Seit kurzem seltsames Stöhn Geräusch im Hintergrund

Kyiru · 07.02.2014, 16:21

Hallo,

ich habe seit 2 Tagen jede Stunde für ca. 5 sekunden,
ein Geräusch im Hintergrund von jemanden der Stöhnt (auch wenn ich kein Browser offen habe),alles was ich in den Moment am Pc tue, lagt extrem.
Laut meinem Malwarebytes sei es von Firfox ich benutze aber Google Chrome.

Das die Malwarebytes logfile:

Zitat:

2014/02/06 05:00:56 +0100 SHINYA-PC Shinya MESSAGE Starting protection
2014/02/06 05:00:56 +0100 SHINYA-PC Shinya MESSAGE Protection started successfully
2014/02/06 05:00:56 +0100 SHINYA-PC Shinya MESSAGE Starting IP protection
2014/02/06 05:01:04 +0100 SHINYA-PC Shinya MESSAGE IP Protection started successfully
2014/02/06 05:01:11 +0100 SHINYA-PC Shinya MESSAGE Starting database refresh
2014/02/06 05:01:11 +0100 SHINYA-PC Shinya MESSAGE Stopping IP protection
2014/02/06 05:01:11 +0100 SHINYA-PC Shinya MESSAGE IP Protection stopped successfully
2014/02/06 05:01:13 +0100 SHINYA-PC Shinya MESSAGE Database refreshed successfully
2014/02/06 05:01:13 +0100 SHINYA-PC Shinya MESSAGE Starting IP protection
2014/02/06 05:01:14 +0100 SHINYA-PC Shinya MESSAGE IP Protection started successfully
2014/02/06 05:09:19 +0100 SHINYA-PC Shinya MESSAGE Stopping protection
2014/02/06 05:09:19 +0100 SHINYA-PC Shinya MESSAGE Protection stopped successfully
2014/02/06 05:09:19 +0100 SHINYA-PC Shinya MESSAGE Stopping IP protection
2014/02/06 05:09:19 +0100 SHINYA-PC Shinya MESSAGE IP Protection stopped successfully
2014/02/06 05:09:21 +0100 SHINYA-PC Shinya MESSAGE Protection stopped
2014/02/06 10:03:12 +0100 SHINYA-PC Shinya MESSAGE Starting protection
2014/02/06 10:03:12 +0100 SHINYA-PC Shinya MESSAGE Protection started successfully
2014/02/06 10:03:12 +0100 SHINYA-PC Shinya MESSAGE Starting IP protection
2014/02/06 10:03:14 +0100 SHINYA-PC Shinya MESSAGE IP Protection started successfully
2014/02/06 10:12:01 +0100 SHINYA-PC Shinya MESSAGE Stopping protection
2014/02/06 10:12:01 +0100 SHINYA-PC Shinya MESSAGE Protection stopped successfully
2014/02/06 10:12:01 +0100 SHINYA-PC Shinya MESSAGE Stopping IP protection
2014/02/06 10:12:02 +0100 SHINYA-PC Shinya MESSAGE IP Protection stopped successfully
2014/02/06 10:12:03 +0100 SHINYA-PC Shinya MESSAGE Protection stopped
2014/02/06 16:36:32 +0100 SHINYA-PC (null) MESSAGE Starting protection
2014/02/06 16:36:32 +0100 SHINYA-PC (null) MESSAGE Protection started successfully
2014/02/06 16:36:32 +0100 SHINYA-PC (null) MESSAGE Starting IP protection
2014/02/06 16:36:33 +0100 SHINYA-PC (null) MESSAGE IP Protection started successfully
2014/02/06 16:51:26 +0100 SHINYA-PC Shinya IP-BLOCK 80.82.70.142 (Type: outgoing, Port: 49696, Process: firefox.exe)
2014/02/06 16:51:26 +0100 SHINYA-PC Shinya IP-BLOCK 80.82.70.142 (Type: outgoing, Port: 49697, Process: firefox.exe)
2014/02/06 17:38:34 +0100 SHINYA-PC Shinya MESSAGE Executing scheduled update: Daily
2014/02/06 17:38:40 +0100 SHINYA-PC Shinya MESSAGE Scheduled update executed successfully: database updated from version v2014.02.06.01 to version v2014.02.06.06
2014/02/06 17:38:40 +0100 SHINYA-PC Shinya MESSAGE Starting database refresh
2014/02/06 17:38:40 +0100 SHINYA-PC Shinya MESSAGE Stopping IP protection
2014/02/06 17:38:41 +0100 SHINYA-PC Shinya MESSAGE IP Protection stopped successfully
2014/02/06 17:38:56 +0100 SHINYA-PC Shinya MESSAGE Database refreshed successfully
2014/02/06 17:38:56 +0100 SHINYA-PC Shinya MESSAGE Starting IP protection
2014/02/06 17:38:58 +0100 SHINYA-PC Shinya MESSAGE IP Protection started successfully
2014/02/06 17:57:08 +0100 SHINYA-PC Shinya DETECTION C:\Program Files (x86)\Bench\Updater\updater.exe PUP.Optional.AdwarePlugin QUARANTINE
2014/02/06 18:24:00 +0100 SHINYA-PC Shinya DETECTION c:\program files (x86)\bench\updater\updater.exe PUP.Optional.AdwarePlugin QUARANTINE
2014/02/06 18:24:00 +0100 SHINYA-PC Shinya ERROR Quarantine failed: SDKQuarantine failed with error code 2
2014/02/06 21:28:54 +0100 SHINYA-PC Shinya IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 61826, Process: firefox.exe)
2014/02/06 21:28:55 +0100 SHINYA-PC Shinya IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 61827, Process: firefox.exe)
2014/02/06 21:28:55 +0100 SHINYA-PC Shinya IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 61833, Process: firefox.exe)
2014/02/06 21:28:55 +0100 SHINYA-PC Shinya IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 61946, Process: firefox.exe)
2014/02/06 21:29:03 +0100 SHINYA-PC Shinya IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 62033, Process: firefox.exe)
2014/02/06 21:29:03 +0100 SHINYA-PC Shinya IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 62043, Process: firefox.exe)
2014/02/06 21:29:03 +0100 SHINYA-PC Shinya IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 62236, Process: firefox.exe)
2014/02/06 21:29:11 +0100 SHINYA-PC Shinya IP-BLOCK 193.169.104.1 (Type: outgoing, Port: 62343, Process: firefox.exe)
2014/02/06 21:57:02 +0100 SHINYA-PC Shinya DETECTION c:\program files (x86)\bench\updater\updater.exe PUP.Optional.AdwarePlugin QUARANTINE
2014/02/06 21:57:02 +0100 SHINYA-PC Shinya ERROR Quarantine failed: SDKQuarantine failed with error code 2
2014/02/06 22:24:04 +0100 SHINYA-PC Shinya DETECTION c:\program files (x86)\bench\updater\updater.exe PUP.Optional.AdwarePlugin QUARANTINE
2014/02/06 22:24:04 +0100 SHINYA-PC Shinya ERROR Quarantine failed: SDKQuarantine failed with error code 2
2014/02/06 22:28:26 +0100 SHINYA-PC Shinya MESSAGE Stopping protection
2014/02/06 22:28:26 +0100 SHINYA-PC Shinya MESSAGE Protection stopped successfully
2014/02/06 22:28:27 +0100 SHINYA-PC Shinya MESSAGE Stopping IP protection
2014/02/06 22:28:28 +0100 SHINYA-PC Shinya MESSAGE IP Protection stopped successfully
2014/02/06 22:28:47 +0100 SHINYA-PC Shinya MESSAGE Protection stopped

Scan ich allerdings mein System mit Malwarebytes findet er nichts,
da ich echt kein Plan habe was das sein könnte, hoffe ich ihr könnt mir Helfen habe noch die anderen Logs mit Angehangen.
Ich hoffe ich habe alles so richtig gemacht, hab davon wirklich keine Ahnung
Lg.

schrauber · 07.02.2014, 16:28

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Kyiru · 07.02.2014, 16:39

Oh okay das wusste ich nicht wie das geht.

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-02-2014
Ran by Shinya (administrator) on SHINYA-PC on 07-02-2014 13:58:43
Running from C:\Users\Shinya\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Scarlet.Crush Productions) C:\Users\Shinya\Desktop\ScpServer\bin\ScpService.exe
(Hi-Rez Studios) D:\HiPatchService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Windows\Rent\Update.exe
() C:\Windows\Rent\Rent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Sidebar\sidebar.exe
(Akamai Technologies, Inc.) C:\Users\Shinya\AppData\Local\Akamai\netsession_win.exe
(ZTE) C:\Program Files (x86)\congstar\Internetmanager\Bin\mcserver.exe
(Akamai Technologies, Inc.) C:\Users\Shinya\AppData\Local\Akamai\netsession_win.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
() C:\Program Files (x86)\congstar\Internetmanager\Bin\dbus-daemon.exe
() C:\Program Files (x86)\congstar\Internetmanager\Bin\gconfd-2.exe
() C:\Program Files (x86)\congstar\Internetmanager\Bin\db_daemon.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
(Mozilla Corporation) C:\Windows\SysWOW64\FF_BN_52019\App\Firefox\plugin-container.exe
(Mozilla Corporation) C:\Windows\SysWOW64\FF_BN_169948\App\Firefox\plugin-container.exe
(Mozilla Corporation) C:\Windows\SysWOW64\FF_BN_2223166\App\Firefox\plugin-container.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [XeroxEndeavorBackgroundTask] - C:\Windows\system32\xrWCbgnd.dll [58368 2009-07-14] (Xerox Corporation)
HKLM\...\Run: [ProfilerU] - C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-14] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [BambooCore] - C:\Program Files (x86)\Bamboo Dock\BambooCore.exe [646744 2012-10-16] ()
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [LWS] - C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\RunOnce: [Savings Wizard-repairJob] - wscript.exe "C:\Users\Shinya\AppData\Local\Savings Wizard\repair.js" "Savings Wizard-repairJob" [1846 2014-01-31] ()
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2474184755-3819140897-2423345240-1000\...\Run: [AdobeBridge] - [X]
HKU\S-1-5-21-2474184755-3819140897-2423345240-1000\...\Run: [Akamai NetSession Interface] - C:\Users\Shinya\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2474184755-3819140897-2423345240-1000\...\Run: [KPeerNexonEU] - C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe [438272 2013-05-13] (NEXON Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE835C7C49F05CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Savings Wizard BHO - {5682CA62-1A80-40AE-82A0-B67833CE75FF} - C:\Program Files (x86)\Savings Wizard\FrameworkBHO64.dll ()
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Savings Wizard BHO - {5682CA62-1A80-40AE-82A0-B67833CE75FF} - C:\Program Files (x86)\Savings Wizard\FrameworkBHO.dll ()
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 217.68.161.141 217.68.161.171
Tcpip\..\Interfaces\{01F917A0-9AD9-4DFD-9EE7-769B1FDC061B}: [NameServer]139.7.30.125 139.7.30.126
Tcpip\..\Interfaces\{8B46CB4C-BE57-4833-8FF2-C8BDCEB0A17F}: [NameServer]8.26.56.26,156.154.70.22

Chrome: 
=======
CHR Extension: (AdBlock) - C:\Users\Shinya\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-27]
CHR Extension: (Google Wallet) - C:\Users\Shinya\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-23] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 Ds3Service; C:\Users\Shinya\Desktop\ScpServer\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
U2 HiPatchService; D:\HiPatchService.exe [9216 2013-07-17] (Hi-Rez Studios)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 Rent Update; C:/Windows/Rent/Update.exe [1192960 2013-07-30] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [619904 2012-12-11] (Wacom Technology, Corp.)

==================== Drivers (Whitelisted) ====================

S3 2310_00; C:\Windows\system32\drivers\2310_00.sys [170528 2009-06-12] (HighPoint Technologies, Inc.)
S3 272x_1x; C:\Windows\system32\drivers\272x_1x.sys [612672 2012-04-24] (HighPoint Technologies, Inc.)
S3 274x_3x; C:\Windows\system32\drivers\274x_3x.sys [240960 2012-04-24] (HighPoint Technologies, Inc.)
S3 arcm_a64; C:\Windows\system32\drivers\arcm_a64.sys [52768 2009-11-09] (ARECA Technology Corporation)
S3 asahci64; C:\Windows\system32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-10-01] (AVG Technologies)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2009-12-15] (Bytemobile, Inc.)
S3 DC133; C:\Windows\system32\drivers\DC133.sys [39320 2011-05-02] (Dawicontrol GmbH)
S3 DC150; C:\Windows\system32\drivers\DC150.sys [39832 2011-05-02] (Dawicontrol GmbH)
S3 DC154; C:\Windows\system32\drivers\DC154.sys [48136 2011-05-02] (Dawicontrol GmbH)
S3 DC300e; C:\Windows\system32\drivers\DC300e.sys [40344 2011-05-02] (Dawicontrol GmbH)
S3 DC324e; C:\Windows\system32\drivers\DC324e.sys [49752 2011-05-02] (Dawicontrol GmbH)
R0 DC3410; C:\Windows\System32\drivers\DC3410.sys [48328 2011-05-02] (Dawicontrol GmbH)
S3 DC4300; C:\Windows\system32\drivers\DC4300.sys [48360 2011-05-02] (Dawicontrol GmbH)
S3 DC600e; C:\Windows\system32\drivers\DC600e.sys [40744 2011-05-02] (Dawicontrol GmbH)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-02-01] (DT Soft Ltd)
S3 hptiop; C:\Windows\system32\drivers\hptiop.sys [17440 2009-05-25] (HighPoint Technologies, Inc.)
S3 hptmv; C:\Windows\system32\drivers\hptmv.sys [93472 2006-09-18] (HighPoint Technologies, Inc.)
S3 hptmv6; C:\Windows\system32\drivers\hptmv6.sys [152096 2007-11-01] (HighPoint Technologies, Inc.)
S3 HSPADataCardusbmdm; C:\Windows\System32\DRIVERS\HSPADataCardusbmdm.sys [122752 2010-02-11] (HSPADataCard Incorporated)
S3 HSPADataCardusbnmea; C:\Windows\System32\DRIVERS\HSPADataCardusbnmea.sys [122752 2010-02-11] (HSPADataCard Incorporated)
S3 HSPADataCardusbser; C:\Windows\System32\DRIVERS\HSPADataCardusbser.sys [122752 2010-02-11] (HSPADataCard Incorporated)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [26072 2012-06-29] (Intel Corporation)
S3 iaStorS; C:\Windows\system32\drivers\iaStorS.sys [651224 2012-06-29] (Intel Corporation)
S3 iteatapi; C:\Windows\system32\drivers\iteatapi.sys [38680 2008-05-14] (ITE Tech. Inc.)
S3 iteraid; C:\Windows\system32\drivers\iteraid.sys [32768 2007-05-02] (ITE Tech. Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 megasas2; C:\Windows\system32\drivers\megasas2.sys [51496 2012-02-28] (LSI Corporation)
S3 megasr1; C:\Windows\system32\drivers\MegaSR1.sys [461320 2009-04-16] (LSI Corporation, Inc.)
S3 Mkd2Nadr; C:\Windows\System32\drivers\Mkd2Nadr.sys [106040 2009-03-12] (AhnLab, Inc.)
S3 Mkd3kfNt; C:\Windows\System32\drivers\Mkd3kfNt.sys [180280 2009-08-18] (AhnLab, Inc.)
S3 mv61xx; C:\Windows\system32\drivers\mv61xx.sys [182576 2011-05-06] (Marvell Semiconductor, Inc.)
S3 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [175720 2010-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 Pnp680; C:\Windows\system32\drivers\pnp680.sys [80424 2007-11-13] (Silicon Image, Inc)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
S3 rr172x; C:\Windows\system32\drivers\rr172x.sys [124448 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr174x; C:\Windows\system32\drivers\rr174x.sys [159264 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr2210; C:\Windows\system32\drivers\rr2210.sys [153632 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr232x; C:\Windows\system32\drivers\rr232x.sys [152096 2008-05-05] (HighPoint Technologies, Inc.)
S3 rr2340; C:\Windows\system32\drivers\rr2340.sys [162400 2009-12-31] (HighPoint Technologies, Inc.)
S3 rr2522; C:\Windows\system32\drivers\rr2522.sys [168032 2009-12-31] (HighPoint Technologies, Inc.)
S3 rr276x; C:\Windows\system32\drivers\rr276x.sys [241472 2012-04-24] (HighPoint Technologies, Inc.)
S3 rr278x; C:\Windows\system32\drivers\rr278x.sys [240960 2012-04-24] (HighPoint Technologies, Inc.)
S3 rr62x; C:\Windows\system32\drivers\rr62x.sys [156256 2010-06-16] (HighPoint Technologies, Inc.)
R3 SaiK1703; C:\Windows\System32\DRIVERS\SaiK1703.sys [180544 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1703; C:\Windows\System32\DRIVERS\SaiU1703.sys [47168 2012-09-20] (Saitek)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 SI3112r; C:\Windows\system32\drivers\SI3112r.sys [164656 2007-02-01] (Silicon Image, Inc)
S3 SI3114; C:\Windows\system32\drivers\SI3114.sys [99120 2006-11-10] (Silicon Image, Inc.)
S3 SI3114r; C:\Windows\system32\drivers\SI3114R.sys [163632 2007-04-11] (Silicon Image, Inc)
S3 SI3124; C:\Windows\system32\drivers\SI3124.sys [113456 2006-11-02] (Silicon Image, Inc.)
S3 Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [334640 2006-09-20] (Silicon Image, Inc)
S3 SI3132; C:\Windows\system32\drivers\SI3132.sys [90664 2007-10-03] (Silicon Image, Inc)
S3 Si3531; C:\Windows\system32\drivers\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\drivers\SiWinAcc.sys [22056 2007-10-03] (Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\drivers\SiRemFil.sys [17448 2007-10-03] (Silicon Image, Inc)
S3 slb; C:\AeriaGames\ScarletBlade\avital\scarlb64.sys [81880 2013-03-18] ()
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-02-07] ()
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2009-12-15] (Bytemobile, Inc.)
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2009-09-30] (C-Media Electronics Inc)
S3 viamrx64; C:\Windows\system32\drivers\viamrx64.sys [161904 2010-12-02] (VIA Technologies Inc.,Ltd)
S3 videX64; C:\Windows\system32\drivers\videX64.sys [15000 2010-02-11] (VIA Technologies, Inc.)
R0 xfiltx64; C:\Windows\System32\drivers\xfiltx64.sys [26776 2010-02-11] (VIA Technologies, Inc.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-07 13:59 - 2014-02-07 13:59 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_3112860
2014-02-07 13:58 - 2014-02-07 14:00 - 00019214 _____ () C:\Users\Shinya\Downloads\FRST.txt
2014-02-07 13:58 - 2014-02-07 13:58 - 00000000 ____D () C:\FRST
2014-02-07 13:57 - 2014-02-07 13:58 - 02079744 _____ (Farbar) C:\Users\Shinya\Downloads\FRST64.exe
2014-02-07 12:00 - 2014-02-07 12:01 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_2223166
2014-02-07 10:55 - 2014-02-07 11:02 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_169948
2014-02-07 09:31 - 2014-02-07 09:40 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_815801
2014-02-07 09:00 - 2014-02-07 09:06 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_52019
2014-02-07 08:09 - 2014-02-07 08:09 - 00000000 ____D () C:\Windows\system32\%LocalAppData%
2014-02-07 03:01 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-07 03:01 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-07 03:00 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-07 03:00 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-07 03:00 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-07 03:00 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-07 03:00 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-07 03:00 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-07 03:00 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-07 03:00 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-07 03:00 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-07 03:00 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-07 03:00 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-07 03:00 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-07 03:00 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-07 03:00 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-07 03:00 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-07 03:00 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-07 03:00 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-07 03:00 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-07 03:00 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-07 03:00 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-07 03:00 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-07 03:00 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-07 03:00 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-07 03:00 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-07 03:00 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-07 03:00 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-07 03:00 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-07 03:00 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-07 03:00 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 22:32 - 2014-02-06 22:32 - 00003507 _____ () C:\Windows\setup_mkd25.log
2014-02-06 10:02 - 2014-02-07 03:19 - 00000504 _____ () C:\Windows\setupact.log
2014-02-06 10:02 - 2014-02-07 03:18 - 00002310 _____ () C:\Windows\PFRO.log
2014-02-06 10:02 - 2014-02-06 10:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-06 09:44 - 2014-02-06 09:44 - 00003214 _____ () C:\Windows\System32\Tasks\{5DDE942A-B079-43E3-B3A4-03837D28DE47}
2014-02-06 09:40 - 2014-02-06 09:40 - 00000074 _____ () C:\extensions.ini
2014-02-06 09:40 - 2014-02-06 09:40 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2014-02-06 09:40 - 2014-02-06 09:40 - 00000000 _____ () C:\extensions.sqlite
2014-02-06 09:39 - 2014-02-07 13:57 - 00000346 _____ () C:\Windows\Tasks\bench-S-1-5-21-2474184755-3819140897-2423345240-1000.job
2014-02-06 09:39 - 2014-02-07 12:57 - 00000382 _____ () C:\Windows\Tasks\AmiUpdXp.job
2014-02-06 09:39 - 2014-02-07 10:24 - 00000346 _____ () C:\Windows\Tasks\bench-sys.job
2014-02-06 09:39 - 2014-02-06 22:43 - 00000000 ____D () C:\Program Files (x86)\AmiExt
2014-02-06 09:39 - 2014-02-06 09:39 - 00003404 _____ () C:\Windows\System32\Tasks\AmiUpdXp
2014-02-06 09:39 - 2014-02-06 09:39 - 00003242 _____ () C:\Windows\System32\Tasks\bench-sys
2014-02-06 09:39 - 2014-02-06 09:39 - 00003222 _____ () C:\Windows\System32\Tasks\bench-S-1-5-21-2474184755-3819140897-2423345240-1000
2014-02-06 09:39 - 2014-02-06 09:39 - 00000860 __RSH () C:\ProgramData\ntuser.pol
2014-02-06 09:39 - 2014-02-06 09:39 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Savings Wizard
2014-02-06 09:39 - 2014-02-06 09:39 - 00000000 ____D () C:\Users\Shinya\AppData\Local\BenchUpdater
2014-02-06 09:39 - 2014-02-06 09:39 - 00000000 ____D () C:\Program Files (x86)\Savings Wizard
2014-02-06 09:38 - 2014-02-06 09:38 - 00339496 _____ () C:\Users\Shinya\Downloads\Setup__4298_il153.exe
2014-02-06 05:00 - 2014-02-06 05:00 - 00001154 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-06 05:00 - 2014-02-06 05:00 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Malwarebytes
2014-02-06 05:00 - 2014-02-06 05:00 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-06 05:00 - 2014-02-06 05:00 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-06 05:00 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-06 04:59 - 2014-02-06 04:59 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Shinya\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-06 04:13 - 2014-02-06 04:13 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-02-06 04:13 - 2014-02-06 04:13 - 00000863 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-06 04:13 - 2014-02-06 04:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-06 04:12 - 2014-02-06 04:12 - 04721920 _____ (Piriform Ltd) C:\Users\Shinya\Downloads\ccsetup410.exe
2014-02-06 03:38 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-02-06 03:38 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-02-06 03:38 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-02-06 03:38 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-02-06 03:36 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-02-06 03:31 - 2014-02-06 03:31 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-02-06 03:31 - 2014-02-06 03:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-06 03:31 - 2014-02-06 03:31 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-06 03:31 - 2014-02-06 03:31 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-02-06 03:31 - 2014-02-06 03:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-06 03:31 - 2014-02-06 03:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-02-06 03:31 - 2014-02-06 03:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-02-06 03:02 - 2014-02-06 03:04 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-06 01:47 - 2014-02-06 01:47 - 00001392 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-02-06 01:47 - 2014-02-06 01:47 - 00000000 ____D () C:\Users\Shinya\AppData\Local\NVIDIA Corporation
2014-02-06 01:46 - 2014-02-06 01:47 - 00000000 ____D () C:\Users\Shinya\AppData\Local\NVIDIA
2014-02-06 01:46 - 2014-02-06 01:46 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-06 01:46 - 2013-12-10 03:15 - 00982232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-02-06 01:46 - 2013-12-10 03:14 - 01100248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 15230352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-06 01:40 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 02698272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-02-06 01:40 - 2013-12-19 21:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-02-06 01:40 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-02-06 01:40 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-02-06 01:40 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-02-06 01:40 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-02-06 01:40 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-02-06 01:08 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-06 01:08 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-06 01:08 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-06 01:08 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-06 01:08 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-02-06 01:08 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-02-06 01:08 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-06 01:08 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-02-06 01:08 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-02-06 01:08 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-02-06 01:08 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-06 01:08 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-02-06 01:08 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-02-06 01:08 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-02-06 01:08 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-02-06 01:08 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-02-06 01:08 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-02-06 01:08 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-02-06 01:08 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-02-06 01:08 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-02-06 01:08 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-02-06 01:08 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-02-06 01:08 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-02-06 01:08 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-02-06 01:08 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-02-06 01:08 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-02-06 01:08 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-02-06 01:08 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-02-06 01:08 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-02-06 01:08 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-02-06 01:08 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-02-06 01:08 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-02-06 01:08 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-02-06 01:08 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-02-06 01:08 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-02-06 01:08 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-02-06 01:08 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-02-06 01:08 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-02-06 01:08 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-02-06 01:08 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-02-06 01:08 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-02-06 01:08 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-02-06 01:08 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-02-06 01:08 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-06 01:08 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-02-06 01:08 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-02-06 01:08 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-02-06 01:08 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-02-06 01:08 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-02-06 01:08 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-02-06 01:08 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-02-06 01:08 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-02-06 01:08 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-02-06 01:08 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-02-06 01:08 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-02-06 01:08 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-02-06 01:08 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-02-06 01:08 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-02-06 01:08 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-02-06 01:08 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-02-06 01:08 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-02-06 01:08 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-02-06 01:08 - 2013-08-02 03:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-02-06 01:08 - 2013-08-02 03:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-02-06 01:08 - 2013-08-02 03:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-02-06 01:08 - 2013-08-02 02:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 02:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-02-06 01:08 - 2013-08-02 01:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-02-06 01:08 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-02-06 01:08 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-02-06 01:08 - 2013-07-26 03:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-02-06 01:08 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-06 01:08 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-02-06 01:08 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-02-06 01:08 - 2013-07-25 10:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-02-06 01:08 - 2013-07-25 09:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-02-06 01:08 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-06 01:08 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-02-06 01:08 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-02-06 01:08 - 2013-07-12 11:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2014-02-06 01:08 - 2013-07-09 06:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-02-06 01:08 - 2013-07-09 06:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-02-06 01:08 - 2013-07-09 06:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-02-06 01:08 - 2013-07-09 06:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-02-06 01:08 - 2013-07-09 05:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-02-06 01:08 - 2013-07-09 05:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-02-06 01:08 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-02-06 01:08 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-02-06 01:08 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-02-06 01:08 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-02-06 01:08 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-02-06 01:08 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-02-06 01:08 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-02-06 01:08 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-02-06 01:08 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-02-06 01:08 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-02-06 01:08 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-02-06 01:08 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-02-06 01:08 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-02-06 01:08 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-02-06 01:08 - 2013-06-15 05:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-02-06 01:08 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-02-06 01:08 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-02-06 01:08 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-02-06 01:08 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-02-06 01:08 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-02-06 01:08 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-02-06 01:08 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-02-06 01:08 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-02-06 01:08 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-02-06 01:08 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-02-06 01:08 - 2013-06-04 07:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-02-06 01:08 - 2013-06-04 05:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-02-06 01:07 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-02-06 01:07 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-02-06 01:07 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-02-06 01:07 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-02-06 01:07 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-02-06 01:07 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-02-06 01:07 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-02-06 01:07 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-02-06 01:07 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-02-06 01:07 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-02-06 01:07 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-02-06 01:07 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-02-06 01:07 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-02-06 01:07 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-02-06 01:07 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-06 01:07 - 2013-04-10 00:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-02-06 01:07 - 2013-04-02 23:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-02-05 23:49 - 2014-02-06 05:58 - 00000000 ____D () C:\HospitalTycoon
2014-02-05 23:49 - 2014-02-05 23:49 - 00000000 ___HD () C:\Windows\SysWOW64\FF
2014-02-05 23:35 - 2014-02-05 23:35 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Avira
2014-02-05 23:35 - 2014-02-05 23:35 - 00000000 ____D () C:\ProgramData\Avira
2014-02-05 23:35 - 2014-02-05 23:35 - 00000000 ____D () C:\ProgramData\APN
2014-02-05 23:35 - 2014-02-05 23:35 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-05 23:35 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-05 23:35 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-05 23:35 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-05 23:35 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-05 23:27 - 2014-02-05 23:28 - 129598176 _____ () C:\Users\Shinya\Downloads\avira_free344_antivirus_de.exe
2014-02-05 16:57 - 2014-02-05 16:58 - 00000000 ____D () C:\Users\Shinya\Documents\RCT3
2014-02-05 16:57 - 2014-02-05 16:57 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Atari
2014-02-05 15:56 - 2014-02-05 15:56 - 00000000 ____D () C:\Users\Shinya\AppData\Local\DOSBox
2014-02-05 15:55 - 2014-02-05 16:21 - 00000000 ____D () C:\Program Files (x86)\DOSBox-0.74
2014-02-05 15:55 - 2014-02-05 15:55 - 01448809 _____ (DOSBox Team) C:\Users\Shinya\Downloads\DOSBox0.74-win32-installer.exe
2014-02-05 15:55 - 2014-02-05 15:55 - 00032934 _____ () C:\Users\Shinya\Downloads\DOSBox-german-lang-0.74.zip
2014-02-05 15:48 - 2014-02-05 15:48 - 00000212 _____ () C:\Users\Shinya\Desktop\RollerCoaster Tycoon 3 Platinum!.url
2014-02-05 11:06 - 2014-02-05 11:06 - 05556104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-02-05 10:34 - 2014-02-05 10:34 - 00000222 _____ () C:\Users\Shinya\Desktop\Starbound.url
2014-02-05 02:14 - 2014-02-05 02:14 - 00000287 _____ () C:\Users\Shinya\Downloads\application-octet-stream-attachment (1)
2014-02-04 05:34 - 2014-02-04 05:34 - 00000287 _____ () C:\Users\Shinya\Downloads\application-octet-stream-attachment
2014-01-31 02:37 - 2014-02-04 20:43 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Game Dev Tycoon - Steam
2014-01-31 02:36 - 2014-01-31 02:36 - 00000222 _____ () C:\Users\Shinya\Desktop\Game Dev Tycoon.url
2014-01-31 01:17 - 2014-01-31 01:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2014-01-31 01:11 - 2014-01-31 01:11 - 00000000 ____D () C:\Users\Shinya\Desktop\ScpServer
2014-01-31 01:11 - 2013-05-05 22:32 - 00039168 _____ (Scarlet.Crush Productions) C:\Windows\system32\Drivers\ScpVBus.sys
2014-01-31 01:11 - 2013-01-07 15:56 - 01002728 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2014-01-31 00:37 - 2014-01-31 02:03 - 00014441 _____ () C:\Users\Shinya\Documents\TombRaider.log
2014-01-29 21:37 - 2014-01-29 21:37 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-01-27 21:47 - 2014-01-27 21:47 - 21079442 _____ () C:\Users\Shinya\Downloads\brushes_for_photoshop_cs5_by_felicemelancholie-d54ah9r.zip
2014-01-22 20:47 - 2014-01-22 21:46 - 00000000 ____D () C:\Users\Shinya\Documents\InfiniteCrisis
2014-01-22 20:47 - 2014-01-22 20:48 - 00000000 ____D () C:\Users\Shinya\AppData\Local\InfiniteCrisis
2014-01-22 19:20 - 2014-01-30 03:28 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Turbine
2014-01-22 19:15 - 2014-01-29 20:56 - 00000000 ____D () C:\Program Files (x86)\InfiniteCrisis
2014-01-22 19:15 - 2014-01-22 19:15 - 00001129 _____ () C:\Users\Public\Desktop\InfiniteCrisis.lnk
2014-01-22 19:15 - 2014-01-22 19:15 - 00000000 ____D () C:\ProgramData\Turbine
2014-01-22 19:01 - 2014-01-22 19:12 - 138644080 _____ () C:\Users\Shinya\Downloads\InfiniteCrisis-GLOBAL_Setup.exe
2014-01-16 04:00 - 2014-01-16 04:00 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Blizzard
2014-01-15 02:50 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-15 02:50 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-15 02:50 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-15 02:50 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-15 02:49 - 2014-01-15 02:50 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-13 14:22 - 2014-01-18 07:48 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-01-13 14:22 - 2014-01-13 14:22 - 00001202 _____ () C:\Users\Public\Desktop\Hearthstone.lnk
2014-01-10 11:19 - 2014-01-10 11:19 - 00000000 ____D () C:\Users\Shinya\Documents\Elder Scrolls Online
2014-01-10 11:19 - 2014-01-10 11:19 - 00000000 ____D () C:\ProgramData\Elder Scrolls Online

==================== One Month Modified Files and Folders =======

2014-02-07 14:00 - 2014-02-07 13:58 - 00019214 _____ () C:\Users\Shinya\Downloads\FRST.txt
2014-02-07 13:59 - 2014-02-07 13:59 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_3112860
2014-02-07 13:58 - 2014-02-07 13:58 - 00000000 ____D () C:\FRST
2014-02-07 13:58 - 2014-02-07 13:57 - 02079744 _____ (Farbar) C:\Users\Shinya\Downloads\FRST64.exe
2014-02-07 13:57 - 2014-02-06 09:39 - 00000346 _____ () C:\Windows\Tasks\bench-S-1-5-21-2474184755-3819140897-2423345240-1000.job
2014-02-07 13:46 - 2013-01-31 12:12 - 01174025 _____ () C:\Windows\WindowsUpdate.log
2014-02-07 13:40 - 2013-01-31 18:04 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-07 13:06 - 2013-02-11 14:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-07 12:57 - 2014-02-06 09:39 - 00000382 _____ () C:\Windows\Tasks\AmiUpdXp.job
2014-02-07 12:01 - 2014-02-07 12:00 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_2223166
2014-02-07 12:01 - 2013-04-05 19:02 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-07 11:47 - 2013-03-24 13:21 - 00000000 ____D () C:\Users\Shinya\AppData\Local\PMB Files
2014-02-07 11:47 - 2013-03-24 13:21 - 00000000 ____D () C:\ProgramData\PMB Files
2014-02-07 11:02 - 2014-02-07 10:55 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_169948
2014-02-07 10:24 - 2014-02-06 09:39 - 00000346 _____ () C:\Windows\Tasks\bench-sys.job
2014-02-07 09:40 - 2014-02-07 09:31 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_815801
2014-02-07 09:06 - 2014-02-07 09:00 - 00000000 ___HD () C:\Windows\SysWOW64\FF_BN_52019
2014-02-07 08:13 - 2013-02-05 02:25 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Skype
2014-02-07 08:09 - 2014-02-07 08:09 - 00000000 ____D () C:\Windows\system32\%LocalAppData%
2014-02-07 08:09 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-07 08:03 - 2013-12-12 10:07 - 00016152 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
2014-02-07 08:03 - 2013-12-12 10:07 - 00002840 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup
2014-02-07 08:03 - 2013-12-12 10:07 - 00000412 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
2014-02-07 08:03 - 2013-01-31 18:04 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-07 03:26 - 2009-07-14 05:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-07 03:26 - 2009-07-14 05:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-07 03:19 - 2014-02-06 10:02 - 00000504 _____ () C:\Windows\setupact.log
2014-02-07 03:19 - 2013-01-31 18:01 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-07 03:19 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-07 03:18 - 2014-02-06 10:02 - 00002310 _____ () C:\Windows\PFRO.log
2014-02-07 02:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-07 02:00 - 2013-02-01 01:25 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Adobe
2014-02-06 22:43 - 2014-02-06 09:39 - 00000000 ____D () C:\Program Files (x86)\AmiExt
2014-02-06 22:39 - 2013-01-31 17:14 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-06 22:32 - 2014-02-06 22:32 - 00003507 _____ () C:\Windows\setup_mkd25.log
2014-02-06 22:32 - 2013-03-18 01:21 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2014-02-06 10:02 - 2014-02-06 10:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-06 09:44 - 2014-02-06 09:44 - 00003214 _____ () C:\Windows\System32\Tasks\{5DDE942A-B079-43E3-B3A4-03837D28DE47}
2014-02-06 09:40 - 2014-02-06 09:40 - 00000074 _____ () C:\extensions.ini
2014-02-06 09:40 - 2014-02-06 09:40 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2014-02-06 09:40 - 2014-02-06 09:40 - 00000000 _____ () C:\extensions.sqlite
2014-02-06 09:39 - 2014-02-06 09:39 - 00003404 _____ () C:\Windows\System32\Tasks\AmiUpdXp
2014-02-06 09:39 - 2014-02-06 09:39 - 00003242 _____ () C:\Windows\System32\Tasks\bench-sys
2014-02-06 09:39 - 2014-02-06 09:39 - 00003222 _____ () C:\Windows\System32\Tasks\bench-S-1-5-21-2474184755-3819140897-2423345240-1000
2014-02-06 09:39 - 2014-02-06 09:39 - 00000860 __RSH () C:\ProgramData\ntuser.pol
2014-02-06 09:39 - 2014-02-06 09:39 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Savings Wizard
2014-02-06 09:39 - 2014-02-06 09:39 - 00000000 ____D () C:\Users\Shinya\AppData\Local\BenchUpdater
2014-02-06 09:39 - 2014-02-06 09:39 - 00000000 ____D () C:\Program Files (x86)\Savings Wizard
2014-02-06 09:39 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-06 09:39 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-06 09:38 - 2014-02-06 09:38 - 00339496 _____ () C:\Users\Shinya\Downloads\Setup__4298_il153.exe
2014-02-06 05:58 - 2014-02-05 23:49 - 00000000 ____D () C:\HospitalTycoon
2014-02-06 05:00 - 2014-02-06 05:00 - 00001154 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-06 05:00 - 2014-02-06 05:00 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Malwarebytes
2014-02-06 05:00 - 2014-02-06 05:00 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-06 05:00 - 2014-02-06 05:00 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-06 04:59 - 2014-02-06 04:59 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Shinya\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-06 04:21 - 2013-10-26 18:18 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\TS3Client
2014-02-06 04:20 - 2013-01-31 21:08 - 00000000 ____D () C:\Windows\Panther
2014-02-06 04:13 - 2014-02-06 04:13 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-02-06 04:13 - 2014-02-06 04:13 - 00000863 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-06 04:13 - 2014-02-06 04:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-06 04:12 - 2014-02-06 04:12 - 04721920 _____ (Piriform Ltd) C:\Users\Shinya\Downloads\ccsetup410.exe
2014-02-06 03:54 - 2013-02-28 23:13 - 00000000 ____D () C:\Users\Shinya\Desktop\inspiration
2014-02-06 03:52 - 2013-03-17 05:00 - 00000000 ____D () C:\Users\Shinya\Desktop\wip
2014-02-06 03:52 - 2013-01-31 17:32 - 00696932 _____ () C:\Windows\system32\perfh007.dat
2014-02-06 03:52 - 2013-01-31 17:32 - 00148900 _____ () C:\Windows\system32\perfc007.dat
2014-02-06 03:52 - 2009-07-14 06:13 - 01619284 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-06 03:52 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-02-06 03:51 - 2013-01-31 12:46 - 00000000 ___RD () C:\Users\Shinya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-06 03:51 - 2013-01-31 12:46 - 00000000 ___RD () C:\Users\Shinya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-06 03:45 - 2009-07-14 05:45 - 06530368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-06 03:44 - 2013-01-31 18:28 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-06 03:44 - 2013-01-31 18:28 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-02-06 03:42 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-06 03:42 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-02-06 03:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-02-06 03:41 - 2011-04-12 09:28 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-06 03:40 - 2013-01-31 12:44 - 01589456 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-06 03:31 - 2014-02-06 03:31 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-02-06 03:31 - 2014-02-06 03:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-06 03:31 - 2014-02-06 03:31 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-06 03:31 - 2014-02-06 03:31 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-02-06 03:31 - 2014-02-06 03:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-06 03:31 - 2014-02-06 03:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-02-06 03:31 - 2014-02-06 03:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-02-06 03:31 - 2014-02-06 03:31 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-06 03:31 - 2014-02-06 03:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-02-06 03:04 - 2014-02-06 03:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-06 01:47 - 2014-02-06 01:47 - 00001392 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-02-06 01:47 - 2014-02-06 01:47 - 00000000 ____D () C:\Users\Shinya\AppData\Local\NVIDIA Corporation
2014-02-06 01:47 - 2014-02-06 01:46 - 00000000 ____D () C:\Users\Shinya\AppData\Local\NVIDIA
2014-02-06 01:47 - 2013-01-31 17:21 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-06 01:46 - 2014-02-06 01:46 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-06 01:46 - 2013-01-31 17:21 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-06 01:46 - 2013-01-31 17:20 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-05 23:49 - 2014-02-05 23:49 - 00000000 ___HD () C:\Windows\SysWOW64\FF
2014-02-05 23:47 - 2013-07-30 18:37 - 00139264 _____ () C:\Windows\SysWOW64\r_unzip.exe
2014-02-05 23:42 - 2013-02-01 01:16 - 00000000 ____D () C:\ProgramData\Comodo
2014-02-05 23:40 - 2013-02-01 01:17 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
2014-02-05 23:35 - 2014-02-05 23:35 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Avira
2014-02-05 23:35 - 2014-02-05 23:35 - 00000000 ____D () C:\ProgramData\Avira
2014-02-05 23:35 - 2014-02-05 23:35 - 00000000 ____D () C:\ProgramData\APN
2014-02-05 23:35 - 2014-02-05 23:35 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-05 23:28 - 2014-02-05 23:27 - 129598176 _____ () C:\Users\Shinya\Downloads\avira_free344_antivirus_de.exe
2014-02-05 23:15 - 2013-02-01 01:16 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-02-05 16:59 - 2013-02-27 19:00 - 02241024 ___SH () C:\Users\Shinya\Desktop\Thumbs.db
2014-02-05 16:58 - 2014-02-05 16:57 - 00000000 ____D () C:\Users\Shinya\Documents\RCT3
2014-02-05 16:57 - 2014-02-05 16:57 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Atari
2014-02-05 16:52 - 2013-04-05 19:21 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-02-05 16:21 - 2014-02-05 15:55 - 00000000 ____D () C:\Program Files (x86)\DOSBox-0.74
2014-02-05 15:56 - 2014-02-05 15:56 - 00000000 ____D () C:\Users\Shinya\AppData\Local\DOSBox
2014-02-05 15:55 - 2014-02-05 15:55 - 01448809 _____ (DOSBox Team) C:\Users\Shinya\Downloads\DOSBox0.74-win32-installer.exe
2014-02-05 15:55 - 2014-02-05 15:55 - 00032934 _____ () C:\Users\Shinya\Downloads\DOSBox-german-lang-0.74.zip
2014-02-05 15:48 - 2014-02-05 15:48 - 00000212 _____ () C:\Users\Shinya\Desktop\RollerCoaster Tycoon 3 Platinum!.url
2014-02-05 11:06 - 2014-02-05 11:06 - 05556104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-02-05 11:06 - 2013-02-11 14:13 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 11:06 - 2013-02-11 14:13 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 11:06 - 2013-02-11 14:13 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-05 10:34 - 2014-02-05 10:34 - 00000222 _____ () C:\Users\Shinya\Desktop\Starbound.url
2014-02-05 02:14 - 2014-02-05 02:14 - 00000287 _____ () C:\Users\Shinya\Downloads\application-octet-stream-attachment (1)
2014-02-04 22:28 - 2013-03-08 20:52 - 00000000 ____D () C:\Users\Shinya\Desktop\PaintToolSAI
2014-02-04 20:43 - 2014-01-31 02:37 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Game Dev Tycoon - Steam
2014-02-04 05:34 - 2014-02-04 05:34 - 00000287 _____ () C:\Users\Shinya\Downloads\application-octet-stream-attachment
2014-02-02 00:39 - 2013-02-28 23:14 - 00000000 ____D () C:\Users\Shinya\Desktop\me
2014-01-31 02:36 - 2014-01-31 02:36 - 00000222 _____ () C:\Users\Shinya\Desktop\Game Dev Tycoon.url
2014-01-31 02:03 - 2014-01-31 00:37 - 00014441 _____ () C:\Users\Shinya\Documents\TombRaider.log
2014-01-31 01:17 - 2014-01-31 01:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2014-01-31 01:11 - 2014-01-31 01:11 - 00000000 ____D () C:\Users\Shinya\Desktop\ScpServer
2014-01-30 03:28 - 2014-01-22 19:20 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Turbine
2014-01-29 21:37 - 2014-01-29 21:37 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-01-29 21:37 - 2013-02-01 01:25 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Adobe
2014-01-29 20:56 - 2014-01-22 19:15 - 00000000 ____D () C:\Program Files (x86)\InfiniteCrisis
2014-01-27 21:47 - 2014-01-27 21:47 - 21079442 _____ () C:\Users\Shinya\Downloads\brushes_for_photoshop_cs5_by_felicemelancholie-d54ah9r.zip
2014-01-22 21:46 - 2014-01-22 20:47 - 00000000 ____D () C:\Users\Shinya\Documents\InfiniteCrisis
2014-01-22 20:48 - 2014-01-22 20:47 - 00000000 ____D () C:\Users\Shinya\AppData\Local\InfiniteCrisis
2014-01-22 19:15 - 2014-01-22 19:15 - 00001129 _____ () C:\Users\Public\Desktop\InfiniteCrisis.lnk
2014-01-22 19:15 - 2014-01-22 19:15 - 00000000 ____D () C:\ProgramData\Turbine
2014-01-22 19:12 - 2014-01-22 19:01 - 138644080 _____ () C:\Users\Shinya\Downloads\InfiniteCrisis-GLOBAL_Setup.exe
2014-01-22 18:26 - 2014-01-03 00:29 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Battle.net
2014-01-18 07:48 - 2014-01-13 14:22 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-01-17 01:05 - 2014-01-03 00:29 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-01-16 09:59 - 2010-11-21 04:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-16 04:00 - 2014-01-16 04:00 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Blizzard
2014-01-15 22:53 - 2013-05-02 16:46 - 00000000 ____D () C:\Users\Shinya\AppData\Local\Spotify
2014-01-15 22:47 - 2013-05-03 11:38 - 00000000 ____D () C:\ProgramData\Package Cache
2014-01-15 22:47 - 2013-03-24 14:50 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eFusion
2014-01-15 02:50 - 2014-01-15 02:49 - 00005175 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-15 02:50 - 2013-10-22 12:37 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-15 02:50 - 2013-06-24 14:50 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-13 14:22 - 2014-01-13 14:22 - 00001202 _____ () C:\Users\Public\Desktop\Hearthstone.lnk
2014-01-12 15:12 - 2013-07-21 18:44 - 00000000 ____D () C:\Users\Shinya\AppData\Roaming\Awesomium
2014-01-10 19:25 - 2013-12-17 15:58 - 00002019 _____ () C:\Users\Shinya\Desktop\Corel Painter X3.lnk
2014-01-10 11:19 - 2014-01-10 11:19 - 00000000 ____D () C:\Users\Shinya\Documents\Elder Scrolls Online
2014-01-10 11:19 - 2014-01-10 11:19 - 00000000 ____D () C:\ProgramData\Elder Scrolls Online

Some content of TEMP:
====================
C:\Users\Shinya\AppData\Local\Temp\avgnt.exe
C:\Users\Shinya\AppData\Local\Temp\nvStInst.exe
C:\Users\Shinya\AppData\Local\Temp\Offercast_AVIRAV7_.exe
C:\Users\Shinya\AppData\Local\Temp\ZEBundle.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-04 07:01

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

Kyiru · 07.02.2014, 16:43

Additional:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-02-2014
Ran by Shinya at 2014-02-07 14:00:38
Running from C:\Users\Shinya\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

7-Zip 9.20 (x32 Version:  - )
ÃÀÍ¼¿´¿´ 2.2.7 (HKCU Version: 2.2.7 - Meitu, Inc.)
Adobe AIR (x32 Version: 3.9.0.1210 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1210 - Adobe Systems Incorporated) Hidden
Adobe Download Assistant (x32 Version: 1.2.5 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.5 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (x32 Version: 13.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (x32 Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.02) - Deutsch (x32 Version: 11.0.02 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU Version:  - Akamai Technologies, Inc)
APB Reloaded (x32 Version:  - Reloaded Productions)
Archeblade (x32 Version:  - CodeBrush Games)
ArtRage Studio Pro (x32 Version: 3.5.4 - Ambient Design)
Asmedia ASM104x USB 3.0 Host Controller Driver (x32 Version: 1.12.5.0 - Asmedia Technology)
Assassin's Creed(R) III v1.03 (x32 Version: 1.03 - Ubisoft)
Avira Free Antivirus (x32 Version: 14.0.2.286 - Avira)
Bamboo Dock (x32 Version: 4.1 - Wacom Co., Ltd.)
Bamboo Dock (x32 Version: 4.1.0 - Wacom Europe GmbH) Hidden
Battle.net (x32 Version:  - Blizzard Entertainment)
BitTorrent (x32 Version: 7.8.0.29112 - BitTorrent Inc.)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
CCleaner (Version: 4.10 - Piriform)
congstar Internet-Manager (x32 Version: 1.0.0.4 - )
Corel Painter 12 - IPM (Version: 12.4 - Corel Corporation) Hidden
Corel Painter 12 (Version: 12.2.1.1212 - Corel Corporation)
Corel Painter 13 - IPM (Version: 13.1 - Corel Corporation) Hidden
Corel Painter 13 - IPM Content (Version: 13.1 - Corel Corporation) Hidden
Corel Painter X3 (Version: 13.0.1.920 - Corel Corporation)
DAEMON Tools Lite (x32 Version: 4.46.1.0327 - DT Soft Ltd)
DELETER CGillust 4.5.09e Plus (x32 Version: 4.50.9000 - S.E Inc)
Deus Ex: Human Revolution (x32 Version:  - Eidos Montreal)
Die Sims™ 3 (x32 Version: 1.47.6 - Electronic Arts)
Die Sims™ 3 70er, 80er & 90er Accessoires (x32 Version: 17.0.77 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (x32 Version: 7.0.55 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (x32 Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (x32 Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (x32 Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (x32 Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Katy Perry Süße Welt (x32 Version: 13.0.62 - Electronic Arts)
Die Sims™ 3 Late Night (x32 Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Lebensfreude (x32 Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (x32 Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (x32 Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (x32 Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Supernatural (x32 Version: 15.0.135 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (x32 Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (x32 Version: 11.0.84 - Electronic Arts)
Dota 2 (x32 Version:  - Valve )
Elements 11 Organizer (x32 Version: 11.0 - Ihr Firmenname) Hidden
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
FINAL FANTASY XIV - A Realm Reborn (x32 Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Game Dev Tycoon (x32 Version:  - Greenheart Games)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (x32 Version: 32.0.1700.107 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Guild Wars 2 (x32 Version:  - NCsoft Corporation, Ltd.)
Hearthstone (x32 Version:  - Blizzard Entertainment)
Hospital Tycoon (x32 Version:  - Deep Red Limited)
IconHandler 64 bit (Version: 2.0 - Corel Corporation) Hidden
InfiniteCrisis_410193F41CAE (x32 Version:  - Turbine, Inc)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144 - Intel Corporation)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
Logitech Vid HD (x32 Version: 7.2 (7248) - Logitech Inc..)
Logitech Webcam-Software (x32 Version: 2.51 - Logitech Inc.)
LOLReplay (x32 Version: 0.8.1.4 - www.leaguereplays.com)
LWS Facebook (x32 Version: 13.50.854.0 - Logitech) Hidden
LWS Gallery (x32 Version: 13.51.827.0 - Logitech) Hidden
LWS Help_main (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Launcher (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Motion Detection (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Pictures And Video (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Twitter (x32 Version: 13.30.1346.0 - Logitech) Hidden
LWS Webcam Software (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS WLM Plugin (x32 Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (x32 Version: 13.31.1038.0 - Logitech) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft-Maus- und Tastatur-Center (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (Version: 2.2.173.0 - Microsoft Corporation) Hidden
MotioninJoy Gamepad tool 0.7.1001 (Version: 0.7.1001 - www.motioninjoy.com)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
Nero 12 (x32 Version: 12.0.02900 - Nero AG)
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0 - Nero AG) Hidden
Nero BackItUp (x32 Version: 12.0.6002 - Nero AG) Hidden
Nero BackItUp Help (CHM) (x32 Version: 12.0.8000 - Nero AG) Hidden
Nero Blu-ray Player (x32 Version: 12.0.17700 - Nero AG) Hidden
Nero Blu-ray Player Help (CHM) (x32 Version: 12.0.9000 - Nero AG) Hidden
Nero Burning ROM (x32 Version: 12.0.28001 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (x32 Version: 12.0.3000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15500 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.18900 - Nero AG) Hidden
Nero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Express (x32 Version: 12.0.28001 - Nero AG) Hidden
Nero Express Help (CHM) (x32 Version: 12.0.5000 - Nero AG) Hidden
Nero Kwik Media (x32 Version: 1.18.19600 - Nero AG) Hidden
Nero Kwik Media Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Recode (x32 Version: 12.0.31001 - Nero AG) Hidden
Nero Recode Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.10002 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Nero Video (x32 Version: 12.0.8000 - Nero AG) Hidden
Nero Video Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
NVIDIA 3D Vision Controller-Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Painter 12 - Content (Version: 12.4 - Corel Corporation) Hidden
Painter 12 - Core (Version: 12.4 - Corel Corporation) Hidden
Painter 12 - Corex64 (Version: 12.4 - Corel Corporation) Hidden
Painter 12 - DE (Version: 12.4 - Corel Corporation) Hidden
Painter 12 - EN (Version: 12.4 - Corel Corporation) Hidden
Painter 12 - IT (Version: 12.4 - Corel Corporation) Hidden
Painter 12 - Setup Files (Version: 12.4 - Corel Corporation) Hidden
Painter 13 - Contentx64 (Version: 13.1 - Corel Corporation) Hidden
Painter 13 - Core (Version: 13.1 - Corel Corporation) Hidden
Painter 13 - Corex64 (Version: 13.0 - Corel Corporation) Hidden
Painter 13 - DE (Version: 13.1 - Corel Corporation) Hidden
Painter 13 - EN (Version: 13.1 - Corel Corporation) Hidden
Painter 13 - FR (Version: 13.1 - Corel Corporation) Hidden
Painter 13 - Setup Files (Version: 13.1 - Corel Corporation) Hidden
PaintTool SAI Ver.1 (x32 Version:  - )
Pando Media Booster (x32 Version: 2.6.0.9 - Pando Networks Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PSE11 STI Installer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Ragnarok Online - Free to Play - European Version (x32 Version:  - Gravity Europe SAS)
Ragnarok Online 2 (x32 Version: 1.0.1 - Gravity Interactive, Inc.)
Realtek Ethernet Controller Driver (x32 Version: 7.45.516.2011 - Realtek)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.16.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.16.0 - Renesas Electronics Corporation) Hidden
RIFT (HKCU Version:  - Trion Worlds, Inc.)
RollerCoaster Tycoon 3: Platinum! (x32 Version:  - Frontier)
S4 League_EU (x32 Version: 1.00.0000 - )
Savings Wizard (x32 Version: 1.0 - Smart Apps) <==== ATTENTION
Scarlet Blade (x32 Version:  - )
ScarletBlade-DE (x32 Version:  - )
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skullgirls (x32 Version:  - Lab Zero Games)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
SlimDrivers (x32 Version: 2.2.32705 - SlimWare Utilities, Inc.)
Smart Technology Programming Software 7.0.27.13 (Version: 7.0.27.13 - Mad Catz)
SpeedFan (remove only) (x32 Version:  - )
Spybot - Search & Destroy (x32 Version: 2.2.25 - Safer-Networking Ltd.)
Starbound (x32 Version:  - )
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Stellar Phoenix Photo Recovery (x32 Version: 4.0.0.0 - Stellar Information Systems Ltd)
Super Street Fighter IV: Arcade Edition (x32 Version:  - Capcom)
System Requirements Lab CYRI (x32 Version: 6.0.8.0 - Husdawg, LLC)
TeamSpeak 3 Client (Version: 3.0.13 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (x32 Version: 0.3.4 - )
Tomb Raider (x32 Version:  - Crystal Dynamics)
Unity Web Player (HKCU Version:  - Unity Technologies ApS)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1 - Microsoft Corporation)
Uplay (x32 Version: 2.0 - Ubisoft)
Wacom (Version: 5.3.2-1 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (x32 Version: 2.1.0.2 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (Version: 2.1.0.2 - Wacom Technology Corp.)
Welcome App (Start-up experience) (x32 Version: 12.0.15000 - Nero AG) Hidden
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (Version: 4.20.0 - win.rar GmbH)
XSplit (x32 Version: 1.2.1303.0101 - SplitMediaLabs)

==================== Restore Points  =========================

06-02-2014 21:31:12 Removed Aeria Ignite
06-02-2014 21:33:03 Removed Apple Application Support
06-02-2014 21:34:09 Removed Apple Software Update
06-02-2014 21:35:26 Removed Bonjour
06-02-2014 21:36:42 Removed Apple Mobile Device Support
06-02-2014 21:38:03 Entfernt Arc
06-02-2014 21:40:44 Removed S4 League_EU
07-02-2014 02:00:14 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1C065F3D-5C08-48F5-9353-344A4241AC91} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {26838B54-E414-4137-AE7A-9A8E0D29F0F5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-31] (Google Inc.)
Task: {310A0094-E926-4676-8EDD-7EEFB32724A9} - \Software Updater No Task File
Task: {3269AAEE-D66B-46DC-8F1D-6D269DAC1116} - System32\Tasks\bench-sys => C:\Program Files (x86)\Bench\Updater\updater.exe <==== ATTENTION
Task: {3788480D-9F4A-4568-B2A3-CCCC83E5ADB4} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {6E0C334C-6F22-42A2-AF22-4EFD8ED12D53} - System32\Tasks\AmiUpdXp => C:\Users\Shinya\Downloads\%LOCALAPPDATA%\SwvUpdater\Updater.exe <==== ATTENTION
Task: {7EB40F59-26F5-44C1-B622-7B3D7FA247E2} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {8A9632DC-98A0-4E8B-8B34-C5823A1A8265} - System32\Tasks\{8F9251FB-3804-4758-B532-F3B317E64195} => D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe [2014-01-21] (SQUARE ENIX CO., LTD.)
Task: {9360C220-E8BF-4E14-A95C-DA7BA549A0B4} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {9C8051AC-8454-46ED-AA06-F145CED0059B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {9E7E9FDF-E854-45EB-8926-D2E309E5E8A6} - \QtraxPlayer No Task File
Task: {A02616E9-CE8A-4E0F-BBEF-76AEF57C93C7} - \BrowserProtect No Task File
Task: {A1AF0B03-1F10-4EF1-BF7F-9345DA336975} - System32\Tasks\bench-S-1-5-21-2474184755-3819140897-2423345240-1000 => C:\Program Files (x86)\Bench\Updater\updater.exe <==== ATTENTION
Task: {B75BF041-28B6-47FA-9C9F-B83A3713E684} - \Software Updater Ui No Task File
Task: {C3EAFC9C-F7BF-40C3-86CB-58F7F0158E1C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05] (Adobe Systems Incorporated)
Task: {CCE5418D-914B-45F1-AD36-6B6455B8E237} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {CF625483-C302-4F4C-A2C2-3483DA1A1532} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-31] (Google Inc.)
Task: {DDFBDB9C-4DF9-4566-A2F5-88875664E12A} - System32\Tasks\AdobeAAMUpdater-1.0-Shinya-PC-Shinya => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {F8874423-1E1F-4B81-A7DE-85F5BBE88A7E} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Shinya\Downloads\%LOCALAPPDATA%\SwvUpdater\Updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\bench-S-1-5-21-2474184755-3819140897-2423345240-1000.job => C:\Program Files (x86)\Bench\Updater\updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\bench-sys.job => C:\Program Files (x86)\Bench\Updater\updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

==================== Loaded Modules (whitelisted) =============

2013-02-22 19:05 - 2012-12-11 13:07 - 01184640 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
2014-02-05 23:35 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-11-08 17:59 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-11-08 17:59 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2013-11-08 17:59 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-11-08 17:59 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2013-11-08 17:59 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2013-06-21 21:47 - 2010-05-13 09:41 - 00594432 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\dbus-1.dll
2013-06-21 21:47 - 2010-05-13 09:41 - 00157696 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\libgconf-2.dll
2013-06-21 21:47 - 2010-06-17 08:53 - 00089600 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\itapi.dll
2013-06-21 21:47 - 2008-05-06 12:50 - 00971776 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\libxml2.dll
2013-06-21 21:47 - 2009-03-28 08:19 - 00080688 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\zlib1.dll
2013-06-21 21:47 - 2010-06-17 08:53 - 00054272 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\coder.dll
2013-06-21 21:47 - 2010-06-17 08:53 - 00025088 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\log.dll
2013-06-21 21:47 - 2010-06-17 08:53 - 00043008 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\audio.dll
2013-06-21 21:47 - 2010-06-12 07:10 - 00034304 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\libctlsvr.dll
2013-06-21 21:47 - 2007-09-09 16:07 - 00151552 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\libexpat.dll
2013-06-21 21:47 - 2010-05-13 09:41 - 00055808 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\libgconfbackend-xml.dll
2013-06-21 21:47 - 2010-05-13 09:39 - 00341504 _____ () C:\Program Files (x86)\congstar\Internetmanager\Bin\sqlite3.dll
2014-02-07 09:00 - 2013-09-25 14:30 - 03279768 _____ () C:\Windows\SysWOW64\FF_BN_52019\App\firefox\mozjs.dll
2014-02-07 09:00 - 2013-04-25 20:21 - 16032648 _____ () C:\Windows\SysWOW64\FF_BN_52019\Data\plugins\NPSWF32_11_7_700_169.dll
2014-02-07 10:55 - 2013-09-25 14:30 - 03279768 _____ () C:\Windows\SysWOW64\FF_BN_169948\App\firefox\mozjs.dll
2014-02-07 10:55 - 2013-04-25 20:21 - 16032648 _____ () C:\Windows\SysWOW64\FF_BN_169948\Data\plugins\NPSWF32_11_7_700_169.dll
2014-02-07 12:00 - 2013-09-25 14:30 - 03279768 _____ () C:\Windows\SysWOW64\FF_BN_2223166\App\firefox\mozjs.dll
2014-02-07 12:00 - 2013-04-25 20:21 - 16032648 _____ () C:\Windows\SysWOW64\FF_BN_2223166\Data\plugins\NPSWF32_11_7_700_169.dll
2014-02-04 03:43 - 2014-02-02 00:41 - 00715592 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libglesv2.dll
2014-02-04 03:43 - 2014-02-02 00:41 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libegl.dll
2014-02-04 03:43 - 2014-02-02 00:42 - 04055368 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll
2014-02-04 03:43 - 2014-02-02 00:42 - 00399688 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
2014-02-04 03:43 - 2014-02-02 00:41 - 01634632 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:7631EA83

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/07/2014 01:58:27 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - The system cannot find the file specified.

Error: (02/07/2014 01:58:27 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - The system cannot find the file specified.

Error: (02/07/2014 00:56:02 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - The system cannot find the file specified.

Error: (02/07/2014 00:56:00 PM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - The system cannot find the file specified.

Error: (02/07/2014 09:40:04 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 24.0.0.5001, Zeitstempel: 0x522fd228
Name des fehlerhaften Moduls: mozalloc.dll, Version: 24.0.0.5001, Zeitstempel: 0x522fa829
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000119c
ID des fehlerhaften Prozesses: 0x13b0
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (02/07/2014 08:10:14 AM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/07/2014 08:09:00 AM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - The system cannot find the file specified.

Error: (02/07/2014 08:09:00 AM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - The system cannot find the file specified.

Error: (02/07/2014 08:03:14 AM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - The system cannot find the file specified.

Error: (02/07/2014 08:03:12 AM) (Source: Microsoft-Windows-User Profiles Service) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
 DETAIL - The system cannot find the file specified.


System errors:
=============
Error: (02/07/2014 03:20:09 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (02/07/2014 03:20:09 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.

Error: (02/07/2014 03:19:05 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎07.‎02.‎2014 um 03:17:36 unerwartet heruntergefahren.

Error: (02/07/2014 03:17:16 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (02/06/2014 10:37:10 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Apple Mobile Device" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Restart the service.

Error: (02/06/2014 04:35:52 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎06.‎02.‎2014 um 11:07:20 unerwartet heruntergefahren.

Error: (02/06/2014 10:04:01 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (02/06/2014 10:04:01 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Updating Service erreicht.

Error: (02/06/2014 10:02:34 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎06.‎02.‎2014 um 10:00:37 unerwartet heruntergefahren.

Error: (02/06/2014 10:01:31 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "WerSvc" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1352

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================
Error: (02/07/2014 01:58:27 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (02/07/2014 01:58:27 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (02/07/2014 00:56:02 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (02/07/2014 00:56:00 PM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (02/07/2014 09:40:04 AM) (Source: Application Error)(User: )
Description: plugin-container.exe24.0.0.5001522fd228mozalloc.dll24.0.0.5001522fa829800000030000119c13b001cf23df2cedc73aC:\Windows\SysWOW64\FF_BN_815801\App\firefox\plugin-container.exeC:\Windows\SysWOW64\FF_BN_815801\App\firefox\mozalloc.dll70109986-8fd3-11e3-bca6-8c89a58075bd

Error: (02/07/2014 08:10:14 AM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (02/07/2014 08:09:00 AM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (02/07/2014 08:09:00 AM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (02/07/2014 08:03:14 AM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.

Error: (02/07/2014 08:03:12 AM) (Source: Microsoft-Windows-User Profiles Service)(User: NT AUTHORITY)
Description: The system cannot find the file specified.


==================== Memory info =========================== 

Percentage of memory in use: 46%
Total physical RAM: 4077.64 MB
Available physical RAM: 2176.97 MB
Total Pagefile: 8153.46 MB
Available Pagefile: 4686.11 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Volume) (Fixed) (Total:455.94 GB) (Free:155.89 GB) NTFS
Drive d: (Volume) (Fixed) (Total:298.09 GB) (Free:270.78 GB) NTFS
Drive e: (Kyokatsu Datein) (Fixed) (Total:455.94 GB) (Free:296.14 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: C2A5579E)
Partition 1: (Active) - (Size=298 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 29B4F2D8)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=456 GB) - (Type=07 NTFS)

==================== End Of Log ============================

GMER:

Code:

ATTFilter

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-02-07 15:12:24
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2 WDC_WD10 rev.80.0 931,51GB
Running: dlkwlpdy.exe; Driver: C:\Users\Shinya\AppData\Local\Temp\fwliqpog.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                                                                                                                                                        fffff800035b2000 45 bytes [00, 00, 08, 02, 53, 65, 54, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 575                                                                                                                                                                                        fffff800035b202f 16 bytes [00, 00, 00, 00, 00, 00, 00, ...]

---- Threads - GMER 2.1 ----

Thread    C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [3924:1484]                                                                                                                                                                               000007feec3c838c
Thread    C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [3924:3264]                                                                                                                                                                               000007feef50c680
---- Processes - GMER 2.1 ----

Library   C:\Windows\SysWOW64\FF_BN_33190\FirefoxPortable.exe (*** suspicious ***) @ C:\Windows\SysWOW64\FF_BN_33190\FirefoxPortable.exe [7304]                                                                                                                     0000000000400000
Library   C:\Windows\TEMP\nsuCAFA.tmp\registry.dll (*** suspicious ***) @ C:\Windows\SysWOW64\FF_BN_33190\FirefoxPortable.exe [7304]                                                                                                                                0000000010000000
Library   C:\Windows\TEMP\nsuCAFA.tmp\newadvsplash.dll (*** suspicious ***) @ C:\Windows\SysWOW64\FF_BN_33190\FirefoxPortable.exe [7304]                                                                                                                            0000000000300000
Library   C:\Windows\TEMP\nsuCAFA.tmp\System.dll (*** suspicious ***) @ C:\Windows\SysWOW64\FF_BN_33190\FirefoxPortable.exe [7304]                                                                                                                                  00000000740d0000
Library   C:\Windows\SysWOW64\FF_BN_33190\App\firefox\firefox.exe (*** suspicious ***) @ C:\Windows\SysWOW64\FF_BN_33190\App\firefox\firefox.exe [4940]                                                                                                             0000000001090000

---- Registry - GMER 2.1 ----

Reg       HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@SIGN.MEDIA=1B3878 DRIVERS\Chipset\ATI Catalyst\x2122 Technology\ATI Catalyst\x2122  11.7\Setup.exe                                                     1
Reg       HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@SIGN.MEDIA=7C2C4B DRIVERS\Chipset\Intel\xae\Intel\xae Management Engine\Driver for Intel 6 Series Chipset-Based Desktop Boards V7.0.10.1203\Setup.exe  1

---- EOF - GMER 2.1 ----

das waren alle die ich bisher habe.

schrauber · 08.02.2014, 13:02

hi,

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Kyiru · 08.02.2014, 18:45

Erst mal vielen dank für die hilfe. :3

Und die Logs:

Mbar Log:

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org

Database version: v2014.02.08.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Shinya :: SHINYA-PC [administrator]

08.02.2014 18:25:38
mbar-log-2014-02-08 (18-25-38).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 236567
Time elapsed: 9 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

TDDSSKiller Log:

Code:

ATTFilter

18:36:28.0415 2380  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:36:30.0418 2380  ============================================================
18:36:30.0418 2380  Current date / time: 2014/02/08 18:36:30.0418
18:36:30.0418 2380  SystemInfo:
18:36:30.0418 2380  
18:36:30.0419 2380  OS Version: 6.1.7601 ServicePack: 1.0
18:36:30.0419 2380  Product type: Workstation
18:36:30.0419 2380  ComputerName: SHINYA-PC
18:36:30.0419 2380  UserName: Shinya
18:36:30.0419 2380  Windows directory: C:\Windows
18:36:30.0419 2380  System windows directory: C:\Windows
18:36:30.0419 2380  Running under WOW64
18:36:30.0419 2380  Processor architecture: Intel x64
18:36:30.0419 2380  Number of processors: 4
18:36:30.0419 2380  Page size: 0x1000
18:36:30.0419 2380  Boot type: Normal boot
18:36:30.0419 2380  ============================================================
18:36:30.0846 2380  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x23DC4, SectorsPerTrack: 0x13, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000040
18:36:30.0872 2380  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:36:30.0881 2380  ============================================================
18:36:30.0881 2380  \Device\Harddisk0\DR0:
18:36:30.0881 2380  MBR partitions:
18:36:30.0881 2380  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
18:36:30.0881 2380  \Device\Harddisk1\DR1:
18:36:30.0881 2380  MBR partitions:
18:36:30.0881 2380  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x2710800, BlocksNum 0x32000
18:36:30.0897 2380  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x2743000, BlocksNum 0x38FE0800
18:36:30.0897 2380  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x3B723800, BlocksNum 0x38FE2DB0
18:36:30.0897 2380  ============================================================
18:36:30.0924 2380  C: <-> \Device\Harddisk1\DR1\Partition2
18:36:30.0942 2380  D: <-> \Device\Harddisk0\DR0\Partition1
18:36:31.0000 2380  E: <-> \Device\Harddisk1\DR1\Partition3
18:36:31.0000 2380  ============================================================
18:36:31.0001 2380  Initialize success
18:36:31.0001 2380  ============================================================
18:38:17.0580 1256  ============================================================
18:38:17.0580 1256  Scan started
18:38:17.0580 1256  Mode: Manual; SigCheck; TDLFS; 
18:38:17.0580 1256  ============================================================
18:38:17.0844 1256  ================ Scan system memory ========================
18:38:17.0844 1256  System memory - ok
18:38:17.0845 1256  ================ Scan services =============================
18:38:18.0011 1256  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:38:18.0119 1256  1394ohci - ok
18:38:18.0174 1256  [ EC6B48EF62C5AC40BB4CC1F3FBECF5A6 ] 2310_00         C:\Windows\system32\drivers\2310_00.sys
18:38:18.0194 1256  2310_00 - ok
18:38:18.0232 1256  [ D380E9C0D42DC8BB5CC331A98C9F5019 ] 272x_1x         C:\Windows\system32\drivers\272x_1x.sys
18:38:18.0259 1256  272x_1x - ok
18:38:18.0266 1256  [ 15472CDA724D98F9436B69D9864FCB1A ] 274x_3x         C:\Windows\system32\drivers\274x_3x.sys
18:38:18.0274 1256  274x_3x - ok
18:38:18.0387 1256  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9 ] A2DDA           C:\EEK\RUN\a2ddax64.sys
18:38:18.0401 1256  A2DDA - ok
18:38:18.0423 1256  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:38:18.0441 1256  ACPI - ok
18:38:18.0463 1256  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:38:18.0529 1256  AcpiPmi - ok
18:38:18.0647 1256  [ 835CE0647E4E9F01BEB26201DA6705B4 ] AdobeActiveFileMonitor11.0 C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
18:38:18.0660 1256  AdobeActiveFileMonitor11.0 - ok
18:38:18.0726 1256  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:38:18.0736 1256  AdobeARMservice - ok
18:38:18.0881 1256  [ C8C6C0D659734FDBF63F6F421A5416BC ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:38:18.0897 1256  AdobeFlashPlayerUpdateSvc - ok
18:38:18.0912 1256  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:38:18.0934 1256  adp94xx - ok
18:38:18.0942 1256  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:38:18.0957 1256  adpahci - ok
18:38:18.0994 1256  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:38:19.0009 1256  adpu320 - ok
18:38:19.0035 1256  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:38:19.0169 1256  AeLookupSvc - ok
18:38:19.0253 1256  [ 79059559E89D06E8B80CE2944BE20228 ] AFD             C:\Windows\system32\drivers\afd.sys
18:38:19.0334 1256  AFD - ok
18:38:19.0354 1256  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:38:19.0366 1256  agp440 - ok
18:38:19.0408 1256  [ EE6DAD59BB40168BA61964E111CED923 ] ahcix64s        C:\Windows\system32\drivers\ahcix64s.sys
18:38:19.0426 1256  ahcix64s - ok
18:38:19.0449 1256  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
18:38:19.0485 1256  ALG - ok
18:38:19.0517 1256  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:38:19.0527 1256  aliide - ok
18:38:19.0530 1256  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
18:38:19.0540 1256  amdide - ok
18:38:19.0554 1256  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:38:19.0587 1256  AmdK8 - ok
18:38:19.0591 1256  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
18:38:19.0641 1256  AmdPPM - ok
18:38:19.0663 1256  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:38:19.0677 1256  amdsata - ok
18:38:19.0694 1256  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:38:19.0708 1256  amdsbs - ok
18:38:19.0721 1256  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:38:19.0732 1256  amdxata - ok
18:38:19.0762 1256  [ EE4797DFEBBE8ACDB548DD8E80BE0A88 ] amd_sata        C:\Windows\system32\drivers\amd_sata.sys
18:38:19.0775 1256  amd_sata - ok
18:38:19.0786 1256  [ D56EAD71A86FD2ACAE2DB47D0A6A3A41 ] amd_xata        C:\Windows\system32\drivers\amd_xata.sys
18:38:19.0797 1256  amd_xata - ok
18:38:19.0823 1256  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
18:38:20.0077 1256  AppID - ok
18:38:20.0082 1256  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:38:20.0146 1256  AppIDSvc - ok
18:38:20.0188 1256  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
18:38:20.0217 1256  Appinfo - ok
18:38:20.0223 1256  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
18:38:20.0237 1256  AppMgmt - ok
18:38:20.0266 1256  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
18:38:20.0278 1256  arc - ok
18:38:20.0348 1256  [ 8D51C40AEE6E50EBD594B86571FABBDC ] arcm_a64        C:\Windows\system32\drivers\arcm_a64.sys
18:38:20.0360 1256  arcm_a64 - ok
18:38:20.0375 1256  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:38:20.0387 1256  arcsas - ok
18:38:20.0398 1256  [ EB6DC008A1F36DFD7999EB57E97EAACE ] asahci64        C:\Windows\system32\drivers\asahci64.sys
18:38:20.0410 1256  asahci64 - ok
18:38:20.0460 1256  [ 0AA7A996792FB0287B33A57A8093AE44 ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
18:38:20.0484 1256  asmthub3 - ok
18:38:20.0531 1256  [ 125DC3ABF5BFCCFE82AD17D078E0B9EC ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
18:38:20.0569 1256  asmtxhci - ok
18:38:20.0703 1256  [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:38:20.0718 1256  aspnet_state - ok
18:38:20.0743 1256  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:38:20.0806 1256  AsyncMac - ok
18:38:20.0850 1256  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
18:38:20.0861 1256  atapi - ok
18:38:20.0886 1256  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:38:20.0925 1256  AudioEndpointBuilder - ok
18:38:20.0933 1256  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:38:20.0959 1256  AudioSrv - ok
18:38:21.0040 1256  [ A1F53D2A00E64679A1D81B61D2333D06 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
18:38:21.0052 1256  avgtp - ok
18:38:21.0080 1256  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:38:21.0115 1256  AxInstSV - ok
18:38:21.0142 1256  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
18:38:21.0200 1256  b06bdrv - ok
18:38:21.0224 1256  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:38:21.0262 1256  b57nd60a - ok
18:38:21.0267 1256  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:38:21.0279 1256  BDESVC - ok
18:38:21.0296 1256  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:38:21.0346 1256  Beep - ok
18:38:21.0395 1256  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
18:38:21.0420 1256  BFE - ok
18:38:21.0456 1256  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
18:38:21.0508 1256  BITS - ok
18:38:21.0537 1256  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:38:21.0550 1256  blbdrive - ok
18:38:21.0563 1256  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:38:21.0582 1256  bowser - ok
18:38:21.0613 1256  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
18:38:21.0643 1256  BrFiltLo - ok
18:38:21.0663 1256  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
18:38:21.0679 1256  BrFiltUp - ok
18:38:21.0726 1256  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
18:38:21.0781 1256  BridgeMP - ok
18:38:21.0795 1256  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
18:38:21.0804 1256  Browser - ok
18:38:21.0808 1256  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:38:21.0837 1256  Brserid - ok
18:38:21.0852 1256  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:38:21.0879 1256  BrSerWdm - ok
18:38:21.0892 1256  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:38:21.0921 1256  BrUsbMdm - ok
18:38:21.0927 1256  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:38:21.0937 1256  BrUsbSer - ok
18:38:21.0957 1256  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
18:38:21.0973 1256  BTHMODEM - ok
18:38:21.0985 1256  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
18:38:22.0040 1256  bthserv - ok
18:38:22.0043 1256  catchme - ok
18:38:22.0060 1256  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:38:22.0084 1256  cdfs - ok
18:38:22.0107 1256  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:38:22.0115 1256  cdrom - ok
18:38:22.0118 1256  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
18:38:22.0140 1256  CertPropSvc - ok
18:38:22.0158 1256  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
18:38:22.0167 1256  circlass - ok
18:38:22.0202 1256  [ B794DCF38C965FA2F93C45A7C3D582C5 ] cleanhlp        C:\EEK\Run\cleanhlp64.sys
18:38:22.0215 1256  cleanhlp - ok
18:38:22.0241 1256  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
18:38:22.0260 1256  CLFS - ok
18:38:22.0319 1256  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:38:22.0331 1256  clr_optimization_v2.0.50727_32 - ok
18:38:22.0373 1256  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:38:22.0385 1256  clr_optimization_v2.0.50727_64 - ok
18:38:22.0457 1256  [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:38:22.0471 1256  clr_optimization_v4.0.30319_32 - ok
18:38:22.0509 1256  [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:38:22.0522 1256  clr_optimization_v4.0.30319_64 - ok
18:38:22.0551 1256  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
18:38:22.0572 1256  CmBatt - ok
18:38:22.0583 1256  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:38:22.0594 1256  cmdide - ok
18:38:22.0640 1256  [ EBF28856F69CF094A902F884CF989706 ] CNG             C:\Windows\system32\Drivers\cng.sys
18:38:22.0670 1256  CNG - ok
18:38:22.0680 1256  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
18:38:22.0686 1256  Compbatt - ok
18:38:22.0704 1256  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
18:38:22.0714 1256  CompositeBus - ok
18:38:22.0716 1256  COMSysApp - ok
18:38:22.0731 1256  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:38:22.0737 1256  crcdisk - ok
18:38:22.0779 1256  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:38:22.0805 1256  CryptSvc - ok
18:38:22.0851 1256  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
18:38:22.0897 1256  CSC - ok
18:38:22.0922 1256  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
18:38:22.0951 1256  CscService - ok
18:38:22.0994 1256  [ E18992E1F86609988937B429E65D22A4 ] DC133           C:\Windows\system32\drivers\DC133.sys
18:38:23.0004 1256  DC133 - ok
18:38:23.0020 1256  [ F29AE206F3801BA5ABFF9693B530153A ] DC150           C:\Windows\system32\drivers\DC150.sys
18:38:23.0031 1256  DC150 - ok
18:38:23.0040 1256  [ 0DB1DA4C47B1838426CA198B300D3572 ] DC154           C:\Windows\system32\drivers\DC154.sys
18:38:23.0050 1256  DC154 - ok
18:38:23.0061 1256  [ 310D40EF34FA0E0158B2CB6A8821A925 ] DC300e          C:\Windows\system32\drivers\DC300e.sys
18:38:23.0072 1256  DC300e - ok
18:38:23.0086 1256  [ 79BAFD4441106E1CC2DC725A873DCAE6 ] DC324e          C:\Windows\system32\drivers\DC324e.sys
18:38:23.0096 1256  DC324e - ok
18:38:23.0106 1256  [ 566D0F1806A0B6D19BC5A1DC31CF8EAB ] DC3410          C:\Windows\system32\drivers\DC3410.sys
18:38:23.0116 1256  DC3410 - ok
18:38:23.0169 1256  [ C6E1C081C0849E08FECEC18DF73B10C4 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
18:38:23.0180 1256  dc3d - ok
18:38:23.0204 1256  [ 99C7D21AFD8A60F747F73161FEE1D2EA ] DC4300          C:\Windows\system32\drivers\DC4300.sys
18:38:23.0216 1256  DC4300 - ok
18:38:23.0228 1256  [ B5B5B28AEA415D441F42D9B21722966C ] DC600e          C:\Windows\system32\drivers\DC600e.sys
18:38:23.0240 1256  DC600e - ok
18:38:23.0272 1256  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:38:23.0332 1256  DcomLaunch - ok
18:38:23.0374 1256  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
18:38:23.0419 1256  defragsvc - ok
18:38:23.0433 1256  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:38:23.0485 1256  DfsC - ok
18:38:23.0512 1256  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:38:23.0543 1256  Dhcp - ok
18:38:23.0558 1256  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
18:38:23.0611 1256  discache - ok
18:38:23.0649 1256  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
18:38:23.0656 1256  Disk - ok
18:38:23.0665 1256  [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
18:38:23.0673 1256  dmvsc - ok
18:38:23.0683 1256  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:38:23.0709 1256  Dnscache - ok
18:38:23.0732 1256  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:38:23.0787 1256  dot3svc - ok
18:38:23.0810 1256  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
18:38:23.0853 1256  DPS - ok
18:38:23.0897 1256  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:38:23.0933 1256  drmkaud - ok
18:38:24.0026 1256  [ CB7A9D3C7B5A49B3904B9C415204533F ] Ds3Service      C:\Users\Shinya\Desktop\ScpServer\bin\ScpService.exe
18:38:24.0046 1256  Ds3Service - ok
18:38:24.0083 1256  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:38:24.0100 1256  dtsoftbus01 - ok
18:38:24.0139 1256  [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:38:24.0170 1256  DXGKrnl - ok
18:38:24.0194 1256  EagleX64 - ok
18:38:24.0212 1256  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
18:38:24.0255 1256  EapHost - ok
18:38:24.0334 1256  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
18:38:24.0416 1256  ebdrv - ok
18:38:24.0440 1256  [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS             C:\Windows\System32\lsass.exe
18:38:24.0449 1256  EFS - ok
18:38:24.0522 1256  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:38:24.0564 1256  ehRecvr - ok
18:38:24.0568 1256  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
18:38:24.0581 1256  ehSched - ok
18:38:24.0626 1256  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:38:24.0648 1256  elxstor - ok
18:38:24.0666 1256  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:38:24.0693 1256  ErrDev - ok
18:38:24.0725 1256  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
18:38:24.0779 1256  EventSystem - ok
18:38:24.0802 1256  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
18:38:24.0826 1256  exfat - ok
18:38:24.0846 1256  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:38:24.0913 1256  fastfat - ok
18:38:24.0942 1256  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
18:38:24.0966 1256  Fax - ok
18:38:24.0998 1256  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
18:38:25.0022 1256  fdc - ok
18:38:25.0041 1256  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:38:25.0080 1256  fdPHost - ok
18:38:25.0093 1256  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:38:25.0129 1256  FDResPub - ok
18:38:25.0149 1256  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:38:25.0156 1256  FileInfo - ok
18:38:25.0167 1256  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:38:25.0189 1256  Filetrace - ok
18:38:25.0212 1256  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
18:38:25.0219 1256  flpydisk - ok
18:38:25.0236 1256  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:38:25.0246 1256  FltMgr - ok
18:38:25.0295 1256  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
18:38:25.0322 1256  FontCache - ok
18:38:25.0369 1256  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:38:25.0374 1256  FontCache3.0.0.0 - ok
18:38:25.0389 1256  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:38:25.0395 1256  FsDepends - ok
18:38:25.0408 1256  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:38:25.0414 1256  Fs_Rec - ok
18:38:25.0444 1256  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:38:25.0456 1256  fvevol - ok
18:38:25.0479 1256  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:38:25.0486 1256  gagp30kx - ok
18:38:25.0530 1256  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
18:38:25.0570 1256  gpsvc - ok
18:38:25.0651 1256  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:38:25.0663 1256  gupdate - ok
18:38:25.0667 1256  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:38:25.0676 1256  gupdatem - ok
18:38:25.0691 1256  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:38:25.0717 1256  hcw85cir - ok
18:38:25.0768 1256  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:38:25.0802 1256  HdAudAddService - ok
18:38:25.0840 1256  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:38:25.0875 1256  HDAudBus - ok
18:38:25.0890 1256  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
18:38:25.0917 1256  HidBatt - ok
18:38:25.0964 1256  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
18:38:25.0997 1256  HidBth - ok
18:38:26.0016 1256  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:38:26.0032 1256  HidIr - ok
18:38:26.0072 1256  [ 46BBE8EA221461A65F18A078528F4B2C ] hidkmdf         C:\Windows\system32\DRIVERS\hidkmdf.sys
18:38:26.0081 1256  hidkmdf - ok
18:38:26.0099 1256  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
18:38:26.0157 1256  hidserv - ok
18:38:26.0205 1256  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
18:38:26.0229 1256  HidUsb - ok
18:38:26.0311 1256  [ 31AE58E64028E69BAD3328352FB8B403 ] HiPatchService  D:\HiPatchService.exe
18:38:26.0327 1256  HiPatchService ( UnsignedFile.Multi.Generic ) - warning
18:38:26.0327 1256  HiPatchService - detected UnsignedFile.Multi.Generic (1)
18:38:26.0355 1256  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:38:26.0395 1256  hkmsvc - ok
18:38:26.0414 1256  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:38:26.0424 1256  HomeGroupListener - ok
18:38:26.0453 1256  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:38:26.0483 1256  HomeGroupProvider - ok
18:38:26.0519 1256  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:38:26.0531 1256  HpSAMD - ok
18:38:26.0562 1256  [ 0C7D692643F892B786A45CB9AFEE2729 ] hptiop          C:\Windows\system32\drivers\hptiop.sys
18:38:26.0572 1256  hptiop - ok
18:38:26.0590 1256  [ 93850720522B3015CE0AB56C78C2B219 ] hptmv           C:\Windows\system32\drivers\hptmv.sys
18:38:26.0603 1256  hptmv - ok
18:38:26.0623 1256  [ 99FA9A613B09A82340B39CA522F6AAAC ] hptmv6          C:\Windows\system32\drivers\hptmv6.sys
18:38:26.0637 1256  hptmv6 - ok
18:38:26.0664 1256  HSPADataCardusbmdm - ok
18:38:26.0676 1256  HSPADataCardusbnmea - ok
18:38:26.0680 1256  HSPADataCardusbser - ok
18:38:26.0704 1256  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:38:26.0765 1256  HTTP - ok
18:38:26.0783 1256  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:38:26.0790 1256  hwpolicy - ok
18:38:26.0798 1256  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:38:26.0807 1256  i8042prt - ok
18:38:26.0844 1256  [ 8180A2392E732E8871589B54FAB6991F ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
18:38:26.0865 1256  iaStor - ok
18:38:26.0884 1256  [ 40ADA86601383C6FB65FFF996BD0EF06 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
18:38:26.0901 1256  iaStorA - ok
18:38:26.0917 1256  [ ED47863A80B4B89A7107067F5D820B21 ] iaStorF         C:\Windows\system32\drivers\iaStorF.sys
18:38:26.0924 1256  iaStorF - ok
18:38:26.0944 1256  [ 9D93371D8FADCA4218A5A18775A7491B ] iaStorS         C:\Windows\system32\drivers\iaStorS.sys
18:38:26.0961 1256  iaStorS - ok
18:38:26.0993 1256  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:38:27.0013 1256  iaStorV - ok
18:38:27.0075 1256  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:38:27.0105 1256  idsvc - ok
18:38:27.0137 1256  IEEtwCollectorService - ok
18:38:27.0168 1256  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:38:27.0179 1256  iirsp - ok
18:38:27.0228 1256  [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT          C:\Windows\System32\ikeext.dll
18:38:27.0255 1256  IKEEXT - ok
18:38:27.0284 1256  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
18:38:27.0294 1256  intelide - ok
18:38:27.0315 1256  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:38:27.0328 1256  intelppm - ok
18:38:27.0355 1256  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:38:27.0407 1256  IPBusEnum - ok
18:38:27.0435 1256  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:38:27.0459 1256  IpFilterDriver - ok
18:38:27.0498 1256  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:38:27.0559 1256  iphlpsvc - ok
18:38:27.0577 1256  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:38:27.0600 1256  IPMIDRV - ok
18:38:27.0604 1256  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:38:27.0657 1256  IPNAT - ok
18:38:27.0679 1256  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:38:27.0690 1256  IRENUM - ok
18:38:27.0698 1256  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:38:27.0706 1256  isapnp - ok
18:38:27.0726 1256  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:38:27.0738 1256  iScsiPrt - ok
18:38:27.0760 1256  [ E6AA8E96567FFDB8794464BD07293317 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
18:38:27.0768 1256  iteatapi - ok
18:38:27.0784 1256  [ 149965167ED18C14F6E080A781684E13 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
18:38:27.0808 1256  iteraid - ok
18:38:27.0836 1256  [ C0D9BA660A41EE8A269EF804E6CD0D7B ] JRAID           C:\Windows\system32\drivers\jraid.sys
18:38:27.0847 1256  JRAID - ok
18:38:27.0869 1256  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:38:27.0878 1256  kbdclass - ok
18:38:27.0946 1256  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:38:27.0970 1256  kbdhid - ok
18:38:27.0985 1256  [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso          C:\Windows\system32\lsass.exe
18:38:27.0997 1256  KeyIso - ok
18:38:28.0024 1256  [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:38:28.0036 1256  KSecDD - ok
18:38:28.0052 1256  [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:38:28.0066 1256  KSecPkg - ok
18:38:28.0074 1256  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:38:28.0112 1256  ksthunk - ok
18:38:28.0138 1256  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:38:28.0165 1256  KtmRm - ok
18:38:28.0203 1256  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
18:38:28.0259 1256  LanmanServer - ok
18:38:28.0285 1256  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:38:28.0322 1256  LanmanWorkstation - ok
18:38:28.0336 1256  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:38:28.0374 1256  lltdio - ok
18:38:28.0399 1256  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:38:28.0439 1256  lltdsvc - ok
18:38:28.0466 1256  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:38:28.0503 1256  lmhosts - ok
18:38:28.0573 1256  [ 1584DEEAE5AA0E3FB045F3D0EAC585EA ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:38:28.0588 1256  LMS - ok
18:38:28.0618 1256  [ D7B77B486804AF25838AA51734F65E2C ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:38:28.0644 1256  LSI_FC - ok
18:38:28.0671 1256  [ 1A2A5085F88A8E2FFF68CD20B680BBEB ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:38:28.0684 1256  LSI_SAS - ok
18:38:28.0688 1256  [ 40A3AE1A304238C6C3944C8C7F27C455 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
18:38:28.0701 1256  LSI_SAS2 - ok
18:38:28.0713 1256  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:38:28.0721 1256  LSI_SCSI - ok
18:38:28.0731 1256  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:38:28.0756 1256  luafv - ok
18:38:28.0811 1256  [ A401CFF74982D8DF851F20307C806073 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
18:38:28.0830 1256  LVRS64 - ok
18:38:28.0973 1256  [ 13384CB5F5813E65F31078D6ABFAAF38 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
18:38:29.0106 1256  LVUVC64 - ok
18:38:29.0165 1256  massfilter - ok
18:38:29.0200 1256  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
18:38:29.0213 1256  MBAMProtector - ok
18:38:29.0286 1256  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:38:29.0305 1256  MBAMScheduler - ok
18:38:29.0326 1256  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:38:29.0343 1256  MBAMService - ok
18:38:29.0369 1256  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:38:29.0398 1256  Mcx2Svc - ok
18:38:29.0419 1256  [ E2E92687F505BF15D07B4315866B4A44 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:38:29.0439 1256  megasas - ok
18:38:29.0467 1256  [ 0709F972626AD10B971F70C7816B3BA5 ] megasas2        C:\Windows\system32\drivers\megasas2.sys
18:38:29.0475 1256  megasas2 - ok
18:38:29.0492 1256  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
18:38:29.0504 1256  MegaSR - ok
18:38:29.0535 1256  [ 6D884467FDD4EA15040CA0D5D34C067C ] megasr1         C:\Windows\system32\drivers\MegaSR1.sys
18:38:29.0550 1256  megasr1 - ok
18:38:29.0567 1256  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
18:38:29.0575 1256  MEIx64 - ok
18:38:29.0606 1256  [ B6CCDC7F88354F2D053A8ADF13DD3AAB ] Mkd2Nadr        C:\Windows\system32\drivers\Mkd2Nadr.sys
18:38:29.0619 1256  Mkd2Nadr - ok
18:38:29.0633 1256  [ 28630C95D8F1CC313E80B8EF376648F2 ] Mkd3kfNt        C:\Windows\system32\drivers\Mkd3kfNt.sys
18:38:29.0647 1256  Mkd3kfNt - ok
18:38:29.0660 1256  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
18:38:29.0700 1256  MMCSS - ok
18:38:29.0717 1256  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
18:38:29.0753 1256  Modem - ok
18:38:29.0775 1256  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:38:29.0803 1256  monitor - ok
18:38:29.0835 1256  [ C030F9E822A057C1A7A9BB4EA3E8877E ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
18:38:29.0848 1256  MotioninJoyXFilter - ok
18:38:29.0872 1256  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:38:29.0880 1256  mouclass - ok
18:38:29.0897 1256  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:38:29.0921 1256  mouhid - ok
18:38:29.0939 1256  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:38:29.0948 1256  mountmgr - ok
18:38:29.0962 1256  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:38:29.0972 1256  mpio - ok
18:38:29.0983 1256  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:38:30.0009 1256  mpsdrv - ok
18:38:30.0034 1256  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:38:30.0065 1256  MpsSvc - ok
18:38:30.0091 1256  [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:38:30.0100 1256  MRxDAV - ok
18:38:30.0114 1256  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:38:30.0141 1256  mrxsmb - ok
18:38:30.0159 1256  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:38:30.0168 1256  mrxsmb10 - ok
18:38:30.0183 1256  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:38:30.0190 1256  mrxsmb20 - ok
18:38:30.0210 1256  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:38:30.0216 1256  msahci - ok
18:38:30.0228 1256  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:38:30.0236 1256  msdsm - ok
18:38:30.0251 1256  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
18:38:30.0261 1256  MSDTC - ok
18:38:30.0289 1256  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:38:30.0312 1256  Msfs - ok
18:38:30.0321 1256  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:38:30.0360 1256  mshidkmdf - ok
18:38:30.0377 1256  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:38:30.0383 1256  msisadrv - ok
18:38:30.0417 1256  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:38:30.0478 1256  MSiSCSI - ok
18:38:30.0480 1256  msiserver - ok
18:38:30.0513 1256  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:38:30.0536 1256  MSKSSRV - ok
18:38:30.0560 1256  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:38:30.0597 1256  MSPCLOCK - ok
18:38:30.0629 1256  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:38:30.0664 1256  MSPQM - ok
18:38:30.0679 1256  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:38:30.0690 1256  MsRPC - ok
18:38:30.0701 1256  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:38:30.0707 1256  mssmbios - ok
18:38:30.0720 1256  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:38:30.0756 1256  MSTEE - ok
18:38:30.0773 1256  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
18:38:30.0780 1256  MTConfig - ok
18:38:30.0792 1256  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:38:30.0799 1256  Mup - ok
18:38:30.0833 1256  [ 7064F169A5E53B915091B55525D73483 ] mv61xx          C:\Windows\system32\drivers\mv61xx.sys
18:38:30.0848 1256  mv61xx - ok
18:38:30.0864 1256  [ 9A4031197A3ECA0E348E6C51387EC39C ] mv91cons        C:\Windows\system32\drivers\mv91cons.sys
18:38:30.0875 1256  mv91cons - ok
18:38:30.0882 1256  [ 7EAE8A7EE4955DC1439E6C93D5CC7EE4 ] mvs91xx         C:\Windows\system32\drivers\mvs91xx.sys
18:38:30.0898 1256  mvs91xx - ok
18:38:30.0918 1256  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
18:38:30.0968 1256  napagent - ok
18:38:30.0993 1256  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:38:31.0008 1256  NativeWifiP - ok
18:38:31.0147 1256  [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
18:38:31.0168 1256  NAUpdate - ok
18:38:31.0219 1256  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:38:31.0245 1256  NDIS - ok
18:38:31.0260 1256  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:38:31.0294 1256  NdisCap - ok
18:38:31.0325 1256  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:38:31.0347 1256  NdisTapi - ok
18:38:31.0400 1256  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:38:31.0433 1256  Ndisuio - ok
18:38:31.0450 1256  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:38:31.0473 1256  NdisWan - ok
18:38:31.0495 1256  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:38:31.0516 1256  NDProxy - ok
18:38:31.0524 1256  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:38:31.0547 1256  NetBIOS - ok
18:38:31.0560 1256  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:38:31.0584 1256  NetBT - ok
18:38:31.0596 1256  [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon        C:\Windows\system32\lsass.exe
18:38:31.0602 1256  Netlogon - ok
18:38:31.0650 1256  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
18:38:31.0687 1256  Netman - ok
18:38:31.0728 1256  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:38:31.0736 1256  NetMsmqActivator - ok
18:38:31.0740 1256  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:38:31.0746 1256  NetPipeActivator - ok
18:38:31.0770 1256  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
18:38:31.0798 1256  netprofm - ok
18:38:31.0817 1256  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:38:31.0824 1256  NetTcpActivator - ok
18:38:31.0827 1256  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:38:31.0834 1256  NetTcpPortSharing - ok
18:38:31.0860 1256  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:38:31.0867 1256  nfrd960 - ok
18:38:31.0903 1256  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:38:31.0932 1256  NlaSvc - ok
18:38:31.0955 1256  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:38:31.0987 1256  Npfs - ok
18:38:32.0027 1256  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
18:38:32.0084 1256  nsi - ok
18:38:32.0087 1256  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:38:32.0112 1256  nsiproxy - ok
18:38:32.0167 1256  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:38:32.0219 1256  Ntfs - ok
18:38:32.0232 1256  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
18:38:32.0271 1256  Null - ok
18:38:32.0351 1256  [ E366A5681C50785D4ED04FCFD65C3415 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
18:38:32.0366 1256  NVHDA - ok
18:38:32.0598 1256  [ 0218E1CE8F7B5D404980192B9112D03A ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:38:32.0731 1256  nvlddmkm - ok
18:38:32.0828 1256  [ 903A40C958D471F9D30D29FA6D2800A4 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
18:38:32.0858 1256  NvNetworkService - ok
18:38:32.0880 1256  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:38:32.0887 1256  nvraid - ok
18:38:32.0926 1256  [ 6F2D9D7F339F0C9EF358793F92BA3393 ] nvrd64          C:\Windows\system32\drivers\nvrd64.sys
18:38:32.0934 1256  nvrd64 - ok
18:38:32.0945 1256  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:38:32.0953 1256  nvstor - ok
18:38:32.0957 1256  [ A1578751D32B2CED76DCA2B20C2B22A5 ] nvstor64        C:\Windows\system32\drivers\nvstor64.sys
18:38:32.0966 1256  nvstor64 - ok
18:38:33.0310 1256  [ 68DE8D996D8FF628AB6B3D422035F862 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
18:38:33.0469 1256  NvStreamSvc - ok
18:38:33.0517 1256  [ B7973C405247C5A44BA46B12A4B7AEEA ] nvsvc           C:\Windows\system32\nvvsvc.exe
18:38:33.0542 1256  nvsvc - ok
18:38:33.0580 1256  [ 09216A70CC364D0974F606F6F2109210 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
18:38:33.0587 1256  nvvad_WaveExtensible - ok
18:38:33.0614 1256  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:38:33.0621 1256  nv_agp - ok
18:38:33.0633 1256  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:38:33.0641 1256  ohci1394 - ok
18:38:33.0663 1256  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:38:33.0686 1256  p2pimsvc - ok
18:38:33.0709 1256  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:38:33.0720 1256  p2psvc - ok
18:38:33.0735 1256  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
18:38:33.0743 1256  Parport - ok
18:38:33.0759 1256  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:38:33.0765 1256  partmgr - ok
18:38:33.0782 1256  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:38:33.0818 1256  PcaSvc - ok
18:38:33.0840 1256  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
18:38:33.0854 1256  pci - ok
18:38:33.0886 1256  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
18:38:33.0896 1256  pciide - ok
18:38:33.0917 1256  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:38:33.0933 1256  pcmcia - ok
18:38:33.0950 1256  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:38:33.0962 1256  pcw - ok
18:38:33.0984 1256  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:38:34.0049 1256  PEAUTH - ok
18:38:34.0085 1256  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
18:38:34.0146 1256  PeerDistSvc - ok
18:38:34.0240 1256  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:38:34.0271 1256  PerfHost - ok
18:38:34.0315 1256  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
18:38:34.0381 1256  pla - ok
18:38:34.0410 1256  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:38:34.0430 1256  PlugPlay - ok
18:38:34.0457 1256  [ 608A144310828C21DDF745124B10F833 ] Pnp680          C:\Windows\system32\drivers\pnp680.sys
18:38:34.0464 1256  Pnp680 - ok
18:38:34.0478 1256  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:38:34.0503 1256  PNRPAutoReg - ok
18:38:34.0520 1256  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:38:34.0533 1256  PNRPsvc - ok
18:38:34.0566 1256  [ 520D48ECB54A33821C95EE496A4235AF ] Point64         C:\Windows\system32\DRIVERS\point64.sys
18:38:34.0573 1256  Point64 - ok
18:38:34.0604 1256  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:38:34.0639 1256  PolicyAgent - ok
18:38:34.0657 1256  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
18:38:34.0711 1256  Power - ok
18:38:34.0735 1256  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:38:34.0779 1256  PptpMiniport - ok
18:38:34.0795 1256  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
18:38:34.0822 1256  Processor - ok
18:38:34.0844 1256  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:38:34.0869 1256  ProfSvc - ok
18:38:34.0871 1256  [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
18:38:34.0879 1256  ProtectedStorage - ok
18:38:34.0900 1256  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:38:34.0950 1256  Psched - ok
18:38:35.0010 1256  [ 788CB65D49D1162C5EE6814AFE5B0A70 ] PSI_SVC_2_x64   c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
18:38:35.0025 1256  PSI_SVC_2_x64 - ok
18:38:35.0065 1256  [ 07D57B890DD5693A6AB660CBAE8F91B4 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
18:38:35.0078 1256  PxHlpa64 - ok
18:38:35.0126 1256  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:38:35.0186 1256  ql2300 - ok
18:38:35.0200 1256  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:38:35.0208 1256  ql40xx - ok
18:38:35.0230 1256  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
18:38:35.0243 1256  QWAVE - ok
18:38:35.0259 1256  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:38:35.0270 1256  QWAVEdrv - ok
18:38:35.0278 1256  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:38:35.0300 1256  RasAcd - ok
18:38:35.0342 1256  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:38:35.0376 1256  RasAgileVpn - ok
18:38:35.0385 1256  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
18:38:35.0409 1256  RasAuto - ok
18:38:35.0424 1256  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:38:35.0460 1256  Rasl2tp - ok
18:38:35.0503 1256  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
18:38:35.0543 1256  RasMan - ok
18:38:35.0557 1256  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:38:35.0580 1256  RasPppoe - ok
18:38:35.0593 1256  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:38:35.0616 1256  RasSstp - ok
18:38:35.0630 1256  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:38:35.0670 1256  rdbss - ok
18:38:35.0687 1256  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
18:38:35.0696 1256  rdpbus - ok
18:38:35.0712 1256  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:38:35.0734 1256  RDPCDD - ok
18:38:35.0752 1256  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
18:38:35.0760 1256  RDPDR - ok
18:38:35.0776 1256  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:38:35.0811 1256  RDPENCDD - ok
18:38:35.0827 1256  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:38:35.0850 1256  RDPREFMP - ok
18:38:35.0879 1256  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:38:35.0905 1256  RdpVideoMiniport - ok
18:38:35.0919 1256  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:38:35.0945 1256  RDPWD - ok
18:38:35.0967 1256  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:38:35.0979 1256  rdyboost - ok
18:38:36.0005 1256  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:38:36.0059 1256  RemoteAccess - ok
18:38:36.0073 1256  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:38:36.0115 1256  RemoteRegistry - ok
18:38:36.0227 1256  [ 359E4937D3A52198A1FC0BE5C2188457 ] Rent Update     C:/Windows/Rent/Update.exe
18:38:36.0249 1256  Rent Update ( UnsignedFile.Multi.Generic ) - warning
18:38:36.0249 1256  Rent Update - detected UnsignedFile.Multi.Generic (1)
18:38:36.0264 1256  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:38:36.0296 1256  RpcEptMapper - ok
18:38:36.0327 1256  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
18:38:36.0340 1256  RpcLocator - ok
18:38:36.0362 1256  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\System32\rpcss.dll
18:38:36.0398 1256  RpcSs - ok
18:38:36.0434 1256  [ C65DA638943DCC758B663C9C39470A40 ] rr172x          C:\Windows\system32\drivers\rr172x.sys
18:38:36.0441 1256  rr172x - ok
18:38:36.0454 1256  [ 20FE64775ABDD03D48F32C3C153595EE ] rr174x          C:\Windows\system32\drivers\rr174x.sys
18:38:36.0462 1256  rr174x - ok
18:38:36.0480 1256  [ 74AC0A271E058F095134E73AE3821449 ] rr2210          C:\Windows\system32\drivers\rr2210.sys
18:38:36.0488 1256  rr2210 - ok
18:38:36.0502 1256  [ C6972C4A30A8EB089A0DD74B440DBE8E ] rr232x          C:\Windows\system32\drivers\rr232x.sys
18:38:36.0510 1256  rr232x - ok
18:38:36.0520 1256  [ 1853B57CDFF4A74616C9BFA36294852C ] rr2340          C:\Windows\system32\drivers\rr2340.sys
18:38:36.0528 1256  rr2340 - ok
18:38:36.0532 1256  [ 690C03513B27EE5CB1678498A0C80338 ] rr2522          C:\Windows\system32\drivers\rr2522.sys
18:38:36.0540 1256  rr2522 - ok
18:38:36.0579 1256  [ 02C3DBD13D98266A0BCDB035759A76BD ] rr276x          C:\Windows\system32\drivers\rr276x.sys
18:38:36.0596 1256  rr276x - ok
18:38:36.0602 1256  [ 120A32D33392FF3B5E05DFD62C900D13 ] rr278x          C:\Windows\system32\drivers\rr278x.sys
18:38:36.0618 1256  rr278x - ok
18:38:36.0628 1256  [ DC37E853C300B6F45753F52A2EB71F23 ] rr62x           C:\Windows\system32\drivers\rr62x.sys
18:38:36.0637 1256  rr62x - ok
18:38:36.0654 1256  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:38:36.0679 1256  rspndr - ok
18:38:36.0719 1256  [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
18:38:36.0743 1256  RTL8167 - ok
18:38:36.0795 1256  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
18:38:36.0824 1256  s3cap - ok
18:38:36.0875 1256  [ 306D778E9B6B1612DE29419ABB43BEE5 ] SaiK1703        C:\Windows\system32\DRIVERS\SaiK1703.sys
18:38:36.0891 1256  SaiK1703 - ok
18:38:36.0924 1256  [ B08581EDF3290210D3366CD2D992F6C2 ] SaiMini         C:\Windows\system32\DRIVERS\SaiMini.sys
18:38:36.0937 1256  SaiMini - ok
18:38:36.0971 1256  [ D086C2F45D328C2F63FC6B4CD79FCB66 ] SaiNtBus        C:\Windows\system32\drivers\SaiBus.sys
18:38:36.0983 1256  SaiNtBus - ok
18:38:37.0017 1256  [ C30B518844FED70334462BE6CE8BC30A ] SaiU1703        C:\Windows\system32\DRIVERS\SaiU1703.sys
18:38:37.0029 1256  SaiU1703 - ok
18:38:37.0040 1256  [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs           C:\Windows\system32\lsass.exe
18:38:37.0051 1256  SamSs - ok
18:38:37.0071 1256  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:38:37.0084 1256  sbp2port - ok
18:38:37.0104 1256  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:38:37.0142 1256  SCardSvr - ok
18:38:37.0170 1256  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:38:37.0221 1256  scfilter - ok
18:38:37.0252 1256  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
18:38:37.0314 1256  Schedule - ok
18:38:37.0342 1256  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:38:37.0378 1256  SCPolicySvc - ok
18:38:37.0415 1256  [ AD7189E85A0801DE0507C610963A3CD0 ] ScpVBus         C:\Windows\system32\DRIVERS\ScpVBus.sys
18:38:37.0426 1256  ScpVBus - ok
18:38:37.0439 1256  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:38:37.0455 1256  SDRSVC - ok
18:38:37.0567 1256  [ 98EF79CC2B07398AC525F9EA1AE0366F ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
18:38:37.0619 1256  SDScannerService - ok
18:38:37.0659 1256  [ 14BF6B3AB327D519ED007CDDC56F6900 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
18:38:37.0683 1256  SDUpdateService - ok
18:38:37.0693 1256  [ 820EBE67AB99F033FDE25B2692157991 ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
18:38:37.0700 1256  SDWSCService - ok
18:38:37.0706 1256  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:38:37.0744 1256  secdrv - ok
18:38:37.0755 1256  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
18:38:37.0789 1256  seclogon - ok
18:38:37.0809 1256  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
18:38:37.0860 1256  SENS - ok
18:38:37.0877 1256  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:38:37.0885 1256  SensrSvc - ok
18:38:37.0906 1256  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
18:38:37.0935 1256  Serenum - ok
18:38:37.0950 1256  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
18:38:37.0963 1256  Serial - ok
18:38:37.0997 1256  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:38:38.0026 1256  sermouse - ok
18:38:38.0045 1256  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:38:38.0096 1256  SessionEnv - ok
18:38:38.0111 1256  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:38:38.0137 1256  sffdisk - ok
18:38:38.0150 1256  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:38:38.0159 1256  sffp_mmc - ok
18:38:38.0167 1256  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:38:38.0191 1256  sffp_sd - ok
18:38:38.0209 1256  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:38:38.0217 1256  sfloppy - ok
18:38:38.0249 1256  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:38:38.0279 1256  SharedAccess - ok
18:38:38.0292 1256  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:38:38.0319 1256  ShellHWDetection - ok
18:38:38.0349 1256  [ E2512862265D97DB53DF788BFA9053A0 ] SI3112r         C:\Windows\system32\drivers\SI3112r.sys
18:38:38.0357 1256  SI3112r - ok
18:38:38.0386 1256  [ CA263222EB177E2E48B86D5EAA3FF75A ] SI3114          C:\Windows\system32\drivers\SI3114.sys
18:38:38.0393 1256  SI3114 - ok
18:38:38.0403 1256  [ 4891290048EC8F693FC6DF66B9CBDDDE ] SI3114r         C:\Windows\system32\drivers\SI3114R.sys
18:38:38.0410 1256  SI3114r - ok
18:38:38.0423 1256  [ 7FD4F1BB790D21EAEB2101C97178A501 ] SI3124          C:\Windows\system32\drivers\SI3124.sys
18:38:38.0430 1256  SI3124 - ok
18:38:38.0447 1256  [ 993E75B5952A642D8407ED252EFD8D82 ] Si3124r5        C:\Windows\system32\drivers\Si3124r5.sys
18:38:38.0458 1256  Si3124r5 - ok
18:38:38.0484 1256  [ 0F498DEE92FD73DD999BAE4D506367F5 ] SI3132          C:\Windows\system32\drivers\SI3132.sys
18:38:38.0491 1256  SI3132 - ok
18:38:38.0540 1256  [ 1B731AE02FC0C1CCDC4B7D32FCC95660 ] Si3531          C:\Windows\system32\drivers\Si3531.sys
18:38:38.0550 1256  Si3531 - ok
18:38:38.0576 1256  [ 127CE10E01F53F2EDACA7FE42E5631EA ] SiFilter        C:\Windows\system32\drivers\SiWinAcc.sys
18:38:38.0582 1256  SiFilter - ok
18:38:38.0597 1256  [ B742C37002B8EBEF6E230DF9B4B28546 ] SiRemFil        C:\Windows\system32\drivers\SiRemFil.sys
18:38:38.0603 1256  SiRemFil - ok
18:38:38.0628 1256  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:38:38.0634 1256  SiSRaid2 - ok
18:38:38.0647 1256  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:38:38.0653 1256  SiSRaid4 - ok
18:38:38.0696 1256  [ F5BBEDF602C310B00036EB2DBF4348A5 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
18:38:38.0711 1256  SkypeUpdate - ok
18:38:38.0775 1256  slb - ok
18:38:38.0795 1256  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:38:38.0840 1256  Smb - ok
18:38:38.0856 1256  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:38:38.0863 1256  SNMPTRAP - ok
18:38:38.0919 1256  [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan        C:\Windows\syswow64\speedfan.sys
18:38:38.0934 1256  speedfan - ok
18:38:38.0937 1256  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:38:38.0944 1256  spldr - ok
18:38:38.0961 1256  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
18:38:38.0978 1256  Spooler - ok
18:38:39.0049 1256  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
18:38:39.0149 1256  sppsvc - ok
18:38:39.0161 1256  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:38:39.0185 1256  sppuinotify - ok
18:38:39.0207 1256  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:38:39.0234 1256  srv - ok
18:38:39.0250 1256  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:38:39.0261 1256  srv2 - ok
18:38:39.0274 1256  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:38:39.0282 1256  srvnet - ok
18:38:39.0308 1256  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:38:39.0361 1256  SSDPSRV - ok
18:38:39.0376 1256  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:38:39.0399 1256  SstpSvc - ok
18:38:39.0487 1256  [ 5FFDA96330357A914A69D79BE1988A38 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:38:39.0508 1256  Steam Client Service - ok
18:38:39.0560 1256  [ EACEC497A6496E2A280348AD67ACF280 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:38:39.0576 1256  Stereo Service - ok
18:38:39.0586 1256  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:38:39.0595 1256  stexstor - ok
18:38:39.0628 1256  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\drivers\serscan.sys
18:38:39.0640 1256  StillCam - ok
18:38:39.0672 1256  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
18:38:39.0695 1256  stisvc - ok
18:38:39.0706 1256  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
18:38:39.0715 1256  storflt - ok
18:38:39.0737 1256  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
18:38:39.0743 1256  storvsc - ok
18:38:39.0759 1256  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:38:39.0765 1256  swenum - ok
18:38:39.0868 1256  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
18:38:39.0903 1256  SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
18:38:39.0903 1256  SwitchBoard - detected UnsignedFile.Multi.Generic (1)
18:38:39.0926 1256  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
18:38:39.0967 1256  swprv - ok
18:38:39.0978 1256  [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
18:38:39.0984 1256  Synth3dVsc - ok
18:38:40.0016 1256  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
18:38:40.0071 1256  SysMain - ok
18:38:40.0090 1256  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:38:40.0102 1256  TabletInputService - ok
18:38:40.0120 1256  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:38:40.0170 1256  TapiSrv - ok
18:38:40.0186 1256  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
18:38:40.0210 1256  TBS - ok
18:38:40.0267 1256  [ 40AF23633D197905F03AB5628C558C51 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:38:40.0336 1256  Tcpip - ok
18:38:40.0369 1256  [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:38:40.0394 1256  TCPIP6 - ok
18:38:40.0424 1256  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:38:40.0431 1256  tcpipreg - ok
18:38:40.0438 1256  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:38:40.0459 1256  TDPIPE - ok
18:38:40.0478 1256  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:38:40.0490 1256  TDTCP - ok
18:38:40.0509 1256  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:38:40.0538 1256  tdx - ok
18:38:40.0553 1256  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:38:40.0561 1256  TermDD - ok
18:38:40.0591 1256  [ EF4469AB69EB15E5D3754E6AEAFBCD3D ] terminpt        C:\Windows\system32\drivers\terminpt.sys
18:38:40.0600 1256  terminpt - ok
18:38:40.0629 1256  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
18:38:40.0663 1256  TermService - ok
18:38:40.0672 1256  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
18:38:40.0683 1256  Themes - ok
18:38:40.0703 1256  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
18:38:40.0726 1256  THREADORDER - ok
18:38:40.0741 1256  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
18:38:40.0775 1256  TrkWks - ok
18:38:40.0824 1256  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:38:40.0869 1256  TrustedInstaller - ok
18:38:40.0897 1256  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:38:40.0925 1256  tssecsrv - ok
18:38:40.0941 1256  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:38:40.0962 1256  TsUsbFlt - ok
18:38:40.0994 1256  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
18:38:41.0004 1256  TsUsbGD - ok
18:38:41.0016 1256  [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
18:38:41.0023 1256  tsusbhub - ok
18:38:41.0052 1256  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:38:41.0100 1256  tunnel - ok
18:38:41.0114 1256  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:38:41.0121 1256  uagp35 - ok
18:38:41.0143 1256  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:38:41.0168 1256  udfs - ok
18:38:41.0179 1256  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:38:41.0187 1256  UI0Detect - ok
18:38:41.0215 1256  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:38:41.0227 1256  uliagpkx - ok
18:38:41.0238 1256  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:38:41.0248 1256  umbus - ok
18:38:41.0277 1256  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
18:38:41.0290 1256  UmPass - ok
18:38:41.0302 1256  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
18:38:41.0337 1256  UmRdpService - ok
18:38:41.0451 1256  [ FC43877B4625F6EB773C98233EB625C5 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
18:38:41.0496 1256  UNS - ok
18:38:41.0511 1256  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
18:38:41.0550 1256  upnphost - ok
18:38:41.0607 1256  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
18:38:41.0630 1256  USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
18:38:41.0630 1256  USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
18:38:41.0669 1256  [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
18:38:41.0702 1256  usbaudio - ok
18:38:41.0736 1256  [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:38:41.0762 1256  usbccgp - ok
18:38:41.0797 1256  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:38:41.0826 1256  usbcir - ok
18:38:41.0846 1256  [ 18A85013A3E0F7E1755365D287443965 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
18:38:41.0879 1256  usbehci - ok
18:38:41.0907 1256  [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:38:41.0925 1256  usbhub - ok
18:38:41.0990 1256  [ F9B3054339A71F16430F6585EBC8BE96 ] USBMULCD        C:\Windows\system32\drivers\CM10664.sys
18:38:42.0049 1256  USBMULCD - ok
18:38:42.0059 1256  [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:38:42.0077 1256  usbohci - ok
18:38:42.0107 1256  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:38:42.0138 1256  usbprint - ok
18:38:42.0161 1256  [ 9661DA76B4531B2DA272ECCE25A8AF24 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
18:38:42.0185 1256  usbscan - ok
18:38:42.0217 1256  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:38:42.0244 1256  USBSTOR - ok
18:38:42.0259 1256  [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:38:42.0270 1256  usbuhci - ok
18:38:42.0281 1256  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
18:38:42.0317 1256  UxSms - ok
18:38:42.0339 1256  [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc        C:\Windows\system32\lsass.exe
18:38:42.0346 1256  VaultSvc - ok
18:38:42.0351 1256  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:38:42.0357 1256  vdrvroot - ok
18:38:42.0380 1256  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
18:38:42.0416 1256  vds - ok
18:38:42.0449 1256  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:38:42.0465 1256  vga - ok
18:38:42.0479 1256  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:38:42.0530 1256  VgaSave - ok
18:38:42.0533 1256  VGPU - ok
18:38:42.0551 1256  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:38:42.0560 1256  vhdmp - ok
18:38:42.0572 1256  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:38:42.0578 1256  viaide - ok
18:38:42.0626 1256  [ 9BB08C0879CADDAD964F908B73BD5C7E ] viamrx64        C:\Windows\system32\drivers\viamrx64.sys
18:38:42.0640 1256  viamrx64 - ok
18:38:42.0675 1256  [ FB2643A01A538C2E4625CDE64E51680F ] videX64         C:\Windows\system32\drivers\videX64.sys
18:38:42.0688 1256  videX64 - ok
18:38:42.0694 1256  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
18:38:42.0709 1256  vmbus - ok
18:38:42.0713 1256  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
18:38:42.0720 1256  VMBusHID - ok
18:38:42.0732 1256  [ 87FC1DD880E8CAC4FAEBB84AF61A87C4 ] vmci            C:\Windows\system32\drivers\vmci.sys
18:38:42.0739 1256  vmci - ok
18:38:42.0742 1256  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:38:42.0749 1256  volmgr - ok
18:38:42.0769 1256  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:38:42.0780 1256  volmgrx - ok
18:38:42.0790 1256  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:38:42.0798 1256  volsnap - ok
18:38:42.0815 1256  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:38:42.0823 1256  vsmraid - ok
18:38:42.0855 1256  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
18:38:42.0907 1256  VSS - ok
18:38:42.0921 1256  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
18:38:42.0949 1256  vwifibus - ok
18:38:42.0970 1256  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
18:38:42.0997 1256  W32Time - ok
18:38:43.0024 1256  [ FDA15A0510F84FA46452B74529147A15 ] WacHidRouter    C:\Windows\system32\DRIVERS\wachidrouter.sys
18:38:43.0030 1256  WacHidRouter - ok
18:38:43.0041 1256  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:38:43.0048 1256  WacomPen - ok
18:38:43.0067 1256  [ EABFDBDC9BEDD325F260A3A9FEE5B3F9 ] wacomrouterfilter C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
18:38:43.0072 1256  wacomrouterfilter - ok
18:38:43.0095 1256  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:38:43.0117 1256  WANARP - ok
18:38:43.0119 1256  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:38:43.0141 1256  Wanarpv6 - ok
18:38:43.0168 1256  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
18:38:43.0207 1256  wbengine - ok
18:38:43.0224 1256  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:38:43.0237 1256  WbioSrvc - ok
18:38:43.0251 1256  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:38:43.0277 1256  wcncsvc - ok
18:38:43.0294 1256  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:38:43.0302 1256  WcsPlugInService - ok
18:38:43.0311 1256  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
18:38:43.0317 1256  Wd - ok
18:38:43.0354 1256  [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:38:43.0380 1256  Wdf01000 - ok
18:38:43.0392 1256  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:38:43.0421 1256  WdiServiceHost - ok
18:38:43.0423 1256  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:38:43.0433 1256  WdiSystemHost - ok
18:38:43.0470 1256  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient       C:\Windows\System32\webclnt.dll
18:38:43.0487 1256  WebClient - ok
18:38:43.0510 1256  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:38:43.0561 1256  Wecsvc - ok
18:38:43.0578 1256  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:38:43.0602 1256  wercplsupport - ok
18:38:43.0624 1256  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:38:43.0647 1256  WerSvc - ok
18:38:43.0657 1256  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:38:43.0679 1256  WfpLwf - ok
18:38:43.0692 1256  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:38:43.0697 1256  WIMMount - ok
18:38:43.0731 1256  WinDefend - ok
18:38:43.0746 1256  WinHttpAutoProxySvc - ok
18:38:43.0818 1256  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:38:43.0857 1256  Winmgmt - ok
18:38:43.0907 1256  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
18:38:43.0992 1256  WinRM - ok
18:38:44.0044 1256  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
18:38:44.0075 1256  WinUsb - ok
18:38:44.0104 1256  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:38:44.0146 1256  Wlansvc - ok
18:38:44.0167 1256  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:38:44.0180 1256  WmiAcpi - ok
18:38:44.0212 1256  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:38:44.0228 1256  wmiApSrv - ok
18:38:44.0252 1256  WMPNetworkSvc - ok
18:38:44.0272 1256  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:38:44.0284 1256  WPCSvc - ok
18:38:44.0297 1256  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:38:44.0331 1256  WPDBusEnum - ok
18:38:44.0346 1256  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:38:44.0396 1256  ws2ifsl - ok
18:38:44.0417 1256  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
18:38:44.0429 1256  wscsvc - ok
18:38:44.0431 1256  WSearch - ok
18:38:44.0520 1256  [ FF3F745A22B0C9C2EF1600762E8858A1 ] WTabletServiceCon C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
18:38:44.0540 1256  WTabletServiceCon - ok
18:38:44.0603 1256  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:38:44.0677 1256  wuauserv - ok
18:38:44.0712 1256  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:38:44.0738 1256  WudfPf - ok
18:38:44.0769 1256  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:38:44.0802 1256  WUDFRd - ok
18:38:44.0828 1256  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:38:44.0851 1256  wudfsvc - ok
18:38:44.0875 1256  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:38:44.0890 1256  WwanSvc - ok
18:38:44.0932 1256  X6va011 - ok
18:38:44.0947 1256  [ FE48AE43D06C1CF6EC1244FA3562D203 ] xfiltx64        C:\Windows\system32\drivers\xfiltx64.sys
18:38:44.0960 1256  xfiltx64 - ok
18:38:44.0987 1256  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
18:38:44.0998 1256  xusb21 - ok
18:38:45.0008 1256  ================ Scan global ===============================
18:38:45.0040 1256  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:38:45.0070 1256  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:38:45.0079 1256  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
18:38:45.0089 1256  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:38:45.0111 1256  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:38:45.0116 1256  [Global] - ok
18:38:45.0116 1256  ================ Scan MBR ==================================
18:38:45.0135 1256  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:38:45.0305 1256  \Device\Harddisk0\DR0 - ok
18:38:45.0316 1256  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
18:38:45.0629 1256  \Device\Harddisk1\DR1 - ok
18:38:45.0629 1256  ================ Scan VBR ==================================
18:38:45.0632 1256  [ 029C25B4503554629C78E69C6E4CBF1E ] \Device\Harddisk0\DR0\Partition1
18:38:45.0634 1256  \Device\Harddisk0\DR0\Partition1 - ok
18:38:45.0636 1256  [ 737751D1514E79E0074162048620C458 ] \Device\Harddisk1\DR1\Partition1
18:38:45.0638 1256  \Device\Harddisk1\DR1\Partition1 - ok
18:38:45.0640 1256  [ 26971ACF063534DF03A71BBFD465AEF5 ] \Device\Harddisk1\DR1\Partition2
18:38:45.0642 1256  \Device\Harddisk1\DR1\Partition2 - ok
18:38:45.0663 1256  [ 991E5AE7217CB35EFC663BCC3773AC7E ] \Device\Harddisk1\DR1\Partition3
18:38:45.0665 1256  \Device\Harddisk1\DR1\Partition3 - ok
18:38:45.0665 1256  ============================================================
18:38:45.0665 1256  Scan finished
18:38:45.0665 1256  ============================================================
18:38:45.0676 4020  Detected object count: 4
18:38:45.0676 4020  Actual detected object count: 4
18:39:10.0891 4020  HiPatchService ( UnsignedFile.Multi.Generic ) - skipped by user
18:39:10.0891 4020  HiPatchService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:39:10.0892 4020  Rent Update ( UnsignedFile.Multi.Generic ) - skipped by user
18:39:10.0892 4020  Rent Update ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:39:10.0893 4020  SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
18:39:10.0893 4020  SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:39:10.0894 4020  USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
18:39:10.0894 4020  USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:39:36.0305 4796  Deinitialize success

schrauber · 09.02.2014, 09:52

hi,

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Kyiru · 09.02.2014, 11:16

Hallo,
seit 3 Stunden hab ich ruhe vor dem "Gestöhne", sollte es wieder kommen soll ich es dann mit der Combofix probieren?

Und danke auf jeden Fall für die Hilfe.

schrauber · 10.02.2014, 09:04

Auf jeden Fall.

10.02.2014, 09:04	#9
schrauber /// the machine /// TB-Ausbilder	Seit kurzem seltsames Stöhn Geräusch im Hintergrund Auf jeden Fall. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Seit kurzem seltsames Stöhn Geräusch im Hintergrund

Plagegeister aller Art und deren Bekämpfung: Seit kurzem seltsames Stöhn Geräusch im Hintergrund