| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Rechner scheint infiziert, Probleme mit ProgrammenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
03.02.2014, 16:56
| #16 |
| /// the machine /// TB-Ausbilder    |  Rechner scheint infiziert, Probleme mit ProgrammenESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.02.2014, 11:52
| #17 |
 |  Rechner scheint infiziert, Probleme mit Programmen Hallo Schrauber,
__________________hat etwas länger gedauert, ESET lief sehr lange, von gestern bis heute. Die Probleme sind leider nicht behoben. Der Rechner arbeitet weiterhin ständig, der Virenscanner ist blockiert (kein Update, keine Deinstallation und keine Deaktivierung möglich), mein E-Mailprogramm (eM Client) nicht nutzbar, erforderliches Update nicht durchführbar. Nachfolgend die gewünschten Logfiles. Vielen Dank und Gruß Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=ec574059e25f8b4c89767ad6f13b070f
# engine=16922
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-04 08:51:05
# local_time=2014-02-04 09:51:05 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775166 100 94 59730 4922027 683152 0
# compatibility_mode=5893 16776574 100 94 832030 143133715 0 0
# scanned=316085
# found=0
# cleaned=0
# scan_time=55773
Code:
ATTFilter Results of screen317's Security Check version 0.99.79 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Avira Desktop Antivirus out of date! `````````Anti-malware/Other Utilities Check:````````` Secunia PSI (3.0.0.9016) Malwarebytes Anti-Malware Version 1.75.0.1300 TuneUp Utilities 2011 TuneUp Utilities Language Pack (de-DE) Adobe Flash Player 12.0.0.43 Flash Player out of Date! Adobe Reader XI Mozilla Firefox (26.0) Mozilla Thunderbird (24.2.0) ````````Process Check: objlist.exe by Laurent```````` Avira Antivir avgnt.exe Avira Antivir avguard.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-02-2014
Ran by JORDAN (administrator) on JORDAN-NOTEBOOK on 04-02-2014 11:32:47
Running from C:\Users\JORDAN\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(shbox.de) C:\Program Files (x86)\FreePDF_XP\fpassist.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\watchmi\TvdTray.exe
() C:\Program Files (x86)\Verbatim GREEN BUTTON\GREEN BUTTON.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\update.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\updrgui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\update.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\update.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11785832 2011-03-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2207848 2011-03-28] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2294568 2010-09-03] (Synaptics Incorporated)
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel(R) Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10361616 2011-02-11] (Intel Corporation)
HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [207400 2010-12-15] (Wistron)
HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)
HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\Wbutton.exe [436264 2010-06-21] (Wistron Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-03] (CyberLink)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [NBAgent] - C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760 2010-03-14] (Nero AG)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [FreePDF Assistant] - C:\Program Files (x86)\FreePDF_XP\fpassist.exe [373760 2013-03-14] (shbox.de)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2934081096-936170642-240777201-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKU\S-1-5-21-2934081096-936170642-240777201-1000\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2934081096-936170642-240777201-1000\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-08-04] (Google Inc.)
Startup: C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verbatim GREEN BUTTON.lnk
ShortcutTarget: Verbatim GREEN BUTTON.lnk -> C:\Program Files (x86)\Verbatim GREEN BUTTON\GREEN BUTTON.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default
FF NewTab: about:blank
FF DefaultSearchEngine: Startpage HTTPS - Deutsch
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Startpage HTTPS - Deutsch
FF Homepage: www.Ing-Diba.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pack.google.com/Google Updater;version=14 - C:\Program Files (x86)\Google\Google Updater\2.4.1970.7372\npCIDetect14.dll (Google)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Google.com/GoogleEarthPlugin - C:\Users\JORDAN\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\JORDAN\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\JORDAN\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\searchplugins\ixquick-https---deutsch.xml
FF SearchPlugin: C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\searchplugins\startpage-https---deutsch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: iCloud Bookmarks - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\firefoxdav@icloud.com [2014-01-15]
FF Extension: Flagfox - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2014-01-23]
FF Extension: WOT - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-12-12]
FF Extension: Bitdefender QuickScan - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2014-01-23]
FF Extension: anonymoX - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\client@anonymox.net.xpi [2013-02-07]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\elemhidehelper@adblockplus.org.xpi [2011-10-24]
FF Extension: PlugIn-Checker - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\jid0-c1av474BVPIHcGJfBp3GkhlhAa4@jetpack.xpi [2013-02-15]
FF Extension: WEB.DE MailCheck - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\toolbar@web.de.xpi [2012-11-05]
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\toolbar_AVIRA-V7C@apn.ask.com.xpi [2013-12-20]
FF Extension: TrafficLight - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\trafficlight@bitdefender.com.xpi [2013-02-15]
FF Extension: Unity Web Player Compiler Pro - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{296e8833-7d14-4837-9ae4-382839ead3fe}.xpi [2013-10-29]
FF Extension: Adblock Plus - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-09-13]
FF Extension: {e4ca3fd8-cf17-48ca-b9a9-8357bececf66} - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{e4ca3fd8-cf17-48ca-b9a9-8357bececf66}.xpi [2013-10-29]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-01-15]
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\KavAntiBanner@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-03-13]
FF HKCU\...\Firefox\Extensions: [finder@meingutscheincode.de] - C:\Program Files (x86)\Mein Gutscheincode Finder\Firefox
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-03-13]
Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "tabs": {
"use_compact_navigation_bar": false,
"use_vertical_tabs"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\JORDAN\AppData\Local\Google\Chrome\Application\13.0.782.215\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.250.6) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U25) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Chrome NaCl) - C:\Users\JORDAN\AppData\Local\Google\Chrome\Application\13.0.782.215\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\JORDAN\AppData\Local\Google\Chrome\Application\13.0.782.215\pdf.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (preisspion.de) - C:\Users\JORDAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgfpelakfkbbkkdchaaaknckhoadkcbo [2011-08-24]
CHR Extension: (Winload) - C:\Users\JORDAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngnjhfpfhadncgafgbneeljaginimmmk [2011-08-24]
CHR HKLM-x32\...\Chrome\Extension: [jgfpelakfkbbkkdchaaaknckhoadkcbo] - C:\Program Files (x86)\Mein Gutscheincode Finder\Chrome\chrome-extension.crx [2011-08-24]
==================== Services (Whitelisted) =================
R2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [1830768 2014-01-23] (SurfRight B.V.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-12-14] ()
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2028864 2011-12-13] (TuneUp Software)
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [62464 2010-12-06] ()
R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-23] (Wistron Corp.)
==================== Drivers (Whitelisted) ====================
U2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
U4 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 hmpalert; C:\Windows\system32\drivers\hmpalert.sys [17416 2014-01-23] ()
R3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-18] (Siliten)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [11856 2011-07-08] (TuneUp Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-04 11:32 - 2014-02-04 11:32 - 00023877 _____ () C:\Users\JORDAN\Desktop\FRST.txt
2014-02-04 11:30 - 2014-02-04 11:30 - 02080256 _____ (Farbar) C:\Users\JORDAN\Desktop\FRST64.exe
2014-02-04 11:25 - 2014-02-04 11:25 - 00000959 _____ () C:\Users\JORDAN\Desktop\SC checkup 140204.txt
2014-02-04 11:09 - 2014-02-04 11:09 - 00987425 _____ () C:\Users\JORDAN\Desktop\SecurityCheck.exe
2014-02-04 08:58 - 2014-02-04 09:47 - 00000000 __SHD () C:\Users\JORDAN\AppData\Roaming\.#
2014-02-03 18:19 - 2014-02-03 18:19 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-03 18:09 - 2014-02-03 18:09 - 02347384 _____ (ESET) C:\Users\JORDAN\Desktop\esetsmartinstaller_enu.exe
2014-02-02 21:46 - 2014-02-02 21:48 - 00071945 _____ () C:\Users\JORDAN\Desktop\FRST 140202.txt
2014-02-02 21:26 - 2014-02-02 21:26 - 00001649 _____ () C:\Users\JORDAN\Desktop\JRT 140202.txt
2014-02-02 21:12 - 2014-02-02 21:12 - 01037068 _____ (Thisisu) C:\Users\JORDAN\Desktop\JRT.exe
2014-02-01 13:40 - 2014-02-04 11:09 - 00004140 _____ () C:\Windows\System32\Tasks\Google Software Updater
2014-02-01 13:40 - 2014-02-04 11:09 - 00001034 _____ () C:\Windows\Tasks\Google Software Updater.job
2014-02-01 13:32 - 2014-02-01 12:40 - 00154234 _____ () C:\Users\JORDAN\Desktop\ComboFix 140201.txt
2014-02-01 12:40 - 2014-02-01 12:40 - 00154234 _____ () C:\ComboFix.txt
2014-02-01 11:07 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-01 11:07 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-01 11:07 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-01-30 17:31 - 2014-02-01 12:40 - 00000000 ____D () C:\Qoobox
2014-01-30 17:30 - 2014-02-01 12:38 - 00000000 ____D () C:\Windows\erdnt
2014-01-30 17:11 - 2014-01-30 17:12 - 05177551 ____R (Swearware) C:\Users\JORDAN\Desktop\ComboFix.exe
2014-01-30 17:04 - 2011-12-13 09:29 - 00036160 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-01-30 17:04 - 2011-12-13 09:29 - 00029504 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-01-30 17:04 - 2011-12-13 09:29 - 00025920 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-30 17:04 - 2011-12-13 09:29 - 00021312 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-30 12:10 - 2014-02-04 10:47 - 00000000 ____D () C:\Users\JORDAN\Desktop\Trojaner-Board Laptop
2014-01-29 18:04 - 2014-01-29 18:04 - 00078350 _____ () C:\Users\JORDAN\Desktop\Gmer 140129.txt
2014-01-29 17:17 - 2014-01-29 17:17 - 00380416 _____ () C:\Users\JORDAN\Desktop\Gmer-19357.exe
2014-01-29 17:01 - 2014-02-04 11:32 - 00000000 ____D () C:\FRST
2014-01-29 16:50 - 2014-01-29 16:51 - 00000474 _____ () C:\Users\JORDAN\Desktop\defogger_disable 140129.log
2014-01-29 16:50 - 2014-01-29 16:50 - 00000000 _____ () C:\Users\JORDAN\defogger_reenable
2014-01-29 16:46 - 2014-01-29 16:46 - 00050477 _____ () C:\Users\JORDAN\Desktop\Defogger.exe
2014-01-29 14:49 - 2014-01-29 14:49 - 00001113 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-29 14:49 - 2014-01-29 14:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-29 14:49 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-27 17:16 - 2014-02-02 20:47 - 01166132 _____ () C:\Users\JORDAN\Desktop\adwcleaner.exe
2014-01-27 17:08 - 2014-01-27 17:08 - 00002094 _____ () C:\Users\JORDAN\Desktop\Avira Free Antivirus starten.lnk
2014-01-27 11:20 - 2014-01-27 11:20 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011
2014-01-27 11:14 - 2014-01-30 17:04 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2011
2014-01-27 11:14 - 2014-01-27 11:14 - 00002213 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-27 11:14 - 2011-12-13 09:35 - 00034624 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-27 11:04 - 2014-01-27 11:04 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-01-27 11:04 - 2014-01-27 11:04 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2014-01-27 11:03 - 2014-01-27 11:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Avira
2014-01-27 11:01 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-01-27 11:01 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-01-27 11:01 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-01-27 11:01 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-01-27 10:29 - 2014-01-27 10:29 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-01-25 18:57 - 2014-01-25 18:44 - 00001073 _____ () C:\Users\JORDAN\Desktop\Secunia PSI.lnk
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Avanquest
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\ProgramData\BVRP Software
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\ProgramData\Avanquest
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\Program Files (x86)\Avanquest update
2014-01-25 14:05 - 2014-01-25 14:05 - 00000000 ____D () C:\Program Files (x86)\Avanquest
2014-01-25 12:14 - 2014-01-25 12:14 - 00001787 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-01-25 12:12 - 2014-01-25 12:14 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-25 12:12 - 2014-01-25 12:14 - 00000000 ____D () C:\Program Files\iTunes
2014-01-25 12:12 - 2014-01-25 12:14 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-01-25 12:12 - 2014-01-25 12:12 - 00000000 ____D () C:\Program Files\iPod
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default\AppData\Local\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default User\AppData\Local\Apple Computer
2014-01-25 11:55 - 2014-01-25 13:44 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\AutoSave
2014-01-25 11:55 - 2014-01-25 11:55 - 00000000 ____D () C:\Users\Public\Documents\BVRP Software
2014-01-25 11:55 - 2014-01-25 11:55 - 00000000 ____D () C:\ProgramData\Avanquest Software
2014-01-24 07:52 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-24 07:52 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-24 07:52 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-24 07:52 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-24 07:52 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-24 07:52 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-24 07:52 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-24 07:52 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-24 07:52 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-24 07:52 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-24 07:52 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-24 07:52 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-24 07:52 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-24 07:52 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-24 07:52 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-24 07:52 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-24 07:52 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-24 07:52 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-24 07:52 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-24 07:52 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-24 07:52 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-24 07:52 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-24 07:52 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-24 07:52 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-24 07:52 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-24 07:52 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-24 07:52 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-24 07:52 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-24 07:52 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-24 07:52 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-24 07:52 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-24 07:51 - 2014-01-24 07:52 - 00261600 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-01-23 17:55 - 2013-11-18 15:24 - 00002094 _____ () C:\Users\JORDAN\Desktop\TextMaker 2012.lnk
2014-01-23 17:55 - 2013-11-18 15:24 - 00002094 _____ () C:\Users\JORDAN\Desktop\PlanMaker 2012.lnk
2014-01-23 17:54 - 2013-11-18 15:25 - 00001289 _____ () C:\Users\JORDAN\Desktop\eM Client.lnk
2014-01-23 17:24 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-01-23 17:24 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-01-23 17:24 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-01-23 17:24 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-01-23 17:24 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-01-23 17:24 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-01-23 17:24 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-01-23 17:24 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-01-23 17:24 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-01-23 17:24 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-01-23 17:24 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-01-23 17:24 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-01-23 17:24 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-01-23 17:24 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-01-23 17:24 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-01-23 17:24 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-01-23 17:24 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-01-23 17:24 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-01-23 17:24 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-01-23 17:24 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-01-23 17:24 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-01-23 17:24 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-01-23 17:24 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-01-23 17:24 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-01-23 17:24 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-01-23 17:17 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-01-23 17:17 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-01-23 17:00 - 2014-01-23 17:00 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Secunia PSI
2014-01-23 17:00 - 2014-01-23 17:00 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-01-23 16:39 - 2014-01-23 16:39 - 00000000 ____D () C:\Windows\de
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\sl
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\nl
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\it
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\hu
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\fr
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\es
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\en
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\da
2014-01-23 16:33 - 2014-01-23 16:33 - 00000000 ____D () C:\Program Files\Windows Live
2014-01-23 16:29 - 2014-01-23 16:29 - 00002190 _____ () C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00002124 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00002124 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ___RD () C:\Users\JORDAN\SkyDrive
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 16:25 - 2014-01-23 16:25 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Windows Live
2014-01-23 16:11 - 2014-01-23 16:11 - 00000000 ____D () C:\ProgramData\Google Updater
2014-01-23 13:57 - 2014-01-23 16:40 - 00000000 ____D () C:\Program Files (x86)\HitmanPro.Alert
2014-01-23 13:57 - 2014-01-23 16:01 - 00564312 _____ (SurfRight) C:\Windows\SysWOW64\hmpalert.dll
2014-01-23 13:57 - 2014-01-23 16:01 - 00518480 _____ (SurfRight) C:\Windows\system32\hmpalert.dll
2014-01-23 13:57 - 2014-01-23 16:01 - 00017416 _____ () C:\Windows\system32\Drivers\hmpalert.sys
2014-01-23 13:57 - 2014-01-23 13:57 - 00000000 ____D () C:\ProgramData\HitmanPro.Alert
2014-01-23 13:41 - 2014-01-23 13:40 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-23 13:41 - 2014-01-23 13:40 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-23 11:59 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-23 11:55 - 2014-01-23 11:55 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-23 11:55 - 2014-01-23 11:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-23 11:55 - 2014-01-23 11:55 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-23 11:55 - 2014-01-23 11:55 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-23 11:55 - 2014-01-23 11:55 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-23 11:55 - 2014-01-23 11:55 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-23 11:55 - 2014-01-23 11:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-23 11:54 - 2014-01-23 11:59 - 00009961 _____ () C:\Windows\IE11_main.log
2014-01-23 11:39 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-23 11:39 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-23 11:39 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 14:45 - 2014-01-15 14:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-01-15 14:30 - 2014-01-15 14:30 - 00002379 _____ () C:\Users\Public\Desktop\Google Earth.lnk
==================== One Month Modified Files and Folders =======
2014-02-04 11:33 - 2014-02-04 11:32 - 00023877 _____ () C:\Users\JORDAN\Desktop\FRST.txt
2014-02-04 11:32 - 2014-01-29 17:01 - 00000000 ____D () C:\FRST
2014-02-04 11:30 - 2014-02-04 11:30 - 02080256 _____ (Farbar) C:\Users\JORDAN\Desktop\FRST64.exe
2014-02-04 11:25 - 2014-02-04 11:25 - 00000959 _____ () C:\Users\JORDAN\Desktop\SC checkup 140204.txt
2014-02-04 11:09 - 2014-02-04 11:09 - 00987425 _____ () C:\Users\JORDAN\Desktop\SecurityCheck.exe
2014-02-04 11:09 - 2014-02-01 13:40 - 00004140 _____ () C:\Windows\System32\Tasks\Google Software Updater
2014-02-04 11:09 - 2014-02-01 13:40 - 00001034 _____ () C:\Windows\Tasks\Google Software Updater.job
2014-02-04 10:51 - 2009-07-14 05:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-04 10:51 - 2009-07-14 05:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-04 10:47 - 2014-01-30 12:10 - 00000000 ____D () C:\Users\JORDAN\Desktop\Trojaner-Board Laptop
2014-02-04 10:47 - 2011-08-04 19:20 - 01192986 _____ () C:\Windows\WindowsUpdate.log
2014-02-04 10:41 - 2013-11-07 11:59 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\FreePDF_XP
2014-02-04 10:41 - 2011-08-04 10:23 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-04 10:41 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-04 10:41 - 2009-07-14 05:51 - 00072193 _____ () C:\Windows\setupact.log
2014-02-04 09:47 - 2014-02-04 08:58 - 00000000 __SHD () C:\Users\JORDAN\AppData\Roaming\.#
2014-02-04 08:58 - 2012-05-02 16:05 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\ALDI_SUED_Mah_Jong
2014-02-03 18:19 - 2014-02-03 18:19 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-03 18:11 - 2011-05-20 21:25 - 00700134 _____ () C:\Windows\system32\perfh007.dat
2014-02-03 18:11 - 2011-05-20 21:25 - 00149984 _____ () C:\Windows\system32\perfc007.dat
2014-02-03 18:11 - 2009-07-14 06:13 - 01622236 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-03 18:09 - 2014-02-03 18:09 - 02347384 _____ (ESET) C:\Users\JORDAN\Desktop\esetsmartinstaller_enu.exe
2014-02-02 21:48 - 2014-02-02 21:46 - 00071945 _____ () C:\Users\JORDAN\Desktop\FRST 140202.txt
2014-02-02 21:26 - 2014-02-02 21:26 - 00001649 _____ () C:\Users\JORDAN\Desktop\JRT 140202.txt
2014-02-02 21:12 - 2014-02-02 21:12 - 01037068 _____ (Thisisu) C:\Users\JORDAN\Desktop\JRT.exe
2014-02-02 21:01 - 2013-10-31 10:47 - 00000000 ____D () C:\AdwCleaner
2014-02-02 20:47 - 2014-01-27 17:16 - 01166132 _____ () C:\Users\JORDAN\Desktop\adwcleaner.exe
2014-02-01 13:39 - 2013-11-04 11:16 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\eM Client for SoftMaker
2014-02-01 12:40 - 2014-02-01 13:32 - 00154234 _____ () C:\Users\JORDAN\Desktop\ComboFix 140201.txt
2014-02-01 12:40 - 2014-02-01 12:40 - 00154234 _____ () C:\ComboFix.txt
2014-02-01 12:40 - 2014-01-30 17:31 - 00000000 ____D () C:\Qoobox
2014-02-01 12:40 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-01 12:38 - 2014-01-30 17:30 - 00000000 ____D () C:\Windows\erdnt
2014-02-01 12:34 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-01 12:32 - 2010-11-21 04:47 - 00446280 _____ () C:\Windows\PFRO.log
2014-02-01 12:30 - 2012-11-05 18:50 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\convert
2014-01-30 22:05 - 2011-11-07 17:46 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Skype
2014-01-30 17:12 - 2014-01-30 17:11 - 05177551 ____R (Swearware) C:\Users\JORDAN\Desktop\ComboFix.exe
2014-01-30 17:04 - 2014-01-27 11:14 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2011
2014-01-29 18:04 - 2014-01-29 18:04 - 00078350 _____ () C:\Users\JORDAN\Desktop\Gmer 140129.txt
2014-01-29 17:17 - 2014-01-29 17:17 - 00380416 _____ () C:\Users\JORDAN\Desktop\Gmer-19357.exe
2014-01-29 16:51 - 2014-01-29 16:50 - 00000474 _____ () C:\Users\JORDAN\Desktop\defogger_disable 140129.log
2014-01-29 16:50 - 2014-01-29 16:50 - 00000000 _____ () C:\Users\JORDAN\defogger_reenable
2014-01-29 16:50 - 2011-08-04 10:30 - 00000000 ____D () C:\Users\JORDAN
2014-01-29 16:46 - 2014-01-29 16:46 - 00050477 _____ () C:\Users\JORDAN\Desktop\Defogger.exe
2014-01-29 14:53 - 2012-03-29 18:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\QuickScan
2014-01-29 14:49 - 2014-01-29 14:49 - 00001113 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-29 14:49 - 2014-01-29 14:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-27 17:21 - 2011-08-04 15:42 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\SoftGrid Client
2014-01-27 17:08 - 2014-01-27 17:08 - 00002094 _____ () C:\Users\JORDAN\Desktop\Avira Free Antivirus starten.lnk
2014-01-27 11:20 - 2014-01-27 11:20 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011
2014-01-27 11:16 - 2011-11-24 16:56 - 00000000 ____D () C:\Users\JORDAN\Desktop\Selten verwendete Desktopverknüpfungen
2014-01-27 11:14 - 2014-01-27 11:14 - 00002213 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-27 11:04 - 2014-01-27 11:04 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-01-27 11:04 - 2014-01-27 11:04 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2014-01-27 11:03 - 2014-01-27 11:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Avira
2014-01-27 11:01 - 2013-02-27 17:31 - 00000000 ____D () C:\ProgramData\Avira
2014-01-27 10:29 - 2014-01-27 10:29 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-01-26 00:13 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-01-25 18:44 - 2014-01-25 18:57 - 00001073 _____ () C:\Users\JORDAN\Desktop\Secunia PSI.lnk
2014-01-25 15:19 - 2011-10-10 16:35 - 00003804 _____ () C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-01-25 14:57 - 2011-05-20 22:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Avanquest
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\ProgramData\BVRP Software
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\ProgramData\Avanquest
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\Program Files (x86)\Avanquest update
2014-01-25 14:06 - 2011-05-21 00:22 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-25 14:05 - 2014-01-25 14:05 - 00000000 ____D () C:\Program Files (x86)\Avanquest
2014-01-25 13:44 - 2014-01-25 11:55 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\AutoSave
2014-01-25 12:25 - 2009-07-14 06:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-25 12:14 - 2014-01-25 12:14 - 00001787 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-01-25 12:14 - 2014-01-25 12:12 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-25 12:14 - 2014-01-25 12:12 - 00000000 ____D () C:\Program Files\iTunes
2014-01-25 12:14 - 2014-01-25 12:12 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-01-25 12:12 - 2014-01-25 12:12 - 00000000 ____D () C:\Program Files\iPod
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default\AppData\Local\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default User\AppData\Local\Apple Computer
2014-01-25 11:55 - 2014-01-25 11:55 - 00000000 ____D () C:\Users\Public\Documents\BVRP Software
2014-01-25 11:55 - 2014-01-25 11:55 - 00000000 ____D () C:\ProgramData\Avanquest Software
2014-01-25 11:45 - 2012-11-05 14:25 - 00000000 ____D () C:\ProgramData\Apple
2014-01-24 07:52 - 2014-01-24 07:51 - 00261600 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-01-24 07:25 - 2012-07-02 16:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-24 07:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-01-23 17:41 - 2013-10-31 11:35 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-01-23 17:28 - 2011-08-04 15:41 - 01589164 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-23 17:15 - 2013-10-30 17:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-01-23 17:15 - 2011-08-12 16:21 - 00002018 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2014-01-23 17:12 - 2011-05-20 22:29 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-01-23 17:08 - 2012-03-29 17:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-23 17:08 - 2011-05-20 23:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-23 17:00 - 2014-01-23 17:00 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Secunia PSI
2014-01-23 17:00 - 2014-01-23 17:00 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-01-23 16:40 - 2014-01-23 13:57 - 00000000 ____D () C:\Program Files (x86)\HitmanPro.Alert
2014-01-23 16:39 - 2014-01-23 16:39 - 00000000 ____D () C:\Windows\de
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\sl
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\nl
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\it
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\hu
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\fr
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\es
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\en
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\da
2014-01-23 16:33 - 2014-01-23 16:33 - 00000000 ____D () C:\Program Files\Windows Live
2014-01-23 16:33 - 2011-05-20 23:04 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-01-23 16:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-01-23 16:30 - 2011-05-20 23:02 - 00010867 _____ () C:\Windows\DirectX.log
2014-01-23 16:29 - 2014-01-23 16:29 - 00002190 _____ () C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00002124 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00002124 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ___RD () C:\Users\JORDAN\SkyDrive
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 16:25 - 2014-01-23 16:25 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Windows Live
2014-01-23 16:11 - 2014-01-23 16:11 - 00000000 ____D () C:\ProgramData\Google Updater
2014-01-23 16:11 - 2011-08-04 10:23 - 00000000 ____D () C:\Program Files (x86)\Google
2014-01-23 16:01 - 2014-01-23 13:57 - 00564312 _____ (SurfRight) C:\Windows\SysWOW64\hmpalert.dll
2014-01-23 16:01 - 2014-01-23 13:57 - 00518480 _____ (SurfRight) C:\Windows\system32\hmpalert.dll
2014-01-23 16:01 - 2014-01-23 13:57 - 00017416 _____ () C:\Windows\system32\Drivers\hmpalert.sys
2014-01-23 13:57 - 2014-01-23 13:57 - 00000000 ____D () C:\ProgramData\HitmanPro.Alert
2014-01-23 13:45 - 2011-05-20 23:42 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-23 13:40 - 2014-01-23 13:41 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-23 13:40 - 2014-01-23 13:41 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-23 13:40 - 2011-05-20 23:42 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-23 13:40 - 2011-05-20 23:42 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-23 13:40 - 2011-05-20 23:42 - 00000000 ____D () C:\Program Files\Java
2014-01-23 13:20 - 2011-08-04 10:30 - 00001425 _____ () C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-23 13:15 - 2009-07-14 05:45 - 00421984 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-23 11:59 - 2014-01-23 11:54 - 00009961 _____ () C:\Windows\IE11_main.log
2014-01-23 11:55 - 2014-01-23 11:55 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-23 11:55 - 2014-01-23 11:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-23 11:55 - 2014-01-23 11:55 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-23 11:55 - 2014-01-23 11:55 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-23 11:55 - 2014-01-23 11:55 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-23 11:55 - 2014-01-23 11:55 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-23 11:55 - 2014-01-23 11:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-23 11:54 - 2013-08-19 09:14 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-23 11:23 - 2012-11-05 14:28 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Apple Computer
2014-01-15 17:20 - 2012-11-05 14:26 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Apple
2014-01-15 14:45 - 2014-01-15 14:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-01-15 14:33 - 2011-08-04 15:35 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Google
2014-01-15 14:31 - 2012-11-05 14:28 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Apple Computer
2014-01-15 14:30 - 2014-01-15 14:30 - 00002379 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-01-15 12:59 - 2011-08-04 15:58 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Adobe
2014-01-15 12:35 - 2011-08-04 10:23 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-15 12:28 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-01-06 16:20 - 2011-05-20 22:28 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
Some content of TEMP:
====================
C:\Users\JORDAN\AppData\Local\Temp\avgnt.exe
C:\Users\JORDAN\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-04 08:19
==================== End Of Log ============================
--- --- --- |
|
05.02.2014, 09:02
| #18 |
| /// the machine /// TB-Ausbilder | Rechner scheint infiziert, Probleme mit Programmen hi,
__________________Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ |
|
05.02.2014, 13:23
| #19 |
| |  Rechner scheint infiziert, Probleme mit Programmen Hi, seit gestern wird auch die IP-Adresse nicht mehr unten auf Firefox angezeigt, stattdessen: "IP: Fehler!" Code:
ATTFilter 12:54:36.0856 3964 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:54:36.0871 3964 ============================================================
12:54:36.0871 3964 Current date / time: 2014/02/05 12:54:36.0871
12:54:36.0871 3964 SystemInfo:
12:54:36.0871 3964
12:54:36.0871 3964 OS Version: 6.1.7601 ServicePack: 1.0
12:54:36.0871 3964 Product type: Workstation
12:54:36.0871 3964 ComputerName: JORDAN-NOTEBOOK
12:54:36.0871 3964 UserName: JORDAN
12:54:36.0871 3964 Windows directory: C:\Windows
12:54:36.0871 3964 System windows directory: C:\Windows
12:54:36.0871 3964 Running under WOW64
12:54:36.0871 3964 Processor architecture: Intel x64
12:54:36.0871 3964 Number of processors: 4
12:54:36.0871 3964 Page size: 0x1000
12:54:36.0871 3964 Boot type: Normal boot
12:54:36.0871 3964 ============================================================
12:54:37.0417 3964 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:54:37.0433 3964 ============================================================
12:54:37.0433 3964 \Device\Harddisk0\DR0:
12:54:37.0433 3964 MBR partitions:
12:54:37.0433 3964 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:54:37.0433 3964 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x52312800
12:54:37.0448 3964 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x52345800, BlocksNum 0x4BFD000
12:54:37.0480 3964 ============================================================
12:54:37.0542 3964 C: <-> \Device\Harddisk0\DR0\Partition2
12:54:37.0589 3964 D: <-> \Device\Harddisk0\DR0\Partition3
12:54:37.0589 3964 ============================================================
12:54:37.0589 3964 Initialize success
12:54:37.0589 3964 ============================================================
12:55:00.0942 60008 ============================================================
12:55:00.0942 60008 Scan started
12:55:00.0942 60008 Mode: Manual; SigCheck; TDLFS;
12:55:00.0942 60008 ============================================================
12:55:01.0722 60008 ================ Scan system memory ========================
12:55:01.0722 60008 System memory - ok
12:55:01.0722 60008 ================ Scan services =============================
12:55:01.0940 60008 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:55:02.0081 60008 1394ohci - ok
12:55:02.0190 60008 [ 7EEB488346FBFA3731276C3EE8A8FD9E ] AAV UpdateService C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
12:55:02.0206 60008 AAV UpdateService - ok
12:55:02.0252 60008 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:55:02.0268 60008 ACPI - ok
12:55:02.0299 60008 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:55:02.0377 60008 AcpiPmi - ok
12:55:02.0471 60008 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:55:02.0486 60008 AdobeARMservice - ok
12:55:02.0611 60008 [ 2471BCB6E1388A3484E78243A1BE5F33 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:55:02.0642 60008 AdobeFlashPlayerUpdateSvc - ok
12:55:02.0689 60008 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:55:02.0720 60008 adp94xx - ok
12:55:02.0767 60008 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:55:02.0798 60008 adpahci - ok
12:55:02.0814 60008 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:55:02.0830 60008 adpu320 - ok
12:55:02.0861 60008 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:55:03.0017 60008 AeLookupSvc - ok
12:55:03.0048 60008 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
12:55:03.0095 60008 AFD - ok
12:55:03.0142 60008 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:55:03.0173 60008 agp440 - ok
12:55:03.0220 60008 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:55:03.0282 60008 ALG - ok
12:55:03.0313 60008 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:55:03.0329 60008 aliide - ok
12:55:03.0344 60008 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:55:03.0344 60008 amdide - ok
12:55:03.0376 60008 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:55:03.0407 60008 AmdK8 - ok
12:55:03.0422 60008 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
12:55:03.0454 60008 AmdPPM - ok
12:55:03.0500 60008 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:55:03.0532 60008 amdsata - ok
12:55:03.0563 60008 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
12:55:03.0578 60008 amdsbs - ok
12:55:03.0594 60008 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:55:03.0594 60008 amdxata - ok
12:55:03.0688 60008 [ FE79366FECD444A16CCA9979134DBEA8 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
12:55:03.0734 60008 AntiVirSchedulerService - ok
12:55:03.0781 60008 [ FDE9C7030FB1E9E2715E113EE6A10F90 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
12:55:03.0797 60008 AntiVirService - ok
12:55:03.0875 60008 [ 8D69B1551F51E18AE12E01DE6A2050EA ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
12:55:03.0890 60008 AntiVirWebService - ok
12:55:03.0953 60008 [ B342CD9AA44E4AE99E2368EBDBC2E17A ] APNMCP C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
12:55:03.0968 60008 APNMCP - ok
12:55:04.0015 60008 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:55:04.0093 60008 AppID - ok
12:55:04.0109 60008 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:55:04.0156 60008 AppIDSvc - ok
12:55:04.0202 60008 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
12:55:04.0265 60008 Appinfo - ok
12:55:04.0343 60008 [ F518545E5B7623AD49ABE7F8776EFA46 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:55:04.0358 60008 Apple Mobile Device - ok
12:55:04.0436 60008 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
12:55:04.0452 60008 arc - ok
12:55:04.0468 60008 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:55:04.0483 60008 arcsas - ok
12:55:04.0577 60008 [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:55:04.0639 60008 aspnet_state - ok
12:55:04.0655 60008 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:55:04.0748 60008 AsyncMac - ok
12:55:04.0780 60008 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:55:04.0795 60008 atapi - ok
12:55:04.0842 60008 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:55:04.0889 60008 AudioEndpointBuilder - ok
12:55:04.0920 60008 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:55:04.0951 60008 AudioSrv - ok
12:55:04.0998 60008 [ 7806BFCD1D7FA5EC23F7324D4EAFD25B ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
12:55:05.0045 60008 avgntflt - ok
12:55:05.0107 60008 [ C3A58DBD18786C338126D30BF8C33D72 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
12:55:05.0138 60008 avipbb - ok
12:55:05.0154 60008 [ 390184FAD8FCC1B6DA25AEBAE928C3B6 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
12:55:05.0185 60008 avkmgr - ok
12:55:05.0232 60008 [ 3DE0EBA0BF4771C897F544CBF7CB8973 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
12:55:05.0263 60008 avnetflt - ok
12:55:05.0310 60008 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:55:05.0404 60008 AxInstSV - ok
12:55:05.0450 60008 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
12:55:05.0482 60008 b06bdrv - ok
12:55:05.0528 60008 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:55:05.0591 60008 b57nd60a - ok
12:55:05.0638 60008 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:55:05.0684 60008 BDESVC - ok
12:55:05.0731 60008 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:55:05.0778 60008 Beep - ok
12:55:05.0825 60008 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:55:05.0887 60008 BFE - ok
12:55:05.0934 60008 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
12:55:06.0012 60008 BITS - ok
12:55:06.0059 60008 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
12:55:06.0090 60008 blbdrive - ok
12:55:06.0184 60008 [ 832314A5AC804DEE429A009A3D41B99B ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
12:55:06.0215 60008 Bluetooth Device Monitor - ok
12:55:06.0246 60008 [ 35C701C5A286543973F0FC8BC195515E ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
12:55:06.0277 60008 Bluetooth Media Service - ok
12:55:06.0340 60008 [ A475D68B03FEBF6C371F0D9644C2E12D ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
12:55:06.0386 60008 Bluetooth OBEX Service - ok
12:55:06.0464 60008 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:55:06.0496 60008 Bonjour Service - ok
12:55:06.0542 60008 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:55:06.0589 60008 bowser - ok
12:55:06.0620 60008 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
12:55:06.0667 60008 BrFiltLo - ok
12:55:06.0698 60008 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
12:55:06.0745 60008 BrFiltUp - ok
12:55:06.0792 60008 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
12:55:06.0870 60008 BridgeMP - ok
12:55:06.0901 60008 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:55:06.0948 60008 Browser - ok
12:55:06.0979 60008 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:55:07.0010 60008 Brserid - ok
12:55:07.0057 60008 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:55:07.0104 60008 BrSerWdm - ok
12:55:07.0120 60008 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:55:07.0151 60008 BrUsbMdm - ok
12:55:07.0198 60008 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:55:07.0229 60008 BrUsbSer - ok
12:55:07.0260 60008 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
12:55:07.0307 60008 BthEnum - ok
12:55:07.0322 60008 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:55:07.0354 60008 BTHMODEM - ok
12:55:07.0400 60008 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
12:55:07.0463 60008 BthPan - ok
12:55:07.0494 60008 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
12:55:07.0541 60008 BTHPORT - ok
12:55:07.0572 60008 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:55:07.0603 60008 bthserv - ok
12:55:07.0634 60008 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
12:55:07.0681 60008 BTHUSB - ok
12:55:07.0728 60008 [ BA554BFCBF21201D310738A42C9C19E1 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
12:55:07.0744 60008 btmaux - ok
12:55:07.0790 60008 [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
12:55:07.0853 60008 btmhsf - ok
12:55:07.0868 60008 catchme - ok
12:55:07.0900 60008 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:55:07.0962 60008 cdfs - ok
12:55:07.0993 60008 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:55:08.0009 60008 cdrom - ok
12:55:08.0040 60008 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:55:08.0087 60008 CertPropSvc - ok
12:55:08.0102 60008 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
12:55:08.0134 60008 circlass - ok
12:55:08.0149 60008 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:55:08.0165 60008 CLFS - ok
12:55:08.0227 60008 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:55:08.0258 60008 clr_optimization_v2.0.50727_32 - ok
12:55:08.0274 60008 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:55:08.0290 60008 clr_optimization_v2.0.50727_64 - ok
12:55:08.0368 60008 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:55:08.0492 60008 clr_optimization_v4.0.30319_32 - ok
12:55:08.0524 60008 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:55:08.0617 60008 clr_optimization_v4.0.30319_64 - ok
12:55:08.0648 60008 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
12:55:08.0680 60008 clwvd - ok
12:55:08.0711 60008 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
12:55:08.0742 60008 CmBatt - ok
12:55:08.0773 60008 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:55:08.0804 60008 cmdide - ok
12:55:08.0851 60008 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
12:55:08.0898 60008 CNG - ok
12:55:08.0914 60008 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
12:55:08.0914 60008 Compbatt - ok
12:55:08.0945 60008 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:55:08.0976 60008 CompositeBus - ok
12:55:08.0976 60008 COMSysApp - ok
12:55:09.0085 60008 [ 08F934092E0429BADF88E9F91DB0F61E ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
12:55:09.0132 60008 cphs - ok
12:55:09.0148 60008 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:55:09.0163 60008 crcdisk - ok
12:55:09.0210 60008 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:55:09.0241 60008 CryptSvc - ok
12:55:09.0366 60008 [ FD557A50A65E44041CD2FCEF4BEB04DB ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
12:55:09.0397 60008 cvhsvc - ok
12:55:09.0428 60008 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:55:09.0491 60008 DcomLaunch - ok
12:55:09.0522 60008 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:55:09.0569 60008 defragsvc - ok
12:55:09.0600 60008 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:55:09.0678 60008 DfsC - ok
12:55:09.0709 60008 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:55:09.0756 60008 Dhcp - ok
12:55:09.0787 60008 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:55:09.0850 60008 discache - ok
12:55:09.0896 60008 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
12:55:09.0912 60008 Disk - ok
12:55:09.0928 60008 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:55:09.0974 60008 Dnscache - ok
12:55:09.0990 60008 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:55:10.0052 60008 dot3svc - ok
12:55:10.0084 60008 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
12:55:10.0115 60008 Dot4 - ok
12:55:10.0146 60008 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
12:55:10.0177 60008 Dot4Print - ok
12:55:10.0193 60008 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
12:55:10.0224 60008 dot4usb - ok
12:55:10.0255 60008 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:55:10.0302 60008 DPS - ok
12:55:10.0349 60008 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:55:10.0396 60008 drmkaud - ok
12:55:10.0442 60008 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:55:10.0489 60008 DXGKrnl - ok
12:55:10.0536 60008 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:55:10.0583 60008 EapHost - ok
12:55:10.0692 60008 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
12:55:10.0786 60008 ebdrv - ok
12:55:10.0817 60008 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
12:55:10.0864 60008 EFS - ok
12:55:10.0926 60008 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:55:10.0988 60008 ehRecvr - ok
12:55:11.0020 60008 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:55:11.0051 60008 ehSched - ok
12:55:11.0113 60008 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:55:11.0144 60008 elxstor - ok
12:55:11.0160 60008 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:55:11.0191 60008 ErrDev - ok
12:55:11.0238 60008 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:55:11.0316 60008 EventSystem - ok
12:55:11.0441 60008 [ 54FC81B0162478A72A93DBBEAFB35671 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
12:55:11.0503 60008 EvtEng - ok
12:55:11.0534 60008 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:55:11.0628 60008 exfat - ok
12:55:11.0644 60008 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:55:11.0690 60008 fastfat - ok
12:55:11.0753 60008 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:55:11.0800 60008 Fax - ok
12:55:11.0815 60008 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
12:55:11.0846 60008 fdc - ok
12:55:11.0862 60008 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:55:11.0909 60008 fdPHost - ok
12:55:11.0909 60008 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:55:11.0956 60008 FDResPub - ok
12:55:12.0002 60008 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:55:12.0018 60008 FileInfo - ok
12:55:12.0018 60008 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:55:12.0080 60008 Filetrace - ok
12:55:12.0112 60008 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
12:55:12.0127 60008 flpydisk - ok
12:55:12.0158 60008 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:55:12.0174 60008 FltMgr - ok
12:55:12.0236 60008 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
12:55:12.0299 60008 FontCache - ok
12:55:12.0361 60008 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:55:12.0377 60008 FontCache3.0.0.0 - ok
12:55:12.0392 60008 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:55:12.0408 60008 FsDepends - ok
12:55:12.0439 60008 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:55:12.0455 60008 Fs_Rec - ok
12:55:12.0502 60008 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:55:12.0533 60008 fvevol - ok
12:55:12.0564 60008 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:55:12.0580 60008 gagp30kx - ok
12:55:12.0595 60008 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:55:12.0611 60008 GEARAspiWDM - ok
12:55:12.0642 60008 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:55:12.0704 60008 gpsvc - ok
12:55:12.0751 60008 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:55:12.0767 60008 gupdate - ok
12:55:12.0767 60008 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:55:12.0782 60008 gupdatem - ok
12:55:12.0814 60008 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
12:55:12.0829 60008 gusvc - ok
12:55:12.0860 60008 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:55:12.0907 60008 hcw85cir - ok
12:55:12.0938 60008 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:55:12.0985 60008 HdAudAddService - ok
12:55:13.0032 60008 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:55:13.0063 60008 HDAudBus - ok
12:55:13.0079 60008 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
12:55:13.0110 60008 HidBatt - ok
12:55:13.0110 60008 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:55:13.0141 60008 HidBth - ok
12:55:13.0188 60008 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
12:55:13.0219 60008 HidIr - ok
12:55:13.0235 60008 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
12:55:13.0282 60008 hidserv - ok
12:55:13.0328 60008 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:55:13.0360 60008 HidUsb - ok
12:55:13.0391 60008 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:55:13.0469 60008 hkmsvc - ok
12:55:13.0500 60008 [ 4C66CCE36DE9DBC28E61F9B74062206A ] hmpalert C:\Windows\system32\drivers\hmpalert.sys
12:55:13.0516 60008 hmpalert - ok
12:55:13.0578 60008 [ 1393FBD6435180ABCD55AA93C56579E4 ] hmpalertsvc C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
12:55:13.0609 60008 hmpalertsvc - ok
12:55:13.0640 60008 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:55:13.0703 60008 HomeGroupListener - ok
12:55:13.0718 60008 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:55:13.0750 60008 HomeGroupProvider - ok
12:55:13.0828 60008 [ 08457D8F8149757C70CEA59C71EC5D27 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
12:55:13.0859 60008 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
12:55:13.0859 60008 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
12:55:13.0874 60008 [ 75CC8C5146A3FB76221A7606628778D5 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
12:55:13.0890 60008 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
12:55:13.0890 60008 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
12:55:13.0937 60008 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:55:13.0968 60008 HpSAMD - ok
12:55:14.0015 60008 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:55:14.0077 60008 HTTP - ok
12:55:14.0093 60008 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:55:14.0108 60008 hwpolicy - ok
12:55:14.0124 60008 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:55:14.0140 60008 i8042prt - ok
12:55:14.0171 60008 [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor C:\Windows\system32\drivers\iaStor.sys
12:55:14.0202 60008 iaStor - ok
12:55:14.0280 60008 [ E79A8E33BD136D14BAE1FA20EB2EF124 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
12:55:14.0311 60008 IAStorDataMgrSvc - ok
12:55:14.0358 60008 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:55:14.0389 60008 iaStorV - ok
12:55:14.0420 60008 [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
12:55:14.0452 60008 iBtFltCoex - ok
12:55:14.0498 60008 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:55:14.0545 60008 idsvc - ok
12:55:14.0561 60008 IEEtwCollectorService - ok
12:55:14.0701 60008 [ 8C44E6B688790E2AD3846C97661C54F1 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:55:14.0904 60008 igfx - ok
12:55:14.0935 60008 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:55:14.0951 60008 iirsp - ok
12:55:14.0982 60008 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
12:55:15.0029 60008 IKEEXT - ok
12:55:15.0076 60008 [ CAA8BC6737DFA3BF1A50175CFB226788 ] InputFilter_Hid_FlexDef2b C:\Windows\system32\DRIVERS\InputFilter_FlexDef2b.sys
12:55:15.0122 60008 InputFilter_Hid_FlexDef2b - ok
12:55:15.0185 60008 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
12:55:15.0216 60008 intaud_WaveExtensible - ok
12:55:15.0325 60008 [ 177B4E48C7A288E70779B42AB81D2D06 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:55:15.0403 60008 IntcAzAudAddService - ok
12:55:15.0419 60008 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
12:55:15.0450 60008 IntcDAud - ok
12:55:15.0497 60008 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:55:15.0512 60008 intelide - ok
12:55:15.0559 60008 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:55:15.0590 60008 intelppm - ok
12:55:15.0622 60008 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:55:15.0684 60008 IPBusEnum - ok
12:55:15.0700 60008 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:55:15.0746 60008 IpFilterDriver - ok
12:55:15.0778 60008 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:55:15.0824 60008 iphlpsvc - ok
12:55:15.0856 60008 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:55:15.0871 60008 IPMIDRV - ok
12:55:15.0902 60008 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:55:15.0949 60008 IPNAT - ok
12:55:15.0996 60008 [ F7ED08D4BC89D7AC6135C1556A89157F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:55:16.0012 60008 iPod Service - ok
12:55:16.0043 60008 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:55:16.0058 60008 IRENUM - ok
12:55:16.0074 60008 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:55:16.0074 60008 isapnp - ok
12:55:16.0105 60008 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:55:16.0121 60008 iScsiPrt - ok
12:55:16.0152 60008 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\Windows\system32\drivers\iwdbus.sys
12:55:16.0168 60008 iwdbus - ok
12:55:16.0214 60008 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:55:16.0230 60008 kbdclass - ok
12:55:16.0261 60008 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:55:16.0277 60008 kbdhid - ok
12:55:16.0292 60008 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
12:55:16.0308 60008 KeyIso - ok
12:55:16.0339 60008 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:55:16.0355 60008 KSecDD - ok
12:55:16.0370 60008 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:55:16.0386 60008 KSecPkg - ok
12:55:16.0402 60008 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:55:16.0464 60008 ksthunk - ok
12:55:16.0480 60008 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:55:16.0558 60008 KtmRm - ok
12:55:16.0589 60008 [ 6DD5383C9413AAE3113FAF89E345663D ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
12:55:16.0604 60008 L1C - ok
12:55:16.0620 60008 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
12:55:16.0667 60008 LanmanServer - ok
12:55:16.0698 60008 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:55:16.0776 60008 LanmanWorkstation - ok
12:55:16.0792 60008 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:55:16.0838 60008 lltdio - ok
12:55:16.0854 60008 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:55:16.0916 60008 lltdsvc - ok
12:55:16.0932 60008 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:55:16.0979 60008 lmhosts - ok
12:55:17.0010 60008 [ 5456DE5A8E11EDBD68BF19C70B0A8F58 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:55:17.0026 60008 LMS - ok
12:55:17.0072 60008 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:55:17.0072 60008 LSI_FC - ok
12:55:17.0104 60008 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:55:17.0119 60008 LSI_SAS - ok
12:55:17.0135 60008 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
12:55:17.0150 60008 LSI_SAS2 - ok
12:55:17.0182 60008 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:55:17.0182 60008 LSI_SCSI - ok
12:55:17.0228 60008 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:55:17.0306 60008 luafv - ok
12:55:17.0353 60008 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:55:17.0384 60008 Mcx2Svc - ok
12:55:17.0400 60008 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
12:55:17.0431 60008 megasas - ok
12:55:17.0447 60008 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
12:55:17.0462 60008 MegaSR - ok
12:55:17.0478 60008 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\drivers\HECIx64.sys
12:55:17.0494 60008 MEIx64 - ok
12:55:17.0509 60008 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:55:17.0572 60008 MMCSS - ok
12:55:17.0603 60008 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:55:17.0650 60008 Modem - ok
12:55:17.0665 60008 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:55:17.0681 60008 monitor - ok
12:55:17.0712 60008 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:55:17.0728 60008 mouclass - ok
12:55:17.0759 60008 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:55:17.0806 60008 mouhid - ok
12:55:17.0899 60008 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:55:17.0930 60008 mountmgr - ok
12:55:17.0993 60008 [ 3B9398E0146855B1DC0E3D9769C80F01 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:55:18.0024 60008 MozillaMaintenance - ok
12:55:18.0055 60008 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:55:18.0071 60008 mpio - ok
12:55:18.0086 60008 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:55:18.0118 60008 mpsdrv - ok
12:55:18.0149 60008 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:55:18.0211 60008 MpsSvc - ok
12:55:18.0242 60008 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:55:18.0274 60008 MRxDAV - ok
12:55:18.0289 60008 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:55:18.0336 60008 mrxsmb - ok
12:55:18.0352 60008 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:55:18.0383 60008 mrxsmb10 - ok
12:55:18.0398 60008 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:55:18.0430 60008 mrxsmb20 - ok
12:55:18.0461 60008 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:55:18.0476 60008 msahci - ok
12:55:18.0492 60008 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:55:18.0508 60008 msdsm - ok
12:55:18.0523 60008 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:55:18.0554 60008 MSDTC - ok
12:55:18.0586 60008 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:55:18.0632 60008 Msfs - ok
12:55:18.0648 60008 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:55:18.0695 60008 mshidkmdf - ok
12:55:18.0695 60008 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:55:18.0695 60008 msisadrv - ok
12:55:18.0742 60008 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:55:18.0804 60008 MSiSCSI - ok
12:55:18.0804 60008 msiserver - ok
12:55:18.0835 60008 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:55:18.0898 60008 MSKSSRV - ok
12:55:18.0913 60008 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:55:18.0960 60008 MSPCLOCK - ok
12:55:18.0960 60008 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:55:18.0991 60008 MSPQM - ok
12:55:19.0022 60008 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:55:19.0038 60008 MsRPC - ok
12:55:19.0054 60008 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:55:19.0069 60008 mssmbios - ok
12:55:19.0100 60008 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:55:19.0147 60008 MSTEE - ok
12:55:19.0163 60008 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
12:55:19.0194 60008 MTConfig - ok
12:55:19.0210 60008 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:55:19.0225 60008 Mup - ok
12:55:19.0256 60008 [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
12:55:19.0272 60008 MyWiFiDHCPDNS - ok
12:55:19.0303 60008 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:55:19.0350 60008 napagent - ok
12:55:19.0397 60008 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:55:19.0444 60008 NativeWifiP - ok
12:55:19.0490 60008 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:55:19.0522 60008 NDIS - ok
12:55:19.0553 60008 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:55:19.0584 60008 NdisCap - ok
12:55:19.0615 60008 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:55:19.0693 60008 NdisTapi - ok
12:55:19.0709 60008 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:55:19.0771 60008 Ndisuio - ok
12:55:19.0787 60008 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:55:19.0834 60008 NdisWan - ok
12:55:19.0849 60008 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:55:19.0896 60008 NDProxy - ok
12:55:19.0943 60008 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
12:55:19.0958 60008 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
12:55:19.0958 60008 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
12:55:19.0990 60008 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:55:20.0036 60008 NetBIOS - ok
12:55:20.0068 60008 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:55:20.0114 60008 NetBT - ok
12:55:20.0130 60008 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
12:55:20.0146 60008 Netlogon - ok
12:55:20.0177 60008 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
12:55:20.0224 60008 Netman - ok
12:55:20.0286 60008 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:20.0348 60008 NetMsmqActivator - ok
12:55:20.0364 60008 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:20.0380 60008 NetPipeActivator - ok
12:55:20.0426 60008 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:55:20.0473 60008 netprofm - ok
12:55:20.0504 60008 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:20.0520 60008 NetTcpActivator - ok
12:55:20.0520 60008 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:20.0536 60008 NetTcpPortSharing - ok
12:55:20.0723 60008 [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
12:55:20.0972 60008 NETwNs64 - ok
12:55:21.0004 60008 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:55:21.0035 60008 nfrd960 - ok
12:55:21.0097 60008 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:55:21.0128 60008 NlaSvc - ok
12:55:21.0160 60008 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:55:21.0206 60008 Npfs - ok
12:55:21.0222 60008 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:55:21.0300 60008 nsi - ok
12:55:21.0316 60008 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:55:21.0347 60008 nsiproxy - ok
12:55:21.0409 60008 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:55:21.0472 60008 Ntfs - ok
12:55:21.0487 60008 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:55:21.0534 60008 Null - ok
12:55:21.0565 60008 [ 01266516E6E88D183A2B58722EEB4443 ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
12:55:21.0596 60008 nusb3hub - ok
12:55:21.0643 60008 [ 5EC04F55CC5F165F21752712437DF638 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
12:55:21.0674 60008 nusb3xhc - ok
12:55:21.0706 60008 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:55:21.0721 60008 nvraid - ok
12:55:21.0752 60008 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:55:21.0768 60008 nvstor - ok
12:55:21.0799 60008 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:55:21.0815 60008 nv_agp - ok
12:55:21.0830 60008 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:55:21.0862 60008 ohci1394 - ok
12:55:21.0924 60008 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:55:21.0940 60008 ose - ok
12:55:22.0096 60008 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:55:22.0252 60008 osppsvc - ok
12:55:22.0283 60008 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:55:22.0330 60008 p2pimsvc - ok
12:55:22.0361 60008 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:55:22.0392 60008 p2psvc - ok
12:55:22.0423 60008 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
12:55:22.0454 60008 Parport - ok
12:55:22.0486 60008 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:55:22.0501 60008 partmgr - ok
12:55:22.0532 60008 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:55:22.0579 60008 PcaSvc - ok
12:55:22.0595 60008 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:55:22.0610 60008 pci - ok
12:55:22.0626 60008 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:55:22.0642 60008 pciide - ok
12:55:22.0657 60008 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:55:22.0673 60008 pcmcia - ok
12:55:22.0704 60008 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:55:22.0720 60008 pcw - ok
12:55:22.0735 60008 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:55:22.0782 60008 PEAUTH - ok
12:55:22.0891 60008 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:55:22.0938 60008 PerfHost - ok
12:55:22.0985 60008 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:55:23.0047 60008 pla - ok
12:55:23.0078 60008 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:55:23.0125 60008 PlugPlay - ok
12:55:23.0156 60008 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
12:55:23.0172 60008 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
12:55:23.0172 60008 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
12:55:23.0188 60008 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:55:23.0219 60008 PNRPAutoReg - ok
12:55:23.0234 60008 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:55:23.0250 60008 PNRPsvc - ok
12:55:23.0266 60008 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:55:23.0328 60008 PolicyAgent - ok
12:55:23.0359 60008 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:55:23.0406 60008 Power - ok
12:55:23.0437 60008 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:55:23.0484 60008 PptpMiniport - ok
12:55:23.0500 60008 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
12:55:23.0531 60008 Processor - ok
12:55:23.0546 60008 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:55:23.0578 60008 ProfSvc - ok
12:55:23.0593 60008 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
12:55:23.0609 60008 ProtectedStorage - ok
12:55:23.0640 60008 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:55:23.0702 60008 Psched - ok
12:55:23.0765 60008 [ DD3FD48D69F5FBBB21D46D1514C1C2DB ] PSI C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
12:55:23.0780 60008 PSI - ok
12:55:23.0812 60008 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
12:55:23.0827 60008 PSI_SVC_2 - ok
12:55:23.0890 60008 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:55:23.0952 60008 ql2300 - ok
12:55:23.0952 60008 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:55:23.0968 60008 ql40xx - ok
12:55:23.0999 60008 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:55:24.0014 60008 QWAVE - ok
12:55:24.0046 60008 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:55:24.0077 60008 QWAVEdrv - ok
12:55:24.0077 60008 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:55:24.0124 60008 RasAcd - ok
12:55:24.0155 60008 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:55:24.0233 60008 RasAgileVpn - ok
12:55:24.0248 60008 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:55:24.0295 60008 RasAuto - ok
12:55:24.0326 60008 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:55:24.0358 60008 Rasl2tp - ok
12:55:24.0389 60008 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:55:24.0451 60008 RasMan - ok
12:55:24.0482 60008 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:55:24.0545 60008 RasPppoe - ok
12:55:24.0560 60008 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:55:24.0607 60008 RasSstp - ok
12:55:24.0623 60008 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:55:24.0670 60008 rdbss - ok
12:55:24.0701 60008 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
12:55:24.0716 60008 rdpbus - ok
12:55:24.0748 60008 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:55:24.0810 60008 RDPCDD - ok
12:55:24.0810 60008 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:55:24.0857 60008 RDPENCDD - ok
12:55:24.0888 60008 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:55:24.0919 60008 RDPREFMP - ok
12:55:24.0950 60008 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:55:24.0997 60008 RdpVideoMiniport - ok
12:55:25.0028 60008 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:55:25.0091 60008 RDPWD - ok
12:55:25.0200 60008 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:55:25.0231 60008 rdyboost - ok
12:55:26.0244 60008 [ A436F5E7D80BBDBB0826D0F176D5BEA8 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
12:55:26.0315 60008 RegSrvc - ok
12:55:26.0455 60008 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:55:26.0564 60008 RemoteAccess - ok
12:55:26.0658 60008 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:55:26.0705 60008 RemoteRegistry - ok
12:55:26.0830 60008 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
12:55:26.0892 60008 RFCOMM - ok
12:55:27.0048 60008 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
12:55:27.0095 60008 RichVideo ( UnsignedFile.Multi.Generic ) - warning
12:55:27.0095 60008 RichVideo - detected UnsignedFile.Multi.Generic (1)
12:55:27.0157 60008 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:55:27.0235 60008 RpcEptMapper - ok
12:55:27.0282 60008 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:55:27.0360 60008 RpcLocator - ok
12:55:27.0407 60008 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
12:55:27.0469 60008 RpcSs - ok
12:55:27.0532 60008 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:55:27.0594 60008 rspndr - ok
12:55:27.0688 60008 [ CE0A1D8A59410E698140821E4E69DA0D ] RSUSBVSTOR C:\Windows\System32\Drivers\RtsUVStor.sys
12:55:27.0719 60008 RSUSBVSTOR - ok
12:55:27.0750 60008 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
12:55:27.0750 60008 SamSs - ok
12:55:27.0797 60008 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:55:27.0812 60008 sbp2port - ok
12:55:27.0875 60008 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:55:27.0922 60008 SCardSvr - ok
12:55:27.0968 60008 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:55:28.0031 60008 scfilter - ok
12:55:28.0093 60008 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:55:28.0187 60008 Schedule - ok
12:55:28.0249 60008 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:55:28.0312 60008 SCPolicySvc - ok
12:55:28.0343 60008 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:55:28.0390 60008 SDRSVC - ok
12:55:28.0421 60008 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:55:28.0499 60008 secdrv - ok
12:55:28.0546 60008 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:55:28.0624 60008 seclogon - ok
12:55:28.0780 60008 [ 398A81D590424441B2F5C5C08073CADB ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
12:55:28.0858 60008 Secunia PSI Agent - ok
12:55:28.0936 60008 [ 8C2D3A80FC90A860F0F24DEB67471481 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
12:55:28.0998 60008 Secunia Update Agent - ok
12:55:29.0029 60008 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
12:55:29.0092 60008 SENS - ok
12:55:29.0123 60008 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:55:29.0201 60008 SensrSvc - ok
12:55:29.0263 60008 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
12:55:29.0310 60008 Serenum - ok
12:55:29.0372 60008 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
12:55:29.0388 60008 Serial - ok
12:55:29.0435 60008 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:55:29.0482 60008 sermouse - ok
12:55:29.0497 60008 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:55:29.0560 60008 SessionEnv - ok
12:55:29.0591 60008 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:55:29.0638 60008 sffdisk - ok
12:55:29.0653 60008 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:55:29.0684 60008 sffp_mmc - ok
12:55:29.0700 60008 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:55:29.0731 60008 sffp_sd - ok
12:55:29.0762 60008 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:55:29.0778 60008 sfloppy - ok
12:55:29.0872 60008 [ 2046AA7491DE7EFA4D70E615D9BC9D09 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
12:55:29.0934 60008 Sftfs - ok
12:55:30.0043 60008 [ 77C5A741A7452812F278EF2C18478862 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
12:55:30.0074 60008 sftlist - ok
12:55:30.0137 60008 [ 0E0446BC4D51BE4263ACB7E33491191C ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
12:55:30.0168 60008 Sftplay - ok
12:55:30.0277 60008 [ C5FB982CD266E604ED3142102C26D62C ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
12:55:30.0308 60008 Sftredir - ok
12:55:30.0355 60008 [ 2575511AF67AA1FA068CCC4918E2C2A3 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
12:55:30.0386 60008 Sftvol - ok
12:55:30.0511 60008 [ 39B1D0A636A400304565D4521FAD6D77 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
12:55:30.0558 60008 sftvsa - ok
12:55:30.0698 60008 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:55:30.0808 60008 SharedAccess - ok
12:55:30.0886 60008 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:55:30.0948 60008 ShellHWDetection - ok
12:55:31.0010 60008 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
12:55:31.0042 60008 SiSRaid2 - ok
12:55:31.0088 60008 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:55:31.0120 60008 SiSRaid4 - ok
12:55:31.0588 60008 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
12:55:31.0697 60008 Skype C2C Service - ok
12:55:31.0868 60008 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:55:31.0900 60008 SkypeUpdate - ok
12:55:31.0946 60008 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:55:32.0009 60008 Smb - ok
12:55:32.0071 60008 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:55:32.0118 60008 SNMPTRAP - ok
12:55:32.0165 60008 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:55:32.0180 60008 spldr - ok
12:55:32.0274 60008 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:55:32.0368 60008 Spooler - ok
12:55:32.0508 60008 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:55:32.0648 60008 sppsvc - ok
12:55:32.0664 60008 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:55:32.0711 60008 sppuinotify - ok
12:55:32.0742 60008 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:55:32.0789 60008 srv - ok
12:55:32.0836 60008 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:55:32.0882 60008 srv2 - ok
12:55:32.0914 60008 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:55:32.0945 60008 srvnet - ok
12:55:32.0992 60008 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:55:33.0054 60008 SSDPSRV - ok
12:55:33.0070 60008 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:55:33.0148 60008 SstpSvc - ok
12:55:33.0179 60008 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
12:55:33.0226 60008 stexstor - ok
12:55:33.0319 60008 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:55:33.0413 60008 stisvc - ok
12:55:33.0444 60008 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
12:55:33.0475 60008 swenum - ok
12:55:33.0538 60008 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:55:33.0616 60008 swprv - ok
12:55:33.0725 60008 [ B3AD15FA10EBEAFC1275F34050E4E230 ] SynTP C:\Windows\system32\drivers\SynTP.sys
12:55:33.0803 60008 SynTP - ok
12:55:33.0896 60008 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:55:33.0990 60008 SysMain - ok
12:55:34.0037 60008 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:55:34.0084 60008 TabletInputService - ok
12:55:34.0115 60008 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:55:34.0162 60008 TapiSrv - ok
12:55:34.0208 60008 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:55:34.0286 60008 TBS - ok
12:55:34.0380 60008 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:55:34.0474 60008 Tcpip - ok
12:55:34.0645 60008 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:55:34.0692 60008 TCPIP6 - ok
12:55:34.0739 60008 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:55:34.0770 60008 tcpipreg - ok
12:55:34.0817 60008 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:55:34.0895 60008 TDPIPE - ok
12:55:34.0942 60008 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:55:34.0973 60008 TDTCP - ok
12:55:35.0020 60008 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:55:35.0098 60008 tdx - ok
12:55:35.0160 60008 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:55:35.0176 60008 TermDD - ok
12:55:35.0332 60008 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:55:35.0394 60008 TermService - ok
12:55:35.0441 60008 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:55:35.0503 60008 Themes - ok
12:55:35.0534 60008 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:55:35.0566 60008 THREADORDER - ok
12:55:35.0628 60008 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:55:35.0722 60008 TrkWks - ok
12:55:35.0784 60008 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:55:35.0846 60008 TrustedInstaller - ok
12:55:35.0862 60008 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:55:35.0893 60008 tssecsrv - ok
12:55:35.0956 60008 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:55:35.0987 60008 TsUsbFlt - ok
12:55:36.0018 60008 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
12:55:36.0034 60008 TsUsbGD - ok
12:55:36.0283 60008 [ 53C9D93D159EE9FF3E23A7BFAFA9CF9E ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
12:55:36.0361 60008 TuneUp.UtilitiesSvc - ok
12:55:36.0439 60008 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
12:55:36.0470 60008 TuneUpUtilitiesDrv - ok
12:55:36.0533 60008 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:55:36.0595 60008 tunnel - ok
12:55:36.0611 60008 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:55:36.0626 60008 uagp35 - ok
12:55:36.0689 60008 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:55:36.0782 60008 udfs - ok
12:55:36.0814 60008 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:55:36.0845 60008 UI0Detect - ok
12:55:36.0907 60008 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:55:36.0907 60008 uliagpkx - ok
12:55:36.0954 60008 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:55:36.0985 60008 umbus - ok
12:55:37.0001 60008 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
12:55:37.0048 60008 UmPass - ok
12:55:37.0297 60008 [ D87FB12563F65088B1904871D86E5164 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:55:37.0406 60008 UNS - ok
12:55:37.0453 60008 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:55:37.0516 60008 upnphost - ok
12:55:37.0578 60008 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
12:55:37.0625 60008 USBAAPL64 - ok
12:55:37.0656 60008 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
12:55:37.0734 60008 usbccgp - ok
12:55:37.0765 60008 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:55:37.0828 60008 usbcir - ok
12:55:37.0859 60008 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\drivers\usbehci.sys
12:55:37.0890 60008 usbehci - ok
12:55:37.0968 60008 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:55:38.0015 60008 usbhub - ok
12:55:38.0062 60008 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:55:38.0093 60008 usbohci - ok
12:55:38.0140 60008 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:55:38.0186 60008 usbprint - ok
12:55:38.0249 60008 [ 9661DA76B4531B2DA272ECCE25A8AF24 ] usbscan C:\Windows\system32\drivers\usbscan.sys
12:55:38.0327 60008 usbscan - ok
12:55:38.0358 60008 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:55:38.0436 60008 USBSTOR - ok
12:55:38.0467 60008 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:55:38.0514 60008 usbuhci - ok
12:55:38.0623 60008 [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
12:55:38.0701 60008 usbvideo - ok
12:55:38.0748 60008 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
12:55:38.0826 60008 UxSms - ok
12:55:38.0982 60008 [ 951A30E6EFB1A2A2D3BB842807661863 ] UxTuneUp C:\Windows\System32\uxtuneup.dll
12:55:39.0013 60008 UxTuneUp - ok
12:55:39.0044 60008 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
12:55:39.0060 60008 VaultSvc - ok
12:55:39.0122 60008 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:55:39.0154 60008 vdrvroot - ok
12:55:39.0232 60008 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
12:55:39.0310 60008 vds - ok
12:55:39.0341 60008 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:55:39.0341 60008 vga - ok
12:55:39.0388 60008 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
12:55:39.0481 60008 VgaSave - ok
12:55:39.0528 60008 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:55:39.0559 60008 vhdmp - ok
12:55:39.0606 60008 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
12:55:39.0622 60008 viaide - ok
12:55:39.0653 60008 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:55:39.0668 60008 volmgr - ok
12:55:39.0700 60008 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:55:39.0715 60008 volmgrx - ok
12:55:39.0762 60008 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:55:39.0778 60008 volsnap - ok
12:55:39.0824 60008 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:55:39.0856 60008 vsmraid - ok
12:55:39.0965 60008 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
12:55:40.0090 60008 VSS - ok
12:55:40.0121 60008 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:55:40.0136 60008 vwifibus - ok
12:55:40.0168 60008 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:55:40.0230 60008 vwififlt - ok
12:55:40.0277 60008 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
12:55:40.0339 60008 vwifimp - ok
12:55:40.0433 60008 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
12:55:40.0480 60008 W32Time - ok
12:55:40.0495 60008 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:55:40.0589 60008 WacomPen - ok
12:55:40.0651 60008 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:55:40.0729 60008 WANARP - ok
12:55:40.0760 60008 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:55:40.0823 60008 Wanarpv6 - ok
12:55:40.0870 60008 [ 878C947C69EE89E4DBFF9DBD6155C15D ] watchmi C:\Program Files (x86)\watchmi\TvdService.exe
12:55:40.0885 60008 watchmi ( UnsignedFile.Multi.Generic ) - warning
12:55:40.0885 60008 watchmi - detected UnsignedFile.Multi.Generic (1)
12:55:41.0041 60008 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
12:55:41.0119 60008 wbengine - ok
12:55:41.0182 60008 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:55:41.0260 60008 WbioSrvc - ok
12:55:41.0291 60008 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:55:41.0338 60008 wcncsvc - ok
12:55:41.0369 60008 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:55:41.0384 60008 WcsPlugInService - ok
12:55:41.0400 60008 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
12:55:41.0400 60008 Wd - ok
12:55:41.0494 60008 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:55:41.0556 60008 Wdf01000 - ok
12:55:41.0572 60008 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:55:41.0603 60008 WdiServiceHost - ok
12:55:41.0618 60008 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:55:41.0634 60008 WdiSystemHost - ok
12:55:41.0712 60008 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
12:55:41.0774 60008 WebClient - ok
12:55:41.0821 60008 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:55:41.0884 60008 Wecsvc - ok
12:55:41.0946 60008 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:55:42.0040 60008 wercplsupport - ok
12:55:42.0086 60008 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
12:55:42.0133 60008 WerSvc - ok
12:55:42.0180 60008 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:55:42.0258 60008 WfpLwf - ok
12:55:42.0274 60008 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:55:42.0305 60008 WIMMount - ok
12:55:42.0352 60008 WinDefend - ok
12:55:42.0383 60008 WinHttpAutoProxySvc - ok
12:55:42.0508 60008 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:55:42.0632 60008 Winmgmt - ok
12:55:42.0726 60008 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
12:55:42.0820 60008 WinRM - ok
12:55:42.0882 60008 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:55:42.0929 60008 WinUsb - ok
12:55:43.0038 60008 [ 4C69A8E2E159C1C59BC4B688E9DD7F8C ] WisLMSvc C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
12:55:43.0069 60008 WisLMSvc - ok
12:55:43.0116 60008 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
12:55:43.0178 60008 Wlansvc - ok
12:55:43.0366 60008 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:55:43.0459 60008 wlidsvc - ok
12:55:43.0522 60008 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:55:43.0553 60008 WmiAcpi - ok
12:55:43.0584 60008 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:55:43.0615 60008 wmiApSrv - ok
12:55:43.0646 60008 WMPNetworkSvc - ok
12:55:43.0693 60008 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:55:43.0724 60008 WPCSvc - ok
12:55:43.0740 60008 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:55:43.0756 60008 WPDBusEnum - ok
12:55:43.0787 60008 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:55:43.0849 60008 ws2ifsl - ok
12:55:43.0896 60008 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
12:55:43.0927 60008 wscsvc - ok
12:55:43.0927 60008 WSearch - ok
12:55:44.0192 60008 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
12:55:44.0302 60008 wuauserv - ok
12:55:44.0333 60008 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:55:44.0380 60008 WudfPf - ok
12:55:44.0395 60008 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:55:44.0442 60008 WUDFRd - ok
12:55:44.0489 60008 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:55:44.0504 60008 wudfsvc - ok
12:55:44.0551 60008 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
12:55:44.0582 60008 WwanSvc - ok
12:55:44.0614 60008 ================ Scan global ===============================
12:55:44.0676 60008 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:55:44.0723 60008 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
12:55:44.0738 60008 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
12:55:44.0801 60008 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:55:44.0879 60008 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:55:44.0910 60008 [Global] - ok
12:55:44.0910 60008 ================ Scan MBR ==================================
12:55:44.0926 60008 [ 00ACD19771F4FBCB23501EAABEDD150B ] \Device\Harddisk0\DR0
12:55:47.0952 60008 \Device\Harddisk0\DR0 - ok
12:55:47.0952 60008 ================ Scan VBR ==================================
12:55:47.0983 60008 [ 45D301204970D5D3FB7F1F70D6DE7A2D ] \Device\Harddisk0\DR0\Partition1
12:55:47.0999 60008 \Device\Harddisk0\DR0\Partition1 - ok
12:55:48.0030 60008 [ EFECC37C035946EE925F9500D4ED86BE ] \Device\Harddisk0\DR0\Partition2
12:55:48.0030 60008 \Device\Harddisk0\DR0\Partition2 - ok
12:55:48.0061 60008 [ C8DC8DB7D345F0619074647D17D13FE5 ] \Device\Harddisk0\DR0\Partition3
12:55:48.0092 60008 \Device\Harddisk0\DR0\Partition3 - ok
12:55:48.0092 60008 ============================================================
12:55:48.0092 60008 Scan finished
12:55:48.0092 60008 ============================================================
12:55:48.0108 3868 Detected object count: 6
12:55:48.0124 3868 Actual detected object count: 6
12:57:49.0929 3868 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
12:57:49.0929 3868 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:57:49.0929 3868 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
12:57:49.0929 3868 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:57:49.0929 3868 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
12:57:49.0929 3868 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:57:49.0929 3868 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
12:57:49.0929 3868 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:57:49.0929 3868 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
12:57:49.0929 3868 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:57:49.0929 3868 watchmi ( UnsignedFile.Multi.Generic ) - skipped by user
12:57:49.0929 3868 watchmi ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:02:49.0437 3932 Deinitialize success
|
|
06.02.2014, 10:10
| #20 | |
| /// the machine /// TB-Ausbilder | Rechner scheint infiziert, Probleme mit Programmen Logs sehen alle gut aus. Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
07.02.2014, 17:59
| #21 |
| |  Rechner scheint infiziert, Probleme mit Programmen Hi Schrauber, Entschuldigung, dass ich erst jetzt antworte, ich war verreist. Anfangs wurde Defogger ausgeführt. Ist deshalb etwas zurück zu ändern? Wenn ja, wo, was und wie? Nun zu den weiterhin bestehenden Problemen bei meinem Rechner: 1. Rechner arbeitet ständig (und ist deshalb? langsamer) Neben dem Curser-Pfeil dreht ständig der türkisfarbene Kreis. Auf einen Screenshot wurde verzichtet, dort wird Curser und Kreis nicht angezeigt. 2. Virenscanner (Avira Free Antivirus) lässt sich bekanntlich weder updaten noch deaktivieren oder deinstallieren. Update-Fehlermeldung (wird nicht auf Screenshot übernommen): „Bei dem Versuch das Internet Update zu starten ist folgender Fehler aufgetreten: Der Zugriff wurde verweigert.“ Deaktivierung u. Deinstallation Keine Reaktion, wenn zum Ausschalten auf die eingeschalteten Schalter „Echtzeit-Scanner“, „FireWall“ u. „Browser-Schutz“ geklickt wird. Gleiches gilt, wenn unter Systemsteuerung auf deinstallieren des Programms Avira geklickt wird. In beiden Fällen gibt es keine Fehlermeldung. 3. E-Mail-Programm (eM Client) Beim Versuch, dieses Programm zu öffnen, erscheint folgende Fehlermeldung (wird nicht in ein Screenshot übernommen): „Das Programm konnte nicht gestartet werden. Die Datenbank auf diesem Computer wurde von einer neueren Version dieses Programms verändert. Sie können diese Situation beheben, indem Sie den Knopf unten drücken oder mit einer manuellen Installation einer neueren Version. - Knopf: Jetzt aktualisieren“ Weitere Meldung: „Update Download: Lade Datei 1 von 1 herunter“ Anstelle des Downloads kommt die Fehlermeldung: „Fehler beim Herunterladen: Beim Herunterladen der Dateien ist folgender Fehler aufgetreten: Der Remoteserver hat einen Fehler zurückgegeben: (404) Nicht gefunden.“ 4. Runterfahren des Rechners: Zweimal ließ sich in den letzten Tagen der Rechner nicht herunterfahren. Es kam zwar - wie üblich - „Abmelden“ und „Herunterfahren“, dann erfolgte keine weitere Reaktion mehr. Nach ca. 5 Minuten schaltete ich mit dem Stromschalter den Rechner ab. Beim nächsten Hochfahren kam dann natürlich die Fehlermeldung, dass Windows nicht richtig geschlossen wurde. 5. Verschwundene (deinstallierte) Programme: Avira PC-Cleaner, AutoSave Essentials und TuneUp Utilites hatten sich selbstständig deinstalliert. Die Icons auf dem Bildschirm wurden weiß, es bestand keine Verbindung mehr zu den Anwendungen (Pfad nicht mehr gültig), die Anwendungen waren auch in der Systemsteuerung unter Programme verschwunden. Ich hoffe, es gibt Lösungen für die aufgeführten Probleme. AutoSave Essentials habe ich noch nicht wieder installiert. Für dieses Programm sieht die Lizenz nur beschränkte Anzahl von Installierungen vor, danach müsste ich das Programm erneut kaufen. Vielen Dank für erhoffte Hilfe und Gruß |
|
08.02.2014, 12:06
| #22 |
| | Rechner scheint infiziert, Probleme mit Programmen Hallo Schrauber, Nachfolgendes habe ich vergessen, gestern zu übermitteln: 1. Auch Malwarebytes Anti-Malware hat sich im Zusammenhang mit den geschilderten anderen Programm-Deinstallierungen auch schon einmal selbstständig deinstalliert. 2. Im Logfile des Security Checks vom 04.02.14 steht: "Total Fragmentation on Drive C." Ich habe sofort versucht zu defragmentieren, erhielt aber nach Analyse des Laufwerks die Meldung: "C: 0 % fragmentiert"? Gruß |
|
09.02.2014, 08:55
| #23 |
| /// the machine /// TB-Ausbilder | Rechner scheint infiziert, Probleme mit Programmen Öffne bitte nochmal TDSSKiller, unter mehr Optionen aufklappen und alles anhaken. Der nächste Scan wird während des Reboots gemacht. Revo Uninstaller - Download - Filepony damit Avira deinstallieren, Reste entfernen lassen, neu installieren. Geht allgemein ein Download aus dem Internet`?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.02.2014, 19:12
| #24 |
| | Rechner scheint infiziert, Probleme mit Programmen Hallo Schrauber, downloaden kann ich aus dem Internet. Den TDSSKiller habe ich nochmals laufen lassen. Logfile folgt am Schluss. Nur mit der Deinstallation von Avira hat es auch mit Revo Uninstaller leider nicht geklappt. Es kam die Fehlermeldung: "Setup von Avira Free Antivirus. Setup kann nicht ausgeführt werden, weil der Updater bereits läuft. Bitte beenden Sie den Updater und starten Sie das Setup erneut (Errorcode: 16)." Die "Reste" wurden jedoch offensichtlich gelöscht, zumindest wurde das bei Revo Uninstall angezeigt. Aus der Übersicht in der Systemsteuer und auch aus der Auflistung deinstallierbarer Programme von Revo Uninstaller ist das Programm zwar verschwunden, aber ich kann es weiterhin über das Icon aufrufen und öffnen!? Der Rechner arbeitet und arbeitet (offensichtlich der Dauer-Updater von Avira, ohne dass der Virenscanner aktualisiert wird). Und nun? Gruß Code:
ATTFilter 14:49:30.0487 0x40e4 TDSS rootkit removing tool 3.0.0.22 Feb 3 2014 16:45:35
14:49:40.0377 0x40e4 ============================================================
14:49:40.0377 0x40e4 Current date / time: 2014/02/09 14:49:40.0377
14:49:40.0377 0x40e4 SystemInfo:
14:49:40.0377 0x40e4
14:49:40.0377 0x40e4 OS Version: 6.1.7601 ServicePack: 1.0
14:49:40.0377 0x40e4 Product type: Workstation
14:49:40.0377 0x40e4 ComputerName: JORDAN-NOTEBOOK
14:49:40.0393 0x40e4 UserName: JORDAN
14:49:40.0393 0x40e4 Windows directory: C:\Windows
14:49:40.0393 0x40e4 System windows directory: C:\Windows
14:49:40.0393 0x40e4 Running under WOW64
14:49:40.0393 0x40e4 Processor architecture: Intel x64
14:49:40.0393 0x40e4 Number of processors: 4
14:49:40.0393 0x40e4 Page size: 0x1000
14:49:40.0393 0x40e4 Boot type: Normal boot
14:49:40.0393 0x40e4 ============================================================
14:49:40.0907 0x40e4 KLMD registered as C:\Windows\system32\drivers\51837088.sys
14:49:41.0266 0x40e4 System UUID: {D35B65A1-09BF-E400-354A-988C34052F2C}
14:49:55.0646 0x40e4 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:49:55.0662 0x40e4 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:49:55.0662 0x40e4 ============================================================
14:49:55.0662 0x40e4 \Device\Harddisk0\DR0:
14:49:55.0662 0x40e4 MBR partitions:
14:49:55.0662 0x40e4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:49:55.0662 0x40e4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x52312800
14:49:55.0678 0x40e4 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x52345800, BlocksNum 0x4BFD000
14:49:55.0756 0x40e4 \Device\Harddisk1\DR1:
14:49:55.0756 0x40e4 MBR partitions:
14:49:55.0756 0x40e4 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
14:49:55.0756 0x40e4 ============================================================
14:49:55.0958 0x40e4 C: <-> \Device\Harddisk0\DR0\Partition2
14:49:55.0990 0x40e4 D: <-> \Device\Harddisk0\DR0\Partition3
14:49:56.0036 0x40e4 I: <-> \Device\Harddisk1\DR1\Partition1
14:49:56.0036 0x40e4 ============================================================
14:49:56.0036 0x40e4 Initialize success
14:49:56.0036 0x40e4 ============================================================
14:50:44.0639 0x4768 ============================================================
14:50:44.0639 0x4768 Scan started
14:50:44.0639 0x4768 Mode: Manual; SigCheck; TDLFS;
14:50:44.0639 0x4768 ============================================================
14:50:44.0639 0x4768 KSN ping started
14:50:47.0432 0x4768 KSN ping finished: true
14:50:52.0581 0x4768 ================ Scan system memory ========================
14:50:52.0581 0x4768 System memory - ok
14:50:52.0581 0x4768 ================ Scan services =============================
14:50:52.0831 0x4768 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:50:53.0049 0x4768 1394ohci - ok
14:50:53.0236 0x4768 [ 7EEB488346FBFA3731276C3EE8A8FD9E, 97D2E49C2E615E38E8176F1C1551BF452CC6A00787FF90845EFF27A4E6E20B1F ] AAV UpdateService C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
14:50:53.0267 0x4768 AAV UpdateService - ok
14:50:53.0314 0x4768 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:50:53.0345 0x4768 ACPI - ok
14:50:53.0377 0x4768 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:50:53.0439 0x4768 AcpiPmi - ok
14:50:53.0517 0x4768 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:50:53.0548 0x4768 AdobeARMservice - ok
14:50:53.0704 0x4768 [ 2471BCB6E1388A3484E78243A1BE5F33, CB7FBA6C15791554594228A5A1A7A5040BEB1BD725F08947D780E301D8AE788A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:50:53.0735 0x4768 AdobeFlashPlayerUpdateSvc - ok
14:50:53.0798 0x4768 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
14:50:53.0876 0x4768 adp94xx - ok
14:50:53.0938 0x4768 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
14:50:54.0016 0x4768 adpahci - ok
14:50:54.0063 0x4768 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
14:50:54.0079 0x4768 adpu320 - ok
14:50:54.0125 0x4768 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:50:54.0297 0x4768 AeLookupSvc - ok
14:50:54.0344 0x4768 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
14:51:07.0101 0x4768 AFD - ok
14:51:07.0362 0x4768 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
14:51:07.0409 0x4768 agp440 - ok
14:51:07.0580 0x4768 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
14:51:07.0970 0x4768 ALG - ok
14:51:08.0345 0x4768 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
14:51:08.0438 0x4768 aliide - ok
14:51:08.0470 0x4768 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
14:51:08.0516 0x4768 amdide - ok
14:51:08.0563 0x4768 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
14:51:08.0704 0x4768 AmdK8 - ok
14:51:08.0719 0x4768 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
14:51:08.0875 0x4768 AmdPPM - ok
14:51:08.0906 0x4768 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:51:08.0938 0x4768 amdsata - ok
14:51:09.0000 0x4768 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
14:51:09.0047 0x4768 amdsbs - ok
14:51:09.0109 0x4768 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:51:09.0125 0x4768 amdxata - ok
14:51:09.0842 0x4768 [ FE79366FECD444A16CCA9979134DBEA8, 91D2301E35C89B9FAD5680124EA51DC346159DC78556ACCD935F9B236B9FDCBC ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
14:51:09.0936 0x4768 AntiVirSchedulerService - ok
14:51:10.0045 0x4768 [ FDE9C7030FB1E9E2715E113EE6A10F90, 541F278D743C34C6D9940FC1250B90674EB88EC429D481012F27817DAB1B557A ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
14:51:10.0076 0x4768 AntiVirService - ok
14:51:10.0201 0x4768 [ 8D69B1551F51E18AE12E01DE6A2050EA, E1BF3E1AB82E90DC32811C934933D761340DAE44B7ACDF3B9C19725465BE3590 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
14:51:10.0310 0x4768 AntiVirWebService - ok
14:51:10.0420 0x4768 [ B342CD9AA44E4AE99E2368EBDBC2E17A, C3081358313A982F53CAD54C214AFECAD9660A59FB4A3DDFE068724E83041AF8 ] APNMCP C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
14:51:10.0529 0x4768 APNMCP - ok
14:51:10.0576 0x4768 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
14:51:10.0794 0x4768 AppID - ok
14:51:10.0825 0x4768 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:51:10.0981 0x4768 AppIDSvc - ok
14:51:11.0122 0x4768 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
14:51:11.0340 0x4768 Appinfo - ok
14:51:11.0746 0x4768 [ F518545E5B7623AD49ABE7F8776EFA46, CD39B6EC0D80C6DB857F34D4AC5C31085271B51B8851A56FEFC052B20B7CC40C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:51:11.0792 0x4768 Apple Mobile Device - ok
14:51:11.0980 0x4768 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
14:51:11.0995 0x4768 arc - ok
14:51:12.0042 0x4768 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
14:51:12.0073 0x4768 arcsas - ok
14:51:12.0167 0x4768 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:51:12.0260 0x4768 aspnet_state - ok
14:51:12.0307 0x4768 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:51:12.0407 0x4768 AsyncMac - ok
14:51:12.0446 0x4768 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
14:51:12.0468 0x4768 atapi - ok
14:51:12.0562 0x4768 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:51:12.0718 0x4768 AudioEndpointBuilder - ok
14:51:12.0765 0x4768 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:51:12.0983 0x4768 AudioSrv - ok
14:51:13.0498 0x4768 [ 7806BFCD1D7FA5EC23F7324D4EAFD25B, 4EDFD9DE520728AF6578BED0054ED6A4976A7F020F3329EA6681D6E361D9DB2D ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
14:51:13.0670 0x4768 avgntflt - ok
14:51:13.0748 0x4768 [ C3A58DBD18786C338126D30BF8C33D72, 4DF4D37AB5139548C2DA4B4C8D6B933A7F4ED001BCA089EFBC8C57EEDE8785A6 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
14:51:13.0826 0x4768 avipbb - ok
14:51:13.0904 0x4768 [ 3DE0EBA0BF4771C897F544CBF7CB8973, 6A032503561414EDCE0D123947AECACBAFE4BBF7D9849BA2DF010E28235973AB ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
14:51:13.0997 0x4768 avnetflt - ok
14:51:14.0060 0x4768 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:51:14.0231 0x4768 AxInstSV - ok
14:51:14.0325 0x4768 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
14:51:14.0512 0x4768 b06bdrv - ok
14:51:14.0590 0x4768 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:51:14.0684 0x4768 b57nd60a - ok
14:51:14.0730 0x4768 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
14:51:14.0808 0x4768 BDESVC - ok
14:51:14.0855 0x4768 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
14:51:14.0964 0x4768 Beep - ok
14:51:15.0136 0x4768 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
14:51:15.0292 0x4768 BFE - ok
14:51:15.0354 0x4768 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
14:51:15.0573 0x4768 BITS - ok
14:51:15.0635 0x4768 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
14:51:15.0713 0x4768 blbdrive - ok
14:51:15.0869 0x4768 [ 832314A5AC804DEE429A009A3D41B99B, 8F8D8C376F9FA6459E5856EB7F5575960133AC0B876EEF28DA131BAD71CAB14E ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
14:51:15.0947 0x4768 Bluetooth Device Monitor - ok
14:51:16.0025 0x4768 [ 35C701C5A286543973F0FC8BC195515E, 6FF6034C72BD1287954D7A27F48957700E20FDF30BF6576A9693164A4E49F78D ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
14:51:16.0197 0x4768 Bluetooth Media Service - ok
14:51:16.0290 0x4768 [ A475D68B03FEBF6C371F0D9644C2E12D, 6CC4276D104B75DDCC788C1929E6A725EECC73F0AEFE234B5EC7E7852066CDCB ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
14:51:16.0415 0x4768 Bluetooth OBEX Service - ok
14:51:16.0540 0x4768 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:51:16.0665 0x4768 Bonjour Service - ok
14:51:16.0743 0x4768 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:51:16.0883 0x4768 bowser - ok
14:51:16.0930 0x4768 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
14:51:17.0008 0x4768 BrFiltLo - ok
14:51:17.0117 0x4768 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
14:51:17.0180 0x4768 BrFiltUp - ok
14:51:17.0226 0x4768 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
14:51:17.0351 0x4768 BridgeMP - ok
14:51:17.0382 0x4768 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
14:51:17.0570 0x4768 Browser - ok
14:51:17.0619 0x4768 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:51:17.0762 0x4768 Brserid - ok
14:51:17.0787 0x4768 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:51:17.0916 0x4768 BrSerWdm - ok
14:51:17.0932 0x4768 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:51:18.0119 0x4768 BrUsbMdm - ok
14:51:18.0135 0x4768 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:51:18.0244 0x4768 BrUsbSer - ok
14:51:18.0275 0x4768 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
14:51:18.0400 0x4768 BthEnum - ok
14:51:18.0478 0x4768 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
14:51:18.0681 0x4768 BTHMODEM - ok
14:51:18.0728 0x4768 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
14:51:18.0915 0x4768 BthPan - ok
14:51:18.0962 0x4768 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
14:51:19.0164 0x4768 BTHPORT - ok
14:51:19.0227 0x4768 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
14:51:19.0305 0x4768 bthserv - ok
14:51:19.0383 0x4768 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
14:51:19.0492 0x4768 BTHUSB - ok
14:51:19.0539 0x4768 [ BA554BFCBF21201D310738A42C9C19E1, 336925BFEB9ECCE94255F6D46388CED95A207392DE9E6211A5EE28B409C526D9 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
14:51:19.0586 0x4768 btmaux - ok
14:51:19.0664 0x4768 [ 40C6FEC49D1CC4D112368A2BCD2BCBB7, E9ECEAA4F740A667C071EDEA1359491B221E5AA43A990744859CA7CC40E67F6C ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
14:51:19.0820 0x4768 btmhsf - ok
14:51:19.0835 0x4768 catchme - ok
14:51:19.0898 0x4768 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:51:20.0069 0x4768 cdfs - ok
14:51:20.0116 0x4768 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
14:51:20.0241 0x4768 cdrom - ok
14:51:20.0303 0x4768 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
14:51:20.0428 0x4768 CertPropSvc - ok
14:51:20.0459 0x4768 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
14:51:20.0568 0x4768 circlass - ok
14:51:20.0615 0x4768 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
14:51:20.0678 0x4768 CLFS - ok
14:51:20.0740 0x4768 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:51:20.0802 0x4768 clr_optimization_v2.0.50727_32 - ok
14:51:20.0834 0x4768 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:51:20.0880 0x4768 clr_optimization_v2.0.50727_64 - ok
14:51:20.0958 0x4768 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:51:21.0239 0x4768 clr_optimization_v4.0.30319_32 - ok
14:51:21.0270 0x4768 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:51:21.0442 0x4768 clr_optimization_v4.0.30319_64 - ok
14:51:21.0489 0x4768 [ 50F92C943F18B070F166D019DFAB3D9A, A997EAFFC1598B1D0A9E1A4475F25418CA8AA6B703B53A71B1AF028E247C9950 ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
14:51:21.0536 0x4768 clwvd - ok
14:51:21.0582 0x4768 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
14:51:21.0629 0x4768 CmBatt - ok
14:51:21.0660 0x4768 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:51:21.0692 0x4768 cmdide - ok
14:51:21.0723 0x4768 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
14:51:21.0848 0x4768 CNG - ok
14:51:21.0863 0x4768 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
14:51:21.0894 0x4768 Compbatt - ok
14:51:21.0926 0x4768 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:51:22.0004 0x4768 CompositeBus - ok
14:51:22.0019 0x4768 COMSysApp - ok
14:51:22.0144 0x4768 [ 08F934092E0429BADF88E9F91DB0F61E, 6E9091C006FFFF261DC61C8E9A45219E47C351296E5355FC4B7242F30E1DDFE3 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
14:51:22.0222 0x4768 cphs - ok
14:51:22.0253 0x4768 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
14:51:22.0269 0x4768 crcdisk - ok
14:51:22.0331 0x4768 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:51:22.0596 0x4768 CryptSvc - ok
14:51:22.0737 0x4768 [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
14:51:22.0799 0x4768 cvhsvc - ok
14:51:22.0862 0x4768 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:51:23.0069 0x4768 DcomLaunch - ok
14:51:23.0145 0x4768 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
14:51:23.0238 0x4768 defragsvc - ok
14:51:23.0269 0x4768 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:51:23.0363 0x4768 DfsC - ok
14:51:23.0410 0x4768 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
14:51:23.0550 0x4768 Dhcp - ok
14:51:23.0566 0x4768 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
14:51:23.0659 0x4768 discache - ok
14:51:23.0706 0x4768 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
14:51:23.0737 0x4768 Disk - ok
14:51:23.0769 0x4768 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:51:23.0831 0x4768 Dnscache - ok
14:51:23.0878 0x4768 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
14:51:24.0096 0x4768 dot3svc - ok
14:51:24.0143 0x4768 [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
14:51:24.0252 0x4768 Dot4 - ok
14:51:24.0299 0x4768 [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:51:24.0346 0x4768 Dot4Print - ok
14:51:24.0361 0x4768 [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
14:51:24.0408 0x4768 dot4usb - ok
14:51:24.0455 0x4768 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
14:51:24.0533 0x4768 DPS - ok
14:51:24.0580 0x4768 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:51:24.0627 0x4768 drmkaud - ok
14:51:24.0689 0x4768 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:51:24.0767 0x4768 DXGKrnl - ok
14:51:24.0798 0x4768 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
14:51:24.0892 0x4768 EapHost - ok
14:51:25.0048 0x4768 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
14:51:25.0391 0x4768 ebdrv - ok
14:51:25.0422 0x4768 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
14:51:25.0531 0x4768 EFS - ok
14:51:25.0609 0x4768 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:51:25.0734 0x4768 ehRecvr - ok
14:51:25.0797 0x4768 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
14:51:25.0875 0x4768 ehSched - ok
14:51:25.0937 0x4768 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
14:51:26.0031 0x4768 elxstor - ok
14:51:26.0062 0x4768 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:51:26.0093 0x4768 ErrDev - ok
14:51:26.0187 0x4768 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
14:51:26.0343 0x4768 EventSystem - ok
14:51:26.0483 0x4768 [ 54FC81B0162478A72A93DBBEAFB35671, 1C0FA242E81105E2BB839ED32119DAF012FA4A3DB5D0E079350449CBB0CBF033 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
14:51:26.0686 0x4768 EvtEng - ok
14:51:26.0733 0x4768 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
14:51:26.0842 0x4768 exfat - ok
14:51:26.0873 0x4768 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:51:27.0076 0x4768 fastfat - ok
14:51:27.0216 0x4768 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
14:51:27.0388 0x4768 Fax - ok
14:51:27.0435 0x4768 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
14:51:27.0513 0x4768 fdc - ok
14:51:27.0559 0x4768 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
14:51:27.0669 0x4768 fdPHost - ok
14:51:27.0700 0x4768 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
14:51:27.0809 0x4768 FDResPub - ok
14:51:27.0840 0x4768 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:51:27.0887 0x4768 FileInfo - ok
14:51:27.0903 0x4768 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:51:28.0043 0x4768 Filetrace - ok
14:51:28.0090 0x4768 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
14:51:28.0152 0x4768 flpydisk - ok
14:51:28.0199 0x4768 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:51:28.0258 0x4768 FltMgr - ok
14:51:28.0465 0x4768 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
14:51:28.0589 0x4768 FontCache - ok
14:51:28.0636 0x4768 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:51:28.0667 0x4768 FontCache3.0.0.0 - ok
14:51:28.0699 0x4768 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:51:28.0714 0x4768 FsDepends - ok
14:51:28.0745 0x4768 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:51:28.0761 0x4768 Fs_Rec - ok
14:51:28.0823 0x4768 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:51:28.0870 0x4768 fvevol - ok
14:51:28.0917 0x4768 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
14:51:28.0933 0x4768 gagp30kx - ok
14:51:28.0964 0x4768 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:51:28.0979 0x4768 GEARAspiWDM - ok
14:51:29.0057 0x4768 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
14:51:29.0182 0x4768 gpsvc - ok
14:51:29.0245 0x4768 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:51:29.0291 0x4768 gupdate - ok
14:51:29.0323 0x4768 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:51:29.0338 0x4768 gupdatem - ok
14:51:29.0385 0x4768 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:51:29.0479 0x4768 gusvc - ok
14:51:29.0510 0x4768 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:51:29.0572 0x4768 hcw85cir - ok
14:51:29.0619 0x4768 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:51:29.0681 0x4768 HdAudAddService - ok
14:51:29.0744 0x4768 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
14:51:29.0806 0x4768 HDAudBus - ok
14:51:29.0837 0x4768 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
14:51:29.0853 0x4768 HidBatt - ok
14:51:29.0869 0x4768 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
14:51:29.0931 0x4768 HidBth - ok
14:51:29.0962 0x4768 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
14:51:30.0009 0x4768 HidIr - ok
14:51:30.0040 0x4768 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
14:51:30.0118 0x4768 hidserv - ok
14:51:30.0165 0x4768 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:51:30.0196 0x4768 HidUsb - ok
14:51:30.0227 0x4768 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:51:30.0321 0x4768 hkmsvc - ok
14:51:30.0352 0x4768 [ 4C66CCE36DE9DBC28E61F9B74062206A, 6426D549E2E3B038767AB3340425FD5FEFF713CE53ECA015F720AF123F75796B ] hmpalert C:\Windows\system32\drivers\hmpalert.sys
14:51:30.0383 0x4768 hmpalert - ok
14:51:30.0477 0x4768 [ 1393FBD6435180ABCD55AA93C56579E4, 915264F01D9017CF7D3100AE1284D20A7E41D5ED8ACF0DCAE64A40942BF7949A ] hmpalertsvc C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
14:51:30.0617 0x4768 hmpalertsvc - ok
14:51:30.0664 0x4768 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:51:30.0758 0x4768 HomeGroupListener - ok
14:51:30.0789 0x4768 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:51:30.0867 0x4768 HomeGroupProvider - ok
14:51:30.0945 0x4768 [ 08457D8F8149757C70CEA59C71EC5D27, DC89AB78F423950E1C1A6B64CE46E6395AA8F43456A70BE1D3A517F568068BA5 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
14:51:31.0023 0x4768 hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
14:51:33.0485 0x4768 Detect skipped due to KSN trusted
14:51:33.0485 0x4768 hpqcxs08 - ok
14:51:33.0525 0x4768 [ 75CC8C5146A3FB76221A7606628778D5, 2FDD943E22E38083639DF61335DEFE9C38685158D8BF0528834C1B657DC1DE6F ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
14:51:33.0591 0x4768 hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
14:51:36.0118 0x4768 Detect skipped due to KSN trusted
14:51:36.0118 0x4768 hpqddsvc - ok
14:51:36.0165 0x4768 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:51:36.0196 0x4768 HpSAMD - ok
14:51:36.0258 0x4768 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:51:36.0430 0x4768 HTTP - ok
14:51:36.0446 0x4768 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:51:36.0477 0x4768 hwpolicy - ok
14:51:36.0508 0x4768 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:51:36.0586 0x4768 i8042prt - ok
14:51:36.0680 0x4768 [ 26CF4275034214ECEDD8EC17B0A18A99, 95A08C63971C28F1BC97040C0ADA247E3B43DE7D937B14E33A394B955D0AC8B7 ] iaStor C:\Windows\system32\drivers\iaStor.sys
14:51:36.0773 0x4768 iaStor - ok
14:51:36.0851 0x4768 [ E79A8E33BD136D14BAE1FA20EB2EF124, 54AD784570282FEF21021BE76C57EE878EC6FF6423CE2FFC3A4372AF6C3112D4 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
14:51:36.0867 0x4768 IAStorDataMgrSvc - ok
14:51:36.0929 0x4768 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:51:37.0007 0x4768 iaStorV - ok
14:51:37.0054 0x4768 [ FC47F5CF561BF0FD897EFD1A9604DCCF, C304737F78A772051993A68BB06F860733A8650013A46946A854E47C892C252E ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
14:51:37.0116 0x4768 iBtFltCoex - ok
14:51:37.0194 0x4768 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:51:37.0288 0x4768 idsvc - ok
14:51:37.0304 0x4768 IEEtwCollectorService - ok
14:51:37.0600 0x4768 [ 8C44E6B688790E2AD3846C97661C54F1, CB487D167EDA3C1E30BD5FB8F98C15EB9E75A6FB793009C2F1BBCAAB4285F772 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
14:51:38.0084 0x4768 igfx - ok
14:51:38.0115 0x4768 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
14:51:38.0130 0x4768 iirsp - ok
14:51:38.0193 0x4768 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
14:51:38.0302 0x4768 IKEEXT - ok
14:51:38.0364 0x4768 [ CAA8BC6737DFA3BF1A50175CFB226788, F4453E136BDD3441A95972B217784EA3A7F914A0DDE3E9F503E107682B50E248 ] InputFilter_Hid_FlexDef2b C:\Windows\system32\DRIVERS\InputFilter_FlexDef2b.sys
14:51:38.0411 0x4768 InputFilter_Hid_FlexDef2b - ok
14:51:38.0458 0x4768 [ CADDF0927DAC63EDAE48F5C35A61D87D, C46006461311B1563C1D149B9D60B202F30147265B9D93069B084D03A09D2BEC ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
14:51:38.0536 0x4768 intaud_WaveExtensible - ok
14:51:38.0724 0x4768 [ 177B4E48C7A288E70779B42AB81D2D06, C62601CD8021FE72D8A76766093E25D4606CAE90C18300429AD552A494F32DFA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:51:38.0911 0x4768 IntcAzAudAddService - ok
14:51:38.0974 0x4768 [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
14:51:39.0067 0x4768 IntcDAud - ok
14:51:39.0114 0x4768 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
14:51:39.0130 0x4768 intelide - ok
14:51:39.0192 0x4768 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:51:39.0301 0x4768 intelppm - ok
14:51:39.0379 0x4768 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:51:39.0489 0x4768 IPBusEnum - ok
14:51:39.0504 0x4768 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:51:39.0645 0x4768 IpFilterDriver - ok
14:51:39.0707 0x4768 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:51:39.0816 0x4768 iphlpsvc - ok
14:51:39.0847 0x4768 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:51:39.0925 0x4768 IPMIDRV - ok
14:51:39.0957 0x4768 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:51:40.0035 0x4768 IPNAT - ok
14:51:40.0113 0x4768 [ F7ED08D4BC89D7AC6135C1556A89157F, 8F15F1E528F6513FCEF5D966880CBA8A2C7A4816393393F4B201CDD6227F36A3 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:51:40.0191 0x4768 iPod Service - ok
14:51:40.0222 0x4768 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:51:40.0253 0x4768 IRENUM - ok
14:51:40.0269 0x4768 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:51:40.0315 0x4768 isapnp - ok
14:51:40.0347 0x4768 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:51:40.0378 0x4768 iScsiPrt - ok
14:51:40.0425 0x4768 [ 716F66336F10885D935B08174DC54242, 1992708956A2A45A8870CFCB532F3ABF24B1143B75EF32AB1F59D5D86E65F493 ] iwdbus C:\Windows\system32\drivers\iwdbus.sys
14:51:40.0456 0x4768 iwdbus - ok
14:51:40.0487 0x4768 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
14:51:40.0534 0x4768 kbdclass - ok
14:51:40.0565 0x4768 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
14:51:40.0596 0x4768 kbdhid - ok
14:51:40.0612 0x4768 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
14:51:40.0643 0x4768 KeyIso - ok
14:51:40.0705 0x4768 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:51:40.0737 0x4768 KSecDD - ok
14:51:40.0768 0x4768 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:51:40.0799 0x4768 KSecPkg - ok
14:51:40.0830 0x4768 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:51:40.0893 0x4768 ksthunk - ok
14:51:40.0924 0x4768 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
14:51:41.0080 0x4768 KtmRm - ok
14:51:41.0142 0x4768 [ 6DD5383C9413AAE3113FAF89E345663D, 205760D46BF2B7011B7F32E85206C996D6D018D572BC61ED44671E5810144DCA ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
14:51:41.0205 0x4768 L1C - ok
14:51:41.0251 0x4768 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
14:51:41.0361 0x4768 LanmanServer - ok
14:51:41.0407 0x4768 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:51:41.0485 0x4768 LanmanWorkstation - ok
14:51:41.0517 0x4768 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:51:41.0579 0x4768 lltdio - ok
14:51:41.0626 0x4768 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:51:41.0719 0x4768 lltdsvc - ok
14:51:41.0735 0x4768 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:51:41.0829 0x4768 lmhosts - ok
14:51:41.0860 0x4768 [ 5456DE5A8E11EDBD68BF19C70B0A8F58, 49CD27A3AE33D98FDD30CD28B6F29F165FF305D64ADABA624786E66662D82C87 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
14:51:41.0907 0x4768 LMS - ok
14:51:41.0953 0x4768 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
14:51:41.0985 0x4768 LSI_FC - ok
14:51:42.0031 0x4768 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
14:51:42.0063 0x4768 LSI_SAS - ok
14:51:42.0094 0x4768 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
14:51:42.0125 0x4768 LSI_SAS2 - ok
14:51:42.0156 0x4768 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
14:51:42.0187 0x4768 LSI_SCSI - ok
14:51:42.0234 0x4768 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
14:51:42.0312 0x4768 luafv - ok
14:51:42.0375 0x4768 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:51:42.0406 0x4768 Mcx2Svc - ok
14:51:42.0437 0x4768 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
14:51:42.0453 0x4768 megasas - ok
14:51:42.0484 0x4768 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
14:51:42.0593 0x4768 MegaSR - ok
14:51:42.0624 0x4768 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\drivers\HECIx64.sys
14:51:42.0640 0x4768 MEIx64 - ok
14:51:42.0671 0x4768 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
14:51:42.0811 0x4768 MMCSS - ok
14:51:42.0843 0x4768 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
14:51:42.0983 0x4768 Modem - ok
14:51:43.0155 0x4768 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:51:43.0201 0x4768 monitor - ok
14:51:43.0248 0x4768 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:51:43.0295 0x4768 mouclass - ok
14:51:43.0326 0x4768 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:51:43.0357 0x4768 mouhid - ok
14:51:43.0389 0x4768 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:51:43.0420 0x4768 mountmgr - ok
14:51:43.0498 0x4768 [ 3B9398E0146855B1DC0E3D9769C80F01, DF69DB5CA30A5577648635C27DD468AF98515D07DF379B3FFDCC6B40744EDE66 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:51:43.0576 0x4768 MozillaMaintenance - ok
14:51:43.0623 0x4768 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
14:51:43.0666 0x4768 mpio - ok
14:51:43.0698 0x4768 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:51:43.0750 0x4768 mpsdrv - ok
14:51:43.0812 0x4768 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:51:43.0953 0x4768 MpsSvc - ok
14:51:43.0984 0x4768 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:51:44.0078 0x4768 MRxDAV - ok
14:51:44.0124 0x4768 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:51:44.0171 0x4768 mrxsmb - ok
14:51:44.0187 0x4768 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:51:44.0265 0x4768 mrxsmb10 - ok
14:51:44.0312 0x4768 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:51:44.0374 0x4768 mrxsmb20 - ok
14:51:44.0421 0x4768 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
14:51:44.0452 0x4768 msahci - ok
14:51:44.0468 0x4768 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:51:44.0499 0x4768 msdsm - ok
14:51:44.0514 0x4768 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
14:51:44.0624 0x4768 MSDTC - ok
14:51:44.0655 0x4768 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:51:44.0811 0x4768 Msfs - ok
14:51:44.0826 0x4768 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:51:44.0904 0x4768 mshidkmdf - ok
14:51:44.0936 0x4768 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:51:44.0967 0x4768 msisadrv - ok
14:51:45.0123 0x4768 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:51:45.0310 0x4768 MSiSCSI - ok
14:51:45.0326 0x4768 msiserver - ok
14:51:45.0341 0x4768 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:51:45.0528 0x4768 MSKSSRV - ok
14:51:45.0528 0x4768 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:51:45.0653 0x4768 MSPCLOCK - ok
14:51:45.0669 0x4768 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:51:45.0778 0x4768 MSPQM - ok
14:51:45.0840 0x4768 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:51:45.0918 0x4768 MsRPC - ok
14:51:45.0965 0x4768 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:51:46.0028 0x4768 mssmbios - ok
14:51:46.0090 0x4768 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:51:46.0230 0x4768 MSTEE - ok
14:51:46.0262 0x4768 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
14:51:46.0371 0x4768 MTConfig - ok
14:51:46.0496 0x4768 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
14:51:46.0511 0x4768 Mup - ok
14:51:46.0620 0x4768 [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0, 165EE2AB6F989E8D48AA52121B608510E932106835DA43071CC6476630C012FE ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
14:51:46.0667 0x4768 MyWiFiDHCPDNS - ok
14:51:46.0730 0x4768 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
14:51:46.0854 0x4768 napagent - ok
14:51:46.0901 0x4768 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:51:47.0042 0x4768 NativeWifiP - ok
14:51:47.0510 0x4768 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
14:51:47.0634 0x4768 NDIS - ok
14:51:47.0728 0x4768 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:51:47.0853 0x4768 NdisCap - ok
14:51:47.0900 0x4768 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:51:47.0962 0x4768 NdisTapi - ok
14:51:47.0993 0x4768 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:51:48.0134 0x4768 Ndisuio - ok
14:51:48.0180 0x4768 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:51:48.0368 0x4768 NdisWan - ok
14:51:48.0368 0x4768 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:51:48.0570 0x4768 NDProxy - ok
14:51:48.0664 0x4768 [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
14:51:48.0839 0x4768 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
14:51:51.0273 0x4768 Detect skipped due to KSN trusted
14:51:51.0273 0x4768 Net Driver HPZ12 - ok
14:51:51.0788 0x4768 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:51:52.0131 0x4768 NetBIOS - ok
14:51:52.0147 0x4768 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:51:52.0318 0x4768 NetBT - ok
14:51:52.0334 0x4768 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe
14:51:52.0505 0x4768 Netlogon - ok
14:51:52.0552 0x4768 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
14:51:52.0677 0x4768 Netman - ok
14:51:52.0739 0x4768 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:51:52.0864 0x4768 NetMsmqActivator - ok
14:51:52.0880 0x4768 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:51:52.0927 0x4768 NetPipeActivator - ok
14:51:52.0989 0x4768 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
14:51:53.0254 0x4768 netprofm - ok
14:51:53.0457 0x4768 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:51:53.0488 0x4768 NetTcpActivator - ok
14:51:53.0504 0x4768 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:51:53.0551 0x4768 NetTcpPortSharing - ok
14:51:54.0181 0x4768 [ AC69618DE5BCCE8747C9AB0AAE1003C1, D975963FA338AB58684BE0556633F3A846D5360FAD1A5E11BB7A273474DFB64D ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
14:51:54.0852 0x4768 NETwNs64 - ok
14:51:54.0899 0x4768 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
14:51:54.0930 0x4768 nfrd960 - ok
14:51:54.0977 0x4768 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:51:55.0211 0x4768 NlaSvc - ok
14:51:55.0242 0x4768 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:51:55.0304 0x4768 Npfs - ok
14:51:55.0351 0x4768 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
14:51:55.0476 0x4768 nsi - ok
14:51:55.0507 0x4768 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:51:55.0616 0x4768 nsiproxy - ok
14:51:55.0710 0x4768 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:51:55.0835 0x4768 Ntfs - ok
14:51:55.0866 0x4768 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
14:51:55.0991 0x4768 Null - ok
14:51:56.0038 0x4768 [ 01266516E6E88D183A2B58722EEB4443, A49647084161A95DAD1B9D941C6A9AAC3B34CAA2C853D9DD65C046CEB7C6A004 ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
14:51:56.0147 0x4768 nusb3hub - ok
14:51:56.0178 0x4768 [ 5EC04F55CC5F165F21752712437DF638, B59907C583E1FD9FA6D4747D696AB0E67A6D01969CC48E687DF6A8D51851847A ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
14:51:56.0318 0x4768 nusb3xhc - ok
14:51:56.0350 0x4768 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:51:56.0412 0x4768 nvraid - ok
14:51:56.0474 0x4768 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:51:56.0506 0x4768 nvstor - ok
14:51:56.0552 0x4768 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:51:56.0584 0x4768 nv_agp - ok
14:51:56.0615 0x4768 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:51:56.0771 0x4768 ohci1394 - ok
14:51:56.0849 0x4768 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:51:56.0880 0x4768 ose - ok
14:51:57.0223 0x4768 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:51:57.0629 0x4768 osppsvc - ok
14:51:57.0676 0x4768 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:51:57.0878 0x4768 p2pimsvc - ok
14:51:57.0925 0x4768 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
14:51:58.0019 0x4768 p2psvc - ok
14:51:58.0050 0x4768 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
14:51:58.0097 0x4768 Parport - ok
14:51:58.0128 0x4768 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:51:58.0159 0x4768 partmgr - ok
14:51:58.0190 0x4768 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
14:51:58.0268 0x4768 PcaSvc - ok
14:51:58.0300 0x4768 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
14:51:58.0346 0x4768 pci - ok
14:51:58.0378 0x4768 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
14:51:58.0424 0x4768 pciide - ok
14:51:58.0456 0x4768 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
14:51:58.0518 0x4768 pcmcia - ok
14:51:58.0549 0x4768 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
14:51:58.0565 0x4768 pcw - ok
14:51:58.0643 0x4768 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:51:58.0846 0x4768 PEAUTH - ok
14:51:58.0908 0x4768 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:51:59.0195 0x4768 PerfHost - ok
14:51:59.0273 0x4768 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
14:51:59.0523 0x4768 pla - ok
14:51:59.0569 0x4768 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:51:59.0694 0x4768 PlugPlay - ok
14:51:59.0741 0x4768 [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
14:51:59.0803 0x4768 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
14:52:02.0237 0x4768 Detect skipped due to KSN trusted
14:52:02.0237 0x4768 Pml Driver HPZ12 - ok
14:52:02.0268 0x4768 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:52:02.0362 0x4768 PNRPAutoReg - ok
14:52:02.0377 0x4768 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:52:02.0424 0x4768 PNRPsvc - ok
14:52:02.0487 0x4768 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:52:02.0580 0x4768 PolicyAgent - ok
14:52:02.0627 0x4768 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
14:52:02.0752 0x4768 Power - ok
14:52:02.0799 0x4768 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:52:02.0939 0x4768 PptpMiniport - ok
14:52:02.0955 0x4768 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
14:52:16.0623 0x4768 Processor - ok
14:52:16.0669 0x4768 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
14:52:16.0779 0x4768 ProfSvc - ok
14:52:16.0794 0x4768 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
14:52:16.0825 0x4768 ProtectedStorage - ok
14:52:16.0857 0x4768 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:52:17.0091 0x4768 Psched - ok
14:52:17.0153 0x4768 [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
14:52:17.0247 0x4768 PSI - ok
14:52:17.0278 0x4768 [ 543A4EF0923BF70D126625B034EF25AF, 9CC82C5221F11850419A796D48D5452B3DEE0C8E8E85A818F4AAA869673F9740 ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
14:52:17.0387 0x4768 PSI_SVC_2 - ok
14:52:17.0481 0x4768 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
14:52:17.0637 0x4768 ql2300 - ok
14:52:17.0668 0x4768 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
14:52:17.0715 0x4768 ql40xx - ok
14:52:17.0761 0x4768 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
14:52:17.0886 0x4768 QWAVE - ok
14:52:17.0902 0x4768 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:52:18.0011 0x4768 QWAVEdrv - ok
14:52:18.0011 0x4768 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:52:18.0307 0x4768 RasAcd - ok
14:52:18.0354 0x4768 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:52:18.0541 0x4768 RasAgileVpn - ok
14:52:18.0588 0x4768 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
14:52:18.0822 0x4768 RasAuto - ok
14:52:18.0853 0x4768 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:52:19.0009 0x4768 Rasl2tp - ok
14:52:19.0056 0x4768 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
14:52:19.0275 0x4768 RasMan - ok
14:52:19.0321 0x4768 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:52:19.0524 0x4768 RasPppoe - ok
14:52:19.0555 0x4768 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:52:19.0727 0x4768 RasSstp - ok
14:52:19.0774 0x4768 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:52:19.0854 0x4768 rdbss - ok
14:52:19.0900 0x4768 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
14:52:20.0056 0x4768 rdpbus - ok
14:52:20.0088 0x4768 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:52:20.0212 0x4768 RDPCDD - ok
14:52:20.0244 0x4768 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:52:20.0493 0x4768 RDPENCDD - ok
14:52:20.0509 0x4768 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:52:20.0696 0x4768 RDPREFMP - ok
14:52:20.0758 0x4768 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
14:52:20.0930 0x4768 RdpVideoMiniport - ok
14:52:20.0961 0x4768 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:52:21.0133 0x4768 RDPWD - ok
14:52:21.0398 0x4768 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:52:21.0460 0x4768 rdyboost - ok
14:52:22.0084 0x4768 [ A436F5E7D80BBDBB0826D0F176D5BEA8, 7862CE61F182C7613E34415C01AC1C228F79A45470CFD1D316DF2BD24EE09E3C ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
14:52:22.0178 0x4768 RegSrvc - ok
14:52:22.0240 0x4768 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:52:22.0365 0x4768 RemoteAccess - ok
14:52:22.0396 0x4768 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:52:22.0474 0x4768 RemoteRegistry - ok
14:52:22.0521 0x4768 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
14:52:22.0630 0x4768 RFCOMM - ok
14:52:22.0724 0x4768 [ F12A68ED55053940CADD59CA5E3468DD, 75331E6DA4E30717085E7D8131989241EBC492DC3EE455546F91DA9DFFFD2BFC ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
14:52:22.0786 0x4768 RichVideo - detected UnsignedFile.Multi.Generic ( 1 )
14:52:25.0254 0x4768 Detect skipped due to KSN trusted
14:52:25.0254 0x4768 RichVideo - ok
14:52:25.0410 0x4768 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:52:25.0675 0x4768 RpcEptMapper - ok
14:52:25.0706 0x4768 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
14:52:25.0831 0x4768 RpcLocator - ok
14:52:25.0878 0x4768 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
14:52:26.0018 0x4768 RpcSs - ok
14:52:26.0065 0x4768 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:52:26.0159 0x4768 rspndr - ok
14:52:26.0206 0x4768 [ CE0A1D8A59410E698140821E4E69DA0D, 4AEBF07C4016AF62B1A4F1C838FDC3A272FC643E596A86E4FE3C34F10523E318 ] RSUSBVSTOR C:\Windows\System32\Drivers\RtsUVStor.sys
14:52:26.0268 0x4768 RSUSBVSTOR - ok
14:52:26.0284 0x4768 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe
14:52:26.0299 0x4768 SamSs - ok
14:52:26.0346 0x4768 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:52:26.0377 0x4768 sbp2port - ok
14:52:26.0408 0x4768 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:52:26.0549 0x4768 SCardSvr - ok
14:52:26.0596 0x4768 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:52:26.0705 0x4768 scfilter - ok
14:52:26.0783 0x4768 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
14:52:26.0986 0x4768 Schedule - ok
14:52:27.0095 0x4768 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
14:52:27.0220 0x4768 SCPolicySvc - ok
14:52:27.0376 0x4768 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:52:27.0547 0x4768 SDRSVC - ok
14:52:27.0625 0x4768 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:52:27.0797 0x4768 secdrv - ok
14:52:27.0828 0x4768 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
14:52:27.0922 0x4768 seclogon - ok
14:52:28.0031 0x4768 [ 398A81D590424441B2F5C5C08073CADB, 1E064DFCC49EB0D8A4150276BF796B9DFA030C451570A170EC940F8CBAAD80F3 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
14:52:28.0187 0x4768 Secunia PSI Agent - ok
14:52:28.0265 0x4768 [ 8C2D3A80FC90A860F0F24DEB67471481, CE4D17B63149C44B4CD5CB7776FD4705DC675F6D2D077D53BE15578294EBC9D4 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
14:52:28.0436 0x4768 Secunia Update Agent - ok
14:52:28.0468 0x4768 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
14:52:28.0639 0x4768 SENS - ok
14:52:28.0686 0x4768 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:52:28.0780 0x4768 SensrSvc - ok
14:52:28.0811 0x4768 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
14:52:28.0982 0x4768 Serenum - ok
14:52:29.0014 0x4768 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
14:52:29.0170 0x4768 Serial - ok
14:52:29.0185 0x4768 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
14:52:29.0294 0x4768 sermouse - ok
14:52:29.0341 0x4768 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
14:52:29.0419 0x4768 SessionEnv - ok
14:52:29.0450 0x4768 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:52:29.0528 0x4768 sffdisk - ok
14:52:29.0575 0x4768 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:52:29.0669 0x4768 sffp_mmc - ok
14:52:29.0684 0x4768 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:52:29.0747 0x4768 sffp_sd - ok
14:52:29.0872 0x4768 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
14:52:29.0965 0x4768 sfloppy - ok
14:52:30.0027 0x4768 [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
14:52:30.0077 0x4768 Sftfs - ok
14:52:30.0170 0x4768 [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
14:52:30.0217 0x4768 sftlist - ok
14:52:30.0264 0x4768 [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
14:52:30.0311 0x4768 Sftplay - ok
14:52:30.0326 0x4768 [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
14:52:30.0389 0x4768 Sftredir - ok
14:52:30.0420 0x4768 [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
14:52:30.0451 0x4768 Sftvol - ok
14:52:30.0514 0x4768 [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
14:52:30.0623 0x4768 sftvsa - ok
14:52:30.0685 0x4768 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:52:30.0888 0x4768 SharedAccess - ok
14:52:30.0919 0x4768 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:52:31.0044 0x4768 ShellHWDetection - ok
14:52:31.0138 0x4768 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
14:52:31.0184 0x4768 SiSRaid2 - ok
14:52:31.0216 0x4768 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
14:52:31.0247 0x4768 SiSRaid4 - ok
14:52:31.0481 0x4768 [ 388AE59FE75F1B959DFA0900923C61BB, 0D47F8B4B4FBE5BF041DBE75B0A14D905E9310FFA6F0160746455B38A349EA54 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
14:52:31.0762 0x4768 Skype C2C Service - ok
14:52:31.0855 0x4768 [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
14:52:32.0042 0x4768 SkypeUpdate - ok
14:52:32.0089 0x4768 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:52:32.0198 0x4768 Smb - ok
14:52:32.0245 0x4768 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:52:32.0323 0x4768 SNMPTRAP - ok
14:52:32.0354 0x4768 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
14:52:32.0401 0x4768 spldr - ok
14:52:32.0448 0x4768 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
14:52:32.0604 0x4768 Spooler - ok
14:52:32.0791 0x4768 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
14:52:33.0103 0x4768 sppsvc - ok
14:52:33.0150 0x4768 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:52:33.0337 0x4768 sppuinotify - ok
14:52:33.0384 0x4768 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
14:52:33.0618 0x4768 srv - ok
14:52:33.0649 0x4768 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:52:33.0805 0x4768 srv2 - ok
14:52:33.0836 0x4768 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:52:33.0946 0x4768 srvnet - ok
14:52:33.0992 0x4768 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:52:34.0164 0x4768 SSDPSRV - ok
14:52:34.0180 0x4768 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:52:34.0304 0x4768 SstpSvc - ok
14:52:34.0336 0x4768 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
14:52:34.0351 0x4768 stexstor - ok
14:52:34.0414 0x4768 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
14:52:34.0554 0x4768 stisvc - ok
14:52:34.0570 0x4768 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
14:52:34.0601 0x4768 swenum - ok
14:52:34.0648 0x4768 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
14:52:34.0757 0x4768 swprv - ok
14:52:34.0866 0x4768 [ B3AD15FA10EBEAFC1275F34050E4E230, 23FE8863FD6BD69FAB40880D21678AF6B696DD3E1C014C3B7DE21D371EA628A6 ] SynTP C:\Windows\system32\drivers\SynTP.sys
14:52:35.0006 0x4768 SynTP - ok
14:52:35.0183 0x4768 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
14:52:35.0348 0x4768 SysMain - ok
14:52:35.0379 0x4768 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:52:35.0426 0x4768 TabletInputService - ok
14:52:35.0441 0x4768 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
14:52:35.0535 0x4768 TapiSrv - ok
14:52:35.0582 0x4768 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
14:52:35.0660 0x4768 TBS - ok
14:52:35.0800 0x4768 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:52:35.0909 0x4768 Tcpip - ok
14:52:36.0018 0x4768 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:52:36.0159 0x4768 TCPIP6 - ok
14:52:36.0190 0x4768 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:52:36.0221 0x4768 tcpipreg - ok
14:52:36.0237 0x4768 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:52:36.0299 0x4768 TDPIPE - ok
14:52:36.0330 0x4768 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:52:36.0424 0x4768 TDTCP - ok
14:52:36.0455 0x4768 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:52:36.0549 0x4768 tdx - ok
14:52:36.0580 0x4768 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
14:52:36.0611 0x4768 TermDD - ok
14:52:36.0674 0x4768 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
14:52:36.0767 0x4768 TermService - ok
14:52:36.0783 0x4768 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
14:52:36.0923 0x4768 Themes - ok
14:52:36.0954 0x4768 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
14:52:37.0017 0x4768 THREADORDER - ok
14:52:37.0126 0x4768 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
14:52:37.0235 0x4768 TrkWks - ok
14:52:37.0282 0x4768 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:52:37.0376 0x4768 TrustedInstaller - ok
14:52:37.0391 0x4768 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:52:37.0532 0x4768 tssecsrv - ok
14:52:37.0594 0x4768 [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:52:37.0656 0x4768 TsUsbFlt - ok
14:52:37.0688 0x4768 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
14:52:37.0812 0x4768 TsUsbGD - ok
14:52:37.0984 0x4768 [ 53C9D93D159EE9FF3E23A7BFAFA9CF9E, 62E20F9B1CC2BC1299EFD76831A41206169EA906F15039E37BDD0E579A4CD5EF ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
14:52:38.0093 0x4768 TuneUp.UtilitiesSvc - ok
14:52:38.0156 0x4768 [ DCC94C51D27C7EC0DADECA8F64C94FCF, 90C978C2284C9BDE3EFA1124616D824E0C361C388293FA22DBC8C3B70C920574 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
14:52:38.0218 0x4768 TuneUpUtilitiesDrv - ok
14:52:38.0265 0x4768 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:52:38.0374 0x4768 tunnel - ok
14:52:38.0405 0x4768 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
14:52:38.0452 0x4768 uagp35 - ok
14:52:38.0530 0x4768 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:52:38.0655 0x4768 udfs - ok
14:52:38.0702 0x4768 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:52:38.0764 0x4768 UI0Detect - ok
14:52:38.0795 0x4768 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:52:38.0826 0x4768 uliagpkx - ok
14:52:38.0858 0x4768 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:52:38.0936 0x4768 umbus - ok
14:52:38.0951 0x4768 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
14:52:38.0982 0x4768 UmPass - ok
14:52:39.0263 0x4768 [ D87FB12563F65088B1904871D86E5164, 5B8D42EFE897342EF501A93AAF264BDA8C1350C08DFD3EF11FC12016BD4676C2 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
14:52:39.0513 0x4768 UNS - ok
14:52:39.0560 0x4768 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
14:52:39.0716 0x4768 upnphost - ok
14:52:39.0762 0x4768 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:52:39.0825 0x4768 USBAAPL64 - ok
14:52:39.0856 0x4768 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
14:52:39.0934 0x4768 usbccgp - ok
14:52:39.0981 0x4768 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:52:40.0059 0x4768 usbcir - ok
14:52:40.0090 0x4768 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
14:52:40.0184 0x4768 usbehci - ok
14:52:40.0230 0x4768 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:52:40.0369 0x4768 usbhub - ok
14:52:40.0381 0x4768 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:52:40.0490 0x4768 usbohci - ok
14:52:40.0522 0x4768 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:52:40.0568 0x4768 usbprint - ok
14:52:40.0646 0x4768 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
14:52:40.0693 0x4768 usbscan - ok
14:52:40.0740 0x4768 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:52:40.0787 0x4768 USBSTOR - ok
14:52:40.0834 0x4768 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:52:40.0849 0x4768 usbuhci - ok
14:52:40.0896 0x4768 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
14:52:41.0036 0x4768 usbvideo - ok
14:52:41.0068 0x4768 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
14:52:41.0146 0x4768 UxSms - ok
14:52:41.0224 0x4768 [ 951A30E6EFB1A2A2D3BB842807661863, AE85011E85655BB65ABDAB37E3CE264290A389AA0A90B046CF9B62766F38E0E6 ] UxTuneUp C:\Windows\System32\uxtuneup.dll
14:52:41.0239 0x4768 UxTuneUp - ok
14:52:41.0270 0x4768 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe
14:52:41.0286 0x4768 VaultSvc - ok
14:52:41.0317 0x4768 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:52:41.0333 0x4768 vdrvroot - ok
14:52:41.0380 0x4768 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
14:52:41.0520 0x4768 vds - ok
14:52:41.0536 0x4768 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:52:41.0614 0x4768 vga - ok
14:52:41.0629 0x4768 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
14:52:41.0723 0x4768 VgaSave - ok
14:52:41.0770 0x4768 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:52:41.0801 0x4768 vhdmp - ok
14:52:41.0832 0x4768 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
14:52:41.0848 0x4768 viaide - ok
14:52:41.0894 0x4768 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:52:41.0941 0x4768 volmgr - ok
14:52:41.0972 0x4768 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:52:42.0004 0x4768 volmgrx - ok
14:52:42.0035 0x4768 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:52:42.0082 0x4768 volsnap - ok
14:52:42.0113 0x4768 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
14:52:42.0144 0x4768 vsmraid - ok
14:52:42.0238 0x4768 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
14:52:42.0394 0x4768 VSS - ok
14:52:42.0440 0x4768 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:52:42.0518 0x4768 vwifibus - ok
14:52:42.0550 0x4768 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:52:42.0643 0x4768 vwififlt - ok
14:52:42.0659 0x4768 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
14:52:42.0706 0x4768 vwifimp - ok
14:52:42.0752 0x4768 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
14:52:42.0893 0x4768 W32Time - ok
14:52:42.0908 0x4768 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
14:52:42.0971 0x4768 WacomPen - ok
14:52:43.0033 0x4768 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:52:43.0158 0x4768 WANARP - ok
14:52:43.0174 0x4768 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:52:43.0267 0x4768 Wanarpv6 - ok
14:52:43.0314 0x4768 [ 878C947C69EE89E4DBFF9DBD6155C15D, C2F56C0C9A979E9BFC27B7524E3DF654FB4FFF45E640D45913B6F5AEEEA4D91C ] watchmi C:\Program Files (x86)\watchmi\TvdService.exe
14:52:43.0361 0x4768 watchmi - detected UnsignedFile.Multi.Generic ( 1 )
14:52:45.0873 0x4768 Detect skipped due to KSN trusted
14:52:45.0873 0x4768 watchmi - ok
14:52:45.0967 0x4768 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
14:52:46.0170 0x4768 wbengine - ok
14:52:46.0201 0x4768 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:52:46.0279 0x4768 WbioSrvc - ok
14:52:46.0295 0x4768 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:52:46.0388 0x4768 wcncsvc - ok
14:52:46.0404 0x4768 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:52:46.0451 0x4768 WcsPlugInService - ok
14:52:46.0466 0x4768 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
14:52:46.0497 0x4768 Wd - ok
14:52:46.0560 0x4768 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:52:46.0607 0x4768 Wdf01000 - ok
14:52:46.0638 0x4768 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:52:46.0794 0x4768 WdiServiceHost - ok
14:52:46.0825 0x4768 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:52:46.0856 0x4768 WdiSystemHost - ok
14:52:46.0903 0x4768 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
14:52:47.0043 0x4768 WebClient - ok
14:52:47.0090 0x4768 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:52:47.0168 0x4768 Wecsvc - ok
14:52:47.0199 0x4768 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:52:47.0277 0x4768 wercplsupport - ok
14:52:47.0324 0x4768 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
14:52:47.0449 0x4768 WerSvc - ok
14:52:47.0496 0x4768 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:52:47.0558 0x4768 WfpLwf - ok
14:52:47.0605 0x4768 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:52:47.0636 0x4768 WIMMount - ok
14:52:47.0667 0x4768 WinDefend - ok
14:52:47.0683 0x4768 WinHttpAutoProxySvc - ok
14:52:47.0745 0x4768 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:52:47.0886 0x4768 Winmgmt - ok
14:52:48.0011 0x4768 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
14:52:48.0229 0x4768 WinRM - ok
14:52:48.0276 0x4768 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:52:48.0369 0x4768 WinUsb - ok
14:52:48.0416 0x4768 [ 4C69A8E2E159C1C59BC4B688E9DD7F8C, 235C7A41425846EFE4966490EB7F72AA768B3FE1665843BF58520DDBD6822A74 ] WisLMSvc C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
14:52:48.0447 0x4768 WisLMSvc - ok
14:52:48.0510 0x4768 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
14:52:48.0635 0x4768 Wlansvc - ok
14:52:48.0822 0x4768 [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:52:48.0947 0x4768 wlidsvc - ok
14:52:48.0993 0x4768 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:52:49.0040 0x4768 WmiAcpi - ok
14:52:49.0071 0x4768 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:52:49.0118 0x4768 wmiApSrv - ok
14:52:49.0149 0x4768 WMPNetworkSvc - ok
14:52:49.0181 0x4768 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:52:49.0259 0x4768 WPCSvc - ok
14:52:49.0274 0x4768 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:52:49.0337 0x4768 WPDBusEnum - ok
14:52:49.0368 0x4768 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:52:49.0461 0x4768 ws2ifsl - ok
14:52:49.0493 0x4768 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
14:52:49.0602 0x4768 wscsvc - ok
14:52:49.0602 0x4768 WSearch - ok
14:52:49.0742 0x4768 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
14:52:49.0883 0x4768 wuauserv - ok
14:52:49.0929 0x4768 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:52:49.0961 0x4768 WudfPf - ok
14:52:49.0976 0x4768 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:52:50.0023 0x4768 WUDFRd - ok
14:52:50.0054 0x4768 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:52:50.0117 0x4768 wudfsvc - ok
14:52:50.0163 0x4768 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
14:52:50.0288 0x4768 WwanSvc - ok
14:52:50.0335 0x4768 ================ Scan global ===============================
14:52:50.0351 0x4768 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
14:52:50.0429 0x4768 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:52:50.0491 0x4768 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:52:50.0525 0x4768 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
14:52:50.0569 0x4768 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
14:52:50.0616 0x4768 [ Global ] - ok
14:52:50.0616 0x4768 ================ Scan MBR ==================================
14:52:50.0632 0x4768 [ 00ACD19771F4FBCB23501EAABEDD150B ] \Device\Harddisk0\DR0
14:52:55.0592 0x4768 \Device\Harddisk0\DR0 - ok
14:52:55.0592 0x4768 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:52:55.0718 0x4768 \Device\Harddisk1\DR1 - ok
14:52:55.0718 0x4768 ================ Scan VBR ==================================
14:52:55.0733 0x4768 [ 45D301204970D5D3FB7F1F70D6DE7A2D ] \Device\Harddisk0\DR0\Partition1
14:52:55.0733 0x4768 \Device\Harddisk0\DR0\Partition1 - ok
14:52:55.0749 0x4768 [ EFECC37C035946EE925F9500D4ED86BE ] \Device\Harddisk0\DR0\Partition2
14:52:55.0749 0x4768 \Device\Harddisk0\DR0\Partition2 - ok
14:52:55.0796 0x4768 [ C8DC8DB7D345F0619074647D17D13FE5 ] \Device\Harddisk0\DR0\Partition3
14:52:55.0796 0x4768 \Device\Harddisk0\DR0\Partition3 - ok
14:52:55.0796 0x4768 [ 4A7582FD3E3CD490A440FEFB2FFA7AB3 ] \Device\Harddisk1\DR1\Partition1
14:52:55.0811 0x4768 \Device\Harddisk1\DR1\Partition1 - ok
14:52:56.0108 0x4768 AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.2.234 ), 0x41010 ( enabled : outofdate )
14:52:56.0170 0x4768 Win FW state via NFP2: enabled
14:52:58.0604 0x4768 ============================================================
14:52:58.0604 0x4768 Scan finished
14:52:58.0604 0x4768 ============================================================
14:52:58.0604 0x4520 Detected object count: 0
14:52:58.0604 0x4520 Actual detected object count: 0
14:55:02.0056 0x2f94 Deinitialize success
|
|
10.02.2014, 16:21
| #25 |
| /// the machine /// TB-Ausbilder | Rechner scheint infiziert, Probleme mit Programmen Mysteriös. Poste mal bitte ein frisches FRST log.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
10.02.2014, 18:03
| #26 |
| |  Rechner scheint infiziert, Probleme mit Programmen Hi, hier ist das gewünschte FRST log: Gruß FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-02-2014 03
Ran by JORDAN (administrator) on JORDAN-NOTEBOOK on 10-02-2014 17:50:57
Running from C:\Users\JORDAN\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
() C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(shbox.de) C:\Program Files (x86)\FreePDF_XP\fpassist.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\watchmi\TvdTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Protexis Inc.) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files (x86)\Verbatim GREEN BUTTON\GREEN BUTTON.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\update.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\updrgui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\update.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11785832 2011-03-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2207848 2011-03-28] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2294568 2010-09-03] (Synaptics Incorporated)
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel(R) Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10361616 2011-02-11] (Intel Corporation)
HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [207400 2010-12-15] (Wistron)
HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)
HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\Wbutton.exe [436264 2010-06-21] (Wistron Corp.)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-03] (CyberLink)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [NBAgent] - C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760 2010-03-14] (Nero AG)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [FreePDF Assistant] - C:\Program Files (x86)\FreePDF_XP\fpassist.exe [373760 2013-03-14] (shbox.de)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2934081096-936170642-240777201-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKU\S-1-5-21-2934081096-936170642-240777201-1000\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2934081096-936170642-240777201-1000\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-08-04] (Google Inc.)
Startup: C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verbatim GREEN BUTTON.lnk
ShortcutTarget: Verbatim GREEN BUTTON.lnk -> C:\Program Files (x86)\Verbatim GREEN BUTTON\GREEN BUTTON.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default
FF NewTab: about:blank
FF DefaultSearchEngine: Startpage HTTPS - Deutsch
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Startpage HTTPS - Deutsch
FF Homepage: www.Ing-Diba.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pack.google.com/Google Updater;version=14 - C:\Program Files (x86)\Google\Google Updater\2.4.1970.7372\npCIDetect14.dll (Google)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Google.com/GoogleEarthPlugin - C:\Users\JORDAN\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\JORDAN\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\JORDAN\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\searchplugins\ixquick-https---deutsch.xml
FF SearchPlugin: C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\searchplugins\startpage-https---deutsch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: iCloud Bookmarks - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\firefoxdav@icloud.com [2014-01-15]
FF Extension: Flagfox - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2014-01-23]
FF Extension: WOT - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-12-12]
FF Extension: Bitdefender QuickScan - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2014-01-23]
FF Extension: anonymoX - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\client@anonymox.net.xpi [2013-02-07]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\elemhidehelper@adblockplus.org.xpi [2011-10-24]
FF Extension: PlugIn-Checker - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\jid0-c1av474BVPIHcGJfBp3GkhlhAa4@jetpack.xpi [2013-02-15]
FF Extension: WEB.DE MailCheck - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\toolbar@web.de.xpi [2012-11-05]
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\toolbar_AVIRA-V7C@apn.ask.com.xpi [2013-12-20]
FF Extension: TrafficLight - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\trafficlight@bitdefender.com.xpi [2013-02-15]
FF Extension: Unity Web Player Compiler Pro - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{296e8833-7d14-4837-9ae4-382839ead3fe}.xpi [2013-10-29]
FF Extension: Adblock Plus - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-09-13]
FF Extension: {e4ca3fd8-cf17-48ca-b9a9-8357bececf66} - C:\Users\JORDAN\AppData\Roaming\Mozilla\Firefox\Profiles\mpuotvc5.default\Extensions\{e4ca3fd8-cf17-48ca-b9a9-8357bececf66}.xpi [2013-10-29]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-01-15]
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\KavAntiBanner@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-03-13]
FF HKCU\...\Firefox\Extensions: [finder@meingutscheincode.de] - C:\Program Files (x86)\Mein Gutscheincode Finder\Firefox
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-03-13]
Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "tabs": {
"use_compact_navigation_bar": false,
"use_vertical_tabs"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\JORDAN\AppData\Local\Google\Chrome\Application\13.0.782.215\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.250.6) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U25) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Chrome NaCl) - C:\Users\JORDAN\AppData\Local\Google\Chrome\Application\13.0.782.215\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\JORDAN\AppData\Local\Google\Chrome\Application\13.0.782.215\pdf.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (preisspion.de) - C:\Users\JORDAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgfpelakfkbbkkdchaaaknckhoadkcbo [2011-08-24]
CHR Extension: (Winload) - C:\Users\JORDAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngnjhfpfhadncgafgbneeljaginimmmk [2011-08-24]
CHR HKLM-x32\...\Chrome\Extension: [jgfpelakfkbbkkdchaaaknckhoadkcbo] - C:\Program Files (x86)\Mein Gutscheincode Finder\Chrome\chrome-extension.crx [2011-08-24]
==================== Services (Whitelisted) =================
R2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [1830768 2014-01-23] (SurfRight B.V.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-12-14] ()
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2028864 2011-12-13] (TuneUp Software)
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [62464 2010-12-06] ()
R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-23] (Wistron Corp.)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 hmpalert; C:\Windows\system32\drivers\hmpalert.sys [17416 2014-01-23] ()
R3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-18] (Siliten)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [11856 2011-07-08] (TuneUp Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-10 17:50 - 2014-02-10 17:50 - 00023414 _____ () C:\Users\JORDAN\Desktop\FRST.txt
2014-02-10 17:49 - 2014-02-10 17:49 - 02170880 _____ (Farbar) C:\Users\JORDAN\Desktop\FRST64.exe
2014-02-09 15:09 - 2014-02-09 15:09 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-02-05 13:33 - 2014-02-05 13:33 - 00002039 _____ () C:\Users\JORDAN\Desktop\Entfernen des Avira PC Cleaners.lnk
2014-02-05 13:33 - 2014-02-05 13:33 - 00001983 _____ () C:\Users\JORDAN\Desktop\Avira PC Cleaner.lnk
2014-02-04 08:58 - 2014-02-04 09:47 - 00000000 __SHD () C:\Users\JORDAN\AppData\Roaming\.#
2014-02-03 18:19 - 2014-02-03 18:19 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-01 13:40 - 2014-02-10 17:45 - 00004140 _____ () C:\Windows\System32\Tasks\Google Software Updater
2014-02-01 13:40 - 2014-02-10 17:45 - 00001034 _____ () C:\Windows\Tasks\Google Software Updater.job
2014-02-01 12:40 - 2014-02-01 12:40 - 00154234 _____ () C:\ComboFix.txt
2014-02-01 11:07 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-01 11:07 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-01 11:07 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-01 11:07 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-01-30 17:31 - 2014-02-01 12:40 - 00000000 ____D () C:\Qoobox
2014-01-30 17:30 - 2014-02-01 12:38 - 00000000 ____D () C:\Windows\erdnt
2014-01-30 17:11 - 2014-01-30 17:12 - 05177551 ____R (Swearware) C:\Users\JORDAN\Desktop\ComboFix.exe
2014-01-30 17:04 - 2011-12-13 09:29 - 00036160 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-01-30 17:04 - 2011-12-13 09:29 - 00029504 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-01-30 17:04 - 2011-12-13 09:29 - 00025920 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-30 17:04 - 2011-12-13 09:29 - 00021312 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-30 12:10 - 2014-02-10 17:45 - 00000000 ____D () C:\Users\JORDAN\Desktop\Trojaner-Board Laptop
2014-01-29 17:01 - 2014-02-10 17:50 - 00000000 ____D () C:\FRST
2014-01-29 16:50 - 2014-01-29 16:51 - 00000474 _____ () C:\Users\JORDAN\Desktop\defogger_disable 140129.log
2014-01-29 16:50 - 2014-01-29 16:50 - 00000000 _____ () C:\Users\JORDAN\defogger_reenable
2014-01-29 16:46 - 2014-01-29 16:46 - 00050477 _____ () C:\Users\JORDAN\Desktop\Defogger.exe
2014-01-29 14:49 - 2014-01-29 14:49 - 00001113 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-29 14:49 - 2014-01-29 14:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-29 14:49 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-27 17:08 - 2014-01-27 17:08 - 00002094 _____ () C:\Users\JORDAN\Desktop\Avira Free Antivirus starten.lnk
2014-01-27 11:20 - 2014-01-27 11:20 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011
2014-01-27 11:14 - 2014-01-30 17:04 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2011
2014-01-27 11:14 - 2014-01-27 11:14 - 00002213 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-27 11:14 - 2011-12-13 09:35 - 00034624 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-27 11:04 - 2014-01-27 11:04 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-01-27 11:04 - 2014-01-27 11:04 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2014-01-27 11:03 - 2014-01-27 11:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Avira
2014-01-27 11:01 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-01-27 11:01 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-01-27 11:01 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-01-27 11:01 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-01-27 10:29 - 2014-01-27 10:29 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-01-25 18:57 - 2014-01-25 18:44 - 00001073 _____ () C:\Users\JORDAN\Desktop\Secunia PSI.lnk
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Avanquest
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\ProgramData\BVRP Software
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\ProgramData\Avanquest
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\Program Files (x86)\Avanquest update
2014-01-25 14:05 - 2014-01-25 14:05 - 00000000 ____D () C:\Program Files (x86)\Avanquest
2014-01-25 12:14 - 2014-01-25 12:14 - 00001787 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-01-25 12:12 - 2014-01-25 12:14 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-25 12:12 - 2014-01-25 12:14 - 00000000 ____D () C:\Program Files\iTunes
2014-01-25 12:12 - 2014-01-25 12:14 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-01-25 12:12 - 2014-01-25 12:12 - 00000000 ____D () C:\Program Files\iPod
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default\AppData\Local\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default User\AppData\Local\Apple Computer
2014-01-25 11:55 - 2014-01-25 13:44 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\AutoSave
2014-01-25 11:55 - 2014-01-25 11:55 - 00000000 ____D () C:\Users\Public\Documents\BVRP Software
2014-01-25 11:55 - 2014-01-25 11:55 - 00000000 ____D () C:\ProgramData\Avanquest Software
2014-01-24 07:52 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-24 07:52 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-24 07:52 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-24 07:52 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-24 07:52 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-24 07:52 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-24 07:52 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-24 07:52 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-24 07:52 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-24 07:52 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-24 07:52 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-24 07:52 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-24 07:52 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-24 07:52 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-24 07:52 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-24 07:52 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-24 07:52 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-24 07:52 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-24 07:52 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-24 07:52 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-24 07:52 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-24 07:52 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-24 07:52 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-24 07:52 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-24 07:52 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-24 07:52 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-24 07:52 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-24 07:52 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-24 07:52 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-24 07:52 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-24 07:52 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-24 07:51 - 2014-01-24 07:52 - 00261600 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-01-23 17:55 - 2013-11-18 15:24 - 00002094 _____ () C:\Users\JORDAN\Desktop\TextMaker 2012.lnk
2014-01-23 17:55 - 2013-11-18 15:24 - 00002094 _____ () C:\Users\JORDAN\Desktop\PlanMaker 2012.lnk
2014-01-23 17:54 - 2013-11-18 15:25 - 00001289 _____ () C:\Users\JORDAN\Desktop\eM Client.lnk
2014-01-23 17:24 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-01-23 17:24 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-01-23 17:24 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-01-23 17:24 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-01-23 17:24 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-01-23 17:24 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-01-23 17:24 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-01-23 17:24 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-01-23 17:24 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-01-23 17:24 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-01-23 17:24 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-01-23 17:24 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-01-23 17:24 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-01-23 17:24 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-01-23 17:24 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-01-23 17:24 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-01-23 17:24 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-01-23 17:24 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-01-23 17:24 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-01-23 17:24 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-01-23 17:24 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-01-23 17:24 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-01-23 17:24 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-01-23 17:24 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-01-23 17:24 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-01-23 17:17 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-01-23 17:17 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-01-23 17:00 - 2014-01-23 17:00 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Secunia PSI
2014-01-23 17:00 - 2014-01-23 17:00 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-01-23 16:39 - 2014-01-23 16:39 - 00000000 ____D () C:\Windows\de
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\sl
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\nl
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\it
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\hu
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\fr
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\es
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\en
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\da
2014-01-23 16:33 - 2014-01-23 16:33 - 00000000 ____D () C:\Program Files\Windows Live
2014-01-23 16:29 - 2014-01-23 16:29 - 00002190 _____ () C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00002124 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00002124 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ___RD () C:\Users\JORDAN\SkyDrive
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 16:25 - 2014-01-23 16:25 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Windows Live
2014-01-23 16:11 - 2014-01-23 16:11 - 00000000 ____D () C:\ProgramData\Google Updater
2014-01-23 13:57 - 2014-01-23 16:40 - 00000000 ____D () C:\Program Files (x86)\HitmanPro.Alert
2014-01-23 13:57 - 2014-01-23 16:01 - 00564312 _____ (SurfRight) C:\Windows\SysWOW64\hmpalert.dll
2014-01-23 13:57 - 2014-01-23 16:01 - 00518480 _____ (SurfRight) C:\Windows\system32\hmpalert.dll
2014-01-23 13:57 - 2014-01-23 16:01 - 00017416 _____ () C:\Windows\system32\Drivers\hmpalert.sys
2014-01-23 13:57 - 2014-01-23 13:57 - 00000000 ____D () C:\ProgramData\HitmanPro.Alert
2014-01-23 13:41 - 2014-01-23 13:40 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-23 13:41 - 2014-01-23 13:40 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-23 11:59 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-23 11:55 - 2014-01-23 11:55 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-23 11:55 - 2014-01-23 11:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-23 11:55 - 2014-01-23 11:55 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-23 11:55 - 2014-01-23 11:55 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-23 11:55 - 2014-01-23 11:55 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-23 11:55 - 2014-01-23 11:55 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-23 11:55 - 2014-01-23 11:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-23 11:54 - 2014-01-23 11:59 - 00009961 _____ () C:\Windows\IE11_main.log
2014-01-23 11:39 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-23 11:39 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-23 11:39 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-23 11:39 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 14:45 - 2014-01-15 14:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-01-15 14:30 - 2014-01-15 14:30 - 00002379 _____ () C:\Users\Public\Desktop\Google Earth.lnk
==================== One Month Modified Files and Folders =======
2014-02-10 17:52 - 2014-02-10 17:50 - 00023414 _____ () C:\Users\JORDAN\Desktop\FRST.txt
2014-02-10 17:50 - 2014-01-29 17:01 - 00000000 ____D () C:\FRST
2014-02-10 17:50 - 2009-07-14 05:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-10 17:50 - 2009-07-14 05:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-10 17:49 - 2014-02-10 17:49 - 02170880 _____ (Farbar) C:\Users\JORDAN\Desktop\FRST64.exe
2014-02-10 17:45 - 2014-02-01 13:40 - 00004140 _____ () C:\Windows\System32\Tasks\Google Software Updater
2014-02-10 17:45 - 2014-02-01 13:40 - 00001034 _____ () C:\Windows\Tasks\Google Software Updater.job
2014-02-10 17:45 - 2014-01-30 12:10 - 00000000 ____D () C:\Users\JORDAN\Desktop\Trojaner-Board Laptop
2014-02-10 17:41 - 2013-11-07 11:59 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\FreePDF_XP
2014-02-10 17:41 - 2011-08-04 10:23 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-10 17:41 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-10 17:41 - 2009-07-14 05:51 - 00072977 _____ () C:\Windows\setupact.log
2014-02-09 19:15 - 2011-08-04 19:20 - 01311726 _____ () C:\Windows\WindowsUpdate.log
2014-02-09 18:33 - 2011-11-07 17:46 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Skype
2014-02-09 15:09 - 2014-02-09 15:09 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-02-08 18:40 - 2010-11-21 04:47 - 00542788 _____ () C:\Windows\PFRO.log
2014-02-07 17:01 - 2013-11-04 11:16 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\eM Client for SoftMaker
2014-02-07 15:58 - 2011-05-20 21:25 - 00700134 _____ () C:\Windows\system32\perfh007.dat
2014-02-07 15:58 - 2011-05-20 21:25 - 00149984 _____ () C:\Windows\system32\perfc007.dat
2014-02-07 15:58 - 2009-07-14 06:13 - 01622236 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-05 13:33 - 2014-02-05 13:33 - 00002039 _____ () C:\Users\JORDAN\Desktop\Entfernen des Avira PC Cleaners.lnk
2014-02-05 13:33 - 2014-02-05 13:33 - 00001983 _____ () C:\Users\JORDAN\Desktop\Avira PC Cleaner.lnk
2014-02-04 09:47 - 2014-02-04 08:58 - 00000000 __SHD () C:\Users\JORDAN\AppData\Roaming\.#
2014-02-04 08:58 - 2012-05-02 16:05 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\ALDI_SUED_Mah_Jong
2014-02-03 18:19 - 2014-02-03 18:19 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-02 21:01 - 2013-10-31 10:47 - 00000000 ____D () C:\AdwCleaner
2014-02-01 12:40 - 2014-02-01 12:40 - 00154234 _____ () C:\ComboFix.txt
2014-02-01 12:40 - 2014-01-30 17:31 - 00000000 ____D () C:\Qoobox
2014-02-01 12:40 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-01 12:38 - 2014-01-30 17:30 - 00000000 ____D () C:\Windows\erdnt
2014-02-01 12:34 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-01 12:30 - 2012-11-05 18:50 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\convert
2014-01-30 17:12 - 2014-01-30 17:11 - 05177551 ____R (Swearware) C:\Users\JORDAN\Desktop\ComboFix.exe
2014-01-30 17:04 - 2014-01-27 11:14 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2011
2014-01-29 16:51 - 2014-01-29 16:50 - 00000474 _____ () C:\Users\JORDAN\Desktop\defogger_disable 140129.log
2014-01-29 16:50 - 2014-01-29 16:50 - 00000000 _____ () C:\Users\JORDAN\defogger_reenable
2014-01-29 16:50 - 2011-08-04 10:30 - 00000000 ____D () C:\Users\JORDAN
2014-01-29 16:46 - 2014-01-29 16:46 - 00050477 _____ () C:\Users\JORDAN\Desktop\Defogger.exe
2014-01-29 14:53 - 2012-03-29 18:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\QuickScan
2014-01-29 14:49 - 2014-01-29 14:49 - 00001113 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-29 14:49 - 2014-01-29 14:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-27 17:21 - 2011-08-04 15:42 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\SoftGrid Client
2014-01-27 17:08 - 2014-01-27 17:08 - 00002094 _____ () C:\Users\JORDAN\Desktop\Avira Free Antivirus starten.lnk
2014-01-27 11:20 - 2014-01-27 11:20 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011
2014-01-27 11:16 - 2011-11-24 16:56 - 00000000 ____D () C:\Users\JORDAN\Desktop\Selten verwendete Desktopverknüpfungen
2014-01-27 11:14 - 2014-01-27 11:14 - 00002213 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-27 11:04 - 2014-01-27 11:04 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-01-27 11:04 - 2014-01-27 11:04 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2014-01-27 11:03 - 2014-01-27 11:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Avira
2014-01-27 11:01 - 2013-02-27 17:31 - 00000000 ____D () C:\ProgramData\Avira
2014-01-27 10:29 - 2014-01-27 10:29 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-01-26 00:13 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-01-25 18:44 - 2014-01-25 18:57 - 00001073 _____ () C:\Users\JORDAN\Desktop\Secunia PSI.lnk
2014-01-25 15:19 - 2011-10-10 16:35 - 00003804 _____ () C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-01-25 14:57 - 2011-05-20 22:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Avanquest
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\ProgramData\BVRP Software
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\ProgramData\Avanquest
2014-01-25 14:06 - 2014-01-25 14:06 - 00000000 ____D () C:\Program Files (x86)\Avanquest update
2014-01-25 14:06 - 2011-05-21 00:22 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-25 14:05 - 2014-01-25 14:05 - 00000000 ____D () C:\Program Files (x86)\Avanquest
2014-01-25 13:44 - 2014-01-25 11:55 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\AutoSave
2014-01-25 12:25 - 2009-07-14 06:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-25 12:14 - 2014-01-25 12:14 - 00001787 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-01-25 12:14 - 2014-01-25 12:12 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-25 12:14 - 2014-01-25 12:12 - 00000000 ____D () C:\Program Files\iTunes
2014-01-25 12:14 - 2014-01-25 12:12 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-01-25 12:12 - 2014-01-25 12:12 - 00000000 ____D () C:\Program Files\iPod
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default\AppData\Local\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Apple Computer
2014-01-25 12:11 - 2014-01-25 12:11 - 00000000 ____D () C:\Users\Default User\AppData\Local\Apple Computer
2014-01-25 11:55 - 2014-01-25 11:55 - 00000000 ____D () C:\Users\Public\Documents\BVRP Software
2014-01-25 11:55 - 2014-01-25 11:55 - 00000000 ____D () C:\ProgramData\Avanquest Software
2014-01-25 11:45 - 2012-11-05 14:25 - 00000000 ____D () C:\ProgramData\Apple
2014-01-24 07:52 - 2014-01-24 07:51 - 00261600 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-01-24 07:25 - 2012-07-02 16:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-24 07:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-01-23 17:41 - 2013-10-31 11:35 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-01-23 17:28 - 2011-08-04 15:41 - 01589164 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-23 17:15 - 2013-10-30 17:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-01-23 17:15 - 2011-08-12 16:21 - 00002018 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2014-01-23 17:12 - 2011-05-20 22:29 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-01-23 17:08 - 2012-03-29 17:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-23 17:08 - 2011-05-20 23:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-23 17:00 - 2014-01-23 17:00 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Secunia PSI
2014-01-23 17:00 - 2014-01-23 17:00 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-01-23 16:40 - 2014-01-23 13:57 - 00000000 ____D () C:\Program Files (x86)\HitmanPro.Alert
2014-01-23 16:39 - 2014-01-23 16:39 - 00000000 ____D () C:\Windows\de
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\sl
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\nl
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\it
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\hu
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\fr
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\es
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\en
2014-01-23 16:38 - 2014-01-23 16:38 - 00000000 ____D () C:\Windows\da
2014-01-23 16:33 - 2014-01-23 16:33 - 00000000 ____D () C:\Program Files\Windows Live
2014-01-23 16:33 - 2011-05-20 23:04 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-01-23 16:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-01-23 16:30 - 2011-05-20 23:02 - 00010867 _____ () C:\Windows\DirectX.log
2014-01-23 16:29 - 2014-01-23 16:29 - 00002190 _____ () C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00002124 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00002124 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ___RD () C:\Users\JORDAN\SkyDrive
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-23 16:29 - 2014-01-23 16:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 16:25 - 2014-01-23 16:25 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Windows Live
2014-01-23 16:11 - 2014-01-23 16:11 - 00000000 ____D () C:\ProgramData\Google Updater
2014-01-23 16:11 - 2011-08-04 10:23 - 00000000 ____D () C:\Program Files (x86)\Google
2014-01-23 16:01 - 2014-01-23 13:57 - 00564312 _____ (SurfRight) C:\Windows\SysWOW64\hmpalert.dll
2014-01-23 16:01 - 2014-01-23 13:57 - 00518480 _____ (SurfRight) C:\Windows\system32\hmpalert.dll
2014-01-23 16:01 - 2014-01-23 13:57 - 00017416 _____ () C:\Windows\system32\Drivers\hmpalert.sys
2014-01-23 13:57 - 2014-01-23 13:57 - 00000000 ____D () C:\ProgramData\HitmanPro.Alert
2014-01-23 13:45 - 2011-05-20 23:42 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-23 13:40 - 2014-01-23 13:41 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-23 13:40 - 2014-01-23 13:41 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-23 13:40 - 2011-05-20 23:42 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-23 13:40 - 2011-05-20 23:42 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-23 13:40 - 2011-05-20 23:42 - 00000000 ____D () C:\Program Files\Java
2014-01-23 13:20 - 2011-08-04 10:30 - 00001425 _____ () C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-23 13:15 - 2009-07-14 05:45 - 00421984 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-23 11:59 - 2014-01-23 11:54 - 00009961 _____ () C:\Windows\IE11_main.log
2014-01-23 11:55 - 2014-01-23 11:55 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-23 11:55 - 2014-01-23 11:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-23 11:55 - 2014-01-23 11:55 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-23 11:55 - 2014-01-23 11:55 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-23 11:55 - 2014-01-23 11:55 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-23 11:55 - 2014-01-23 11:55 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-23 11:55 - 2014-01-23 11:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-23 11:55 - 2014-01-23 11:55 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-23 11:55 - 2014-01-23 11:55 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-23 11:54 - 2013-08-19 09:14 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-23 11:23 - 2012-11-05 14:28 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Apple Computer
2014-01-15 17:20 - 2012-11-05 14:26 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Apple
2014-01-15 14:45 - 2014-01-15 14:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-01-15 14:33 - 2011-08-04 15:35 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Google
2014-01-15 14:31 - 2012-11-05 14:28 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Apple Computer
2014-01-15 14:30 - 2014-01-15 14:30 - 00002379 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-01-15 12:59 - 2011-08-04 15:58 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Adobe
2014-01-15 12:35 - 2011-08-04 10:23 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-15 12:28 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
Some content of TEMP:
====================
C:\Users\JORDAN\AppData\Local\Temp\avgnt.exe
C:\Users\JORDAN\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-04 08:19
==================== End Of Log ============================
--- --- --- |
|
11.02.2014, 16:29
| #27 |
| /// the machine /// TB-Ausbilder | Rechner scheint infiziert, Probleme mit Programmen Alle Logs sind wirklich tadellos sauber. Schauen wir einmal von aussen: Scan mit Farbar's Recovery Scan Tool (Recovery Mode - Windows Vista, 7, 8) Hinweise für Windows 8-Nutzer: Anleitung 1 (FRST-Variante) und Anleitung 2 (zweiter Teil)
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
12.02.2014, 14:15
| #28 |
| |  Rechner scheint infiziert, Probleme mit Programmen Hallo, puh, geschafft, für mich als Laie war das eine große Herauforderung. Dank und Gruß FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-02-2014 01 Ran by SYSTEM on MININT-PPCE6VG on 12-02-2014 13:43:33 Running from J:\ Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 11 Boot Mode: Recovery The current controlset is ControlSet001 ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log. ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11785832 2011-03-28] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2207848 2011-03-28] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2294568 2010-09-03] (Synaptics Incorporated) HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel(R) Corporation) HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10361616 2011-02-11] (Intel Corporation) HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [207400 2010-12-15] (Wistron) HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.) HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\Wbutton.exe [436264 2010-06-21] (Wistron Corp.) HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-03] (CyberLink) HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [NBAgent] - C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760 2010-03-14] (Nero AG) HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation) HKLM-x32\...\Run: [FreePDF Assistant] - C:\Program Files (x86)\FreePDF_XP\fpassist.exe [373760 2013-03-14] (shbox.de) HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.) HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\Default\...\RunOnce: [Screensaver] - C:\Windows\Web\Wallpaper\MEDION\start.vbs [129 2009-10-22] () HKU\Default User\...\RunOnce: [Screensaver] - C:\Windows\Web\Wallpaper\MEDION\start.vbs [129 2009-10-22] () HKU\JORDAN\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-20] (Skype Technologies S.A.) HKU\JORDAN\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.) HKU\JORDAN\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-08-04] (Google Inc.) Startup: C:\Users\JORDAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verbatim GREEN BUTTON.lnk ShortcutTarget: Verbatim GREEN BUTTON.lnk -> C:\Program Files (x86)\Verbatim GREEN BUTTON\GREEN BUTTON.exe () ==================== Services (Whitelisted) ================= S2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] () S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG) S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG) S2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.) S2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [1830768 2014-01-23] (SurfRight B.V.) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-02] () S2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-12-14] () S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) S2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2028864 2011-12-13] (TuneUp Software) S2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [62464 2010-12-06] () S3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.) ==================== Drivers (Whitelisted) ==================== S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG) S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG) S2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG) S2 hmpalert; C:\Windows\system32\drivers\hmpalert.sys [17416 2014-01-23] () S3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-18] (Siliten) S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [11856 2011-07-08] (TuneUp Software) S5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation) S3 catchme; \??\C:\ComboFix\catchme.sys [X] ========================== Drivers MD5 ======================= C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit C:\Windows\system32\drivers\afd.sys 79059559E89D06E8B80CE2944BE20228 C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49 C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048 C:\Windows\system32\drivers\appid.sys ==> MD5 is legit C:\Windows\system32\drivers\arc.sys ==> MD5 is legit C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit C:\Windows\system32\drivers\atapi.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\avgntflt.sys 7806BFCD1D7FA5EC23F7324D4EAFD25B C:\Windows\System32\DRIVERS\avipbb.sys C3A58DBD18786C338126D30BF8C33D72 C:\Windows\System32\DRIVERS\avnetflt.sys 3DE0EBA0BF4771C897F544CBF7CB8973 C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit C:\Windows\system32\drivers\blbdrive.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\BthEnum.sys CF98190A94F62E405C8CB255018B2315 C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\bthpan.sys 02DD601B708DD0667E1331FA8518E9FF C:\Windows\System32\Drivers\BTHport.sys 738D0E9272F59EB7A1449C3EC118E6C4 C:\Windows\System32\Drivers\BTHUSB.sys F188B7394D81010767B6DF3178519A37 C:\Windows\System32\DRIVERS\btmaux.sys BA554BFCBF21201D310738A42C9C19E1 C:\Windows\System32\DRIVERS\btmhsf.sys 40C6FEC49D1CC4D112368A2BCD2BCBB7 C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit C:\Windows\system32\drivers\cdrom.sys ==> MD5 is legit C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit C:\Windows\System32\CLFS.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\clwvd.sys 50F92C943F18B070F166D019DFAB3D9A C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706 C:\Windows\System32\drivers\compbatt.sys ==> MD5 is legit C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit C:\Windows\System32\drivers\discache.sys ==> MD5 is legit C:\Windows\System32\drivers\disk.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\Dot4.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\Dot4Prt.sys E9F5969233C5D89F3C35E3A66A52A361 C:\Windows\System32\DRIVERS\dot4usb.sys ==> MD5 is legit C:\Windows\system32\drivers\drmkaud.sys ==> MD5 is legit C:\Windows\System32\drivers\dxgkrnl.sys 88612F1CE3BF42256913BF6E61C70D52 C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0 C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092F C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit C:\Windows\system32\drivers\hmpalert.sys 4C66CCE36DE9DBC28E61F9B74062206A C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit C:\Windows\System32\drivers\iaStor.sys 26CF4275034214ECEDD8EC17B0A18A99 C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366 C:\Windows\System32\DRIVERS\iBtFltCoex.sys FC47F5CF561BF0FD897EFD1A9604DCCF C:\Windows\System32\DRIVERS\igdkmd64.sys 8C44E6B688790E2AD3846C97661C54F1 C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys CAA8BC6737DFA3BF1A50175CFB226788 C:\Windows\System32\drivers\intelaud.sys CADDF0927DAC63EDAE48F5C35A61D87D C:\Windows\System32\drivers\RTKVHD64.sys 177B4E48C7A288E70779B42AB81D2D06 C:\Windows\System32\DRIVERS\IntcDAud.sys FC727061C0F47C8059E88E05D5C8E381 C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit C:\Windows\system32\drivers\iwdbus.sys 716F66336F10885D935B08174DC54242 C:\Windows\system32\drivers\kbdclass.sys ==> MD5 is legit C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit C:\Windows\System32\Drivers\ksecdd.sys 8F489706472F7E9A06BAAA198703FA64 C:\Windows\System32\Drivers\ksecpkg.sys 868A2CAAB12EFC7A021682BCA0EEC54C C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\L1C62x64.sys 6DD5383C9413AAE3113FAF89E345663D C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit C:\Windows\system32\drivers\HECIx64.sys A6518DCC42F7A6E999BB3BEA8FD87567 C:\Windows\System32\drivers\modem.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit C:\Windows\system32\drivers\mrxdav.sys 1A4F75E63C9FB84B85DFFC6B63FD5404 C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163 C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88 C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\NETwNs64.sys AC69618DE5BCCE8747C9AB0AAE1003C1 C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit C:\Windows\System32\Drivers\Ntfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0 C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit C:\Windows\system32\drivers\nusb3hub.sys 01266516E6E88D183A2B58722EEB4443 C:\Windows\system32\drivers\nusb3xhc.sys 5EC04F55CC5F165F21752712437DF638 C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit C:\Windows\system32\drivers\parport.sys ==> MD5 is legit C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C C:\Windows\System32\drivers\pci.sys ==> MD5 is legit C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit C:\Windows\system32\drivers\processr.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\psi_mf_amd64.sys DD3FD48D69F5FBBB21D46D1514C1C2DB C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34 C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\rfcomm.sys 3DD798846E2C28102B922C56E71B7932 C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit C:\Windows\System32\Drivers\RtsUVStor.sys CE0A1D8A59410E698140821E4E69DA0D C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit C:\Windows\system32\drivers\serial.sys ==> MD5 is legit C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\Sftfslh.sys 2046AA7491DE7EFA4D70E615D9BC9D09 C:\Windows\System32\DRIVERS\Sftplaylh.sys 0E0446BC4D51BE4263ACB7E33491191C C:\Windows\System32\DRIVERS\Sftredirlh.sys C5FB982CD266E604ED3142102C26D62C C:\Windows\System32\DRIVERS\Sftvollh.sys 2575511AF67AA1FA068CCC4918E2C2A3 C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28 C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3 C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit C:\Windows\system32\drivers\SynTP.sys B3AD15FA10EBEAFC1275F34050E4E230 C:\Windows\System32\drivers\tcpip.sys 40AF23633D197905F03AB5628C558C51 C:\Windows\System32\DRIVERS\tcpip.sys 40AF23633D197905F03AB5628C558C51 C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8 C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09 C:\Windows\System32\drivers\tsusbflt.sys 17C6B51CBCCDED95B3CC14E22791F85E C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07 C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys DCC94C51D27C7EC0DADECA8F64C94FCF C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit C:\Windows\System32\Drivers\usbaapl64.sys C9E9D59C0099A9FF51697E9306A44240 C:\Windows\system32\drivers\usbccgp.sys DCA68B0943D6FA415F0C56C92158A83A C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31 C:\Windows\system32\drivers\usbehci.sys 18A85013A3E0F7E1755365D287443965 C:\Windows\System32\DRIVERS\usbhub.sys 8D1196CFBB223621F2C67D45710F25BA C:\Windows\system32\drivers\usbohci.sys 765A92D428A8DB88B960DA5A8D6089DC C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit C:\Windows\system32\drivers\usbscan.sys 9661DA76B4531B2DA272ECCE25A8AF24 C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6 C:\Windows\system32\drivers\usbuhci.sys DD253AFC3BC6CBA412342DE60C3647F3 C:\Windows\System32\Drivers\usbvideo.sys 1F775DA4CF1A3A1834207E975A72E9D7 C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit C:\Windows\System32\drivers\vga.sys ==> MD5 is legit C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\vwifimp.sys ==> MD5 is legit C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit C:\Windows\system32\drivers\wd.sys ==> MD5 is legit C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8 C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legit C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659 ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-10 09:37 - 2014-02-12 03:15 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-10 09:37 - 2014-02-10 09:38 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-02-09 06:09 - 2014-02-09 06:09 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group 2014-02-05 04:33 - 2014-02-05 04:33 - 00002039 _____ () C:\Users\JORDAN\Desktop\Entfernen des Avira PC Cleaners.lnk 2014-02-05 04:33 - 2014-02-05 04:33 - 00001983 _____ () C:\Users\JORDAN\Desktop\Avira PC Cleaner.lnk 2014-02-03 23:58 - 2014-02-12 03:19 - 00000000 __SHD () C:\Users\JORDAN\AppData\Roaming\.# 2014-02-03 09:19 - 2014-02-03 09:19 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-02-01 04:40 - 2014-02-12 03:23 - 00001034 _____ () C:\Windows\Tasks\Google Software Updater.job 2014-02-01 04:40 - 2014-02-12 02:36 - 00004140 _____ () C:\Windows\System32\Tasks\Google Software Updater 2014-02-01 03:40 - 2014-02-01 03:40 - 00154234 _____ () C:\ComboFix.txt 2014-02-01 02:07 - 2011-06-25 22:45 - 00256000 _____ () C:\Windows\PEV.exe 2014-02-01 02:07 - 2010-11-07 09:20 - 00208896 _____ () C:\Windows\MBR.exe 2014-02-01 02:07 - 2009-04-19 20:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2014-02-01 02:07 - 2000-08-30 16:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2014-02-01 02:07 - 2000-08-30 16:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2014-02-01 02:07 - 2000-08-30 16:00 - 00098816 _____ () C:\Windows\sed.exe 2014-02-01 02:07 - 2000-08-30 16:00 - 00080412 _____ () C:\Windows\grep.exe 2014-02-01 02:07 - 2000-08-30 16:00 - 00068096 _____ () C:\Windows\zip.exe 2014-01-30 08:31 - 2014-02-01 03:40 - 00000000 ____D () C:\Qoobox 2014-01-30 08:30 - 2014-02-01 03:38 - 00000000 ____D () C:\Windows\erdnt 2014-01-30 08:11 - 2014-01-30 08:12 - 05177551 ____R (Swearware) C:\Users\JORDAN\Desktop\ComboFix.exe 2014-01-30 08:04 - 2011-12-13 00:29 - 00036160 _____ (TuneUp Software) C:\Windows\System32\uxtuneup.dll 2014-01-30 08:04 - 2011-12-13 00:29 - 00029504 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll 2014-01-30 08:04 - 2011-12-13 00:29 - 00025920 _____ (TuneUp Software) C:\Windows\System32\authuitu.dll 2014-01-30 08:04 - 2011-12-13 00:29 - 00021312 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll 2014-01-30 03:10 - 2014-02-10 09:06 - 00000000 ____D () C:\Users\JORDAN\Desktop\Trojaner-Board Laptop 2014-01-29 08:01 - 2014-02-12 13:43 - 00000000 ____D () C:\FRST 2014-01-29 07:50 - 2014-01-29 07:51 - 00000474 _____ () C:\Users\JORDAN\Desktop\defogger_disable 140129.log 2014-01-29 07:50 - 2014-01-29 07:50 - 00000000 _____ () C:\Users\JORDAN\defogger_reenable 2014-01-29 07:46 - 2014-01-29 07:46 - 00050477 _____ () C:\Users\JORDAN\Desktop\Defogger.exe 2014-01-29 05:49 - 2014-01-29 05:49 - 00001113 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-01-29 05:49 - 2014-01-29 05:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware 2014-01-29 05:49 - 2013-04-04 05:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys 2014-01-27 08:08 - 2014-01-27 08:08 - 00002094 _____ () C:\Users\JORDAN\Desktop\Avira Free Antivirus starten.lnk 2014-01-27 02:20 - 2014-01-27 02:20 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011 2014-01-27 02:14 - 2014-01-30 08:04 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2011 2014-01-27 02:14 - 2014-01-27 02:14 - 00002213 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk 2014-01-27 02:14 - 2011-12-13 00:35 - 00034624 _____ (TuneUp Software) C:\Windows\System32\TURegOpt.exe 2014-01-27 02:04 - 2014-01-27 02:04 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork 2014-01-27 02:04 - 2014-01-27 02:04 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork 2014-01-27 02:03 - 2014-01-27 02:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Avira 2014-01-27 02:01 - 2013-12-09 02:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avipbb.sys 2014-01-27 02:01 - 2013-12-09 02:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avgntflt.sys 2014-01-27 02:01 - 2013-12-09 02:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys 2014-01-27 02:01 - 2013-12-09 02:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avkmgr.sys 2014-01-27 01:29 - 2014-01-27 01:29 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-01-25 09:57 - 2014-01-25 09:44 - 00001073 _____ () C:\Users\JORDAN\Desktop\Secunia PSI.lnk 2014-01-25 05:06 - 2014-01-25 05:06 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Avanquest 2014-01-25 05:06 - 2014-01-25 05:06 - 00000000 ____D () C:\ProgramData\BVRP Software 2014-01-25 05:06 - 2014-01-25 05:06 - 00000000 ____D () C:\ProgramData\Avanquest 2014-01-25 05:06 - 2014-01-25 05:06 - 00000000 ____D () C:\Program Files (x86)\Avanquest update 2014-01-25 05:05 - 2014-01-25 05:05 - 00000000 ____D () C:\Program Files (x86)\Avanquest 2014-01-25 03:14 - 2014-01-25 03:14 - 00001787 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-01-25 03:12 - 2014-01-25 03:14 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-01-25 03:12 - 2014-01-25 03:14 - 00000000 ____D () C:\Program Files\iTunes 2014-01-25 03:12 - 2014-01-25 03:14 - 00000000 ____D () C:\Program Files (x86)\iTunes 2014-01-25 03:12 - 2014-01-25 03:12 - 00000000 ____D () C:\Program Files\iPod 2014-01-25 03:11 - 2014-01-25 03:11 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Apple Computer 2014-01-25 03:11 - 2014-01-25 03:11 - 00000000 ____D () C:\Users\Default\AppData\Local\Apple Computer 2014-01-25 03:11 - 2014-01-25 03:11 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Apple Computer 2014-01-25 03:11 - 2014-01-25 03:11 - 00000000 ____D () C:\Users\Default User\AppData\Local\Apple Computer 2014-01-25 02:55 - 2014-01-25 04:44 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\AutoSave 2014-01-25 02:55 - 2014-01-25 02:55 - 00000000 ____D () C:\Users\Public\Documents\BVRP Software 2014-01-25 02:55 - 2014-01-25 02:55 - 00000000 ____D () C:\ProgramData\Avanquest Software 2014-01-23 22:52 - 2013-11-26 03:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2014-01-23 22:52 - 2013-11-26 02:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2014-01-23 22:52 - 2013-11-26 02:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll 2014-01-23 22:52 - 2013-11-26 02:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-01-23 22:52 - 2013-11-26 01:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2014-01-23 22:52 - 2013-11-26 01:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll 2014-01-23 22:52 - 2013-11-26 01:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2014-01-23 22:52 - 2013-11-26 01:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2014-01-23 22:52 - 2013-11-26 01:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2014-01-23 22:52 - 2013-11-26 01:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-01-23 22:52 - 2013-11-26 01:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll 2014-01-23 22:52 - 2013-11-26 01:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2014-01-23 22:52 - 2013-11-26 01:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe 2014-01-23 22:52 - 2013-11-26 01:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll 2014-01-23 22:52 - 2013-11-26 00:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2014-01-23 22:52 - 2013-11-26 00:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-01-23 22:52 - 2013-11-26 00:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-01-23 22:52 - 2013-11-26 00:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2014-01-23 22:52 - 2013-11-26 00:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-01-23 22:52 - 2013-11-26 00:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-01-23 22:52 - 2013-11-26 00:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-01-23 22:52 - 2013-11-26 00:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2014-01-23 22:52 - 2013-11-25 23:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2014-01-23 22:52 - 2013-11-25 23:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-01-23 22:52 - 2013-11-25 23:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-01-23 22:52 - 2013-11-25 23:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll 2014-01-23 22:52 - 2013-11-25 22:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2014-01-23 22:52 - 2013-11-25 22:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2014-01-23 22:52 - 2013-11-25 22:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-01-23 22:52 - 2013-11-25 22:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-01-23 22:52 - 2013-11-25 22:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-01-23 22:51 - 2014-01-23 22:52 - 00261600 _____ () C:\Windows\msxml4-KB2758694-enu.LOG 2014-01-23 08:55 - 2013-11-18 06:24 - 00002094 _____ () C:\Users\JORDAN\Desktop\TextMaker 2012.lnk 2014-01-23 08:55 - 2013-11-18 06:24 - 00002094 _____ () C:\Users\JORDAN\Desktop\PlanMaker 2012.lnk 2014-01-23 08:54 - 2013-11-18 06:25 - 00001289 _____ () C:\Users\JORDAN\Desktop\eM Client.lnk 2014-01-23 08:24 - 2012-08-23 06:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\System32\rdpudd.dll 2014-01-23 08:24 - 2012-08-23 06:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\rdpvideominiport.sys 2014-01-23 08:24 - 2012-08-23 06:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys 2014-01-23 08:24 - 2012-08-23 06:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys 2014-01-23 08:24 - 2012-08-23 05:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2014-01-23 08:24 - 2012-08-23 05:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2014-01-23 08:24 - 2012-08-23 05:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe 2014-01-23 08:24 - 2012-08-23 05:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll 2014-01-23 08:24 - 2012-08-23 05:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\System32\RdpGroupPolicyExtension.dll 2014-01-23 08:24 - 2012-08-23 05:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\System32\MsRdpWebAccess.dll 2014-01-23 08:24 - 2012-08-23 05:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2014-01-23 08:24 - 2012-08-23 05:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\System32\wksprtPS.dll 2014-01-23 08:24 - 2012-08-23 05:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\System32\TsUsbGDCoInstaller.dll 2014-01-23 08:24 - 2012-08-23 04:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\System32\tsgqec.dll 2014-01-23 08:24 - 2012-08-23 03:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\System32\TSWbPrxy.exe 2014-01-23 08:24 - 2012-08-23 03:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2014-01-23 08:24 - 2012-08-23 03:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\System32\wksprt.exe 2014-01-23 08:24 - 2012-08-23 03:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2014-01-23 08:24 - 2012-08-23 02:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\System32\aaclient.dll 2014-01-23 08:24 - 2012-08-23 02:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\System32\rdpendp_winip.dll 2014-01-23 08:24 - 2012-08-23 02:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2014-01-23 08:24 - 2012-08-23 02:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\System32\mstsc.exe 2014-01-23 08:24 - 2012-08-23 01:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll 2014-01-23 08:24 - 2012-08-23 00:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-01-23 08:24 - 2012-08-23 00:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\System32\mstscax.dll 2014-01-23 08:17 - 2012-05-04 03:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\System32\qdvd.dll 2014-01-23 08:17 - 2012-05-04 01:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2014-01-23 08:00 - 2014-01-23 08:00 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Secunia PSI 2014-01-23 08:00 - 2014-01-23 08:00 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-01-23 07:39 - 2014-01-23 07:39 - 00000000 ____D () C:\Windows\de 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\sl 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\nl 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\it 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\hu 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\fr 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\es 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\en 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\da 2014-01-23 07:33 - 2014-01-23 07:33 - 00000000 ____D () C:\Program Files\Windows Live 2014-01-23 07:29 - 2014-01-23 07:29 - 00000000 ___RD () C:\Users\JORDAN\SkyDrive 2014-01-23 07:29 - 2014-01-23 07:29 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive 2014-01-23 07:29 - 2014-01-23 07:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive 2014-01-23 07:25 - 2014-01-23 07:25 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Windows Live 2014-01-23 07:11 - 2014-01-23 07:11 - 00000000 ____D () C:\ProgramData\Google Updater 2014-01-23 04:57 - 2014-01-23 07:40 - 00000000 ____D () C:\Program Files (x86)\HitmanPro.Alert 2014-01-23 04:57 - 2014-01-23 07:01 - 00564312 _____ (SurfRight) C:\Windows\SysWOW64\hmpalert.dll 2014-01-23 04:57 - 2014-01-23 07:01 - 00518480 _____ (SurfRight) C:\Windows\System32\hmpalert.dll 2014-01-23 04:57 - 2014-01-23 07:01 - 00017416 _____ () C:\Windows\System32\Drivers\hmpalert.sys 2014-01-23 04:57 - 2014-01-23 04:57 - 00000000 ____D () C:\ProgramData\HitmanPro.Alert 2014-01-23 04:41 - 2014-01-23 04:40 - 00312744 _____ (Oracle Corporation) C:\Windows\System32\javaws.exe 2014-01-23 04:41 - 2014-01-23 04:40 - 00108968 _____ (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll 2014-01-23 02:59 - 2013-10-14 09:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\System32\IEUDINIT.EXE 2014-01-23 02:55 - 2014-01-23 02:55 - 01228800 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00942592 _____ (Microsoft Corporation) C:\Windows\System32\jsIntl.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00774144 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00626176 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2014-01-23 02:55 - 2014-01-23 02:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2014-01-23 02:55 - 2014-01-23 02:55 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00548352 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00453120 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00413696 _____ (Microsoft Corporation) C:\Windows\System32\html.iec 2014-01-23 02:55 - 2014-01-23 02:55 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2014-01-23 02:55 - 2014-01-23 02:55 - 00296960 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00263376 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00247808 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00235520 _____ (Microsoft Corporation) C:\Windows\System32\url.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00235008 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00167424 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00147968 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00143872 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00131072 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00105984 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00090112 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00084992 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2014-01-23 02:55 - 2014-01-23 02:55 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2014-01-23 02:55 - 2014-01-23 02:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00048128 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00040448 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00030208 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00013824 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2014-01-23 02:54 - 2014-01-23 02:59 - 00009961 _____ () C:\Windows\IE11_main.log 2014-01-23 02:39 - 2013-11-26 17:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys 2014-01-23 02:39 - 2013-11-26 17:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys 2014-01-23 02:39 - 2013-11-26 17:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys 2014-01-23 02:39 - 2013-11-26 17:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys 2014-01-23 02:39 - 2013-11-26 17:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys 2014-01-23 02:39 - 2013-11-26 17:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys 2014-01-23 02:39 - 2013-11-26 17:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys 2014-01-23 02:39 - 2013-11-26 03:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys 2014-01-23 02:39 - 2013-11-26 02:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys 2014-01-15 05:45 - 2014-02-10 09:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-01-15 05:30 - 2014-01-15 05:30 - 00002379 _____ () C:\Users\Public\Desktop\Google Earth.lnk ==================== One Month Modified Files and Folders ======= 2014-02-12 13:43 - 2014-01-29 08:01 - 00000000 ____D () C:\FRST 2014-02-12 03:24 - 2013-11-07 02:59 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\FreePDF_XP 2014-02-12 03:23 - 2014-02-01 04:40 - 00001034 _____ () C:\Windows\Tasks\Google Software Updater.job 2014-02-12 03:23 - 2011-08-04 01:23 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-12 03:23 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-12 03:23 - 2009-07-13 20:51 - 00073145 _____ () C:\Windows\setupact.log 2014-02-12 03:22 - 2011-08-04 10:20 - 01337176 _____ () C:\Windows\WindowsUpdate.log 2014-02-12 03:20 - 2011-05-20 12:25 - 00700134 _____ () C:\Windows\System32\perfh007.dat 2014-02-12 03:20 - 2011-05-20 12:25 - 00149984 _____ () C:\Windows\System32\perfc007.dat 2014-02-12 03:20 - 2009-07-13 21:13 - 01622236 _____ () C:\Windows\System32\PerfStringBackup.INI 2014-02-12 03:19 - 2014-02-03 23:58 - 00000000 __SHD () C:\Users\JORDAN\AppData\Roaming\.# 2014-02-12 03:15 - 2014-02-10 09:37 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-12 03:09 - 2012-05-02 07:05 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\ALDI_SUED_Mah_Jong 2014-02-12 02:41 - 2009-07-13 20:45 - 00016752 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-12 02:41 - 2009-07-13 20:45 - 00016752 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-12 02:36 - 2014-02-01 04:40 - 00004140 _____ () C:\Windows\System32\Tasks\Google Software Updater 2014-02-12 02:32 - 2012-07-02 07:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-12 02:32 - 2011-11-07 08:46 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Skype 2014-02-12 02:32 - 2010-11-20 19:47 - 00543190 _____ () C:\Windows\PFRO.log 2014-02-10 09:42 - 2014-01-15 05:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-02-10 09:42 - 2011-08-09 06:17 - 00001079 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-10 09:38 - 2014-02-10 09:37 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-02-10 09:38 - 2012-03-29 08:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-02-10 09:38 - 2011-05-20 14:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-02-10 09:36 - 2013-10-30 08:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-02-10 09:36 - 2011-08-12 07:21 - 00002018 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk 2014-02-10 09:06 - 2014-01-30 03:10 - 00000000 ____D () C:\Users\JORDAN\Desktop\Trojaner-Board Laptop 2014-02-09 06:09 - 2014-02-09 06:09 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group 2014-02-07 08:01 - 2013-11-04 02:16 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\eM Client for SoftMaker 2014-02-05 04:33 - 2014-02-05 04:33 - 00002039 _____ () C:\Users\JORDAN\Desktop\Entfernen des Avira PC Cleaners.lnk 2014-02-05 04:33 - 2014-02-05 04:33 - 00001983 _____ () C:\Users\JORDAN\Desktop\Avira PC Cleaner.lnk 2014-02-03 09:19 - 2014-02-03 09:19 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-02-02 12:01 - 2013-10-31 01:47 - 00000000 ____D () C:\AdwCleaner 2014-02-01 03:40 - 2014-02-01 03:40 - 00154234 _____ () C:\ComboFix.txt 2014-02-01 03:40 - 2014-01-30 08:31 - 00000000 ____D () C:\Qoobox 2014-02-01 03:40 - 2009-07-13 19:20 - 00000000 __RHD () C:\users\Default 2014-02-01 03:38 - 2014-01-30 08:30 - 00000000 ____D () C:\Windows\erdnt 2014-02-01 03:34 - 2009-07-13 18:34 - 00000215 _____ () C:\Windows\system.ini 2014-02-01 03:30 - 2012-11-05 09:50 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\convert 2014-01-30 08:12 - 2014-01-30 08:11 - 05177551 ____R (Swearware) C:\Users\JORDAN\Desktop\ComboFix.exe 2014-01-30 08:04 - 2014-01-27 02:14 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2011 2014-01-29 07:51 - 2014-01-29 07:50 - 00000474 _____ () C:\Users\JORDAN\Desktop\defogger_disable 140129.log 2014-01-29 07:50 - 2014-01-29 07:50 - 00000000 _____ () C:\Users\JORDAN\defogger_reenable 2014-01-29 07:50 - 2011-08-04 01:30 - 00000000 ____D () C:\users\JORDAN 2014-01-29 07:46 - 2014-01-29 07:46 - 00050477 _____ () C:\Users\JORDAN\Desktop\Defogger.exe 2014-01-29 05:53 - 2012-03-29 09:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\QuickScan 2014-01-29 05:49 - 2014-01-29 05:49 - 00001113 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-01-29 05:49 - 2014-01-29 05:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware 2014-01-27 08:21 - 2011-08-04 06:42 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\SoftGrid Client 2014-01-27 08:08 - 2014-01-27 08:08 - 00002094 _____ () C:\Users\JORDAN\Desktop\Avira Free Antivirus starten.lnk 2014-01-27 02:20 - 2014-01-27 02:20 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2011 2014-01-27 02:16 - 2011-11-24 07:56 - 00000000 ____D () C:\Users\JORDAN\Desktop\Selten verwendete Desktopverknüpfungen 2014-01-27 02:14 - 2014-01-27 02:14 - 00002213 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk 2014-01-27 02:04 - 2014-01-27 02:04 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork 2014-01-27 02:04 - 2014-01-27 02:04 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork 2014-01-27 02:03 - 2014-01-27 02:03 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Avira 2014-01-27 02:01 - 2013-02-27 08:31 - 00000000 ____D () C:\ProgramData\Avira 2014-01-27 01:29 - 2014-01-27 01:29 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-01-25 15:13 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache 2014-01-25 09:44 - 2014-01-25 09:57 - 00001073 _____ () C:\Users\JORDAN\Desktop\Secunia PSI.lnk 2014-01-25 06:19 - 2011-10-10 07:35 - 00003804 _____ () C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm 2014-01-25 05:57 - 2011-05-20 13:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-01-25 05:06 - 2014-01-25 05:06 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Avanquest 2014-01-25 05:06 - 2014-01-25 05:06 - 00000000 ____D () C:\ProgramData\BVRP Software 2014-01-25 05:06 - 2014-01-25 05:06 - 00000000 ____D () C:\ProgramData\Avanquest 2014-01-25 05:06 - 2014-01-25 05:06 - 00000000 ____D () C:\Program Files (x86)\Avanquest update 2014-01-25 05:06 - 2011-05-20 15:22 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-01-25 05:05 - 2014-01-25 05:05 - 00000000 ____D () C:\Program Files (x86)\Avanquest 2014-01-25 04:44 - 2014-01-25 02:55 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\AutoSave 2014-01-25 03:25 - 2009-07-13 21:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-25 03:14 - 2014-01-25 03:14 - 00001787 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-01-25 03:14 - 2014-01-25 03:12 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-01-25 03:14 - 2014-01-25 03:12 - 00000000 ____D () C:\Program Files\iTunes 2014-01-25 03:14 - 2014-01-25 03:12 - 00000000 ____D () C:\Program Files (x86)\iTunes 2014-01-25 03:12 - 2014-01-25 03:12 - 00000000 ____D () C:\Program Files\iPod 2014-01-25 03:11 - 2014-01-25 03:11 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Apple Computer 2014-01-25 03:11 - 2014-01-25 03:11 - 00000000 ____D () C:\Users\Default\AppData\Local\Apple Computer 2014-01-25 03:11 - 2014-01-25 03:11 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Apple Computer 2014-01-25 03:11 - 2014-01-25 03:11 - 00000000 ____D () C:\Users\Default User\AppData\Local\Apple Computer 2014-01-25 02:55 - 2014-01-25 02:55 - 00000000 ____D () C:\Users\Public\Documents\BVRP Software 2014-01-25 02:55 - 2014-01-25 02:55 - 00000000 ____D () C:\ProgramData\Avanquest Software 2014-01-25 02:45 - 2012-11-05 05:25 - 00000000 ____D () C:\ProgramData\Apple 2014-01-23 22:52 - 2014-01-23 22:51 - 00261600 _____ () C:\Windows\msxml4-KB2758694-enu.LOG 2014-01-23 22:24 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-01-23 08:41 - 2013-10-31 02:35 - 00000000 ____D () C:\ProgramData\HitmanPro 2014-01-23 08:28 - 2011-08-04 06:41 - 01589164 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-01-23 08:12 - 2011-05-20 13:29 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0 2014-01-23 08:00 - 2014-01-23 08:00 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Secunia PSI 2014-01-23 08:00 - 2014-01-23 08:00 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-01-23 07:40 - 2014-01-23 04:57 - 00000000 ____D () C:\Program Files (x86)\HitmanPro.Alert 2014-01-23 07:39 - 2014-01-23 07:39 - 00000000 ____D () C:\Windows\de 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\sl 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\nl 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\it 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\hu 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\fr 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\es 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\en 2014-01-23 07:38 - 2014-01-23 07:38 - 00000000 ____D () C:\Windows\da 2014-01-23 07:33 - 2014-01-23 07:33 - 00000000 ____D () C:\Program Files\Windows Live 2014-01-23 07:33 - 2011-05-20 14:04 - 00000000 ____D () C:\Program Files (x86)\Windows Live 2014-01-23 07:32 - 2009-07-13 19:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-01-23 07:30 - 2011-05-20 14:02 - 00010867 _____ () C:\Windows\DirectX.log 2014-01-23 07:29 - 2014-01-23 07:29 - 00000000 ___RD () C:\Users\JORDAN\SkyDrive 2014-01-23 07:29 - 2014-01-23 07:29 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive 2014-01-23 07:29 - 2014-01-23 07:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft SkyDrive 2014-01-23 07:25 - 2014-01-23 07:25 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Windows Live 2014-01-23 07:11 - 2014-01-23 07:11 - 00000000 ____D () C:\ProgramData\Google Updater 2014-01-23 07:11 - 2011-08-04 01:23 - 00000000 ____D () C:\Program Files (x86)\Google 2014-01-23 07:01 - 2014-01-23 04:57 - 00564312 _____ (SurfRight) C:\Windows\SysWOW64\hmpalert.dll 2014-01-23 07:01 - 2014-01-23 04:57 - 00518480 _____ (SurfRight) C:\Windows\System32\hmpalert.dll 2014-01-23 07:01 - 2014-01-23 04:57 - 00017416 _____ () C:\Windows\System32\Drivers\hmpalert.sys 2014-01-23 04:57 - 2014-01-23 04:57 - 00000000 ____D () C:\ProgramData\HitmanPro.Alert 2014-01-23 04:45 - 2011-05-20 14:42 - 00000000 ____D () C:\Program Files (x86)\Java 2014-01-23 04:40 - 2014-01-23 04:41 - 00312744 _____ (Oracle Corporation) C:\Windows\System32\javaws.exe 2014-01-23 04:40 - 2014-01-23 04:41 - 00108968 _____ (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll 2014-01-23 04:40 - 2011-05-20 14:42 - 00189352 _____ (Oracle Corporation) C:\Windows\System32\javaw.exe 2014-01-23 04:40 - 2011-05-20 14:42 - 00189352 _____ (Oracle Corporation) C:\Windows\System32\java.exe 2014-01-23 04:40 - 2011-05-20 14:42 - 00000000 ____D () C:\Program Files\Java 2014-01-23 04:15 - 2009-07-13 20:45 - 00421984 _____ () C:\Windows\System32\FNTCACHE.DAT 2014-01-23 02:59 - 2014-01-23 02:54 - 00009961 _____ () C:\Windows\IE11_main.log 2014-01-23 02:55 - 2014-01-23 02:55 - 01228800 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00942592 _____ (Microsoft Corporation) C:\Windows\System32\jsIntl.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00774144 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00626176 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2014-01-23 02:55 - 2014-01-23 02:55 - 00616104 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat 2014-01-23 02:55 - 2014-01-23 02:55 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00548352 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00453120 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00413696 _____ (Microsoft Corporation) C:\Windows\System32\html.iec 2014-01-23 02:55 - 2014-01-23 02:55 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2014-01-23 02:55 - 2014-01-23 02:55 - 00296960 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00263376 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00247808 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00235520 _____ (Microsoft Corporation) C:\Windows\System32\url.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00235008 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00167424 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00147968 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00143872 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00131072 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00105984 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00090112 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00084992 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx 2014-01-23 02:55 - 2014-01-23 02:55 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2014-01-23 02:55 - 2014-01-23 02:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00048128 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00040448 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00030208 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2014-01-23 02:55 - 2014-01-23 02:55 - 00013824 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe 2014-01-23 02:55 - 2014-01-23 02:55 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2014-01-23 02:54 - 2013-08-19 00:14 - 00000000 ____D () C:\Windows\System32\MRT 2014-01-23 02:23 - 2012-11-05 05:28 - 00000000 ____D () C:\Users\JORDAN\AppData\Roaming\Apple Computer 2014-01-15 08:20 - 2012-11-05 05:26 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Apple 2014-01-15 05:33 - 2011-08-04 06:35 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Google 2014-01-15 05:31 - 2012-11-05 05:28 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Apple Computer 2014-01-15 05:30 - 2014-01-15 05:30 - 00002379 _____ () C:\Users\Public\Desktop\Google Earth.lnk 2014-01-15 03:59 - 2011-08-04 06:58 - 00000000 ____D () C:\Users\JORDAN\AppData\Local\Adobe 2014-01-15 03:35 - 2011-08-04 01:23 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-01-15 03:28 - 2009-07-13 21:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD Some content of TEMP: ==================== C:\Users\JORDAN\AppData\Local\Temp\avgnt.exe C:\Users\JORDAN\AppData\Local\Temp\Quarantine.exe ==================== Known DLLs (Whitelisted) ================ ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= Restore point made on: 2014-02-03 23:26:32 Restore point made on: 2014-02-09 06:14:35 Restore point made on: 2014-02-09 06:23:36 ==================== BCD ================================ Windows Boot Manager -------------------- identifier {bootmgr} device partition=Y: description Windows Boot Manager locale de-DE inherit {globalsettings} default {default} resumeobject {83efa482-900c-11e0-a999-b3decc97d53c} displayorder {default} toolsdisplayorder {memdiag} timeout 30 Windows Boot Loader ------------------- identifier {default} device partition=C: path \Windows\system32\winload.exe description Windows 7 locale de-DE inherit {bootloadersettings} recoverysequence {current} recoveryenabled Yes osdevice partition=C: systemroot \Windows resumeobject {83efa482-900c-11e0-a999-b3decc97d53c} nx OptIn Windows Boot Loader ------------------- identifier {current} device ramdisk=[C:]\Recovery\83efa484-900c-11e0-a999-b3decc97d53c\Winre.wim,{83efa485-900c-11e0-a999-b3decc97d53c} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\83efa484-900c-11e0-a999-b3decc97d53c\Winre.wim,{83efa485-900c-11e0-a999-b3decc97d53c} systemroot \windows nx OptIn winpe Yes Resume from Hibernate --------------------- identifier {83efa482-900c-11e0-a999-b3decc97d53c} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale de-DE inherit {resumeloadersettings} filedevice partition=C: filepath \hiberfil.sys debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=Y: path \boot\memtest.exe description Windows Memory Diagnostic locale de-DE inherit {globalsettings} badmemoryaccess Yes EMS Settings ------------ identifier {emssettings} bootems Yes Debugger Settings ----------------- identifier {dbgsettings} debugtype Serial debugport 1 baudrate 115200 RAM Defects ----------- identifier {badmemory} Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hypervisor Settings ------------------- identifier {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} Device options -------------- identifier {83efa485-900c-11e0-a999-b3decc97d53c} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\83efa484-900c-11e0-a999-b3decc97d53c\boot.sdi ==================== Memory info =========================== Percentage of memory in use: 15% Total physical RAM: 4003 MB Available physical RAM: 3376.86 MB Total Pagefile: 4001.2 MB Available Pagefile: 3374.87 MB Total Virtual: 8192 MB Available Virtual: 8191.88 MB ==================== Drives ================================ Drive c: (Boot) (Fixed) (Total:657.54 GB) (Free:564.37 GB) NTFS Drive d: (Recover) (Fixed) (Total:37.99 GB) (Free:14.67 GB) NTFS Drive j: (CORSAIR) (Removable) (Total:3.76 GB) (Free:3.76 GB) FAT32 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS Drive y: () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 699 GB) (Disk ID: 2BD2C32A) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=658 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=40 GB) - (Type=OF Extended) Partition 4: (Not Active) - (Size=1 GB) - (Type=12) ======================================================== Disk: 1 (Size: 4 GB) (Disk ID: 04DD5721) Partition 1: (Active) - (Size=4 GB) - (Type=0B) LastRegBack: 2014-02-12 02:54 ==================== End Of Log ============================ --- --- --- |
|
13.02.2014, 05:55
| #29 |
| /// the machine /// TB-Ausbilder | Rechner scheint infiziert, Probleme mit Programmen Nüscht, der Rechner ist tadellos sauber.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
13.02.2014, 13:28
| #30 |
| | Rechner scheint infiziert, Probleme mit Programmen Hi Schrauber, toll, aber am Verhalten meines Rechners hat sich nichts verändert. Er ist langsam, es arbeitet ständig etwas, wahrscheinlich der Avira-Updater, ohne dass er updated!? Fehlermeldung siehe 9.2.14 Dankbar wäre ich für Tipps/Hilfe zu allen weiterhin bestehenden Problemen: Wie werde ich Free Avira los, um einen Virenscanner neu zu installieren? Lässt sich bekanntlich weder updaten noch deaktivieren oder deinstallieren. Seit der Revo Uninstaller-Anwendung ist Avira aus der Übersicht deinstallierbarer Programme in der Systemsteuerung und bei Revo Uninstaller verschwunden, aber noch auf dem Rechner! Warum lässt sich mein Rechner immer häufiger nicht mehr runterfahren und muss abgewürgt werden (per Stromschalter)? Wie lässt sich mein E-Mail-Programm (eM Client) wieder starten und updaten? Fehlermeldungen siehe 7.2.14 Warum meldet Security Check vom 4.2.14 „Total Fregmentation Drive C“ und das Defragmentierungstool “ 0 % Fragmentierung C, keine Defragmentierung möglich/nötig“? Warum werden Programme wie Avira PC-Cleaner, AutoSave Essentials, Tune Up Utilities und Malwarebyte Anti-Malware selbstständig deinstalliert? Ich grüße in der Hoffnung auf Hilfestellung |
|
| Themen zu Rechner scheint infiziert, Probleme mit Programmen |
| anwendungen, arbeiten, arbeitet, beste, besten, blauer, cleaner, computer, curser, dienst, ebenfalls, eingefangen, fund, icons, infiziert, kein fund, langsamer, meldet, meldungen, nicht mehr, probleme, probleme mit anwendungen, programme, rechner, rechner scheint infiziert, setup, updates, verhalten |
Linear-Darstellung
