Multiple instanzen verschiedener Prozesse laufen, nicht killbar.

Ummgh23 · 28.04.2014, 05:05

Moin Leute.

Keine ahnung was mit meim pc los ist, aber einige prozesse laufen öfters im task-manager und sind unkillbar("Zugriff verweigert!"). Bei Skype ist die z.b der fall, wodurch ich Skype nicht mehr verwenden kann, spuckt mir nen datenbankzugriffsfehler aus.

Hardware: i7-3820 @ 3,6GHz
GTX 690
16 GB Ram
Windows 8

Bitte um Hilfe
Ummgh23

schrauber · 28.04.2014, 07:01

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Ummgh23 · 28.04.2014, 14:21

So im anhang die Logs

schrauber · 28.04.2014, 19:42

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Ummgh23 · 28.04.2014, 19:51

Addition.txt

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-04-2014
Ran by Kevin at 2014-04-28 15:13:17
Running from C:\Users\Kevin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

10,000,000 (HKLM-x32\...\Steam App 227580) (Version:  - EightyEightGames)
AaaaaAAaaaAAAaaAAAAaAAAAA!!! for the Awesome (HKLM-x32\...\Steam App 15560) (Version:  - Dejobaan Games, LLC)
Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}Visible) (Version: 17.0.6614 - Acronis)
Acronis True Image 2014 (x32 Version: 17.0.6614 - Acronis) Hidden
Activision(R) (x32 Version: 1.00.0000 - Activision) Hidden
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12.2.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.3.0.322 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.05 - Adobe Systems Incorporated)
AlienAutopsy (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
Alienware Command Center (HKLM-x32\...\InstallShield_{6A7D1CAC-6267-4C71-A759-CB5D9E9FAFAA}) (Version: 2.7.25.0 - Alienware Corp.)
Alienware Command Center (Version: 2.7.25.0 - Alienware Corp.) Hidden
Alliance of Valiant Arms (HKLM-x32\...\Steam App 102700) (Version:  - RED DUCK Inc.)
AmoK Exif Sorter 2.5.6 (nur deinstallieren) (HKLM-x32\...\AmoKExifSorter2) (Version:  - )
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin's Creed(R) III v1.03 (HKLM-x32\...\{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}) (Version: 1.03 - Ubisoft)
Aurora 30.0a2 (x86 de) (HKLM-x32\...\Aurora 30.0a2 (x86 de)) (Version: 30.0a2 - Mozilla)
Awesomenauts (HKLM-x32\...\Steam App 204300) (Version:  - Ronimo Games)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.2.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.2 - EA Digital Illusions CE AB)
Beat Hazard (HKLM-x32\...\Steam App 49600) (Version:  - Cold Beam Games)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG5500 series Benutzerregistrierung (HKLM-x32\...\Canon MG5500 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MG5500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series) (Version: 1.01 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.07 - Piriform)
Claptrap Soundboard (HKLM-x32\...\Claptrap Soundboard1.0) (Version: 1.0 - jayuzumi soundboards)
Convert Audio Free FLAC to MP3 version 1.0 (HKLM-x32\...\Convert Audio Free FLAC to MP3_is1) (Version: 1.0 - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.67.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Curse Client (HKCU\...\101a9f93b8f0bb6f) (Version: 5.1.1.792 - Curse)
CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden
CyberLink Media Suite 11 (x32 Version: 11.0.1.3313 - CyberLink Corp.) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 11.0 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.3123 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.1.3316 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (x32 Version: 12.0.3324.55 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version:  - Techland)
Dead Island: Epidemic (HKLM-x32\...\Steam App 222900) (Version:  - Stunlock Studios)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5971CA1F-6BDE-498F-952C-9F2BF94070A4}) (Version:  - Microsoft)
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.4.0.4 - Dell)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.31 - Dropbox, Inc.)
Drum Controller Standard Tuning Kit (HKLM-x32\...\InstallShield_{FC8A7918-D65D-440C-9596-C88185E8DCA4}) (Version: 1.00.0000 - Activision)
Duplicate Cleaner Free 3.2.3 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 3.2.3 - DigitalVolcano Software Ltd)
EasyTAG 2.2.0 (HKLM-x32\...\EasyTAG) (Version: 2.2.0 - EasyTAG project)
Enclave (HKLM-x32\...\Steam App 253980) (Version:  - Topware)
ESL Wire 1.17.3 (HKLM\...\ESL Wire_is1) (Version:  - Turtle Entertainment GmbH)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Free YouTube Download version 3.2.18.1128 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.18.1128 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.17.1127 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.17.1127 - DVDVideoSoft Ltd.)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
Gameforge Live 1.10.0 "Legend" (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.10.0 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GetDataBack for FAT (HKLM-x32\...\{2EEEC858-21F8-419B-8FE2-820621BFFCD7}) (Version: 4.33.000 - Runtime Software)
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Guitar Hero III (HKLM-x32\...\{0CE1A6C0-F3F7-49E6-8F9D-2431F9827441}) (Version: 1.31 - Activision)
Guitar Hero World Tour (HKLM-x32\...\{A126E617-63F0-4E57-BFA4-7190F5845C39}) (Version: 1.0 - Aspyr)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version:  - IO Interactive)
I Am Alive (HKLM-x32\...\Steam App 214250) (Version:  - Ubisoft  Shanghaï)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Jesse Pinkman Soundboard (HKLM-x32\...\Jesse Pinkman Soundboard1.0) (Version: 1.0 - jayuzumi soundboards)
Last.fm Scrobbler 2.1.36 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Loadout (HKLM-x32\...\Steam App 208090) (Version:  - Edge of Reality)
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.50 (HKLM\...\Logitech Gaming Software) (Version: 8.50.281 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.188 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.188 - LogMeIn, Inc.) Hidden
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0a2 - Mozilla)
Mp3tag v2.58 (HKLM-x32\...\Mp3tag) (Version: v2.58 - Florian Heidenreich)
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.46.0 - Black Tree Gaming)
NVIDIA 3D Vision Controller-Treiber 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0 - NVIDIA Corporation)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.55 (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.55 (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.22 (Version: 1.2.22 - NVIDIA Corporation) Hidden
ONAIR 4.0.0.941 (HKLM\...\ONAIR_is1) (Version:  - )
One Finger Death Punch (HKLM-x32\...\Steam App 264200) (Version:  - Silver Dollar Games)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\{FB83467F-D8EB-43E6-8B3D-860B045C1C52}) (Version: 0.51.325 - Overwolf)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Prezi (HKLM-x32\...\{BD44409B-A691-4B97-B33D-F07E1DE791F3}) (Version: 5.0.9 - Ihr Firmenname)
PricePeep (HKLM-x32\...\PricePeep) (Version: 2.2.0.9 - betwikx LLC) <==== ATTENTION
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.17.22 - Razer Inc.)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version:  - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.2.8400.30143 - Realtek Semiconductor Corp.)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version:  - )
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.12.20.154 - Conduit) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 1.8.323 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.27.13 (HKLM\...\{C9193CBB-C31A-412A-A074-AD08F0F2CF3D}) (Version: 7.0.27.13 - Mad Catz)
Sniper Ghost Warrior 2 (HKLM-x32\...\Steam App 34870) (Version:  - City Interactive)
Software Version Updater (HKLM-x32\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.3.8 - ) <==== ATTENTION
Starbound (HKLM-x32\...\Steam App 211820) (Version:  - )
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SteamWorld Dig (HKLM-x32\...\Steam App 252410) (Version:  - Image&amp;Form)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
Surgeon Simulator 2013 (HKLM-x32\...\Steam App 233720) (Version:  - Bossa Studios)
Symphony (HKLM-x32\...\Steam App 207750) (Version:  - Empty Clip Studios)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Thief Update v1.1 with DLC (HKLM-x32\...\VGhpZWY=_is1) (Version: 1 - )
Titanfall™-Beta (HKLM-x32\...\{E933BD1A-9B05-42A3-A1CF-3DA81C72E454}) (Version: 1.0.0.0 - Electronic Arts)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Trevor Phillips Soundboard (HKLM-x32\...\Trevor Phillips Soundboard1.0) (Version: 1.0 - jayuzumi soundboards)
TubeBox (HKLM-x32\...\{64633063-0fc7-4dd7-af6b-325ee4abbff9}) (Version: 4.2.0 - Freetec)
TubeBox (x32 Version: 4.2.0 - Freetec) Hidden
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2553444) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{799005D3-9B70-4219-AFE0-BC479614CC4D}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VDownloader 3.9.1654 (HKLM\...\{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1) (Version:  - Vitzo Limited)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BE94768F-5232-11E3-BD78-F04DA23A5C58}) (Version: 12.0.770 - Sony)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WALTER WHITE Soundboard (HKLM-x32\...\WALTER WHITE Soundboard1.0) (Version: 1.0 - jayuzumi soundboards)
WinPcap 4.1.1 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinRAR 5.01 beta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.1 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version:  - Blizzard Entertainment)

==================== Restore Points  =========================

06-04-2014 12:21:59 Gerätetreiber-Paketinstallation: EuMus Design Audio-, Video- und Gamecontroller
12-04-2014 15:38:31 DirectX wurde installiert
14-04-2014 18:24:33 DirectX wurde installiert
17-04-2014 09:10:04 Installed Java 7 Update 55
21-04-2014 13:04:19 Installed puush
26-04-2014 15:23:58 Removed Skype™ 6.14
27-04-2014 16:31:56 DirectX wurde installiert

==================== Hosts content: ==========================

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {086BB8C8-4404-4871-96C4-FFED86B232B7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd)
Task: {17A41DA8-D0AA-43FB-B1C1-919CAFC9B04A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {3CF1224A-30EB-49C3-A27C-8803ADB6E749} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\AlienAutopsy\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {52BDB8BD-A0CF-4C3B-99A4-9812675E3E15} - System32\Tasks\Software Updater => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-12-20] ()
Task: {5BF3B15F-66FD-437D-B3FC-CF8252DB3397} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {778DBD8E-A702-4E8E-9734-3D65F50DFB71} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-25] (Adobe Systems Incorporated)
Task: {8FF37EFB-821B-4AAF-9CBC-37945777CDDA} - System32\Tasks\AmiUpdXp => C:\Users\Kevin\AppData\Local\0d6188bc-7f63-4b12-0c60-ca1944218475\0d6188bc-7f63-4b12-0c60-ca1944218475.exe [2014-03-21] () <==== ATTENTION
Task: {9C7AD72B-1731-476C-B14F-88CAA8FE0982} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {DC93AB7C-2027-49B9-AB3F-F01CA758AD45} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2014-01-31] (Microsoft Corporation)
Task: {DEC34E89-BF25-4B3E-8FDE-AA6F3646ACF6} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\AlienAutopsy\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {E937B2F1-18A8-4F5B-8D77-BB9B7048881B} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Kevin\AppData\Local\0d6188bc-7f63-4b12-0c60-ca1944218475\0d6188bc-7f63-4b12-0c60-ca1944218475.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-02-01 20:28 - 2014-01-29 19:14 - 00663056 _____ () C:\Program Files\EslWire\service\WireHelperSvc.exe
2014-02-01 20:28 - 2014-02-06 16:38 - 00214016 _____ () C:\Program Files\EslWire\service\NocIPC64.dll
2014-01-28 18:10 - 2013-05-14 11:50 - 00140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2014-03-30 18:20 - 2014-03-30 18:20 - 00076888 _____ () C:\Windows\system32\PnkBstrA.exe
2013-11-20 02:13 - 2014-03-04 15:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-12-13 13:20 - 2013-12-13 13:20 - 03359600 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2013-10-01 11:32 - 2013-10-01 11:32 - 02818216 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2012-07-26 09:58 - 2012-07-26 09:53 - 00170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2013-12-17 17:45 - 2014-04-02 15:28 - 00096200 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2013-12-17 17:45 - 2014-04-02 15:29 - 00871712 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 02868736 _____ () C:\Program Files\EslWire\QtCore4.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 10445824 _____ () C:\Program Files\EslWire\QtGui4.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 14672896 _____ () C:\Program Files\EslWire\QtWebKit4.dll
2014-02-01 20:28 - 2014-04-02 13:52 - 08657920 _____ () C:\Program Files\EslWire\WireCore.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 00348160 _____ () C:\Program Files\EslWire\phonon4.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 01277440 _____ () C:\Program Files\EslWire\QtNetwork4.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 00503296 _____ () C:\Program Files\EslWire\QtDBus4.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 00799744 _____ () C:\Program Files\EslWire\QtSql4.dll
2014-02-01 20:28 - 2014-02-06 16:38 - 00214016 _____ () C:\Program Files\EslWire\NocIPC64.dll
2014-02-01 20:28 - 2014-04-02 13:51 - 00607232 _____ () C:\Program Files\EslWire\Linesman.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 00454656 _____ () C:\Program Files\EslWire\QtXml4.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 00032768 _____ () C:\Program Files\EslWire\imageformats\qgif4.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 00237056 _____ () C:\Program Files\EslWire\imageformats\qjpeg4.dll
2014-02-01 20:28 - 2014-01-29 19:14 - 00278528 _____ () C:\Program Files\EslWire\imageformats\qmng4.dll
2014-02-01 20:28 - 2014-02-06 16:39 - 00310272 _____ () C:\Program Files\EslWire\laginspect\laginspect.dll
2012-01-10 14:41 - 2014-04-21 15:05 - 00567880 _____ () C:\Program Files (x86)\puush\puush.exe
2013-11-26 21:01 - 2013-11-26 21:00 - 00014848 _____ () C:\Users\Kevin\AppData\Local\Apps\2.0\EQCCK3VR.JZ5\W1MCNTKQ.5R1\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\Curse.CurseClient.WowDb.dll
2013-11-26 21:01 - 2013-11-26 21:00 - 00035840 _____ () C:\Users\Kevin\AppData\Local\Apps\2.0\EQCCK3VR.JZ5\W1MCNTKQ.5R1\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\Curse.Advertising.dll
2013-11-26 21:01 - 2013-11-26 21:00 - 00099840 _____ () C:\Users\Kevin\AppData\Local\Apps\2.0\EQCCK3VR.JZ5\W1MCNTKQ.5R1\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\Curse.CurseClient.CMOD2.dll
2014-02-06 21:33 - 2014-02-06 21:33 - 00317720 _____ () C:\Program Files (x86)\PricePeep\PricePeepUpdater.exe
2013-12-13 13:20 - 2013-12-13 13:20 - 04696432 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2013-09-13 20:51 - 2013-09-13 20:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 20:51 - 2013-09-13 20:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-10-24 18:06 - 2013-10-24 18:06 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2013-10-24 18:09 - 2013-10-24 18:09 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2014-02-22 00:32 - 2014-02-22 00:32 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-02-22 00:32 - 2014-02-22 00:32 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-02-22 00:32 - 2014-02-22 00:32 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2012-10-27 09:53 - 2012-10-27 09:53 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2014-01-29 12:54 - 2014-04-25 07:13 - 00962560 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2014-01-29 12:54 - 2014-04-25 07:13 - 00024064 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2014-01-29 12:54 - 2014-04-25 07:13 - 00025088 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2014-01-29 12:54 - 2014-04-25 07:13 - 00217088 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2014-01-29 12:54 - 2014-04-25 07:13 - 00261632 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2014-01-29 12:54 - 2014-04-25 07:13 - 00019968 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2014-01-29 12:54 - 2014-04-25 07:13 - 00302592 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2014-01-29 12:54 - 2014-04-25 07:13 - 00018944 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2014-01-08 13:06 - 2014-04-22 00:55 - 00340480 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-04-23 06:29 - 2014-04-22 00:55 - 00471552 _____ () C:\Program Files (x86)\Steam\libavutil-53.dll
2013-10-24 10:45 - 2014-04-01 00:09 - 00754688 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2013-10-30 12:25 - 2014-04-24 00:01 - 01092288 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2013-10-23 13:07 - 2014-03-03 21:15 - 20626624 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2013-06-14 16:49 - 2013-06-15 01:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2013-06-14 16:49 - 2013-06-15 01:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2013-06-14 16:49 - 2013-06-15 01:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2014-03-05 20:30 - 2014-03-05 20:30 - 00025600 _____ () C:\Program Files (x86)\Overwolf\CoreAudioApi.dll
2014-03-05 20:29 - 2014-03-05 20:29 - 00607232 _____ () C:\Program Files (x86)\Overwolf\client_c_api_win32.dll
2014-02-22 00:32 - 2014-02-22 00:32 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00124928 _____ () C:\Program Files (x86)\Raptr\_elementtree.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2012-02-06 22:28 - 2012-02-06 22:28 - 00031744 _____ () C:\Program Files (x86)\Raptr\Crypto.Cipher.AES.pyd
2012-02-06 22:28 - 2012-02-06 22:28 - 00010752 _____ () C:\Program Files (x86)\Raptr\Crypto.Random.OSRNG.winrandom.pyd
2012-02-06 22:28 - 2012-02-06 22:28 - 00011264 _____ () C:\Program Files (x86)\Raptr\Crypto.Util._counter.pyd
2011-05-10 21:01 - 2011-05-10 21:01 - 00030208 _____ () C:\Program Files (x86)\Raptr\simplejson._speedups.pyd
2014-02-22 00:32 - 2014-02-22 00:32 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00016384 _____ () C:\Program Files (x86)\Raptr\win32trace.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2013-11-21 02:05 - 2013-11-21 02:05 - 00256000 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2014-04-28 05:55 - 2014-04-28 05:55 - 00041984 _____ () c:\users\kevin\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprxmj20.dll
2013-10-19 01:55 - 2013-10-19 01:55 - 25100288 _____ () C:\Users\Kevin\AppData\Roaming\Dropbox\bin\libcef.dll
2013-10-24 18:06 - 2013-10-24 18:06 - 00036672 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2013-10-10 13:02 - 2013-10-10 13:02 - 00013120 _____ () C:\Program Files (x86)\Common Files\Acronis\TibMounter\icudt38.dll
2013-12-19 11:49 - 2013-12-19 11:49 - 32733080 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll
2013-11-21 02:19 - 2013-03-05 05:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-05 12:41 - 2013-03-05 12:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2013-11-21 21:06 - 2013-09-03 15:01 - 00736768 _____ () C:\Program Files (x86)\Last.fm\unicorn.dll
2013-11-21 21:06 - 2013-09-03 15:01 - 00126976 _____ () C:\Program Files (x86)\Last.fm\listener.dll
2013-11-21 21:06 - 2013-09-03 15:01 - 00032768 _____ () C:\Program Files (x86)\Last.fm\logger.dll
2013-11-21 21:06 - 2013-09-03 11:54 - 00351232 _____ () C:\Program Files (x86)\Last.fm\lastfm.dll
2013-11-21 21:06 - 2013-01-18 13:39 - 00302592 _____ () C:\Program Files (x86)\Last.fm\phonon.dll
2013-11-21 21:06 - 2013-01-18 13:49 - 00182784 _____ () C:\Program Files (x86)\Last.fm\plugins\phonon_backend\phonon_vlc.dll
2013-11-21 21:06 - 2012-12-13 02:12 - 00111104 _____ () C:\Program Files (x86)\Last.fm\libvlc.dll
2013-11-21 21:06 - 2012-12-13 02:13 - 02286592 _____ () C:\Program Files (x86)\Last.fm\libvlccore.dll
2013-11-21 21:06 - 2012-12-13 02:13 - 00049664 _____ () C:\Program Files (x86)\Last.fm\plugins\audio_output\libaout_directx_plugin.dll
2014-04-28 06:09 - 2014-04-28 06:09 - 03945584 _____ () C:\Program Files (x86)\Aurora\mozjs.dll
2013-10-23 14:15 - 2013-10-23 14:15 - 00230376 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2013-10-23 14:15 - 2013-10-23 14:15 - 00237032 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2013-10-23 14:15 - 2013-10-23 14:15 - 00431080 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-10-23 14:15 - 2013-10-23 14:15 - 00555496 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/28/2014 06:55:32 AM) (Source: Perflib) (User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8

Error: (04/28/2014 06:55:32 AM) (Source: Perflib) (User: )
Description: MSDTCC:\Windows\system32\msdtcuiu.DLL8

Error: (04/28/2014 06:55:32 AM) (Source: Perflib) (User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (04/28/2014 06:55:32 AM) (Source: Perflib) (User: )
Description: ESENTC:\Windows\system32\esentprf.dll8

Error: (04/28/2014 06:55:32 AM) (Source: Perflib) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (04/27/2014 00:58:58 PM) (Source: Application Hang) (User: )
Description: Programm Symphony.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 6e38

Startzeit: 01cf6205a8ab91ef

Endzeit: 4294967295

Anwendungspfad: C:\Program Files (x86)\Steam\steamapps\common\Symphony\Symphony.exe

Berichts-ID: ee173578-cdfa-11e3-bed0-dc85de434883

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (04/27/2014 11:19:40 AM) (Source: Perflib) (User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8

Error: (04/27/2014 11:19:40 AM) (Source: Perflib) (User: )
Description: MSDTCC:\Windows\system32\msdtcuiu.DLL8

Error: (04/27/2014 11:19:40 AM) (Source: Perflib) (User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (04/27/2014 11:19:40 AM) (Source: Perflib) (User: )
Description: ESENTC:\Windows\system32\esentprf.dll8


System errors:
=============
Error: (04/27/2014 10:30:54 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
%%1

Error: (04/25/2014 08:38:38 PM) (Source: Service Control Manager) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "DNS-Client" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (04/25/2014 08:37:38 PM) (Source: Service Control Manager) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Kryptografiedienste" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (04/25/2014 08:36:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Remotedesktopdienste" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/25/2014 08:36:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Telefonie" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/25/2014 08:36:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NLA (Network Location Awareness)" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 100 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/25/2014 08:36:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Arbeitsstationsdienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/25/2014 08:36:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/25/2014 08:36:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Kryptografiedienste" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/25/2014 07:12:08 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053


Microsoft Office Sessions:
=========================
Error: (04/28/2014 06:55:32 AM) (Source: Perflib)(User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8

Error: (04/28/2014 06:55:32 AM) (Source: Perflib)(User: )
Description: MSDTCC:\Windows\system32\msdtcuiu.DLL8

Error: (04/28/2014 06:55:32 AM) (Source: Perflib)(User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (04/28/2014 06:55:32 AM) (Source: Perflib)(User: )
Description: ESENTC:\Windows\system32\esentprf.dll8

Error: (04/28/2014 06:55:32 AM) (Source: Perflib)(User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (04/27/2014 00:58:58 PM) (Source: Application Hang)(User: )
Description: Symphony.exe0.0.0.06e3801cf6205a8ab91ef4294967295C:\Program Files (x86)\Steam\steamapps\common\Symphony\Symphony.exeee173578-cdfa-11e3-bed0-dc85de434883

Error: (04/27/2014 11:19:40 AM) (Source: Perflib)(User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8

Error: (04/27/2014 11:19:40 AM) (Source: Perflib)(User: )
Description: MSDTCC:\Windows\system32\msdtcuiu.DLL8

Error: (04/27/2014 11:19:40 AM) (Source: Perflib)(User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (04/27/2014 11:19:40 AM) (Source: Perflib)(User: )
Description: ESENTC:\Windows\system32\esentprf.dll8


CodeIntegrity Errors:
===================================
  Date: 2014-04-15 19:27:45.968
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Drivers\vrtaucbl.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-15 16:57:29.490
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Drivers\vrtaucbl.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-14 14:21:25.723
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Drivers\vrtaucbl.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-10 19:01:32.165
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Drivers\vrtaucbl.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-09 16:43:57.601
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Drivers\vrtaucbl.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-08 14:09:06.773
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\Drivers\vrtaucbl.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Percentage of memory in use: 24%
Total physical RAM: 16302.16 MB
Available physical RAM: 12308.36 MB
Total Pagefile: 18606.16 MB
Available Pagefile: 12920.96 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:1862.5 GB) (Free:912.65 GB) NTFS
Drive d: (Guitar Hero World Tour) (CDROM) (Total:6.13 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: BE240238)

Partition: GPT Partition Type.

==================== End Of Log ============================

Ummgh23 · 28.04.2014, 19:52

FRST.txt

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-04-2014
Ran by Kevin (administrator) on ALIENWARE on 28-04-2014 15:12:49
Running from C:\Users\Kevin\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\EslWire\service\WireHelperSvc.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
() C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\system32\PnkBstrA.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Conduit) C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Conduit) C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe
(Conduit) C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Dell) C:\Users\Kevin\AppData\Local\Apps\2.0\EQCCK3VR.JZ5\W1MCNTKQ.5R1\dell..tion_0f612f649c4a10af_0005.0004_3ddfe37344028d2c\DellSystemDetect.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Turtle Entertainment GmbH) C:\Program Files\EslWire\wire.exe
(DJMASTER.COM) C:\Program Files\ONAIR\ONAIR.exe
() C:\Program Files (x86)\puush\puush.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper64.exe
(Curse) C:\Users\Kevin\AppData\Local\Apps\2.0\EQCCK3VR.JZ5\W1MCNTKQ.5R1\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe
(Dropbox, Inc.) C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe
() C:\Program Files (x86)\PricePeep\PricePeepUpdater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Alienware) C:\Program Files\Alienware\Command Center\ThermalController.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Microsoft Corporation) C:\Windows\system32\taskmgr.exe
(Last.fm) C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe
(Mozilla Corporation) C:\Program Files (x86)\Aurora\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Aurora\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
(TeamSpeak Systems GmbH) C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [519408 2013-07-18] (Acronis)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8290584 2013-08-01] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-04-02] (NVIDIA Corporation)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [VDownloader] => C:\Program Files\VDownloader\VDownloader.exe [881152 2013-12-09] (Vitzo)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2201032 2014-04-02] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Command Center Controllers] => C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [12616 2012-01-10] (Alienware)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7843992 2013-10-24] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1104616 2013-10-10] (Acronis International GmbH)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376 2013-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [444760 2014-03-07] (Razer Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-04-15] (LogMeIn Inc.)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [DellSystemDetect] => C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3588952 2014-04-25] (Electronic Arts)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1825984 2014-04-24] (Valve Corporation)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-04-11] (Raptr, Inc)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [37664 2014-03-05] (Overwolf LTD)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [ESL Wire] => C:\Program Files\EslWire\wire.exe [3620352 2014-04-02] (Turtle Entertainment GmbH)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Kevin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [ONAIR] => C:\Program Files\ONAIR\ONAIR.exe [3505152 2014-03-09] (DJMASTER.COM)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2014-04-21] ()
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20918432 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-2908868876-2045890655-3528692861-1001\...\MountPoints2: {bde1b0eb-5174-11e3-be65-806e6f6e6963} - "D:\setup.exe" 
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1355552 2014-04-08] (Conduit)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1050912 2014-04-08] (Conduit)
Startup: C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
Startup: C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PricePeepUpdater.lnk
ShortcutTarget: PricePeepUpdater.lnk -> C:\Program Files (x86)\PricePeep\PricePeepUpdater.exe ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?ctid=CT3323882&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP438F07D2-38DE-4EBD-9DA1-14360CC25479&SSPV=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1E4DBDDE2807CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKLM - DefaultScope {3B5CCE57-FA96-4E1D-B691-0FA66591519E} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM - {3B5CCE57-FA96-4E1D-B691-0FA66591519E} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3323882&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP438F07D2-38DE-4EBD-9DA1-14360CC25479&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3323882&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP438F07D2-38DE-4EBD-9DA1-14360CC25479&q={searchTerms}&SSPV=
SearchScopes: HKCU - {05E205BA-FB3B-401C-A6FA-C384AE3B36EE} URL = hxxp://www.google.at/search?q={searchTerms}
SearchScopes: HKCU - {3B5CCE57-FA96-4E1D-B691-0FA66591519E} URL = hxxp://www.sm.de/?q={searchTerms}
BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files (x86)\PricePeep\pricepeep.dll (PricePeep)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\3580i1mr.default
FF Homepage: hxxp://www.startfenster.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Extension: Sync Video - C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\3580i1mr.default\Extensions\jid0-6qxNvGdS7HQG9rsoojsd0BubY84@jetpack.xpi [2014-04-05]
FF Extension: PricePeep - C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\3580i1mr.default\Extensions\pricepeep@getpricepeep.com.xpi [2014-02-06]
FF Extension: Copy Links - C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\3580i1mr.default\Extensions\{76C80A11-FAD4-406c-8246-F5ED4F9367B5}.xpi [2013-12-16]
FF Extension: Adblock Plus - C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\3580i1mr.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-29]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Aurora\firefox.exe

==================== Services (Whitelisted) =================

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [2470688 2014-04-08] (Conduit)
R2 EslWireHelper; C:\Program Files\EslWire\service\WireHelperSvc.exe [663056 2014-01-29] ()
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2464400 2012-09-07] (Realsil Microelectronics Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-14] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-08] (LogMeIn, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1615192 2014-04-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20541216 2014-04-02] (NVIDIA Corporation)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [99616 2014-03-05] (Overwolf LTD)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-03-30] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-03-30] ()
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-03-26] (CyberLink)
S2 SystemStoreService; C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe [297984 2014-05-01] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-10-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-03-06] (Disc Soft Ltd)
R0 ESLWireAC; C:\Windows\System32\drivers\ESLWireACD.sys [184968 2014-03-30] (<Turtle Entertainment>)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-04-15] (LogMeIn Inc.)
R2 npf; C:\Windows\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-21] (NVIDIA Corporation)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39080 2013-11-15] (Razer Inc)
R3 SaiK0CD7; C:\Windows\system32\DRIVERS\SaiK0CD7.sys [180544 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU0CD7; C:\Windows\System32\drivers\SaiU0CD7.sys [47168 2012-09-20] (Saitek)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2013-11-21] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2013-11-21] (Acronis International GmbH)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S3 NTIOLib_Flash; \??\C:\Users\Kevin\AppData\Local\Temp\2WSX3EDC\NTIOLib_X64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-01 19:46 - 2014-05-01 19:47 - 03821064 _____ () C:\Users\Kevin\Downloads\battlelog-web-plugins_2.3.2_130.exe
2014-05-01 18:38 - 2014-05-01 18:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-05-01 18:38 - 2014-05-01 18:38 - 00000000 ____D () C:\Program Files\CPUID
2014-05-01 18:37 - 2014-05-01 18:37 - 01460512 _____ ( ) C:\Users\Kevin\Downloads\cpu-z_1.67.1-setup-en.exe
2014-04-28 15:12 - 2014-04-28 15:12 - 00024785 _____ () C:\Users\Kevin\Downloads\FRST.txt
2014-04-28 15:09 - 2014-04-28 15:12 - 00000000 ____D () C:\FRST
2014-04-28 15:08 - 2014-04-28 15:08 - 02061824 _____ (Farbar) C:\Users\Kevin\Downloads\FRST64.exe
2014-04-28 06:09 - 2014-04-28 06:09 - 00000000 ____D () C:\Program Files (x86)\Aurora
2014-04-27 18:34 - 2014-04-27 18:34 - 00000000 ____D () C:\Users\Kevin\AppData\Local\My Games
2014-04-27 12:44 - 2014-04-27 12:44 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Empty Clip Studios
2014-04-27 12:13 - 2014-04-27 12:13 - 00000000 ____D () C:\Users\Kevin\Documents\IAmAlive
2014-04-27 12:11 - 2014-04-27 18:32 - 00037329 _____ () C:\Windows\DirectX.log
2014-04-27 10:30 - 2014-04-27 10:30 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-04-27 10:30 - 2014-04-27 10:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-04-27 10:27 - 2014-04-27 10:28 - 34827424 _____ (Skype Technologies S.A.) C:\Users\Kevin\Downloads\SkypeSetupFull6.14.73.104.exe
2014-04-25 23:42 - 2014-04-26 18:39 - 00000000 ____D () C:\Program Files (x86)\MediaBuzzV1
2014-04-25 23:42 - 2014-04-25 23:42 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-04-25 23:40 - 2014-04-25 23:40 - 00000000 _____ () C:\Users\Kevin\Desktop\Breaking bad BTS and deleted scenes.txt
2014-04-25 20:47 - 2014-04-25 20:47 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\RotMG.Production
2014-04-25 20:30 - 2014-04-25 23:00 - 105999000 _____ () C:\Users\Kevin\Downloads\codex-octodad.part01.rar
2014-04-23 23:45 - 2014-04-23 23:46 - 11065618 _____ () C:\Users\Kevin\Downloads\tokens.zip
2014-04-23 23:31 - 2014-04-24 08:28 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Forge
2014-04-23 23:31 - 2014-04-23 23:31 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Forge
2014-04-23 23:29 - 2014-04-24 00:21 - 00000000 ____D () C:\Users\Kevin\Desktop\Forge
2014-04-23 21:03 - 2014-04-23 21:03 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\StunlockStudios
2014-04-22 23:04 - 2014-04-22 23:04 - 00000000 _____ () C:\Users\Kevin\Desktop\Achammer Protokoll, Mathe Verbesserung, Physik Verbesserung.txt
2014-04-22 23:00 - 2014-04-22 23:02 - 00000000 ____D () C:\Users\Kevin\Documents\Schule
2014-04-21 15:09 - 2014-04-21 15:09 - 00000000 ____D () C:\Users\Kevin\Documents\CyberLink
2014-04-21 15:09 - 2014-04-21 15:09 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\CyberLink
2014-04-21 15:04 - 2014-04-21 15:05 - 00000000 ____D () C:\Program Files (x86)\puush
2014-04-21 15:04 - 2014-04-21 15:04 - 01085440 _____ () C:\Users\Kevin\Downloads\puush.msi
2014-04-21 15:04 - 2014-04-21 15:04 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\puush
2014-04-21 15:04 - 2014-04-21 15:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
2014-04-21 13:46 - 2014-04-21 13:54 - 336017408 _____ () C:\Users\Kevin\Downloads\MyLittlePorny.iso
2014-04-18 23:53 - 2014-04-18 23:53 - 00448562 _____ () C:\Users\Kevin\Downloads\voxelmap-1.7.2-1.0.jar.zip
2014-04-18 23:35 - 2014-04-18 23:35 - 00064982 _____ () C:\Users\Kevin\Downloads\seus-v10.1-Preview2.zip
2014-04-18 23:20 - 2014-04-18 23:21 - 02752442 _____ () C:\Users\Kevin\Downloads\forge-1.7.2-10.12.1.1060-installer-win.exe
2014-04-18 19:17 - 2014-04-18 19:21 - 22455453 _____ () C:\Users\Kevin\Downloads\Teramia 0.9.1 Beta.zip
2014-04-18 19:15 - 2014-04-18 19:31 - 90418475 _____ () C:\Users\Kevin\Desktop\CrEaTiVe_ONEs Medieval pack V144 (reupload).zip
2014-04-18 19:14 - 2014-04-18 19:14 - 02347187 _____ () C:\Users\Kevin\Desktop\mcpatcher-4.3.2_02.exe
2014-04-18 18:54 - 2014-04-23 17:47 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-04-18 18:04 - 2014-04-18 18:06 - 06174909 _____ () C:\Users\Kevin\Downloads\Minecraft_1.3.2.rar
2014-04-18 17:34 - 2014-04-18 17:34 - 00000000 ____D () C:\Users\Kevin\.swt
2014-04-18 17:23 - 2014-04-19 13:55 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\.minecraft
2014-04-18 17:23 - 2014-04-18 17:23 - 00675988 _____ () C:\Users\Kevin\Desktop\Minecraft.exe
2014-04-18 17:16 - 2014-04-18 17:16 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Sony Creative Software Inc
2014-04-18 01:53 - 2014-04-18 02:00 - 93035512 _____ () C:\Users\Kevin\Downloads\theponyway.2012.zip
2014-04-17 11:43 - 2014-04-17 11:50 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Mp3tag
2014-04-17 11:42 - 2014-04-17 11:42 - 02634152 _____ () C:\Users\Kevin\Downloads\mp3tagv258setup.exe
2014-04-17 11:42 - 2014-04-17 11:42 - 00000000 ____D () C:\Program Files (x86)\Mp3tag
2014-04-17 11:14 - 2014-04-17 11:52 - 00000000 ____D () C:\Users\Kevin\AppData\Local\easytag
2014-04-17 11:14 - 2014-04-17 11:14 - 00000000 ____D () C:\Users\Kevin\.dbus-keyrings
2014-04-17 11:14 - 2014-04-17 11:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyTAG
2014-04-17 11:14 - 2014-04-17 11:14 - 00000000 ____D () C:\Program Files (x86)\EasyTAG
2014-04-17 11:13 - 2014-04-17 11:13 - 08506991 _____ () C:\Users\Kevin\Downloads\easytag-2.2.0-setup.exe
2014-04-17 11:10 - 2014-04-17 11:10 - 00005449 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-17 11:10 - 2014-04-17 11:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-17 11:10 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-17 11:10 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-17 11:10 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-17 11:10 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-17 11:08 - 2014-04-17 11:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AmoK Exif Sorter
2014-04-17 11:08 - 2014-04-17 11:08 - 00000000 ____D () C:\Program Files\AmoK Exif Sorter
2014-04-17 11:07 - 2014-04-17 11:07 - 01962995 _____ () C:\Users\Kevin\Downloads\AmoK_Exif_Sorter_v2.56_(Windows_64Bit)_Setup.exe
2014-04-17 10:49 - 2014-04-17 10:49 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Duplicate Cleaner Free
2014-04-17 10:49 - 2014-04-17 10:49 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\DigitalVolcano
2014-04-17 10:49 - 2014-04-17 10:49 - 00000000 ____D () C:\Program Files (x86)\Duplicate Cleaner
2014-04-17 10:48 - 2014-04-17 10:48 - 05143120 _____ (DigitalVolcano Software Ltd) C:\Users\Kevin\Downloads\DuplicateCleaner_setup.exe
2014-04-17 02:08 - 2014-04-18 13:46 - 00052059 _____ () C:\Users\Kevin\Desktop\Music.txt
2014-04-17 01:58 - 2014-04-17 02:21 - 304323421 _____ () C:\Users\Kevin\Downloads\Balloon Party - After Party - MP3 320.zip
2014-04-17 01:58 - 2014-04-17 02:21 - 154256398 _____ () C:\Users\Kevin\Downloads\Balloon Party - Apple 2012 - MP3 320.zip
2014-04-17 01:57 - 2014-04-17 02:27 - 533446578 _____ () C:\Users\Kevin\Downloads\Balloon Party - 100- No Feeble Cheering - MP3 320.zip
2014-04-16 22:41 - 2014-04-17 11:45 - 00000000 ____D () C:\Backup Festplatte
2014-04-16 22:41 - 2014-04-16 22:41 - 00003008 _____ () C:\Users\Kevin\photorec.cfg
2014-04-16 22:36 - 2014-04-16 22:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-04-16 22:36 - 2014-04-16 22:36 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-04-16 21:39 - 2014-04-16 22:27 - 00097232 _____ () C:\Windows\SysWOW64\photorec.ses
2014-04-16 18:52 - 2014-04-16 18:58 - 00000000 ____D () C:\Program Files (x86)\Convar
2014-04-16 18:52 - 2014-04-16 18:52 - 03462033 _____ () C:\Users\Kevin\Downloads\pci_filerecovery.exe
2014-04-16 14:40 - 2014-04-16 14:46 - 00000000 ____D () C:\Users\Kevin\Desktop\SweetFX
2014-04-15 19:45 - 2014-04-15 19:46 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-04-15 19:45 - 2014-04-15 19:45 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-04-15 19:45 - 2014-04-15 19:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2014-04-15 17:57 - 2014-04-16 17:57 - 00773359 _____ () C:\Users\Kevin\Documents\Untitled_Windows Media Video V11_HD-720-30p-Video mit 6 Mbit-s.wmv
2014-04-15 10:46 - 2014-04-15 10:46 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-04-15 03:08 - 2014-04-15 03:12 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Beat Hazard
2014-04-15 02:06 - 2014-04-15 02:06 - 00000000 ____D () C:\Users\Kevin\AppData\Local\CrashRpt
2014-04-15 02:03 - 2014-04-15 02:03 - 03831134 _____ () C:\Users\Kevin\Downloads\Powerplays-SweetFX-X64-Win-8.1.zip
2014-04-15 01:14 - 2014-04-15 01:14 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-04-15 01:13 - 2014-03-04 13:32 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-04-15 01:09 - 2014-03-04 16:35 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-04-15 01:09 - 2014-03-04 16:35 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 00484296 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 00409544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 00377688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-04-15 01:09 - 2014-03-04 16:35 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-04-15 01:09 - 2013-11-28 15:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-04-15 01:09 - 2013-11-28 15:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-04-15 01:09 - 2013-11-22 10:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-04-14 20:23 - 2014-03-21 21:43 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-04-14 20:23 - 2014-03-21 21:43 - 00033568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-04-13 15:36 - 2014-04-19 20:51 - 00008175 _____ () C:\Users\Kevin\Documents\TombRaider.log
2014-04-12 22:04 - 2014-04-13 00:25 - 02943551 _____ () C:\Users\Kevin\Desktop\Homepage Fight Runner.rar
2014-04-12 22:02 - 2014-04-12 22:02 - 00000000 ____D () C:\Users\Kevin\Desktop\htmlwebseite
2014-04-12 21:28 - 2014-04-12 21:28 - 02334392 _____ () C:\Users\Kevin\Desktop\tridornbirn hp_Dennis_Kevin.zip
2014-04-12 21:28 - 2014-04-12 21:28 - 00000000 ____D () C:\Users\Kevin\Desktop\tridornbirn hp
2014-04-12 21:16 - 2014-04-12 21:16 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-04-12 21:16 - 2014-04-12 21:16 - 00000000 ____D () C:\Program Files\OBS
2014-04-12 21:01 - 2014-04-12 21:17 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\OBS
2014-04-12 21:01 - 2014-04-12 21:16 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-04-12 21:00 - 2014-04-12 21:00 - 07888419 _____ () C:\Users\Kevin\Downloads\OBS_0_613b_Installer.exe
2014-04-12 20:47 - 2014-04-12 23:20 - 00000000 ____D () C:\Users\Kevin\Desktop\Homepage Fight Runner
2014-04-12 04:37 - 2014-04-12 04:37 - 00130509 _____ () C:\Users\Kevin\Documents\ts3_clientui-win32-1382530211-2014-04-12 04_37_42.949645.dmp
2014-04-12 03:26 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-12 03:26 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-12 03:26 - 2014-01-31 05:55 - 00209712 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-04-12 03:26 - 2014-01-31 02:48 - 00564736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-04-12 03:26 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-04-12 03:26 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-04-12 03:26 - 2014-01-31 02:48 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 03:26 - 2014-01-31 02:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-04-12 03:26 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-04-12 03:26 - 2014-01-31 02:06 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 03:26 - 2014-01-27 05:42 - 02232664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-04-12 03:26 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-12 03:26 - 2014-01-27 02:52 - 17561088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-04-12 03:26 - 2014-01-27 02:31 - 19752448 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-04-12 03:26 - 2014-01-27 01:17 - 00386722 _____ () C:\Windows\system32\ApnDatabase.xml
2014-04-12 03:26 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-04-12 03:26 - 2014-01-11 08:48 - 05979648 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-04-12 03:26 - 2014-01-11 07:06 - 05092352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-04-12 03:26 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-04-12 03:26 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-04-12 03:25 - 2014-03-07 02:48 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-12 03:25 - 2014-03-07 02:48 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-12 03:25 - 2014-03-07 02:47 - 14357504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-12 03:25 - 2014-03-07 02:47 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-12 03:25 - 2014-03-07 02:47 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-12 03:25 - 2014-03-07 02:47 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-12 03:25 - 2014-03-07 02:47 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-04-12 03:25 - 2014-03-07 02:47 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-12 03:25 - 2014-03-07 02:47 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 19273216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-12 03:25 - 2014-03-07 02:08 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-12 03:25 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-04-12 03:25 - 2013-05-16 00:35 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-04-12 03:25 - 2013-05-14 15:14 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-12 03:25 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-12 03:25 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-04-12 03:25 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-12 03:25 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-12 03:25 - 2013-02-21 12:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-12 03:25 - 2013-02-21 12:14 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-12 03:25 - 2013-02-21 12:14 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-12 03:25 - 2013-02-19 11:53 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-04-12 03:25 - 2012-11-08 06:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-12 03:25 - 2012-11-08 06:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-12 03:25 - 2012-07-26 05:06 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-09 07:07 - 2014-02-06 01:41 - 01257984 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 07:07 - 2014-02-06 01:41 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-04-09 07:07 - 2014-02-06 01:26 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-04-09 07:07 - 2014-02-06 01:19 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-08 23:39 - 2014-04-08 23:40 - 08670150 _____ () C:\Users\Kevin\Downloads\BattleField 4 Text (Rahul).psd
2014-04-08 23:06 - 2014-04-08 23:06 - 00001075 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
2014-04-08 23:06 - 2014-04-08 23:06 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-04-08 23:05 - 2014-04-08 23:05 - 00001037 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
2014-04-08 23:04 - 2014-04-08 23:04 - 00001523 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2014-04-08 23:04 - 2014-04-08 23:04 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
2014-04-08 22:04 - 2014-04-08 22:31 - 202421035 _____ () C:\Users\Kevin\Desktop\A.P.CS6.v13.0.Ex.LS4.Multi.part7.rar
2014-04-01 23:05 - 2014-04-01 23:05 - 00000000 ____D () C:\Users\Kevin\Documents\Riptide
2014-04-01 23:05 - 2014-04-01 23:05 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Chromium
2014-03-30 18:20 - 2014-03-30 18:20 - 00076888 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-30 16:48 - 2014-04-12 18:29 - 00000000 ____D () C:\Users\Kevin\Documents\Assassin's Creed III
2014-03-30 15:10 - 2014-03-30 16:13 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Ubisoft Game Launcher
2014-03-30 14:04 - 2014-03-30 14:04 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-03-30 14:04 - 2014-03-30 14:04 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-03-30 14:04 - 2012-06-19 14:02 - 03123272 ____R () C:\Windows\SysWOW64\pbsvc.exe
2014-03-29 21:50 - 2014-03-29 21:52 - 30909636 _____ (Aspyr Media, Inc) C:\Users\Kevin\Downloads\GH3_1.31_Patch.exe
2014-03-29 20:37 - 2014-03-29 20:37 - 00001109 _____ () C:\Users\Public\Desktop\Spielen Guitar Hero III.lnk

==================== One Month Modified Files and Folders =======

2014-05-01 19:47 - 2014-05-01 19:46 - 03821064 _____ () C:\Users\Kevin\Downloads\battlelog-web-plugins_2.3.2_130.exe
2014-05-01 19:42 - 2013-12-16 18:18 - 00004208 _____ () C:\Windows\System32\Tasks\Software Updater
2014-05-01 18:38 - 2014-05-01 18:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-05-01 18:38 - 2014-05-01 18:38 - 00000000 ____D () C:\Program Files\CPUID
2014-05-01 18:37 - 2014-05-01 18:37 - 01460512 _____ ( ) C:\Users\Kevin\Downloads\cpu-z_1.67.1-setup-en.exe
2014-04-28 15:12 - 2014-04-28 15:12 - 00024785 _____ () C:\Users\Kevin\Downloads\FRST.txt
2014-04-28 15:12 - 2014-04-28 15:09 - 00000000 ____D () C:\FRST
2014-04-28 15:08 - 2014-04-28 15:08 - 02061824 _____ (Farbar) C:\Users\Kevin\Downloads\FRST64.exe
2014-04-28 15:08 - 2013-12-08 22:35 - 01532279 _____ () C:\Windows\WindowsUpdate.log
2014-04-28 15:06 - 2013-11-25 00:06 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\TS3Client
2014-04-28 15:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2014-04-28 14:55 - 2013-11-20 02:04 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Deployment
2014-04-28 14:22 - 2013-11-21 22:14 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-28 13:55 - 2013-11-21 21:26 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Raptr
2014-04-28 13:42 - 2014-03-21 13:47 - 00000466 _____ () C:\Windows\Tasks\AmiUpdXp.job
2014-04-28 06:21 - 2013-11-21 21:16 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-04-28 06:15 - 2013-11-21 21:06 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Last.fm
2014-04-28 06:09 - 2014-04-28 06:09 - 00000000 ____D () C:\Program Files (x86)\Aurora
2014-04-28 05:55 - 2014-02-08 17:32 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\newnext.me
2014-04-28 05:55 - 2014-02-01 20:29 - 00000000 ____D () C:\Users\Kevin\AppData\Local\ESL Wire Game Client
2014-04-28 05:55 - 2014-01-08 17:39 - 00000000 ___RD () C:\Users\Kevin\Dropbox
2014-04-28 05:55 - 2014-01-08 17:37 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Dropbox
2014-04-28 05:55 - 2013-12-18 20:45 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Overwolf
2014-04-28 05:55 - 2013-11-21 21:10 - 00000000 ____D () C:\ProgramData\Origin
2014-04-28 05:55 - 2013-11-21 21:09 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-04-28 05:55 - 2013-11-21 21:06 - 00000000 ____D () C:\Users\Kevin\AppData\Local\LogMeIn Hamachi
2014-04-27 21:34 - 2013-11-21 21:10 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Battle.net
2014-04-27 18:34 - 2014-04-27 18:34 - 00000000 ____D () C:\Users\Kevin\AppData\Local\My Games
2014-04-27 18:34 - 2013-12-10 20:50 - 00000000 ____D () C:\Users\Kevin\Documents\My Games
2014-04-27 18:32 - 2014-04-27 12:11 - 00037329 _____ () C:\Windows\DirectX.log
2014-04-27 12:44 - 2014-04-27 12:44 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Empty Clip Studios
2014-04-27 12:13 - 2014-04-27 12:13 - 00000000 ____D () C:\Users\Kevin\Documents\IAmAlive
2014-04-27 11:43 - 2013-12-16 18:31 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-04-27 10:34 - 2013-11-21 21:14 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Skype
2014-04-27 10:30 - 2014-04-27 10:30 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-04-27 10:30 - 2014-04-27 10:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-04-27 10:30 - 2014-03-20 17:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-04-27 10:30 - 2013-11-21 21:14 - 00000000 ____D () C:\ProgramData\Skype
2014-04-27 10:28 - 2014-04-27 10:27 - 34827424 _____ (Skype Technologies S.A.) C:\Users\Kevin\Downloads\SkypeSetupFull6.14.73.104.exe
2014-04-26 18:39 - 2014-04-25 23:42 - 00000000 ____D () C:\Program Files (x86)\MediaBuzzV1
2014-04-25 23:42 - 2014-04-25 23:42 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-04-25 23:42 - 2012-07-26 10:12 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-04-25 23:42 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-04-25 23:40 - 2014-04-25 23:40 - 00000000 _____ () C:\Users\Kevin\Desktop\Breaking bad BTS and deleted scenes.txt
2014-04-25 23:00 - 2014-04-25 20:30 - 105999000 _____ () C:\Users\Kevin\Downloads\codex-octodad.part01.rar
2014-04-25 21:02 - 2013-11-21 00:54 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Adobe
2014-04-25 20:57 - 2014-03-06 17:47 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\DAEMON Tools Lite
2014-04-25 20:57 - 2013-12-23 02:44 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Sony
2014-04-25 20:55 - 2013-11-21 22:14 - 00003772 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-25 20:47 - 2014-04-25 20:47 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\RotMG.Production
2014-04-25 13:56 - 2014-03-07 17:51 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\vlc
2014-04-24 08:28 - 2014-04-23 23:31 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Forge
2014-04-24 00:21 - 2014-04-23 23:29 - 00000000 ____D () C:\Users\Kevin\Desktop\Forge
2014-04-23 23:46 - 2014-04-23 23:45 - 11065618 _____ () C:\Users\Kevin\Downloads\tokens.zip
2014-04-23 23:31 - 2014-04-23 23:31 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Forge
2014-04-23 21:03 - 2014-04-23 21:03 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\StunlockStudios
2014-04-23 17:53 - 2013-11-20 10:44 - 00751892 _____ () C:\Windows\system32\perfh007.dat
2014-04-23 17:53 - 2013-11-20 10:44 - 00155620 _____ () C:\Windows\system32\perfc007.dat
2014-04-23 17:53 - 2012-07-26 09:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-23 17:50 - 2013-11-21 20:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-23 17:47 - 2014-04-18 18:54 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-04-23 17:47 - 2013-11-20 02:13 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-23 17:47 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-23 06:34 - 2014-01-08 17:38 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-04-23 06:34 - 2013-11-20 01:52 - 00000000 ___RD () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-22 23:04 - 2014-04-22 23:04 - 00000000 _____ () C:\Users\Kevin\Desktop\Achammer Protokoll, Mathe Verbesserung, Physik Verbesserung.txt
2014-04-22 23:02 - 2014-04-22 23:00 - 00000000 ____D () C:\Users\Kevin\Documents\Schule
2014-04-22 18:43 - 2013-11-20 01:57 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2908868876-2045890655-3528692861-1001
2014-04-21 15:09 - 2014-04-21 15:09 - 00000000 ____D () C:\Users\Kevin\Documents\CyberLink
2014-04-21 15:09 - 2014-04-21 15:09 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\CyberLink
2014-04-21 15:09 - 2013-11-21 01:51 - 00000000 ____D () C:\ProgramData\CyberLink
2014-04-21 15:05 - 2014-04-21 15:04 - 00000000 ____D () C:\Program Files (x86)\puush
2014-04-21 15:04 - 2014-04-21 15:04 - 01085440 _____ () C:\Users\Kevin\Downloads\puush.msi
2014-04-21 15:04 - 2014-04-21 15:04 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\puush
2014-04-21 15:04 - 2014-04-21 15:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
2014-04-21 13:54 - 2014-04-21 13:46 - 336017408 _____ () C:\Users\Kevin\Downloads\MyLittlePorny.iso
2014-04-20 15:45 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-04-20 14:30 - 2013-11-23 20:29 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-04-19 20:51 - 2014-04-13 15:36 - 00008175 _____ () C:\Users\Kevin\Documents\TombRaider.log
2014-04-19 14:42 - 2013-11-23 20:29 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-04-19 14:04 - 2013-12-30 16:08 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Skyrim
2014-04-19 13:55 - 2014-04-18 17:23 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\.minecraft
2014-04-18 23:53 - 2014-04-18 23:53 - 00448562 _____ () C:\Users\Kevin\Downloads\voxelmap-1.7.2-1.0.jar.zip
2014-04-18 23:35 - 2014-04-18 23:35 - 00064982 _____ () C:\Users\Kevin\Downloads\seus-v10.1-Preview2.zip
2014-04-18 23:21 - 2014-04-18 23:20 - 02752442 _____ () C:\Users\Kevin\Downloads\forge-1.7.2-10.12.1.1060-installer-win.exe
2014-04-18 20:39 - 2013-11-21 21:10 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-04-18 19:31 - 2014-04-18 19:15 - 90418475 _____ () C:\Users\Kevin\Desktop\CrEaTiVe_ONEs Medieval pack V144 (reupload).zip
2014-04-18 19:21 - 2014-04-18 19:17 - 22455453 _____ () C:\Users\Kevin\Downloads\Teramia 0.9.1 Beta.zip
2014-04-18 19:14 - 2014-04-18 19:14 - 02347187 _____ () C:\Users\Kevin\Desktop\mcpatcher-4.3.2_02.exe
2014-04-18 18:06 - 2014-04-18 18:04 - 06174909 _____ () C:\Users\Kevin\Downloads\Minecraft_1.3.2.rar
2014-04-18 17:34 - 2014-04-18 17:34 - 00000000 ____D () C:\Users\Kevin\.swt
2014-04-18 17:34 - 2013-11-20 01:51 - 00000000 ____D () C:\Users\Kevin
2014-04-18 17:23 - 2014-04-18 17:23 - 00675988 _____ () C:\Users\Kevin\Desktop\Minecraft.exe
2014-04-18 17:16 - 2014-04-18 17:16 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Sony Creative Software Inc
2014-04-18 13:46 - 2014-04-17 02:08 - 00052059 _____ () C:\Users\Kevin\Desktop\Music.txt
2014-04-18 02:00 - 2014-04-18 01:53 - 93035512 _____ () C:\Users\Kevin\Downloads\theponyway.2012.zip
2014-04-17 11:52 - 2014-04-17 11:14 - 00000000 ____D () C:\Users\Kevin\AppData\Local\easytag
2014-04-17 11:50 - 2014-04-17 11:43 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Mp3tag
2014-04-17 11:45 - 2014-04-16 22:41 - 00000000 ____D () C:\Backup Festplatte
2014-04-17 11:42 - 2014-04-17 11:42 - 02634152 _____ () C:\Users\Kevin\Downloads\mp3tagv258setup.exe
2014-04-17 11:42 - 2014-04-17 11:42 - 00000000 ____D () C:\Program Files (x86)\Mp3tag
2014-04-17 11:14 - 2014-04-17 11:14 - 00000000 ____D () C:\Users\Kevin\.dbus-keyrings
2014-04-17 11:14 - 2014-04-17 11:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyTAG
2014-04-17 11:14 - 2014-04-17 11:14 - 00000000 ____D () C:\Program Files (x86)\EasyTAG
2014-04-17 11:13 - 2014-04-17 11:13 - 08506991 _____ () C:\Users\Kevin\Downloads\easytag-2.2.0-setup.exe
2014-04-17 11:11 - 2013-11-21 01:06 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-17 11:10 - 2014-04-17 11:10 - 00005449 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-17 11:10 - 2014-04-17 11:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-17 11:10 - 2013-11-21 01:05 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-17 11:08 - 2014-04-17 11:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AmoK Exif Sorter
2014-04-17 11:08 - 2014-04-17 11:08 - 00000000 ____D () C:\Program Files\AmoK Exif Sorter
2014-04-17 11:07 - 2014-04-17 11:07 - 01962995 _____ () C:\Users\Kevin\Downloads\AmoK_Exif_Sorter_v2.56_(Windows_64Bit)_Setup.exe
2014-04-17 10:49 - 2014-04-17 10:49 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Duplicate Cleaner Free
2014-04-17 10:49 - 2014-04-17 10:49 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\DigitalVolcano
2014-04-17 10:49 - 2014-04-17 10:49 - 00000000 ____D () C:\Program Files (x86)\Duplicate Cleaner
2014-04-17 10:48 - 2014-04-17 10:48 - 05143120 _____ (DigitalVolcano Software Ltd) C:\Users\Kevin\Downloads\DuplicateCleaner_setup.exe
2014-04-17 02:27 - 2014-04-17 01:57 - 533446578 _____ () C:\Users\Kevin\Downloads\Balloon Party - 100- No Feeble Cheering - MP3 320.zip
2014-04-17 02:21 - 2014-04-17 01:58 - 304323421 _____ () C:\Users\Kevin\Downloads\Balloon Party - After Party - MP3 320.zip
2014-04-17 02:21 - 2014-04-17 01:58 - 154256398 _____ () C:\Users\Kevin\Downloads\Balloon Party - Apple 2012 - MP3 320.zip
2014-04-16 22:41 - 2014-04-16 22:41 - 00003008 _____ () C:\Users\Kevin\photorec.cfg
2014-04-16 22:36 - 2014-04-16 22:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-04-16 22:36 - 2014-04-16 22:36 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-04-16 22:27 - 2014-04-16 21:39 - 00097232 _____ () C:\Windows\SysWOW64\photorec.ses
2014-04-16 18:58 - 2014-04-16 18:52 - 00000000 ____D () C:\Program Files (x86)\Convar
2014-04-16 18:52 - 2014-04-16 18:52 - 03462033 _____ () C:\Users\Kevin\Downloads\pci_filerecovery.exe
2014-04-16 17:57 - 2014-04-15 17:57 - 00773359 _____ () C:\Users\Kevin\Documents\Untitled_Windows Media Video V11_HD-720-30p-Video mit 6 Mbit-s.wmv
2014-04-16 14:46 - 2014-04-16 14:40 - 00000000 ____D () C:\Users\Kevin\Desktop\SweetFX
2014-04-15 19:46 - 2014-04-15 19:45 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-04-15 19:45 - 2014-04-15 19:45 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-04-15 19:45 - 2014-04-15 19:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2014-04-15 10:46 - 2014-04-15 10:46 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-04-15 03:12 - 2014-04-15 03:08 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Beat Hazard
2014-04-15 02:06 - 2014-04-15 02:06 - 00000000 ____D () C:\Users\Kevin\AppData\Local\CrashRpt
2014-04-15 02:03 - 2014-04-15 02:03 - 03831134 _____ () C:\Users\Kevin\Downloads\Powerplays-SweetFX-X64-Win-8.1.zip
2014-04-15 01:14 - 2014-04-15 01:14 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-04-15 01:14 - 2013-11-23 22:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-04-15 01:14 - 2013-11-23 22:53 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-04-14 20:23 - 2013-12-17 17:45 - 00000000 ____D () C:\Users\Kevin\AppData\Local\NVIDIA Corporation
2014-04-14 20:23 - 2013-11-20 02:13 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-04-14 20:13 - 2014-04-17 11:10 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-04-17 11:10 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-04-17 11:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-04-17 11:10 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-14 17:59 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\rescache
2014-04-14 14:25 - 2013-11-20 01:52 - 00000000 ___RD () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-14 14:19 - 2012-07-26 10:12 - 00000000 ___RD () C:\Windows\ToastData
2014-04-14 14:19 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\WinStore
2014-04-13 16:25 - 2014-02-08 17:32 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-04-13 00:25 - 2014-04-12 22:04 - 02943551 _____ () C:\Users\Kevin\Desktop\Homepage Fight Runner.rar
2014-04-12 23:20 - 2014-04-12 20:47 - 00000000 ____D () C:\Users\Kevin\Desktop\Homepage Fight Runner
2014-04-12 22:02 - 2014-04-12 22:02 - 00000000 ____D () C:\Users\Kevin\Desktop\htmlwebseite
2014-04-12 21:28 - 2014-04-12 21:28 - 02334392 _____ () C:\Users\Kevin\Desktop\tridornbirn hp_Dennis_Kevin.zip
2014-04-12 21:28 - 2014-04-12 21:28 - 00000000 ____D () C:\Users\Kevin\Desktop\tridornbirn hp
2014-04-12 21:17 - 2014-04-12 21:01 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\OBS
2014-04-12 21:16 - 2014-04-12 21:16 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-04-12 21:16 - 2014-04-12 21:16 - 00000000 ____D () C:\Program Files\OBS
2014-04-12 21:16 - 2014-04-12 21:01 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-04-12 21:00 - 2014-04-12 21:00 - 07888419 _____ () C:\Users\Kevin\Downloads\OBS_0_613b_Installer.exe
2014-04-12 18:30 - 2014-02-10 15:23 - 00000000 ____D () C:\Users\Kevin\Documents\Diablo III
2014-04-12 18:29 - 2014-03-30 16:48 - 00000000 ____D () C:\Users\Kevin\Documents\Assassin's Creed III
2014-04-12 04:37 - 2014-04-12 04:37 - 00130509 _____ () C:\Users\Kevin\Documents\ts3_clientui-win32-1382530211-2014-04-12 04_37_42.949645.dmp
2014-04-12 01:59 - 2013-11-21 21:26 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-04-11 17:39 - 2014-02-09 15:34 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2014-04-11 17:39 - 2013-11-21 20:57 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-04-09 16:44 - 2014-03-15 14:38 - 05143072 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-09 07:28 - 2013-11-21 20:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-09 07:28 - 2013-11-20 06:18 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-09 07:25 - 2013-11-20 06:18 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-08 23:40 - 2014-04-08 23:39 - 08670150 _____ () C:\Users\Kevin\Downloads\BattleField 4 Text (Rahul).psd
2014-04-08 23:34 - 2013-11-20 01:52 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Adobe
2014-04-08 23:06 - 2014-04-08 23:06 - 00001075 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
2014-04-08 23:06 - 2014-04-08 23:06 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-04-08 23:06 - 2013-12-23 15:35 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-04-08 23:06 - 2013-12-23 15:35 - 00000000 ____D () C:\Program Files\Adobe
2014-04-08 23:05 - 2014-04-08 23:05 - 00001037 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
2014-04-08 23:05 - 2013-11-21 00:56 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-04-08 23:04 - 2014-04-08 23:04 - 00001523 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2014-04-08 23:04 - 2014-04-08 23:04 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
2014-04-08 23:04 - 2013-11-21 00:55 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-08 22:31 - 2014-04-08 22:04 - 202421035 _____ () C:\Users\Kevin\Desktop\A.P.CS6.v13.0.Ex.LS4.Multi.part7.rar
2014-04-04 21:55 - 2014-02-01 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESL Wire
2014-04-04 21:55 - 2014-02-01 20:28 - 00000000 ____D () C:\Program Files\EslWire
2014-04-02 15:27 - 2013-11-23 22:55 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-04-02 15:27 - 2013-11-23 22:55 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-04-01 23:05 - 2014-04-01 23:05 - 00000000 ____D () C:\Users\Kevin\Documents\Riptide
2014-04-01 23:05 - 2014-04-01 23:05 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Chromium
2014-04-01 17:34 - 2014-01-28 17:59 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-04-01 07:15 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-03-31 23:18 - 2013-11-20 06:44 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-31 23:18 - 2013-11-20 06:44 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-30 23:32 - 2014-02-01 20:28 - 00184968 _____ (<Turtle Entertainment>) C:\Windows\system32\Drivers\ESLWireACD.sys
2014-03-30 18:20 - 2014-03-30 18:20 - 00076888 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-30 16:13 - 2014-03-30 15:10 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Ubisoft Game Launcher
2014-03-30 14:04 - 2014-03-30 14:04 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-03-30 14:04 - 2014-03-30 14:04 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-03-30 14:04 - 2013-11-23 20:29 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-30 14:04 - 2013-11-20 02:47 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-29 21:53 - 2014-03-25 17:47 - 00000000 ____D () C:\Users\Kevin\Documents\Aspyr
2014-03-29 21:52 - 2014-03-29 21:50 - 30909636 _____ (Aspyr Media, Inc) C:\Users\Kevin\Downloads\GH3_1.31_Patch.exe
2014-03-29 21:49 - 2014-03-25 17:34 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Aspyr
2014-03-29 20:37 - 2014-03-29 20:37 - 00001109 _____ () C:\Users\Public\Desktop\Spielen Guitar Hero III.lnk
2014-03-29 20:26 - 2014-03-25 17:10 - 00000000 ____D () C:\Program Files (x86)\Aspyr
2014-03-29 18:37 - 2013-12-27 01:26 - 00000000 ____D () C:\Users\Kevin\Documents\DayZ

Some content of TEMP:
====================
C:\Users\Kevin\AppData\Local\Temp\appinstal1.exe
C:\Users\Kevin\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprxmj20.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-27 13:24

==================== End Of Log ============================

--- --- ---

schrauber · 29.04.2014, 17:21

Revo Uninstaller - Download - Filepony
Damit alles deinstallieren was Du in der Additional.txt findest mit dem Zusatz <== ATTENTION

Mit Revo auch Moderat die Reste entfernen lassen.

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Ummgh23 · 02.05.2014, 11:44

So, sorry für die späte Antwort, hatte viel um die Ohren die letzten Tage

Während der Ausführung vom Combofix gab es ein Paar fehlermeldungen(Sieht schlecht aus D

. Hier die screenshots:
hxxp://puu.sh/8vJZ3.png
hxxp://puu.sh/8vK1S.png

Die Meldung mit NIRMKD kam Ständig wieder und es ging nix weiter ohne sie zu bestätigen.
ComboFix hat den PC mit blackscreen neugestartet und nur das CMD fenster für ComboFix ausgeführt. Dort musste ich auch nach jedem Step wieder diese Fehlermeldung bestätigen.
Danach nochmal neustart, log wurde erstellt usw.

Das Problem mit den Tasks ist behoben! aber ich weiß nicht ob mein PC komplett clean ist.

Hier der Combofix Log:

Code:

ATTFilter

ComboFix 14-04-30.01 - Kevin 02.05.2014   6:54.1.8 - x86
Microsoft Windows 8  6.2.9200.0.1252.49.1031.18.16302.14814 [GMT 2:00]
ausgeführt von:: c:\users\Kevin\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\MediaBuzzV1
c:\programdata\Alienware
c:\programdata\TEMP
.
.
.
c:\windows\system32\sfcfiles.dll . . . fehlt!!
.
c:\windows\system32\cryptsvc.dll . . . ist infiziert!!
.
c:\windows\system32\drivers\null.sys . . . fehlt!!
.
c:\windows\system32\drivers\afd.sys . . . fehlt!!
.
c:\windows\system32\drivers\ndis.sys . . . fehlt!!
.
c:\windows\system32\drivers\ndisuio.sys . . . fehlt!!
.
c:\windows\system32\drivers\netbios.sys . . . fehlt!!
.
c:\windows\system32\drivers\usbehci.sys . . . fehlt!!
.
c:\windows\system32\drivers\intelppm.sys . . . fehlt!!
.
c:\windows\system32\drivers\tcpip.sys . . . fehlt!!
.
c:\windows\system32\drivers\netbt.sys . . . fehlt!!
.
c:\windows\system32\drivers\asyncmac.sys . . . fehlt!!
.
c:\windows\system32\drivers\cdrom.sys . . . fehlt!!
.
c:\windows\system32\drivers\Serial.sys . . . fehlt!!
.
c:\windows\system32\drivers\ndproxy.sys . . . fehlt!!
.
c:\windows\system32\drivers\ws2ifsl.sys . . . fehlt!!
.
c:\windows\system32\drivers\i8042prt.sys . . . fehlt!!
.
c:\windows\system32\drivers\ipsec.sys . . . fehlt!!
.
c:\windows\system32\drivers\psched.sys . . . fehlt!!
.
Infizierte Kopie von c:\windows\system32\lpk.dll wurde gefunden und desinfiziert 
Kopie von - c:\windows\SysWOW64\lpk.dll wurde wiederhergestellt
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_npf
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-04-02 bis 2014-05-02  ))))))))))))))))))))))))))))))
.
.
2014-05-02 05:07 . 2014-05-02 05:07	--------	d-----w-	C:\Device
2014-05-02 04:30 . 2014-05-02 04:30	--------	d-----w-	c:\program files (x86)\VS Revo Group
2014-04-29 15:49 . 2014-04-29 15:49	--------	d-----w-	c:\program files (x86)\TeamViewer
2014-04-28 20:15 . 2014-04-28 20:15	--------	d-----w-	c:\program files (x86)\Aurora
2014-04-28 13:09 . 2014-04-28 13:13	--------	d-----w-	C:\FRST
2014-04-27 16:34 . 2014-04-27 16:34	--------	d-----w-	c:\users\Kevin\AppData\Local\My Games
2014-04-27 10:44 . 2014-04-27 10:44	--------	d-----w-	c:\users\Kevin\AppData\Roaming\Empty Clip Studios
2014-04-25 18:47 . 2014-04-25 18:47	--------	d-----w-	c:\users\Kevin\AppData\Roaming\RotMG.Production
2014-04-23 21:31 . 2014-04-24 06:28	--------	d-----w-	c:\users\Kevin\AppData\Roaming\Forge
2014-04-23 21:31 . 2014-04-23 21:31	--------	d-----w-	c:\users\Kevin\AppData\Local\Forge
2014-04-23 19:03 . 2014-04-23 19:03	--------	d-----w-	c:\users\Kevin\AppData\Roaming\StunlockStudios
2014-04-23 07:13 . 2014-04-23 07:13	217776	----a-w-	c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10237.bin
2014-04-21 13:09 . 2014-04-21 13:09	--------	d-----w-	c:\users\Kevin\AppData\Roaming\CyberLink
2014-04-21 13:04 . 2014-04-21 13:04	--------	d-----w-	c:\users\Kevin\AppData\Roaming\puush
2014-04-21 13:04 . 2014-04-21 13:05	--------	d-----w-	c:\program files (x86)\puush
2014-04-18 15:34 . 2014-04-18 15:34	--------	d-----w-	c:\users\Kevin\.swt
2014-04-18 15:23 . 2014-04-19 11:55	--------	d-----w-	c:\users\Kevin\AppData\Roaming\.minecraft
2014-04-18 15:16 . 2014-04-18 15:16	--------	d-----w-	c:\users\Kevin\AppData\Roaming\Sony Creative Software Inc
2014-04-17 09:43 . 2014-04-17 09:50	--------	d-----w-	c:\users\Kevin\AppData\Roaming\Mp3tag
2014-04-17 09:42 . 2014-04-17 09:42	--------	d-----w-	c:\program files (x86)\Mp3tag
2014-04-17 09:14 . 2014-04-17 09:52	--------	d-----w-	c:\users\Kevin\AppData\Local\easytag
2014-04-17 09:14 . 2014-04-17 09:14	--------	d-----w-	c:\users\Kevin\.dbus-keyrings
2014-04-17 09:14 . 2014-04-17 09:14	--------	d-----w-	c:\program files (x86)\EasyTAG
2014-04-17 08:49 . 2014-04-17 08:49	--------	d-----w-	c:\users\Kevin\AppData\Roaming\DigitalVolcano
2014-04-17 08:49 . 2014-04-17 08:49	--------	d-----w-	c:\program files (x86)\Duplicate Cleaner
2014-04-16 20:41 . 2014-04-17 09:45	--------	d-----w-	C:\Backup Festplatte
2014-04-16 20:36 . 2014-04-16 20:36	--------	d-----w-	c:\program files (x86)\LogMeIn Hamachi
2014-04-16 16:52 . 2014-04-16 16:58	--------	d-----w-	c:\program files (x86)\Convar
2014-04-15 17:45 . 2014-04-15 17:45	66728	----a-w-	c:\windows\system32\drivers\vrtaucbl.sys
2014-04-15 08:46 . 2014-04-15 08:46	46136	---ha-w-	c:\windows\system32\drivers\Hamdrv.sys
2014-04-15 01:08 . 2014-04-15 01:12	--------	d-----w-	c:\users\Kevin\AppData\Roaming\Beat Hazard
2014-04-15 00:06 . 2014-04-15 00:06	--------	d-----w-	c:\users\Kevin\AppData\Local\CrashRpt
2014-04-14 23:14 . 2014-04-14 23:14	--------	d-----w-	c:\program files (x86)\AGEIA Technologies
2014-04-14 18:23 . 2014-03-21 19:43	40392	----a-w-	c:\windows\system32\drivers\nvvad64v.sys
2014-04-12 19:01 . 2014-04-12 19:17	--------	d-----w-	c:\users\Kevin\AppData\Roaming\OBS
2014-04-12 19:01 . 2014-04-12 19:16	--------	d-----w-	c:\program files (x86)\OBS
2014-04-12 01:26 . 2014-01-27 03:42	2232664	----a-w-	c:\windows\system32\drivers\tcpip.sys
2014-04-12 01:26 . 2014-01-27 03:39	1939288	----a-w-	c:\windows\system32\drivers\ntfs.sys
2014-04-12 01:26 . 2014-01-11 06:48	5979648	----a-w-	c:\windows\system32\mstscax.dll
2014-04-12 01:26 . 2014-02-03 23:56	332632	----a-w-	c:\windows\system32\drivers\storport.sys
2014-04-12 01:26 . 2014-02-03 23:56	278872	----a-w-	c:\windows\system32\drivers\msiscsi.sys
2014-04-12 01:26 . 2014-01-31 03:55	209712	----a-w-	c:\windows\system32\NotificationUI.exe
2014-04-12 01:26 . 2014-01-31 00:06	163840	----a-w-	c:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 01:26 . 2014-01-15 23:42	118784	----a-w-	c:\windows\system32\drivers\dfsc.sys
2014-04-09 05:07 . 2014-02-05 23:41	978432	----a-w-	c:\windows\system32\KernelBase.dll
2014-04-08 21:06 . 2014-04-08 21:06	--------	d-----w-	c:\programdata\regid.1986-12.com.adobe
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-02 13:27 . 2013-11-23 20:55	1225920	----a-w-	c:\windows\system32\nvspcap64.dll
2014-03-30 21:32 . 2014-02-01 18:28	184968	----a-w-	c:\windows\system32\drivers\ESLWireACD.sys
2014-03-30 16:20 . 2014-03-30 16:20	76888	----a-w-	c:\windows\system32\PnkBstrA.exe
2014-03-21 19:43 . 2013-11-23 20:51	37320	----a-w-	c:\windows\system32\nvaudcap64v.dll
2014-03-07 00:08 . 2014-04-12 01:25	2240000	----a-w-	c:\windows\system32\wininet.dll
2014-03-06 15:47 . 2014-03-06 15:47	283064	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2014-03-04 14:35 . 2013-11-23 20:51	17755424	----a-w-	c:\windows\system32\nvd3dumx.dll
2014-03-04 14:35 . 2013-11-20 00:13	62408	----a-w-	c:\windows\system32\OpenCL.dll
2014-03-04 14:35 . 2013-08-27 06:53	31474976	----a-w-	c:\windows\system32\nvoglv64.dll
2014-03-04 14:35 . 2013-02-25 23:32	3093280	----a-w-	c:\windows\system32\nvapi64.dll
2014-03-04 14:35 . 2012-07-25 20:22	18302384	----a-w-	c:\windows\system32\nvwgf2umx.dll
2014-03-04 13:06 . 2013-11-20 00:13	6714312	----a-w-	c:\windows\system32\nvcpl.dll
2014-03-04 13:06 . 2013-11-20 00:13	3497816	----a-w-	c:\windows\system32\nvsvc64.dll
2014-03-04 13:05 . 2013-11-20 00:13	922968	----a-w-	c:\windows\system32\nvvsvc.exe
2014-03-04 13:05 . 2013-11-20 00:13	64968	----a-w-	c:\windows\system32\nvshext.dll
2014-03-04 13:05 . 2013-11-20 00:13	2558808	----a-w-	c:\windows\system32\nvsvcr.dll
2014-03-04 13:05 . 2013-11-20 00:13	386336	----a-w-	c:\windows\system32\nvmctray.dll
2014-03-01 14:54 . 2013-11-20 21:50	17536	----a-w-	c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2014-02-08 04:34 . 2014-03-12 05:55	4036608	----a-w-	c:\windows\system32\win32k.sys
2014-02-05 23:41 . 2014-03-12 05:55	595968	----a-w-	c:\windows\system32\qedit.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
.
.
.
.
[7] 2012-07-26 03:18 . 6A12B53574063FE7E7AC01488863BF91 . 924944 . . [4.1.6140] . . c:\windows\SysWOW64\mfc40u.dll
[7] 2012-07-26 03:18 . 6A12B53574063FE7E7AC01488863BF91 . 924944 . . [4.1.6140] . . c:\windows\WinSxS\x86_microsoft-windows-mfc40u_31bf3856ad364e35_6.2.9200.16384_none_efbe1de626f6fe4a\mfc40u.dll
.
[7] 2012-07-26 03:19 . 75439663A508A6256F3D50E0E760488B . 79360 . . [6.2.9200.16384] . . c:\windows\SysWOW64\olepro32.dll
[7] 2012-07-26 03:19 . 75439663A508A6256F3D50E0E760488B . 79360 . . [6.2.9200.16384] . . c:\windows\WinSxS\x86_microsoft-windows-ole-automation-legacy_31bf3856ad364e35_6.2.9200.16384_none_36bec673d31b0b3f\olepro32.dll
.
c:\windows\System32\drivers\atapi.sys ... Fehlt !!
c:\windows\System32\drivers\asyncmac.sys ... Fehlt !!
c:\windows\System32\drivers\beep.sys ... Fehlt !!
c:\windows\System32\drivers\kbdclass.sys ... Fehlt !!
c:\windows\System32\drivers\ndis.sys ... Fehlt !!
c:\windows\System32\drivers\ntfs.sys ... Fehlt !!
c:\windows\System32\drivers\null.sys ... Fehlt !!
c:\windows\System32\drivers\tcpip.sys ... Fehlt !!
c:\windows\System32\browser.dll ... Fehlt !!
c:\windows\System32\lsass.exe ... Fehlt !!
c:\windows\System32\netman.dll ... Fehlt !!
c:\windows\System32\qmgr.dll ... Fehlt !!
c:\windows\System32\rpcss.dll ... Fehlt !!
c:\windows\System32\services.exe ... Fehlt !!
c:\windows\System32\spoolsv.exe ... Fehlt !!
c:\windows\System32\winlogon.exe ... Fehlt !!
c:\windows\System32\wuauclt.exe ... Fehlt !!
c:\windows\System32\drivers\ipsec.sys ... Fehlt !!
c:\windows\System32\eventlog.dll ... Fehlt !!
c:\windows\System32\sfcfiles.dll ... Fehlt !!
c:\windows\System32\drivers\ipsec.sys ... Fehlt !!
c:\windows\System32\regsvc.dll ... Fehlt !!
c:\windows\System32\schedsvc.dll ... Fehlt !!
c:\windows\System32\ssdpsrv.dll ... Fehlt !!
c:\windows\System32\termsrv.dll ... Fehlt !!
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2014-04-25 3588952]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2014-04-23 1825984]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2014-04-11 55360]
"Overwolf"="c:\program files (x86)\Overwolf\Overwolf.exe" [2014-03-05 37664]
"ESL Wire"="c:\program files\EslWire\wire.exe" [2014-04-02 3620352]
"NextLive"="c:\windows\SysWOW64\rundll32.exe" [2012-07-26 48640]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"ONAIR"="c:\program files\ONAIR\ONAIR.exe" [2014-03-09 3505152]
"puush"="c:\program files (x86)\puush\puush.exe" [2014-04-21 567880]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20918432]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-09-05 958576]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"TrueImageMonitor.exe"="c:\program files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" [2013-10-24 7843992]
"AcronisTibMounterMonitor"="c:\program files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe" [2013-10-10 1104616]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-11-01 152392]
"Adobe Creative Cloud"="c:\program files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" [2013-12-19 2239376]
"IJNetworkScannerSelectorEX"="c:\program files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" [2013-02-19 453736]
"Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2014-03-07 444760]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-04-15 3814736]
.
c:\users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2013-11-26 0]
Dropbox.lnk - c:\users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-4-18 33604728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
@="Enhanced Storage Devices"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
@="SDA Standard Compliant SD Host Controller"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"
.
R0 acpiex;Microsoft ACPIEx Driver;c:\windows\system32\Drivers\acpiex.sys --> c:\windows\system32\Drivers\acpiex.sys [?]
R0 CLFS;Common Log (CLFS);c:\windows\system32\drivers\CLFS.sys --> c:\windows\system32\drivers\CLFS.sys [?]
R0 CNG;CNG;c:\windows\system32\Drivers\cng.sys --> c:\windows\system32\Drivers\cng.sys [?]
R0 EhStorClass;Enhanced Storage Filter Driver;c:\windows\system32\drivers\EhStorClass.sys --> c:\windows\system32\drivers\EhStorClass.sys [?]
R0 ESLWireAC;ESLWireAC;c:\windows\system32\drivers\ESLWireACD.sys --> c:\windows\system32\drivers\ESLWireACD.sys [?]
R0 FileInfo;File Information FS MiniFilter;c:\windows\system32\drivers\fileinfo.sys --> c:\windows\system32\drivers\fileinfo.sys [?]
R0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys --> c:\windows\system32\DRIVERS\fltsrv.sys [?]
R0 fvevol;Filtertreiber der BitLocker-Laufwerkverschlüsselung;c:\windows\system32\DRIVERS\fvevol.sys --> c:\windows\system32\DRIVERS\fvevol.sys [?]
R0 iaStorV;Intel RAID-Controller Windows 7;c:\windows\system32\drivers\iaStorV.sys --> c:\windows\system32\drivers\iaStorV.sys [?]
R0 KSecPkg;KSecPkg;c:\windows\system32\Drivers\ksecpkg.sys --> c:\windows\system32\Drivers\ksecpkg.sys [?]
R0 msisadrv;msisadrv;c:\windows\system32\drivers\msisadrv.sys --> c:\windows\system32\drivers\msisadrv.sys [?]
R0 pcw;Performance Counters for Windows Driver;c:\windows\system32\drivers\pcw.sys --> c:\windows\system32\drivers\pcw.sys [?]
R0 pdc;pdc;c:\windows\system32\drivers\pdc.sys --> c:\windows\system32\drivers\pdc.sys [?]
R0 rdyboost;ReadyBoost;c:\windows\system32\drivers\rdyboost.sys --> c:\windows\system32\drivers\rdyboost.sys [?]
R0 spaceport;Treiber für Speicherplätze;c:\windows\system32\drivers\spaceport.sys --> c:\windows\system32\drivers\spaceport.sys [?]
R0 tib;Acronis TIB Manager;c:\windows\system32\DRIVERS\tib.sys --> c:\windows\system32\DRIVERS\tib.sys [?]
R0 tib_mounter;Acronis TIB Mounter;c:\windows\system32\DRIVERS\tib_mounter.sys --> c:\windows\system32\DRIVERS\tib_mounter.sys [?]
R0 vdrvroot;Microsoft virtueller Datenträgerenumerator;c:\windows\system32\drivers\vdrvroot.sys --> c:\windows\system32\drivers\vdrvroot.sys [?]
R0 volmgr;Treiber für Volume-Manager;c:\windows\system32\drivers\volmgr.sys --> c:\windows\system32\drivers\volmgr.sys [?]
R0 volmgrx;Dynamischer Volume-Manager;c:\windows\system32\drivers\volmgrx.sys --> c:\windows\system32\drivers\volmgrx.sys [?]
R0 WFPLWFS;Microsoft Windows-Filterplattform;c:\windows\system32\DRIVERS\wfplwfs.sys --> c:\windows\system32\DRIVERS\wfplwfs.sys [?]
R1 BasicDisplay;BasicDisplay;c:\windows\system32\drivers\BasicDisplay.sys --> c:\windows\system32\drivers\BasicDisplay.sys [?]
R1 BasicRender;BasicRender;c:\windows\system32\drivers\BasicRender.sys --> c:\windows\system32\drivers\BasicRender.sys [?]
R1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys --> c:\windows\system32\DRIVERS\CLVirtualDrive.sys [?]
R1 Dfsc;Clienttreiber für DFS-Namespace;c:\windows\system32\Drivers\dfsc.sys --> c:\windows\system32\Drivers\dfsc.sys [?]
R1 discache;System Attribute Cache;c:\windows\system32\drivers\discache.sys --> c:\windows\system32\drivers\discache.sys [?]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys --> c:\windows\system32\drivers\dtsoftbus01.sys [?]
R1 npsvctrig;Named pipe service trigger provider;c:\windows\system32\drivers\npsvctrig.sys --> c:\windows\system32\drivers\npsvctrig.sys [?]
R1 nsiproxy;NSI Proxy Service Driver;c:\windows\system32\drivers\nsiproxy.sys --> c:\windows\system32\drivers\nsiproxy.sys [?]
R1 tdx;NetIO-Legacy-TDI-Supporttreiber;c:\windows\system32\DRIVERS\tdx.sys --> c:\windows\system32\DRIVERS\tdx.sys [?]
R1 Wanarpv6;Remotezugriff-IPv6-ARP-Treiber;c:\windows\system32\DRIVERS\wanarp.sys --> c:\windows\system32\DRIVERS\wanarp.sys [?]
R2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [21.11.2013 03:48 3906552]
R2 AlienFusionService;Alienware Fusion Service;c:\program files\Alienware\Command Center\AlienFusionService.exe [10.01.2012 11:13 14664]
R2 AudioEndpointBuilder;Windows-Audio-Endpunkterstellung;c:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
R2 BFE;Basisfiltermodul;c:\windows\system32\svchost.exe -k LocalServiceNoNetwork [20.11.2013 06:55 23040]
R2 BrokerInfrastructure;Infrastrukturdienst für Hintergrundaufgaben;c:\windows\system32\svchost.exe -k DcomLaunch [20.11.2013 06:55 23040]
R2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [11.04.2014 19:45 1390720]
R2 DeviceAssociationService;Gerätezuordnungsdienst;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
R2 DPS;Diagnoserichtliniendienst;c:\windows\System32\svchost.exe -k LocalServiceNoNetwork [20.11.2013 06:55 23040]
R2 EslWireHelper;ESL Wire Helper Service;c:\program files\EslWire\service\WireHelperSvc.exe [01.02.2014 20:28 663056]
R2 FontCache;Windows-Dienst für Schriftartencache;c:\windows\system32\svchost.exe -k LocalService [20.11.2013 06:55 23040]
R2 gpsvc;Gruppenrichtlinienclient;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [15.04.2014 10:46 2227536]
R2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [20.11.2013 03:06 2464400]
R2 IKEEXT;IKE- und AuthIP IPsec-Schlüsselerstellungsmodule;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [10.12.2012 15:31 732160]
R2 iphlpsvc;IP-Hilfsdienst;c:\windows\System32\svchost.exe -k NetSvcs [20.11.2013 06:55 23040]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [20.11.2013 02:42 169432]
R2 lltdio;E/A-Treiber für Verbindungsschicht-Topologieerkennungszuordnung;c:\windows\system32\DRIVERS\lltdio.sys --> c:\windows\system32\DRIVERS\lltdio.sys [?]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [08.04.2014 18:45 377616]
R2 LSM;Lokaler Sitzungs-Manager;c:\windows\system32\svchost.exe -k DcomLaunch [20.11.2013 06:55 23040]
R2 luafv;UAC-Dateivirtualisierung;c:\windows\system32\drivers\luafv.sys --> c:\windows\system32\drivers\luafv.sys [?]
R2 MMCSS;Multimediaklassenplaner;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
R2 MpsSvc;Windows-Firewall;c:\windows\system32\svchost.exe -k LocalServiceNoNetwork [20.11.2013 06:55 23040]
R2 NativeWifiP;NativeWiFi-Filter;c:\windows\system32\DRIVERS\nwifi.sys --> c:\windows\system32\DRIVERS\nwifi.sys [?]
R2 Ndu;Windows Network Data Usage Monitoring Driver;c:\windows\system32\drivers\Ndu.sys --> c:\windows\system32\drivers\Ndu.sys [?]
R2 NlaSvc;NLA (Network Location Awareness);c:\windows\System32\svchost.exe -k NetworkService [20.11.2013 06:55 23040]
R2 nsi;Netzwerkspeicher-Schnittstellendienst;c:\windows\system32\svchost.exe -k LocalService [20.11.2013 06:55 23040]
R2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [17.12.2013 17:45 1615192]
R2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23.11.2013 22:54 20541216]
R2 PcaSvc;Programmkompatibilitäts-Assistent-Dienst;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
R2 PEAUTH;PEAUTH;c:\windows\system32\drivers\peauth.sys --> c:\windows\system32\drivers\peauth.sys [?]
R2 Power;Stromversorgung;c:\windows\system32\svchost.exe -k DcomLaunch [20.11.2013 06:55 23040]
R2 ProfSvc;Benutzerprofildienst;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
R2 RpcEptMapper;RPC-Endpunktzuordnung;c:\windows\system32\svchost.exe -k RPCSS [20.11.2013 06:55 23040]
R2 sppsvc;Software Protection;c:\windows\system32\sppsvc.exe --> c:\windows\system32\sppsvc.exe [?]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [15.04.2014 01:13 411936]
R2 syncagentsrv;Acronis Sync Agent Service;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [22.10.2013 21:32 7152200]
R2 SysMain;Superfetch;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
R2 tcpipreg;TCP/IP Registry Compatibility;c:\windows\system32\drivers\tcpipreg.sys --> c:\windows\system32\drivers\tcpipreg.sys [?]
R2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [29.04.2014 17:49 5024576]
R2 Wcmsvc;Windows-Verbindungs-Manager;c:\windows\system32\svchost.exe -k LocalServiceNetworkRestricted [20.11.2013 06:55 23040]
R2 WlanSvc;Automatische WLAN-Konfiguration;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
R3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys --> c:\windows\system32\DRIVERS\afcdp.sys [?]
R3 Appinfo;Anwendungsinformationen;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
R3 bowser;Browsersupporttreiber;c:\windows\system32\DRIVERS\bowser.sys --> c:\windows\system32\DRIVERS\bowser.sys [?]
R3 CompositeBus;Busenumeratortreiber für Verbundgeräte;c:\windows\system32\drivers\CompositeBus.sys --> c:\windows\system32\drivers\CompositeBus.sys [?]
R3 condrv;Console Driver;c:\windows\system32\drivers\condrv.sys --> c:\windows\system32\drivers\condrv.sys [?]
R3 DXGKrnl;LDDM Graphics Subsystem;c:\windows\system32\drivers\dxgkrnl.sys --> c:\windows\system32\drivers\dxgkrnl.sys [?]
R3 EuMusDesignVirtualAudioCableWdm;@oem27.inf,%DeviceName% (WDM);Virtual Audio Cable (WDM);c:\windows\system32\DRIVERS\vrtaucbl.sys --> c:\windows\system32\DRIVERS\vrtaucbl.sys [?]
R3 fdPHost;Funktionssuchanbieter-Host;c:\windows\system32\svchost.exe -k LocalService [20.11.2013 06:55 23040]
R3 kdnic;Microsoft-Kerneldebugger - Netzwerkminiport (NDIS 6.20);c:\windows\system32\DRIVERS\kdnic.sys --> c:\windows\system32\DRIVERS\kdnic.sys [?]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys --> c:\windows\system32\drivers\LGBusEnum.sys [?]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys --> c:\windows\system32\drivers\LGVirHid.sys [?]
R3 monitor;Microsoft Monitor-Klassenfunktionstreiber-Dienst;c:\windows\system32\drivers\monitor.sys --> c:\windows\system32\drivers\monitor.sys [?]
R3 mpsdrv;Windows-Firewallautorisierungstreiber;c:\windows\system32\drivers\mpsdrv.sys --> c:\windows\system32\drivers\mpsdrv.sys [?]
R3 mrxsmb10;SMB 1.x-Miniredirector;c:\windows\system32\DRIVERS\mrxsmb10.sys --> c:\windows\system32\DRIVERS\mrxsmb10.sys [?]
R3 mrxsmb20;SMB 2.0-Miniredirector;c:\windows\system32\DRIVERS\mrxsmb20.sys --> c:\windows\system32\DRIVERS\mrxsmb20.sys [?]
R3 netprofm;Netzwerklistendienst;c:\windows\System32\svchost.exe -k LocalService [20.11.2013 06:55 23040]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys --> c:\windows\system32\drivers\nvvad64v.sys [?]
R3 RasAgileVpn;WAN-Miniport (IKEv2);c:\windows\system32\DRIVERS\AgileVpn.sys --> c:\windows\system32\DRIVERS\AgileVpn.sys [?]
R3 rdpbus;Treiber für Geräte-Redirectorbus für Remotedesktop;c:\windows\system32\drivers\rdpbus.sys --> c:\windows\system32\drivers\rdpbus.sys [?]
R3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys --> c:\windows\system32\DRIVERS\Rt630x64.sys [?]
R3 rzendpt;rzendpt;c:\windows\system32\drivers\rzendpt.sys --> c:\windows\system32\drivers\rzendpt.sys [?]
R3 rzudd;Razer Mouse Driver;c:\windows\system32\drivers\rzudd.sys --> c:\windows\system32\drivers\rzudd.sys [?]
R3 SaiK0CD7;SaiK0CD7;c:\windows\system32\DRIVERS\SaiK0CD7.sys --> c:\windows\system32\DRIVERS\SaiK0CD7.sys [?]
R3 SaiU0CD7;SaiU0CD7;c:\windows\system32\drivers\SaiU0CD7.sys --> c:\windows\system32\drivers\SaiU0CD7.sys [?]
R3 srv2;Server-SMB-Treiber 2.xxx;c:\windows\system32\DRIVERS\srv2.sys --> c:\windows\system32\DRIVERS\srv2.sys [?]
R3 srvnet;srvnet;c:\windows\system32\DRIVERS\srvnet.sys --> c:\windows\system32\DRIVERS\srvnet.sys [?]
R3 SystemEventsBroker;Systemereignissebroker;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
R3 TimeBroker;Zeitbroker;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [20.11.2013 06:55 23040]
R3 TrustedInstaller;Windows Modules Installer;c:\windows\servicing\TrustedInstaller.exe [20.11.2013 04:05 98304]
R3 tunnel;Microsoft-Tunnelminiport-Adaptertreiber;c:\windows\system32\DRIVERS\tunnel.sys --> c:\windows\system32\DRIVERS\tunnel.sys [?]
R3 UCX01000;USB Controller Extension;c:\windows\system32\drivers\ucx01000.sys --> c:\windows\system32\drivers\ucx01000.sys [?]
R3 umbus;UMBusenumerator-Treiber;c:\windows\system32\drivers\umbus.sys --> c:\windows\system32\drivers\umbus.sys [?]
R3 USBHUB3;Hochgeschwindigkeits-Hub (SuperSpeed);c:\windows\system32\drivers\UsbHub3.sys --> c:\windows\system32\drivers\UsbHub3.sys [?]
R3 USBXHCI;USB-xHCI-kompatibler Hostcontroller;c:\windows\system32\drivers\USBXHCI.SYS --> c:\windows\system32\drivers\USBXHCI.SYS [?]
R3 VaultSvc;Anmeldeinformationsverwaltung;c:\windows\system32\lsass.exe --> c:\windows\system32\lsass.exe [?]
R3 wcncsvc;Windows-Sofortverbindung - Konfigurationsregistrierungsstelle;c:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [20.11.2013 06:55 23040]
R3 WdiServiceHost;Diagnosediensthost;c:\windows\System32\svchost.exe -k LocalService [20.11.2013 06:55 23040]
R3 WdiSystemHost;Diagnosesystemhost;c:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
R3 WerSvc;Windows-Fehlerberichterstattungsdienst;c:\windows\System32\svchost.exe -k WerSvcGroup [20.11.2013 06:55 23040]
S0 hwpolicy;Hardware Policy Driver;c:\windows\system32\drivers\hwpolicy.sys --> c:\windows\system32\drivers\hwpolicy.sys [?]
S1 dam;Desktop Activity Moderator Driver;c:\windows\system32\drivers\dam.sys --> c:\windows\system32\drivers\dam.sys [?]
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [23.10.2013 08:15 172192]
S2 SystemStoreService;System Store;c:\program files (x86)\SoftwareUpdater\SystemStore.exe [16.12.2013 18:19 297984]
S3 1394ohci;OHCI-konformer 1394-Hostcontroller;c:\windows\system32\drivers\1394ohci.sys --> c:\windows\system32\drivers\1394ohci.sys [?]
S3 3ware;3ware;c:\windows\system32\drivers\3ware.sys --> c:\windows\system32\drivers\3ware.sys [?]
S3 acpipagr;ACPI-Prozessoraggregatortreiber;c:\windows\system32\drivers\acpipagr.sys --> c:\windows\system32\drivers\acpipagr.sys [?]
S3 AcpiPmi;ACPI-Energieanzeigetreiber;c:\windows\system32\drivers\acpipmi.sys --> c:\windows\system32\drivers\acpipmi.sys [?]
S3 acpitime;Treiber für ACPI Wake Alarm;c:\windows\system32\drivers\acpitime.sys --> c:\windows\system32\drivers\acpitime.sys [?]
S3 adp94xx;adp94xx;c:\windows\system32\drivers\adp94xx.sys --> c:\windows\system32\drivers\adp94xx.sys [?]
S3 adpahci;adpahci;c:\windows\system32\drivers\adpahci.sys --> c:\windows\system32\drivers\adpahci.sys [?]
S3 AllUserInstallAgent;Windows-Agent für die Installation aller Benutzer;c:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 amdsata;amdsata;c:\windows\system32\drivers\amdsata.sys --> c:\windows\system32\drivers\amdsata.sys [?]
S3 amdsbs;amdsbs;c:\windows\system32\drivers\amdsbs.sys --> c:\windows\system32\drivers\amdsbs.sys [?]
S3 amdxata;amdxata;c:\windows\system32\drivers\amdxata.sys --> c:\windows\system32\drivers\amdxata.sys [?]
S3 AppID;Anwendungs-ID-Treiber;c:\windows\system32\drivers\appid.sys --> c:\windows\system32\drivers\appid.sys [?]
S3 AppIDSvc;Anwendungsidentität;c:\windows\system32\svchost.exe -k LocalServiceNetworkRestricted [20.11.2013 06:55 23040]
S3 arcsas;Adaptec SAS/SATA-II RAID-Windows-Inbox-Miniporttreiber;c:\windows\system32\drivers\arcsas.sys --> c:\windows\system32\drivers\arcsas.sys [?]
S3 b06bdrv;Broadcom NetXtreme II VBD;c:\windows\system32\drivers\bxvbda.sys --> c:\windows\system32\drivers\bxvbda.sys [?]
S3 BDESVC;BitLocker-Laufwerkverschlüsselungsdienst;c:\windows\System32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
S3 BthAvrcpTg;Bluetooth-HID zur A/V-Remotesteuerung;c:\windows\system32\drivers\BthAvrcpTg.sys --> c:\windows\system32\drivers\BthAvrcpTg.sys [?]
S3 BthHFEnum;Bluetooth-HID-Enumerator zur Freisprechaudio- und -anrufsteuerung;c:\windows\system32\drivers\bthhfenum.sys --> c:\windows\system32\drivers\bthhfenum.sys [?]
S3 bthhfhid;Bluetooth-HID zur Freisprechanrufsteuerung;c:\windows\system32\drivers\BthHFHid.sys --> c:\windows\system32\drivers\BthHFHid.sys [?]
S3 CertPropSvc;Zertifikatverteilung;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
S3 circlass;Anwenderinfrarotgeräte;c:\windows\system32\drivers\circlass.sys --> c:\windows\system32\drivers\circlass.sys [?]
S3 defragsvc;Laufwerke optimieren;c:\windows\system32\svchost.exe -k defragsvc [20.11.2013 06:55 23040]
S3 DeviceInstall;Geräteinstallationsdienst;c:\windows\system32\svchost.exe -k DcomLaunch [20.11.2013 06:55 23040]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys --> c:\windows\system32\DRIVERS\ssudbus.sys [?]
S3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys --> c:\windows\system32\drivers\dmvsc.sys [?]
S3 DsmSvc;Geräteinstallations-Manager;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;c:\windows\system32\drivers\evbda.sys --> c:\windows\system32\drivers\evbda.sys [?]
S3 EhStorTcgDrv;Microsoft-Treiber für Speichergeräte, die IEEE 1667- und TCG-Protokolle unterstützen;c:\windows\system32\drivers\EhStorTcgDrv.sys --> c:\windows\system32\drivers\EhStorTcgDrv.sys [?]
S3 FDResPub;Funktionssuche-Ressourcenveröffentlichung;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [20.11.2013 06:55 23040]
S3 fhsvc;Dateiversionsverlauf-Dienst;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 Filetrace;Filetrace;c:\windows\system32\drivers\filetrace.sys --> c:\windows\system32\drivers\filetrace.sys [?]
S3 FsDepends;File System Dependency Minifilter;c:\windows\system32\drivers\FsDepends.sys --> c:\windows\system32\drivers\FsDepends.sys [?]
S3 FxPPM;Prozessortreiber für ein Hochleistungs-Framework;c:\windows\system32\drivers\fxppm.sys --> c:\windows\system32\drivers\fxppm.sys [?]
S3 gencounter;Microsoft Hyper-V-Generierungszähler;c:\windows\system32\drivers\vmgencounter.sys --> c:\windows\system32\drivers\vmgencounter.sys [?]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver;c:\windows\system32\Drivers\msgpioclx.sys --> c:\windows\system32\Drivers\msgpioclx.sys [?]
S3 hidi2c;Treiber für Microsoft I2C-HID-Miniport;c:\windows\system32\drivers\hidi2c.sys --> c:\windows\system32\drivers\hidi2c.sys [?]
S3 HomeGroupListener;Heimnetzgruppen-Listener;c:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 HomeGroupProvider;Heimnetzgruppen-Anbieter;c:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted [20.11.2013 06:55 23040]
S3 HpSAMD;HpSAMD;c:\windows\system32\drivers\HpSAMD.sys --> c:\windows\system32\drivers\HpSAMD.sys [?]
S3 hyperkbd;hyperkbd;c:\windows\system32\drivers\hyperkbd.sys --> c:\windows\system32\drivers\hyperkbd.sys [?]
S3 HyperVideo;HyperVideo;c:\windows\system32\DRIVERS\HyperVideo.sys --> c:\windows\system32\DRIVERS\HyperVideo.sys [?]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [10.12.2012 15:31 803872]
S3 IPMIDRV;IPMIDRV;c:\windows\system32\drivers\IPMIDrv.sys --> c:\windows\system32\drivers\IPMIDrv.sys [?]
S3 iScsiPrt;iScsiPort-Treiber;c:\windows\system32\drivers\msiscsi.sys --> c:\windows\system32\drivers\msiscsi.sys [?]
S3 KeyIso;CNG-Schlüsselisolation;c:\windows\system32\lsass.exe --> c:\windows\system32\lsass.exe [?]
S3 KtmRm;KtmRm für Distributed Transaction Coordinator;c:\windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation [20.11.2013 06:55 23040]
S3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys --> c:\windows\system32\DRIVERS\ladfGSCamd64.sys [?]
S3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys --> c:\windows\system32\DRIVERS\ladfGSRamd64.sys [?]
S3 lltdsvc;Verbindungsschicht-Topologieerkennungs-Zuordnungsprogramm;c:\windows\System32\svchost.exe -k LocalService [20.11.2013 06:55 23040]
S3 LSI_SAS;LSI_SAS;c:\windows\system32\drivers\lsi_sas.sys --> c:\windows\system32\drivers\lsi_sas.sys [?]
S3 LSI_SAS2;LSI_SAS2;c:\windows\system32\drivers\lsi_sas2.sys --> c:\windows\system32\drivers\lsi_sas2.sys [?]
S3 LSI_SCSI;LSI_SCSI;c:\windows\system32\drivers\lsi_scsi.sys --> c:\windows\system32\drivers\lsi_scsi.sys [?]
S3 LSI_SSS;LSI_SSS;c:\windows\system32\drivers\lsi_sss.sys --> c:\windows\system32\drivers\lsi_sss.sys [?]
S3 megasas;megasas;c:\windows\system32\drivers\megasas.sys --> c:\windows\system32\drivers\megasas.sys [?]
S3 MsBridge;Microsoft MAC-Brücke;c:\windows\system32\DRIVERS\bridge.sys --> c:\windows\system32\DRIVERS\bridge.sys [?]
S3 msgpiowin32;Treiber für GPIO-Tasten;c:\windows\system32\drivers\msgpiowin32.sys --> c:\windows\system32\drivers\msgpiowin32.sys [?]
S3 mshidkmdf;Pass-through HID to KMDF Filter Driver;c:\windows\system32\drivers\mshidkmdf.sys --> c:\windows\system32\drivers\mshidkmdf.sys [?]
S3 mshidumdf;Pass-Through-Treiber HID zu UMDF;c:\windows\system32\drivers\mshidumdf.sys --> c:\windows\system32\drivers\mshidumdf.sys [?]
S3 MSiSCSI;Microsoft iSCSI-Initiator-Dienst;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
S3 MsLldp;Microsoft-Verbindungsschichterkennungsprotokoll;c:\windows\system32\DRIVERS\mslldp.sys --> c:\windows\system32\DRIVERS\mslldp.sys [?]
S3 MsRPC;MsRPC;c:\windows\system32\drivers\MsRPC.sys --> c:\windows\system32\drivers\MsRPC.sys [?]
S3 MTConfig;Microsoft Input Configuration Driver;c:\windows\system32\drivers\MTConfig.sys --> c:\windows\system32\drivers\MTConfig.sys [?]
S3 mvumis;mvumis;c:\windows\system32\drivers\mvumis.sys --> c:\windows\system32\drivers\mvumis.sys [?]
S3 NcaSvc;Netzwerkkonnektivitäts-Assistent;c:\windows\System32\svchost.exe -k NetSvcs [20.11.2013 06:55 23040]
S3 NcdAutoSetup;Autom. Setup von Geräten, die mit dem Netzwerk verbunden sind;c:\windows\System32\svchost.exe -k LocalServiceNoNetwork [20.11.2013 06:55 23040]
S3 NdisCap;Microsoft-NDIS-Aufzeichnung;c:\windows\system32\DRIVERS\ndiscap.sys --> c:\windows\system32\DRIVERS\ndiscap.sys [?]
S3 NdisImPlatform;Microsoft-Multiplexorprotokoll für Netzwerkadapter;c:\windows\system32\DRIVERS\NdisImPlatform.sys --> c:\windows\system32\DRIVERS\NdisImPlatform.sys [?]
S3 NDISWANLEGACY;NDIS-WAN-Legacytreiber für den Remotezugriff;c:\windows\system32\DRIVERS\ndiswan.sys --> c:\windows\system32\DRIVERS\ndiswan.sys [?]
S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys --> c:\windows\system32\DRIVERS\netaapl64.sys [?]
S3 nfrd960;nfrd960;c:\windows\system32\drivers\nfrd960.sys --> c:\windows\system32\drivers\nfrd960.sys [?]
S3 nvstor;nvstor;c:\windows\system32\drivers\nvstor.sys --> c:\windows\system32\drivers\nvstor.sys [?]
S3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [18.12.2013 20:51 99616]
S3 PerfHost;Leistungsindikator-DLL-Host;c:\windows\SysWOW64\perfhost.exe [26.07.2012 04:39 20992]
S3 pla;Leistungsprotokolle und -warnungen;c:\windows\System32\svchost.exe -k LocalServiceNoNetwork [20.11.2013 06:55 23040]
S3 PNRPAutoReg;PNRP-Computernamenveröffentlichungs-Dienst;c:\windows\System32\svchost.exe -k LocalServicePeerNet [20.11.2013 06:55 23040]
S3 PrintNotify;Druckererweiterungen und -benachrichtigungen;c:\windows\system32\svchost.exe -k print [20.11.2013 06:55 23040]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys --> c:\windows\system32\drivers\rdpvideominiport.sys [?]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys --> c:\windows\system32\Drivers\RtsUStor.sys [?]
S3 s3cap;s3cap;c:\windows\system32\drivers\vms3cap.sys --> c:\windows\system32\drivers\vms3cap.sys [?]
S3 scfilter;Filtertreiber für Smartcards der Plug & Play-Klasse;c:\windows\system32\DRIVERS\scfilter.sys --> c:\windows\system32\DRIVERS\scfilter.sys [?]
S3 SCPolicySvc;Richtlinie zum Entfernen der Scmartcard;c:\windows\system32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
S3 SDRSVC;Windows-Sicherung;c:\windows\system32\svchost.exe -k SDRSVC [20.11.2013 06:55 23040]
S3 sdstor;Treiber für SD-Speicherport;c:\windows\system32\drivers\sdstor.sys --> c:\windows\system32\drivers\sdstor.sys [?]
S3 SensrSvc;Sensorüberwachungsdienst;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [20.11.2013 06:55 23040]
S3 SerCx;Serial UART Support Library;c:\windows\system32\drivers\SerCx.sys --> c:\windows\system32\drivers\SerCx.sys [?]
S3 SessionEnv;Konfiguration für Remotedesktops;c:\windows\System32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
S3 SiSRaid4;SiSRaid4;c:\windows\system32\drivers\sisraid4.sys --> c:\windows\system32\drivers\sisraid4.sys [?]
S3 SpbCx;Simple Peripheral Bus Support Library;c:\windows\system32\drivers\SpbCx.sys --> c:\windows\system32\drivers\SpbCx.sys [?]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys --> c:\windows\system32\DRIVERS\ssudmdm.sys [?]
S3 stexstor;stexstor;c:\windows\system32\drivers\stexstor.sys --> c:\windows\system32\drivers\stexstor.sys [?]
S3 storahci;Standardmäßiger SATA AHCI-Treiber von Microsoft;c:\windows\system32\drivers\storahci.sys --> c:\windows\system32\drivers\storahci.sys [?]
S3 storflt;Hyper-V-Speicherbeschleunigung;c:\windows\system32\DRIVERS\vmstorfl.sys --> c:\windows\system32\DRIVERS\vmstorfl.sys [?]
S3 StorSvc;Speicherdienst;c:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 storvsc;storvsc;c:\windows\system32\drivers\storvsc.sys --> c:\windows\system32\drivers\storvsc.sys [?]
S3 svsvc;Echtzeit-Datenträgerprüfung;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.02.2010 13:37 517096]
S3 TabletInputService;Dienst für Bildschirmtastatur und Schreibbereich;c:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys --> c:\windows\system32\drivers\terminpt.sys [?]
S3 THREADORDER;Server für Threadsortierung;c:\windows\system32\svchost.exe -k LocalService [20.11.2013 06:55 23040]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys --> c:\windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Allgemeines Remotedesktop-USB-Gerät;c:\windows\system32\drivers\TsUsbGD.sys --> c:\windows\system32\drivers\TsUsbGD.sys [?]
S3 UASPStor;Per USB angeschlossener SCSI (UAS)-Treiber;c:\windows\system32\drivers\uaspstor.sys --> c:\windows\system32\drivers\uaspstor.sys [?]
S3 UI0Detect;Erkennung interaktiver Dienste;c:\windows\system32\UI0Detect.exe --> c:\windows\system32\UI0Detect.exe [?]
S3 uliagpkx;Uli AGP-Bus-Filter;c:\windows\system32\drivers\uliagpkx.sys --> c:\windows\system32\drivers\uliagpkx.sys [?]
S3 UmRdpService;Anschlussumleitung für Remotedesktopdienst im Benutzermodus;c:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys --> c:\windows\system32\Drivers\usbaapl64.sys [?]
S3 usbcir;eHome-Infrarotempfänger (USBCIR);c:\windows\system32\drivers\usbcir.sys --> c:\windows\system32\drivers\usbcir.sys [?]
S3 VerifierExt;VerifierExt;c:\windows\system32\drivers\VerifierExt.sys --> c:\windows\system32\drivers\VerifierExt.sys [?]
S3 vhdmp;vhdmp;c:\windows\system32\drivers\vhdmp.sys --> c:\windows\system32\drivers\vhdmp.sys [?]
S3 vmbus;Bus des virtuellen Computers;c:\windows\system32\drivers\vmbus.sys --> c:\windows\system32\drivers\vmbus.sys [?]
S3 VMBusHID;VMBusHID;c:\windows\system32\drivers\VMBusHID.sys --> c:\windows\system32\drivers\VMBusHID.sys [?]
S3 vmicheartbeat;Hyper-V-Taktdienst;c:\windows\system32\svchost.exe -k ICService [20.11.2013 06:55 23040]
S3 vmickvpexchange;Hyper-V-Datenaustauschdienst;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 vmicrdv;Hyper-V-Remotedesktopvirtualisierungsdienst;c:\windows\system32\svchost.exe -k ICService [20.11.2013 06:55 23040]
S3 vmicshutdown;Hyper-V-Dienst zum Herunterfahren des Gasts;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 vmictimesync;Hyper-V-Dienst für Zeitsynchronisierung;c:\windows\system32\svchost.exe -k LocalServiceNetworkRestricted [20.11.2013 06:55 23040]
S3 vmicvss;Hyper-V-Volumeschattenkopie-Anforderer;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 vpci;Microsoft Hyper-V Virtual PCI Bus;c:\windows\system32\drivers\vpci.sys --> c:\windows\system32\drivers\vpci.sys [?]
S3 vsmraid;vsmraid;c:\windows\system32\drivers\vsmraid.sys --> c:\windows\system32\drivers\vsmraid.sys [?]
S3 VSTXRAID;Windows-Treiber für VIA StorX-Speichercontroller;c:\windows\system32\drivers\vstxraid.sys --> c:\windows\system32\drivers\vstxraid.sys [?]
S3 vwifibus;Virtueller WiFi-Bustreiber;c:\windows\system32\drivers\vwifibus.sys --> c:\windows\system32\drivers\vwifibus.sys [?]
S3 WacomPen;Wacom HID-Treiber für seriellen Stift;c:\windows\system32\drivers\wacompen.sys --> c:\windows\system32\drivers\wacompen.sys [?]
S3 wbengine;Blockebenen-Sicherungsmodul;"c:\windows\system32\wbengine.exe" --> c:\windows\system32\wbengine.exe [?]
S3 WbioSrvc;Windows-Biometriedienst;c:\windows\system32\svchost.exe -k WbioSvcGroup [20.11.2013 06:55 23040]
S3 WcsPlugInService;Windows-Farbsystem;c:\windows\system32\svchost.exe -k wcssvc [20.11.2013 06:55 23040]
S3 Wd;Treiber für Microsoft-Überwachungszeitgeber;c:\windows\system32\drivers\wd.sys --> c:\windows\system32\drivers\wd.sys [?]
S3 WdBoot;Windows Defender-Starttreiber;c:\windows\system32\drivers\WdBoot.sys --> c:\windows\system32\drivers\WdBoot.sys [?]
S3 WdFilter;Windows Defender-Minifiltertreiber;c:\windows\system32\drivers\WdFilter.sys --> c:\windows\system32\drivers\WdFilter.sys [?]
S3 Wecsvc;Windows-Ereignissammlung;c:\windows\system32\svchost.exe -k NetworkService [20.11.2013 06:55 23040]
S3 wercplsupport;Unterstützung in der Systemsteuerung unter Lösungen für Probleme;c:\windows\System32\svchost.exe -k netsvcs [20.11.2013 06:55 23040]
S3 WiaRpc;Ereignisse zum Abrufen von Standbildern;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 WIMMount;WIMMount;c:\windows\system32\drivers\wimmount.sys --> c:\windows\system32\drivers\wimmount.sys [?]
S3 WinDefend;Windows Defender-Dienst;c:\program files\Windows Defender\MsMpEng.exe [12.03.2014 07:55 16048]
S3 wpcfltr;Family Safety Filter Driver;c:\windows\system32\DRIVERS\wpcfltr.sys --> c:\windows\system32\DRIVERS\wpcfltr.sys [?]
S3 WPCSvc;Family Safety;c:\windows\system32\svchost.exe -k LocalServiceNetworkRestricted [20.11.2013 06:55 23040]
S3 WPDBusEnum;Enumeratordienst für tragbare Geräte;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [20.11.2013 06:55 23040]
S3 WpdUpFltr;WPD Upper Class Filter Driver;c:\windows\system32\drivers\WpdUpFltr.sys --> c:\windows\system32\drivers\WpdUpFltr.sys [?]
S3 WSService;Windows Store-Dienst (WSService);c:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [20.11.2013 06:55 23040]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys --> c:\windows\system32\DRIVERS\WUDFRd.sys [?]
S3 WwanSvc;WWAN - automatische Konfiguration;c:\windows\system32\svchost.exe -k LocalServiceNoNetwork [20.11.2013 06:55 23040]
S3 xusb22;Treiberdienst 22 für Xbox 360 Wireless Receiver;c:\windows\system32\drivers\xusb22.sys --> c:\windows\system32\drivers\xusb22.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork	REG_MULTI_SZ   	PLA
wcssvc	REG_MULTI_SZ   	WcsPlugInService
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	SSDPSRV upnphost SCardSvr BthHFSrv QWAVE wcncsvc
DcomLaunch	REG_MULTI_SZ   	PlugPlay DeviceInstall DcomLaunch
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
NETSVCS BENÖTIGT REPARATUR - Derzeitig vorhandene Einträge:
AeLookupSvc
CertPropSvc
SCPolicySvc
lanmanserver
gpsvc
FastUserSwitchingCompatibility
Ias
Irmon
Nla
Ntmssvc
NWCWorkstation
Nwsapagent
Rasauto
Rasman
Remoteaccess
SENS
Sharedaccess
SRService
Tapisrv
Wmi
WmdmPmSp
wuauserv
BITS
ShellHWDetection
LogonHours
PCAudit
helpsvc
uploadmgr
iphlpsvc
msiscsi
schedule
winmgmt
SessionEnv
.
Rebuilding ... You need to reboot your machine for this to take effect.
.
eventsystem
iprip
netman
wzcsvc
ip6fwhlp
WmdmPmSN
UxTuneUp
Appinfo
BDESVC
Browser
DsmSvc
Eaphost
hkmsvc
IKEEXT
MMCSS
NcaSvc
ProfSvc
seclogon
SystemEventsBroker
Themes
wercplsupport
wlidsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
2012-07-26 03:20	240128	----a-w-	c:\windows\System32\unregmp2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
2012-07-26 03:20	48640	----a-w-	c:\windows\SysWOW64\rundll32.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-05-01 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-21 17:22]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://search.conduit.com/?ctid=CT3323882&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP438F07D2-38DE-4EBD-9DA1-14360CC25479&SSPV=
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
Trusted Zone: dell.com
TCP: DhcpNameServer = 10.0.0.1
FF - ProfilePath - c:\users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\3580i1mr.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.startfenster.de
.
.
------- Dateityp-Verknüpfung -------
.
inffile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1
VBEFile=%SystemRoot%\SysWow64\WScript.exe "%1" %*
VBSFile=%SystemRoot%\SysWow64\WScript.exe "%1" %*
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKCU-Run-AdobeBridge - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd
SafeBoot-sacsvr
SafeBoot-TBS
SafeBoot-vmms
.
.
.
**************************************************************************
.
disk not found C:\
.
please note that you need administrator rights to perform deep scan
Scanne versteckte Prozesse... 
.
Scanne versteckte Autostarteinträge... 
.
Scanne versteckte Dateien... 
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Microsoft\Windows NT\CurrentVersion\Windows]
@Denied: (Full) (Everyone)
@Denied: (Full) (Everyone)
@SACL=
@="mnmsrvc"
"Spooler"="yes"
"DeviceNotSelectedTimeout"="15"
"TransmissionRetryTimeout"="90"
"ShutdownWarningDialogTimeout"=dword:ffffffff
"USERProcessHandleQuota"=dword:00002710
"LoadAppInit_DLLs"=dword:00000001
"IconServiceLib"="IconCodecService.dll"
"DesktopHeapLogging"=dword:00000001
"DdeSendTimeout"=dword:00000000
"USERPostMessageLimit"=dword:00002710
"USERNestedWindowLimit"=dword:00000032
"AppInit_DLLs"=""
"NaturalInputHandler"="Ninput.dll"
"ThreadUnresponsiveLogTimeout"=dword:000001f4
"GDIProcessHandleQuota"=dword:00002710
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows]
@Denied: (Full) (Everyone)
@Denied: (Full) (Everyone)
@SACL=
@="mnmsrvc"
"Spooler"="yes"
"DeviceNotSelectedTimeout"="15"
"TransmissionRetryTimeout"="90"
"ShutdownWarningDialogTimeout"=dword:ffffffff
"USERProcessHandleQuota"=dword:00002710
"IconServiceLib"="IconCodecService.dll"
"DesktopHeapLogging"=dword:00000001
"DdeSendTimeout"=dword:00000000
"USERPostMessageLimit"=dword:00002710
"USERNestedWindowLimit"=dword:00000032
"NaturalInputHandler"="Ninput.dll"
"ThreadUnresponsiveLogTimeout"=dword:000001f4
"GDIProcessHandleQuota"=dword:00002710
"RequireSignedAppInit_DLLs"=dword:00000001
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
c:\windows\system32\PnkBstrA.exe
c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
c:\program files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
c:\users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe
c:\progra~2\Raptr\raptr.exe
c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
c:\program files\Alienware\Command Center\AlienwareAlienFXController.exe
c:\progra~2\Raptr\raptr_im.exe
c:\program files\Alienware\Command Center\AWCCApplicationWatcher32.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
c:\program files (x86)\Common Files\Overwolf\OverwolfHelper.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
c:\program files\Alienware\Command Center\AlienFusionController.exe
c:\program files (x86)\CyberLink\Shared files\RichVideo.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-05-02  07:16:07 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-05-02 05:16
.
Vor Suchlauf: 14 Verzeichnis(se), 997.970.776.064 Bytes frei
Nach Suchlauf: 20 Verzeichnis(se), 997.809.983.488 Bytes frei
.
- - End Of File - - 0C12F4CAF9B82AA20A0AF0F58EF39AAD
5FB38429D5D77768867C76DCBDB35194

Vergiss das mit dem Problem gelöst, beim nächsten Neustart waren die Tasks wieder 2 mal da

schrauber · 03.05.2014, 07:33

hi,

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Ummgh23 · 03.05.2014, 13:29

No Threats found (Y)

Hier der Log:

Code:

ATTFilter

14:26:13.0597 0x12ec  TDSS rootkit removing tool 3.0.0.34 Apr 29 2014 18:20:10
14:26:13.0597 0x12ec  UEFI system
14:26:15.0699 0x12ec  ============================================================
14:26:15.0699 0x12ec  Current date / time: 2014/05/03 14:26:15.0699
14:26:15.0699 0x12ec  SystemInfo:
14:26:15.0699 0x12ec  
14:26:15.0699 0x12ec  OS Version: 6.2.9200 ServicePack: 0.0
14:26:15.0699 0x12ec  Product type: Workstation
14:26:15.0699 0x12ec  ComputerName: ALIENWARE
14:26:15.0699 0x12ec  UserName: Kevin
14:26:15.0699 0x12ec  Windows directory: C:\Windows
14:26:15.0699 0x12ec  System windows directory: C:\Windows
14:26:15.0699 0x12ec  Running under WOW64
14:26:15.0699 0x12ec  Processor architecture: Intel x64
14:26:15.0699 0x12ec  Number of processors: 8
14:26:15.0699 0x12ec  Page size: 0x1000
14:26:15.0699 0x12ec  Boot type: Normal boot
14:26:15.0699 0x12ec  ============================================================
14:26:15.0797 0x12ec  System UUID: {725E0941-3A8E-74C5-8796-83892920ED4D}
14:26:16.0086 0x12ec  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C0E00000 (1863.01 Gb), SectorSize: 0x200, Cylinders: 0x3B600, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:26:16.0090 0x12ec  ============================================================
14:26:16.0090 0x12ec  \Device\Harddisk0\DR0:
14:26:16.0090 0x12ec  GPT partitions:
14:26:16.0090 0x12ec  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {40A4BDAF-52F0-416F-B43E-3927D9C93373}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x96000
14:26:16.0090 0x12ec  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {D03649F1-2231-42B7-AE1C-16008A929657}, Name: EFI system partition, StartLBA 0x96800, BlocksNum 0x32000
14:26:16.0090 0x12ec  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {0FAF75D7-B71B-4244-8181-BC6BF4E4608E}, Name: Microsoft reserved partition, StartLBA 0xC8800, BlocksNum 0x40000
14:26:16.0091 0x12ec  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {BB06D45F-522A-4074-A74B-2F6B068F0B58}, Name: Basic data partition, StartLBA 0x108800, BlocksNum 0xE8CFE000
14:26:16.0091 0x12ec  MBR partitions:
14:26:16.0091 0x12ec  ============================================================
14:26:16.0110 0x12ec  C: <-> \Device\Harddisk0\DR0\Partition4
14:26:16.0110 0x12ec  ============================================================
14:26:16.0110 0x12ec  Initialize success
14:26:16.0110 0x12ec  ============================================================
14:26:20.0668 0x1a38  ============================================================
14:26:20.0668 0x1a38  Scan started
14:26:20.0668 0x1a38  Mode: Manual; SigCheck; TDLFS; 
14:26:20.0668 0x1a38  ============================================================
14:26:20.0668 0x1a38  KSN ping started
14:26:23.0088 0x1a38  KSN ping finished: true
14:26:23.0907 0x1a38  ================ Scan system memory ========================
14:26:23.0907 0x1a38  System memory - ok
14:26:23.0908 0x1a38  ================ Scan services =============================
14:26:24.0070 0x1a38  [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
14:26:24.0122 0x1a38  1394ohci - ok
14:26:24.0139 0x1a38  [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware           C:\Windows\system32\drivers\3ware.sys
14:26:24.0147 0x1a38  3ware - ok
14:26:24.0211 0x1a38  [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:26:24.0235 0x1a38  ACPI - ok
14:26:24.0245 0x1a38  [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
14:26:24.0253 0x1a38  acpiex - ok
14:26:24.0261 0x1a38  [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
14:26:24.0267 0x1a38  acpipagr - ok
14:26:24.0270 0x1a38  [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
14:26:24.0275 0x1a38  AcpiPmi - ok
14:26:24.0278 0x1a38  [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
14:26:24.0284 0x1a38  acpitime - ok
14:26:24.0408 0x1a38  [ CD41DFA7A778555B2055E2D388F5CB33, AE149AB7823AE3A97E2826C06968F32A7E50331484203E4581C83E441A1680F9 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
14:26:24.0434 0x1a38  AcrSch2Svc - ok
14:26:24.0506 0x1a38  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:26:24.0521 0x1a38  AdobeARMservice - ok
14:26:24.0611 0x1a38  [ 7C7E868E1D8096ED08D80FF7712BB9D8, EB4438F3CC377728173E018A763F0D0A8D5BBA4A289F554036D06B24030D2D62 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:26:24.0634 0x1a38  AdobeFlashPlayerUpdateSvc - ok
14:26:24.0663 0x1a38  [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
14:26:24.0683 0x1a38  adp94xx - ok
14:26:24.0697 0x1a38  [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci         C:\Windows\system32\drivers\adpahci.sys
14:26:24.0709 0x1a38  adpahci - ok
14:26:24.0722 0x1a38  [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
14:26:24.0731 0x1a38  adpu320 - ok
14:26:24.0779 0x1a38  [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:26:24.0788 0x1a38  AeLookupSvc - ok
14:26:24.0817 0x1a38  [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
14:26:24.0843 0x1a38  afcdp - ok
14:26:24.0927 0x1a38  [ 3B1C11CB7006495F799F8A2AB8B2D530, B7B0C4922A1843BBF8104CDC705C4FEA1F1A760C1CC2BD6BC5E4213A0E4ED9FD ] afcdpsrv        C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
14:26:24.0992 0x1a38  afcdpsrv - ok
14:26:25.0038 0x1a38  [ 7C0E0EDF18D6CC565D7BFBB451709FA5, 47C21CD9D87B5C1B5EB14F6166B5E3349B1A6F10501E63CCED8D52A9FE22765D ] AFD             C:\Windows\system32\drivers\afd.sys
14:26:25.0054 0x1a38  AFD - ok
14:26:25.0060 0x1a38  [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440          C:\Windows\system32\drivers\agp440.sys
14:26:25.0067 0x1a38  agp440 - ok
14:26:25.0090 0x1a38  [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG             C:\Windows\System32\alg.exe
14:26:25.0101 0x1a38  ALG - ok
14:26:25.0172 0x1a38  [ D25A839151692E10BF4034D3B8D69A8C, F2DF6ED209D8385FA84A7C28F9427A8490473ED9C56B80058C6C2EAC89A074D4 ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe
14:26:25.0183 0x1a38  AlienFusionService - ok
14:26:25.0230 0x1a38  [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
14:26:25.0253 0x1a38  AllUserInstallAgent - ok
14:26:25.0304 0x1a38  [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
14:26:25.0326 0x1a38  AmdK8 - ok
14:26:25.0344 0x1a38  [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
14:26:25.0362 0x1a38  AmdPPM - ok
14:26:25.0367 0x1a38  [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:26:25.0381 0x1a38  amdsata - ok
14:26:25.0400 0x1a38  [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
14:26:25.0414 0x1a38  amdsbs - ok
14:26:25.0418 0x1a38  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:26:25.0429 0x1a38  amdxata - ok
14:26:25.0526 0x1a38  [ 4D282B9C5BB05DF92C9F3977DFB9F916, E6D49ED0D5FA26F2936FC97A0F1DFA38D1066AAF2EEFCE2931AF21B2CBE54CAD ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
14:26:25.0549 0x1a38  AntiVirSchedulerService - ok
14:26:25.0631 0x1a38  [ 65AF41A7A2C5B6693E1B4164E7632C3E, BA1DC45D7BB5307BD418D2BDFDBD1DD593439245A0A3F65FE6287F6F5198B999 ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
14:26:25.0651 0x1a38  AntiVirService - ok
14:26:25.0660 0x1a38  [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID           C:\Windows\system32\drivers\appid.sys
14:26:25.0681 0x1a38  AppID - ok
14:26:25.0690 0x1a38  [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:26:25.0704 0x1a38  AppIDSvc - ok
14:26:25.0750 0x1a38  [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo         C:\Windows\System32\appinfo.dll
14:26:25.0762 0x1a38  Appinfo - ok
14:26:25.0834 0x1a38  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:26:25.0847 0x1a38  Apple Mobile Device - ok
14:26:25.0873 0x1a38  [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc             C:\Windows\system32\drivers\arc.sys
14:26:25.0894 0x1a38  arc - ok
14:26:25.0905 0x1a38  [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
14:26:25.0927 0x1a38  arcsas - ok
14:26:25.0937 0x1a38  [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:26:25.0960 0x1a38  AsyncMac - ok
14:26:25.0967 0x1a38  [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi           C:\Windows\system32\drivers\atapi.sys
14:26:25.0983 0x1a38  atapi - ok
14:26:26.0021 0x1a38  [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
14:26:26.0034 0x1a38  AudioEndpointBuilder - ok
14:26:26.0091 0x1a38  [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
14:26:26.0117 0x1a38  Audiosrv - ok
14:26:26.0169 0x1a38  [ 7806BFCD1D7FA5EC23F7324D4EAFD25B, 4EDFD9DE520728AF6578BED0054ED6A4976A7F020F3329EA6681D6E361D9DB2D ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
14:26:26.0186 0x1a38  avgntflt - ok
14:26:26.0236 0x1a38  [ C3A58DBD18786C338126D30BF8C33D72, 4DF4D37AB5139548C2DA4B4C8D6B933A7F4ED001BCA089EFBC8C57EEDE8785A6 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
14:26:26.0253 0x1a38  avipbb - ok
14:26:26.0278 0x1a38  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
14:26:26.0290 0x1a38  avkmgr - ok
14:26:26.0322 0x1a38  [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:26:26.0346 0x1a38  AxInstSV - ok
14:26:26.0381 0x1a38  [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
14:26:26.0405 0x1a38  b06bdrv - ok
14:26:26.0419 0x1a38  [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
14:26:26.0433 0x1a38  BasicDisplay - ok
14:26:26.0449 0x1a38  [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
14:26:26.0455 0x1a38  BasicRender - ok
14:26:26.0504 0x1a38  [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC          C:\Windows\System32\bdesvc.dll
14:26:26.0513 0x1a38  BDESVC - ok
14:26:26.0528 0x1a38  [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep            C:\Windows\system32\drivers\Beep.sys
14:26:26.0535 0x1a38  Beep - ok
14:26:26.0599 0x1a38  [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE             C:\Windows\System32\bfe.dll
14:26:26.0636 0x1a38  BFE - ok
14:26:26.0687 0x1a38  [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS            C:\Windows\system32\qmgr.dll
14:26:26.0716 0x1a38  BITS - ok
14:26:26.0774 0x1a38  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:26:26.0785 0x1a38  Bonjour Service - ok
14:26:26.0794 0x1a38  [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:26:26.0809 0x1a38  bowser - ok
14:26:26.0851 0x1a38  [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
14:26:26.0871 0x1a38  BrokerInfrastructure - ok
14:26:26.0883 0x1a38  [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser         C:\Windows\System32\browser.dll
14:26:26.0893 0x1a38  Browser - ok
14:26:26.0911 0x1a38  [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
14:26:26.0920 0x1a38  BthAvrcpTg - ok
14:26:26.0960 0x1a38  [ A8B20D852B07AE19A13B5D47EC4E4C3B, 86571C9E2BA15BB169CAB2D24C4D0598154C02FD173638CAFC685A7F6B09472D ] BthEnum         C:\Windows\System32\drivers\BthEnum.sys
14:26:26.0979 0x1a38  BthEnum - ok
14:26:26.0996 0x1a38  [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
14:26:27.0018 0x1a38  BthHFEnum - ok
14:26:27.0063 0x1a38  [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
14:26:27.0077 0x1a38  bthhfhid - ok
14:26:27.0094 0x1a38  [ 033916CE8784A848B9A3D686B7F66D97, B4D0514D59646CF6B70D4FA488CF95C38EA38CC5C509329CC8753E897C640AFA ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
14:26:27.0118 0x1a38  BTHMODEM - ok
14:26:27.0139 0x1a38  [ 091BB978E9504D0AD14586929431A957, ACED02B879026A228E35F40847C210BC30A5AFC948FFE922DB21663E4A8DFF1D ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
14:26:27.0150 0x1a38  BthPan - ok
14:26:27.0174 0x1a38  [ 13795CAA34239D97A7211E7F9D96E012, C4F3402B063A7CFCE386D1AE9255975A199164BA9E7DCDB6129725213A0642B1 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
14:26:27.0198 0x1a38  BTHPORT - ok
14:26:27.0203 0x1a38  [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv         C:\Windows\system32\bthserv.dll
14:26:27.0210 0x1a38  bthserv - ok
14:26:27.0234 0x1a38  [ 1F715957F5236D30B6020A19A4271F6A, C06B637C2C6919E2DE1055AE249AE3EAF7B4890799F22BF5757CC10CEF145043 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
14:26:27.0240 0x1a38  BTHUSB - ok
14:26:27.0393 0x1a38  [ 72551A9AE5F68905DFC3CBA0D5242566, 15C273519C3AD1B2AF68F669125AFE607A86A60D680E299631D5E893C3CAA7E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
14:26:27.0426 0x1a38  c2cautoupdatesvc - ok
14:26:27.0429 0x1a38  catchme - ok
14:26:27.0433 0x1a38  [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:26:27.0441 0x1a38  cdfs - ok
14:26:27.0463 0x1a38  [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom           C:\Windows\System32\drivers\cdrom.sys
14:26:27.0480 0x1a38  cdrom - ok
14:26:27.0499 0x1a38  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc     C:\Windows\System32\certprop.dll
14:26:27.0525 0x1a38  CertPropSvc - ok
14:26:27.0540 0x1a38  [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass        C:\Windows\System32\drivers\circlass.sys
14:26:27.0559 0x1a38  circlass - ok
14:26:27.0571 0x1a38  [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS            C:\Windows\system32\drivers\CLFS.sys
14:26:27.0589 0x1a38  CLFS - ok
14:26:27.0633 0x1a38  [ 3E76A1547F2448BCEE3D2F4AE3931AB5, 31B41723FAA4210A86B1AE02D6C052BD8B738C4B89FB0177C1AE997D24BA5B8C ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
14:26:27.0639 0x1a38  CLVirtualDrive - ok
14:26:27.0644 0x1a38  [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
14:26:27.0650 0x1a38  CmBatt - ok
14:26:27.0700 0x1a38  [ E708BFF0473EC6B271EA46B65B16CA56, 2B4C661F7C5A4395CA4204122A1C3C8AA766B56C3D01CD8BAAFA18F71FC7B591 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:26:27.0726 0x1a38  CNG - ok
14:26:27.0733 0x1a38  [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
14:26:27.0747 0x1a38  CompositeBus - ok
14:26:27.0749 0x1a38  COMSysApp - ok
14:26:27.0752 0x1a38  [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv          C:\Windows\system32\drivers\condrv.sys
14:26:27.0759 0x1a38  condrv - ok
14:26:27.0807 0x1a38  [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:26:27.0815 0x1a38  CryptSvc - ok
14:26:27.0866 0x1a38  [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam             C:\Windows\system32\drivers\dam.sys
14:26:27.0885 0x1a38  dam - ok
14:26:27.0935 0x1a38  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:26:27.0958 0x1a38  DcomLaunch - ok
14:26:27.0979 0x1a38  [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc       C:\Windows\System32\defragsvc.dll
14:26:27.0994 0x1a38  defragsvc - ok
14:26:28.0007 0x1a38  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\Windows\system32\das.dll
14:26:28.0022 0x1a38  DeviceAssociationService - ok
14:26:28.0072 0x1a38  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
14:26:28.0097 0x1a38  DeviceInstall - ok
14:26:28.0138 0x1a38  [ 431141C6859990824D17F71C30A78728, 448B3DC20C8FDD5B66217E0E01DBCC4904F94BDA0826F109D139DDD2C2D7FBF2 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
14:26:28.0159 0x1a38  Dfsc - ok
14:26:28.0201 0x1a38  [ E428DFFA96FAD07D8CA3C9082563A225, F3D2E94A9FF2CF68CC99A8B42B8DEA5E57D46000D1845DC0908224493480C79F ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
14:26:28.0216 0x1a38  dg_ssudbus - ok
14:26:28.0280 0x1a38  [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:26:28.0308 0x1a38  Dhcp - ok
14:26:28.0315 0x1a38  [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache        C:\Windows\system32\drivers\discache.sys
14:26:28.0329 0x1a38  discache - ok
14:26:28.0359 0x1a38  [ AE3786294CC246A5403783E1B86A0168, 29A7B4B490CBB16DAEF5D67D0A58A2577CF3FEE8F889484DB867F6913D9D2A28 ] disk            C:\Windows\system32\drivers\disk.sys
14:26:28.0366 0x1a38  disk - ok
14:26:28.0371 0x1a38  [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
14:26:28.0381 0x1a38  dmvsc - ok
14:26:28.0409 0x1a38  [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:26:28.0418 0x1a38  Dnscache - ok
14:26:28.0437 0x1a38  [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc         C:\Windows\System32\dot3svc.dll
14:26:28.0449 0x1a38  dot3svc - ok
14:26:28.0470 0x1a38  [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS             C:\Windows\system32\dps.dll
14:26:28.0507 0x1a38  DPS - ok
14:26:28.0520 0x1a38  [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:26:28.0535 0x1a38  drmkaud - ok
14:26:28.0597 0x1a38  [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
14:26:28.0624 0x1a38  DsmSvc - ok
14:26:28.0676 0x1a38  [ 6A0E850DDCB136AA3D2FB7234382DF12, C01863E95F45E1B74AC65C9CD12C8DC769299218255B3C94E3EBF58C4D79FEF3 ] dtsoftbus01     C:\Windows\System32\drivers\dtsoftbus01.sys
14:26:28.0698 0x1a38  dtsoftbus01 - ok
14:26:28.0790 0x1a38  [ E6AF4DF1817953D73C519B17CF849756, 26A90EB368A3F572086F223ABED87B8FC6F998AE401C9E52BEB5EE76AB052702 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:26:28.0827 0x1a38  DXGKrnl - ok
14:26:28.0843 0x1a38  [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost         C:\Windows\System32\eapsvc.dll
14:26:28.0853 0x1a38  Eaphost - ok
14:26:28.0929 0x1a38  [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv           C:\Windows\system32\drivers\evbda.sys
14:26:28.0996 0x1a38  ebdrv - ok
14:26:29.0029 0x1a38  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] EFS             C:\Windows\System32\lsass.exe
14:26:29.0036 0x1a38  EFS - ok
14:26:29.0039 0x1a38  [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
14:26:29.0046 0x1a38  EhStorClass - ok
14:26:29.0075 0x1a38  [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
14:26:29.0097 0x1a38  EhStorTcgDrv - ok
14:26:29.0111 0x1a38  [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
14:26:29.0127 0x1a38  ErrDev - ok
14:26:29.0178 0x1a38  [ 0E80CECD02BC54CE10361F921FD08337, 3A62D10A9D3D6511B75B67BFA58D27070454EF7A770CFB3729DE5D6CA2C07228 ] ESLWireAC       C:\Windows\system32\drivers\ESLWireACD.sys
14:26:29.0201 0x1a38  ESLWireAC - ok
14:26:29.0325 0x1a38  [ A2941FF542EFF81B32575EB964A89E48, E0C98E6648EF0B2E4819FA5656A8EF79855C39E0C1D43FCD08B36F1951FBF71A ] EslWireHelper   C:\Program Files\EslWire\service\WireHelperSvc.exe
14:26:29.0347 0x1a38  EslWireHelper - ok
14:26:29.0389 0x1a38  [ 932C05033053ADA2404FD836C9AB2C70, 39E3C40DDDCA475F55CD6A044E8CF35A1C25A776B79204CBF76D0DD5D89568D8 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
14:26:29.0402 0x1a38  EuMusDesignVirtualAudioCableWdm - ok
14:26:29.0449 0x1a38  [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem     C:\Windows\system32\es.dll
14:26:29.0470 0x1a38  EventSystem - ok
14:26:29.0477 0x1a38  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat           C:\Windows\system32\drivers\exfat.sys
14:26:29.0491 0x1a38  exfat - ok
14:26:29.0497 0x1a38  [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:26:29.0506 0x1a38  fastfat - ok
14:26:29.0533 0x1a38  [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax             C:\Windows\system32\fxssvc.exe
14:26:29.0549 0x1a38  Fax - ok
14:26:29.0553 0x1a38  [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc             C:\Windows\System32\drivers\fdc.sys
14:26:29.0559 0x1a38  fdc - ok
14:26:29.0562 0x1a38  [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost         C:\Windows\system32\fdPHost.dll
14:26:29.0577 0x1a38  fdPHost - ok
14:26:29.0589 0x1a38  [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:26:29.0600 0x1a38  FDResPub - ok
14:26:29.0645 0x1a38  [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc           C:\Windows\system32\fhsvc.dll
14:26:29.0667 0x1a38  fhsvc - ok
14:26:29.0677 0x1a38  [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:26:29.0696 0x1a38  FileInfo - ok
14:26:29.0721 0x1a38  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:26:29.0743 0x1a38  Filetrace - ok
14:26:29.0747 0x1a38  [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
14:26:29.0757 0x1a38  flpydisk - ok
14:26:29.0767 0x1a38  [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:26:29.0782 0x1a38  FltMgr - ok
14:26:29.0819 0x1a38  [ FDD776FAC4159A2983940D1E411FE9F3, 3B147B4D3C5CC67117D65152FA8BD3A603728C92B023AE45CD166E6FF3F474C5 ] fltsrv          C:\Windows\system32\DRIVERS\fltsrv.sys
14:26:29.0824 0x1a38  fltsrv - ok
14:26:29.0908 0x1a38  [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache       C:\Windows\system32\FntCache.dll
14:26:29.0941 0x1a38  FontCache - ok
14:26:30.0079 0x1a38  [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:26:30.0095 0x1a38  FontCache3.0.0.0 - ok
14:26:30.0107 0x1a38  [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:26:30.0118 0x1a38  FsDepends - ok
14:26:30.0124 0x1a38  [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:26:30.0138 0x1a38  Fs_Rec - ok
14:26:30.0192 0x1a38  [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:26:30.0212 0x1a38  fvevol - ok
14:26:30.0241 0x1a38  [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
14:26:30.0256 0x1a38  FxPPM - ok
14:26:30.0285 0x1a38  [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
14:26:30.0296 0x1a38  gagp30kx - ok
14:26:30.0337 0x1a38  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:26:30.0344 0x1a38  GEARAspiWDM - ok
14:26:30.0359 0x1a38  [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
14:26:30.0376 0x1a38  gencounter - ok
14:26:30.0419 0x1a38  [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
14:26:30.0439 0x1a38  GPIOClx0101 - ok
14:26:30.0504 0x1a38  [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc           C:\Windows\System32\gpsvc.dll
14:26:30.0538 0x1a38  gpsvc - ok
14:26:30.0558 0x1a38  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:26:30.0564 0x1a38  gusvc - ok
14:26:30.0620 0x1a38  [ C41EB965A9DC4844F156E628F75AE876, 3E250704E6C30FAFE0FDE2BB259452761AFB7AAC3A7026ADB960079D06870C84 ] Hamachi         C:\Windows\system32\DRIVERS\Hamdrv.sys
14:26:30.0633 0x1a38  Hamachi - ok
14:26:30.0786 0x1a38  [ C57174C191F04B07A9F24320C57888E1, 6FD5CBD10923E13F57D9CC8FD2DF2B009DC82431C3939E37223BEBBA2D1A70DA ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
14:26:30.0826 0x1a38  Hamachi2Svc - ok
14:26:30.0872 0x1a38  [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:26:30.0884 0x1a38  HdAudAddService - ok
14:26:30.0895 0x1a38  [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
14:26:30.0915 0x1a38  HDAudBus - ok
14:26:30.0920 0x1a38  [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
14:26:30.0929 0x1a38  HidBatt - ok
14:26:30.0965 0x1a38  [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth          C:\Windows\System32\drivers\hidbth.sys
14:26:30.0973 0x1a38  HidBth - ok
14:26:30.0986 0x1a38  [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
14:26:30.0994 0x1a38  hidi2c - ok
14:26:31.0013 0x1a38  [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr           C:\Windows\System32\drivers\hidir.sys
14:26:31.0027 0x1a38  HidIr - ok
14:26:31.0031 0x1a38  [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv         C:\Windows\System32\hidserv.dll
14:26:31.0044 0x1a38  hidserv - ok
14:26:31.0054 0x1a38  [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
14:26:31.0060 0x1a38  HidUsb - ok
14:26:31.0076 0x1a38  [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:26:31.0086 0x1a38  hkmsvc - ok
14:26:31.0111 0x1a38  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:26:31.0121 0x1a38  HomeGroupListener - ok
14:26:31.0153 0x1a38  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:26:31.0165 0x1a38  HomeGroupProvider - ok
14:26:31.0174 0x1a38  [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:26:31.0181 0x1a38  HpSAMD - ok
14:26:31.0235 0x1a38  [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:26:31.0254 0x1a38  HTTP - ok
14:26:31.0260 0x1a38  [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:26:31.0266 0x1a38  hwpolicy - ok
14:26:31.0278 0x1a38  [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
14:26:31.0283 0x1a38  hyperkbd - ok
14:26:31.0286 0x1a38  [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
14:26:31.0292 0x1a38  HyperVideo - ok
14:26:31.0296 0x1a38  [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
14:26:31.0303 0x1a38  i8042prt - ok
14:26:31.0318 0x1a38  [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:26:31.0331 0x1a38  iaStorV - ok
14:26:31.0413 0x1a38  [ 829EA5ECCAA623279D94EAEE3B5AD140, 2D40536146203079BDD31B0A86E442CE896DAF08F8AC7ACF77E38BC85BB179A4 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
14:26:31.0455 0x1a38  IconMan_R - ok
14:26:31.0460 0x1a38  [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
14:26:31.0466 0x1a38  iirsp - ok
14:26:31.0542 0x1a38  [ C5E4602D85029C666A42890A3B2DFA45, 0D462704C507A83CB447AA0DF8A9FFAE2A16DD2D6882798E26C03F8B2C8A2C62 ] IJPLMSVC        C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
14:26:31.0560 0x1a38  IJPLMSVC - ok
14:26:31.0603 0x1a38  [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT          C:\Windows\System32\ikeext.dll
14:26:31.0628 0x1a38  IKEEXT - ok
14:26:31.0667 0x1a38  [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
14:26:31.0681 0x1a38  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
14:26:34.0269 0x1a38  Detect skipped due to KSN trusted
14:26:34.0269 0x1a38  Intel(R) Capability Licensing Service Interface - ok
14:26:34.0357 0x1a38  [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
14:26:34.0389 0x1a38  Intel(R) Capability Licensing Service TCP IP Interface - ok
14:26:34.0394 0x1a38  [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide        C:\Windows\system32\drivers\intelide.sys
14:26:34.0410 0x1a38  intelide - ok
14:26:34.0443 0x1a38  [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
14:26:34.0458 0x1a38  intelppm - ok
14:26:34.0466 0x1a38  [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:26:34.0488 0x1a38  IpFilterDriver - ok
14:26:34.0554 0x1a38  [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:26:34.0582 0x1a38  iphlpsvc - ok
14:26:34.0589 0x1a38  [ 6E98A046A12AA113F8898AA5D612BD6E, 28816CC1F03F2BFBF099C087C0BB6949E959F44C888DD2D0528FF7ED5D665ECF ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
14:26:34.0607 0x1a38  IPMIDRV - ok
14:26:34.0617 0x1a38  [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:26:34.0628 0x1a38  IPNAT - ok
14:26:34.0690 0x1a38  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:26:34.0708 0x1a38  iPod Service - ok
14:26:34.0720 0x1a38  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:26:34.0727 0x1a38  IRENUM - ok
14:26:34.0729 0x1a38  [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:26:34.0735 0x1a38  isapnp - ok
14:26:34.0795 0x1a38  [ E6530FD4F61B40F338BF4355A21B9A09, FE9BF039B9901BEC260A69F7C49ACFA9881AD470DCCBA70C7EC36F518DA71702 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
14:26:34.0819 0x1a38  iScsiPrt - ok
14:26:34.0877 0x1a38  [ 924019BC58FEDDE04A08C45EC1CF1847, F18C581FE5C25C5BE4514185AD44C561EB715B98AFBE81EF0D673E103EA8E8EE ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
14:26:34.0887 0x1a38  jhi_service - ok
14:26:34.0891 0x1a38  [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
14:26:34.0901 0x1a38  kbdclass - ok
14:26:34.0905 0x1a38  [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
14:26:34.0911 0x1a38  kbdhid - ok
14:26:34.0913 0x1a38  [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
14:26:34.0919 0x1a38  kdnic - ok
14:26:34.0929 0x1a38  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] KeyIso          C:\Windows\system32\lsass.exe
14:26:34.0937 0x1a38  KeyIso - ok
14:26:34.0958 0x1a38  [ DFA480F6DED551464F3A5B959F437800, C07AB6F28A09FCBE11EECAD03B06CEAE1016EC24031FCA0C092639E90FBA84CF ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:26:34.0965 0x1a38  KSecDD - ok
14:26:35.0001 0x1a38  [ 127FB0AAD232BAAD2C9BBACD374F4FC5, 3BC56F6B4374062C96149D69ACE053DF81A278F0361599F5A2F3DB1F76F0AD68 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:26:35.0020 0x1a38  KSecPkg - ok
14:26:35.0026 0x1a38  [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:26:35.0035 0x1a38  ksthunk - ok
14:26:35.0066 0x1a38  [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:26:35.0079 0x1a38  KtmRm - ok
14:26:35.0136 0x1a38  [ 305BB2AC00D46542E0A653AB63F4ABB1, E3BE57A0EBB1194656D20C11688863A7864B06223419F688D82881F9F49604B6 ] LADF_CaptureOnly C:\Windows\system32\DRIVERS\ladfGSCamd64.sys
14:26:35.0155 0x1a38  LADF_CaptureOnly - ok
14:26:35.0171 0x1a38  [ 28CDDC7D478A6313F55077416DCBD0DE, EE4174FC9444856DF0693D1A5F16EB88352A3B012AA82D49C462980703981A7A ] LADF_RenderOnly C:\Windows\system32\DRIVERS\ladfGSRamd64.sys
14:26:35.0177 0x1a38  LADF_RenderOnly - ok
14:26:35.0201 0x1a38  [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer    C:\Windows\System32\srvsvc.dll
14:26:35.0214 0x1a38  LanmanServer - ok
14:26:35.0240 0x1a38  [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:26:35.0259 0x1a38  LanmanWorkstation - ok
14:26:35.0299 0x1a38  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
14:26:35.0303 0x1a38  LGBusEnum - ok
14:26:35.0342 0x1a38  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
14:26:35.0347 0x1a38  LGVirHid - ok
14:26:35.0352 0x1a38  [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:26:35.0364 0x1a38  lltdio - ok
14:26:35.0397 0x1a38  [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:26:35.0422 0x1a38  lltdsvc - ok
14:26:35.0440 0x1a38  [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:26:35.0454 0x1a38  lmhosts - ok
14:26:35.0506 0x1a38  [ 03AA719BAAA79AC35B4E115C089FAA79, 3A2439CB08C4F6BB766EBD92F9275D26B4F25A6A5279073D678A0A8B4C67EFCE ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
14:26:35.0533 0x1a38  LMIGuardianSvc - ok
14:26:35.0550 0x1a38  [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
14:26:35.0567 0x1a38  LSI_SAS - ok
14:26:35.0575 0x1a38  [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
14:26:35.0594 0x1a38  LSI_SAS2 - ok
14:26:35.0599 0x1a38  [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
14:26:35.0608 0x1a38  LSI_SCSI - ok
14:26:35.0612 0x1a38  [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
14:26:35.0621 0x1a38  LSI_SSS - ok
14:26:35.0676 0x1a38  [ A57BA284F5996FFD32DCDBC41A4657DB, 2106B83873A824BC83EF42FAC9DD9A0F741209535A84AE65EA8E786519920043 ] LSM             C:\Windows\System32\lsm.dll
14:26:35.0693 0x1a38  LSM - ok
14:26:35.0701 0x1a38  [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv           C:\Windows\system32\drivers\luafv.sys
14:26:35.0732 0x1a38  luafv - ok
14:26:35.0736 0x1a38  [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas         C:\Windows\system32\drivers\megasas.sys
14:26:35.0749 0x1a38  megasas - ok
14:26:35.0779 0x1a38  [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
14:26:35.0796 0x1a38  MegaSR - ok
14:26:35.0820 0x1a38  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\Windows\System32\drivers\HECIx64.sys
14:26:35.0826 0x1a38  MEIx64 - ok
14:26:35.0873 0x1a38  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS           C:\Windows\system32\mmcss.dll
14:26:35.0895 0x1a38  MMCSS - ok
14:26:35.0912 0x1a38  [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem           C:\Windows\system32\drivers\modem.sys
14:26:35.0932 0x1a38  Modem - ok
14:26:35.0973 0x1a38  [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor         C:\Windows\System32\drivers\monitor.sys
14:26:35.0983 0x1a38  monitor - ok
14:26:35.0987 0x1a38  [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
14:26:36.0005 0x1a38  mouclass - ok
14:26:36.0031 0x1a38  [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
14:26:36.0041 0x1a38  mouhid - ok
14:26:36.0048 0x1a38  [ 89D263DBF08119CE16273991C120D6DD, 9771EDAD266F0E234E71DFB6792F396710E051F2ADCA5CDADEBBD2790D0E6054 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:26:36.0068 0x1a38  mountmgr - ok
14:26:36.0122 0x1a38  [ C57C087688D48E7FB57F12B201A41199, FD52B56662DCB8DF40817FBB3EB5FA405A7A00A2546596598A176C483EE467A7 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:26:36.0139 0x1a38  MozillaMaintenance - ok
14:26:36.0175 0x1a38  [ 4CCBBD4944777CA100B9A6C2F149A46F, 7FC172FAF8266BFBBBBAD94FD67EA3C1872F5927DC3900A9A54DB2DFE34E7415 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:26:36.0195 0x1a38  mpsdrv - ok
14:26:36.0250 0x1a38  [ 9DE3341BD4E14BC5FADFCAD3019F2D0D, 37E0531EADABC6D4BCC496826651D4D14CF0D10156FF13C11BDE466084B44FF4 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:26:36.0279 0x1a38  MpsSvc - ok
14:26:36.0287 0x1a38  [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:26:36.0297 0x1a38  MRxDAV - ok
14:26:36.0363 0x1a38  [ 93179D48066918323628CB016D8C94DC, FE110BF7A10EDD1DF7F6B933D373FCA51F37413282EBC4187E7C9B1965186BCC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:26:36.0391 0x1a38  mrxsmb - ok
14:26:36.0405 0x1a38  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:26:36.0420 0x1a38  mrxsmb10 - ok
14:26:36.0436 0x1a38  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26, 9822FA53E6067C0E39B7A3A3F1E88719D5D8B055D86FF894F0475B158289EA45 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:26:36.0447 0x1a38  mrxsmb20 - ok
14:26:36.0471 0x1a38  [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
14:26:36.0481 0x1a38  MsBridge - ok
14:26:36.0498 0x1a38  [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC           C:\Windows\System32\msdtc.exe
14:26:36.0507 0x1a38  MSDTC - ok
14:26:36.0512 0x1a38  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:26:36.0521 0x1a38  Msfs - ok
14:26:36.0534 0x1a38  [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
14:26:36.0540 0x1a38  msgpiowin32 - ok
14:26:36.0554 0x1a38  [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:26:36.0568 0x1a38  mshidkmdf - ok
14:26:36.0575 0x1a38  [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
14:26:36.0584 0x1a38  mshidumdf - ok
14:26:36.0586 0x1a38  [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:26:36.0592 0x1a38  msisadrv - ok
14:26:36.0618 0x1a38  [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:26:36.0626 0x1a38  MSiSCSI - ok
14:26:36.0629 0x1a38  msiserver - ok
14:26:36.0632 0x1a38  [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:26:36.0640 0x1a38  MSKSSRV - ok
14:26:36.0655 0x1a38  [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
14:26:36.0662 0x1a38  MsLldp - ok
14:26:36.0684 0x1a38  [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:26:36.0691 0x1a38  MSPCLOCK - ok
14:26:36.0693 0x1a38  [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:26:36.0701 0x1a38  MSPQM - ok
14:26:36.0709 0x1a38  [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:26:36.0722 0x1a38  MsRPC - ok
14:26:36.0726 0x1a38  [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
14:26:36.0742 0x1a38  mssmbios - ok
14:26:36.0744 0x1a38  [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:26:36.0754 0x1a38  MSTEE - ok
14:26:36.0759 0x1a38  [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
14:26:36.0768 0x1a38  MTConfig - ok
14:26:36.0772 0x1a38  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup             C:\Windows\system32\Drivers\mup.sys
14:26:36.0778 0x1a38  Mup - ok
14:26:36.0789 0x1a38  [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
14:26:36.0796 0x1a38  mvumis - ok
14:26:36.0821 0x1a38  [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent        C:\Windows\system32\qagentRT.dll
14:26:36.0847 0x1a38  napagent - ok
14:26:36.0866 0x1a38  [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:26:36.0880 0x1a38  NativeWifiP - ok
14:26:36.0911 0x1a38  [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc          C:\Windows\System32\ncasvc.dll
14:26:36.0939 0x1a38  NcaSvc - ok
14:26:36.0955 0x1a38  [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
14:26:36.0967 0x1a38  NcdAutoSetup - ok
14:26:37.0047 0x1a38  [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:26:37.0080 0x1a38  NDIS - ok
14:26:37.0092 0x1a38  [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:26:37.0100 0x1a38  NdisCap - ok
14:26:37.0109 0x1a38  [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
14:26:37.0119 0x1a38  NdisImPlatform - ok
14:26:37.0159 0x1a38  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:26:37.0165 0x1a38  NdisTapi - ok
14:26:37.0168 0x1a38  [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:26:37.0175 0x1a38  Ndisuio - ok
14:26:37.0180 0x1a38  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:26:37.0191 0x1a38  NdisWan - ok
14:26:37.0196 0x1a38  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY   C:\Windows\system32\DRIVERS\ndiswan.sys
14:26:37.0207 0x1a38  NDISWANLEGACY - ok
14:26:37.0219 0x1a38  [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:26:37.0228 0x1a38  NDProxy - ok
14:26:37.0240 0x1a38  [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu             C:\Windows\system32\drivers\Ndu.sys
14:26:37.0248 0x1a38  Ndu - ok
14:26:37.0260 0x1a38  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
14:26:37.0269 0x1a38  Netaapl - ok
14:26:37.0288 0x1a38  [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:26:37.0296 0x1a38  NetBIOS - ok
14:26:37.0305 0x1a38  [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:26:37.0332 0x1a38  NetBT - ok
14:26:37.0344 0x1a38  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] Netlogon        C:\Windows\system32\lsass.exe
14:26:37.0355 0x1a38  Netlogon - ok
14:26:37.0377 0x1a38  [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman          C:\Windows\System32\netman.dll
14:26:37.0401 0x1a38  Netman - ok
14:26:37.0429 0x1a38  [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm        C:\Windows\System32\netprofmsvc.dll
14:26:37.0450 0x1a38  netprofm - ok
14:26:37.0524 0x1a38  [ 9F929E74A8FB21B2B44B41C115F10B39, F7E0817690F06BFCC78ADC23BC3FE019DA3A54CDB8D23A586683153C1BA77BBB ] netr28ux        C:\Windows\system32\DRIVERS\netr28ux.sys
14:26:37.0559 0x1a38  netr28ux - ok
14:26:37.0602 0x1a38  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:26:37.0620 0x1a38  NetTcpPortSharing - ok
14:26:37.0635 0x1a38  [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
14:26:37.0646 0x1a38  nfrd960 - ok
14:26:37.0706 0x1a38  [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:26:37.0737 0x1a38  NlaSvc - ok
14:26:37.0745 0x1a38  [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:26:37.0763 0x1a38  Npfs - ok
14:26:37.0768 0x1a38  [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
14:26:37.0788 0x1a38  npsvctrig - ok
14:26:37.0799 0x1a38  [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi             C:\Windows\system32\nsisvc.dll
14:26:37.0818 0x1a38  nsi - ok
14:26:37.0822 0x1a38  [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:26:37.0841 0x1a38  nsiproxy - ok
14:26:37.0948 0x1a38  [ 7BE3EDFFA3216F989A6BDCB14795DD08, 19A2D0120C46CA9BCFBC16DC3E65687ACDDCBA33B79128188652BA2AFAA2EE2F ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:26:37.0993 0x1a38  Ntfs - ok
14:26:38.0075 0x1a38  NTIOLib_Flash - ok
14:26:38.0136 0x1a38  [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null            C:\Windows\system32\drivers\Null.sys
14:26:38.0152 0x1a38  Null - ok
14:26:38.0177 0x1a38  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
14:26:38.0189 0x1a38  NVHDA - ok
14:26:38.0484 0x1a38  [ 757ACE4D4C9FF0571F86AA5D586B45E8, E7F23CC1DE26E2DAA690B78B05FC001EE0051F0ED9B9BCE9E7FA4E9684D4F3D4 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:26:38.0687 0x1a38  nvlddmkm - ok
14:26:38.0813 0x1a38  [ 6822CA012769844EB14FD6634F22C4F6, 967D4CAB760CF19BDF2199AFF9FF9E075A244BB0CB060EF06F7C43A9639433FF ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
14:26:38.0846 0x1a38  NvNetworkService - ok
14:26:38.0858 0x1a38  [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:26:38.0866 0x1a38  nvraid - ok
14:26:38.0871 0x1a38  [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:26:38.0879 0x1a38  nvstor - ok
14:26:39.0364 0x1a38  [ E13F48379AF383046E55C0C87C11CF63, 47C947FEE2532BFF9A0007A786EFE87C6FCEB61C875821FB17AFDCF8F59507E5 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
14:26:39.0702 0x1a38  NvStreamSvc - ok
14:26:39.0744 0x1a38  [ 1C7CC708AC4A02A3BE8915539780534A, 0EBDE100880963BF1EC05002BA244CA7700693E958D1974CDD2AC3927D93224F ] nvsvc           C:\Windows\system32\nvvsvc.exe
14:26:39.0770 0x1a38  nvsvc - ok
14:26:39.0779 0x1a38  [ 50A7C3FEA78D11B546EA9B0C25FBC6AB, E91313580D631473801E0995AF8A1FD43EC47FF7709ADEF3DCD80D7BC25878D7 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
14:26:39.0784 0x1a38  nvvad_WaveExtensible - ok
14:26:39.0788 0x1a38  [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:26:39.0796 0x1a38  nv_agp - ok
14:26:39.0853 0x1a38  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:26:39.0859 0x1a38  ose - ok
14:26:40.0030 0x1a38  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:26:40.0113 0x1a38  osppsvc - ok
14:26:40.0176 0x1a38  [ 0A9DF4250B7FF98A7D6D3A499A0139C1, FD3FB7EA8C226AAA9B2370F2F43C3ACBD02A5110BAF937A84913065A4110AB3F ] OverwolfUpdaterService C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
14:26:40.0191 0x1a38  OverwolfUpdaterService - ok
14:26:40.0246 0x1a38  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:26:40.0277 0x1a38  p2pimsvc - ok
14:26:40.0310 0x1a38  [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc          C:\Windows\system32\p2psvc.dll
14:26:40.0329 0x1a38  p2psvc - ok
14:26:40.0337 0x1a38  [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport         C:\Windows\System32\drivers\parport.sys
14:26:40.0350 0x1a38  Parport - ok
14:26:40.0410 0x1a38  [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:26:40.0429 0x1a38  partmgr - ok
14:26:40.0477 0x1a38  [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:26:40.0501 0x1a38  PcaSvc - ok
14:26:40.0518 0x1a38  [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci             C:\Windows\system32\drivers\pci.sys
14:26:40.0530 0x1a38  pci - ok
14:26:40.0534 0x1a38  [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide          C:\Windows\system32\drivers\pciide.sys
14:26:40.0546 0x1a38  pciide - ok
14:26:40.0564 0x1a38  [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
14:26:40.0579 0x1a38  pcmcia - ok
14:26:40.0582 0x1a38  [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw             C:\Windows\system32\drivers\pcw.sys
14:26:40.0590 0x1a38  pcw - ok
14:26:40.0638 0x1a38  [ 0698DEDEAD6A00AD0D468C687D830FBF, B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA ] pdc             C:\Windows\system32\drivers\pdc.sys
14:26:40.0657 0x1a38  pdc - ok
14:26:40.0728 0x1a38  [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:26:40.0762 0x1a38  PEAUTH - ok
14:26:40.0828 0x1a38  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:26:40.0848 0x1a38  PerfHost - ok
14:26:40.0938 0x1a38  [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla             C:\Windows\system32\pla.dll
14:26:40.0974 0x1a38  pla - ok
14:26:41.0026 0x1a38  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:26:41.0051 0x1a38  PlugPlay - ok
14:26:41.0098 0x1a38  [ 205E1B699FD3F2F9B036EEA2EC30C620, 9D5C8009BC3F6F76438FC82C3DAAA3E9CC87F74CDE841A0ADD9EF00E98DB6890 ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
14:26:41.0112 0x1a38  PnkBstrA - ok
14:26:41.0127 0x1a38  [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:26:41.0139 0x1a38  PNRPAutoReg - ok
14:26:41.0149 0x1a38  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:26:41.0166 0x1a38  PNRPsvc - ok
14:26:41.0195 0x1a38  [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:26:41.0211 0x1a38  PolicyAgent - ok
14:26:41.0278 0x1a38  [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power           C:\Windows\system32\umpo.dll
14:26:41.0285 0x1a38  Power - ok
14:26:41.0290 0x1a38  [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:26:41.0300 0x1a38  PptpMiniport - ok
14:26:41.0397 0x1a38  [ 9D59831262CAD44E709D695FC9D5E7AB, F95C5475F91DA667C8D5C96253944CE8A0F2C9B1ED4DF8703E5D1D47A0C730B5 ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
14:26:41.0447 0x1a38  PrintNotify - ok
14:26:41.0492 0x1a38  [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor       C:\Windows\System32\drivers\processr.sys
14:26:41.0513 0x1a38  Processor - ok
14:26:41.0541 0x1a38  [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc         C:\Windows\system32\profsvc.dll
14:26:41.0568 0x1a38  ProfSvc - ok
14:26:41.0582 0x1a38  [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:26:41.0597 0x1a38  Psched - ok
14:26:41.0621 0x1a38  [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE           C:\Windows\system32\qwave.dll
14:26:41.0638 0x1a38  QWAVE - ok
14:26:41.0651 0x1a38  [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:26:41.0661 0x1a38  QWAVEdrv - ok
14:26:41.0664 0x1a38  [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:26:41.0673 0x1a38  RasAcd - ok
14:26:41.0691 0x1a38  [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:26:41.0700 0x1a38  RasAgileVpn - ok
14:26:41.0718 0x1a38  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto         C:\Windows\System32\rasauto.dll
14:26:41.0733 0x1a38  RasAuto - ok
14:26:41.0737 0x1a38  [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:26:41.0747 0x1a38  Rasl2tp - ok
14:26:41.0765 0x1a38  [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan          C:\Windows\System32\rasmans.dll
14:26:41.0779 0x1a38  RasMan - ok
14:26:41.0783 0x1a38  [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:26:41.0792 0x1a38  RasPppoe - ok
14:26:41.0796 0x1a38  [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:26:41.0805 0x1a38  RasSstp - ok
14:26:41.0870 0x1a38  [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:26:41.0898 0x1a38  rdbss - ok
14:26:41.0915 0x1a38  [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
14:26:41.0924 0x1a38  rdpbus - ok
14:26:41.0944 0x1a38  [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
14:26:41.0957 0x1a38  RDPDR - ok
14:26:42.0003 0x1a38  [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
14:26:42.0019 0x1a38  RdpVideoMiniport - ok
14:26:42.0042 0x1a38  [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:26:42.0070 0x1a38  RDPWD - ok
14:26:42.0081 0x1a38  [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:26:42.0094 0x1a38  rdyboost - ok
14:26:42.0123 0x1a38  [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:26:42.0134 0x1a38  RemoteAccess - ok
14:26:42.0148 0x1a38  [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:26:42.0161 0x1a38  RemoteRegistry - ok
14:26:42.0204 0x1a38  [ CCBFCABDFE2BC22F0645CEAADDB36004, 279EA9075079F91165027CEFD4FBC61A213CA602EE7DE106F7D2D243468706AA ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
14:26:42.0212 0x1a38  RFCOMM - ok
14:26:42.0339 0x1a38  [ 8A79E14E432BB967E9E1D108A3E7F846, 17CC2700293A1A43285F99CED8D7AFA092E689CAF498371F0B7C073DE6E0A948 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
14:26:42.0362 0x1a38  RichVideo - ok
14:26:42.0412 0x1a38  [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:26:42.0435 0x1a38  RpcEptMapper - ok
14:26:42.0450 0x1a38  [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator      C:\Windows\system32\locator.exe
14:26:42.0462 0x1a38  RpcLocator - ok
14:26:42.0499 0x1a38  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs           C:\Windows\system32\rpcss.dll
14:26:42.0530 0x1a38  RpcSs - ok
14:26:42.0540 0x1a38  [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:26:42.0549 0x1a38  rspndr - ok
14:26:42.0596 0x1a38  [ FC009873CBC12CC6D7045D803D8E8CD3, 00452A8180D96C5C3AAB833F27B6FEAD619AA54E38F8DED2706DE60F6366B662 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
14:26:42.0617 0x1a38  RSUSBSTOR - ok
14:26:42.0692 0x1a38  [ 7D9DA8EC6784A9EE213C676709D46BE6, 9861D1EF107F7D1590B89098EAEA7F509C1EF46999C37703F3766BAD733D8AD2 ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
14:26:42.0737 0x1a38  RTL8168 - ok
14:26:42.0779 0x1a38  [ E33510C28301569AD99D4E02A14C28A7, B725007A43D3BAD0B6FAEEA5035CE4625E63D006C8A7C1BDA8A809FF1CE1E62A ] rzendpt         C:\Windows\System32\drivers\rzendpt.sys
14:26:42.0794 0x1a38  rzendpt - ok
14:26:42.0847 0x1a38  [ 2ABDAE282DBC2D2FB11144184517F850, A68C3B0CCB0441C22BD27F69D22ADF2183613B8B3F9317B89279418A02E78384 ] rzudd           C:\Windows\System32\drivers\rzudd.sys
14:26:42.0873 0x1a38  rzudd - ok
14:26:42.0886 0x1a38  [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
14:26:42.0902 0x1a38  s3cap - ok
14:26:42.0933 0x1a38  [ D546957C2B954D5763614EA203ADD125, E93CC7D7C7CCF60CDE497AA382B91A9A1CDE7BD715E0BE49BAB76665D4F6E1CC ] SaiK0CD7        C:\Windows\system32\DRIVERS\SaiK0CD7.sys
14:26:42.0954 0x1a38  SaiK0CD7 - ok
14:26:42.0972 0x1a38  [ B08581EDF3290210D3366CD2D992F6C2, FF1BE97B8F37FF39B784CAB254F2460B7F7A84C45BAD5CDB06FE5C29CF293BE5 ] SaiMini         C:\Windows\System32\drivers\SaiMini.sys
14:26:42.0984 0x1a38  SaiMini - ok
14:26:42.0995 0x1a38  [ D086C2F45D328C2F63FC6B4CD79FCB66, BF3D27D95C83D2454AE62BAFE9297E08BB58EA4C7FBFBDEE075A4FFC6085735C ] SaiNtBus        C:\Windows\system32\drivers\SaiBus.sys
14:26:43.0006 0x1a38  SaiNtBus - ok
14:26:43.0016 0x1a38  [ 5B0C3962CC3EED5F831C5E1046595B50, BE3A994E5EE821CF8C4079A9EEE59E5ECBE4CD7A4BBBA3BD387130913899E9A0 ] SaiU0CD7        C:\Windows\System32\drivers\SaiU0CD7.sys
14:26:43.0024 0x1a38  SaiU0CD7 - ok
14:26:43.0056 0x1a38  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] SamSs           C:\Windows\system32\lsass.exe
14:26:43.0068 0x1a38  SamSs - ok
14:26:43.0076 0x1a38  [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:26:43.0099 0x1a38  sbp2port - ok
14:26:43.0124 0x1a38  [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:26:43.0172 0x1a38  SCardSvr - ok
14:26:43.0194 0x1a38  [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:26:43.0225 0x1a38  scfilter - ok
14:26:43.0308 0x1a38  [ ED40ED9A65F3E79A8C43DD50C5FDADBF, 2323BFAB1BC3D661A376650B7AC14C7780C92BA575DA048F3C7611CDB3F7F04A ] Schedule        C:\Windows\system32\schedsvc.dll
14:26:43.0362 0x1a38  Schedule - ok
14:26:43.0383 0x1a38  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:26:43.0394 0x1a38  SCPolicySvc - ok
14:26:43.0437 0x1a38  [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
14:26:43.0456 0x1a38  sdbus - ok
14:26:43.0471 0x1a38  [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:26:43.0507 0x1a38  SDRSVC - ok
14:26:43.0540 0x1a38  [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor          C:\Windows\System32\drivers\sdstor.sys
14:26:43.0563 0x1a38  sdstor - ok
14:26:43.0570 0x1a38  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:26:43.0613 0x1a38  secdrv - ok
14:26:43.0645 0x1a38  [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon        C:\Windows\system32\seclogon.dll
14:26:43.0688 0x1a38  seclogon - ok
14:26:43.0716 0x1a38  [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS            C:\Windows\system32\sens.dll
14:26:43.0761 0x1a38  SENS - ok
14:26:43.0789 0x1a38  [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:26:43.0822 0x1a38  SensrSvc - ok
14:26:43.0827 0x1a38  [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
14:26:43.0846 0x1a38  SerCx - ok
14:26:43.0851 0x1a38  [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum         C:\Windows\System32\drivers\serenum.sys
14:26:43.0869 0x1a38  Serenum - ok
14:26:43.0899 0x1a38  [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial          C:\Windows\System32\drivers\serial.sys
14:26:43.0931 0x1a38  Serial - ok
14:26:43.0956 0x1a38  [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
14:26:43.0989 0x1a38  sermouse - ok
14:26:44.0025 0x1a38  [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv      C:\Windows\system32\sessenv.dll
14:26:44.0063 0x1a38  SessionEnv - ok
14:26:44.0088 0x1a38  [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
14:26:44.0119 0x1a38  sfloppy - ok
14:26:44.0159 0x1a38  [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:26:44.0209 0x1a38  SharedAccess - ok
14:26:44.0256 0x1a38  [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:26:44.0317 0x1a38  ShellHWDetection - ok
14:26:44.0331 0x1a38  [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
14:26:44.0344 0x1a38  SiSRaid2 - ok
14:26:44.0355 0x1a38  [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
14:26:44.0367 0x1a38  SiSRaid4 - ok
14:26:44.0437 0x1a38  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
14:26:44.0478 0x1a38  SkypeUpdate - ok
14:26:44.0533 0x1a38  [ FBE0201AB61E18934C812C34D31A4403, 549E51FC11CCA30B21970C90F4799D6CB94481CDC623B8C319F16DAEFC8A190B ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
14:26:44.0566 0x1a38  snapman - ok
14:26:44.0580 0x1a38  [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:26:44.0631 0x1a38  SNMPTRAP - ok
14:26:44.0668 0x1a38  [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
14:26:44.0700 0x1a38  spaceport - ok
14:26:44.0712 0x1a38  [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
14:26:44.0744 0x1a38  SpbCx - ok
14:26:44.0792 0x1a38  [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler         C:\Windows\System32\spoolsv.exe
14:26:44.0814 0x1a38  Spooler - ok
14:26:44.0959 0x1a38  [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc          C:\Windows\system32\sppsvc.exe
14:26:45.0093 0x1a38  sppsvc - ok
14:26:45.0130 0x1a38  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:26:45.0182 0x1a38  srv - ok
14:26:45.0234 0x1a38  [ 56218A571ECF8D55E0CDFF8DF2546CF1, 44B34722108EDDC8757A0B7C939A854457BB7EBC92A83C4284DFFAECFC2E3619 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:26:45.0251 0x1a38  srv2 - ok
14:26:45.0303 0x1a38  [ 14FC338B80CFF7E04215133B568D15C4, 1F437BE0EC887097F0C3409D4198A20981FC325FDF915532AB85070D337DEF2B ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:26:45.0342 0x1a38  srvnet - ok
14:26:45.0365 0x1a38  [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:26:45.0420 0x1a38  SSDPSRV - ok
14:26:45.0430 0x1a38  [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:26:45.0460 0x1a38  SstpSvc - ok
14:26:45.0500 0x1a38  [ AAF6F247F1DC370C593B4430974EAD9C, 232D0D62EC83A5537ADB28B5DC01074BA812FE6C70C54F70CD7A5EF1BC19D3E1 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
14:26:45.0525 0x1a38  ssudmdm - ok
14:26:45.0609 0x1a38  [ 706080AD43599D4AB04F1676A3A62CC1, BD9A645163501E2234CAB2B99DB297A634526786D2CDC55FE1C18F5019623E34 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
14:26:45.0628 0x1a38  Steam Client Service - ok
14:26:45.0702 0x1a38  [ CDA9313E34887A111B8309B55BCDCD82, AC070AA093B7013E4D1B29F4FAF9B469C3C261E4D3D1512B4F77CC609CBD1484 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:26:45.0716 0x1a38  Stereo Service - ok
14:26:45.0720 0x1a38  [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor        C:\Windows\system32\drivers\stexstor.sys
14:26:45.0734 0x1a38  stexstor - ok
14:26:45.0777 0x1a38  [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc          C:\Windows\System32\wiaservc.dll
14:26:45.0802 0x1a38  stisvc - ok
14:26:45.0833 0x1a38  [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci        C:\Windows\system32\drivers\storahci.sys
14:26:45.0848 0x1a38  storahci - ok
14:26:45.0861 0x1a38  [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
14:26:45.0872 0x1a38  storflt - ok
14:26:45.0904 0x1a38  [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc         C:\Windows\system32\storsvc.dll
14:26:45.0935 0x1a38  StorSvc - ok
14:26:45.0956 0x1a38  [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc         C:\Windows\system32\drivers\storvsc.sys
14:26:45.0968 0x1a38  storvsc - ok
14:26:45.0986 0x1a38  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc           C:\Windows\system32\svsvc.dll
14:26:46.0000 0x1a38  svsvc - ok
14:26:46.0013 0x1a38  [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum          C:\Windows\System32\drivers\swenum.sys
14:26:46.0024 0x1a38  swenum - ok
14:26:46.0129 0x1a38  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:26:46.0162 0x1a38  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
14:26:48.0730 0x1a38  Detect skipped due to KSN trusted
14:26:48.0730 0x1a38  SwitchBoard - ok
14:26:48.0781 0x1a38  [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv           C:\Windows\System32\swprv.dll
14:26:48.0823 0x1a38  swprv - ok
14:26:49.0064 0x1a38  [ 40C44484AA64B9CD738DDF9E3BE8A85F, 937447B2D0071315A249C3B240083CDB86C8918A99A3DEACEAF5C9F6E63BEB70 ] syncagentsrv    C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
14:26:49.0238 0x1a38  syncagentsrv - ok
14:26:49.0307 0x1a38  [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] SysMain         C:\Windows\system32\sysmain.dll
14:26:49.0351 0x1a38  SysMain - ok
14:26:49.0396 0x1a38  [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
14:26:49.0406 0x1a38  SystemEventsBroker - ok
14:26:49.0481 0x1a38  [ C7A3D0DA9A546B9127A88CDFC514A531, 7234E42EC90A393626B5F528151952F248F790AD40BB6B966EC4FB5D9BB6059C ] SystemStoreService C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe
14:26:49.0514 0x1a38  SystemStoreService - detected UnsignedFile.Multi.Generic ( 1 )
14:26:52.0087 0x1a38  Detect skipped due to KSN trusted
14:26:52.0087 0x1a38  SystemStoreService - ok
14:26:52.0116 0x1a38  [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\Windows\System32\TabSvc.dll
14:26:52.0158 0x1a38  TabletInputService - ok
14:26:52.0204 0x1a38  [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:26:52.0223 0x1a38  TapiSrv - ok
14:26:52.0388 0x1a38  [ B23882881EFD9404B62993906BC38709, C3F7A4E5155336BF1B3375423C98308268B56B3B834EB2BF10467B7CC4EE18D5 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:26:52.0501 0x1a38  Tcpip - ok
14:26:52.0547 0x1a38  [ B23882881EFD9404B62993906BC38709, C3F7A4E5155336BF1B3375423C98308268B56B3B834EB2BF10467B7CC4EE18D5 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:26:52.0595 0x1a38  TCPIP6 - ok
14:26:52.0600 0x1a38  [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:26:52.0612 0x1a38  tcpipreg - ok
14:26:52.0654 0x1a38  [ 07330E30921C70E9D9B416EE43A06349, 398500C12E685BCF732C7F80A2C0E95181E5377A0E6C14CF9A3EE8580083A556 ] tdrpman         C:\Windows\system32\DRIVERS\tdrpman.sys
14:26:52.0688 0x1a38  tdrpman - ok
14:26:52.0709 0x1a38  [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:26:52.0722 0x1a38  tdx - ok
14:26:52.0879 0x1a38  [ 97F6FFB8A305A77D25C6C0E07B71D252, 97C5FC73A250FC2016E29148A6A37E54BD74AE983D99AAF4890C059719C93EC2 ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
14:26:52.0963 0x1a38  TeamViewer9 - ok
14:26:52.0977 0x1a38  [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
14:26:52.0986 0x1a38  terminpt - ok
14:26:53.0055 0x1a38  [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] TermService     C:\Windows\System32\termsrv.dll
14:26:53.0113 0x1a38  TermService - ok
14:26:53.0119 0x1a38  [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes          C:\Windows\system32\themeservice.dll
14:26:53.0153 0x1a38  Themes - ok
14:26:53.0172 0x1a38  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER     C:\Windows\system32\mmcss.dll
14:26:53.0180 0x1a38  THREADORDER - ok
14:26:53.0235 0x1a38  [ DE604462206F7D8C203F767F425FCA8D, 149FBF6367C45415B939A9B1A7A10DA7A5E19F28CE533BCBE2B20DA4B78F8645 ] tib             C:\Windows\system32\DRIVERS\tib.sys
14:26:53.0264 0x1a38  tib - ok
14:26:53.0271 0x1a38  [ 3C29FB9FC9B4C511AD69DC50257FEC75, 4906DADE076FD363C53044C805602EEA4D0EF6E92041C693E1BED2286614B36E ] tib_mounter     C:\Windows\system32\DRIVERS\tib_mounter.sys
14:26:53.0283 0x1a38  tib_mounter - ok
14:26:53.0321 0x1a38  [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
14:26:53.0357 0x1a38  TimeBroker - ok
14:26:53.0397 0x1a38  [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM             C:\Windows\system32\drivers\tpm.sys
14:26:53.0413 0x1a38  TPM - ok
14:26:53.0426 0x1a38  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks          C:\Windows\System32\trkwks.dll
14:26:53.0436 0x1a38  TrkWks - ok
14:26:53.0495 0x1a38  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:26:53.0508 0x1a38  TrustedInstaller - ok
14:26:53.0520 0x1a38  [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:26:53.0535 0x1a38  TsUsbFlt - ok
14:26:53.0548 0x1a38  [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
14:26:53.0579 0x1a38  TsUsbGD - ok
14:26:53.0605 0x1a38  [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:26:53.0636 0x1a38  tunnel - ok
14:26:53.0665 0x1a38  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35          C:\Windows\system32\drivers\uagp35.sys
14:26:53.0676 0x1a38  uagp35 - ok
14:26:53.0691 0x1a38  [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
14:26:53.0703 0x1a38  UASPStor - ok
14:26:53.0752 0x1a38  [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
14:26:53.0772 0x1a38  UCX01000 - ok
14:26:53.0785 0x1a38  [ 25C50F4EDF70D0A831E0566BD181CCF2, F2F9E86FB5617C16077D2073EC0AA747F76F1EB5148BA110347A84F3C3569F83 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:26:53.0818 0x1a38  udfs - ok
14:26:53.0830 0x1a38  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:26:53.0846 0x1a38  UI0Detect - ok
14:26:53.0851 0x1a38  [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:26:53.0862 0x1a38  uliagpkx - ok
14:26:53.0865 0x1a38  [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus           C:\Windows\System32\drivers\umbus.sys
14:26:53.0875 0x1a38  umbus - ok
14:26:53.0878 0x1a38  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass          C:\Windows\System32\drivers\umpass.sys
14:26:53.0902 0x1a38  UmPass - ok
14:26:53.0935 0x1a38  [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService    C:\Windows\System32\umrdp.dll
14:26:53.0957 0x1a38  UmRdpService - ok
14:26:53.0976 0x1a38  [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost        C:\Windows\System32\upnphost.dll
14:26:53.0994 0x1a38  upnphost - ok
14:26:54.0014 0x1a38  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
14:26:54.0023 0x1a38  USBAAPL64 - ok
14:26:54.0061 0x1a38  [ 9E9F21FF91D7ECC0BCCB94D3FE52A959, 85461393D62ED939F6741C2D0A90C8AB34F4415173223BB4CFC119715D10E7A7 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
14:26:54.0073 0x1a38  usbaudio - ok
14:26:54.0101 0x1a38  [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
14:26:54.0124 0x1a38  usbccgp - ok
14:26:54.0138 0x1a38  [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir          C:\Windows\System32\drivers\usbcir.sys
14:26:54.0163 0x1a38  usbcir - ok
14:26:54.0168 0x1a38  [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
14:26:54.0180 0x1a38  usbehci - ok
14:26:54.0194 0x1a38  [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
14:26:54.0225 0x1a38  usbhub - ok
14:26:54.0266 0x1a38  [ E5F7328B1D29BCE791862CD3C0DD382A, E520D75CA6E4EDB06F576D97FB6B7CFD46A3EF3A3AC881537DE3BB8C862FE8C3 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
14:26:54.0285 0x1a38  USBHUB3 - ok
14:26:54.0302 0x1a38  [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci         C:\Windows\System32\drivers\usbohci.sys
14:26:54.0332 0x1a38  usbohci - ok
14:26:54.0354 0x1a38  [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
14:26:54.0385 0x1a38  usbprint - ok
14:26:54.0414 0x1a38  [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
14:26:54.0440 0x1a38  USBSTOR - ok
14:26:54.0459 0x1a38  [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
14:26:54.0473 0x1a38  usbuhci - ok
14:26:54.0498 0x1a38  [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
14:26:54.0526 0x1a38  USBXHCI - ok
14:26:54.0533 0x1a38  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] VaultSvc        C:\Windows\system32\lsass.exe
14:26:54.0545 0x1a38  VaultSvc - ok
14:26:54.0548 0x1a38  [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:26:54.0563 0x1a38  vdrvroot - ok
14:26:54.0616 0x1a38  [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds             C:\Windows\System32\vds.exe
14:26:54.0659 0x1a38  vds - ok
14:26:54.0668 0x1a38  [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
14:26:54.0686 0x1a38  VerifierExt - ok
14:26:54.0735 0x1a38  [ 500BE6B2E49883720D0AE8BB859ED7A3, 4606B02A3E8123510676E554635EB5ECF9DC5F2B83928710C8563787C52CC102 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
14:26:54.0768 0x1a38  vhdmp - ok
14:26:54.0786 0x1a38  [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:26:54.0797 0x1a38  viaide - ok
14:26:54.0817 0x1a38  [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
14:26:54.0835 0x1a38  vmbus - ok
14:26:54.0838 0x1a38  [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
14:26:54.0851 0x1a38  VMBusHID - ok
14:26:54.0929 0x1a38  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
14:26:54.0964 0x1a38  vmicheartbeat - ok
14:26:54.0978 0x1a38  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\Windows\System32\ICSvc.dll
14:26:54.0990 0x1a38  vmickvpexchange - ok
14:26:54.0999 0x1a38  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv         C:\Windows\System32\ICSvc.dll
14:26:55.0016 0x1a38  vmicrdv - ok
14:26:55.0024 0x1a38  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown    C:\Windows\System32\ICSvc.dll
14:26:55.0035 0x1a38  vmicshutdown - ok
14:26:55.0043 0x1a38  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync    C:\Windows\System32\ICSvc.dll
14:26:55.0054 0x1a38  vmictimesync - ok
14:26:55.0070 0x1a38  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss         C:\Windows\System32\ICSvc.dll
14:26:55.0081 0x1a38  vmicvss - ok
14:26:55.0085 0x1a38  [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:26:55.0095 0x1a38  volmgr - ok
14:26:55.0103 0x1a38  [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:26:55.0122 0x1a38  volmgrx - ok
14:26:55.0173 0x1a38  [ 78A5BBA3819FFFC62FFEC3E2220D102D, A95797B97D576374C2CDA8A09E6C51A89BADE428AAA89D5093579C85062E5874 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:26:55.0214 0x1a38  volsnap - ok
14:26:55.0219 0x1a38  [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci            C:\Windows\System32\drivers\vpci.sys
14:26:55.0231 0x1a38  vpci - ok
14:26:55.0250 0x1a38  [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
14:26:55.0264 0x1a38  vsmraid - ok
14:26:55.0345 0x1a38  [ D0C69E44BC1E1D4AD290FD84104623D8, 4C86760EA4BD2A64FFD42D89284EC3E5048CB2F0F6F3B80D017B41C0D2456A90 ] VSS             C:\Windows\system32\vssvc.exe
14:26:55.0413 0x1a38  VSS - ok
14:26:55.0421 0x1a38  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
14:26:55.0458 0x1a38  VSTXRAID - ok
14:26:55.0484 0x1a38  [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
14:26:55.0519 0x1a38  vwifibus - ok
14:26:55.0534 0x1a38  [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
14:26:55.0588 0x1a38  vwififlt - ok
14:26:55.0595 0x1a38  [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
14:26:55.0614 0x1a38  vwifimp - ok
14:26:55.0644 0x1a38  [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time         C:\Windows\system32\w32time.dll
14:26:55.0696 0x1a38  W32Time - ok
14:26:55.0716 0x1a38  [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
14:26:55.0726 0x1a38  WacomPen - ok
14:26:55.0749 0x1a38  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
14:26:55.0761 0x1a38  Wanarp - ok
14:26:55.0764 0x1a38  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:26:55.0774 0x1a38  Wanarpv6 - ok
14:26:55.0829 0x1a38  [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine        C:\Windows\system32\wbengine.exe
14:26:55.0879 0x1a38  wbengine - ok
14:26:55.0903 0x1a38  [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:26:55.0921 0x1a38  WbioSrvc - ok
14:26:55.0982 0x1a38  [ AF1349386D4C6786EF4E34FACEF15042, 6B33778409BC54C1955B92508ADDEBAFD629141961B71C94A91DC4CFE8391A13 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
14:26:56.0026 0x1a38  Wcmsvc - ok
14:26:56.0079 0x1a38  [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:26:56.0112 0x1a38  wcncsvc - ok
14:26:56.0127 0x1a38  [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:26:56.0144 0x1a38  WcsPlugInService - ok
14:26:56.0155 0x1a38  [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd              C:\Windows\system32\drivers\wd.sys
14:26:56.0168 0x1a38  Wd - ok
14:26:56.0209 0x1a38  [ 07D19A55CD27B330534D2DDEA60D5FC6, 9C9441EA6943481838F61FD929F88FE25DC60BB8513A2C01CB4712918A883E3F ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
14:26:56.0230 0x1a38  WdBoot - ok
14:26:56.0283 0x1a38  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:26:56.0312 0x1a38  Wdf01000 - ok
14:26:56.0337 0x1a38  [ CEBD9CDAADA11FAECCA82E4C06BCDD8E, 6D6E4BF0EB97004F9C07327923C9BD2B451FDDA567FAF39556595302EE5A1A54 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
14:26:56.0376 0x1a38  WdFilter - ok
14:26:56.0393 0x1a38  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:26:56.0449 0x1a38  WdiServiceHost - ok
14:26:56.0458 0x1a38  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:26:56.0488 0x1a38  WdiSystemHost - ok
14:26:56.0531 0x1a38  [ 9B1384CE8E681D2D77BB3524B8E86311, BDEF9D0A79A7C26A88088A306F91632F300E587736CDD2C64717EC54DD6E89FF ] WebClient       C:\Windows\System32\webclnt.dll
14:26:56.0592 0x1a38  WebClient - ok
14:26:56.0619 0x1a38  [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:26:56.0676 0x1a38  Wecsvc - ok
14:26:56.0697 0x1a38  [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:26:56.0735 0x1a38  wercplsupport - ok
14:26:56.0793 0x1a38  [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:26:56.0844 0x1a38  WerSvc - ok
14:26:56.0904 0x1a38  [ 44BB9C31E6242C4BD1CE7C2B440C2533, E603BB001028918B687818E930340008C752679B133037367A8A8E41DA559FFE ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
14:26:56.0936 0x1a38  WFPLWFS - ok
14:26:56.0950 0x1a38  [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc          C:\Windows\System32\wiarpc.dll
14:26:56.0975 0x1a38  WiaRpc - ok
14:26:56.0988 0x1a38  [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:26:57.0000 0x1a38  WIMMount - ok
14:26:57.0019 0x1a38  WinDefend - ok
14:26:57.0048 0x1a38  [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
14:26:57.0071 0x1a38  WinHttpAutoProxySvc - ok
14:26:57.0124 0x1a38  [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:26:57.0156 0x1a38  Winmgmt - ok
14:26:57.0246 0x1a38  [ 8E212A627F33F6FC3B5F3BB47212F66E, 9BBFE26ABFA14F346FE3711D13D959523EEA23608A33C16F3D750D66CA511911 ] WinRM           C:\Windows\system32\WsmSvc.dll
14:26:57.0391 0x1a38  WinRM - ok
14:26:57.0462 0x1a38  [ BB20956C424531003F7FA6CD36F11D5D, 2C55F1C7553A527A7C4C34E730BE943269AE23928731C64D3DC945E07AE1771E ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
14:26:57.0514 0x1a38  WinUsb - ok
14:26:57.0565 0x1a38  [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc         C:\Windows\System32\wlansvc.dll
14:26:57.0616 0x1a38  WlanSvc - ok
14:26:57.0690 0x1a38  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B, B76226808406D8B38DE2D3A8CCE633BB507022C8BAAA6C3DAD34204CC6CE1284 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
14:26:57.0752 0x1a38  wlidsvc - ok
14:26:57.0777 0x1a38  [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
14:26:57.0785 0x1a38  WmiAcpi - ok
14:26:57.0833 0x1a38  [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:26:57.0848 0x1a38  wmiApSrv - ok
14:26:57.0863 0x1a38  WMPNetworkSvc - ok
14:26:57.0867 0x1a38  [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
14:26:57.0892 0x1a38  wpcfltr - ok
14:26:57.0901 0x1a38  [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:26:57.0911 0x1a38  WPCSvc - ok
14:26:57.0940 0x1a38  [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:26:57.0949 0x1a38  WPDBusEnum - ok
14:26:57.0972 0x1a38  [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
14:26:57.0981 0x1a38  WpdUpFltr - ok
14:26:58.0020 0x1a38  [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:26:58.0048 0x1a38  ws2ifsl - ok
14:26:58.0081 0x1a38  [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] wscsvc          C:\Windows\system32\wscsvc.dll
14:26:58.0089 0x1a38  wscsvc - ok
14:26:58.0091 0x1a38  WSearch - ok
14:26:58.0196 0x1a38  [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService       C:\Windows\System32\WSService.dll
14:26:58.0274 0x1a38  WSService - ok
14:26:58.0401 0x1a38  [ 311E5E1976E0BD9110A88B93158055D5, F1AA738D6AD74C33785EEFE1FBE8A869AAB62417B7D079389293AB1209A849C1 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:26:58.0483 0x1a38  wuauserv - ok
14:26:58.0509 0x1a38  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:26:58.0520 0x1a38  WudfPf - ok
14:26:58.0546 0x1a38  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
14:26:58.0578 0x1a38  WUDFRd - ok
14:26:58.0604 0x1a38  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:26:58.0621 0x1a38  wudfsvc - ok
14:26:58.0635 0x1a38  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
14:26:58.0649 0x1a38  WUDFWpdFs - ok
14:26:58.0657 0x1a38  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
14:26:58.0676 0x1a38  WUDFWpdMtp - ok
14:26:58.0731 0x1a38  [ 6D9E07436B6646EC8F7EFFD39B6BA288, 82C1CEA93ECEF17D221AD0F87C5BD96F3FD8143841C16BD9608BD4D58D90B8E0 ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:26:58.0770 0x1a38  WwanSvc - ok
14:26:58.0775 0x1a38  xhunter1 - ok
14:26:58.0826 0x1a38  [ D107AA09E4E233E1AAE126255D8A4057, 767E78508DF2FABF1E8DBEA7214B4214FA7B2FAA9AC6DD7D97F3F517A8C83BFB ] xusb22          C:\Windows\System32\drivers\xusb22.sys
14:26:58.0882 0x1a38  xusb22 - ok
14:26:58.0899 0x1a38  ================ Scan global ===============================
14:26:58.0945 0x1a38  [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\system32\basesrv.dll
14:26:58.0960 0x1a38  [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\system32\winsrv.dll
14:26:58.0982 0x1a38  [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\system32\sxssrv.dll
14:26:59.0014 0x1a38  [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\system32\services.exe
14:26:59.0028 0x1a38  [ Global ] - ok
14:26:59.0029 0x1a38  ================ Scan MBR ==================================
14:26:59.0041 0x1a38  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
14:26:59.0117 0x1a38  \Device\Harddisk0\DR0 - ok
14:26:59.0118 0x1a38  ================ Scan VBR ==================================
14:26:59.0127 0x1a38  [ 5D447CF29D81FC94B61CB20CE9CE35AB ] \Device\Harddisk0\DR0\Partition1
14:26:59.0195 0x1a38  \Device\Harddisk0\DR0\Partition1 - ok
14:26:59.0225 0x1a38  [ 8F7F579C0B55858EF072FE2E6F40A4A9 ] \Device\Harddisk0\DR0\Partition2
14:26:59.0254 0x1a38  \Device\Harddisk0\DR0\Partition2 - ok
14:26:59.0268 0x1a38  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
14:26:59.0269 0x1a38  \Device\Harddisk0\DR0\Partition3 - ok
14:26:59.0276 0x1a38  [ 5FF2B90F4F12E95BBD711F9D2D035484 ] \Device\Harddisk0\DR0\Partition4
14:26:59.0323 0x1a38  \Device\Harddisk0\DR0\Partition4 - ok
14:26:59.0324 0x1a38  Waiting for KSN requests completion. In queue: 110
14:27:00.0325 0x1a38  Waiting for KSN requests completion. In queue: 110
14:27:01.0326 0x1a38  Waiting for KSN requests completion. In queue: 110
14:27:02.0340 0x1a38  AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.3.336 ), 0x41000 ( enabled : updated )
14:27:02.0394 0x1a38  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.4.304.0 ), 0x60100 ( disabled : updated )
14:27:02.0398 0x1a38  Win FW state via NFP2: enabled
14:27:04.0812 0x1a38  ============================================================
14:27:04.0812 0x1a38  Scan finished
14:27:04.0812 0x1a38  ============================================================
14:27:04.0824 0x1c5c  Detected object count: 0
14:27:04.0824 0x1c5c  Actual detected object count: 0
14:28:03.0774 0x0464  Deinitialize success

schrauber · 04.05.2014, 07:41

Sehr strange. Lösche mal bitte Combofix und lade es neu, lass es nochmal laufen.

Ummgh23 · 04.05.2014, 22:10

Hier der Log

Code:

ATTFilter

.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2014-04-25 3588952]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2014-04-23 1825984]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2014-04-11 55360]
"Overwolf"="c:\program files (x86)\Overwolf\Overwolf.exe" [2014-03-05 37664]
"ESL Wire"="c:\program files\EslWire\wire.exe" [2014-04-02 3620352]
"NextLive"="c:\windows\SysWOW64\rundll32.exe" [2012-07-26 48640]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"ONAIR"="c:\program files\ONAIR\ONAIR.exe" [2014-03-09 3505152]
"puush"="c:\program files (x86)\puush\puush.exe" [2014-04-21 567880]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20918432]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"TrueImageMonitor.exe"="c:\program files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" [2013-10-24 7843992]
"AcronisTibMounterMonitor"="c:\program files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe" [2013-10-10 1104616]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-11-01 152392]
"Adobe Creative Cloud"="c:\program files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" [2013-12-19 2239376]
"IJNetworkScannerSelectorEX"="c:\program files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" [2013-02-19 453736]
"Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2014-03-07 444760]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-04-15 3814736]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-02-25 689744]
.
c:\users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2013-11-26 0]
Dropbox.lnk - c:\users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-4-18 33604728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys]
@="FSFilter System Recovery"
.
R2 AlienFusionService;Alienware Fusion Service;c:\program files\Alienware\Command Center\AlienFusionService.exe;c:\program files\Alienware\Command Center\AlienFusionService.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SystemStoreService;System Store;c:\program files (x86)\SoftwareUpdater\SystemStore.exe  -displayname System Store -servicename SystemStoreService;c:\program files (x86)\SoftwareUpdater\SystemStore.exe  -displayname System Store -servicename SystemStoreService [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys;c:\windows\SYSNATIVE\DRIVERS\netaapl64.sys [x]
R3 NTIOLib_Flash;NTIOLib_Flash;c:\users\Kevin\AppData\Local\Temp\2WSX3EDC\NTIOLib_X64.sys;c:\users\Kevin\AppData\Local\Temp\2WSX3EDC\NTIOLib_X64.sys [x]
R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
R3 xhunter1;xhunter1;c:\windows\xhunter1.sys;c:\windows\xhunter1.sys [x]
R3 xusb22;Treiberdienst 22 für Xbox 360 Wireless Receiver;c:\windows\System32\drivers\xusb22.sys;c:\windows\SYSNATIVE\drivers\xusb22.sys [x]
S0 ESLWireAC;ESLWireAC;c:\windows\system32\drivers\ESLWireACD.sys;c:\windows\SYSNATIVE\drivers\ESLWireACD.sys [x]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 tib;Acronis TIB Manager;c:\windows\system32\DRIVERS\tib.sys;c:\windows\SYSNATIVE\DRIVERS\tib.sys [x]
S0 tib_mounter;Acronis TIB Mounter;c:\windows\system32\DRIVERS\tib_mounter.sys;c:\windows\SYSNATIVE\DRIVERS\tib_mounter.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\System32\drivers\dtsoftbus01.sys;c:\windows\SYSNATIVE\drivers\dtsoftbus01.sys [x]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 EslWireHelper;ESL Wire Helper Service;c:\program files\EslWire\service\WireHelperSvc.exe;c:\program files\EslWire\service\WireHelperSvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 syncagentsrv;Acronis Sync Agent Service;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys;c:\windows\SYSNATIVE\DRIVERS\afcdp.sys [x]
S3 EuMusDesignVirtualAudioCableWdm;@oem27.inf,%DeviceName% (WDM);Virtual Audio Cable (WDM);c:\windows\system32\DRIVERS\vrtaucbl.sys;c:\windows\SYSNATIVE\DRIVERS\vrtaucbl.sys [x]
S3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]
S3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 rzendpt;rzendpt;c:\windows\System32\drivers\rzendpt.sys;c:\windows\SYSNATIVE\drivers\rzendpt.sys [x]
S3 rzudd;Razer Mouse Driver;c:\windows\System32\drivers\rzudd.sys;c:\windows\SYSNATIVE\drivers\rzudd.sys [x]
S3 SaiK0CD7;SaiK0CD7;c:\windows\system32\DRIVERS\SaiK0CD7.sys;c:\windows\SYSNATIVE\DRIVERS\SaiK0CD7.sys [x]
S3 SaiU0CD7;SaiU0CD7;c:\windows\System32\drivers\SaiU0CD7.sys;c:\windows\SYSNATIVE\drivers\SaiU0CD7.sys [x]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
eventsystem
iprip
netman
wzcsvc
ip6fwhlp
WmdmPmSN
UxTuneUp
Appinfo
BDESVC
Browser
Eaphost
hkmsvc
IKEEXT
MMCSS
ProfSvc
seclogon
Themes
wercplsupport
.
Inhalt des "geplante Tasks" Ordners
.
2014-05-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-21 17:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2013-12-13 11:20	3359600	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2013-12-13 11:20	3359600	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2013-12-13 11:20	3359600	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
2013-10-01 09:32	2818216	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
2013-10-01 09:32	2818216	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
2013-10-01 09:32	2818216	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acronis Scheduler2 Service"="c:\program files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" [2013-07-18 519408]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2013-08-01 8290584]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-04-02 1225920]
"ProfilerU"="c:\program files\SmartTechnology\Software\ProfilerU.exe" [2013-04-16 454144]
"SaiMfd"="c:\program files\SmartTechnology\Software\SaiMfd.exe" [2013-04-16 158208]
"VDownloader"="c:\program files\VDownloader\VDownloader.exe" [2013-12-09 881152]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-04-02 2201032]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-12-10 472984]
"Command Center Controllers"="c:\program files\Alienware\Command Center\AWCCStartupOrchestrator.exe" [2012-01-10 12616]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.conduit.com/?ctid=CT3323882&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP438F07D2-38DE-4EBD-9DA1-14360CC25479&SSPV=
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
Trusted Zone: dell.com
TCP: DhcpNameServer = 10.0.0.1
FF - ProfilePath - c:\users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\3580i1mr.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.startfenster.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-dmboot.sys
SafeBoot-dmio.sys
SafeBoot-dmload.sys
SafeBoot-vga.sys
SafeBoot-vgasave.sys
SafeBoot-dmadmin
SafeBoot-dmserver
SafeBoot-SRService
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
c:\windows\system32\PnkBstrA.exe
c:\program files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
c:\program files\Alienware\Command Center\AlienwareAlienFXController.exe
c:\users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe
c:\progra~2\Raptr\raptr.exe
c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
c:\progra~2\Raptr\raptr_im.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\Common Files\Overwolf\OverwolfHelper.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
c:\program files (x86)\CyberLink\Shared files\RichVideo.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-05-04  22:20:52 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-05-04 20:20
ComboFix2.txt  2014-05-02 05:16
.
Vor Suchlauf: 19 Verzeichnis(se), 985.248.911.360 Bytes frei
Nach Suchlauf: 20 Verzeichnis(se), 985.525.575.680 Bytes frei
.
- - End Of File - - CC763E282974803AF1AD4196E1BB1553
5FB38429D5D77768867C76DCBDB35194

Neues Problem:

Im Explorer werden keine Icons angezeigt wenn die Ansicht auf Große oder Extragroße Symbole eingestellt ist...

Screenshot:

schrauber · 05.05.2014, 16:41

Das Log ist unvollständig, bitte nochmal posten.

Ummgh23 · 07.05.2014, 17:20

Nope, das ist der ganze log... hier trotzdem nochmal:

Code:

ATTFilter

.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	131248	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2014-04-25 3588952]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2014-04-23 1825984]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2014-04-11 55360]
"Overwolf"="c:\program files (x86)\Overwolf\Overwolf.exe" [2014-03-05 37664]
"ESL Wire"="c:\program files\EslWire\wire.exe" [2014-04-02 3620352]
"NextLive"="c:\windows\SysWOW64\rundll32.exe" [2012-07-26 48640]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"ONAIR"="c:\program files\ONAIR\ONAIR.exe" [2014-03-09 3505152]
"puush"="c:\program files (x86)\puush\puush.exe" [2014-04-21 567880]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20918432]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"TrueImageMonitor.exe"="c:\program files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" [2013-10-24 7843992]
"AcronisTibMounterMonitor"="c:\program files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe" [2013-10-10 1104616]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-11-01 152392]
"Adobe Creative Cloud"="c:\program files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" [2013-12-19 2239376]
"IJNetworkScannerSelectorEX"="c:\program files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" [2013-02-19 453736]
"Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2014-03-07 444760]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-04-15 3814736]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-02-25 689744]
.
c:\users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2013-11-26 0]
Dropbox.lnk - c:\users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-4-18 33604728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys]
@="FSFilter System Recovery"
.
R2 AlienFusionService;Alienware Fusion Service;c:\program files\Alienware\Command Center\AlienFusionService.exe;c:\program files\Alienware\Command Center\AlienFusionService.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SystemStoreService;System Store;c:\program files (x86)\SoftwareUpdater\SystemStore.exe  -displayname System Store -servicename SystemStoreService;c:\program files (x86)\SoftwareUpdater\SystemStore.exe  -displayname System Store -servicename SystemStoreService [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys;c:\windows\SYSNATIVE\DRIVERS\netaapl64.sys [x]
R3 NTIOLib_Flash;NTIOLib_Flash;c:\users\Kevin\AppData\Local\Temp\2WSX3EDC\NTIOLib_X64.sys;c:\users\Kevin\AppData\Local\Temp\2WSX3EDC\NTIOLib_X64.sys [x]
R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
R3 xhunter1;xhunter1;c:\windows\xhunter1.sys;c:\windows\xhunter1.sys [x]
R3 xusb22;Treiberdienst 22 für Xbox 360 Wireless Receiver;c:\windows\System32\drivers\xusb22.sys;c:\windows\SYSNATIVE\drivers\xusb22.sys [x]
S0 ESLWireAC;ESLWireAC;c:\windows\system32\drivers\ESLWireACD.sys;c:\windows\SYSNATIVE\drivers\ESLWireACD.sys [x]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 tib;Acronis TIB Manager;c:\windows\system32\DRIVERS\tib.sys;c:\windows\SYSNATIVE\DRIVERS\tib.sys [x]
S0 tib_mounter;Acronis TIB Mounter;c:\windows\system32\DRIVERS\tib_mounter.sys;c:\windows\SYSNATIVE\DRIVERS\tib_mounter.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\System32\drivers\dtsoftbus01.sys;c:\windows\SYSNATIVE\drivers\dtsoftbus01.sys [x]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 EslWireHelper;ESL Wire Helper Service;c:\program files\EslWire\service\WireHelperSvc.exe;c:\program files\EslWire\service\WireHelperSvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 syncagentsrv;Acronis Sync Agent Service;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys;c:\windows\SYSNATIVE\DRIVERS\afcdp.sys [x]
S3 EuMusDesignVirtualAudioCableWdm;@oem27.inf,%DeviceName% (WDM);Virtual Audio Cable (WDM);c:\windows\system32\DRIVERS\vrtaucbl.sys;c:\windows\SYSNATIVE\DRIVERS\vrtaucbl.sys [x]
S3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]
S3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 rzendpt;rzendpt;c:\windows\System32\drivers\rzendpt.sys;c:\windows\SYSNATIVE\drivers\rzendpt.sys [x]
S3 rzudd;Razer Mouse Driver;c:\windows\System32\drivers\rzudd.sys;c:\windows\SYSNATIVE\drivers\rzudd.sys [x]
S3 SaiK0CD7;SaiK0CD7;c:\windows\system32\DRIVERS\SaiK0CD7.sys;c:\windows\SYSNATIVE\DRIVERS\SaiK0CD7.sys [x]
S3 SaiU0CD7;SaiU0CD7;c:\windows\System32\drivers\SaiU0CD7.sys;c:\windows\SYSNATIVE\drivers\SaiU0CD7.sys [x]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
eventsystem
iprip
netman
wzcsvc
ip6fwhlp
WmdmPmSN
UxTuneUp
Appinfo
BDESVC
Browser
Eaphost
hkmsvc
IKEEXT
MMCSS
ProfSvc
seclogon
Themes
wercplsupport
.
Inhalt des "geplante Tasks" Ordners
.
2014-05-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-21 17:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2013-12-13 11:20	3359600	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2013-12-13 11:20	3359600	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2013-12-13 11:20	3359600	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
2013-10-01 09:32	2818216	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
2013-10-01 09:32	2818216	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
2013-10-01 09:32	2818216	----a-w-	c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acronis Scheduler2 Service"="c:\program files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" [2013-07-18 519408]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2013-08-01 8290584]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-04-02 1225920]
"ProfilerU"="c:\program files\SmartTechnology\Software\ProfilerU.exe" [2013-04-16 454144]
"SaiMfd"="c:\program files\SmartTechnology\Software\SaiMfd.exe" [2013-04-16 158208]
"VDownloader"="c:\program files\VDownloader\VDownloader.exe" [2013-12-09 881152]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-04-02 2201032]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-12-10 472984]
"Command Center Controllers"="c:\program files\Alienware\Command Center\AWCCStartupOrchestrator.exe" [2012-01-10 12616]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.conduit.com/?ctid=CT3323882&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP438F07D2-38DE-4EBD-9DA1-14360CC25479&SSPV=
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
Trusted Zone: dell.com
TCP: DhcpNameServer = 10.0.0.1
FF - ProfilePath - c:\users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\3580i1mr.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.startfenster.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-dmboot.sys
SafeBoot-dmio.sys
SafeBoot-dmload.sys
SafeBoot-vga.sys
SafeBoot-vgasave.sys
SafeBoot-dmadmin
SafeBoot-dmserver
SafeBoot-SRService
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
c:\windows\system32\PnkBstrA.exe
c:\program files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
c:\program files\Alienware\Command Center\AlienwareAlienFXController.exe
c:\users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe
c:\progra~2\Raptr\raptr.exe
c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
c:\progra~2\Raptr\raptr_im.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\Common Files\Overwolf\OverwolfHelper.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
c:\program files (x86)\CyberLink\Shared files\RichVideo.exe
c:\program files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-05-04  22:20:52 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-05-04 20:20
ComboFix2.txt  2014-05-02 05:16
.
Vor Suchlauf: 19 Verzeichnis(se), 985.248.911.360 Bytes frei
Nach Suchlauf: 20 Verzeichnis(se), 985.525.575.680 Bytes frei
.
- - End Of File - - CC763E282974803AF1AD4196E1BB1553
5FB38429D5D77768867C76DCBDB35194

schrauber · 08.05.2014, 10:40

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

04.05.2014, 07:41	#11
schrauber /// the machine /// TB-Ausbilder	Multiple instanzen verschiedener Prozesse laufen, nicht killbar. Sehr strange. Lösche mal bitte Combofix und lade es neu, lass es nochmal laufen. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

05.05.2014, 16:41	#13
schrauber /// the machine /// TB-Ausbilder	Multiple instanzen verschiedener Prozesse laufen, nicht killbar. Das Log ist unvollständig, bitte nochmal posten. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Multiple instanzen verschiedener Prozesse laufen, nicht killbar.

Plagegeister aller Art und deren Bekämpfung: Multiple instanzen verschiedener Prozesse laufen, nicht killbar.