Emailadresse versendet Spammails

Jonissar · 30.01.2014, 04:24

Hallo,

ich habe seit einigen Tagen etwas merkwürdige Aktivitäten bei einer meiner Emailadressen (ist bei Arcor.de) festgestellt. Habe daher vor einigen Tagen schonmal das Passwort geändert, aber grad eben feststellen müssen, dass von meiner Emailadresse Spammails verschickt werden. Sehe dazu zwar nichts im Gesendet Ordner, habe aber mehrere Mailer-Demon-Rückmeldungen das Empfängeradressen unbekannt sind.

Daraufhin hab ich das Passwort nochmal geändert und meinen Virenscanner (avast) durchlaufen lassen, der aber nichts gefunden hat.

Bin eigentlich der Meinung, dass mein Rechner sauber ist, aber kann mir irgendwie nicht erklären, warum nachdem ich mein PW geändert hab, jemand anderes weiterhin Zugriff auf meinen Email Acc haben sollte.

Rufe meine Mails normalerweise mit Thunderbird ab, das sollte ja kein Problem sein, oder?

Hab grade nach eure Anleitung mal die Scans durchlaufen lassen:

defogger:

Zitat:

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 03:40 on 30/01/2014 (PC2)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...

-=E.O.F=-

frst64:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by PC2 (administrator) on PC on 30-01-2014 03:41:21
Running from C:\Users\PC2\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\ASUS\Remote Control\RCService64.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\Remote Control\P7131RemoteAppl.exe
(Check Point Software Technologies, Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Soeperman Enterprises Ltd.) E:\downloads\software\hijackthis_199\HijackThis.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Classic Start Menu] - C:\Program Files\Classic Shell\ClassicStartMenu.exe [160256 2012-12-29] (IvoSoft)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [P7131Appl] - C:\Program Files (x86)\ASUS\P7131\Remote Control\P7131RemoteAppl.exe [65536 2008-07-31] (ASUSTeK)
HKLM-x32\...\Run: [ZoneAlarm] - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-08-12] (Check Point Software Technologies LTD)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-27] (AVAST Software)
HKLM-x32\...\RunOnce: [20131224] - C:\Program Files\AVAST Software\Avast\setup\emupdate\50900ea5-0bf1-4a62-97e9-c9c8873d2690.exe /check [181136 2014-01-29] (AVAST Software)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
MountPoints2: {5f154b40-9209-11e2-b26a-902b34a37ffa} - 1
HKU\nachname\...\Run: [ExpressCacheUI] - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCacheApp.exe [3991424 2013-01-08] ()
HKU\nachname\...\Run: [Akamai NetSession Interface] - "C:\Users\PC2\AppData\Local\Akamai\netsession_win.exe"

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.zonealarm.com/?src=hp&tbid=goughDev3&Lan=de&gu=7a878e1cd26849e38232ca77109adc89&tu=10G9z00AK1B0Ca0&sku=&tstsId=&ver=&
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Zonealarm Helper Object - {2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.22.0\bh\zonealarm.dll (Check Point Software Technologies LTD)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKLM-x32 - ZoneAlarm Security Toolbar - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.22.0\zonealarmTlbr.dll (Check Point Software Technologies LTD)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default
FF user.js: detected! => C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\user.js
FF Homepage: hxxp://www.spiegel.de/
FF NetworkProxy: "http", "41.202.206.53"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @checkpoint.com/FFApi - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @protectdisc.com/NPPDLicenseHelper - C:\Program Files (x86)\ProtectDisc\License Helper\NPPDLicenseHelper.dll ()
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\PC2\AppData\Roaming\Mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFp530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPPDLicenseHelper.dll ()
FF Plugin ProgramFiles/Appdata: C:\Users\PC2\AppData\Roaming\mozilla\plugins\NpFp530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Users\PC2\AppData\Roaming\mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF SearchPlugin: C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\searchplugins\zonealarm.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Flagfox - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2014-01-17]
FF Extension: Live HTTP Headers - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a} [2014-01-14]
FF Extension: Block LinkBucks - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\dgs229@nyu.edu.xpi [2013-08-04]
FF Extension: Ghostery - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\firefox@ghostery.com.xpi [2013-08-16]
FF Extension: sabnzbdfox - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\sabnzbd-fox@techno-barje.fr.xpi [2013-10-26]
FF Extension: NoScript - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-03-18]
FF Extension: Adblock Plus - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-03-18]
FF Extension: DownThemAll! - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-03-18]
FF Extension: User Agent Switcher - C:\Users\PC2\AppData\Roaming\Mozilla\Firefox\Profiles\lbzmnn0f.default\Extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2013-04-23]
FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-08]

==================== Services (Whitelisted) =================

S4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-27] (AVAST Software)
R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107944 2013-01-08] (Condusiv Technologies)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 RCSERVICE; C:\Program Files (x86)\ASUS\Remote Control\RCService64.exe [61440 2008-07-30] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2445304 2013-08-12] (Check Point Software Technologies LTD)
R2 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [54160 2013-06-18] (Check Point Software Technologies, Ltd.)

==================== Drivers (Whitelisted) ====================

R3 3xHybr64; C:\Windows\System32\DRIVERS\3xHybr64.sys [3110656 2007-01-25] (ASUSTeK Computer Inc.)
S1 acedrv06; C:\Windows\system32\drivers\acedrv06.sys [147456 2013-07-09] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-01-08] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-08] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-27] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-27] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-08] ()
S3 DSDrv4; C:\Program Files (x86)\DScaler\DSDrv4.sys [8801 2005-12-18] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2013-03-22] (DT Soft Ltd)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [26024 2013-01-08] (Condusiv Technologies)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112552 2013-01-08] (Condusiv Technologies)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [458584 2013-08-03] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [613720 2013-08-03] (Kaspersky Lab)
R2 mi2c; C:\Windows\system32\drivers\mi2c.sys [20784 2014-01-13] (Nicomsoft Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 Ph3xIB64; C:\Windows\System32\DRIVERS\Ph3xIB64.sys [1627520 2009-06-10] (NXP Semiconductors)
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [451096 2013-06-13] (Check Point Software Technologies LTD)
S3 ALSysIO; \??\C:\Users\PC2\AppData\Local\Temp\ALSysIO64.sys [x]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [x]
S3 gdrv; \??\C:\Windows\gdrv.sys [x]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [89944 2013-08-03] (Kaspersky Lab)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-30 03:41 - 2014-01-30 03:41 - 00016538 _____ C:\Users\PC2\Desktop\FRST.txt
2014-01-30 03:40 - 2014-01-30 03:40 - 00000468 _____ C:\Users\PC2\Desktop\defogger_disable.log
2014-01-30 03:40 - 2014-01-30 03:40 - 00000000 _____ C:\Users\PC2\defogger_reenable
2014-01-30 03:39 - 2014-01-30 03:39 - 00050477 _____ C:\Users\PC2\Desktop\Defogger.exe
2014-01-30 03:38 - 2014-01-30 03:38 - 00000527 _____ C:\Users\PC2\Desktop\Neues Textdokument.txt
2014-01-30 03:34 - 2014-01-30 03:41 - 00000000 ____D C:\FRST
2014-01-30 03:33 - 2014-01-30 03:33 - 02079744 _____ (Farbar) C:\Users\PC2\Desktop\FRST64.exe
2014-01-30 03:08 - 2014-01-30 03:08 - 00000000 ___SH C:\DkHyperbootSync
2014-01-28 00:07 - 2014-01-28 20:41 - 00000000 ____D C:\Program Files (x86)\JDownloader
2014-01-28 00:07 - 2014-01-28 00:07 - 00000000 ____D C:\JDownloader
2014-01-25 16:06 - 2014-01-25 16:06 - 00192693 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-25 16_06_43.352909.dmp
2014-01-24 15:43 - 2014-01-24 14:22 - 47601992 _____ C:\JDownloader-0002.zip
2014-01-24 13:43 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-24 13:42 - 2014-01-24 13:42 - 00005298 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-24 13:42 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-24 13:42 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-24 13:42 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-24 13:34 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-01-23 18:39 - 2014-01-23 18:39 - 00192693 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-23 18_39_11.788463.dmp
2014-01-21 19:14 - 2014-01-21 19:14 - 00191437 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-21 19_14_10.382129.dmp
2014-01-15 09:26 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 09:26 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 09:26 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 09:26 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 09:26 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 09:26 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 09:26 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 09:26 - 2013-11-26 12:34 - 01897408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-01-15 09:26 - 2013-11-26 12:34 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 09:26 - 2013-11-26 12:34 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-01-15 09:26 - 2013-11-26 11:22 - 03160064 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-14 20:50 - 2014-01-14 20:50 - 00187858 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-14 20_50_04.581264.dmp
2014-01-14 03:11 - 2014-01-14 03:11 - 00000000 ____D C:\Users\PC2\AppData\Local\CrashRpt
2014-01-14 03:11 - 2014-01-14 03:11 - 00000000 ____D C:\ProgramData\RapidSolution
2014-01-14 03:11 - 2014-01-14 03:11 - 00000000 ____D C:\Program Files (x86)\Audials
2014-01-14 03:10 - 2014-01-14 03:10 - 00000000 ____D C:\Users\PC2\AppData\Local\RapidSolution
2014-01-14 02:51 - 2014-01-14 02:51 - 00000000 ____D C:\Users\PC2\Documents\Stream Catcher
2014-01-14 02:47 - 2014-01-14 02:47 - 00335288 _____ (Protect Software GmbH) C:\Windows\system32\Drivers\acedrv11.sys
2014-01-14 02:47 - 2014-01-14 02:47 - 00000000 ____D C:\Program Files (x86)\ProtectDisc
2014-01-14 02:47 - 2014-01-14 02:47 - 00000000 ____D C:\Program Files (x86)\DATA BECKER
2014-01-13 22:20 - 2014-01-13 22:20 - 00000000 ____D C:\Users\PC2\AppData\Local\NVIDIA Corporation
2014-01-13 22:19 - 2013-12-10 03:15 - 00982232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-01-13 22:19 - 2013-12-10 03:14 - 01100248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-01-13 22:18 - 2014-01-13 22:20 - 00000000 ____D C:\Users\PC2\AppData\Local\NVIDIA
2014-01-13 22:18 - 2014-01-13 22:18 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2014-01-13 22:14 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 18310112 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-13 22:14 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 02698272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-01-13 22:14 - 2013-12-19 21:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-01-13 22:14 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-01-13 22:14 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-01-13 22:14 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-01-13 22:14 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-01-13 22:14 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-01-13 22:12 - 2014-01-13 22:12 - 00000000 ____D C:\NVIDIA
2014-01-13 20:11 - 2014-01-13 20:11 - 00187669 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-13 20_11_48.248003.dmp
2014-01-13 18:05 - 2014-01-13 18:06 - 00000000 ____D C:\Program Files (x86)\SMPlayer
2014-01-13 17:08 - 2014-01-13 17:08 - 00020784 _____ (Nicomsoft Ltd.) C:\Windows\system32\Drivers\mi2c.sys
2014-01-13 17:07 - 2014-01-13 17:09 - 00000000 ____D C:\Program Files (x86)\i-Menu
2014-01-09 19:57 - 2014-01-09 19:57 - 00201246 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-09 19_57_31.714527.dmp
2014-01-09 19:57 - 2014-01-09 19:57 - 00186685 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-09 19_57_30.073433.dmp
2014-01-08 16:32 - 2014-01-08 16:38 - 00000000 ____D C:\Users\PC2\Documents\BattleWorldsKronos
2014-01-08 16:31 - 2014-01-08 16:35 - 00000000 ____D C:\Users\PC2\AppData\Local\BattleWorldsKronos
2014-01-08 16:26 - 2014-01-20 12:14 - 00000000 ____D C:\Users\PC2\AppData\Local\cache
2014-01-08 16:19 - 2014-01-08 16:19 - 00000561 _____ C:\Users\PC2\Desktop\Battle Worlds Kronos.lnk
2014-01-08 09:29 - 2014-01-27 05:50 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-08 09:29 - 2014-01-08 09:29 - 00000000 ____D C:\Users\PC2\AppData\Roaming\AVAST Software
2014-01-08 09:28 - 2014-01-27 05:50 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-08 09:28 - 2014-01-27 05:50 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-08 09:28 - 2014-01-27 05:50 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-08 09:28 - 2014-01-27 05:50 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-08 09:28 - 2014-01-27 05:50 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-08 09:28 - 2014-01-27 05:50 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-08 09:28 - 2014-01-08 09:28 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-08 09:28 - 2014-01-08 09:28 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-01-08 09:28 - 2014-01-08 09:28 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2014-01-08 09:28 - 2014-01-08 09:28 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-08 09:00 - 2014-01-08 08:59 - 00000675 _____ C:\Users\PC2\Desktop\Path Of Exile.lnk
2014-01-08 08:59 - 2014-01-30 02:59 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-08 08:59 - 2014-01-08 08:59 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

==================== One Month Modified Files and Folders =======

2014-01-30 03:41 - 2014-01-30 03:41 - 00016538 _____ C:\Users\PC2\Desktop\FRST.txt
2014-01-30 03:41 - 2014-01-30 03:34 - 00000000 ____D C:\FRST
2014-01-30 03:41 - 2013-03-18 01:48 - 00000000 ___RD C:\Users\PC2\Desktop\Programme
2014-01-30 03:40 - 2014-01-30 03:40 - 00000468 _____ C:\Users\PC2\Desktop\defogger_disable.log
2014-01-30 03:40 - 2014-01-30 03:40 - 00000000 _____ C:\Users\PC2\defogger_reenable
2014-01-30 03:40 - 2013-03-18 01:18 - 00000000 ____D C:\Users\PC2
2014-01-30 03:39 - 2014-01-30 03:39 - 00050477 _____ C:\Users\PC2\Desktop\Defogger.exe
2014-01-30 03:38 - 2014-01-30 03:38 - 00000527 _____ C:\Users\PC2\Desktop\Neues Textdokument.txt
2014-01-30 03:33 - 2014-01-30 03:33 - 02079744 _____ (Farbar) C:\Users\PC2\Desktop\FRST64.exe
2014-01-30 03:08 - 2014-01-30 03:08 - 00000000 ___SH C:\DkHyperbootSync
2014-01-30 03:00 - 2013-02-19 23:25 - 02083637 _____ C:\Windows\WindowsUpdate.log
2014-01-30 02:59 - 2014-01-08 08:59 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-30 00:07 - 2013-03-18 02:15 - 00000000 ____D C:\Users\PC2\AppData\Roaming\TS3Client
2014-01-29 18:10 - 2013-03-18 19:05 - 00000000 ____D C:\Users\PC2\.smplayer
2014-01-29 13:02 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 13:02 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-29 12:55 - 2013-09-23 00:47 - 00013852 _____ C:\Windows\setupact.log
2014-01-29 12:55 - 2013-02-20 13:40 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-29 12:55 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-28 21:56 - 2013-06-19 16:19 - 00000000 ____D C:\Users\PC2\AppData\Roaming\.purple
2014-01-28 20:45 - 2013-03-18 19:04 - 00000000 ____D C:\Users\PC2\AppData\Roaming\vlc
2014-01-28 20:41 - 2014-01-28 00:07 - 00000000 ____D C:\Program Files (x86)\JDownloader
2014-01-28 08:11 - 2013-03-22 00:57 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2014-01-28 00:07 - 2014-01-28 00:07 - 00000000 ____D C:\JDownloader
2014-01-27 13:50 - 2010-11-21 04:47 - 00374738 _____ C:\Windows\PFRO.log
2014-01-27 05:53 - 2011-04-12 08:43 - 00710994 _____ C:\Windows\system32\perfh007.dat
2014-01-27 05:53 - 2011-04-12 08:43 - 00152266 _____ C:\Windows\system32\perfc007.dat
2014-01-27 05:53 - 2009-07-14 06:13 - 01639856 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-27 05:50 - 2014-01-08 09:29 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-27 05:50 - 2014-01-08 09:28 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-27 05:50 - 2014-01-08 09:28 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-27 05:50 - 2014-01-08 09:28 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-27 05:50 - 2014-01-08 09:28 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-27 05:50 - 2014-01-08 09:28 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-27 05:50 - 2014-01-08 09:28 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-25 16:06 - 2014-01-25 16:06 - 00192693 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-25 16_06_43.352909.dmp
2014-01-24 14:22 - 2014-01-24 15:43 - 47601992 _____ C:\JDownloader-0002.zip
2014-01-24 13:43 - 2013-10-29 14:44 - 00000000 ____D C:\ProgramData\Oracle
2014-01-24 13:42 - 2014-01-24 13:42 - 00005298 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-24 13:42 - 2013-10-29 14:44 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-24 13:37 - 2013-04-07 11:01 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-24 13:34 - 2013-03-19 02:17 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-23 18:39 - 2014-01-23 18:39 - 00192693 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-23 18_39_11.788463.dmp
2014-01-21 19:14 - 2014-01-21 19:14 - 00191437 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-21 19_14_10.382129.dmp
2014-01-21 14:51 - 2013-04-19 23:27 - 00000000 ____D C:\Users\PC2\AppData\Roaming\Audacity
2014-01-20 12:14 - 2014-01-08 16:26 - 00000000 ____D C:\Users\PC2\AppData\Local\cache
2014-01-20 03:47 - 2013-04-17 00:32 - 00000000 ____D C:\Users\PC2\AppData\Roaming\dvdcss
2014-01-19 19:26 - 2013-10-14 19:24 - 00000000 ____D C:\Users\PC2\AppData\Local\Battle.net
2014-01-19 08:33 - 2010-11-21 04:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-17 09:56 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-16 07:38 - 2009-07-14 05:45 - 00294184 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-16 01:31 - 2013-08-15 02:03 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 01:30 - 2013-02-22 19:53 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 20:50 - 2014-01-14 20:50 - 00187858 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-14 20_50_04.581264.dmp
2014-01-14 03:11 - 2014-01-14 03:11 - 00000000 ____D C:\Users\PC2\AppData\Local\CrashRpt
2014-01-14 03:11 - 2014-01-14 03:11 - 00000000 ____D C:\ProgramData\RapidSolution
2014-01-14 03:11 - 2014-01-14 03:11 - 00000000 ____D C:\Program Files (x86)\Audials
2014-01-14 03:10 - 2014-01-14 03:10 - 00000000 ____D C:\Users\PC2\AppData\Local\RapidSolution
2014-01-14 03:08 - 2013-09-30 12:52 - 00000000 ____D C:\Users\PC2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-01-14 02:51 - 2014-01-14 02:51 - 00000000 ____D C:\Users\PC2\Documents\Stream Catcher
2014-01-14 02:47 - 2014-01-14 02:47 - 00335288 _____ (Protect Software GmbH) C:\Windows\system32\Drivers\acedrv11.sys
2014-01-14 02:47 - 2014-01-14 02:47 - 00000000 ____D C:\Program Files (x86)\ProtectDisc
2014-01-14 02:47 - 2014-01-14 02:47 - 00000000 ____D C:\Program Files (x86)\DATA BECKER
2014-01-14 02:47 - 2013-12-13 00:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2014-01-14 02:47 - 2013-07-19 19:33 - 00000000 ____D C:\Program Files (x86)\SeaMonkey2
2014-01-14 02:47 - 2013-06-15 00:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-13 22:20 - 2014-01-13 22:20 - 00000000 ____D C:\Users\PC2\AppData\Local\NVIDIA Corporation
2014-01-13 22:20 - 2014-01-13 22:18 - 00000000 ____D C:\Users\PC2\AppData\Local\NVIDIA
2014-01-13 22:20 - 2013-02-20 13:39 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-13 22:19 - 2013-02-20 13:39 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-13 22:19 - 2013-02-20 13:38 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-13 22:18 - 2014-01-13 22:18 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2014-01-13 22:12 - 2014-01-13 22:12 - 00000000 ____D C:\NVIDIA
2014-01-13 20:11 - 2014-01-13 20:11 - 00187669 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-13 20_11_48.248003.dmp
2014-01-13 18:06 - 2014-01-13 18:05 - 00000000 ____D C:\Program Files (x86)\SMPlayer
2014-01-13 18:05 - 2013-03-18 01:48 - 00001007 _____ C:\Users\PC2\Desktop\Smplayer.lnk
2014-01-13 17:09 - 2014-01-13 17:07 - 00000000 ____D C:\Program Files (x86)\i-Menu
2014-01-13 17:08 - 2014-01-13 17:08 - 00020784 _____ (Nicomsoft Ltd.) C:\Windows\system32\Drivers\mi2c.sys
2014-01-10 17:19 - 2013-07-25 16:04 - 00007675 _____ C:\Users\PC2\AppData\Local\Resmon.ResmonCfg
2014-01-09 19:57 - 2014-01-09 19:57 - 00201246 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-09 19_57_31.714527.dmp
2014-01-09 19:57 - 2014-01-09 19:57 - 00186685 _____ C:\Users\PC2\Documents\ts3_clientui-win32-1378715177-2014-01-09 19_57_30.073433.dmp
2014-01-08 21:01 - 2013-10-28 11:01 - 00001198 _____ C:\Users\PC2\Desktop\Atlantica Online.lnk
2014-01-08 16:38 - 2014-01-08 16:32 - 00000000 ____D C:\Users\PC2\Documents\BattleWorldsKronos
2014-01-08 16:35 - 2014-01-08 16:31 - 00000000 ____D C:\Users\PC2\AppData\Local\BattleWorldsKronos
2014-01-08 16:19 - 2014-01-08 16:19 - 00000561 _____ C:\Users\PC2\Desktop\Battle Worlds Kronos.lnk
2014-01-08 15:30 - 2013-04-10 09:07 - 00031369 ____H C:\Windows\SysWOW64\BTImages.dat
2014-01-08 09:29 - 2014-01-08 09:29 - 00000000 ____D C:\Users\PC2\AppData\Roaming\AVAST Software
2014-01-08 09:28 - 2014-01-08 09:28 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-08 09:28 - 2014-01-08 09:28 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-01-08 09:28 - 2014-01-08 09:28 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2014-01-08 09:28 - 2014-01-08 09:28 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-08 09:27 - 2013-02-22 19:25 - 00000000 ____D C:\ProgramData\AVAST Software
2014-01-08 08:59 - 2014-01-08 09:00 - 00000675 _____ C:\Users\PC2\Desktop\Path Of Exile.lnk
2014-01-08 08:59 - 2014-01-08 08:59 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-08 08:59 - 2013-09-24 11:51 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-08 08:59 - 2013-09-24 11:51 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-08 08:55 - 2013-04-03 13:20 - 00000000 ____D C:\Users\PC2\AppData\Roaming\GHISLER
2014-01-08 08:55 - 2013-03-18 01:51 - 00000000 ____D C:\Users\PC2\AppData\Roaming\Winamp
2014-01-08 08:55 - 2013-02-20 15:01 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2014-01-08 08:55 - 2013-02-20 15:01 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-08 08:55 - 2013-02-19 19:27 - 00000000 ____D C:\Users\nachname
2014-01-08 08:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2014-01-08 08:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2014-01-05 14:51 - 2013-05-05 20:44 - 00000000 ____D C:\Users\PC2\AppData\Roaming\Offline Explorer
2014-01-05 14:49 - 2013-06-19 12:39 - 00000000 ____D C:\download
2014-01-05 12:48 - 2013-02-22 19:26 - 00000000 _____ C:\Windows\SysWOW64\config.nt

Some content of TEMP:
====================
C:\Users\PC2\AppData\Local\Temp\ICReinstall_JDownloaderSetup.exe
C:\Users\PC2\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\PC2\AppData\Local\Temp\u6tqjyxe.dll
C:\Users\PC2\AppData\Local\Temp\Uninstall.exe
C:\Users\nachname\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2012-07-16 03:05] - [2012-07-16 03:05] - 0391680 ____A (Microsoft Corporation) 13CD6BA1F798A61AEE985E78D3644A1E

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2012-07-16 03:01] - [2012-07-16 03:01] - 2872320 ____A (Microsoft Corporation) A27FB0CA2971BEC02595902A9FD35D6D

C:\Windows\SysWOW64\explorer.exe
[2012-07-16 03:01] - [2012-07-16 03:01] - 2616320 ____A (Microsoft Corporation) 82B49E32080BF5C469BF877C473B15EB

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2012-07-16 02:53] - [2012-07-16 02:53] - 1008128 ____A (Microsoft Corporation) 7FB4D54B502C6CF2E35B8188FA4CC08C

C:\Windows\SysWOW64\User32.dll
[2012-07-16 02:53] - [2012-07-16 02:53] - 0833024 ____A (Microsoft Corporation) 9B836EE76E3A99052EF6DEA52B41D1BE

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2012-07-16 03:00] - [2012-07-16 03:00] - 0512512 ____A (Microsoft Corporation) 29AC62409BF4939EE14D70EC07CA12BB

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2012-07-16 03:13] - [2012-07-16 03:13] - 0296304 ____A (Microsoft Corporation) F77D373432412073DD5B7BE10CD04306



LastRegBack: 2014-01-29 18:36

==================== End Of Log ============================

--- --- ---

bei GMER kam die Meldung das nichts gefunden wurde, somit ist das log leer.

Hoffe ihr könnt mir helfen, danke schonmal.

mfg
Jonissar

/edit
mir ist grad noch eingefallen, dass ich vor ein paar Tagen mal mit Spybot nen Scan gemacht hab und der damals eine Montera Toolbar gefunden hat.

schrauber · 30.01.2014, 05:47

hi,

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Jonissar · 30.01.2014, 13:34

hallo schrauber,

danke für deine Hilfe.

Beim Scan mit mbar wurde keine Malware gefunden. Daher kein Log.

Der tdsskiller (sollte ich den eigentlich updaten, in der hilfe steht nix dazu? (habs gemacht) findet 3 Threats:

Zitat:

13:22:25.0037 0x17c0 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
13:22:37.0174 0x17c0 ============================================================
13:22:37.0174 0x17c0 Current date / time: 2014/01/30 13:22:37.0174
13:22:37.0174 0x17c0 SystemInfo:
13:22:37.0174 0x17c0
13:22:37.0174 0x17c0 OS Version: 6.1.7601 ServicePack: 1.0
13:22:37.0174 0x17c0 Product type: Workstation
13:22:37.0175 0x17c0 ComputerName: PC
13:22:37.0175 0x17c0 UserName: PC2
13:22:37.0175 0x17c0 Windows directory: C:\Windows
13:22:37.0175 0x17c0 System windows directory: C:\Windows
13:22:37.0175 0x17c0 Running under WOW64
13:22:37.0175 0x17c0 Processor architecture: Intel x64
13:22:37.0175 0x17c0 Number of processors: 4
13:22:37.0175 0x17c0 Page size: 0x1000
13:22:37.0175 0x17c0 Boot type: Normal boot
13:22:37.0176 0x17c0 ============================================================
13:22:38.0848 0x17c0 KLMD registered as C:\Windows\system32\drivers\99986836.sys
13:22:39.0042 0x17c0 System UUID: {0F66ABC9-F7DC-6202-EE2F-AA562702E361}
13:22:39.0539 0x17c0 Drive \Device\Harddisk2\DR2 - Size: 0x7745D6000 (29.82 Gb), SectorSize: 0x200, Cylinders: 0xF34, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:22:39.0540 0x17c0 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
13:22:39.0554 0x17c0 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:22:39.0555 0x17c0 Drive \Device\Harddisk3\DR3 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:22:39.0561 0x17c0 ============================================================
13:22:39.0561 0x17c0 \Device\Harddisk2\DR2:
13:22:39.0561 0x17c0 MBR partitions:
13:22:39.0561 0x17c0 \Device\Harddisk0\DR0:
13:22:39.0561 0x17c0 MBR partitions:
13:22:39.0561 0x17c0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:22:39.0561 0x17c0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1866D800
13:22:39.0561 0x17c0 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x186A0000, BlocksNum 0x21CE5800
13:22:39.0561 0x17c0 \Device\Harddisk1\DR1:
13:22:39.0561 0x17c0 MBR partitions:
13:22:39.0561 0x17c0 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x520702B
13:22:39.0576 0x17c0 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x52070A9, BlocksNum 0x35179CD7
13:22:39.0576 0x17c0 \Device\Harddisk3\DR3:
13:22:39.0576 0x17c0 MBR partitions:
13:22:39.0576 0x17c0 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
13:22:39.0576 0x17c0 ============================================================
13:22:39.0595 0x17c0 C: <-> \Device\Harddisk0\DR0\Partition2
13:22:39.0596 0x17c0 D: <-> \Device\Harddisk0\DR0\Partition3
13:22:39.0598 0x17c0 E: <-> \Device\Harddisk3\DR3\Partition1
13:22:40.0416 0x17c0 F: <-> \Device\Harddisk1\DR1\Partition2
13:22:41.0313 0x17c0 G: <-> \Device\Harddisk1\DR1\Partition1
13:22:41.0313 0x17c0 ============================================================
13:22:41.0316 0x17c0 Initialize success
13:22:41.0316 0x17c0 ============================================================
13:23:22.0411 0x0340 ============================================================
13:23:22.0411 0x0340 Scan started
13:23:22.0411 0x0340 Mode: Manual; SigCheck; TDLFS;
13:23:22.0411 0x0340 ============================================================
13:23:22.0411 0x0340 KSN ping started
13:23:36.0435 0x0340 KSN ping finished: true
13:23:38.0947 0x0340 ================ Scan system memory ========================
13:23:38.0947 0x0340 System memory - ok
13:23:38.0947 0x0340 ================ Scan services =============================
13:23:39.0025 0x0340 [ 0B94DF0DB9DCA3EDB2B57747D5433E7F, B8C4501476396B434D5EA35451556CB97ACF4C8CF666B9C753E2FEFA77DD7213 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
13:23:39.0134 0x0340 1394ohci - ok
13:23:39.0227 0x0340 [ 024E038BD13AAA8A919F827B8EFAB5D6, E5B2565370B3C094507DF57888363100519D029DEEA4FC1E4982409F53FEE819 ] 3xHybr64 C:\Windows\system32\DRIVERS\3xHybr64.sys
13:23:39.0337 0x0340 3xHybr64 - ok
13:23:39.0399 0x0340 [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
13:23:39.0430 0x0340 ACDaemon - ok
13:23:39.0461 0x0340 [ C8030D922511A926D0AA06B78C4B87A9, 6D093CE1F43249839D4A2C3D832A57A8358203F6F6BA9349AB1E7806701A9E1D ] acedrv06 C:\Windows\system32\drivers\acedrv06.sys
13:23:39.0477 0x0340 acedrv06 - detected UnsignedFile.Multi.Generic ( 1 )
13:23:39.0555 0x0340 acedrv06 ( UnsignedFile.Multi.Generic ) - warning
13:23:42.0082 0x0340 [ 84DA132E969484F581C550DE69BD1727, 1BBEF846DC898574AAED50FA85870AA301698AB9B0A14558FCCDD414EEE73B8F ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
13:23:42.0113 0x0340 acedrv11 - ok
13:23:42.0145 0x0340 [ F84676C7D6684E86D3F05B2C5E9019B1, 6F8F4ACD47521878C1877F4D1DFFC8A11AE560E6933B7C55EAC833CCFEE1BDE5 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:23:42.0160 0x0340 ACPI - ok
13:23:42.0176 0x0340 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:23:42.0191 0x0340 AcpiPmi - ok
13:23:42.0301 0x0340 [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:23:42.0347 0x0340 AdobeFlashPlayerUpdateSvc - ok
13:23:42.0363 0x0340 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
13:23:42.0394 0x0340 adp94xx - ok
13:23:42.0410 0x0340 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
13:23:42.0425 0x0340 adpahci - ok
13:23:42.0441 0x0340 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
13:23:42.0457 0x0340 adpu320 - ok
13:23:42.0488 0x0340 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:23:42.0535 0x0340 AeLookupSvc - ok
13:23:42.0566 0x0340 [ 6CCD1135320109D6B219F1A6E04AD9F6, B97D4DF46DF0EFC106BD3E248C70809F3F47DF3FD1CA039A0A3923E1FA05A969 ] Afc C:\Windows\syswow64\drivers\Afc.sys
13:23:42.0581 0x0340 Afc - ok
13:23:42.0613 0x0340 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
13:23:42.0644 0x0340 AFD - ok
13:23:42.0659 0x0340 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
13:23:42.0675 0x0340 agp440 - ok
13:23:42.0691 0x0340 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
13:23:42.0706 0x0340 ALG - ok
13:23:42.0722 0x0340 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
13:23:42.0737 0x0340 aliide - ok
13:23:43.0034 0x0340 ALSysIO - ok
13:23:43.0127 0x0340 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
13:23:43.0143 0x0340 amdide - ok
13:23:43.0174 0x0340 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
13:23:43.0190 0x0340 AmdK8 - ok
13:23:43.0205 0x0340 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:23:43.0237 0x0340 AmdPPM - ok
13:23:43.0252 0x0340 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:23:43.0268 0x0340 amdsata - ok
13:23:43.0283 0x0340 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
13:23:43.0299 0x0340 amdsbs - ok
13:23:43.0315 0x0340 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:23:43.0330 0x0340 amdxata - ok
13:23:43.0377 0x0340 [ 9C4444FACE3B6A11C613186878A75D8E, 40111E19BD0DD256B4A41E6F0905148762D33BCA0A5308DA7FB0BA641CD9F77F ] AppID C:\Windows\system32\drivers\appid.sys
13:23:43.0393 0x0340 AppID - ok
13:23:43.0408 0x0340 [ B30533293343B79785CC00891BB776A5, CFE4C6CF01083FA2BC7579D8D2862E21388D597D346CB0EF1F3334C9D328E706 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:23:43.0439 0x0340 AppIDSvc - ok
13:23:43.0455 0x0340 [ 9651B55594F10F65D6D4498B89E5A4C5, 0726F44A81298116E61DCF720383C2E295EA96C79364A19B1ED1C274D20B3D77 ] Appinfo C:\Windows\System32\appinfo.dll
13:23:43.0486 0x0340 Appinfo - ok
13:23:43.0486 0x0340 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
13:23:43.0502 0x0340 arc - ok
13:23:43.0517 0x0340 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
13:23:43.0533 0x0340 arcsas - ok
13:23:43.0627 0x0340 [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:23:43.0642 0x0340 aspnet_state - ok
13:23:43.0658 0x0340 [ 0ACC3F49015E628590CA4372322EB46B, EB4E22EB4E840261168AF750E878E7A28CC080A89CEF77B5037C2897C40D1DE3 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
13:23:43.0673 0x0340 aswMonFlt - ok
13:23:43.0720 0x0340 [ 679712B7A353EE665B9301592164A172, CA3C918106A355BAFD0833BB493DF2CCBC2D0F90CA7EBF5E27CC088C7170B0E0 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
13:23:43.0736 0x0340 aswRdr - ok
13:23:43.0751 0x0340 [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
13:23:43.0783 0x0340 aswRvrt - ok
13:23:43.0814 0x0340 [ 43599E630DFC30AD4E6A2B4B269EB1C0, DA6C7FDC1F6A57117B17F697A94190CC0BB9E32B8CBB4F8C042AA461361CC74C ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
13:23:43.0861 0x0340 aswSnx - ok
13:23:43.0892 0x0340 [ F22DE5F5BA8ADA0A861441B624B51EB5, 58EF9FB3328B6B470F3652DBCE8ACEDAEE6839AC393889A02052298CA204689B ] aswSP C:\Windows\system32\drivers\aswSP.sys
13:23:43.0907 0x0340 aswSP - ok
13:23:43.0939 0x0340 [ FD3EA14ADF6216BDF4030DB2EFD43D96, 2D3009008AAE93285301B5844DC214D6B05ECB05D37AE08895D8E7187A0BB619 ] aswStm C:\Windows\system32\drivers\aswStm.sys
13:23:43.0954 0x0340 aswStm - ok
13:23:43.0985 0x0340 [ 90399625F341AB76BA4B85A5E860EB1F, 92DD461B14240222F451F971642844A4DAD9DF4FFEAA8F12D16EA117822BEEF3 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
13:23:44.0001 0x0340 aswVmm - ok
13:23:44.0001 0x0340 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:23:44.0048 0x0340 AsyncMac - ok
13:23:44.0079 0x0340 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
13:23:44.0095 0x0340 atapi - ok
13:23:44.0188 0x0340 [ A78697675C6B34E20C013C0741510627, E97F6EF2DA6F7D55967B4548B5584A42749EEC15B018E76ECB0159D06FC51396 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:23:44.0235 0x0340 AudioEndpointBuilder - ok
13:23:44.0251 0x0340 [ A78697675C6B34E20C013C0741510627, E97F6EF2DA6F7D55967B4548B5584A42749EEC15B018E76ECB0159D06FC51396 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:23:44.0282 0x0340 AudioSrv - ok
13:23:44.0344 0x0340 [ CC42F104172B4A62793083D380867317, 0B09823419B328E29EB9FFBD033B3295590E414F31E7B37F11F62BD4B7EBAF06 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:23:44.0344 0x0340 avast! Antivirus - ok
13:23:44.0375 0x0340 [ 3EF6DE560CD2441FC0A149C83C5A5C65, E246F6EEEE606B53149ADA7064F92E9E23FC576556BBAC32E1738B729F03FAF5 ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:23:44.0391 0x0340 AxInstSV - ok
13:23:44.0422 0x0340 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
13:23:44.0453 0x0340 b06bdrv - ok
13:23:44.0469 0x0340 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:23:44.0500 0x0340 b57nd60a - ok
13:23:44.0531 0x0340 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
13:23:44.0547 0x0340 BDESVC - ok
13:23:44.0563 0x0340 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
13:23:44.0594 0x0340 Beep - ok
13:23:44.0641 0x0340 [ F513F0CE75F873A0050A34379A8E76B5, CB1329CCAE7B8EBB711772F4A4C5ABBC47347C948BBBDEE011A8A25872B0C17D ] BFE C:\Windows\System32\bfe.dll
13:23:44.0672 0x0340 BFE - ok
13:23:44.0719 0x0340 [ CD13353EBF42FDF8728454B72EFFB182, 16CFF1D1D4FF681784F7F9D8374E00CD96FC5314B35CD4A7287CA8DC58348BBE ] BITS C:\Windows\System32\qmgr.dll
13:23:44.0765 0x0340 BITS - ok
13:23:44.0781 0x0340 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:23:44.0797 0x0340 blbdrive - ok
13:23:44.0797 0x0340 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:23:44.0828 0x0340 bowser - ok
13:23:44.0828 0x0340 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
13:23:44.0843 0x0340 BrFiltLo - ok
13:23:44.0859 0x0340 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
13:23:44.0875 0x0340 BrFiltUp - ok
13:23:44.0906 0x0340 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
13:23:44.0953 0x0340 Browser - ok
13:23:44.0968 0x0340 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:23:44.0984 0x0340 Brserid - ok
13:23:44.0999 0x0340 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:23:45.0015 0x0340 BrSerWdm - ok
13:23:45.0031 0x0340 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:23:45.0046 0x0340 BrUsbMdm - ok
13:23:45.0046 0x0340 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:23:45.0062 0x0340 BrUsbSer - ok
13:23:45.0077 0x0340 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
13:23:45.0109 0x0340 BTHMODEM - ok
13:23:45.0124 0x0340 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
13:23:45.0155 0x0340 bthserv - ok
13:23:45.0171 0x0340 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:23:45.0218 0x0340 cdfs - ok
13:23:45.0249 0x0340 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:23:45.0265 0x0340 cdrom - ok
13:23:45.0280 0x0340 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
13:23:45.0296 0x0340 CertPropSvc - ok
13:23:45.0311 0x0340 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
13:23:45.0327 0x0340 circlass - ok
13:23:45.0389 0x0340 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
13:23:45.0421 0x0340 CLFS - ok
13:23:45.0514 0x0340 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:23:45.0545 0x0340 clr_optimization_v2.0.50727_32 - ok
13:23:45.0577 0x0340 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:23:45.0608 0x0340 clr_optimization_v2.0.50727_64 - ok
13:23:45.0639 0x0340 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:23:45.0670 0x0340 clr_optimization_v4.0.30319_32 - ok
13:23:45.0670 0x0340 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:23:45.0686 0x0340 clr_optimization_v4.0.30319_64 - ok
13:23:45.0701 0x0340 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
13:23:45.0717 0x0340 CmBatt - ok
13:23:45.0748 0x0340 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:23:45.0764 0x0340 cmdide - ok
13:23:45.0795 0x0340 [ 29F5E6D593ED5CAC96B0889FD6CF555B, 1A0807F57DD83CAADED8BF96E6FF3A1DAB8C38E4A377D26D60E55C9B814D40AF ] CNG C:\Windows\system32\Drivers\cng.sys
13:23:45.0826 0x0340 CNG - ok
13:23:45.0842 0x0340 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
13:23:45.0857 0x0340 Compbatt - ok
13:23:45.0873 0x0340 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
13:23:45.0889 0x0340 CompositeBus - ok
13:23:45.0889 0x0340 COMSysApp - ok
13:23:45.0920 0x0340 cpuz136 - ok
13:23:45.0935 0x0340 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
13:23:45.0967 0x0340 crcdisk - ok
13:23:45.0998 0x0340 [ 509D31797A4B8A3D6ED78A330B19A919, 27676BD3DFFFD2B9EE8CF73DAF5DC33AEA4385D9A749452B15BC5124B4086927 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:23:46.0029 0x0340 CryptSvc - ok
13:23:46.0091 0x0340 [ 29AC62409BF4939EE14D70EC07CA12BB, CDFB2039D12B109B9978E06FBEBBBFE767E1AE429B1121A6BA78127F4B15783B ] DcomLaunch C:\Windows\system32\rpcss.dll
13:23:46.0123 0x0340 DcomLaunch - ok
13:23:46.0138 0x0340 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
13:23:46.0201 0x0340 defragsvc - ok
13:23:46.0216 0x0340 [ 9FCDC4EEBCE39173122F9FEE53A054FC, A4159B9AD4755557FA89AE173BCF49E2FF0E39F6562FAFC2EA75CAB1B6C2A576 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:23:46.0232 0x0340 DfsC - ok
13:23:46.0263 0x0340 [ 3F221A7E3123773EE8F1DB200CDDB39E, BA887F08F48E85E2DE0DF82C30A1CF1C230F0E81F5AD4BF8D4B53D7F669D397B ] Dhcp C:\Windows\system32\dhcpcore.dll
13:23:46.0294 0x0340 Dhcp - ok
13:23:46.0325 0x0340 [ 9ED290A1E8FDBCF269B26CDA541DDC84, 103332D59EFAAF60B014F4450C4B68051417B5CBBF4CA1769CCE694925CB0A83 ] discache C:\Windows\system32\drivers\discache.sys
13:23:46.0341 0x0340 discache - ok
13:23:46.0357 0x0340 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
13:23:46.0372 0x0340 Disk - ok
13:23:46.0388 0x0340 [ A06098E823EE2E63D42691C0D7BCDE46, 4920AF9E78E3D4D3635C70A1013DFAA7588F342EADF7EF84EE5DA4FC8F12A39B ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:23:46.0419 0x0340 Dnscache - ok
13:23:46.0435 0x0340 [ DD5038774EDF647E0D9F4220B1ADE6FC, 7256B9D27236F750C440B8BA9482E4FA77832241540C9D957486BEC0B9AC0D2A ] dot3svc C:\Windows\System32\dot3svc.dll
13:23:46.0450 0x0340 dot3svc - ok
13:23:46.0481 0x0340 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
13:23:46.0513 0x0340 DPS - ok
13:23:46.0544 0x0340 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:23:46.0559 0x0340 drmkaud - ok
13:23:46.0653 0x0340 [ 8462304CBD54857A5943BDA8A6EDE5ED, D3B03236B1D33CD2639E4843FD91B9E2552875C7ECF33554754BC3250AE7DC8B ] DSDrv4 C:\PROGRA~2\DScaler\DSDrv4.sys
13:23:46.0684 0x0340 DSDrv4 - detected UnsignedFile.Multi.Generic ( 1 )
13:23:46.0684 0x0340 DSDrv4 ( UnsignedFile.Multi.Generic ) - warning
13:23:49.0165 0x0340 [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
13:23:49.0196 0x0340 dtsoftbus01 - ok
13:23:49.0243 0x0340 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:23:49.0274 0x0340 DXGKrnl - ok
13:23:49.0305 0x0340 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
13:23:49.0336 0x0340 EapHost - ok
13:23:49.0461 0x0340 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
13:23:49.0570 0x0340 ebdrv - ok
13:23:49.0586 0x0340 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] EFS C:\Windows\System32\lsass.exe
13:23:49.0602 0x0340 EFS - ok
13:23:49.0664 0x0340 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:23:49.0695 0x0340 ehRecvr - ok
13:23:49.0711 0x0340 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
13:23:49.0726 0x0340 ehSched - ok
13:23:49.0758 0x0340 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
13:23:49.0789 0x0340 elxstor - ok
13:23:49.0804 0x0340 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:23:49.0820 0x0340 ErrDev - ok
13:23:49.0836 0x0340 [ DB6AEC32FAF5BD002D9ED6C38692D42B, 8BB85AE88E783B678B05D5937B7EE261BB6ECC9BF82CCB0D9A4009A1535F62B3 ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
13:23:49.0867 0x0340 EtronHub3 - ok
13:23:49.0867 0x0340 [ 9CC2F24274741E12F9DF92125EA6D6D8, AC51B2A81A4D285E2E17880597B491EBBFEC533A5009B810E4AD0D9FC589EB22 ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
13:23:49.0882 0x0340 EtronXHCI - ok
13:23:49.0914 0x0340 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
13:23:49.0960 0x0340 EventSystem - ok
13:23:49.0992 0x0340 [ EE8A4765D5EB30736E2E067A3E8907CB, E7FE4F3707E6EEE046BE0C20B75E59924B332CA2F35482B4A457A79D59F4BF4E ] excfs C:\Windows\system32\DRIVERS\excfs.sys
13:23:50.0007 0x0340 excfs - ok
13:23:50.0023 0x0340 [ 681426F5AFB40405FB596BF90199C484, D9DF2964B96805F61B90E4B862F9EAC5B1C682935A625F75862645E94D623DF4 ] excsd C:\Windows\system32\DRIVERS\excsd.sys
13:23:50.0038 0x0340 excsd - ok
13:23:50.0054 0x0340 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
13:23:50.0101 0x0340 exfat - ok
13:23:50.0116 0x0340 [ 0AE5D0CD28D26F4BC2BDCA96FC21F67F, F3EB803CE5B2D32212AE40A52C9DE074374709C296023109EAA6DF4012E7AB01 ] ExpressCache C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
13:23:50.0132 0x0340 ExpressCache - ok
13:23:50.0148 0x0340 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:23:50.0194 0x0340 fastfat - ok
13:23:50.0226 0x0340 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
13:23:50.0272 0x0340 Fax - ok
13:23:50.0288 0x0340 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
13:23:50.0304 0x0340 fdc - ok
13:23:50.0319 0x0340 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
13:23:50.0366 0x0340 fdPHost - ok
13:23:50.0366 0x0340 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
13:23:50.0413 0x0340 FDResPub - ok
13:23:50.0413 0x0340 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:23:50.0428 0x0340 FileInfo - ok
13:23:50.0444 0x0340 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:23:50.0475 0x0340 Filetrace - ok
13:23:50.0491 0x0340 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
13:23:50.0506 0x0340 flpydisk - ok
13:23:50.0522 0x0340 [ BAD52A4449DB51D70826EBDE87D84E22, D9B805CD3B0995FBF8A10060B08D9CAEB1B87371B5B9C0FF07400AEB73B9F0EB ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:23:50.0553 0x0340 FltMgr - ok
13:23:50.0616 0x0340 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
13:23:50.0678 0x0340 FontCache - ok
13:23:50.0709 0x0340 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:23:50.0725 0x0340 FontCache3.0.0.0 - ok
13:23:50.0740 0x0340 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:23:50.0756 0x0340 FsDepends - ok
13:23:50.0756 0x0340 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:23:50.0772 0x0340 Fs_Rec - ok
13:23:50.0834 0x0340 [ 290EBA98AD0CE0D1B880B5D71194B069, 60CF4DBCFBF5EABE127663322E0CA2B324DB8A92039E7B7C044ACD64DBD324AB ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
13:23:50.0850 0x0340 Futuremark SystemInfo Service - ok
13:23:50.0881 0x0340 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:23:50.0896 0x0340 fvevol - ok
13:23:50.0912 0x0340 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
13:23:50.0928 0x0340 gagp30kx - ok
13:23:50.0943 0x0340 gdrv - ok
13:23:50.0974 0x0340 [ C188969AC82AFF6B2A6CD967046C81B7, 938860F7DC1BEBB08E3AD383D36A3745E82DEB8F5A29074418BE67C37DADEDDD ] gpsvc C:\Windows\System32\gpsvc.dll
13:23:51.0006 0x0340 gpsvc - ok
13:23:51.0021 0x0340 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:23:51.0037 0x0340 hcw85cir - ok
13:23:51.0068 0x0340 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:23:51.0099 0x0340 HdAudAddService - ok
13:23:51.0115 0x0340 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:23:51.0130 0x0340 HDAudBus - ok
13:23:51.0146 0x0340 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
13:23:51.0162 0x0340 HidBatt - ok
13:23:51.0177 0x0340 [ FDF5EAD19FD8B2D0C50A9CCDD7836F9E, B865703E3D9BFC75DF363BF943213C47A63445415E211000717009D2BD0C062B ] HidBth C:\Windows\system32\drivers\hidbth.sys
13:23:51.0193 0x0340 HidBth - ok
13:23:51.0224 0x0340 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
13:23:51.0240 0x0340 HidIr - ok
13:23:51.0255 0x0340 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
13:23:51.0286 0x0340 hidserv - ok
13:23:51.0318 0x0340 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
13:23:51.0333 0x0340 HidUsb - ok
13:23:51.0364 0x0340 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:23:51.0427 0x0340 hkmsvc - ok
13:23:51.0442 0x0340 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:23:51.0474 0x0340 HomeGroupListener - ok
13:23:51.0489 0x0340 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:23:51.0520 0x0340 HomeGroupProvider - ok
13:23:51.0536 0x0340 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:23:51.0552 0x0340 HpSAMD - ok
13:23:51.0567 0x0340 [ 8774FA7B32947E08F926099D2221D625, D1D5FE447673356F72234E225B26A707971A22CA59897FDD672A3EBAF23828D3 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:23:51.0614 0x0340 HTTP - ok
13:23:51.0614 0x0340 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:23:51.0630 0x0340 hwpolicy - ok
13:23:51.0645 0x0340 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:23:51.0676 0x0340 i8042prt - ok
13:23:51.0692 0x0340 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:23:51.0723 0x0340 iaStorV - ok
13:23:51.0786 0x0340 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:23:51.0832 0x0340 idsvc - ok
13:23:51.0848 0x0340 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
13:23:51.0864 0x0340 iirsp - ok
13:23:51.0973 0x0340 [ 1E2A51DB8B28CD431D2B5C76A71AAEE3, A356E381C155DF7D3E905696D63A652D1C01D524B6B866C2288ECC5F3B3D4AB9 ] IKEEXT C:\Windows\System32\ikeext.dll
13:23:52.0051 0x0340 IKEEXT - ok
13:23:52.0160 0x0340 [ 8CAA2A543155675D09B0D5239E31EC99, 033CF96E110136A59E01C4D26FE3681862C0993938959059A37A34DC1C0E1D49 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:23:52.0269 0x0340 IntcAzAudAddService - ok
13:23:52.0300 0x0340 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
13:23:52.0316 0x0340 intelide - ok
13:23:52.0332 0x0340 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
13:23:52.0347 0x0340 intelppm - ok
13:23:52.0378 0x0340 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:23:52.0410 0x0340 IPBusEnum - ok
13:23:52.0425 0x0340 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:23:52.0472 0x0340 IpFilterDriver - ok
13:23:52.0503 0x0340 [ 4261F21A202746AC207CA9AA863D9FD4, AB3EE36AF1AF0649CB3CD2F7699B211DB3EC8536692EAA0EE38F63432FEBDCAB ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:23:52.0534 0x0340 iphlpsvc - ok
13:23:52.0550 0x0340 [ 3CB3DBEECB9672698B5C1A6EAB2940B0, AC252B7344A3A3F2799D4FF5612FAF9DC8830F30C97B69950CF9245EA5415D08 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:23:52.0566 0x0340 IPMIDRV - ok
13:23:52.0581 0x0340 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:23:52.0612 0x0340 IPNAT - ok
13:23:52.0628 0x0340 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:23:52.0644 0x0340 IRENUM - ok
13:23:52.0644 0x0340 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:23:52.0659 0x0340 isapnp - ok
13:23:52.0690 0x0340 [ D9A95CE8A8C0735D2DAD0BAFEA1E0382, BDC90F83D4FE717E30FCF5A8EC15AB55B827371A904FA8CF40AE7C7DAB170FF1 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:23:52.0706 0x0340 iScsiPrt - ok
13:23:52.0722 0x0340 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:23:52.0737 0x0340 kbdclass - ok
13:23:52.0737 0x0340 [ 3985332405FA64D8E679A1DB24901596, CA4C274704B9F4AE560CC32AD7C22D39ADAD13C61709E21F70C9B1AACE34B7A2 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
13:23:52.0753 0x0340 kbdhid - ok
13:23:52.0768 0x0340 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] KeyIso C:\Windows\system32\lsass.exe
13:23:52.0784 0x0340 KeyIso - ok
13:23:52.0831 0x0340 [ 18DCDF2DFDCCEB2EEF9E641F39D17BC7, 7C9704568E346C2C7292DD5D8027ED8249708424FE8DF5F4EED634FE80BAA2BA ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
13:23:52.0846 0x0340 KL1 - ok
13:23:52.0893 0x0340 [ 2CB6342329B118D9C2CD7551B1CF7002, 138BF88850B848428214DC07AD26F8281994DB6D1B62E78472CD6172C57E411C ] KLIF C:\Windows\system32\DRIVERS\klif.sys
13:23:52.0924 0x0340 KLIF - ok
13:23:52.0956 0x0340 [ 7E60C7882EB896B1E4991181C3975F93, 044F46566566299FB8D75CA22D159444EC567861A6386E91E49C7B2E20D92AB0 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:23:52.0971 0x0340 KSecDD - ok
13:23:52.0987 0x0340 [ 6C45E4B6331C614EFB401DA74CCF849E, 147A93CD41A25FAD6D5898A02629F1206B14E16CA4BB62B1B901FBF746A1EF65 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:23:53.0018 0x0340 KSecPkg - ok
13:23:53.0034 0x0340 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:23:53.0065 0x0340 ksthunk - ok
13:23:53.0096 0x0340 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
13:23:53.0143 0x0340 KtmRm - ok
13:23:53.0174 0x0340 [ BB1F14C43241F880D23B1A8BB0B76DD0, F99DD7310F3FAE7799CB8A1CD217F0174F0BB2E29FEC6122436EF5E6A40CE852 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:23:53.0205 0x0340 LanmanServer - ok
13:23:53.0221 0x0340 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:23:53.0283 0x0340 LanmanWorkstation - ok
13:23:53.0299 0x0340 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:23:53.0330 0x0340 lltdio - ok
13:23:53.0392 0x0340 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:23:53.0517 0x0340 lltdsvc - ok
13:23:53.0533 0x0340 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:23:53.0564 0x0340 lmhosts - ok
13:23:53.0580 0x0340 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
13:23:53.0595 0x0340 LSI_FC - ok
13:23:53.0611 0x0340 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:23:53.0626 0x0340 LSI_SAS - ok
13:23:53.0642 0x0340 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
13:23:53.0658 0x0340 LSI_SAS2 - ok
13:23:53.0658 0x0340 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
13:23:53.0673 0x0340 LSI_SCSI - ok
13:23:53.0704 0x0340 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
13:23:53.0736 0x0340 luafv - ok
13:23:53.0751 0x0340 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:23:53.0782 0x0340 Mcx2Svc - ok
13:23:53.0782 0x0340 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
13:23:53.0798 0x0340 megasas - ok
13:23:53.0829 0x0340 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
13:23:53.0860 0x0340 MegaSR - ok
13:23:53.0892 0x0340 [ 8EA880DC2E0F8D93A943C25EF17E18FC, 9110CF46DE29C4F02A78FE9D4EEF0DE59BD392C6EC87B427833FF78AF15C2200 ] mi2c C:\Windows\system32\drivers\mi2c.sys
13:23:53.0923 0x0340 mi2c - ok
13:23:53.0954 0x0340 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
13:23:53.0985 0x0340 MMCSS - ok
13:23:54.0001 0x0340 [ BFFB0C93D9FB43CA42EF11C9240BFF7F, E1E98C55DF9A56316050A21AC5A7D764338DA55F6124B52A52E71B5B0089C3FA ] Modem C:\Windows\system32\drivers\modem.sys
13:23:54.0016 0x0340 Modem - ok
13:23:54.0048 0x0340 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:23:54.0063 0x0340 monitor - ok
13:23:54.0094 0x0340 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:23:54.0126 0x0340 mouclass - ok
13:23:54.0141 0x0340 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\drivers\mouhid.sys
13:23:54.0157 0x0340 mouhid - ok
13:23:54.0172 0x0340 [ B3F55C20008956239A2190DBD7CC4C31, C13A37497856B97DD8E676DD61A65E4FFD42037E691D022C5C5B8E0567E78905 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:23:54.0188 0x0340 mountmgr - ok
13:23:54.0235 0x0340 [ E05FD9D5854A26A13D7F138F02BF2420, 89A6D90B8DB65565C1DAF9A1584C68989A1F4937D705182DA6E3B72E14A30DEA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:23:54.0250 0x0340 MozillaMaintenance - ok
13:23:54.0282 0x0340 [ C6B88D62F20AC646C6BD5C032EC2FAF9, 111A07939F3C5A46F0C51B9D6F5C1D8478099E32EFD88BC260467109ADD975F8 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
13:23:54.0313 0x0340 MpFilter - ok
13:23:54.0328 0x0340 [ 106CE46DB9F264C1497BF3768E79D58F, 54A03C98CA3B5ADFC14AC36612BBD77D31A79B5773B03F07C038894231CBFA4C ] mpio C:\Windows\system32\drivers\mpio.sys
13:23:54.0344 0x0340 mpio - ok
13:23:54.0360 0x0340 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:23:54.0375 0x0340 mpsdrv - ok
13:23:54.0422 0x0340 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:23:54.0469 0x0340 MpsSvc - ok
13:23:54.0500 0x0340 [ 83A296715A67D696F101130AB44B92A7, 365D984745C38CA6AD2EE038834A02BE03AAAF02BCEB40B4E60E4309C01C3BE2 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:23:54.0516 0x0340 MRxDAV - ok
13:23:54.0531 0x0340 [ 10640D702E825CE76D84BA1437938684, E1D8F54D5CD0D8C703B5C1F2FCC873EDE9C7DAF7FC5CEFD6D9A08DF2355D704F ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:23:54.0562 0x0340 mrxsmb - ok
13:23:54.0578 0x0340 [ 311B774EC01B8BE17C9508049EA77875, 980B5C9AA65C628D93E31366FCCC06EC7FC6F4D15A38DA620DD6FCA16DA13B15 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:23:54.0609 0x0340 mrxsmb10 - ok
13:23:54.0625 0x0340 [ 3B0F847AD2A31BC5654A53197BE2171A, E29E1D160761DDBF6267CDC39DA5150F4DE80E5A1421F0ED19AA963193AABF27 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:23:54.0640 0x0340 mrxsmb20 - ok
13:23:54.0672 0x0340 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
13:23:54.0687 0x0340 msahci - ok
13:23:54.0703 0x0340 [ 4F42C9CE2BD3444B1B98593A2DFBC547, 3D80E77F48787A7F32A9208D8F43CF1D4B9D9539E4A48DC2A720C1035B1B6AC6 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:23:54.0734 0x0340 msdsm - ok
13:23:54.0750 0x0340 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
13:23:54.0781 0x0340 MSDTC - ok
13:23:54.0796 0x0340 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:23:54.0828 0x0340 Msfs - ok
13:23:54.0843 0x0340 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:23:54.0874 0x0340 mshidkmdf - ok
13:23:54.0890 0x0340 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:23:54.0906 0x0340 msisadrv - ok
13:23:54.0937 0x0340 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:23:54.0984 0x0340 MSiSCSI - ok
13:23:54.0984 0x0340 msiserver - ok
13:23:54.0999 0x0340 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:23:55.0030 0x0340 MSKSSRV - ok
13:23:55.0108 0x0340 [ 7675E15D1B2180745E4DA4D26AAD7385, 729AA6C610F67028CFFFF64B772FFA1CAE7581D37F8909BDA423D52AF85C92C8 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
13:23:55.0140 0x0340 MsMpSvc - ok
13:23:55.0155 0x0340 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:23:55.0202 0x0340 MSPCLOCK - ok
13:23:55.0218 0x0340 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:23:55.0249 0x0340 MSPQM - ok
13:23:55.0264 0x0340 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:23:55.0296 0x0340 MsRPC - ok
13:23:55.0311 0x0340 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:23:55.0327 0x0340 mssmbios - ok
13:23:55.0342 0x0340 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:23:55.0374 0x0340 MSTEE - ok
13:23:55.0389 0x0340 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
13:23:55.0405 0x0340 MTConfig - ok
13:23:55.0420 0x0340 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
13:23:55.0436 0x0340 Mup - ok
13:23:55.0467 0x0340 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
13:23:55.0514 0x0340 napagent - ok
13:23:55.0530 0x0340 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:23:55.0576 0x0340 NativeWifiP - ok
13:23:55.0654 0x0340 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
13:23:55.0701 0x0340 NDIS - ok
13:23:55.0701 0x0340 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:23:55.0748 0x0340 NdisCap - ok
13:23:55.0764 0x0340 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:23:55.0779 0x0340 NdisTapi - ok
13:23:55.0779 0x0340 [ 4948435B96A6FA63914DA3B4090E6700, CC78A0DA290E2E6D6D2CF6AE569CD5F0D038FDB10C94B2E4297B3EEB4CB64A82 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:23:55.0795 0x0340 Ndisuio - ok
13:23:55.0826 0x0340 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:23:55.0873 0x0340 NdisWan - ok
13:23:55.0873 0x0340 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:23:55.0888 0x0340 NDProxy - ok
13:23:55.0904 0x0340 [ BB14215BBAF8EBB5E5FFAA3B6B04D177, 7A53CBF15409FAF34F3959263E7C3E69770CF06B4FEB7A08E3009C18A098DBA3 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:23:55.0920 0x0340 NetBIOS - ok
13:23:55.0935 0x0340 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:23:55.0982 0x0340 NetBT - ok
13:23:55.0998 0x0340 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] Netlogon C:\Windows\system32\lsass.exe
13:23:56.0013 0x0340 Netlogon - ok
13:23:56.0060 0x0340 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
13:23:56.0122 0x0340 Netman - ok
13:23:56.0138 0x0340 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:23:56.0154 0x0340 NetMsmqActivator - ok
13:23:56.0169 0x0340 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:23:56.0185 0x0340 NetPipeActivator - ok
13:23:56.0216 0x0340 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
13:23:56.0278 0x0340 netprofm - ok
13:23:56.0278 0x0340 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:23:56.0294 0x0340 NetTcpActivator - ok
13:23:56.0294 0x0340 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:23:56.0310 0x0340 NetTcpPortSharing - ok
13:23:56.0325 0x0340 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
13:23:56.0341 0x0340 nfrd960 - ok
13:23:56.0388 0x0340 [ ACE8C64C57E4A711473C8BC10ADF692B, 53D8083CE78DB5527080B4570AC28ABAA262667744A319707AE0C46E46B297F9 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
13:23:56.0434 0x0340 NisDrv - ok
13:23:56.0450 0x0340 [ 6247E8B31ED0A9D6BC5A26276E49BEB3, 230C0C560492C454B9EB14B50EB4A78DC74FAB6B662449A0EA3114B3E671BFF3 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
13:23:56.0481 0x0340 NisSrv - ok
13:23:56.0512 0x0340 [ 2BF56772E15F53B0565175940E65E356, D3CE07AF456DA3CC4D131A1D33B5B67413FA668AE803A584D3524BF50D385806 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:23:56.0544 0x0340 NlaSvc - ok
13:23:56.0544 0x0340 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:23:56.0590 0x0340 Npfs - ok
13:23:56.0606 0x0340 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
13:23:56.0622 0x0340 nsi - ok
13:23:56.0637 0x0340 [ F7DAC05B4067C8D9DD1FF2FCF7E33291, DBF28724C79EE77CD6C1D7BFC2D502FCA284E40CFCA6EA1337129E0DAAFC808D ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:23:56.0653 0x0340 nsiproxy - ok
13:23:56.0762 0x0340 [ A6AE4551BF8EED09FA3B6FCDF472F3E1, 8C01E05D5736FBEFDA9A670F8DB9AB44B5730DC90A545B651E7B09321317DEE4 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:23:56.0824 0x0340 Ntfs - ok
13:23:56.0840 0x0340 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
13:23:56.0871 0x0340 Null - ok
13:23:56.0887 0x0340 [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
13:23:56.0918 0x0340 NVHDA - ok
13:23:57.0324 0x0340 [ 0218E1CE8F7B5D404980192B9112D03A, 30BFBDC8F4BFF9DCAE71940AFD3F3E8CCC71C950F3B4A9717A70FF667F6DDC9E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:23:57.0651 0x0340 nvlddmkm - ok
13:23:57.0745 0x0340 [ 903A40C958D471F9D30D29FA6D2800A4, 4641F8E8B20EE9AF8AB61E61AD74D41A4E9F51C906EC5F3BDC484FFAFB540E69 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
13:23:57.0792 0x0340 NvNetworkService - ok
13:23:57.0807 0x0340 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:23:57.0823 0x0340 nvraid - ok
13:23:57.0838 0x0340 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:23:57.0854 0x0340 nvstor - ok
13:23:58.0306 0x0340 [ 68DE8D996D8FF628AB6B3D422035F862, 239CE5BE15F39966AE5243971FE75BDFB35359F92C8294C61155C863F4B3C40E ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
13:23:58.0665 0x0340 NvStreamSvc - ok
13:23:58.0712 0x0340 [ B7973C405247C5A44BA46B12A4B7AEEA, DF25E4CB7093EFF528C47A51C68CD1B0A93AE273D078804B7E09E74163753AA8 ] nvsvc C:\Windows\system32\nvvsvc.exe
13:23:58.0743 0x0340 nvsvc - ok
13:23:58.0774 0x0340 [ 09216A70CC364D0974F606F6F2109210, 60877154D4DF5287D1989CDAA9863CD6DACA528D06233238498854A10C868C20 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
13:23:58.0806 0x0340 nvvad_WaveExtensible - ok
13:23:58.0821 0x0340 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:23:58.0837 0x0340 nv_agp - ok
13:23:58.0852 0x0340 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:23:58.0868 0x0340 ohci1394 - ok
13:23:58.0899 0x0340 [ 8830D42427D05B15B032108EBBDBD289, 977AEE57EF7639A1B1C8D8858AF369927EB16181100FCC4517F4B58148138C22 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:23:58.0930 0x0340 p2pimsvc - ok
13:23:58.0962 0x0340 [ 5B7BADED6943AA6F4B6C1ABA5FCCB25F, 07D17B7778A88A3007E98C47773D1D8649C3AF5284BCC870829DDF2725CF2FC1 ] p2psvc C:\Windows\system32\p2psvc.dll
13:23:58.0993 0x0340 p2psvc - ok
13:23:59.0024 0x0340 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
13:23:59.0040 0x0340 Parport - ok
13:23:59.0055 0x0340 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:23:59.0071 0x0340 partmgr - ok
13:23:59.0086 0x0340 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
13:23:59.0118 0x0340 PcaSvc - ok
13:23:59.0118 0x0340 [ 232E26C10C97A403126F4409706F94B3, 45B137BB9D234654BF667B2BA00C67279D777A5CF58448A612D78922396617D1 ] pci C:\Windows\system32\drivers\pci.sys
13:23:59.0149 0x0340 pci - ok
13:23:59.0164 0x0340 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
13:23:59.0180 0x0340 pciide - ok
13:23:59.0196 0x0340 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
13:23:59.0211 0x0340 pcmcia - ok
13:23:59.0227 0x0340 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
13:23:59.0242 0x0340 pcw - ok
13:23:59.0274 0x0340 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:23:59.0336 0x0340 PEAUTH - ok
13:23:59.0383 0x0340 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:23:59.0398 0x0340 PerfHost - ok
13:23:59.0508 0x0340 [ 1E81496AFF9D7FA2B4C4032B746DE5B9, C4FEFE1A03EBD6BBB67D22461B67F5D080A32D75A58B5A48F3FE68D306B6D8DA ] Ph3xIB64 C:\Windows\system32\DRIVERS\Ph3xIB64.sys
13:23:59.0570 0x0340 Ph3xIB64 - ok
13:23:59.0617 0x0340 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
13:23:59.0679 0x0340 pla - ok
13:23:59.0695 0x0340 [ 34B06971CA5A740B32A63646C60BA3FC, 6B08A6D183216AF6AD4A61CEBCCD6CC9F99E0184632DAB965FCBB805D3AE0EA5 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:23:59.0726 0x0340 PlugPlay - ok
13:23:59.0742 0x0340 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:23:59.0773 0x0340 PNRPAutoReg - ok
13:23:59.0804 0x0340 [ 8830D42427D05B15B032108EBBDBD289, 977AEE57EF7639A1B1C8D8858AF369927EB16181100FCC4517F4B58148138C22 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:23:59.0820 0x0340 PNRPsvc - ok
13:23:59.0851 0x0340 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:23:59.0913 0x0340 PolicyAgent - ok
13:23:59.0929 0x0340 [ A6D45EB5FC8DBA8EBF3ABE2481C942B9, 2F1B03A390B78BC3F7AE0EEAC112ABC4C07D508EA86342CC082113ECB0B98E49 ] Power C:\Windows\system32\umpo.dll
13:23:59.0960 0x0340 Power - ok
13:23:59.0991 0x0340 [ D8874711B6C3DD308F84E42BA6EFF179, A7E14D9A80D0F2A38568E99E34FFBE2430743523D6739C0251EE5E4E8BBB68CC ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:24:00.0007 0x0340 PptpMiniport - ok
13:24:00.0022 0x0340 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
13:24:00.0038 0x0340 Processor - ok
13:24:00.0054 0x0340 [ E1B3BC57E35DA8F14738E0E4E8CF3CA8, 3AECC77DD04B72546C4B34F23EF0EF6221C86F083576BEE372C1D77C710581F6 ] ProfSvc C:\Windows\system32\profsvc.dll
13:24:00.0085 0x0340 ProfSvc - ok
13:24:00.0100 0x0340 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:24:00.0116 0x0340 ProtectedStorage - ok
13:24:00.0132 0x0340 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:24:00.0163 0x0340 Psched - ok
13:24:00.0210 0x0340 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
13:24:00.0256 0x0340 ql2300 - ok
13:24:00.0272 0x0340 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
13:24:00.0303 0x0340 ql40xx - ok
13:24:00.0350 0x0340 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
13:24:00.0412 0x0340 QWAVE - ok
13:24:00.0412 0x0340 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:24:00.0444 0x0340 QWAVEdrv - ok
13:24:00.0444 0x0340 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:24:00.0490 0x0340 RasAcd - ok
13:24:00.0506 0x0340 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:24:00.0537 0x0340 RasAgileVpn - ok
13:24:00.0553 0x0340 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
13:24:00.0600 0x0340 RasAuto - ok
13:24:00.0615 0x0340 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:24:00.0662 0x0340 Rasl2tp - ok
13:24:00.0678 0x0340 [ 8AB012D47B12630A72F56E26A1B5E63C, 404FCBA4561AAA50EB7F467B8303317153DC47B4FFB17F457E3FA20A4E74ED9D ] RasMan C:\Windows\System32\rasmans.dll
13:24:00.0709 0x0340 RasMan - ok
13:24:00.0724 0x0340 [ 77682DE44B334E6AAFCD0ED61FB7404F, C95DF9113D8B777BC9CFE319A710C9293210377F531F0C38FA38C588B8A3F5B4 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:24:00.0740 0x0340 RasPppoe - ok
13:24:00.0756 0x0340 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:24:00.0787 0x0340 RasSstp - ok
13:24:00.0834 0x0340 [ 68BBADAFE1415548941BF0E779910270, CADEBE7C95AC2C1422F81439328CCE171AF2FC8A61D45061A2A96BE63CAB8DFE ] RCSERVICE C:\Program Files (x86)\ASUS\Remote Control\RCService64.exe
13:24:00.0834 0x0340 RCSERVICE - detected UnsignedFile.Multi.Generic ( 1 )
13:24:00.0834 0x0340 RCSERVICE ( UnsignedFile.Multi.Generic ) - warning
13:24:00.0834 0x0340 Force sending object to P2P due to detect: C:\Program Files (x86)\ASUS\Remote Control\RCService64.exe
13:24:13.0672 0x0340 Object send P2P result: true
13:24:16.0153 0x0340 [ 445E580BBA089D141FB564DB8F7DE11F, 26EB3911DD5961CDA941F58D1E0C1EFF0EB37975B7E65CCD4B2405C9ECD53F23 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:24:16.0184 0x0340 rdbss - ok
13:24:16.0200 0x0340 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
13:24:16.0215 0x0340 rdpbus - ok
13:24:16.0231 0x0340 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:24:16.0262 0x0340 RDPCDD - ok
13:24:16.0262 0x0340 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:24:16.0309 0x0340 RDPENCDD - ok
13:24:16.0324 0x0340 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:24:16.0356 0x0340 RDPREFMP - ok
13:24:16.0371 0x0340 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:24:16.0387 0x0340 RDPWD - ok
13:24:16.0418 0x0340 [ A115F49BEA840A5F049BC6310F35F776, 3A4D681959A493ECC24C4B0925F5F4FD336F93C317198C210907E466D3F704CA ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:24:16.0434 0x0340 rdyboost - ok
13:24:16.0449 0x0340 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:24:16.0480 0x0340 RemoteAccess - ok
13:24:16.0480 0x0340 [ 44A031C50D6E8077A034D59E094AB1E2, 7C03954A82C15B14D9160C2E8675A82A47E1C34E0D731CE5A4DED795CF873EED ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:24:16.0512 0x0340 RemoteRegistry - ok
13:24:16.0527 0x0340 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:24:16.0574 0x0340 RpcEptMapper - ok
13:24:16.0605 0x0340 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
13:24:16.0621 0x0340 RpcLocator - ok
13:24:16.0652 0x0340 [ 29AC62409BF4939EE14D70EC07CA12BB, CDFB2039D12B109B9978E06FBEBBBFE767E1AE429B1121A6BA78127F4B15783B ] RpcSs C:\Windows\system32\rpcss.dll
13:24:16.0683 0x0340 RpcSs - ok
13:24:16.0699 0x0340 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:24:16.0746 0x0340 rspndr - ok
13:24:16.0761 0x0340 [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:24:16.0808 0x0340 RTL8167 - ok
13:24:16.0808 0x0340 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] SamSs C:\Windows\system32\lsass.exe
13:24:16.0824 0x0340 SamSs - ok
13:24:16.0855 0x0340 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:24:16.0870 0x0340 sbp2port - ok
13:24:16.0886 0x0340 [ 87E0D7E871A65C5777B6B81E93EA8446, A8987D64D5E8EA7B5634A51C4A7B43F4C7F5DE63C87610E6A1B0BC863383D80D ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:24:16.0902 0x0340 SCardSvr - ok
13:24:16.0933 0x0340 [ 29116BF2C41B92E45E28E8BAD0E28FB7, FAA77817C8D5E5FB8244AD90F314FAA7BB51C150E65107B32BAC629750CC948E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:24:16.0948 0x0340 scfilter - ok
13:24:16.0980 0x0340 [ CB23169AD1CEAEFF97DD76AD105B24C3, 83B148459E77E95547DB477F731285F05DC5D71070E664E778070A3E83F2CF0B ] Schedule C:\Windows\system32\schedsvc.dll
13:24:17.0042 0x0340 Schedule - ok
13:24:17.0058 0x0340 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:24:17.0073 0x0340 SCPolicySvc - ok
13:24:17.0104 0x0340 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:24:17.0136 0x0340 SDRSVC - ok
13:24:17.0307 0x0340 [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
13:24:17.0416 0x0340 SDScannerService - ok
13:24:17.0463 0x0340 [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
13:24:17.0494 0x0340 SDUpdateService - ok
13:24:17.0526 0x0340 [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
13:24:17.0541 0x0340 SDWSCService - ok
13:24:17.0572 0x0340 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:24:17.0604 0x0340 secdrv - ok
13:24:17.0619 0x0340 [ EA764FF72CD57F69B6E1E1A4F713708C, C2C5E268297F00B7263635C0D296D3F76B5E09BAE6E33B0E350CDBC9C0A1FD9A ] seclogon C:\Windows\system32\seclogon.dll
13:24:17.0635 0x0340 seclogon - ok
13:24:17.0650 0x0340 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
13:24:17.0682 0x0340 SENS - ok
13:24:17.0697 0x0340 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:24:17.0728 0x0340 SensrSvc - ok
13:24:17.0728 0x0340 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
13:24:17.0760 0x0340 Serenum - ok
13:24:17.0775 0x0340 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
13:24:17.0806 0x0340 Serial - ok
13:24:17.0806 0x0340 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
13:24:17.0822 0x0340 sermouse - ok
13:24:17.0853 0x0340 [ 69DF54A0519587E8040E17EF0BA4B069, 50876F1B0F2A387B16375B7DA6E8279A50ABF745614700AC12B93ACB81032478 ] SessionEnv C:\Windows\system32\sessenv.dll
13:24:17.0869 0x0340 SessionEnv - ok
13:24:17.0884 0x0340 [ C3D57658C34C68DB5D8970A1CF96284E, 4227C4AFDA94FB87FDB6642FB345209809EB86EC8F02DB79502AE54EF4A98A4B ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:24:17.0900 0x0340 sffdisk - ok
13:24:17.0916 0x0340 [ 21EACBEFFFB0FB4999D3D10245CF10A5, 46EFD8D61FE7CB6C9BAA84B869558749CC394D15B425E1657CABA6EAE718D6CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:24:17.0931 0x0340 sffp_mmc - ok
13:24:17.0931 0x0340 [ AF660EA3039E8FE3C2051D7224C82F34, F559BF0492DBFFE877D04DF565265195794BEB92CCAC22E4665CD7BE42F8FA2B ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:24:17.0947 0x0340 sffp_sd - ok
13:24:17.0962 0x0340 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
13:24:17.0978 0x0340 sfloppy - ok
13:24:18.0025 0x0340 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:24:18.0072 0x0340 SharedAccess - ok
13:24:18.0087 0x0340 [ EA9092F3DB26EDC7199AB64C9EF0D2D7, 2FD5AFD91CF50FEEE0E5C59590C471BE61470E1C0BF4DC3745B75739BB0769F3 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:24:18.0118 0x0340 ShellHWDetection - ok
13:24:18.0134 0x0340 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
13:24:18.0150 0x0340 SiSRaid2 - ok
13:24:18.0165 0x0340 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
13:24:18.0181 0x0340 SiSRaid4 - ok
13:24:18.0196 0x0340 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:24:18.0228 0x0340 Smb - ok
13:24:18.0243 0x0340 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:24:18.0259 0x0340 SNMPTRAP - ok
13:24:18.0274 0x0340 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
13:24:18.0290 0x0340 spldr - ok
13:24:18.0321 0x0340 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
13:24:18.0352 0x0340 Spooler - ok
13:24:18.0462 0x0340 [ 928F44BF1FF50AFC470151B69A1B81A8, 14AB3B3E640E14B9F526C799006D8D895DF62F5ADB64A38F08B50237CB34FE9A ] sppsvc C:\Windows\system32\sppsvc.exe
13:24:18.0602 0x0340 sppsvc - ok
13:24:18.0633 0x0340 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:24:18.0680 0x0340 sppuinotify - ok
13:24:18.0711 0x0340 [ 218F6F1BD7ED3F2167759E6A9C9DDD53, 2633C300402DF27F734E91AC6C442E3B9C53C2D641555FAF3F1824413D377D26 ] srv C:\Windows\system32\DRIVERS\srv.sys
13:24:18.0742 0x0340 srv - ok
13:24:18.0758 0x0340 [ 9842959983414BDBE38D92A58964AE04, 7B1D56023C1BB30EC3621A27224C0CF3A9457B3E95814095AED2E119DC176F8A ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:24:18.0789 0x0340 srv2 - ok
13:24:18.0805 0x0340 [ 896BEAAF23419696E73469DC207B4D26, 96A1457EF40665A01203DEC0B94AF52D1D22614B29AB7C7B195C89D74AEA87E1 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:24:18.0836 0x0340 srvnet - ok
13:24:18.0852 0x0340 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:24:18.0898 0x0340 SSDPSRV - ok
13:24:18.0914 0x0340 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:24:18.0945 0x0340 SstpSvc - ok
13:24:18.0992 0x0340 [ C3D855CC0A8E5E373FDFCF4F743C5C9D, 8DFDD2470DCCC63FCF1621B6B3A996285C75EE330BE8AC905B2176E5DE52C150 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
13:24:19.0023 0x0340 Steam Client Service - ok
13:24:19.0086 0x0340 [ EACEC497A6496E2A280348AD67ACF280, DAC7141A072FC83274612BC228DA6E014C371707FC76832470604ACDD5BF4BE3 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:24:19.0101 0x0340 Stereo Service - ok
13:24:19.0117 0x0340 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
13:24:19.0132 0x0340 stexstor - ok
13:24:19.0164 0x0340 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
13:24:19.0210 0x0340 stisvc - ok
13:24:19.0226 0x0340 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:24:19.0242 0x0340 swenum - ok
13:24:19.0257 0x0340 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
13:24:19.0320 0x0340 swprv - ok
13:24:19.0429 0x0340 [ 7BE4CDEA6BC7832BFE3112A350D8B9EA, B51BD5A02D20C1CD8F7B4326114C2FA57ABD8D75133D6CE906CB65E97AAB7F70 ] SysMain C:\Windows\system32\sysmain.dll
13:24:19.0491 0x0340 SysMain - ok
13:24:19.0507 0x0340 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:24:19.0522 0x0340 TabletInputService - ok
13:24:19.0538 0x0340 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
13:24:19.0585 0x0340 TapiSrv - ok
13:24:19.0616 0x0340 [ 048CFE7569D6ADCAB9349BB1A566A79E, E248D2A66881FDFF9505896F383EFFEF2FD5AFC15D8992E653F5C31F1F80DAF3 ] tbhsd C:\Windows\system32\drivers\tbhsd.sys
13:24:19.0632 0x0340 tbhsd - ok
13:24:19.0647 0x0340 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
13:24:19.0694 0x0340 TBS - ok
13:24:19.0756 0x0340 [ F55B41AA6114568AC558ADBABDA85620, CA41FC097A8661BD14EA599473CD0F5A201D1A4C2C6658668DB9CAA376408149 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:24:19.0819 0x0340 Tcpip - ok
13:24:19.0866 0x0340 [ F55B41AA6114568AC558ADBABDA85620, CA41FC097A8661BD14EA599473CD0F5A201D1A4C2C6658668DB9CAA376408149 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:24:19.0912 0x0340 TCPIP6 - ok
13:24:19.0944 0x0340 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:24:19.0959 0x0340 tcpipreg - ok
13:24:19.0975 0x0340 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:24:19.0990 0x0340 TDPIPE - ok
13:24:20.0006 0x0340 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:24:20.0022 0x0340 TDTCP - ok
13:24:20.0037 0x0340 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:24:20.0084 0x0340 tdx - ok
13:24:20.0100 0x0340 [ F0987412EE71046D263ABF53FEA20A12, 38E6B240958CA714B91EC83540A6D1DF3CD757592013F4BC418D894150425E69 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:24:20.0115 0x0340 TermDD - ok
13:24:20.0146 0x0340 [ E5E8A8ED641B4A25768F87DB5E922C45, A06921B2CB92C10A9C3FCCD3C64930AC7DC9F750928510838C7A659408CC45DA ] TermService C:\Windows\System32\termsrv.dll
13:24:20.0193 0x0340 TermService - ok
13:24:20.0209 0x0340 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
13:24:20.0224 0x0340 Themes - ok
13:24:20.0240 0x0340 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
13:24:20.0287 0x0340 THREADORDER - ok
13:24:20.0302 0x0340 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
13:24:20.0349 0x0340 TrkWks - ok
13:24:20.0412 0x0340 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:24:20.0458 0x0340 TrustedInstaller - ok
13:24:20.0521 0x0340 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:24:20.0536 0x0340 tssecsrv - ok
13:24:20.0536 0x0340 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:24:20.0568 0x0340 TsUsbFlt - ok
13:24:20.0583 0x0340 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
13:24:20.0599 0x0340 TsUsbGD - ok
13:24:20.0614 0x0340 [ 5AF0E7D020F6CA55AC57CD89AE089673, 9D01BCC023461162C7146D0164A6068501BC8BACB7FD17851038A8F4BD6A8B9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:24:20.0630 0x0340 tunnel - ok
13:24:20.0646 0x0340 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
13:24:20.0661 0x0340 uagp35 - ok
13:24:20.0692 0x0340 [ 7397C449E1C74AC9F41A9004BCAD6CB0, A3953A568B8D9259CD519A3E3B173A61D600EC9D6EC4FD7A1046D4F0DAC128C5 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:24:20.0724 0x0340 udfs - ok
13:24:20.0739 0x0340 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:24:20.0755 0x0340 UI0Detect - ok
13:24:20.0770 0x0340 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:24:20.0786 0x0340 uliagpkx - ok
13:24:20.0802 0x0340 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:24:20.0817 0x0340 umbus - ok
13:24:20.0817 0x0340 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
13:24:20.0833 0x0340 UmPass - ok
13:24:20.0864 0x0340 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
13:24:20.0911 0x0340 upnphost - ok
13:24:20.0942 0x0340 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
13:24:20.0958 0x0340 usbccgp - ok
13:24:20.0989 0x0340 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:24:21.0004 0x0340 usbcir - ok
13:24:21.0036 0x0340 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:24:21.0051 0x0340 usbehci - ok
13:24:21.0082 0x0340 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:24:21.0114 0x0340 usbhub - ok
13:24:21.0129 0x0340 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
13:24:21.0145 0x0340 usbohci - ok
13:24:21.0160 0x0340 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
13:24:21.0192 0x0340 usbprint - ok
13:24:21.0192 0x0340 [ 73B84C8CE467E81A94D4194F8009F2A0, 65CB7C61F4675C2D8EB5C5454577E7AD36F9D390F08E59EAF1765761B97424FB ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:24:21.0223 0x0340 USBSTOR - ok
13:24:21.0238 0x0340 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:24:21.0254 0x0340 usbuhci - ok
13:24:21.0270 0x0340 [ 81D8645AC588E7A6D9755D8FD84E6FDD, 0D6904CF522CD822AE106259D46BC161F56E3992FEA6F1DF70EDC5BFA2247F5E ] UxSms C:\Windows\System32\uxsms.dll
13:24:21.0301 0x0340 UxSms - ok
13:24:21.0301 0x0340 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] VaultSvc C:\Windows\system32\lsass.exe
13:24:21.0332 0x0340 VaultSvc - ok
13:24:21.0332 0x0340 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:24:21.0348 0x0340 vdrvroot - ok
13:24:21.0379 0x0340 [ 44082C4A89ABDAC0C4B08AA8834270B4, C312E144AC4E5475506EBC62CC5D0529B256771C1FA2D709228D3F6BFEB55DED ] vds C:\Windows\System32\vds.exe
13:24:21.0426 0x0340 vds - ok
13:24:21.0441 0x0340 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:24:21.0457 0x0340 vga - ok
13:24:21.0457 0x0340 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:24:21.0504 0x0340 VgaSave - ok
13:24:21.0519 0x0340 [ 2E9907E787CDAFA2AAA7F928853B7142, 29F30D60BBE5909D4DB569D52ADC7677CA94831B6E5CB25927386CC24CCCE898 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:24:21.0535 0x0340 vhdmp - ok
13:24:21.0566 0x0340 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
13:24:21.0582 0x0340 viaide - ok
13:24:21.0597 0x0340 [ 86B53AE0E7BD8B286D052CD1EF3F4EAF, 68996E7DCDC80B66710B3571BCEA85D77EE157E793688906B15AA285E360E733 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:24:21.0613 0x0340 volmgr - ok
13:24:21.0628 0x0340 [ 0904EF550B3D3FEB326638A4BAD9937E, 462FA11F260C420756DBD989CB505EEB9A286B9EEB826EB2935C119C839EDC8E ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:24:21.0644 0x0340 volmgrx - ok
13:24:21.0675 0x0340 [ F77D373432412073DD5B7BE10CD04306, D6B151E8AFEE9EEE4426D2FFCDF57F2CC0C1EA4310E82706BFDE59A1B41BF638 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:24:21.0691 0x0340 volsnap - ok
13:24:21.0769 0x0340 [ 2EC986F883C8450FA2C5F22524775E40, C4845543CFEA1BA8ACF89B03B445A85D7BEBAB63FA13B1D9E68F86330025B413 ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys
13:24:21.0800 0x0340 Vsdatant - ok
13:24:21.0831 0x0340 vsmon - ok
13:24:21.0862 0x0340 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
13:24:21.0894 0x0340 vsmraid - ok
13:24:21.0956 0x0340 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
13:24:22.0034 0x0340 VSS - ok
13:24:22.0050 0x0340 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
13:24:22.0065 0x0340 vwifibus - ok
13:24:22.0081 0x0340 [ C7B83BD98BA3560374569C0C13EA3685, 68C05B99D6035568E2470FE7E73167AF584CC721F76E02CA1470CA5E1E341607 ] W32Time C:\Windows\system32\w32time.dll
13:24:22.0112 0x0340 W32Time - ok
13:24:22.0128 0x0340 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
13:24:22.0143 0x0340 WacomPen - ok
13:24:22.0159 0x0340 [ 226028D956C43CE4D8DDFFA89873E890, F1208BAF5041595981CC6E2EB36D7E9487A4BFA4B895337C21135CED6B375936 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:24:22.0174 0x0340 WANARP - ok
13:24:22.0190 0x0340 [ 226028D956C43CE4D8DDFFA89873E890, F1208BAF5041595981CC6E2EB36D7E9487A4BFA4B895337C21135CED6B375936 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:24:22.0206 0x0340 Wanarpv6 - ok
13:24:22.0252 0x0340 [ F91B8969183F3461BD3D3438052AEAD0, 8AC901D5CF209479DBE1DD0D7BB084848796E0659C134998F82CDFC6EC7059E7 ] wbengine C:\Windows\system32\wbengine.exe
13:24:22.0315 0x0340 wbengine - ok
13:24:22.0330 0x0340 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:24:22.0362 0x0340 WbioSrvc - ok
13:24:22.0393 0x0340 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:24:22.0440 0x0340 wcncsvc - ok
13:24:22.0471 0x0340 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:24:22.0518 0x0340 WcsPlugInService - ok
13:24:22.0533 0x0340 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
13:24:22.0549 0x0340 Wd - ok
13:24:22.0642 0x0340 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:24:22.0674 0x0340 Wdf01000 - ok
13:24:22.0689 0x0340 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:24:22.0720 0x0340 WdiServiceHost - ok
13:24:22.0720 0x0340 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:24:22.0736 0x0340 WdiSystemHost - ok
13:24:22.0767 0x0340 [ 1BABAABCB29B03CFA7BC30833963398E, A354415572EEEB6FD7847F0FAF07BB7772E761EA485CFF3FE7837706515E85A0 ] WebClient C:\Windows\System32\webclnt.dll
13:24:22.0798 0x0340 WebClient - ok
13:24:22.0814 0x0340 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:24:22.0861 0x0340 Wecsvc - ok
13:24:22.0876 0x0340 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:24:22.0923 0x0340 wercplsupport - ok
13:24:22.0939 0x0340 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
13:24:22.0970 0x0340 WerSvc - ok
13:24:23.0001 0x0340 [ 009604986BAE004733728282BD98BB03, CE82EA41E6CC1EF2D11BFB2761105C422EA9A146FF52034C4A2221A4B5FD3940 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:24:23.0017 0x0340 WfpLwf - ok
13:24:23.0017 0x0340 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:24:23.0032 0x0340 WIMMount - ok
13:24:23.0048 0x0340 WinDefend - ok
13:24:23.0064 0x0340 WinHttpAutoProxySvc - ok
13:24:23.0110 0x0340 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:24:23.0188 0x0340 Winmgmt - ok
13:24:23.0251 0x0340 [ A3E62DD0C946471F3CDB29D3F7F0A467, A9F80B2C8580F90B30C290EB54C00ABD25948947CF5A513CF20C9951A157FBA6 ] WinRM C:\Windows\system32\WsmSvc.dll
13:24:23.0344 0x0340 WinRM - ok
13:24:23.0438 0x0340 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:24:23.0485 0x0340 Wlansvc - ok
13:24:23.0500 0x0340 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
13:24:23.0516 0x0340 WmiAcpi - ok
13:24:23.0532 0x0340 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:24:23.0563 0x0340 wmiApSrv - ok
13:24:23.0578 0x0340 WMPNetworkSvc - ok
13:24:23.0610 0x0340 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:24:23.0656 0x0340 WPCSvc - ok
13:24:23.0672 0x0340 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:24:23.0688 0x0340 WPDBusEnum - ok
13:24:23.0703 0x0340 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:24:23.0750 0x0340 ws2ifsl - ok
13:24:23.0766 0x0340 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
13:24:23.0797 0x0340 wscsvc - ok
13:24:23.0797 0x0340 WSearch - ok
13:24:23.0890 0x0340 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
13:24:23.0968 0x0340 wuauserv - ok
13:24:23.0968 0x0340 [ 6A36211499A473EE851838482E1EC7F3, BC2514ABCE4641EDB90D122AEB22A2A357629DC1C5197FA989785923DCC77040 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:24:24.0000 0x0340 WudfPf - ok
13:24:24.0015 0x0340 [ F94A807B81554BB021C89E47BFAD6D9B, 0A41764056B905C8EA65F5F65C1217D7EA8D4EED7F235224A7BE0178671AA6CF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:24:24.0031 0x0340 WUDFRd - ok
13:24:24.0062 0x0340 [ 69C863938D5B36D70E04B199133F793F, C131B96F8BC0D856A7A5C14B1711A046951D11395AE12D7C5F3248A6D976B5C1 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:24:24.0078 0x0340 wudfsvc - ok
13:24:24.0109 0x0340 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
13:24:24.0124 0x0340 WwanSvc - ok
13:24:24.0156 0x0340 [ EBD35BDCE49B94EB247213610094F399, 15A86FD702BED180CD92A78374C8A2D658A93B46EEC99BBC716CE618782E5A0B ] ZAPrivacyService C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
13:24:24.0171 0x0340 ZAPrivacyService - ok
13:24:24.0171 0x0340 ================ Scan global ===============================
13:24:24.0187 0x0340 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
13:24:24.0218 0x0340 [ 516D82106CAFAE156C61C5AB627A6409, 3E8A1A2E680E72C388B84C921FCB554D04EA5FF2568F625ED1F339467934A8DF ] C:\Windows\system32\winsrv.dll
13:24:24.0234 0x0340 [ 516D82106CAFAE156C61C5AB627A6409, 3E8A1A2E680E72C388B84C921FCB554D04EA5FF2568F625ED1F339467934A8DF ] C:\Windows\system32\winsrv.dll
13:24:24.0265 0x0340 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
13:24:24.0296 0x0340 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
13:24:24.0312 0x0340 [ Global ] - ok
13:24:24.0312 0x0340 ================ Scan MBR ==================================
13:24:24.0312 0x0340 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
13:24:24.0374 0x0340 \Device\Harddisk2\DR2 - ok
13:24:24.0390 0x0340 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:24:24.0592 0x0340 \Device\Harddisk0\DR0 - ok
13:24:24.0608 0x0340 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk1\DR1
13:24:24.0998 0x0340 \Device\Harddisk1\DR1 - ok
13:24:24.0998 0x0340 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3
13:24:25.0092 0x0340 \Device\Harddisk3\DR3 - ok
13:24:25.0092 0x0340 ================ Scan VBR ==================================
13:24:25.0092 0x0340 [ D20E8919C8618D69D58F2BD7CBA70E7A ] \Device\Harddisk0\DR0\Partition1
13:24:25.0092 0x0340 \Device\Harddisk0\DR0\Partition1 - ok
13:24:25.0107 0x0340 [ 30E08951F577F7B6E500247EF57263C2 ] \Device\Harddisk0\DR0\Partition2
13:24:25.0107 0x0340 \Device\Harddisk0\DR0\Partition2 - ok
13:24:25.0123 0x0340 [ 41255CF9C65F03D4914EA2A1AEEE5C1F ] \Device\Harddisk0\DR0\Partition3
13:24:25.0123 0x0340 \Device\Harddisk0\DR0\Partition3 - ok
13:24:25.0123 0x0340 [ 66DC783B65A496E8A2D82BD836EC8C6A ] \Device\Harddisk1\DR1\Partition1
13:24:25.0138 0x0340 \Device\Harddisk1\DR1\Partition1 - ok
13:24:25.0138 0x0340 [ A7155B2A7F9C2E008212E04852AC39D6 ] \Device\Harddisk1\DR1\Partition2
13:24:25.0138 0x0340 \Device\Harddisk1\DR1\Partition2 - ok
13:24:25.0138 0x0340 [ 493D3D11E9AA20E47015129EFE0A2750 ] \Device\Harddisk3\DR3\Partition1
13:24:25.0138 0x0340 \Device\Harddisk3\DR3\Partition1 - ok
13:24:25.0170 0x0340 AV detected via SS2: ZoneAlarm Antivirus, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 11.0.780.0 ), 0x41000 ( enabled : updated )
13:24:25.0170 0x0340 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x60000 ( disabled : updated )
13:24:25.0170 0x0340 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2013.292 ), 0x41000 ( enabled : updated )
13:24:25.0170 0x0340 FW detected via SS2: ZoneAlarm Firewall, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 11.0.780.0 ), 0x41010 ( enabled )
13:24:27.0619 0x0340 ============================================================
13:24:27.0619 0x0340 Scan finished
13:24:27.0619 0x0340 ============================================================
13:24:27.0619 0x1770 Detected object count: 3
13:24:27.0619 0x1770 Actual detected object count: 3
13:25:38.0225 0x1770 acedrv06 ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:38.0225 0x1770 acedrv06 ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:38.0225 0x1770 DSDrv4 ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:38.0225 0x1770 DSDrv4 ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:25:38.0225 0x1770 RCSERVICE ( UnsignedFile.Multi.Generic ) - skipped by user
13:25:38.0225 0x1770 RCSERVICE ( UnsignedFile.Multi.Generic ) - User select action: Skip

schrauber · 31.01.2014, 08:49

die 3 Funde sind nix. Kommen diese Mails nach Änderung des PW immer noch?

Jonissar · 31.01.2014, 09:21

kriege zwar noch vereinzelt mailer-deamon nachrichten, dass emails nach 24h nicht zugestellt werden konnten wegen spam, aber da ich das pw erst gestern morgen gegen 5 uhr geändert hab, muss ich da wohl noch etwas warten.

schrauber · 01.02.2014, 10:10

jup

Fertig

Falls Du Lob oder Kritik loswerden möchtest kannst Du das hier tun

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Jonissar · 02.02.2014, 13:39

hallo,

so, hab mal deine liste abgearbeitet und nochmal nen kompletten Scan laufen lassen, scheint jetzt komplett sauber zu sein.

danke für deine hilfe schrauber

mfg
jonissar

schrauber · 03.02.2014, 10:56

Gern Geschehen

31.01.2014, 08:49	#4
schrauber /// the machine /// TB-Ausbilder	Emailadresse versendet Spammails die 3 Funde sind nix. Kommen diese Mails nach Änderung des PW immer noch? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

03.02.2014, 10:56	#8
schrauber /// the machine /// TB-Ausbilder	Emailadresse versendet Spammails Gern Geschehen __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Emailadresse versendet Spammails

Log-Analyse und Auswertung: Emailadresse versendet Spammails