587.49 MB Total Pagefile: 3817.3 MB Available Pagefile: 3662.42 MB Total Virtual: 2047.88 MB Available Virtual: 1966.3 MB ==================== Partitions ============================= 1 Drive c: () (Fixed) (Total:288.28 GB) (Free:118.92 GB) NTFS ==>[Drive with boot components (obtained from BCD)] 3 Drive e: (Recovery) (Fixed) (Total:9.81 GB) (Free:0.84 GB) NTFS ==>[System with boot components (obtained from reading drive)] 6 Drive h: (WD MediaCtr) (Fixed) (Total:298.01 GB) (Free:195.74 GB) FAT32 7 Drive i: () (Removable) (Total:0.12 GB) (Free:0.1 GB) FAT 8 Drive x: (Boot) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS Datentr ### Status Gr”áe Frei Dyn GPT -------- ---------- ------- ------- --- --- 0 Online 298 GB 0 B 1 Kein Mediu 0 B 0 B 2 Kein Mediu 0 B 0 B 3 Online 298 GB 8 MB 4 Online 123 MB 0 B Last Boot: 2013-01-19 12:33 ==================== End Of Log ============================ war meine alternative lösung mit mobiler festplatte ok? hier der scan...das frst.txt sagt folgendes: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-01-2013 Ran by SYSTEM at 19-01-2013 12:38:51 Running from H:\ Windows Vista (TM) Home Premium Service Pack 1 (X86) OS Language: German Standard The current controlset is ControlSet001 ==================== Registry (Whitelisted) =================== HKLM\...\Run: [RtHDVCpl] RtHDVCpl.exe [x] HKLM\...\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [835584 2007-03-10] (Synaptics, Inc.) HKLM\...\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup [30192 2010-08-25] (Google) HKLM\...\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe" [317280 2008-04-03] (Sony Corporation) HKLM\...\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe [24576 2008-11-29] (Sony Corporation) HKLM\...\Run: [Skytel] Skytel.exe [x] HKLM\...\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [61440 2009-05-15] (Advanced Micro Devices, Inc.) HKLM\...\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [599328 2010-03-24] (Sony Corporation) HKLM\...\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [79192 2011-02-18] (Research In Motion Limited) HKLM\...\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun [618496 2010-06-07] () HKLM\...\Run: [PDFPrint] C:\Program Files\pdf24\pdf24.exe [220744 2012-02-03] (Geek Software GmbH) HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2011-10-24] (Apple Inc.) HKLM\...\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [310280 2012-12-20] (Samsung Electronics Co., Ltd.) HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-03] (Adobe Systems Incorporated) HKU\Default\...\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [x] HKU\Default\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [270336 2008-11-05] (Sony Corporation) HKU\Default User\...\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [x] HKU\Default User\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [270336 2008-11-05] (Sony Corporation) HKU\Gast\...\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [x] HKU\Gast\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [270336 2008-11-05] (Sony Corporation) HKU\Gast\...\Run: [Google Update] "C:\Users\Gast\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2011-11-09] (Google Inc.) HKU\Gast\...\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844296 2012-12-20] (Samsung) HKU\Gast\...\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background [4280184 2012-03-08] (Microsoft Corporation) HKU\Wissem\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [270336 2008-11-05] (Sony Corporation) HKU\Wissem\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation) HKU\Wissem\...\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" [247728 2012-01-23] (TomTom) HKU\Wissem\...\Run: [doubleTwist] C:\Program Files\doubleTwist 2.0\DoubleTwist.DeviceHelper.exe [24576 2010-09-18] (doubleTwist Corporation) HKU\Wissem\...\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [310280 2012-12-20] (Samsung Electronics Co., Ltd.) HKU\Wissem\...\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload [1476104 2012-12-20] (Samsung) HKU\Wissem\...\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup [578560 2012-12-18] (Samsung Electronics) Winlogon\Notify\igfxcui: igfxdev.dll [X] Winlogon\Notify\VESWinlogon: VESWinlogon.dll (Sony Corporation) AppInit_DLLs: c:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll ==================== Services (Whitelisted) =================== 2 AAV UpdateService; "C:\Program Files\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe" [128296 2008-10-24] () 3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) 2 dgdersvc; C:\Windows\system32\dgdersvc.exe [95568 2010-09-06] (Devguru Co., Ltd.) 3 GoogleDesktopManager-051210-111108; "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [30192 2010-08-25] (Google) 3 MozillaMaintenance; "C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe" [115168 2012-12-15] (Mozilla Foundation) 3 MSSQL$MSSMLBIZ; "C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ [29293408 2010-12-10] (Microsoft Corporation) 2 NAV; "C:\Program Files\Norton AntiVirus\Engine\20.2.0.19\ccSvcHst.exe" /s "NAV" /m "C:\Program Files\Norton AntiVirus\Engine\20.2.0.19\diMaster.dll" /prefetch:1 [535416 2012-10-11] (Symantec Corporation) 2 NCO; "C:\Program Files\Norton Identity Safe\Engine\2013.2.1.33\ccSvcHst.exe" /s "NCO" /m "C:\Program Files\Norton Identity Safe\Engine\2013.2.1.33\diMaster.dll" /prefetch:1 [535416 2012-12-05] (Symantec Corporation) 2 NMSAccess; C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096 2010-03-04] () 2 NvcRpcServer; "C:\Program Files\Nortel Networks\NvcRpcSvr.exe" [71176 2007-04-09] (Nortel Networks NA, Inc.) 3 SOHCImp; "C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe" [103712 2008-10-21] (Sony Corporation) 3 SOHDms; "C:\Program Files\Sony\VAIO Media plus\SOHDms.exe" [353568 2008-10-21] (Sony Corporation) 3 SOHDs; "C:\Program Files\Sony\VAIO Media plus\SOHDs.exe" [62752 2008-10-21] (Sony Corporation) 2 uCamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.) 3 VAIO Entertainment TV Device Arbitration Service; "C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe" [69632 2009-03-05] (Sony Corporation) 2 VCFw; "C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe" [5189992 2009-03-05] (Sony Corporation) 3 VcmIAlzMgr; "C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe" [480624 2009-09-16] (Sony Corporation) 3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe -RunBySCM [313264 2009-03-05] (Sony Corporation) 3 VUAgent; "C:\Program Files\Sony\VAIO Update Common\VUAgent.exe" [1086568 2011-09-23] (Sony Corporation) 2 VzCdbSvc; "C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe" [192512 2009-03-05] (Sony Corporation) 3 MSCSPTISRV; "C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe" [x] 3 SPTISRV; "C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe" [x] ==================== Drivers (Whitelisted) ==================== 3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [17920 2008-04-24] (ArcSoft, Inc.) 1 BHDrvx86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\BASHDefs\20130107.001\BHDrvx86.sys [995488 2012-11-30] (Symantec Corporation) 1 ccSet_NAV; C:\Windows\system32\drivers\NAV\1402000.013\ccSetx86.sys [134304 2012-10-03] (Symantec Corporation) 1 ccSet_NST; C:\Windows\system32\drivers\NST\7DD02010.021\ccSetx86.sys [134304 2012-08-20] (Symantec Corporation) 3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [18120 2010-09-06] (Devguru Co., Ltd) 3 Eacfilt; C:\Windows\System32\DRIVERS\eacfilt.sys [31784 2007-04-09] (Nortel Networks) 1 eeCtrl; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376480 2012-12-21] (Symantec Corporation) 3 EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [106656 2012-12-21] (Symantec Corporation) 3 FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [36640 2010-09-06] () 1 IDSVix86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\IPSDefs\20130111.002\IDSvix86.sys [386720 2012-12-28] (Symantec Corporation) 2 iPodDrv; \??\C:\Windows\system32\drivers\iPodDrv.sys [6656 2010-03-10] (Windows (R) Codename Longhorn DDK provider) 3 IPSECEXT; C:\Windows\System32\DRIVERS\ipsecw2k.sys [148232 2007-04-09] (Nortel Networks NA, Inc.) 3 IPSECSHM; C:\Windows\System32\DRIVERS\ipsecw2k.sys [148232 2007-04-09] (Nortel Networks NA, Inc.) 2 n5lpt.sys; \??\C:\Windows\system32\Drivers\n5lpt.sys [21196 2007-11-30] (Number Five Software) 3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\VirusDefs\20130118.022\NAVENG.SYS [93296 2013-01-19] (Symantec Corporation) 3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\VirusDefs\20130118.022\NAVEX15.SYS [1603824 2013-01-19] (Symantec Corporation) 3 SipIMNDI; C:\Windows\System32\DRIVERS\SipIMNDI.sys [24352 2009-10-15] (T-Systems International GmbH) 0 SMR311; C:\Windows\System32\drivers\SMR311.SYS [97440 2012-12-29] (Symantec Corporation) 3 SRTSP; C:\Windows\system32\drivers\NAV\1402000.013\SRTSP.SYS [586400 2012-10-08] (Symantec Corporation) 1 SRTSPX; C:\Windows\system32\drivers\NAV\1402000.013\SRTSPX.SYS [32888 2012-09-06] (Symantec Corporation) 3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [7168 2009-11-12] () 2 Stld; C:\Windows\System32\Drivers\Stld.sys [10240 2009-04-22] (Number Five Software) 0 SymDS; C:\Windows\System32\drivers\NAV\1402000.013\SYMDS.SYS [368288 2012-10-03] (Symantec Corporation) 0 SymEFA; C:\Windows\System32\drivers\NAV\1402000.013\SYMEFA.SYS [927904 2012-10-03] (Symantec Corporation) 3 SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [142496 2012-12-29] (Symantec Corporation) 1 SymIRON; C:\Windows\system32\drivers\NAV\1402000.013\Ironx86.SYS [175264 2012-09-06] (Symantec Corporation) 1 SYMTDIv; C:\Windows\system32\drivers\NAV\1402000.013\SYMTDIV.SYS [350368 2012-09-06] (Symantec Corporation) 3 catchme; \??\C:\Users\Wissem\AppData\Local\Temp\catchme.sys [x] 2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [x] 3 igfx; C:\Windows\System32\DRIVERS\igdkmd32.sys [x] 3 IpInIp; C:\Windows\System32\DRIVERS\ipinip.sys [x] 3 NwlnkFlt; C:\Windows\System32\DRIVERS\nwlnkflt.sys [x] 3 NwlnkFwd; C:\Windows\System32\DRIVERS\nwlnkfwd.sys [x] 4 UIUSys; C:\Windows\System32\DRIVERS\UIUSYS.SYS [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-01-19 12:27 - 2013-01-19 12:27 - 00142520 ____A C:\Windows\Minidump\Mini011913-07.dmp 2013-01-19 11:53 - 2013-01-19 11:53 - 00014452 ____A C:\Users\Wissem\Downloads\CBEB.tmp 2013-01-19 11:52 - 2013-01-19 11:53 - 00909506 ____A (Farbar) C:\Users\Wissem\Downloads\FRST.exe 2013-01-19 04:28 - 2013-01-19 04:28 - 06260632 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NRnR (1).exe 2013-01-19 04:27 - 2013-01-19 04:27 - 06258072 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NRnR.exe 2013-01-19 04:16 - 2013-01-19 04:16 - 00142520 ____A C:\Windows\Minidump\Mini011913-06.dmp 2013-01-19 04:07 - 2013-01-19 04:07 - 00142520 ____A C:\Windows\Minidump\Mini011913-05.dmp 2013-01-19 03:56 - 2013-01-19 03:56 - 00142520 ____A C:\Windows\Minidump\Mini011913-04.dmp 2013-01-19 03:31 - 2013-01-19 03:31 - 00142520 ____A C:\Windows\Minidump\Mini011913-03.dmp 2013-01-19 01:43 - 2013-01-19 01:43 - 00142520 ____A C:\Windows\Minidump\Mini011913-02.dmp 2013-01-19 01:16 - 2013-01-19 01:16 - 00142520 ____A C:\Windows\Minidump\Mini011913-01.dmp 2013-01-17 13:58 - 2013-01-17 13:58 - 00142520 ____A C:\Windows\Minidump\Mini011713-03.dmp 2013-01-17 13:17 - 2013-01-17 13:18 - 00000000 ____D C:\Program Files\Debugging Tools for Windows (x86) 2013-01-17 13:16 - 2013-01-17 13:16 - 17666048 ____A C:\Users\Wissem\Downloads\dbg_x86_6.10.3.233.msi 2013-01-17 13:03 - 2013-01-17 13:04 - 00142520 ____A C:\Windows\Minidump\Mini011713-02.dmp 2013-01-17 12:56 - 2013-01-17 12:56 - 00142520 ____A C:\Windows\Minidump\Mini011713-01.dmp 2013-01-17 11:19 - 2013-01-17 11:19 - 17666048 ____A C:\Users\Wissem\Downloads\Nicht bestätigt 449985.crdownload 2013-01-17 09:47 - 2013-01-17 09:48 - 00004097 ____A C:\Windows\System32\jupdate-1.7.0_11-b21.log 2013-01-12 07:13 - 2013-01-12 07:13 - 00000828 ____A C:\Users\Wissem\Desktop\PhotoScape.lnk 2013-01-12 07:01 - 2013-01-12 07:01 - 21322864 ____A (Mooii) C:\Users\Wissem\Downloads\PhotoScape_V3.6.3.exe 2013-01-12 06:06 - 2013-01-12 06:54 - 00000000 ____D C:\Users\Wissem\Documents\Steuerfälle 2013-01-12 06:05 - 2013-01-12 06:05 - 00000000 ____D C:\Users\Wissem\AppData\Local\AAV 2013-01-12 05:53 - 2013-01-12 06:03 - 00002094 ____A C:\Users\Public\Desktop\Steuer-Spar- Erklärung 2013.lnk 2013-01-12 05:39 - 2013-01-12 05:55 - 00000000 ____D C:\Program Files\Akademische Arbeitsgemeinschaft 2013-01-12 05:37 - 2013-01-12 06:01 - 00000000 ____D C:\Users\All Users\AAV 2013-01-12 04:10 - 2013-01-12 04:11 - 00142520 ____A C:\Windows\Minidump\Mini011213-01.dmp 2013-01-10 04:08 - 2013-01-10 04:08 - 00000000 ____D C:\Program Files\DVDVideoSoft 2013-01-10 04:08 - 2013-01-10 04:08 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft 2013-01-10 03:38 - 2013-01-10 03:38 - 25028024 ____A (DVDVideoSoft Ltd. ) C:\Users\Wissem\Downloads\FreeYouTubeToMP3Converter (1).exe 2013-01-09 17:53 - 2012-11-23 02:35 - 02048000 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys 2013-01-09 17:52 - 2012-11-20 05:22 - 00204288 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll 2013-01-09 17:52 - 2012-11-02 11:19 - 01400832 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll 2012-12-29 16:48 - 2012-12-29 16:48 - 00000000 ____D C:\Users\Wissem\Desktop\ESET 2012-12-29 16:32 - 2012-12-29 16:32 - 00000000 ____D C:\Users\Wissem\Documents\Symantec 2012-12-29 16:29 - 2013-01-11 19:57 - 00000000 ____D C:\Windows\System32\Drivers\NST 2012-12-29 16:29 - 2012-12-29 16:29 - 00142496 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS 2012-12-29 16:29 - 2012-12-29 16:29 - 00007446 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT 2012-12-29 16:29 - 2012-12-29 16:29 - 00002125 ____A C:\Users\Public\Desktop\Norton AntiVirus.lnk 2012-12-29 16:29 - 2012-12-29 16:29 - 00000000 ____D C:\Program Files\Symantec 2012-12-29 16:29 - 2012-12-29 16:29 - 00000000 ____D C:\Program Files\Norton Identity Safe 2012-12-29 16:28 - 2012-12-29 16:28 - 00000000 ____D C:\Windows\System32\Drivers\NAV 2012-12-29 16:28 - 2012-12-29 16:28 - 00000000 ____D C:\Program Files\Norton AntiVirus 2012-12-29 16:26 - 2012-12-29 16:26 - 00916600 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NAVDownloader (1).exe 2012-12-29 15:44 - 2012-12-29 15:44 - 00000735 ____A C:\DelFix[S2].txt 2012-12-29 15:43 - 2012-12-29 15:43 - 00001456 ____A C:\DelFix[S1].txt 2012-12-29 15:43 - 2012-12-29 15:43 - 00000620 ____A C:\DelFix[R1].txt 2012-12-29 14:30 - 2012-12-29 14:30 - 00000000 ____D C:\Users\All Users\SMR311 2012-12-29 14:28 - 2012-12-29 14:28 - 00097440 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SMR311.SYS 2012-12-29 14:26 - 2012-12-29 14:39 - 00000000 ____D C:\Users\Wissem\AppData\Local\NPE 2012-12-29 14:26 - 2012-12-29 14:26 - 02957840 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NPE.exe 2012-12-29 14:23 - 2012-12-29 14:24 - 00001892 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk 2012-12-29 14:22 - 2012-12-29 14:23 - 00000000 ____D C:\Program Files\Common Files\Adobe 2012-12-29 13:52 - 2012-11-28 10:31 - 00260528 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe 2012-12-29 13:50 - 2012-11-28 10:35 - 00093640 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll 2012-12-29 13:50 - 2012-11-28 10:31 - 00174000 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe 2012-12-29 13:50 - 2012-11-28 10:31 - 00173992 ____A (Oracle Corporation) C:\Windows\System32\java.exe 2012-12-29 13:48 - 2012-12-29 13:50 - 00004574 ____A C:\Windows\System32\jupdate-1.7.0_10-b18.log 2012-12-29 13:38 - 2012-12-29 13:38 - 00896016 ____A (Oracle Corporation) C:\Users\Wissem\Downloads\chromeinstall-7u10.exe 2012-12-28 16:35 - 2012-12-28 16:35 - 00000000 ____D C:\Program Files\ESET 2012-12-28 16:04 - 2012-12-28 16:04 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\Malwarebytes 2012-12-28 16:04 - 2012-12-28 16:04 - 00000000 ____D C:\Users\All Users\Malwarebytes 2012-12-28 16:03 - 2012-12-28 16:03 - 10156344 ____A (Malwarebytes Corporation ) C:\Users\Wissem\Downloads\mbam-setup-1.70.0.1100.exe 2012-12-28 13:44 - 2012-12-28 14:09 - 00000000 ____D C:\Windows\erdnt 2012-12-28 00:43 - 2012-12-28 00:43 - 00000000 ____D C:\Users\Public\Documents\CrashDump 2012-12-27 22:59 - 2013-01-11 01:22 - 00000000 ____D C:\Users\Wissem\AppData\Local\CrashDumps 2012-12-27 22:22 - 2012-12-27 22:22 - 00001783 ____A C:\Users\Public\Desktop\Samsung Kies (Lite).lnk 2012-12-27 22:22 - 2012-12-27 22:22 - 00001773 ____A C:\Users\Public\Desktop\Samsung Kies.lnk 2012-12-27 21:59 - 2012-12-27 22:00 - 68037104 ____A (Samsung Electronics Co., Ltd. ) C:\Users\Wissem\Downloads\KiesSetup.exe 2012-12-26 03:05 - 2012-12-26 03:05 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log 2012-12-26 02:36 - 2012-09-20 05:35 - 00181344 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudmdm.sys 2012-12-26 02:36 - 2012-09-20 05:35 - 00083168 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudbus.sys 2012-12-23 03:36 - 2012-12-29 16:28 - 00000829 ____A C:\Users\Wissem\Desktop\Norton-Installationsdateien.lnk 2012-12-23 03:36 - 2012-12-23 03:36 - 00000000 ____D C:\Users\Public\Downloads\Norton 2012-12-23 03:22 - 2012-12-23 03:22 - 00007296 ____A C:\Users\All Users\N360BUOptions.ini 2012-12-23 03:19 - 2012-12-23 03:19 - 00916584 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NAVDownloader.exe 2012-12-21 03:01 - 2012-12-16 14:12 - 00034304 ____A (Adobe Systems) C:\Windows\System32\atmlib.dll 2012-12-21 03:01 - 2012-12-16 11:50 - 00293376 ____A (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll ==================== One Month Modified Files and Folders ======== 2013-01-19 12:38 - 2013-01-19 12:38 - 00000000 ____D C:\FRST 2013-01-19 12:33 - 2009-05-13 16:14 - 01320794 ____A C:\Windows\WindowsUpdate.log 2013-01-19 12:33 - 2006-11-02 14:01 - 00032610 ____A C:\Windows\Tasks\SCHEDLGU.TXT 2013-01-19 12:33 - 2006-11-02 14:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-01-19 12:33 - 2006-11-02 13:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2013-01-19 12:33 - 2006-11-02 13:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2013-01-19 12:27 - 2013-01-19 12:27 - 00142520 ____A C:\Windows\Minidump\Mini011913-07.dmp 2013-01-19 12:27 - 2010-02-10 14:50 - 00001094 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-01-19 12:27 - 2009-05-22 05:12 - 00000000 ____D C:\Windows\Minidump 2013-01-19 12:26 - 2009-05-22 05:11 - 341416561 ____A C:\Windows\MEMORY.DMP 2013-01-19 12:09 - 2008-01-21 08:16 - 01606662 ____A C:\Windows\System32\PerfStringBackup.INI 2013-01-19 12:05 - 2011-01-23 01:40 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1190657541-1879476424-4156719937-1003UA.job 2013-01-19 12:04 - 2010-02-10 14:50 - 00001098 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-01-19 11:53 - 2013-01-19 11:53 - 00014452 ____A C:\Users\Wissem\Downloads\CBEB.tmp 2013-01-19 11:53 - 2013-01-19 11:52 - 00909506 ____A (Farbar) C:\Users\Wissem\Downloads\FRST.exe 2013-01-19 04:28 - 2013-01-19 04:28 - 06260632 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NRnR (1).exe 2013-01-19 04:27 - 2013-01-19 04:27 - 06258072 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NRnR.exe 2013-01-19 04:16 - 2013-01-19 04:16 - 00142520 ____A C:\Windows\Minidump\Mini011913-06.dmp 2013-01-19 04:07 - 2013-01-19 04:07 - 00142520 ____A C:\Windows\Minidump\Mini011913-05.dmp 2013-01-19 04:04 - 2010-04-08 09:45 - 00026112 ____A C:\Users\Wissem\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-01-19 03:56 - 2013-01-19 03:56 - 00142520 ____A C:\Windows\Minidump\Mini011913-04.dmp 2013-01-19 03:31 - 2013-01-19 03:31 - 00142520 ____A C:\Windows\Minidump\Mini011913-03.dmp 2013-01-19 01:43 - 2013-01-19 01:43 - 00142520 ____A C:\Windows\Minidump\Mini011913-02.dmp 2013-01-19 01:16 - 2013-01-19 01:16 - 00142520 ____A C:\Windows\Minidump\Mini011913-01.dmp 2013-01-19 01:15 - 2008-01-21 03:47 - 01598020 ____A C:\Windows\PFRO.log 2013-01-17 13:58 - 2013-01-17 13:58 - 00142520 ____A C:\Windows\Minidump\Mini011713-03.dmp 2013-01-17 13:18 - 2013-01-17 13:17 - 00000000 ____D C:\Program Files\Debugging Tools for Windows (x86) 2013-01-17 13:16 - 2013-01-17 13:16 - 17666048 ____A C:\Users\Wissem\Downloads\dbg_x86_6.10.3.233.msi 2013-01-17 13:04 - 2013-01-17 13:03 - 00142520 ____A C:\Windows\Minidump\Mini011713-02.dmp 2013-01-17 12:56 - 2013-01-17 12:56 - 00142520 ____A C:\Windows\Minidump\Mini011713-01.dmp 2013-01-17 12:54 - 2009-05-13 16:18 - 00002032 ____A C:\Users\Wissem\AppData\Local\d3d9caps.dat 2013-01-17 12:43 - 2011-08-12 01:11 - 00000000 ____D C:\users\Gast 2013-01-17 12:43 - 2009-05-13 16:18 - 00000000 ____D C:\users\Wissem 2013-01-17 12:43 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\System32\spool 2013-01-17 12:43 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\System32\Msdtc 2013-01-17 12:43 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration 2013-01-17 12:43 - 2006-11-02 11:22 - 62652416 ____A C:\Windows\System32\config\software_previous 2013-01-17 12:43 - 2006-11-02 11:22 - 30670848 ____A C:\Windows\System32\config\system_previous 2013-01-17 12:30 - 2006-11-02 11:22 - 00262144 ____A C:\Windows\System32\config\security_previous 2013-01-17 12:30 - 2006-11-02 11:22 - 00262144 ____A C:\Windows\System32\config\sam_previous 2013-01-17 12:29 - 2006-11-02 11:22 - 37224448 ____A C:\Windows\System32\config\components_previous 2013-01-17 12:29 - 2006-11-02 11:22 - 00786432 ____A C:\Windows\System32\config\default_previous 2013-01-17 11:19 - 2013-01-17 11:19 - 17666048 ____A C:\Users\Wissem\Downloads\Nicht bestätigt 449985.crdownload 2013-01-17 09:48 - 2013-01-17 09:47 - 00004097 ____A C:\Windows\System32\jupdate-1.7.0_11-b21.log 2013-01-17 09:48 - 2008-10-23 13:39 - 00000000 ____D C:\Program Files\Java 2013-01-13 19:12 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET 2013-01-12 07:13 - 2013-01-12 07:13 - 00000828 ____A C:\Users\Wissem\Desktop\PhotoScape.lnk 2013-01-12 07:13 - 2012-05-26 14:00 - 00000000 ____D C:\Program Files\PhotoScape 2013-01-12 07:01 - 2013-01-12 07:01 - 21322864 ____A (Mooii) C:\Users\Wissem\Downloads\PhotoScape_V3.6.3.exe 2013-01-12 06:54 - 2013-01-12 06:06 - 00000000 ____D C:\Users\Wissem\Documents\Steuerfälle 2013-01-12 06:05 - 2013-01-12 06:05 - 00000000 ____D C:\Users\Wissem\AppData\Local\AAV 2013-01-12 06:03 - 2013-01-12 05:53 - 00002094 ____A C:\Users\Public\Desktop\Steuer-Spar- Erklärung 2013.lnk 2013-01-12 06:01 - 2013-01-12 05:37 - 00000000 ____D C:\Users\All Users\AAV 2013-01-12 05:55 - 2013-01-12 05:39 - 00000000 ____D C:\Program Files\Akademische Arbeitsgemeinschaft 2013-01-12 04:11 - 2013-01-12 04:10 - 00142520 ____A C:\Windows\Minidump\Mini011213-01.dmp 2013-01-11 21:05 - 2011-01-23 01:40 - 00001072 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1190657541-1879476424-4156719937-1003Core.job 2013-01-11 19:57 - 2012-12-29 16:29 - 00000000 ____D C:\Windows\System32\Drivers\NST 2013-01-11 01:22 - 2012-12-27 22:59 - 00000000 ____D C:\Users\Wissem\AppData\Local\CrashDumps 2013-01-10 04:09 - 2012-11-17 13:26 - 00001191 ____A C:\Users\Wissem\Desktop\Free YouTube to MP3 Converter.lnk 2013-01-10 04:08 - 2013-01-10 04:08 - 00000000 ____D C:\Program Files\DVDVideoSoft 2013-01-10 04:08 - 2013-01-10 04:08 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft 2013-01-10 04:08 - 2011-08-19 04:15 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\DVDVideoSoft 2013-01-10 03:38 - 2013-01-10 03:38 - 25028024 ____A (DVDVideoSoft Ltd. ) C:\Users\Wissem\Downloads\FreeYouTubeToMP3Converter (1).exe 2013-01-09 19:47 - 2006-11-02 13:47 - 00404440 ____A C:\Windows\System32\FNTCACHE.DAT 2013-01-09 19:27 - 2008-11-29 10:06 - 00000000 ____D C:\Users\All Users\Microsoft Help 2013-01-09 19:02 - 2006-11-02 11:24 - 65273848 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe 2013-01-08 11:33 - 2012-12-07 23:08 - 00000000 ____D C:\Users\Wissem\Downloads\moni 2013-01-04 00:03 - 2011-05-01 12:28 - 00000000 ____D C:\Users\Wissem\Desktop\Uni 2013-01-01 01:52 - 2010-12-01 20:11 - 00000000 ____D C:\Users\Wissem\Desktop\wiss Hausi 2012-12-30 04:00 - 2008-10-23 13:38 - 00000000 ____D C:\Users\All Users\Adobe 2012-12-30 03:58 - 2009-05-13 22:26 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\Adobe 2012-12-29 16:48 - 2012-12-29 16:48 - 00000000 ____D C:\Users\Wissem\Desktop\ESET 2012-12-29 16:36 - 2009-05-13 19:02 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared 2012-12-29 16:32 - 2012-12-29 16:32 - 00000000 ____D C:\Users\Wissem\Documents\Symantec 2012-12-29 16:32 - 2010-04-29 11:40 - 00000000 ____D C:\Users\All Users\Norton 2012-12-29 16:29 - 2012-12-29 16:29 - 00142496 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SYMEVENT.SYS 2012-12-29 16:29 - 2012-12-29 16:29 - 00007446 ____A C:\Windows\System32\Drivers\SYMEVENT.CAT 2012-12-29 16:29 - 2012-12-29 16:29 - 00002125 ____A C:\Users\Public\Desktop\Norton AntiVirus.lnk 2012-12-29 16:29 - 2012-12-29 16:29 - 00000000 ____D C:\Program Files\Symantec 2012-12-29 16:29 - 2012-12-29 16:29 - 00000000 ____D C:\Program Files\Norton Identity Safe 2012-12-29 16:28 - 2012-12-29 16:28 - 00000000 ____D C:\Windows\System32\Drivers\NAV 2012-12-29 16:28 - 2012-12-29 16:28 - 00000000 ____D C:\Program Files\Norton AntiVirus 2012-12-29 16:28 - 2012-12-23 03:36 - 00000829 ____A C:\Users\Wissem\Desktop\Norton-Installationsdateien.lnk 2012-12-29 16:26 - 2012-12-29 16:26 - 00916600 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NAVDownloader (1).exe 2012-12-29 15:44 - 2012-12-29 15:44 - 00000735 ____A C:\DelFix[S2].txt 2012-12-29 15:43 - 2012-12-29 15:43 - 00001456 ____A C:\DelFix[S1].txt 2012-12-29 15:43 - 2012-12-29 15:43 - 00000620 ____A C:\DelFix[R1].txt 2012-12-29 14:39 - 2012-12-29 14:26 - 00000000 ____D C:\Users\Wissem\AppData\Local\NPE 2012-12-29 14:30 - 2012-12-29 14:30 - 00000000 ____D C:\Users\All Users\SMR311 2012-12-29 14:28 - 2012-12-29 14:28 - 00097440 ____A (Symantec Corporation) C:\Windows\System32\Drivers\SMR311.SYS 2012-12-29 14:26 - 2012-12-29 14:26 - 02957840 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NPE.exe 2012-12-29 14:24 - 2012-12-29 14:23 - 00001892 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk 2012-12-29 14:23 - 2012-12-29 14:22 - 00000000 ____D C:\Program Files\Common Files\Adobe 2012-12-29 14:22 - 2009-05-13 22:52 - 00000000 ____D C:\Program Files\Adobe 2012-12-29 14:07 - 2009-05-13 16:18 - 00000000 ____D C:\Users\Wissem\AppData\Local\Adobe 2012-12-29 13:50 - 2012-12-29 13:48 - 00004574 ____A C:\Windows\System32\jupdate-1.7.0_10-b18.log 2012-12-29 13:38 - 2012-12-29 13:38 - 00896016 ____A (Oracle Corporation) C:\Users\Wissem\Downloads\chromeinstall-7u10.exe 2012-12-28 16:35 - 2012-12-28 16:35 - 00000000 ____D C:\Program Files\ESET 2012-12-28 16:21 - 2008-10-23 10:25 - 00000000 ____D C:\Windows\InstDrvs 2012-12-28 16:04 - 2012-12-28 16:04 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\Malwarebytes 2012-12-28 16:04 - 2012-12-28 16:04 - 00000000 ____D C:\Users\All Users\Malwarebytes 2012-12-28 16:03 - 2012-12-28 16:03 - 10156344 ____A (Malwarebytes Corporation ) C:\Users\Wissem\Downloads\mbam-setup-1.70.0.1100.exe 2012-12-28 15:58 - 2009-05-13 19:00 - 00000000 ____D C:\Users\All Users\T-Online 2012-12-28 15:58 - 2008-10-23 12:25 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2012-12-28 14:24 - 2008-10-23 13:39 - 00000000 ____D C:\Program Files\Google 2012-12-28 14:12 - 2006-11-02 12:18 - 00000000 __RHD C:\users\Default 2012-12-28 14:12 - 2006-11-02 12:18 - 00000000 ___RD C:\users\Public 2012-12-28 14:09 - 2012-12-28 13:44 - 00000000 ____D C:\Windows\erdnt 2012-12-28 14:07 - 2006-11-02 11:23 - 00000215 ____A C:\Windows\system.ini 2012-12-28 13:34 - 2008-10-23 13:39 - 00000000 ____D C:\Program Files\Common Files\Java 2012-12-28 13:30 - 2011-02-13 03:36 - 00000000 ____D C:\Program Files\Biet-O-Matic 2012-12-28 13:29 - 2011-02-13 03:37 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\BOM 2012-12-28 13:21 - 2009-05-13 16:18 - 00000000 ____D C:\Users\Wissem\AppData\Local\Google 2012-12-28 13:21 - 2008-11-29 10:00 - 00000000 ____D C:\Users\All Users\Google 2012-12-28 13:19 - 2011-02-19 12:21 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\Gutscheinmieze 2012-12-28 12:21 - 2010-04-15 19:57 - 00000000 ____D C:\Users\All Users\ICQ 2012-12-28 11:49 - 2010-04-15 19:55 - 00000000 ____D C:\Users\Wissem\AppData\Roaming\ICQ 2012-12-28 00:43 - 2012-12-28 00:43 - 00000000 ____D C:\Users\Public\Documents\CrashDump 2012-12-28 00:43 - 2011-03-29 10:28 - 00000000 ____D C:\Users\Wissem\Documents\SelfMV 2012-12-27 22:23 - 2011-04-09 03:22 - 00000000 ____D C:\Users\Wissem\AppData\Local\Samsung 2012-12-27 22:22 - 2012-12-27 22:22 - 00001783 ____A C:\Users\Public\Desktop\Samsung Kies (Lite).lnk 2012-12-27 22:22 - 2012-12-27 22:22 - 00001773 ____A C:\Users\Public\Desktop\Samsung Kies.lnk 2012-12-27 22:18 - 2011-01-25 19:53 - 00000000 ____D C:\Users\All Users\Samsung 2012-12-27 22:05 - 2011-03-29 11:02 - 00000000 ____D C:\Users\Wissem\AppData\Local\Downloaded Installations 2012-12-27 22:00 - 2012-12-27 21:59 - 68037104 ____A (Samsung Electronics Co., Ltd. ) C:\Users\Wissem\Downloads\KiesSetup.exe 2012-12-27 21:48 - 2006-11-02 13:52 - 00135333 ____A C:\Windows\setupact.log 2012-12-26 03:05 - 2012-12-26 03:05 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log 2012-12-23 03:36 - 2012-12-23 03:36 - 00000000 ____D C:\Users\Public\Downloads\Norton 2012-12-23 03:33 - 2012-11-21 18:44 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2012-12-23 03:27 - 2009-05-13 19:02 - 00000000 ____D C:\Users\All Users\Symantec 2012-12-23 03:22 - 2012-12-23 03:22 - 00007296 ____A C:\Users\All Users\N360BUOptions.ini 2012-12-23 03:19 - 2012-12-23 03:19 - 00916584 ____A (Symantec Corporation) C:\Users\Wissem\Downloads\NAVDownloader.exe ==================== Known DLLs (Whitelisted) ================= ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2012-12-12 00:13] - [2012-08-21 12:47] - 0224640 ____A (Microsoft Corporation) 786DB5771F05EF300390399F626BF30A ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= Restore point made on: 2012-12-01 16:07:52 Restore point made on: 2012-12-12 01:41:33 Restore point made on: 2012-12-16 23:40:19 Restore point made on: 2012-12-21 03:01:22 Restore point made on: 2012-12-26 02:37:37 Restore point made on: 2012-12-26 02:38:53 Restore point made on: 2012-12-26 02:40:57 Restore point made on: 2012-12-26 02:42:48 Restore point made on: 2012-12-26 02:44:10 Restore point made on: 2012-12-26 02:45:36 Restore point made on: 2012-12-26 02:46:46 Restore point made on: 2012-12-26 02:47:55 Restore point made on: 2012-12-26 02:49:10 Restore point made on: 2012-12-26 02:51:50 Restore point made on: 2012-12-26 02:54:15 Restore point made on: 2012-12-26 02:56:23 Restore point made on: 2012-12-26 02:59:55 Restore point made on: 2012-12-26 03:01:15 Restore point made on: 2012-12-26 04:33:50 Restore point made on: 2012-12-26 17:28:02 Restore point made on: 2012-12-27 22:07:52 Restore point made on: 2012-12-27 22:16:37 Restore point made on: 2012-12-28 13:15:29 Restore point made on: 2012-12-28 13:19:41 Restore point made on: 2012-12-28 13:33:27 Restore point made on: 2012-12-28 13:35:03 Restore point made on: 2012-12-28 14:50:10 Restore point made on: 2012-12-29 13:48:32 Restore point made on: 2012-12-29 13:52:03 Restore point made on: 2012-12-29 14:06:19 Restore point made on: 2012-12-29 14:09:52 Restore point made on: 2012-12-29 14:12:59 Restore point made on: 2012-12-29 14:14:29 Restore point made on: 2012-12-29 17:02:59 Restore point made on: 2013-01-09 19:01:30 Restore point made on: 2013-01-12 05:38:46 Restore point made on: 2013-01-12 05:54:35 Restore point made on: 2013-01-12 18:48:42 Restore point made on: 2013-01-17 09:47:05 Restore point made on: 2013-01-17 13:17:42 ==================== Memory info =========================== Percentage of memory in use: 11% Total physical RAM: 4062.13 MB Available physical RAM: 3587.49 MB Total Pagefile: 3817.3 MB Available Pagefile: 3662.42 MB Total Virtual: 2047.88 MB Available Virtual: 1966.3 MB ==================== Partitions ============================= 1 Drive c: () (Fixed) (Total:288.28 GB) (Free:118.92 GB) NTFS ==>[Drive with boot components (obtained from BCD)] 3 Drive e: (Recovery) (Fixed) (Total:9.81 GB) (Free:0.84 GB) NTFS ==>[System with boot components (obtained from reading drive)] 6 Drive h: (WD MediaCtr) (Fixed) (Total:298.01 GB) (Free:195.74 GB) FAT32 7 Drive i: () (Removable) (Total:0.12 GB) (Free:0.1 GB) FAT 8 Drive x: (Boot) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS Datentr ### Status Gr”áe Frei Dyn GPT -------- ---------- ------- ------- --- --- 0 Online 298 GB 0 B 1 Kein Mediu 0 B 0 B 2 Kein Mediu 0 B 0 B 3 Online 298 GB 8 MB 4 Online 123 MB 0 B Last Boot: 2013-01-19 12:33 ==================== End Of Log ============================ |
Ja, prima unübersichtlich. Und was genau bitte hast du gemacht bevor es zum Bluescreen kam? Und wie heisst das Programm? |
hehe...sorry dafür also ich hab software gefunden gehabt...einen sprachtrainer französisch von dr. lothar rossipaul...diese software ist alt und ich hab diese installiert... die installation startete und ist ab versionen ms windows 3.1 ausgelegt...die installation würde aber nicht beendet und dann von mir abgebrochen, da hatte es aber schon unzählige daten eingespeist. dann kam dieser bluescreen nach dem nächsten neustart. ich hab dann versucht die dateien zu löschen von dem system...hab den entsprechenden ordner gefunden und gelöscht...allerdings speichert das system ja nicht nur im programmordner sondern doch auch an anderen stellen oder? nunja...hab dann versucht einen wiederherstellungspunkt vor der installation zu setzen. das hat nichts gebracht, ausser das mein norton antivirus seitdem gecrasht ist...dieses repariert sich aber grade wieder selbst. nunja ich will diesen fehler einfach loswerden... würde ja auch das system plattmachen nachdem ich alles auf die mobile festplatte gezogen habe an dateien die notwendig sind, aber ich habe keine wiederherstellungscd, da diese net bei vaios mitgeliefert wird. mir wäre es auch lieber das system ohne wiederherstellung hinzukriegen, ist das machbar? |
und wie HEISST dieser programmordner? |
der hieß rosp den hab ich allerdings manuell mit rechtsklick gelöscht, da er auch in der softwareanzeige nicht angezeigt worden ist... |
In Ordnung. Dann versuche mal beim Booten: F8 drücken wie gehabt und dann "letzte als funktionierend bekannte konfig." |
ok erledigt und nun? Also jetzt kommt der fehler in kürzeren abständen... Hast du eine andere idee? Oder weisst du wo ich eine wincd für meinen vaio zum recovery herbekomme??! |
Normalerweise müßte beim Booten so eine Meldung kommen wie: Press F11 for Recovery Wenn das der Fall ist brauchst du keine CD. |
Hallo, benötigst Du noch weiterhin Hilfe ? Sollte ich innerhalb der nächsten 24 Stunden keine Antwort von dir erhalten, werde ich dein Thema aus meinen Abos nehmen und bekomme dadurch keine Nachricht über neue Antworten. Das Verschwinden der Symptome bedeutet nicht, dass dein System schon sauber ist |
Fehlende Rückmeldung Dieses Thema wurde aus den Abos gelöscht. Somit bekomm ich keine Benachrichtigung über neue Antworten. PM an mich falls Du denoch weiter machen willst. Keine Logfiles einsenden, nur kurzer Hinweis. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und einen eigenen Thread erstellen |
Hast du das Recovery geschafft? |
Ja hab ich, hat nur ewig gedauert... Hab auch hunderte von Updates machen müssen... Jetzt ist nur die Frage, ob mein System bis zu den Updates irgendwas sich eingefangen hat oder ob noch irgendein Rest drauf ist? Hab die Festplatte komplett formatiert und bisher nur wenige Programme neu installiert. WAs ist nun zu tun? Danke übrigens... |
Da kann normalerweise nichts übrig sein, wenn du neu aufgesetzt hast. Wenn du ganz ganz sicher sein willst: Scan mit aswMBR
|
Hi, danke... Also mein Norton AntiVirus entfernt das Programm sofort wieder, da es aus einer unbekannten Quelle stammt und nihct sicher ist. Was soll ich nun machen? hab die datei wiederhergestellt... Also Norton hats geahnt... Der BlueScreen kam jetzt zweimal wieder... Habs einmal normal druchlaufen lassen, dabei is es mitten drinne irgendwann abgestürzt habs danach nochmal gescannt mit der Einstellung None und es kam wieder ein BlueScreen und der Laptop ist abgeschmiert. Kommt das jetzt immer wieder in Zukunft? Was soll ich nun tun? Wie bekomme ich den Fehler weg und diese Scan datei wieder spurlos runter aus dem System? LG und DAnke |
Der Fehler dürfte viel eher bei Norton liegen. Anderer Scan: Scan mit dem TDSS-Killer Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen.
|
ok, ich verstehe...dann herrscht dort ein Konflikt...vielleicht sollte man für die Zeit des Downloads und der Prüfung Norton ausschalten? Hab nun das TDSS-Tool benutzt und dabei kam folgendes heraus: 16:57:04.0032 4456 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 16:57:04.0139 4456 ============================================================ 16:57:04.0139 4456 Current date / time: 2013/01/24 16:57:04.0139 16:57:04.0139 4456 SystemInfo: 16:57:04.0139 4456 16:57:04.0139 4456 OS Version: 6.0.6002 ServicePack: 2.0 16:57:04.0139 4456 Product type: Workstation 16:57:04.0139 4456 ComputerName: VAIO 16:57:04.0140 4456 UserName: Wissem 16:57:04.0140 4456 Windows directory: C:\Windows 16:57:04.0140 4456 System windows directory: C:\Windows 16:57:04.0140 4456 Processor architecture: Intel x86 16:57:04.0140 4456 Number of processors: 2 16:57:04.0140 4456 Page size: 0x1000 16:57:04.0140 4456 Boot type: Normal boot 16:57:04.0140 4456 ============================================================ 16:57:04.0864 4456 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 16:57:04.0880 4456 ============================================================ 16:57:04.0880 4456 \Device\Harddisk0\DR0: 16:57:04.0880 4456 MBR partitions: 16:57:04.0880 4456 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139F000, BlocksNum 0x2408F2B0 16:57:04.0880 4456 ============================================================ 16:57:04.0941 4456 C: <-> \Device\Harddisk0\DR0\Partition1 16:57:04.0941 4456 ============================================================ 16:57:04.0942 4456 Initialize success 16:57:04.0942 4456 ============================================================ 16:58:17.0130 5308 ============================================================ 16:58:17.0130 5308 Scan started 16:58:17.0130 5308 Mode: Manual; TDLFS; 16:58:17.0130 5308 ============================================================ 16:58:18.0252 5308 ================ Scan system memory ======================== 16:58:18.0252 5308 System memory - ok 16:58:18.0253 5308 ================ Scan services ============================= 16:58:18.0501 5308 [ FEE588CDF60F2B541B5A3E803FA938A1 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe 16:58:18.0504 5308 ACDaemon - ok 16:58:18.0734 5308 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys 16:58:18.0741 5308 ACPI - ok 16:58:18.0843 5308 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 16:58:18.0849 5308 AdobeARMservice - ok 16:58:18.0928 5308 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 16:58:18.0931 5308 AdobeFlashPlayerUpdateSvc - ok 16:58:19.0001 5308 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 16:58:19.0011 5308 adp94xx - ok 16:58:19.0024 5308 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys 16:58:19.0030 5308 adpahci - ok 16:58:19.0036 5308 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys 16:58:19.0039 5308 adpu160m - ok 16:58:19.0047 5308 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 16:58:19.0051 5308 adpu320 - ok 16:58:19.0083 5308 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 16:58:19.0084 5308 AeLookupSvc - ok 16:58:19.0160 5308 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys 16:58:19.0166 5308 AFD - ok 16:58:19.0234 5308 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys 16:58:19.0236 5308 agp440 - ok 16:58:19.0246 5308 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys 16:58:19.0258 5308 aic78xx - ok 16:58:19.0276 5308 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe 16:58:19.0281 5308 ALG - ok 16:58:19.0288 5308 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys 16:58:19.0288 5308 aliide - ok 16:58:19.0299 5308 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys 16:58:19.0301 5308 amdagp - ok 16:58:19.0310 5308 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys 16:58:19.0313 5308 amdide - ok 16:58:19.0321 5308 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys 16:58:19.0322 5308 AmdK7 - ok 16:58:19.0330 5308 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 16:58:19.0332 5308 AmdK8 - ok 16:58:19.0391 5308 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll 16:58:19.0392 5308 Appinfo - ok 16:58:19.0413 5308 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys 16:58:19.0416 5308 arc - ok 16:58:19.0424 5308 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys 16:58:19.0426 5308 arcsas - ok 16:58:19.0485 5308 [ 857B48965A0503B7AB795D4BFE7CBD8B ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys 16:58:19.0487 5308 ArcSoftKsUFilter - ok 16:58:19.0516 5308 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 16:58:19.0517 5308 AsyncMac - ok 16:58:19.0542 5308 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys 16:58:19.0542 5308 atapi - ok 16:58:19.0615 5308 [ 600EFE56F37ADBD65A0FB076B50D1B8D ] athr C:\Windows\system32\DRIVERS\athr.sys 16:58:19.0632 5308 athr - ok 16:58:19.0709 5308 [ 6455100A6CDB1DEDC551E12FD41BC519 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe 16:58:19.0722 5308 Ati External Event Utility - ok 16:58:19.0871 5308 [ 9F66D1BA97911731133E46212539A08D ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys 16:58:19.0960 5308 atikmdag - ok 16:58:20.0007 5308 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 16:58:20.0010 5308 AudioEndpointBuilder - ok 16:58:20.0019 5308 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll 16:58:20.0022 5308 Audiosrv - ok 16:58:20.0140 5308 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 16:58:20.0142 5308 BcmSqlStartupSvc - ok 16:58:20.0207 5308 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys 16:58:20.0208 5308 Beep - ok 16:58:20.0247 5308 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll 16:58:20.0250 5308 BFE - ok 16:58:20.0517 5308 [ D2A55F5FE6B716913FB573872F2E5944 ] BHDrvx86 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\BASHDefs\20130116.013\BHDrvx86.sys 16:58:20.0525 5308 BHDrvx86 - ok 16:58:20.0590 5308 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll 16:58:20.0598 5308 BITS - ok 16:58:20.0633 5308 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 16:58:20.0635 5308 blbdrive - ok 16:58:20.0668 5308 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys 16:58:20.0670 5308 bowser - ok 16:58:20.0687 5308 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys 16:58:20.0688 5308 BrFiltLo - ok 16:58:20.0697 5308 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys 16:58:20.0698 5308 BrFiltUp - ok 16:58:20.0730 5308 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll 16:58:20.0732 5308 Browser - ok 16:58:20.0739 5308 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys 16:58:20.0742 5308 Brserid - ok 16:58:20.0754 5308 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys 16:58:20.0755 5308 BrSerWdm - ok 16:58:20.0761 5308 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys 16:58:20.0762 5308 BrUsbMdm - ok 16:58:20.0769 5308 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys 16:58:20.0771 5308 BrUsbSer - ok 16:58:20.0777 5308 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 16:58:20.0779 5308 BTHMODEM - ok 16:58:20.0911 5308 [ 1277AD8F053CC60C17CAFAB411F3CF40 ] ccSet_NAV C:\Windows\system32\drivers\NAV\1402010.016\ccSetx86.sys 16:58:20.0914 5308 ccSet_NAV - ok 16:58:20.0976 5308 [ 1277AD8F053CC60C17CAFAB411F3CF40 ] ccSet_NST C:\Windows\system32\drivers\NST\7DD02010.021\ccSetx86.sys 16:58:20.0979 5308 ccSet_NST - ok 16:58:21.0026 5308 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 16:58:21.0027 5308 cdfs - ok 16:58:21.0096 5308 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 16:58:21.0099 5308 cdrom - ok 16:58:21.0140 5308 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll 16:58:21.0141 5308 CertPropSvc - ok 16:58:21.0175 5308 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys 16:58:21.0176 5308 circlass - ok 16:58:21.0225 5308 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys 16:58:21.0231 5308 CLFS - ok 16:58:21.0338 5308 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 16:58:21.0340 5308 clr_optimization_v2.0.50727_32 - ok 16:58:21.0443 5308 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 16:58:21.0447 5308 clr_optimization_v4.0.30319_32 - ok 16:58:21.0499 5308 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 16:58:21.0501 5308 CmBatt - ok 16:58:21.0508 5308 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys 16:58:21.0510 5308 cmdide - ok 16:58:21.0516 5308 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 16:58:21.0517 5308 Compbatt - ok 16:58:21.0525 5308 COMSysApp - ok 16:58:21.0535 5308 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 16:58:21.0539 5308 crcdisk - ok 16:58:21.0549 5308 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys 16:58:21.0550 5308 Crusoe - ok 16:58:21.0626 5308 [ FB27772BEAF8E1D28CCD825C09DA939B ] CryptSvc C:\Windows\system32\cryptsvc.dll 16:58:21.0628 5308 CryptSvc - ok 16:58:21.0670 5308 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll 16:58:21.0682 5308 DcomLaunch - ok 16:58:21.0730 5308 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys 16:58:21.0732 5308 DfsC - ok 16:58:21.0842 5308 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe 16:58:21.0879 5308 DFSR - ok 16:58:21.0924 5308 DgiVecp - ok 16:58:21.0984 5308 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll 16:58:21.0987 5308 Dhcp - ok 16:58:22.0035 5308 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys 16:58:22.0038 5308 disk - ok 16:58:22.0090 5308 [ F206E28ED74C491FD5D7C0A1119CE37F ] DMICall C:\Windows\system32\DRIVERS\DMICall.sys 16:58:22.0091 5308 DMICall - ok 16:58:22.0163 5308 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll 16:58:22.0166 5308 Dnscache - ok 16:58:22.0218 5308 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll 16:58:22.0222 5308 dot3svc - ok 16:58:22.0266 5308 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll 16:58:22.0269 5308 DPS - ok 16:58:22.0321 5308 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 16:58:22.0322 5308 drmkaud - ok 16:58:22.0381 5308 [ FB85F7F69E9B109820409243F578CC4D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 16:58:22.0393 5308 DXGKrnl - ok 16:58:22.0434 5308 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys 16:58:22.0437 5308 E1G60 - ok 16:58:22.0491 5308 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll 16:58:22.0493 5308 EapHost - ok 16:58:22.0566 5308 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys 16:58:22.0569 5308 Ecache - ok 16:58:22.0630 5308 [ 85B8B4032A895A746D46A288A9B30DED ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 16:58:22.0637 5308 eeCtrl - ok 16:58:22.0786 5308 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 16:58:22.0792 5308 ehRecvr - ok 16:58:22.0804 5308 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe 16:58:22.0806 5308 ehSched - ok 16:58:22.0810 5308 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll 16:58:22.0811 5308 ehstart - ok 16:58:22.0875 5308 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys 16:58:22.0882 5308 elxstor - ok 16:58:22.0930 5308 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll 16:58:22.0935 5308 EMDMgmt - ok 16:58:22.0999 5308 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 16:58:23.0002 5308 EraserUtilRebootDrv - ok 16:58:23.0032 5308 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys 16:58:23.0033 5308 ErrDev - ok 16:58:23.0111 5308 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll 16:58:23.0117 5308 EventSystem - ok 16:58:23.0248 5308 [ BA6063E3375F9BC11A9C8450A7F61E70 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe 16:58:23.0254 5308 EvtEng - ok 16:58:23.0310 5308 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys 16:58:23.0313 5308 exfat - ok 16:58:23.0356 5308 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys 16:58:23.0360 5308 fastfat - ok 16:58:23.0415 5308 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys 16:58:23.0416 5308 fdc - ok 16:58:23.0448 5308 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll 16:58:23.0449 5308 fdPHost - ok 16:58:23.0455 5308 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll 16:58:23.0458 5308 FDResPub - ok 16:58:23.0464 5308 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 16:58:23.0467 5308 FileInfo - ok 16:58:23.0474 5308 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys 16:58:23.0475 5308 Filetrace - ok 16:58:23.0485 5308 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 16:58:23.0487 5308 flpydisk - ok 16:58:23.0535 5308 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 16:58:23.0537 5308 FltMgr - ok 16:58:23.0651 5308 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 16:58:23.0652 5308 FontCache3.0.0.0 - ok 16:58:23.0680 5308 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 16:58:23.0681 5308 Fs_Rec - ok 16:58:23.0699 5308 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 16:58:23.0701 5308 gagp30kx - ok 16:58:23.0764 5308 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll 16:58:23.0768 5308 gpsvc - ok 16:58:23.0852 5308 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 16:58:23.0855 5308 gupdate - ok 16:58:23.0860 5308 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 16:58:23.0861 5308 gupdatem - ok 16:58:23.0903 5308 [ 649F407A844DDE2B97BC086AF97D663B ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 16:58:23.0907 5308 gusvc - ok 16:58:23.0981 5308 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 16:58:23.0987 5308 HdAudAddService - ok 16:58:24.0039 5308 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 16:58:24.0054 5308 HDAudBus - ok 16:58:24.0083 5308 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys 16:58:24.0085 5308 HidBth - ok 16:58:24.0110 5308 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys 16:58:24.0113 5308 HidIr - ok 16:58:24.0144 5308 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll 16:58:24.0145 5308 hidserv - ok 16:58:24.0179 5308 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 16:58:24.0181 5308 HidUsb - ok 16:58:24.0221 5308 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll 16:58:24.0223 5308 hkmsvc - ok 16:58:24.0229 5308 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys 16:58:24.0230 5308 HpCISSs - ok 16:58:24.0307 5308 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS 16:58:24.0311 5308 HSFHWAZL - ok 16:58:24.0370 5308 [ 7BC42C65B5C6281777C1A7605B253BA8 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys 16:58:24.0390 5308 HSF_DPV - ok 16:58:24.0461 5308 [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys 16:58:24.0466 5308 HSXHWAZL - ok 16:58:24.0518 5308 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys 16:58:24.0529 5308 HTTP - ok 16:58:24.0560 5308 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys 16:58:24.0562 5308 i2omp - ok 16:58:24.0588 5308 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 16:58:24.0590 5308 i8042prt - ok 16:58:24.0648 5308 [ DB0CC620B27A928D968C1A1E9CD9CB87 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 16:58:24.0651 5308 iaStor - ok 16:58:24.0676 5308 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys 16:58:24.0684 5308 iaStorV - ok 16:58:24.0782 5308 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 16:58:24.0796 5308 idsvc - ok 16:58:24.0899 5308 [ 404FB2AAF532BC7BBACC8880BE401C74 ] IDSVix86 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\IPSDefs\20130123.001\IDSvix86.sys 16:58:24.0908 5308 IDSVix86 - ok 16:58:24.0914 5308 igfx - ok 16:58:24.0932 5308 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys 16:58:24.0933 5308 iirsp - ok 16:58:24.0967 5308 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll 16:58:24.0971 5308 IKEEXT - ok 16:58:25.0049 5308 [ 4A0F260DF9A5333C07F4AB40CA9D4F4B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys 16:58:25.0092 5308 IntcAzAudAddService - ok 16:58:25.0121 5308 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys 16:58:25.0123 5308 intelide - ok 16:58:25.0144 5308 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 16:58:25.0146 5308 intelppm - ok 16:58:25.0188 5308 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 16:58:25.0191 5308 IPBusEnum - ok 16:58:25.0197 5308 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 16:58:25.0199 5308 IpFilterDriver - ok 16:58:25.0249 5308 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 16:58:25.0252 5308 iphlpsvc - ok 16:58:25.0258 5308 IpInIp - ok 16:58:25.0293 5308 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys 16:58:25.0295 5308 IPMIDRV - ok 16:58:25.0303 5308 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys 16:58:25.0306 5308 IPNAT - ok 16:58:25.0316 5308 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 16:58:25.0318 5308 IRENUM - ok 16:58:25.0325 5308 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys 16:58:25.0327 5308 isapnp - ok 16:58:25.0398 5308 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 16:58:25.0401 5308 iScsiPrt - ok 16:58:25.0407 5308 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys 16:58:25.0408 5308 iteatapi - ok 16:58:25.0412 5308 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys 16:58:25.0414 5308 iteraid - ok 16:58:25.0467 5308 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe 16:58:25.0468 5308 IviRegMgr - ok 16:58:25.0514 5308 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 16:58:25.0516 5308 kbdclass - ok 16:58:25.0522 5308 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 16:58:25.0524 5308 kbdhid - ok 16:58:25.0539 5308 [ 3978F3540329E16C0AC3BCF677E5669F ] KeyIso C:\Windows\system32\lsass.exe 16:58:25.0541 5308 KeyIso - ok 16:58:25.0598 5308 [ 86165728AF9BF72D6442A894FDFB4F8B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 16:58:25.0606 5308 KSecDD - ok 16:58:25.0667 5308 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll 16:58:25.0677 5308 KtmRm - ok 16:58:25.0714 5308 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll 16:58:25.0718 5308 LanmanServer - ok 16:58:25.0781 5308 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 16:58:25.0785 5308 LanmanWorkstation - ok 16:58:25.0834 5308 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 16:58:25.0836 5308 lltdio - ok 16:58:25.0876 5308 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll 16:58:25.0881 5308 lltdsvc - ok 16:58:25.0887 5308 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll 16:58:25.0890 5308 lmhosts - ok 16:58:25.0899 5308 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 16:58:25.0902 5308 LSI_FC - ok 16:58:25.0909 5308 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 16:58:25.0912 5308 LSI_SAS - ok 16:58:25.0936 5308 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 16:58:25.0939 5308 LSI_SCSI - ok 16:58:25.0945 5308 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys 16:58:25.0948 5308 luafv - ok 16:58:25.0959 5308 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 16:58:25.0962 5308 Mcx2Svc - ok 16:58:25.0993 5308 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys 16:58:25.0994 5308 mdmxsdk - ok 16:58:26.0000 5308 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys 16:58:26.0002 5308 megasas - ok 16:58:26.0080 5308 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys 16:58:26.0088 5308 MegaSR - ok 16:58:26.0114 5308 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll 16:58:26.0117 5308 MMCSS - ok 16:58:26.0125 5308 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys 16:58:26.0127 5308 Modem - ok 16:58:26.0134 5308 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 16:58:26.0136 5308 monitor - ok 16:58:26.0143 5308 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 16:58:26.0145 5308 mouclass - ok 16:58:26.0150 5308 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\drivers\mouhid.sys 16:58:26.0151 5308 mouhid - ok 16:58:26.0159 5308 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys 16:58:26.0161 5308 MountMgr - ok 16:58:26.0227 5308 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe 16:58:26.0230 5308 MozillaMaintenance - ok 16:58:26.0268 5308 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys 16:58:26.0271 5308 mpio - ok 16:58:26.0278 5308 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 16:58:26.0281 5308 mpsdrv - ok 16:58:26.0324 5308 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll 16:58:26.0329 5308 MpsSvc - ok 16:58:26.0359 5308 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys 16:58:26.0361 5308 Mraid35x - ok 16:58:26.0405 5308 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 16:58:26.0408 5308 MRxDAV - ok 16:58:26.0458 5308 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 16:58:26.0461 5308 mrxsmb - ok 16:58:26.0482 5308 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 16:58:26.0488 5308 mrxsmb10 - ok 16:58:26.0494 5308 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 16:58:26.0497 5308 mrxsmb20 - ok 16:58:26.0536 5308 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys 16:58:26.0538 5308 msahci - ok 16:58:26.0658 5308 [ A99D2C7E30AD63EF920A894131CAF5F7 ] MSCSPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe 16:58:26.0660 5308 MSCSPTISRV - ok 16:58:26.0687 5308 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys 16:58:26.0690 5308 msdsm - ok 16:58:26.0706 5308 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe 16:58:26.0712 5308 MSDTC - ok 16:58:26.0728 5308 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys 16:58:26.0730 5308 Msfs - ok 16:58:26.0736 5308 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 16:58:26.0738 5308 msisadrv - ok 16:58:26.0776 5308 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 16:58:26.0780 5308 MSiSCSI - ok 16:58:26.0787 5308 msiserver - ok 16:58:26.0850 5308 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 16:58:26.0851 5308 MSKSSRV - ok 16:58:26.0859 5308 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 16:58:26.0860 5308 MSPCLOCK - ok 16:58:26.0866 5308 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 16:58:26.0867 5308 MSPQM - ok 16:58:26.0908 5308 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 16:58:26.0911 5308 MsRPC - ok 16:58:26.0921 5308 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 16:58:26.0921 5308 mssmbios - ok 16:58:27.0012 5308 MSSQL$MSSMLBIZ - ok 16:58:27.0055 5308 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 16:58:27.0056 5308 MSSQLServerADHelper - ok 16:58:27.0102 5308 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 16:58:27.0104 5308 MSTEE - ok 16:58:27.0130 5308 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys 16:58:27.0132 5308 Mup - ok 16:58:27.0167 5308 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll 16:58:27.0171 5308 napagent - ok 16:58:27.0230 5308 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 16:58:27.0235 5308 NativeWifiP - ok 16:58:27.0317 5308 [ 4BA84C832E0741A294C4444556DFE993 ] NAV C:\Program Files\Norton AntiVirus\Engine\20.2.1.22\ccSvcHst.exe 16:58:27.0319 5308 NAV - ok 16:58:27.0392 5308 [ 7D7A3BC6640C1A0D1442816B30856928 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\VirusDefs\20130123.023\NAVENG.SYS 16:58:27.0393 5308 NAVENG - ok 16:58:27.0474 5308 [ 28494C43D62AA7584BDCA2FADFBC4D11 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.2.0.19\Definitions\VirusDefs\20130123.023\NAVEX15.SYS 16:58:27.0486 5308 NAVEX15 - ok 16:58:27.0569 5308 [ 4BA84C832E0741A294C4444556DFE993 ] NCO C:\Program Files\Norton Identity Safe\Engine\2013.2.1.33\ccSvcHst.exe 16:58:27.0571 5308 NCO - ok 16:58:27.0631 5308 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys 16:58:27.0642 5308 NDIS - ok 16:58:27.0675 5308 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 16:58:27.0677 5308 NdisTapi - ok 16:58:27.0683 5308 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 16:58:27.0684 5308 Ndisuio - ok 16:58:27.0760 5308 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 16:58:27.0763 5308 NdisWan - ok 16:58:27.0772 5308 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 16:58:27.0774 5308 NDProxy - ok 16:58:27.0781 5308 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 16:58:27.0783 5308 NetBIOS - ok 16:58:27.0824 5308 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys 16:58:27.0828 5308 netbt - ok 16:58:27.0839 5308 [ 3978F3540329E16C0AC3BCF677E5669F ] Netlogon C:\Windows\system32\lsass.exe 16:58:27.0840 5308 Netlogon - ok 16:58:27.0882 5308 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll 16:58:27.0886 5308 Netman - ok 16:58:27.0898 5308 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll 16:58:27.0903 5308 netprofm - ok 16:58:27.0937 5308 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 16:58:27.0940 5308 NetTcpPortSharing - ok 16:58:28.0078 5308 [ BA420E8EBFCAD35581FE8E4C64F71469 ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys 16:58:28.0185 5308 NETw5v32 - ok 16:58:28.0230 5308 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 16:58:28.0232 5308 nfrd960 - ok 16:58:28.0266 5308 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll 16:58:28.0270 5308 NlaSvc - ok 16:58:28.0301 5308 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys 16:58:28.0306 5308 Npfs - ok 16:58:28.0322 5308 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll 16:58:28.0324 5308 nsi - ok 16:58:28.0329 5308 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 16:58:28.0332 5308 nsiproxy - ok 16:58:28.0432 5308 [ D7443616495851EC5B94574822773E80 ] NSUService C:\Program Files\sony\Network Utility\NSUService.exe 16:58:28.0435 5308 NSUService - ok 16:58:28.0509 5308 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 16:58:28.0530 5308 Ntfs - ok 16:58:28.0574 5308 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys 16:58:28.0576 5308 ntrigdigi - ok 16:58:28.0581 5308 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys 16:58:28.0584 5308 Null - ok 16:58:28.0590 5308 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys 16:58:28.0594 5308 nvraid - ok 16:58:28.0601 5308 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys 16:58:28.0603 5308 nvstor - ok 16:58:28.0609 5308 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 16:58:28.0612 5308 nv_agp - ok 16:58:28.0621 5308 NwlnkFlt - ok 16:58:28.0629 5308 NwlnkFwd - ok 16:58:28.0751 5308 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 16:58:28.0761 5308 odserv - ok 16:58:28.0832 5308 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys 16:58:28.0834 5308 ohci1394 - ok 16:58:28.0909 5308 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 16:58:28.0912 5308 ose - ok 16:58:28.0978 5308 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll 16:58:28.0992 5308 p2pimsvc - ok 16:58:29.0009 5308 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll 16:58:29.0018 5308 p2psvc - ok 16:58:29.0057 5308 [ 41C33FB4FD929FED732A00D2DAEF5BE0 ] PACSPTISVR C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe 16:58:29.0058 5308 PACSPTISVR - ok 16:58:29.0096 5308 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys 16:58:29.0098 5308 Parport - ok 16:58:29.0125 5308 [ 57389FA59A36D96B3EB09D0CB91E9CDC ] partmgr C:\Windows\system32\drivers\partmgr.sys 16:58:29.0127 5308 partmgr - ok 16:58:29.0133 5308 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys 16:58:29.0136 5308 Parvdm - ok 16:58:29.0183 5308 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll 16:58:29.0186 5308 PcaSvc - ok 16:58:29.0216 5308 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys 16:58:29.0218 5308 pci - ok 16:58:29.0228 5308 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys 16:58:29.0230 5308 pciide - ok 16:58:29.0240 5308 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 16:58:29.0245 5308 pcmcia - ok 16:58:29.0285 5308 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 16:58:29.0303 5308 PEAUTH - ok 16:58:29.0386 5308 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll 16:58:29.0416 5308 pla - ok 16:58:29.0467 5308 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll 16:58:29.0473 5308 PlugPlay - ok 16:58:29.0522 5308 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll 16:58:29.0528 5308 PNRPAutoReg - ok 16:58:29.0544 5308 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll 16:58:29.0550 5308 PNRPsvc - ok 16:58:29.0602 5308 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 16:58:29.0610 5308 PolicyAgent - ok 16:58:29.0651 5308 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 16:58:29.0653 5308 PptpMiniport - ok 16:58:29.0680 5308 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys 16:58:29.0681 5308 Processor - ok 16:58:29.0706 5308 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll 16:58:29.0711 5308 ProfSvc - ok 16:58:29.0739 5308 [ 3978F3540329E16C0AC3BCF677E5669F ] ProtectedStorage C:\Windows\system32\lsass.exe 16:58:29.0741 5308 ProtectedStorage - ok 16:58:29.0772 5308 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys 16:58:29.0773 5308 PSched - ok 16:58:29.0821 5308 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys 16:58:29.0823 5308 PxHelp20 - ok 16:58:29.0892 5308 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 16:58:29.0914 5308 ql2300 - ok 16:58:29.0925 5308 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 16:58:29.0928 5308 ql40xx - ok 16:58:29.0964 5308 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll 16:58:29.0971 5308 QWAVE - ok 16:58:30.0000 5308 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 16:58:30.0002 5308 QWAVEdrv - ok 16:58:30.0007 5308 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 16:58:30.0008 5308 RasAcd - ok 16:58:30.0029 5308 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll 16:58:30.0033 5308 RasAuto - ok 16:58:30.0040 5308 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 16:58:30.0043 5308 Rasl2tp - ok 16:58:30.0101 5308 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll 16:58:30.0105 5308 RasMan - ok 16:58:30.0160 5308 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 16:58:30.0162 5308 RasPppoe - ok 16:58:30.0221 5308 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 16:58:30.0223 5308 RasSstp - ok 16:58:30.0264 5308 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 16:58:30.0271 5308 rdbss - ok 16:58:30.0303 5308 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 16:58:30.0305 5308 RDPCDD - ok 16:58:30.0338 5308 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys 16:58:30.0342 5308 rdpdr - ok 16:58:30.0347 5308 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 16:58:30.0348 5308 RDPENCDD - ok 16:58:30.0376 5308 [ 30BFBDFB7F95559EDE971F9DDB9A00BA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 16:58:30.0379 5308 RDPWD - ok 16:58:30.0445 5308 [ 001B4278407F4303EFC902A2B16F2453 ] regi C:\Windows\system32\drivers\regi.sys 16:58:30.0447 5308 regi - ok 16:58:30.0550 5308 [ 7EEEEC28A34516E66137F355DCC15BDB ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe 16:58:30.0554 5308 RegSrvc - ok 16:58:30.0605 5308 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll 16:58:30.0608 5308 RemoteAccess - ok 16:58:30.0650 5308 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll 16:58:30.0655 5308 RemoteRegistry - ok 16:58:30.0692 5308 [ D0C2A0CE1091E08EFB7CCBA6CEA4C3F9 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys 16:58:30.0696 5308 rimsptsk - ok 16:58:30.0702 5308 [ 53EA7C7D1D3C4B11AE0EA7C8D75C4E82 ] risdptsk C:\Windows\system32\DRIVERS\risdptsk.sys 16:58:30.0704 5308 risdptsk - ok 16:58:30.0726 5308 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe 16:58:30.0728 5308 RpcLocator - ok 16:58:30.0769 5308 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll 16:58:30.0775 5308 RpcSs - ok 16:58:30.0812 5308 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 16:58:30.0815 5308 rspndr - ok 16:58:30.0884 5308 [ 65330E78C17DB8A99A7FF1BA3C8824B6 ] RtkAudioService C:\Windows\RtkAudioService.exe 16:58:30.0886 5308 RtkAudioService - ok 16:58:30.0906 5308 [ 3978F3540329E16C0AC3BCF677E5669F ] SamSs C:\Windows\system32\lsass.exe 16:58:30.0910 5308 SamSs - ok 16:58:30.0918 5308 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 16:58:30.0921 5308 sbp2port - ok 16:58:30.0952 5308 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll 16:58:30.0955 5308 SCardSvr - ok 16:58:31.0020 5308 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll 16:58:31.0031 5308 Schedule - ok 16:58:31.0083 5308 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll 16:58:31.0084 5308 SCPolicySvc - ok 16:58:31.0123 5308 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 16:58:31.0126 5308 sdbus - ok 16:58:31.0166 5308 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll 16:58:31.0170 5308 SDRSVC - ok 16:58:31.0178 5308 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys 16:58:31.0180 5308 secdrv - ok 16:58:31.0200 5308 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll 16:58:31.0203 5308 seclogon - ok 16:58:31.0213 5308 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll 16:58:31.0216 5308 SENS - ok 16:58:31.0223 5308 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys 16:58:31.0224 5308 Serenum - ok 16:58:31.0234 5308 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys 16:58:31.0237 5308 Serial - ok 16:58:31.0244 5308 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys 16:58:31.0246 5308 sermouse - ok 16:58:31.0270 5308 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll 16:58:31.0274 5308 SessionEnv - ok 16:58:31.0306 5308 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys 16:58:31.0308 5308 SFEP - ok 16:58:31.0313 5308 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 16:58:31.0315 5308 sffdisk - ok 16:58:31.0320 5308 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 16:58:31.0322 5308 sffp_mmc - ok 16:58:31.0329 5308 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 16:58:31.0330 5308 sffp_sd - ok 16:58:31.0335 5308 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 16:58:31.0337 5308 sfloppy - ok 16:58:31.0369 5308 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll 16:58:31.0376 5308 SharedAccess - ok 16:58:31.0422 5308 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 16:58:31.0428 5308 ShellHWDetection - ok 16:58:31.0465 5308 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys 16:58:31.0467 5308 sisagp - ok 16:58:31.0472 5308 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys 16:58:31.0474 5308 SiSRaid2 - ok 16:58:31.0482 5308 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 16:58:31.0484 5308 SiSRaid4 - ok 16:58:31.0548 5308 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe 16:58:31.0552 5308 SkypeUpdate - ok 16:58:31.0666 5308 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe 16:58:31.0754 5308 slsvc - ok 16:58:31.0806 5308 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll 16:58:31.0810 5308 SLUINotify - ok 16:58:31.0855 5308 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys 16:58:31.0858 5308 Smb - ok 16:58:31.0906 5308 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 16:58:31.0908 5308 SNMPTRAP - ok 16:58:31.0958 5308 [ 1A9DD46C547646A54CDB4065C1996A07 ] SOHCImp C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe 16:58:31.0961 5308 SOHCImp - ok 16:58:31.0987 5308 [ 2E1B0D8278BB616148DDCA13DAE87544 ] SOHDms C:\Program Files\Sony\VAIO Media plus\SOHDms.exe 16:58:31.0994 5308 SOHDms - ok 16:58:32.0018 5308 [ 892529EE03211C35AEA7132E119F4862 ] SOHDs C:\Program Files\Sony\VAIO Media plus\SOHDs.exe 16:58:32.0020 5308 SOHDs - ok 16:58:32.0062 5308 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys 16:58:32.0064 5308 spldr - ok 16:58:32.0105 5308 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe 16:58:32.0109 5308 Spooler - ok 16:58:32.0158 5308 [ F63102F289AE2039940B22E9B2A8E0BD ] SPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe 16:58:32.0162 5308 SPTISRV - ok 16:58:32.0209 5308 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 16:58:32.0219 5308 SQLBrowser - ok 16:58:32.0259 5308 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 16:58:32.0260 5308 SQLWriter - ok 16:58:32.0391 5308 [ 26C1B59C80FEF94B025DF5C3C1B791A7 ] SRTSP C:\Windows\System32\Drivers\NAV\1402010.016\SRTSP.SYS 16:58:32.0397 5308 SRTSP - ok 16:58:32.0428 5308 [ 21AC3AE81E8263061624C4ED3B11509A ] SRTSPX C:\Windows\system32\drivers\NAV\1402010.016\SRTSPX.SYS 16:58:32.0429 5308 SRTSPX - ok 16:58:32.0487 5308 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys 16:58:32.0493 5308 srv - ok 16:58:32.0546 5308 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 16:58:32.0550 5308 srv2 - ok 16:58:32.0569 5308 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 16:58:32.0572 5308 srvnet - ok 16:58:32.0612 5308 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 16:58:32.0616 5308 SSDPSRV - ok 16:58:32.0655 5308 [ EF3458337D7341A05169CEFC73709264 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys 16:58:32.0656 5308 SSPORT - ok 16:58:32.0676 5308 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll 16:58:32.0679 5308 SstpSvc - ok 16:58:32.0728 5308 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll 16:58:32.0739 5308 stisvc - ok 16:58:32.0771 5308 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 16:58:32.0773 5308 swenum - ok 16:58:32.0816 5308 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll 16:58:32.0821 5308 swprv - ok 16:58:32.0827 5308 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys 16:58:32.0829 5308 Symc8xx - ok 16:58:32.0869 5308 [ FB69A67FEEE3026C7F99774A1C405326 ] SymDS C:\Windows\system32\drivers\NAV\1402010.016\SYMDS.SYS 16:58:32.0876 5308 SymDS - ok 16:58:32.0958 5308 [ 28C5FAFA7FD1C522B8DCD59694D39412 ] SymEFA C:\Windows\system32\drivers\NAV\1402010.016\SYMEFA.SYS 16:58:32.0973 5308 SymEFA - ok 16:58:33.0017 5308 [ C940F10C31E2C60CC967FFD6A370720C ] SymEvent C:\Windows\system32\Drivers\SYMEVENT.SYS 16:58:33.0020 5308 SymEvent - ok 16:58:33.0064 5308 [ 8C9B9036E301A9965CF15BEC91C58A12 ] SymIRON C:\Windows\system32\drivers\NAV\1402010.016\Ironx86.SYS 16:58:33.0067 5308 SymIRON - ok 16:58:33.0129 5308 [ 93DE018EC6FBAA9A58FF9F2EB9198092 ] SYMTDIv C:\Windows\System32\Drivers\NAV\1402010.016\SYMTDIV.SYS 16:58:33.0136 5308 SYMTDIv - ok 16:58:33.0164 5308 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys 16:58:33.0166 5308 Sym_hi - ok 16:58:33.0180 5308 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys 16:58:33.0182 5308 Sym_u3 - ok 16:58:33.0244 5308 [ 99DA94793332AADBB17BBB521AE56E21 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 16:58:33.0248 5308 SynTP - ok 16:58:33.0310 5308 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll 16:58:33.0322 5308 SysMain - ok 16:58:33.0356 5308 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll 16:58:33.0359 5308 TabletInputService - ok 16:58:33.0395 5308 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll 16:58:33.0401 5308 TapiSrv - ok 16:58:33.0422 5308 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll 16:58:33.0425 5308 TBS - ok 16:58:33.0487 5308 [ A474879AFA4A596B3A531F3E69730DBF ] Tcpip C:\Windows\system32\drivers\tcpip.sys 16:58:33.0505 5308 Tcpip - ok 16:58:33.0527 5308 [ A474879AFA4A596B3A531F3E69730DBF ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys 16:58:33.0532 5308 Tcpip6 - ok 16:58:33.0547 5308 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 16:58:33.0548 5308 tcpipreg - ok 16:58:33.0595 5308 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 16:58:33.0596 5308 TDPIPE - ok 16:58:33.0601 5308 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 16:58:33.0603 5308 TDTCP - ok 16:58:33.0660 5308 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 16:58:33.0662 5308 tdx - ok 16:58:33.0708 5308 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 16:58:33.0710 5308 TermDD - ok 16:58:33.0768 5308 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll 16:58:33.0774 5308 TermService - ok 16:58:33.0822 5308 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll 16:58:33.0826 5308 Themes - ok 16:58:33.0858 5308 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll 16:58:33.0860 5308 THREADORDER - ok 16:58:33.0882 5308 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll 16:58:33.0885 5308 TrkWks - ok 16:58:33.0952 5308 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 16:58:33.0953 5308 TrustedInstaller - ok 16:58:33.0988 5308 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 16:58:33.0990 5308 tssecsrv - ok 16:58:33.0998 5308 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys 16:58:33.0999 5308 tunmp - ok 16:58:34.0041 5308 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 16:58:34.0042 5308 tunnel - ok 16:58:34.0051 5308 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys 16:58:34.0055 5308 uagp35 - ok 16:58:34.0123 5308 [ 63F6D08C54D5B3C1B12A6172032055C7 ] uCamMonitor C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe 16:58:34.0125 5308 uCamMonitor - ok 16:58:34.0171 5308 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 16:58:34.0176 5308 udfs - ok 16:58:34.0210 5308 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe 16:58:34.0214 5308 UI0Detect - ok 16:58:34.0240 5308 UIUSys - ok 16:58:34.0290 5308 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 16:58:34.0293 5308 uliagpkx - ok 16:58:34.0303 5308 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys 16:58:34.0308 5308 uliahci - ok 16:58:34.0315 5308 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys 16:58:34.0318 5308 UlSata - ok 16:58:34.0333 5308 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys 16:58:34.0337 5308 ulsata2 - ok 16:58:34.0343 5308 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 16:58:34.0345 5308 umbus - ok 16:58:34.0372 5308 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll 16:58:34.0376 5308 upnphost - ok 16:58:34.0413 5308 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 16:58:34.0416 5308 usbccgp - ok 16:58:34.0423 5308 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys 16:58:34.0426 5308 usbcir - ok 16:58:34.0478 5308 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 16:58:34.0480 5308 usbehci - ok 16:58:34.0511 5308 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 16:58:34.0516 5308 usbhub - ok 16:58:34.0560 5308 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys 16:58:34.0561 5308 usbohci - ok 16:58:34.0586 5308 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 16:58:34.0588 5308 usbprint - ok 16:58:34.0613 5308 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 16:58:34.0616 5308 USBSTOR - ok 16:58:34.0633 5308 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 16:58:34.0634 5308 usbuhci - ok 16:58:34.0657 5308 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 16:58:34.0660 5308 usbvideo - ok 16:58:34.0691 5308 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll 16:58:34.0693 5308 UxSms - ok 16:58:34.0744 5308 [ 2A640DC735CB0112AC1DCD1E1549B27E ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe 16:58:34.0747 5308 VAIO Entertainment TV Device Arbitration Service - ok 16:58:34.0811 5308 [ 2C3DBB9B671AB95245DED1EFC5276CE9 ] VAIO Event Service C:\Program Files\sony\VAIO Event Service\VESMgr.exe 16:58:34.0813 5308 VAIO Event Service - ok 16:58:34.0897 5308 [ DDD94D264CDA81B90580E2D41F295575 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe 16:58:34.0900 5308 VAIO Power Management - ok 16:58:34.0963 5308 [ 7773EB681E99217FD92E5E8A5A199AE5 ] VCFw C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe 16:58:34.0967 5308 VCFw - ok 16:58:35.0041 5308 [ 27888F132D2EE0B72B28093A5F5F20EB ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe 16:58:35.0047 5308 VcmIAlzMgr - ok 16:58:35.0116 5308 [ EE9ABFC2F8F2DCDC624B6A9D5CF3B19D ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe 16:58:35.0119 5308 VcmXmlIfHelper - ok 16:58:35.0126 5308 Vcsw - ok 16:58:35.0179 5308 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe 16:58:35.0186 5308 vds - ok 16:58:35.0223 5308 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 16:58:35.0225 5308 vga - ok 16:58:35.0230 5308 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys 16:58:35.0233 5308 VgaSave - ok 16:58:35.0240 5308 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys 16:58:35.0242 5308 viaagp - ok 16:58:35.0248 5308 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys 16:58:35.0250 5308 ViaC7 - ok 16:58:35.0256 5308 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys 16:58:35.0257 5308 viaide - ok 16:58:35.0265 5308 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys 16:58:35.0268 5308 volmgr - ok 16:58:35.0330 5308 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 16:58:35.0336 5308 volmgrx - ok 16:58:35.0371 5308 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys 16:58:35.0377 5308 volsnap - ok 16:58:35.0405 5308 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 16:58:35.0409 5308 vsmraid - ok 16:58:35.0473 5308 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe 16:58:35.0483 5308 VSS - ok 16:58:35.0564 5308 [ 071634532066C2E29350D450C3412837 ] VzCdbSvc C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe 16:58:35.0566 5308 VzCdbSvc - ok 16:58:35.0603 5308 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll 16:58:35.0608 5308 W32Time - ok 16:58:35.0639 5308 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 16:58:35.0641 5308 WacomPen - ok 16:58:35.0650 5308 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 16:58:35.0652 5308 Wanarp - ok 16:58:35.0662 5308 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 16:58:35.0663 5308 Wanarpv6 - ok 16:58:35.0701 5308 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll 16:58:35.0713 5308 wcncsvc - ok 16:58:35.0741 5308 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 16:58:35.0744 5308 WcsPlugInService - ok 16:58:35.0753 5308 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys 16:58:35.0754 5308 Wd - ok 16:58:35.0787 5308 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 16:58:35.0798 5308 Wdf01000 - ok 16:58:35.0824 5308 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll 16:58:35.0828 5308 WdiServiceHost - ok 16:58:35.0832 5308 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll 16:58:35.0836 5308 WdiSystemHost - ok 16:58:35.0869 5308 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll 16:58:35.0873 5308 WebClient - ok 16:58:35.0922 5308 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll 16:58:35.0928 5308 Wecsvc - ok 16:58:35.0964 5308 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll 16:58:35.0968 5308 wercplsupport - ok 16:58:35.0999 5308 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll 16:58:36.0002 5308 WerSvc - ok 16:58:36.0059 5308 [ 090A2B8F055343815556A01F725F6C35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys 16:58:36.0063 5308 WimFltr - ok 16:58:36.0096 5308 [ 5A77AC34A0FFB70CE8B35B524FEDE9BA ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys 16:58:36.0109 5308 winachsf - ok 16:58:36.0162 5308 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll 16:58:36.0167 5308 WinDefend - ok 16:58:36.0171 5308 WinHttpAutoProxySvc - ok 16:58:36.0234 5308 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 16:58:36.0237 5308 Winmgmt - ok 16:58:36.0302 5308 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll 16:58:36.0330 5308 WinRM - ok 16:58:36.0411 5308 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll 16:58:36.0428 5308 Wlansvc - ok 16:58:36.0474 5308 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 16:58:36.0476 5308 WmiAcpi - ok 16:58:36.0521 5308 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 16:58:36.0524 5308 wmiApSrv - ok 16:58:36.0616 5308 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 16:58:36.0634 5308 WMPNetworkSvc - ok 16:58:36.0677 5308 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll 16:58:36.0682 5308 WPCSvc - ok 16:58:36.0727 5308 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 16:58:36.0730 5308 WPDBusEnum - ok 16:58:36.0876 5308 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 16:58:36.0898 5308 WPFFontCache_v0400 - ok 16:58:36.0944 5308 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 16:58:36.0946 5308 ws2ifsl - ok 16:58:36.0981 5308 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll 16:58:36.0984 5308 wscsvc - ok 16:58:36.0992 5308 WSearch - ok 16:58:37.0064 5308 [ 01E1499A7A4FCA7CDE102B60976544C1 ] wuauserv C:\Windows\system32\wuaueng.dll 16:58:37.0087 5308 wuauserv - ok 16:58:37.0113 5308 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 16:58:37.0116 5308 WUDFRd - ok 16:58:37.0149 5308 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll 16:58:37.0153 5308 wudfsvc - ok 16:58:37.0190 5308 [ 88AF537264F2B818DA15479CEEAF5D7C ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys 16:58:37.0192 5308 XAudio - ok 16:58:37.0209 5308 [ 15A317674A08DF26BE65164D959E9203 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe 16:58:37.0217 5308 XAudioService - ok 16:58:37.0271 5308 [ 7D4CCA3659FA0780603206E3D12A993F ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys 16:58:37.0277 5308 yukonwlh - ok 16:58:37.0284 5308 ================ Scan global =============================== 16:58:37.0319 5308 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll 16:58:37.0382 5308 [ 5DF01708D214FDC0075AD197F1889557 ] C:\Windows\system32\winsrv.dll 16:58:37.0401 5308 [ 5DF01708D214FDC0075AD197F1889557 ] C:\Windows\system32\winsrv.dll 16:58:37.0449 5308 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe 16:58:37.0456 5308 [Global] - ok 16:58:37.0457 5308 ================ Scan MBR ================================== 16:58:37.0487 5308 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 16:58:38.0373 5308 \Device\Harddisk0\DR0 - ok 16:58:38.0377 5308 ================ Scan VBR ================================== 16:58:38.0413 5308 [ 359FF7CDACAFAB081CEC6C9A99A22FF1 ] \Device\Harddisk0\DR0\Partition1 16:58:38.0415 5308 \Device\Harddisk0\DR0\Partition1 - ok 16:58:38.0416 5308 ============================================================ 16:58:38.0416 5308 Scan finished 16:58:38.0416 5308 ============================================================ 16:58:38.0430 5504 Detected object count: 0 16:58:38.0430 5504 Actual detected object count: 0 |
Prima. Noch Fragen? |
ALso mein System ist jetzt clean und funktionsfähig? Die Installierte Software AV-Scan und TSSD krieg ich einfach durch löschen in den Papierkorb wieder vom System? MEin System ist jetzt clean und ein Backup kann ich jetzt erstellen? Sprich für den heutigen Tag wäre eine guter Wiederherstellungspunkt? LG und Danke |
es wäre ein guter tag für delfix, das alles wieder löscht und dann ist gut: Aufräumen mit delfix Downloade Dir bitte delfix auf deinen Desktop:
|
dankeschön... HAst du noch Tipps und Tricks für Programme, die man haben sollte auf dem PC? |
Hier meine Hinweise: Abschließend noch Tipps zu folgenden Themen:
Lesestoff:Systemupdates Man kann es gar nicht oft genug erwähnen, wie wichtig es ist, sein System aktuell zu halten. Dein Auto bringst du ja auch regelmässig zur Inspektion in die Werkstatt. Stelle also bitte sicher, dass die Systemupdates aktiviert sind:
Lesestoff:Softwareupdates Ebenso wichtig wie die Systemprogramme ist auch die Software, die du täglich nutzt. Die folgende Liste gibt dir einen kleinen Überblick mit Links zu den Updates, welche Programme dringend aktuell gehalten werden müssen (falls du sie überhaupt installiert hast und nutzt), weil durch deren Sicherheitslücken oft Malware auf die Computer gelangen kann:
Lesestoff:Sicherheitssoftware Würde dich jemand nackt auf dem Motorrad auf der Autobahn überholen würdest du auch den Kopf schütteln. Dein Computer braucht auch einen Schutz vor den täglichen kleinen Angriffen durch Schädlinge. Neben hervorragenden kommerziellen Anti-Viren-Lösungen gibt es auch durchaus gute Schutzprogramme, die kostenfrei mit reduziertem Funktionsumfang erhältlich sind. Aber vorsicht, hier gilt nicht "je mehr desto besser". Was du brauchst ist genau einen Virenscanner mit Hintergrundwächter. Nicht mehr und nicht weniger. Es gibt hier viele Produkte auf dem Markt, die einem gute Dienste leisten. Ich persönlich empfehle dir Avast Free Antivirus. Es bietet relativ guten Schutz, bei wenig nerviger Werbung und installiert dir ein Browserplugin, das dich vor gefährlichen Webseiten warnt.
Lesestoff:Sicheres Surfen Zunächst muss man sagen, dass es üblicherweise immer der menschliche Faktor ist, der es Malware ermöglicht auf einen Computer zu gelangen. Kaufst du Leuten, die an deiner Haustür klingeln, auch sofort ohne nachzudenken irgendwelches Zeug ab? Gewöhne dir daher zunächst einige Verhaltensregeln beim Surfen im Internet an:
Aber selbst bei der peinlichen Einhaltung dieser Regeln kann es dennoch zu einer sogenannten Drive-By-Infektion kommen, bei der ein Schädling aus dem Schutzmechanismus des Webbrowsers ausbricht. Um die Sicherheit noch weiter zu erhöhen gibt es spezielle Schutzsoftware, die deinen Browser noch weiter absichert.
Zuletzt denke bitte über die Benutzung eines alternativen Browsers nach. Programme, die nicht so oft verwendet werden, sind auch nicht so sehr im Focus der "bösen Jungs". D.h. du bist mit einem exotischen Browser eher auf der sicheren Seite. Grundsätzlich bist du erst einmal deutlich sicherer, wenn du nicht den Internet Explorer benutzt.
Damit wünsche ich dir noch viel Spaß beim Surfen im Internet :daumenhoc ... und vielleicht möchtest du ja das Trojaner-Board unterstützen? Eine Bitte: Gib mir eine kurze Rückmeldung, wenn alles erledigt ist und keine Fragen mehr vorhanden sind, damit ich diesen Thread aus meinen Abos löschen kann. |
Alles ist erledigt... Danke Dir...schönen Abend noch... |
Schön, dass wir helfen konnten :abklatsch: Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen Falls du noch Lob oder Kritik loswerden möchtest, dann gibt es diesen Bereich hier: http://www.trojaner-board.de/lob-kritik-wuensche/ |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 14:43 Uhr. |
Copyright ©2000-2025, Trojaner-Board