Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Keylogger sicher weg ?

Keylogger sicher weg ?


Plagegeister aller Art und deren Bekämpfung: Keylogger sicher weg ?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 1 von 2 1 2
Alt 17.08.2014, 01:06   #1
Punschiii
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Hallo erstmal, Ich bin das erste mal hier und wollte fragen wie ich mir sicher sein kann das ein Keylogger bzw Trojaner etc. auf meinem PC weg ist ohne das ich ihn neu aufgesetzt habe.

Ich habe über die Nacht Kaspersky und Spybot - Search and Destroy laufen lassen Kaspersky hat eine Datei im Firefox Ordner gefunden namens bg.js die habe ich bereits gelöscht nun stellt sich die frage ob der Trojaner bzw der Keylogger war oder irgendetwas anderes, ich würde mich über eine schnelle Antwort sehr freuen und Danke im vorraus

Gruß Punschiii

Alt 17.08.2014, 05:51   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 17.08.2014, 10:45   #3
Punschiii
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Okay hier habe ich die beiden Texte ich hoffe sie können mir dadurch weiter helfen danke im Vorraus.

Der FRST Text ist leider zu groß ich hoffe sie können mir auch ohne den weiter helfen !

Gruß Punschiii
__________________
Alt 17.08.2014, 14:57   #4
schrauber
/// the machine
/// TB-Ausbilder
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 17.08.2014, 15:19   #5
Punschiii
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-08-2014 04
Ran by Paul (administrator) on PAUL-PC on 17-08-2014 11:24:38
Running from C:\Users\Paul\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
() C:\Windows\System32\PnkBstrA.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-Network.exe
(BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe
(BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Spotify Ltd) C:\Users\Paul\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Windows Net) C:\Users\Paul\AppData\Roaming\Windows Net Data\net.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Razer USA Ltd) C:\Program Files (x86)\Razer\Mamba\RazerTray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Frontend.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8290584 2013-08-01] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-07-30] (Realtek Semiconductor)
HKLM-x32\...\Run: [AVP] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-12-28] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Razer Mamba Driver] => C:\Program Files (x86)\Razer\Mamba\RazerTray.exe [3278728 2009-12-15] (Razer USA Ltd)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1980416 2013-12-18] (Wondershare)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-09-22] (Microsoft Corporation)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\Run: [EPSON SX218 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGDE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\Run: [Spotify Web Helper] => C:\Users\Paul\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1178168 2014-07-22] (Spotify Ltd)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\Policies\Explorer: [DisallowRun] 1
AppInit_DLLs: C:\PROGRA~2\SUPPOR~1\SUPPOR~2.DLL => C:\Program Files (x86)\Supporter\Supporter_x64.dll [4467200 2014-07-19] ()
Startup: C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
ShortcutTarget: net.lnk -> C:\Users\Paul\AppData\Roaming\Windows Net Data\net.exe (Windows Net)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDD5E6BB5AFB6CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/
HKCU\Software\Microsoft\Internet Explorer\Main,start page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - Default Value = {CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D}
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.oversearch.info/?l=1&q={searchTerms}&pid=924&r=2013/09/26&hid=1837190464250268654&lg=EN&cc=DE&unqvl=36
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: DVDVideoSoft WebPageAdjuster Class -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: DVDVideoSoft WebPageAdjuster Class -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2013-10-05]
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-12-28]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-12-28]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-12-28]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-12-28]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-12-28]

Chrome: 
=======
CHR HomePage: https://www.google.de/
CHR StartupUrls: "https://www.google.de/"
CHR DefaultSearchKeyword: trovi.com
CHR DefaultNewTabURL: 
CHR Extension: (ProxFlow) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2014-06-26]
CHR Extension: (BetterTTV) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2014-07-23]
CHR Extension: (Google Docs) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-26]
CHR Extension: (Google Drive) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-26]
CHR Extension: (YouTube) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-26]
CHR Extension: (Rainbow Forest (SHERIFFF)) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfdjilcpogpekcjghekpjffcoaaimjid [2014-05-26]
CHR Extension: (Google-Suche) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-26]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-05-26]
CHR Extension: (AdBlock) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-26]
CHR Extension: (Hola Besseres Internet) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2014-07-21]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-05-26]
CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-05-26]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-05-26]
CHR Extension: (Google Wallet) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-26]
CHR Extension: (YouTube Unblocker) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-06-26]
CHR Extension: (Google Mail) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-26]
CHR Extension: (Anti-Banner) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-05-26]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [lpoimibckejjdjcfbdnajaicnklhfplh] - https://chrome.google.com/webstore/detail/lpoimibckejjdjcfbdnajaicnklhfplh [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\Paul\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2013-05-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-12-28] (Kaspersky Lab ZAO)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-10-10] () [File not signed]
R2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2013-12-20] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2013-12-20] (BlueStack Systems, Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-05-23] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-04-27] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [114448 2013-12-20] (BlueStack Systems)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-06-01] (Disc Soft Ltd)
S3 EagleX64; No ImagePath
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-12-28] (Kaspersky Lab ZAO)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [91008 2014-05-20] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [628320 2014-05-20] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-12-28] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-12-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-12-28] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-12-28] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-05-16] (Kaspersky Lab ZAO)
S3 LADF_DHP2; C:\Windows\System32\DRIVERS\ladfDHP2amd64.sys [62168 2010-09-29] (Logitech)
S3 LADF_SBVM; C:\Windows\System32\DRIVERS\ladfSBVMamd64.sys [377176 2010-09-29] (Logitech)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [78336 2013-01-03] (Research In Motion Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-07-14] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-01-15] (Anchorfree Inc.)
R1 {3f538614-b636-4023-9ec2-564ada4b07b3}Gw64; C:\Windows\System32\drivers\{3f538614-b636-4023-9ec2-564ada4b07b3}Gw64.sys [61112 2014-07-16] (StdLib)
U3 acinramm; C:\Windows\System32\Drivers\acinramm.sys [0 ] (Intel Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-17 11:24 - 2014-08-17 11:27 - 00022019 _____ () C:\Users\Paul\Downloads\FRST.txt
2014-08-17 11:24 - 2014-08-17 11:24 - 00000000 ___DC () C:\FRST
2014-08-17 11:22 - 2014-08-17 11:23 - 02101760 _____ (Farbar) C:\Users\Paul\Downloads\FRST64.exe
2014-08-16 11:44 - 2014-08-16 11:44 - 00295264 _____ () C:\Windows\Minidump\081614-32339-01.dmp
2014-08-16 11:43 - 2014-08-16 11:43 - 319205856 _____ () C:\Windows\MEMORY.DMP
2014-08-16 10:42 - 2014-08-16 10:42 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Oracle
2014-08-16 10:41 - 2014-08-16 10:41 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-16 10:41 - 2014-08-16 10:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-16 10:33 - 2014-08-16 10:33 - 01058200 _____ (Adobe) C:\Users\Paul\Downloads\install_flashplayer14x32au_mssd_aaa_aih.exe
2014-08-16 10:33 - 2014-08-16 10:33 - 00000000 ____D () C:\Users\Paul\AppData\Local\Adobe
2014-08-16 10:17 - 2014-08-17 11:06 - 00000168 _____ () C:\Windows\setupact.log
2014-08-16 10:17 - 2014-08-16 10:17 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-16 00:36 - 2014-08-16 00:36 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Auslogics
2014-08-16 00:35 - 2014-08-16 00:35 - 00001286 _____ () C:\Users\Paul\Desktop\Auslogics Disk Defrag Professional.lnk
2014-08-16 00:34 - 2014-08-16 00:35 - 06732320 _____ (Auslogics Software Pty Ltd ) C:\Users\Paul\Downloads\disk-defrag-pro-setup.exe
2014-08-15 18:25 - 2014-08-15 20:26 - 00000000 ____D () C:\Program Files\Recuva
2014-08-15 18:23 - 2014-08-15 18:24 - 03161056 _____ (Piriform Ltd) C:\Users\Paul\Downloads\rcsetup151_slim.exe
2014-08-15 17:53 - 2014-08-15 17:53 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
2014-08-15 17:53 - 2014-08-15 17:53 - 00000000 ____D () C:\Program Files (x86)\Convar
2014-08-15 17:51 - 2014-08-15 17:52 - 03462033 _____ () C:\Users\Paul\Downloads\pci_4filerecovery.exe
2014-08-15 17:49 - 2014-08-15 17:49 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-08-14 19:33 - 2014-08-14 19:33 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-08-14 19:33 - 2014-08-14 19:33 - 00000628 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-08-14 19:33 - 2014-08-14 19:33 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-08-14 19:32 - 2014-08-15 17:23 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-14 19:32 - 2014-08-14 19:37 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-14 19:32 - 2014-08-14 19:32 - 00001395 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-08-14 19:32 - 2014-08-14 19:32 - 00001383 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-08-14 19:32 - 2014-08-14 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-08-14 19:32 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-08-14 19:26 - 2014-08-14 19:29 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Paul\Downloads\spybot-2.4.exe
2014-08-14 16:30 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 16:30 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 16:30 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 16:30 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 16:30 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 16:30 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 16:30 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 16:30 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 16:28 - 2014-07-24 14:11 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 16:28 - 2014-07-24 14:10 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 16:28 - 2014-07-24 14:10 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 16:28 - 2014-07-24 14:09 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 16:28 - 2014-07-24 12:52 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-14 16:28 - 2014-07-24 12:52 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-14 16:28 - 2014-07-24 12:51 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-14 16:28 - 2014-07-24 12:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 16:28 - 2014-07-24 12:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-14 16:28 - 2014-07-24 11:37 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-14 16:28 - 2014-07-24 11:32 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-14 16:27 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 16:27 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-14 16:27 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 16:27 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 16:27 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 16:27 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 16:27 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-14 16:27 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 16:27 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-14 16:27 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 16:27 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 16:27 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-14 16:27 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 16:27 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-14 16:27 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-14 16:27 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-14 16:26 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 16:25 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-14 16:25 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-14 16:25 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-14 16:25 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 16:25 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-14 16:22 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 16:22 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-14 16:20 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-14 16:20 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-10 17:42 - 2014-08-10 17:42 - 00001119 _____ () C:\Users\Paul\Downloads\hay_day_cheats_v3.0b_free_download(cheats_for_hay_day)2012.txt
2014-08-10 12:57 - 2014-08-10 12:57 - 00000000 ____D () C:\Program Files\WinPcap
2014-08-10 12:56 - 2014-08-15 17:52 - 00000000 ____D () C:\ProgramData\Freemake
2014-08-10 12:56 - 2014-08-15 17:52 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-08-10 12:56 - 2014-08-10 13:08 - 00000000 ____D () C:\Users\Paul\Documents\Freemake
2014-08-10 12:52 - 2014-08-10 12:54 - 14462136 _____ (Ellora Assets Corporation ) C:\Users\Paul\Downloads\FreemakeVideoDownloader_3.7.0.5.exe
2014-08-09 12:38 - 2014-08-09 12:38 - 00048856 _____ () C:\Users\Paul\Downloads\SteamGuard (3).exe
2014-08-09 12:33 - 2014-08-09 12:33 - 00048856 _____ () C:\Users\Paul\Downloads\SteamGuard (2).exe
2014-08-09 12:30 - 2014-08-09 12:30 - 00048856 _____ () C:\Users\Paul\Downloads\SteamGuard (1).exe
2014-08-09 12:29 - 2014-08-09 12:29 - 00048856 _____ () C:\Users\Paul\Downloads\SteamGuard.exe
2014-08-02 14:29 - 2014-08-02 14:29 - 00000000 ____D () C:\Users\Paul\AppData\Local\master131
2014-08-02 14:20 - 2014-08-02 14:20 - 00000000 ____D () C:\Windows\RazorDOX
2014-08-02 13:19 - 2014-08-02 13:19 - 00000000 ____D () C:\Users\Paul\AppData\Local\wNtbcQLqtVsx1nZ3mA
2014-08-02 00:51 - 2014-08-02 00:51 - 00000000 ____D () C:\Users\Paul\AppData\Local\Xenocode
2014-08-01 20:58 - 2014-08-01 20:58 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\MW3 FoV Changer
2014-08-01 13:33 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-01 13:33 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-01 13:33 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-01 13:33 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-01 13:33 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-01 13:32 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-01 13:32 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-01 13:32 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-01 13:32 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-07-30 22:32 - 2014-07-30 22:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____D () C:\Program Files\Realtek
2014-07-30 14:22 - 2014-07-30 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-07-30 14:22 - 2014-07-30 14:22 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-07-30 14:22 - 2014-07-30 14:22 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 03962840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-07-30 14:22 - 2014-07-30 14:22 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02117424 _____ () C:\Windows\system32\SStudio.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-07-30 14:22 - 2014-07-30 14:22 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-07-30 14:22 - 2014-07-30 14:22 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00110080 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00094720 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2014-07-30 14:22 - 2014-07-30 14:22 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00033592 _____ () C:\Windows\system32\audioLibVc.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-07-30 14:21 - 2014-07-30 14:21 - 00939224 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-07-30 14:21 - 2014-07-30 14:21 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 28685824 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 24107520 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 23409152 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 15376384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 10335208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 08866928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 06799688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 06796592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 05442048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 04358656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-07-30 14:08 - 2014-07-30 14:08 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-07-30 14:08 - 2014-07-30 14:08 - 01117184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00848896 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00806912 _____ (AMD) C:\Windows\system32\coinst_14.100.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00723841 _____ () C:\Windows\system32\atiicdxx.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00638976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 00580816 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-07-30 14:08 - 2014-07-30 14:08 - 00580816 _____ () C:\Windows\system32\atiapfxx.blb
2014-07-30 14:08 - 2014-07-30 14:08 - 00368128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-07-30 14:08 - 2014-07-30 14:08 - 00275124 _____ () C:\Windows\system32\ativvaxy_vi.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00274656 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 00273712 _____ () C:\Windows\system32\ativvaxy_vi_nd.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00234804 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00233008 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-07-30 14:08 - 2014-07-30 14:08 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00134192 _____ () C:\Windows\system32\ativce03.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00082128 _____ () C:\Windows\system32\ativce02.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-07-30 13:57 - 2014-07-30 14:32 - 00000246 _____ () C:\Windows\Tasks\Driver Booster SkipUAC (Paul).job
2014-07-30 13:57 - 2014-07-30 13:57 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\IObit
2014-07-30 13:57 - 2014-07-30 13:57 - 00000000 ____D () C:\ProgramData\IObit
2014-07-30 13:44 - 2014-07-30 13:44 - 00021712 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2014-07-30 13:44 - 2014-07-30 13:44 - 00000000 ____D () C:\Program Files (x86)\eSupport.com
2014-07-30 13:41 - 2014-07-30 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-07-30 13:41 - 2014-07-30 13:41 - 00000000 ____D () C:\Program Files\CPUID
2014-07-30 12:14 - 2014-07-30 17:44 - 00000000 ____D () C:\Users\Paul\Desktop\PC Setup !
2014-07-29 15:13 - 2014-07-29 15:29 - 00000000 ____D () C:\ProgramData\Systweak
2014-07-29 15:02 - 2014-08-15 06:07 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Systweak
2014-07-29 15:02 - 2014-07-29 15:14 - 00000000 ____D () C:\Users\Paul\AppData\Local\HitsBlender
2014-07-29 15:02 - 2014-07-29 15:13 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Advanced System Protector
2014-07-29 15:02 - 2014-07-29 15:02 - 00000326 _____ () C:\Windows\Tasks\Update Service HitsBlender.job
2014-07-29 15:02 - 2014-07-29 15:02 - 00000000 ____D () C:\ProgramData\HitsBlender
2014-07-29 14:55 - 2014-07-29 14:55 - 00000466 _____ () C:\Windows\Tasks\Driver Tool-RTMScanRunOnce.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000466 _____ () C:\Windows\Tasks\Driver Tool-RTMScan.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000464 _____ () C:\Windows\Tasks\Driver Tool-RTMUpdater.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000454 _____ () C:\Windows\Tasks\Driver Tool-RTMRules.job
2014-07-29 14:51 - 2014-08-13 16:05 - 00000000 ____D () C:\Users\Paul\AppData\Local\www.rene-zeidler.de
2014-07-29 14:51 - 2014-07-29 14:51 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\www.rene-zeidler.de
2014-07-29 14:51 - 2014-07-29 14:51 - 00000000 ____D () C:\ProgramData\www.rene-zeidler.de
2014-07-29 14:49 - 2014-07-29 14:49 - 00000294 ____H () C:\Windows\Tasks\Microsoft_Hardware_Launch_LifeExp_exe.job
2014-07-29 14:25 - 2014-07-29 14:25 - 00000318 ____H () C:\Windows\Tasks\Microsoft_Hardware_Launch_rundll32_exe.job
2014-07-26 23:03 - 2014-07-26 23:03 - 00000000 ____D () C:\Users\Paul\AppData\Local\SKIDROW
2014-07-25 17:45 - 2014-07-27 00:40 - 00000000 ____D () C:\Users\Paul\AppData\Local\TeknoGods
2014-07-24 18:56 - 2014-07-24 18:56 - 00000000 ____D () C:\Users\Paul\Documents\My Cheat Tables
2014-07-23 23:48 - 2014-07-23 23:48 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\livestreamer
2014-07-22 07:20 - 2014-07-22 07:21 - 00000000 ____D () C:\Users\Paul\Documents\NFS Most Wanted
2014-07-22 06:51 - 2014-07-22 06:52 - 00004623 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-22 05:33 - 2014-07-22 05:33 - 00000000 ____D () C:\Program Files (x86)\EA GAMES
2014-07-21 20:28 - 2014-08-15 18:28 - 00153088 ___SH () C:\Users\Paul\Desktop\Thumbs.db
2014-07-21 16:39 - 1997-06-06 15:52 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SPORDER.DLL
2014-07-20 22:03 - 2014-07-20 22:03 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\TERA
2014-07-20 15:02 - 2014-07-20 15:22 - 00000000 ____D () C:\Users\Paul\AppData\Local\QQSM
2014-07-20 15:00 - 2014-07-20 15:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hazard Ops
2014-07-20 14:50 - 2014-07-20 15:00 - 00000000 ____D () C:\Program Files (x86)\Hazard Ops
2014-07-20 01:50 - 2014-08-16 15:01 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\.minecraft
2014-07-19 09:39 - 2014-07-20 14:49 - 00000000 ____D () C:\ProgramData\Solid State Networks
2014-07-19 01:52 - 2014-07-16 19:49 - 00061112 _____ (StdLib) C:\Windows\system32\Drivers\{3f538614-b636-4023-9ec2-564ada4b07b3}Gw64.sys
2014-07-19 00:51 - 2014-07-19 01:05 - 00000000 ____D () C:\Program Files (x86)\Supporter
2014-07-19 00:51 - 2014-07-19 01:03 - 00000000 ____D () C:\Users\Paul\AppData\Local\863
2014-07-19 00:50 - 2014-07-30 11:41 - 00000000 ____D () C:\ProgramData\cosstminn
2014-07-19 00:50 - 2014-07-29 15:04 - 00000000 ____D () C:\ProgramData\fc19193c6c4b0b24
2014-07-19 00:50 - 2014-07-29 15:04 - 00000000 ____D () C:\Program Files (x86)\cosstminn
2014-07-19 00:50 - 2014-07-19 00:50 - 00000000 ____D () C:\Users\Paul\AppData\Local\Packages
2014-07-19 00:49 - 2014-07-19 00:49 - 00000000 ____D () C:\Users\Paul\AppData\Local\556
2014-07-19 00:48 - 2014-07-19 00:48 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oxy
2014-07-19 00:47 - 2014-07-19 12:00 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Oxy
2014-07-19 00:47 - 2014-07-19 00:47 - 00000306 ____H () C:\Windows\Tasks\Oxy.job
2014-07-18 23:34 - 2014-07-19 14:34 - 00000070 _____ () C:\Users\Paul\.atl.properties

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-17 11:27 - 2014-08-17 11:24 - 00022019 _____ () C:\Users\Paul\Downloads\FRST.txt
2014-08-17 11:26 - 2013-09-26 20:04 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-17 11:24 - 2014-08-17 11:24 - 00000000 ___DC () C:\FRST
2014-08-17 11:23 - 2014-08-17 11:22 - 02101760 _____ (Farbar) C:\Users\Paul\Downloads\FRST64.exe
2014-08-17 11:15 - 2009-07-14 06:45 - 00014592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-17 11:15 - 2009-07-14 06:45 - 00014592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-17 11:12 - 2013-09-20 22:54 - 01684359 _____ () C:\Windows\WindowsUpdate.log
2014-08-17 11:07 - 2013-09-26 19:17 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-08-17 11:06 - 2014-08-16 10:17 - 00000168 _____ () C:\Windows\setupact.log
2014-08-17 02:31 - 2013-12-20 15:16 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Spotify
2014-08-17 02:08 - 2013-09-22 12:50 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-16 17:03 - 2013-11-29 21:37 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Skype
2014-08-16 15:01 - 2014-07-20 01:50 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\.minecraft
2014-08-16 11:44 - 2014-08-16 11:44 - 00295264 _____ () C:\Windows\Minidump\081614-32339-01.dmp
2014-08-16 11:44 - 2014-06-01 20:59 - 00275856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-16 11:44 - 2013-09-21 14:27 - 00000000 ____D () C:\Windows\Minidump
2014-08-16 11:43 - 2014-08-16 11:43 - 319205856 _____ () C:\Windows\MEMORY.DMP
2014-08-16 11:28 - 2013-09-21 11:53 - 00000000 ____D () C:\Users\Paul\Desktop\Alles
2014-08-16 10:42 - 2014-08-16 10:42 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Oracle
2014-08-16 10:41 - 2014-08-16 10:41 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-16 10:41 - 2014-08-16 10:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-16 10:41 - 2013-10-19 21:25 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-16 10:33 - 2014-08-16 10:33 - 01058200 _____ (Adobe) C:\Users\Paul\Downloads\install_flashplayer14x32au_mssd_aaa_aih.exe
2014-08-16 10:33 - 2014-08-16 10:33 - 00000000 ____D () C:\Users\Paul\AppData\Local\Adobe
2014-08-16 10:17 - 2014-08-16 10:17 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-16 00:36 - 2014-08-16 00:36 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Auslogics
2014-08-16 00:36 - 2013-11-29 21:56 - 00000000 ____D () C:\ProgramData\Auslogics
2014-08-16 00:35 - 2014-08-16 00:35 - 00001286 _____ () C:\Users\Paul\Desktop\Auslogics Disk Defrag Professional.lnk
2014-08-16 00:35 - 2014-08-16 00:34 - 06732320 _____ (Auslogics Software Pty Ltd ) C:\Users\Paul\Downloads\disk-defrag-pro-setup.exe
2014-08-16 00:35 - 2014-04-10 19:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2014-08-16 00:35 - 2013-11-29 21:56 - 00000000 ____D () C:\Program Files (x86)\Auslogics
2014-08-16 00:29 - 2013-09-20 23:48 - 00000000 ____D () C:\Windows\Panther
2014-08-15 20:26 - 2014-08-15 18:25 - 00000000 ____D () C:\Program Files\Recuva
2014-08-15 20:25 - 2013-09-20 23:18 - 00000000 ____D () C:\Users\Paul
2014-08-15 18:28 - 2014-07-21 20:28 - 00153088 ___SH () C:\Users\Paul\Desktop\Thumbs.db
2014-08-15 18:24 - 2014-08-15 18:23 - 03161056 _____ (Piriform Ltd) C:\Users\Paul\Downloads\rcsetup151_slim.exe
2014-08-15 17:53 - 2014-08-15 17:53 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
2014-08-15 17:53 - 2014-08-15 17:53 - 00000000 ____D () C:\Program Files (x86)\Convar
2014-08-15 17:52 - 2014-08-15 17:51 - 03462033 _____ () C:\Users\Paul\Downloads\pci_4filerecovery.exe
2014-08-15 17:52 - 2014-08-10 12:56 - 00000000 ____D () C:\ProgramData\Freemake
2014-08-15 17:52 - 2014-08-10 12:56 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-08-15 17:49 - 2014-08-15 17:49 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-08-15 17:23 - 2014-08-14 19:32 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-15 06:07 - 2014-07-29 15:02 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Systweak
2014-08-15 06:07 - 2014-01-10 17:34 - 00001032 _____ () C:\Windows\wininit.ini
2014-08-14 19:37 - 2014-08-14 19:32 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-14 19:33 - 2014-08-14 19:33 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-08-14 19:33 - 2014-08-14 19:33 - 00000628 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-08-14 19:33 - 2014-08-14 19:33 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-08-14 19:32 - 2014-08-14 19:32 - 00001395 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-08-14 19:32 - 2014-08-14 19:32 - 00001383 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-08-14 19:32 - 2014-08-14 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-08-14 19:29 - 2014-08-14 19:26 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Paul\Downloads\spybot-2.4.exe
2014-08-14 16:49 - 2013-09-22 01:04 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 16:40 - 2013-09-22 01:04 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-14 16:29 - 2014-04-28 11:36 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-13 16:05 - 2014-07-29 14:51 - 00000000 ____D () C:\Users\Paul\AppData\Local\www.rene-zeidler.de
2014-08-10 17:42 - 2014-08-10 17:42 - 00001119 _____ () C:\Users\Paul\Downloads\hay_day_cheats_v3.0b_free_download(cheats_for_hay_day)2012.txt
2014-08-10 13:08 - 2014-08-10 12:56 - 00000000 ____D () C:\Users\Paul\Documents\Freemake
2014-08-10 12:57 - 2014-08-10 12:57 - 00000000 ____D () C:\Program Files\WinPcap
2014-08-10 12:54 - 2014-08-10 12:52 - 14462136 _____ (Ellora Assets Corporation ) C:\Users\Paul\Downloads\FreemakeVideoDownloader_3.7.0.5.exe
2014-08-09 12:38 - 2014-08-09 12:38 - 00048856 _____ () C:\Users\Paul\Downloads\SteamGuard (3).exe
2014-08-09 12:33 - 2014-08-09 12:33 - 00048856 _____ () C:\Users\Paul\Downloads\SteamGuard (2).exe
2014-08-09 12:30 - 2014-08-09 12:30 - 00048856 _____ () C:\Users\Paul\Downloads\SteamGuard (1).exe
2014-08-09 12:29 - 2014-08-09 12:29 - 00048856 _____ () C:\Users\Paul\Downloads\SteamGuard.exe
2014-08-08 19:51 - 2014-06-20 08:54 - 00000000 ____D () C:\Users\Paul\AppData\Local\Arma 3
2014-08-07 04:06 - 2014-08-14 16:20 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-14 16:20 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-04 13:36 - 2009-07-14 19:58 - 00700130 _____ () C:\Windows\system32\perfh007.dat
2014-08-04 13:36 - 2009-07-14 19:58 - 00149768 _____ () C:\Windows\system32\perfc007.dat
2014-08-04 13:36 - 2009-07-14 07:13 - 01622706 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-02 14:29 - 2014-08-02 14:29 - 00000000 ____D () C:\Users\Paul\AppData\Local\master131
2014-08-02 14:20 - 2014-08-02 14:20 - 00000000 ____D () C:\Windows\RazorDOX
2014-08-02 13:19 - 2014-08-02 13:19 - 00000000 ____D () C:\Users\Paul\AppData\Local\wNtbcQLqtVsx1nZ3mA
2014-08-02 00:51 - 2014-08-02 00:51 - 00000000 ____D () C:\Users\Paul\AppData\Local\Xenocode
2014-08-02 00:51 - 2013-09-20 23:19 - 00000000 ____D () C:\Users\Paul\AppData\Local\VirtualStore
2014-08-01 20:58 - 2014-08-01 20:58 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\MW3 FoV Changer
2014-07-30 22:32 - 2014-07-30 22:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-07-30 19:03 - 2013-12-31 13:15 - 00000000 ____D () C:\Users\Paul\AppData\Local\DayZ
2014-07-30 17:44 - 2014-07-30 12:14 - 00000000 ____D () C:\Users\Paul\Desktop\PC Setup !
2014-07-30 14:32 - 2014-07-30 13:57 - 00000246 _____ () C:\Windows\Tasks\Driver Booster SkipUAC (Paul).job
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____D () C:\Program Files\Realtek
2014-07-30 14:22 - 2014-07-30 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-07-30 14:22 - 2014-07-30 14:22 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-07-30 14:22 - 2014-07-30 14:22 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 03962840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-07-30 14:22 - 2014-07-30 14:22 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02117424 _____ () C:\Windows\system32\SStudio.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-07-30 14:22 - 2014-07-30 14:22 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-07-30 14:22 - 2014-07-30 14:22 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00110080 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00094720 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2014-07-30 14:22 - 2014-07-30 14:22 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00033592 _____ () C:\Windows\system32\audioLibVc.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-07-30 14:21 - 2014-07-30 14:21 - 00939224 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-07-30 14:21 - 2014-07-30 14:21 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-07-30 14:21 - 2013-09-21 11:43 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 28685824 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 24107520 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 23409152 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 15376384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 10335208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 08866928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 06799688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 06796592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 05442048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 04358656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-07-30 14:08 - 2014-07-30 14:08 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-07-30 14:08 - 2014-07-30 14:08 - 01117184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00848896 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00806912 _____ (AMD) C:\Windows\system32\coinst_14.100.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00723841 _____ () C:\Windows\system32\atiicdxx.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00638976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 00580816 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-07-30 14:08 - 2014-07-30 14:08 - 00580816 _____ () C:\Windows\system32\atiapfxx.blb
2014-07-30 14:08 - 2014-07-30 14:08 - 00368128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-07-30 14:08 - 2014-07-30 14:08 - 00275124 _____ () C:\Windows\system32\ativvaxy_vi.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00274656 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 00273712 _____ () C:\Windows\system32\ativvaxy_vi_nd.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00234804 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00233008 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-07-30 14:08 - 2014-07-30 14:08 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00134192 _____ () C:\Windows\system32\ativce03.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00082128 _____ () C:\Windows\system32\ativce02.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-07-30 14:08 - 2013-12-07 00:03 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-07-30 14:08 - 2013-12-06 23:57 - 07520200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-07-30 14:08 - 2013-12-06 23:56 - 08010968 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-07-30 14:08 - 2013-12-06 22:53 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-07-30 14:08 - 2013-12-06 22:53 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-07-30 14:08 - 2013-12-06 22:52 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-07-30 14:08 - 2013-09-05 10:01 - 01343272 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-07-30 14:08 - 2013-09-05 09:25 - 27907584 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-07-30 14:08 - 2013-09-05 08:34 - 01177600 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-07-30 14:08 - 2013-09-05 08:34 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-07-30 14:08 - 2013-09-05 08:33 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-07-30 13:57 - 2014-07-30 13:57 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\IObit
2014-07-30 13:57 - 2014-07-30 13:57 - 00000000 ____D () C:\ProgramData\IObit
2014-07-30 13:44 - 2014-07-30 13:44 - 00021712 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2014-07-30 13:44 - 2014-07-30 13:44 - 00000000 ____D () C:\Program Files (x86)\eSupport.com
2014-07-30 13:41 - 2014-07-30 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-07-30 13:41 - 2014-07-30 13:41 - 00000000 ____D () C:\Program Files\CPUID
2014-07-30 13:40 - 2014-04-26 00:05 - 00007598 _____ () C:\Users\Paul\AppData\Local\Resmon.ResmonCfg
2014-07-30 12:12 - 2013-09-21 18:01 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2014-07-30 12:12 - 2013-09-21 18:01 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner
2014-07-30 12:06 - 2014-03-18 17:24 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\DAEMON Tools Lite
2014-07-30 12:00 - 2013-12-20 15:19 - 00000000 ____D () C:\Users\Paul\AppData\Local\Spotify
2014-07-30 11:41 - 2014-07-19 00:50 - 00000000 ____D () C:\ProgramData\cosstminn
2014-07-29 15:30 - 2013-09-21 11:11 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-29 15:29 - 2014-07-29 15:13 - 00000000 ____D () C:\ProgramData\Systweak
2014-07-29 15:28 - 2014-01-26 00:33 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-29 15:14 - 2014-07-29 15:02 - 00000000 ____D () C:\Users\Paul\AppData\Local\HitsBlender
2014-07-29 15:13 - 2014-07-29 15:02 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Advanced System Protector
2014-07-29 15:04 - 2014-07-19 00:50 - 00000000 ____D () C:\ProgramData\fc19193c6c4b0b24
2014-07-29 15:04 - 2014-07-19 00:50 - 00000000 ____D () C:\Program Files (x86)\cosstminn
2014-07-29 15:02 - 2014-07-29 15:02 - 00000326 _____ () C:\Windows\Tasks\Update Service HitsBlender.job
2014-07-29 15:02 - 2014-07-29 15:02 - 00000000 ____D () C:\ProgramData\HitsBlender
2014-07-29 15:02 - 2013-11-27 15:59 - 00000000 ____D () C:\Users\Paul\AppData\Local\cache
2014-07-29 14:55 - 2014-07-29 14:55 - 00000466 _____ () C:\Windows\Tasks\Driver Tool-RTMScanRunOnce.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000466 _____ () C:\Windows\Tasks\Driver Tool-RTMScan.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000464 _____ () C:\Windows\Tasks\Driver Tool-RTMUpdater.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000454 _____ () C:\Windows\Tasks\Driver Tool-RTMRules.job
2014-07-29 14:51 - 2014-07-29 14:51 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\www.rene-zeidler.de
2014-07-29 14:51 - 2014-07-29 14:51 - 00000000 ____D () C:\ProgramData\www.rene-zeidler.de
2014-07-29 14:49 - 2014-07-29 14:49 - 00000294 ____H () C:\Windows\Tasks\Microsoft_Hardware_Launch_LifeExp_exe.job
2014-07-29 14:25 - 2014-07-29 14:25 - 00000318 ____H () C:\Windows\Tasks\Microsoft_Hardware_Launch_rundll32_exe.job
2014-07-28 21:53 - 2014-05-23 23:54 - 00000000 ____D () C:\Users\Paul\AppData\Local\ftblauncher
2014-07-27 00:40 - 2014-07-25 17:45 - 00000000 ____D () C:\Users\Paul\AppData\Local\TeknoGods
2014-07-26 23:03 - 2014-07-26 23:03 - 00000000 ____D () C:\Users\Paul\AppData\Local\SKIDROW
2014-07-26 01:45 - 2014-02-28 22:00 - 00002250 _____ () C:\Users\Paul\AppData\Roaming\Profile1.dat
2014-07-26 01:45 - 2014-02-28 22:00 - 00001792 _____ () C:\Users\Paul\AppData\Roaming\Profile0.dat
2014-07-24 19:08 - 2013-10-12 21:53 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\ftblauncher
2014-07-24 18:56 - 2014-07-24 18:56 - 00000000 ____D () C:\Users\Paul\Documents\My Cheat Tables
2014-07-24 14:11 - 2014-08-14 16:28 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-24 14:10 - 2014-08-14 16:28 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-24 14:10 - 2014-08-14 16:28 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-24 14:09 - 2014-08-14 16:28 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-24 12:52 - 2014-08-14 16:28 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-24 12:52 - 2014-08-14 16:28 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-24 12:51 - 2014-08-14 16:28 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-24 12:33 - 2014-08-14 16:28 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-24 12:29 - 2014-08-14 16:28 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-24 11:37 - 2014-08-14 16:28 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-07-24 11:32 - 2014-08-14 16:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-07-23 23:48 - 2014-07-23 23:48 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\livestreamer
2014-07-22 10:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing
2014-07-22 07:21 - 2014-07-22 07:20 - 00000000 ____D () C:\Users\Paul\Documents\NFS Most Wanted
2014-07-22 06:52 - 2014-07-22 06:51 - 00004623 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-22 05:33 - 2014-07-22 05:33 - 00000000 ____D () C:\Program Files (x86)\EA GAMES
2014-07-22 05:30 - 2013-09-25 13:02 - 00000000 ____D () C:\ProgramData\Origin
2014-07-22 05:28 - 2013-09-29 10:01 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-07-20 22:03 - 2014-07-20 22:03 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\TERA
2014-07-20 15:22 - 2014-07-20 15:02 - 00000000 ____D () C:\Users\Paul\AppData\Local\QQSM
2014-07-20 15:07 - 2014-01-24 19:23 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\vlc
2014-07-20 15:00 - 2014-07-20 15:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hazard Ops
2014-07-20 15:00 - 2014-07-20 14:50 - 00000000 ____D () C:\Program Files (x86)\Hazard Ops
2014-07-20 14:49 - 2014-07-19 09:39 - 00000000 ____D () C:\ProgramData\Solid State Networks
2014-07-19 14:34 - 2014-07-18 23:34 - 00000070 _____ () C:\Users\Paul\.atl.properties
2014-07-19 13:18 - 2013-09-29 10:10 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-07-19 12:17 - 2013-09-25 13:30 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-07-19 12:00 - 2014-07-19 00:47 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Oxy
2014-07-19 01:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-07-19 01:52 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-07-19 01:11 - 2013-09-21 12:08 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-19 01:11 - 2013-09-21 12:08 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-19 01:10 - 2013-09-21 12:08 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-19 01:05 - 2014-07-19 00:51 - 00000000 ____D () C:\Program Files (x86)\Supporter
2014-07-19 01:03 - 2014-07-19 00:51 - 00000000 ____D () C:\Users\Paul\AppData\Local\863
2014-07-19 00:50 - 2014-07-19 00:50 - 00000000 ____D () C:\Users\Paul\AppData\Local\Packages
2014-07-19 00:49 - 2014-07-19 00:49 - 00000000 ____D () C:\Users\Paul\AppData\Local\556
2014-07-19 00:48 - 2014-07-19 00:48 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oxy
2014-07-19 00:47 - 2014-07-19 00:47 - 00000306 ____H () C:\Windows\Tasks\Oxy.job
2014-07-18 16:45 - 2013-09-29 10:18 - 00281768 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-07-18 16:45 - 2013-09-29 10:10 - 00281768 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0

Some content of TEMP:
====================
C:\Users\Paul\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\Paul\AppData\Local\Temp\Need for Speed Most Wanted_uninst.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2013-11-21 18:11

==================== End Of Log ============================
--- --- ---

--- --- ---


Alt 18.08.2014, 20:35   #6
schrauber
/// the machine
/// TB-Ausbilder
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


und die Addition.txt?
__________________
--> Keylogger sicher weg ?

Alt 19.08.2014, 15:36   #7
Punschiii
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Zitat:
Zitat von schrauber Beitrag anzeigen
und die Addition.txt?
Die Addition.txt kannst du dir angucken in der 3. Nachricht von oben

Alt 20.08.2014, 09:19   #8
schrauber
/// the machine
/// TB-Ausbilder
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Nö. Ich poste das hier nit aus Spass:
Zitat:
Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.08.2014, 15:14   #9
Punschiii
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-08-2014 04
Ran by Paul at 2014-08-17 11:28:31
Running from C:\Users\Paul\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AS: Kaspersky Internet Security (Enabled - Up to date) {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.38 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}) (Version: 3.0.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Auslogics Disk Defrag Professional (HKLM-x32\...\{ADE1535C-C836-4F2E-BDA1-1C7C304743E3}_is1) (Version: 4.3.9.0 - Auslogics Software Pty Ltd)
Auslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 4.5.3.0 - Auslogics Labs Pty Ltd)
Battlefield 3™ (HKLM-x32\...\{64BFBE7A-886C-4CA2-A9B4-0C2B5A5942BC}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.3.2.3825 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
Blue Byte Game Channel (HKLM-x32\...\Blue Byte Game Channel) (Version:  - UbiSoft)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.4.3036 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{44181DF6-2751-48C7-B918-72F14508F127}) (Version: 0.8.4.3036 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 3 - Dedicated Server (HKLM-x32\...\Steam App 42750) (Version:  - Infinity Ward - Sledgehammer Games)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{99C28455-E285-4639-B4C6-9F747C0C3D4C}) (Version: 0.92.90 - Dotjosh Studios)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Druckerdeinstallation für EPSON SX218 Series (HKLM\...\EPSON SX218 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Free YouTube to MP3 Converter version 3.12.35.514 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.35.514 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 0.1.0.0 - Infernum Productions AG)
iTunes (HKLM\...\{33E28B58-7BA0-47B7-AA01-9225ABA2B8A9}) (Version: 11.3.0.54 - Apple Inc.)
Java 7 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417040FF}) (Version: 7.0.400 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Kaspersky Internet Security 2013 (HKLM-x32\...\InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab)
Kaspersky Internet Security 2013 (x32 Version: 13.0.1.4190 - Kaspersky Lab) Hidden
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.50 (HKLM\...\Logitech Gaming Software) (Version: 8.50.281 - Logitech Inc.)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Corporation (Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft Corporation (x32 Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.1 - Notepad++ Team)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4643 - Electronic Arts, Inc.)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Razer Mamba (HKLM-x32\...\{7BE49DA7-EDA4-4C63-AA06-DCDF6858C3F3}) (Version: 1.07.00 - Razer USA Ltd.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Spotify (HKCU\...\Spotify) (Version: 0.9.11.27.g2b1a638c - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Supporter 1.80 (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{be0fb33b}) (Version:  - Costmin) <==== ATTENTION
System Requirements Lab CYRI (HKLM-x32\...\{19B0831B-0C18-4103-86E4-90FCD04CD3B9}) (Version: 6.0.12.5 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {07CB8D3F-84C3-4252-AE90-2F2456A05D2D} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: {177FAADE-6AE9-48BA-BF2A-69F272768983} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-895077429-3266421892-1986878405-1000UA => C:\Users\Paul\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {3678D538-4759-4A9C-BA37-1BA057676AAB} - System32\Tasks\{F0BC285A-8403-438D-ACCB-2137FFABA897} => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
Task: {580C5ECB-ED84-43E1-BA68-816C867D7501} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {5FBA9352-D729-44F3-BF39-BEAE0052923E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-19] (Adobe Systems Incorporated)
Task: {752196B3-B5D7-415B-A887-D473C96DFFDC} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-895077429-3266421892-1986878405-1000Core => C:\Users\Paul\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {802F2716-87BB-4B37-A01B-692DA627735A} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\Driver Booster SkipUAC (Paul).job => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: C:\Windows\Tasks\Driver Tool-RTMRules.job => C:\Program Files (x86)\Driver Tool\Driver Tool\DriverTool.exe
Task: C:\Windows\Tasks\Driver Tool-RTMScan.job => C:\Program Files (x86)\Driver Tool\Driver Tool\DriverTool.exe
Task: C:\Windows\Tasks\Driver Tool-RTMScanRunOnce.job => C:\Program Files (x86)\Driver Tool\Driver Tool\DriverTool.exe
Task: C:\Windows\Tasks\Driver Tool-RTMUpdater.job => C:\Program Files (x86)\Driver Tool\Driver Tool\DriverTool.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8af011548ea4.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Microsoft_Hardware_Launch_LifeExp_exe.job => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
Task: C:\Windows\Tasks\Microsoft_Hardware_Launch_rundll32_exe.job => C:\Windows\system32\rundll32.exeJurl.dll
Task: C:\Windows\Tasks\MSIAfterburner.job => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: C:\Windows\Tasks\Oxy.job => C:\Users\Paul\AppData\Roaming\Oxy\Updater.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\Windows\Tasks\SidebarExecute.job => C:\Program Files (x86)\Windows Sidebar\sidebar.exe
Task: C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013.job => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe
Task: C:\Windows\Tasks\Update Service HitsBlender.job => C:\Program Files (x86)\HitsBlenderUpdater\HitsBlenderUpdater.exe

==================== Loaded Modules (whitelisted) =============

2014-05-23 12:34 - 2014-05-23 12:33 - 00076888 _____ () C:\Windows\system32\PnkBstrA.exe
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-05-16 08:27 - 2013-05-16 08:27 - 01310136 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\kpcengine.2.2.dll
2014-08-14 19:32 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-08-14 19:32 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-08-14 19:32 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-08-14 19:32 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-08-14 19:32 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2012-08-17 22:38 - 2012-08-17 22:38 - 00479160 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll
2014-05-22 15:31 - 2013-07-24 09:24 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2014-08-15 22:13 - 2014-08-07 05:20 - 00718152 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libglesv2.dll
2014-08-15 22:13 - 2014-08-07 05:20 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libegl.dll
2014-08-15 22:13 - 2014-08-07 05:20 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-15 22:13 - 2014-08-07 05:20 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-15 22:13 - 2014-08-07 05:20 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
2014-08-15 22:13 - 2014-08-07 05:20 - 14669128 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: Spotify => "C:\Users\Paul\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Paul\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent

==================== Faulty Device Manager Devices =============

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft-6zu4-Adapter
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft-ISATAP-Adapter
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft-ISATAP-Adapter #2
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/15/2014 07:58:48 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/15/2014 04:58:57 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/15/2014 06:10:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SDScan.exe, Version 2.4.40.181 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1618

Startzeit: 01cfb7e6d98f3ddb

Endzeit: 0

Anwendungspfad: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe

Berichts-ID: 0233f1b9-2432-11e4-919d-90fba6e203d0

Error: (08/14/2014 10:04:01 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E511A64-F081-49DA-A4BD-86DA9D2D4A2B}\mpengine.dll" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm Hostprozess für Windows-Dienste wurde wegen dieses Fehlers geschlossen.

Programm: Hostprozess für Windows-Dienste
Datei: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E511A64-F081-49DA-A4BD-86DA9D2D4A2B}\mpengine.dll

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: C0000185
Datenträgertyp: 3

Error: (08/14/2014 10:04:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_WinDefend, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc3c1
Name des fehlerhaften Moduls: mpengine.dll, Version: 1.1.10802.0, Zeitstempel: 0x53b3757c
Ausnahmecode: 0xc0000006
Fehleroffset: 0x00000000000c80a4
ID des fehlerhaften Prozesses: 0x120c
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_WinDefend0
Pfad der fehlerhaften Anwendung: svchost.exe_WinDefend1
Pfad des fehlerhaften Moduls: svchost.exe_WinDefend2
Berichtskennung: svchost.exe_WinDefend3

Error: (08/14/2014 04:38:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm chrome.exe, Version 36.0.1985.125 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1204

Startzeit: 01cfb7cd0507a78d

Endzeit: 0

Anwendungspfad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Berichts-ID: 9421b766-23c0-11e4-9789-90fba6e203d0

Error: (08/08/2014 10:15:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: speed.exe, Version: 0.0.0.0, Zeitstempel: 0x438e4c8c
Name des fehlerhaften Moduls: speed.exe, Version: 0.0.0.0, Zeitstempel: 0x438e4c8c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003a351a
ID des fehlerhaften Prozesses: 0x19ec
Startzeit der fehlerhaften Anwendung: 0xspeed.exe0
Pfad der fehlerhaften Anwendung: speed.exe1
Pfad des fehlerhaften Moduls: speed.exe2
Berichtskennung: speed.exe3

Error: (08/02/2014 02:30:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iw5mp.exe, Version: 0.0.0.0, Zeitstempel: 0x4f186c8f
Name des fehlerhaften Moduls: iw5mp.exe, Version: 0.0.0.0, Zeitstempel: 0x4f186c8f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000df3d2
ID des fehlerhaften Prozesses: 0xe50
Startzeit der fehlerhaften Anwendung: 0xiw5mp.exe0
Pfad der fehlerhaften Anwendung: iw5mp.exe1
Pfad des fehlerhaften Moduls: iw5mp.exe2
Berichtskennung: iw5mp.exe3

Error: (08/02/2014 02:29:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iw5mp.exe, Version: 0.0.0.0, Zeitstempel: 0x4f186c8f
Name des fehlerhaften Moduls: iw5mp.exe, Version: 0.0.0.0, Zeitstempel: 0x4f186c8f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000df3d2
ID des fehlerhaften Prozesses: 0x904
Startzeit der fehlerhaften Anwendung: 0xiw5mp.exe0
Pfad der fehlerhaften Anwendung: iw5mp.exe1
Pfad des fehlerhaften Moduls: iw5mp.exe2
Berichtskennung: iw5mp.exe3

Error: (08/01/2014 08:51:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iw5sp.exe, Version: 0.0.0.0, Zeitstempel: 0x4eb37be5
Name des fehlerhaften Moduls: iw5sp.exe, Version: 0.0.0.0, Zeitstempel: 0x4eb37be5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0020ee37
ID des fehlerhaften Prozesses: 0x440
Startzeit der fehlerhaften Anwendung: 0xiw5sp.exe0
Pfad der fehlerhaften Anwendung: iw5sp.exe1
Pfad des fehlerhaften Moduls: iw5sp.exe2
Berichtskennung: iw5sp.exe3


System errors:
=============
Error: (08/16/2014 11:44:26 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000007a (0xfffff6fc4000ceb8, 0xffffffffc0000185, 0x00000000511d1860, 0xfffff880019d7c80)C:\Windows\MEMORY.DMP081614-32339-01

Error: (08/16/2014 11:44:20 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎16.‎08.‎2014 um 11:41:38 unerwartet heruntergefahren.

Error: (08/16/2014 11:41:31 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (08/16/2014 11:41:31 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (08/16/2014 11:41:31 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (08/16/2014 11:41:31 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (08/16/2014 11:41:31 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (08/16/2014 11:41:31 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (08/16/2014 11:41:31 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (08/16/2014 11:41:31 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.


Microsoft Office Sessions:
=========================
Error: (08/15/2014 07:58:48 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/15/2014 04:58:57 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/15/2014 06:10:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SDScan.exe2.4.40.181161801cfb7e6d98f3ddb0C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe0233f1b9-2432-11e4-919d-90fba6e203d0

Error: (08/14/2014 10:04:01 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E511A64-F081-49DA-A4BD-86DA9D2D4A2B}\mpengine.dllHostprozess für Windows-DiensteC00001853

Error: (08/14/2014 10:04:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_WinDefend6.1.7600.163854a5bc3c1mpengine.dll1.1.10802.053b3757cc000000600000000000c80a4120c01cfb7e453849b6cC:\Windows\System32\svchost.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5E511A64-F081-49DA-A4BD-86DA9D2D4A2B}\mpengine.dll21d470e6-23ee-11e4-919d-90fba6e203d0

Error: (08/14/2014 04:38:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe36.0.1985.125120401cfb7cd0507a78d0C:\Program Files (x86)\Google\Chrome\Application\chrome.exe9421b766-23c0-11e4-9789-90fba6e203d0

Error: (08/08/2014 10:15:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: speed.exe0.0.0.0438e4c8cspeed.exe0.0.0.0438e4c8cc0000005003a351a19ec01cfb34563290eb8C:\Users\Paul\Desktop\Alles\Need for Speed Most Wanted\speed.exeC:\Users\Paul\Desktop\Alles\Need for Speed Most Wanted\speed.exec62a7b70-1f38-11e4-b09e-90fba6e203d0

Error: (08/02/2014 02:30:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iw5mp.exe0.0.0.04f186c8fiw5mp.exe0.0.0.04f186c8fc0000005000df3d2e5001cfae4d8d0d1d64C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exeC:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exed23f07ae-1a40-11e4-8ca4-90fba6e203d0

Error: (08/02/2014 02:29:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iw5mp.exe0.0.0.04f186c8fiw5mp.exe0.0.0.04f186c8fc0000005000df3d290401cfae4d305467e0C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exeC:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exea89b1693-1a40-11e4-8ca4-90fba6e203d0

Error: (08/01/2014 08:51:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iw5sp.exe0.0.0.04eb37be5iw5sp.exe0.0.0.04eb37be5c00000050020ee3744001cfadb925d0a8cbC:\Users\Paul\Desktop\Call of Duty Modern Warfare 3 Singelplayer\iw5sp.exeC:\Users\Paul\Desktop\Call of Duty Modern Warfare 3 Singelplayer\iw5sp.exed064f86d-19ac-11e4-b4de-90fba6e203d0


CodeIntegrity Errors:
===================================
  Date: 2013-12-28 19:02:51.726
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:02:51.499
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:02:41.102
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:02:41.101
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:00:50.339
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:00:50.337
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:00:49.414
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:00:49.412
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:00:42.536
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-28 19:00:42.534
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Alt 21.08.2014, 10:57   #10
schrauber
/// the machine
/// TB-Ausbilder
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


hi,

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 21.08.2014, 16:22   #11
Punschiii
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Code:
ATTFilter
16:50:37.0376 0x11a0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
16:50:45.0266 0x11a0  ============================================================
16:50:45.0266 0x11a0  Current date / time: 2014/08/21 16:50:45.0266
16:50:45.0266 0x11a0  SystemInfo:
16:50:45.0266 0x11a0  
16:50:45.0266 0x11a0  OS Version: 6.1.7601 ServicePack: 1.0
16:50:45.0266 0x11a0  Product type: Workstation
16:50:45.0266 0x11a0  ComputerName: PAUL-PC
16:50:45.0266 0x11a0  UserName: Paul
16:50:45.0266 0x11a0  Windows directory: C:\Windows
16:50:45.0266 0x11a0  System windows directory: C:\Windows
16:50:45.0266 0x11a0  Running under WOW64
16:50:45.0266 0x11a0  Processor architecture: Intel x64
16:50:45.0266 0x11a0  Number of processors: 4
16:50:45.0266 0x11a0  Page size: 0x1000
16:50:45.0266 0x11a0  Boot type: Normal boot
16:50:45.0266 0x11a0  ============================================================
16:50:49.0113 0x11a0  KLMD registered as C:\Windows\system32\drivers\07783145.sys
16:50:50.0423 0x11a0  System UUID: {1835947A-FC78-9C29-FE80-3CCC1288D0C5}
16:50:52.0096 0x11a0  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:50:52.0126 0x11a0  ============================================================
16:50:52.0126 0x11a0  \Device\Harddisk0\DR0:
16:50:52.0126 0x11a0  MBR partitions:
16:50:52.0126 0x11a0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2200800, BlocksNum 0x32000
16:50:52.0126 0x11a0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2232800, BlocksNum 0x391E7000
16:50:52.0126 0x11a0  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B419800, BlocksNum 0x392EC800
16:50:52.0126 0x11a0  ============================================================
16:50:52.0158 0x11a0  C: <-> \Device\Harddisk0\DR0\Partition3
16:50:52.0245 0x11a0  D: <-> \Device\Harddisk0\DR0\Partition2
16:50:52.0270 0x11a0  ============================================================
16:50:52.0270 0x11a0  Initialize success
16:50:52.0270 0x11a0  ============================================================
16:50:58.0290 0x15c8  ============================================================
16:50:58.0290 0x15c8  Scan started
16:50:58.0290 0x15c8  Mode: Manual; 
16:50:58.0290 0x15c8  ============================================================
16:50:58.0290 0x15c8  KSN ping started
16:51:12.0122 0x15c8  KSN ping finished: true
16:51:16.0874 0x15c8  ================ Scan system memory ========================
16:51:16.0875 0x15c8  System memory - ok
16:51:16.0875 0x15c8  ================ Scan services =============================
16:51:17.0007 0x15c8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:51:17.0017 0x15c8  1394ohci - ok
16:51:17.0060 0x15c8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:51:17.0069 0x15c8  ACPI - ok
16:51:17.0106 0x15c8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:51:17.0108 0x15c8  AcpiPmi - ok
16:51:17.0250 0x15c8  [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:51:17.0257 0x15c8  AdobeFlashPlayerUpdateSvc - ok
16:51:17.0296 0x15c8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
16:51:17.0308 0x15c8  adp94xx - ok
16:51:17.0333 0x15c8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
16:51:17.0343 0x15c8  adpahci - ok
16:51:17.0361 0x15c8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
16:51:17.0366 0x15c8  adpu320 - ok
16:51:17.0406 0x15c8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:51:17.0408 0x15c8  AeLookupSvc - ok
16:51:17.0445 0x15c8  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
16:51:17.0457 0x15c8  AFD - ok
16:51:17.0499 0x15c8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
16:51:17.0502 0x15c8  agp440 - ok
16:51:17.0533 0x15c8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
16:51:17.0536 0x15c8  ALG - ok
16:51:17.0570 0x15c8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:51:17.0572 0x15c8  aliide - ok
16:51:17.0608 0x15c8  [ E7BDC2E7D885A65031C6B93D5A80B019, B37B05CA81A200A0C303946A21901ED382468761AB8BB8F7F310700A060E813F ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:51:17.0614 0x15c8  AMD External Events Utility - ok
16:51:17.0635 0x15c8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:51:17.0637 0x15c8  amdide - ok
16:51:17.0649 0x15c8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:51:17.0652 0x15c8  AmdK8 - ok
16:51:18.0270 0x15c8  [ 342156AF1FED5ED3A5D3FBB3D87F48E8, 119C85492EDCA82731E23A261DE39A72783713B01B89D8FA2F47400EB03C7C57 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:51:18.0655 0x15c8  amdkmdag - ok
16:51:18.0755 0x15c8  [ 9DCA2AFEABF1D109FB2C229491C9F293, F020F4FDD29897C656287A2D01D51B4AE45AA604E4291BCE05FB7D994242EC04 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
16:51:18.0770 0x15c8  amdkmdap - ok
16:51:18.0784 0x15c8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:51:18.0787 0x15c8  AmdPPM - ok
16:51:18.0827 0x15c8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:51:18.0831 0x15c8  amdsata - ok
16:51:18.0859 0x15c8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
16:51:18.0865 0x15c8  amdsbs - ok
16:51:18.0887 0x15c8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:51:18.0888 0x15c8  amdxata - ok
16:51:18.0919 0x15c8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
16:51:18.0923 0x15c8  AppID - ok
16:51:18.0954 0x15c8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:51:18.0957 0x15c8  AppIDSvc - ok
16:51:18.0981 0x15c8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
16:51:18.0984 0x15c8  Appinfo - ok
16:51:19.0087 0x15c8  [ 6B73E94F9FE82D45781B8C8A09483082, C35EEAE7457168387A7C77A315524A3703ABDE49D9F23F59057315D9249D3473 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:51:19.0089 0x15c8  Apple Mobile Device - ok
16:51:19.0108 0x15c8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
16:51:19.0111 0x15c8  arc - ok
16:51:19.0122 0x15c8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
16:51:19.0133 0x15c8  arcsas - ok
16:51:19.0321 0x15c8  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:51:19.0431 0x15c8  aspnet_state - ok
16:51:19.0455 0x15c8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:51:19.0457 0x15c8  AsyncMac - ok
16:51:19.0494 0x15c8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:51:19.0494 0x15c8  atapi - ok
16:51:19.0539 0x15c8  [ C22D4905DDDF73EB0349D3B0604234A2, F86220290663FA95F3D8181D41F9D105634A62D50856BCEB174B9675F8DD7669 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
16:51:19.0543 0x15c8  AtiHDAudioService - ok
16:51:19.0616 0x15c8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:51:19.0632 0x15c8  AudioEndpointBuilder - ok
16:51:19.0651 0x15c8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:51:19.0663 0x15c8  AudioSrv - ok
16:51:19.0818 0x15c8  [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
16:51:19.0825 0x15c8  AVP - ok
16:51:19.0848 0x15c8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:51:19.0852 0x15c8  AxInstSV - ok
16:51:19.0887 0x15c8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
16:51:19.0899 0x15c8  b06bdrv - ok
16:51:19.0918 0x15c8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:51:19.0926 0x15c8  b57nd60a - ok
16:51:19.0963 0x15c8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:51:19.0967 0x15c8  BDESVC - ok
16:51:19.0973 0x15c8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:51:19.0975 0x15c8  Beep - ok
16:51:20.0013 0x15c8  [ B1359701847FF1FF415FA083F1610F48, 991F995B9CF614549F5F7EB5C5B2D47F34EFF0F47B35C4BF4CE716666B9DA1D3 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
16:51:20.0016 0x15c8  BEService - ok
16:51:20.0063 0x15c8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
16:51:20.0080 0x15c8  BFE - ok
16:51:20.0184 0x15c8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
16:51:20.0311 0x15c8  BITS - ok
16:51:20.0321 0x15c8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:51:20.0323 0x15c8  blbdrive - ok
16:51:20.0432 0x15c8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:51:20.0440 0x15c8  Bonjour Service - ok
16:51:20.0468 0x15c8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:51:20.0472 0x15c8  bowser - ok
16:51:20.0488 0x15c8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:51:20.0490 0x15c8  BrFiltLo - ok
16:51:20.0500 0x15c8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:51:20.0502 0x15c8  BrFiltUp - ok
16:51:20.0575 0x15c8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
16:51:20.0580 0x15c8  Browser - ok
16:51:20.0670 0x15c8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:51:20.0678 0x15c8  Brserid - ok
16:51:20.0687 0x15c8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:51:20.0690 0x15c8  BrSerWdm - ok
16:51:20.0703 0x15c8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:51:20.0705 0x15c8  BrUsbMdm - ok
16:51:20.0716 0x15c8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:51:20.0717 0x15c8  BrUsbSer - ok
16:51:20.0783 0x15c8  [ 3B6429C5B11408EF11EFEEE8C0F0682A, 2FC87B91122DC265B4CC2CFE58261DA604C89600F2683AB5294004C721127098 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
16:51:20.0790 0x15c8  BstHdAndroidSvc - ok
16:51:20.0821 0x15c8  [ 75EEDB477B68CF35D82F0654266053CE, E7A7F4E4781BE97603A0F08535D2EB247A1304B15EF7BAD748E63246AFFEFF35 ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
16:51:20.0825 0x15c8  BstHdDrv - ok
16:51:20.0864 0x15c8  [ 1DC18C9E1B4984389783E4F9DFC61AB1, 0F32EE280F5B9E0065A7AACED3D64373EC3BFC366906606A644AD0D4AD08E61C ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
16:51:20.0871 0x15c8  BstHdLogRotatorSvc - ok
16:51:20.0889 0x15c8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
16:51:20.0892 0x15c8  BTHMODEM - ok
16:51:20.0901 0x15c8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
16:51:20.0904 0x15c8  bthserv - ok
16:51:20.0917 0x15c8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:51:20.0920 0x15c8  cdfs - ok
16:51:20.0978 0x15c8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:51:20.0983 0x15c8  cdrom - ok
16:51:21.0013 0x15c8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:51:21.0016 0x15c8  CertPropSvc - ok
16:51:21.0036 0x15c8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
16:51:21.0039 0x15c8  circlass - ok
16:51:21.0069 0x15c8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
16:51:21.0079 0x15c8  CLFS - ok
16:51:21.0155 0x15c8  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:51:21.0158 0x15c8  clr_optimization_v2.0.50727_32 - ok
16:51:21.0194 0x15c8  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:51:21.0265 0x15c8  clr_optimization_v2.0.50727_64 - ok
16:51:21.0394 0x15c8  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:51:21.0499 0x15c8  clr_optimization_v4.0.30319_32 - ok
16:51:21.0515 0x15c8  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:51:21.0561 0x15c8  clr_optimization_v4.0.30319_64 - ok
16:51:21.0589 0x15c8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:51:21.0591 0x15c8  CmBatt - ok
16:51:21.0608 0x15c8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:51:21.0610 0x15c8  cmdide - ok
16:51:21.0651 0x15c8  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
16:51:21.0662 0x15c8  CNG - ok
16:51:21.0677 0x15c8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:51:21.0679 0x15c8  Compbatt - ok
16:51:21.0705 0x15c8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
16:51:21.0708 0x15c8  CompositeBus - ok
16:51:21.0710 0x15c8  COMSysApp - ok
16:51:21.0724 0x15c8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
16:51:21.0726 0x15c8  crcdisk - ok
16:51:21.0785 0x15c8  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:51:21.0791 0x15c8  CryptSvc - ok
16:51:21.0839 0x15c8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:51:21.0852 0x15c8  DcomLaunch - ok
16:51:21.0906 0x15c8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:51:21.0915 0x15c8  defragsvc - ok
16:51:21.0949 0x15c8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:51:21.0952 0x15c8  DfsC - ok
16:51:21.0991 0x15c8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:51:22.0000 0x15c8  Dhcp - ok
16:51:22.0019 0x15c8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
16:51:22.0022 0x15c8  discache - ok
16:51:22.0032 0x15c8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
16:51:22.0035 0x15c8  Disk - ok
16:51:22.0068 0x15c8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:51:22.0073 0x15c8  Dnscache - ok
16:51:22.0107 0x15c8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:51:22.0115 0x15c8  dot3svc - ok
16:51:22.0156 0x15c8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
16:51:22.0161 0x15c8  DPS - ok
16:51:22.0199 0x15c8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:51:22.0201 0x15c8  drmkaud - ok
16:51:22.0338 0x15c8  [ 1ED08A6264C5C92099D6D1DAE5E8F530, 4045AE77859B1DBF13972451972EAAF6F3C97BEA423E9E78F1C2F14330CD47CA ] DrvAgent64      C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
16:51:22.0345 0x15c8  DrvAgent64 - ok
16:51:22.0428 0x15c8  [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
16:51:22.0438 0x15c8  dtsoftbus01 - ok
16:51:22.0618 0x15c8  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:51:22.0640 0x15c8  DXGKrnl - ok
16:51:22.0644 0x15c8  EagleX64 - ok
16:51:22.0678 0x15c8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
16:51:22.0682 0x15c8  EapHost - ok
16:51:22.0800 0x15c8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
16:51:22.0901 0x15c8  ebdrv - ok
16:51:22.0931 0x15c8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
16:51:22.0932 0x15c8  EFS - ok
16:51:23.0141 0x15c8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:51:23.0158 0x15c8  ehRecvr - ok
16:51:23.0198 0x15c8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
16:51:23.0203 0x15c8  ehSched - ok
16:51:23.0230 0x15c8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
16:51:23.0243 0x15c8  elxstor - ok
16:51:23.0316 0x15c8  [ 7DB097F4F6786307168C0DDDEC43A565, 963C0D3D88FB4BF9C2FBCB296B03603E2F8AA8B4E8976162842863B7538C1A9F ] EPSON_EB_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
16:51:23.0320 0x15c8  EPSON_EB_RPCV4_04 - ok
16:51:23.0331 0x15c8  [ 258AA65A0862E19B7DE6981FDA3758AD, C090F19BEDC2CFB0B5265BCE48BD52102E06CBC15EEFE4CDB747D44F2E42D545 ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
16:51:23.0468 0x15c8  EPSON_PM_RPCV4_04 - ok
16:51:23.0590 0x15c8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:51:23.0619 0x15c8  ErrDev - ok
16:51:23.0708 0x15c8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
16:51:23.0720 0x15c8  EventSystem - ok
16:51:23.0745 0x15c8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:51:23.0750 0x15c8  exfat - ok
16:51:23.0770 0x15c8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:51:23.0776 0x15c8  fastfat - ok
16:51:23.0858 0x15c8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
16:51:23.0874 0x15c8  Fax - ok
16:51:23.0903 0x15c8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:51:23.0905 0x15c8  fdc - ok
16:51:23.0920 0x15c8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
16:51:23.0922 0x15c8  fdPHost - ok
16:51:23.0933 0x15c8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:51:23.0936 0x15c8  FDResPub - ok
16:51:23.0950 0x15c8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:51:23.0953 0x15c8  FileInfo - ok
16:51:23.0968 0x15c8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:51:23.0970 0x15c8  Filetrace - ok
16:51:23.0991 0x15c8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:51:23.0993 0x15c8  flpydisk - ok
16:51:24.0054 0x15c8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:51:24.0086 0x15c8  FltMgr - ok
16:51:24.0150 0x15c8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
16:51:24.0176 0x15c8  FontCache - ok
16:51:24.0228 0x15c8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:51:24.0233 0x15c8  FontCache3.0.0.0 - ok
16:51:24.0245 0x15c8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:51:24.0248 0x15c8  FsDepends - ok
16:51:24.0284 0x15c8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:51:24.0286 0x15c8  Fs_Rec - ok
16:51:24.0339 0x15c8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:51:24.0346 0x15c8  fvevol - ok
16:51:24.0374 0x15c8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
16:51:24.0377 0x15c8  gagp30kx - ok
16:51:24.0410 0x15c8  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:51:24.0412 0x15c8  GEARAspiWDM - ok
16:51:24.0456 0x15c8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:51:24.0474 0x15c8  gpsvc - ok
16:51:24.0568 0x15c8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:51:24.0571 0x15c8  gupdate - ok
16:51:24.0576 0x15c8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:51:24.0578 0x15c8  gupdatem - ok
16:51:24.0610 0x15c8  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
16:51:24.0612 0x15c8  hamachi - ok
16:51:24.0633 0x15c8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:51:24.0635 0x15c8  hcw85cir - ok
16:51:24.0678 0x15c8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:51:24.0688 0x15c8  HdAudAddService - ok
16:51:24.0728 0x15c8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
16:51:24.0732 0x15c8  HDAudBus - ok
16:51:24.0746 0x15c8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
16:51:24.0748 0x15c8  HidBatt - ok
16:51:24.0774 0x15c8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
16:51:24.0777 0x15c8  HidBth - ok
16:51:24.0804 0x15c8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
16:51:24.0806 0x15c8  HidIr - ok
16:51:24.0853 0x15c8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
16:51:24.0855 0x15c8  hidserv - ok
16:51:24.0886 0x15c8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:51:24.0888 0x15c8  HidUsb - ok
16:51:24.0921 0x15c8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:51:24.0924 0x15c8  hkmsvc - ok
16:51:24.0996 0x15c8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:51:25.0002 0x15c8  HomeGroupListener - ok
16:51:25.0021 0x15c8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:51:25.0027 0x15c8  HomeGroupProvider - ok
16:51:25.0047 0x15c8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:51:25.0050 0x15c8  HpSAMD - ok
16:51:25.0219 0x15c8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:51:25.0237 0x15c8  HTTP - ok
16:51:25.0263 0x15c8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:51:25.0265 0x15c8  hwpolicy - ok
16:51:25.0299 0x15c8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:51:25.0303 0x15c8  i8042prt - ok
16:51:25.0353 0x15c8  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
16:51:25.0368 0x15c8  iaStorA - ok
16:51:25.0405 0x15c8  [ CE5CD8CBE940965867D507AB8EA2795A, 1CC2C23A1436E4C911DD3B942D8F6DABB7249AB04426F9AB6B6045034226DD25 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
16:51:25.0407 0x15c8  iaStorF - ok
16:51:25.0453 0x15c8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:51:25.0468 0x15c8  iaStorV - ok
16:51:25.0560 0x15c8  [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
16:51:25.0564 0x15c8  IDriverT - ok
16:51:25.0638 0x15c8  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:51:25.0659 0x15c8  idsvc - ok
16:51:25.0674 0x15c8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
16:51:25.0677 0x15c8  iirsp - ok
16:51:25.0764 0x15c8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
16:51:25.0784 0x15c8  IKEEXT - ok
16:51:26.0397 0x15c8  [ 39246F2CFBF1D32C3A12E242661EC039, EADF06D9B142844C16C2B0E412D708DB02BA07E2CD96BBFB2F0984DD6BB63E28 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:51:26.0521 0x15c8  IntcAzAudAddService - ok
16:51:26.0572 0x15c8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:51:26.0574 0x15c8  intelide - ok
16:51:26.0578 0x15c8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:51:26.0585 0x15c8  intelppm - ok
16:51:26.0619 0x15c8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:51:26.0623 0x15c8  IPBusEnum - ok
16:51:26.0642 0x15c8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:51:26.0645 0x15c8  IpFilterDriver - ok
16:51:26.0730 0x15c8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:51:26.0744 0x15c8  iphlpsvc - ok
16:51:26.0778 0x15c8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:51:26.0781 0x15c8  IPMIDRV - ok
16:51:26.0803 0x15c8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:51:26.0807 0x15c8  IPNAT - ok
16:51:26.0866 0x15c8  [ 0FA89CB1B99AD494CE36DD2DE717D696, 5B35B26C625306A7AD5A00FCAC46FD6D60061F1C8171352B5EF1C916A667AC92 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:51:26.0877 0x15c8  iPod Service - ok
16:51:26.0896 0x15c8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:51:26.0898 0x15c8  IRENUM - ok
16:51:26.0913 0x15c8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:51:26.0916 0x15c8  isapnp - ok
16:51:26.0946 0x15c8  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:51:26.0954 0x15c8  iScsiPrt - ok
16:51:26.0964 0x15c8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:51:26.0967 0x15c8  kbdclass - ok
16:51:26.0980 0x15c8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:51:26.0983 0x15c8  kbdhid - ok
16:51:26.0998 0x15c8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
16:51:26.0999 0x15c8  KeyIso - ok
16:51:27.0152 0x15c8  [ 795EC29BA21F1D948FD6FD740C00B599, 780900717A812C5DB78C67057010BD62DF2C756C087599A6F8C67CB4EFA7518C ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
16:51:27.0163 0x15c8  kl1 - ok
16:51:27.0355 0x15c8  [ FEA38D7024CD9C27D58A862A19DCFA14, 522A15963A105AD551ED45E7BA2AFA7A90408FE7D349307A17F12FE761AFB903 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
16:51:27.0370 0x15c8  KLIF - ok
16:51:27.0427 0x15c8  [ 31B69BFF28348503E4BD10C2A4F66D05, 891318C2DDF85E43DFCEE73717AEFCE79BC3DCD83FCD58E6F794AB6BF1739688 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
16:51:27.0429 0x15c8  KLIM6 - ok
16:51:27.0498 0x15c8  [ AEB50941C6D67128B14F88DB9917C4E0, 2ACE46665DE298CC197660A442A3172B1FB460A40BD18AECEA786ACB011FDA43 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
16:51:27.0500 0x15c8  klkbdflt - ok
16:51:27.0516 0x15c8  [ 72CF64FBF38CD681FA7F37176047E967, BE5683C119DCEF7E678EE477D6CADF873E32D42372A253B7E86B8C335DF28E1C ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
16:51:27.0518 0x15c8  klmouflt - ok
16:51:27.0574 0x15c8  [ 45ECF097BC6330C2054D7D43B7AD822B, 41684ED54E75FE6BEEA322E7CE888DFDD53EE1F45016E01CE10B84ABB02CBDA8 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
16:51:27.0577 0x15c8  kltdi - ok
16:51:27.0676 0x15c8  [ 1FCB657B581CC4DF17FD6571F93602DE, D5D95773D19AA47BA619D149FD6068198E2AA05C219C3936E327B3DFFDE6B10C ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
16:51:27.0682 0x15c8  kneps - ok
16:51:27.0724 0x15c8  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:51:27.0727 0x15c8  KSecDD - ok
16:51:27.0782 0x15c8  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:51:27.0787 0x15c8  KSecPkg - ok
16:51:27.0817 0x15c8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:51:27.0819 0x15c8  ksthunk - ok
16:51:27.0905 0x15c8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:51:27.0915 0x15c8  KtmRm - ok
16:51:27.0958 0x15c8  [ 305BB2AC00D46542E0A653AB63F4ABB1, E3BE57A0EBB1194656D20C11688863A7864B06223419F688D82881F9F49604B6 ] LADF_CaptureOnly C:\Windows\system32\DRIVERS\ladfGSCamd64.sys
16:51:27.0969 0x15c8  LADF_CaptureOnly - ok
16:51:28.0019 0x15c8  [ 86DCBF8A41C78561A1DA07AB5E7B1CCC, 5AF276893B8752B5F8DE58491D54A338EE449091F06113EA07580F4461CAEA4E ] LADF_DHP2       C:\Windows\system32\DRIVERS\ladfDHP2amd64.sys
16:51:28.0022 0x15c8  LADF_DHP2 - ok
16:51:28.0060 0x15c8  [ 28CDDC7D478A6313F55077416DCBD0DE, EE4174FC9444856DF0693D1A5F16EB88352A3B012AA82D49C462980703981A7A ] LADF_RenderOnly C:\Windows\system32\DRIVERS\ladfGSRamd64.sys
16:51:28.0064 0x15c8  LADF_RenderOnly - ok
16:51:28.0098 0x15c8  [ 175C04C7813CE64616B5CB046E5E1383, 20D7BA76FCFDAD785DBFCEAB7069CEF74E142C4F6FE797C38B5BF759173CE32B ] LADF_SBVM       C:\Windows\system32\DRIVERS\ladfSBVMamd64.sys
16:51:28.0109 0x15c8  LADF_SBVM - ok
16:51:28.0161 0x15c8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:51:28.0168 0x15c8  LanmanServer - ok
16:51:28.0199 0x15c8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:51:28.0227 0x15c8  LanmanWorkstation - ok
16:51:28.0250 0x15c8  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
16:51:28.0252 0x15c8  LGBusEnum - ok
16:51:28.0278 0x15c8  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
16:51:28.0281 0x15c8  LGVirHid - ok
16:51:28.0298 0x15c8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:51:28.0301 0x15c8  lltdio - ok
16:51:28.0323 0x15c8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:51:28.0332 0x15c8  lltdsvc - ok
16:51:28.0356 0x15c8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:51:28.0359 0x15c8  lmhosts - ok
16:51:28.0387 0x15c8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
16:51:28.0391 0x15c8  LSI_FC - ok
16:51:28.0408 0x15c8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
16:51:28.0412 0x15c8  LSI_SAS - ok
16:51:28.0434 0x15c8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:51:28.0438 0x15c8  LSI_SAS2 - ok
16:51:28.0459 0x15c8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:51:28.0463 0x15c8  LSI_SCSI - ok
16:51:28.0488 0x15c8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:51:28.0493 0x15c8  luafv - ok
16:51:28.0553 0x15c8  [ 1A243DAD23BB639D47F25AB9EC51FCAD, 596A9676F38730B520F36BDA964C555F31FD9CD1A45CD5280A534C6336E344AF ] mbamchameleon   C:\Windows\system32\drivers\mbamchameleon.sys
16:51:28.0555 0x15c8  mbamchameleon - ok
16:51:28.0600 0x15c8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:51:28.0604 0x15c8  Mcx2Svc - ok
16:51:28.0620 0x15c8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
16:51:28.0623 0x15c8  megasas - ok
16:51:28.0643 0x15c8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
16:51:28.0651 0x15c8  MegaSR - ok
16:51:28.0690 0x15c8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
16:51:28.0694 0x15c8  MMCSS - ok
16:51:28.0709 0x15c8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
16:51:28.0712 0x15c8  Modem - ok
16:51:28.0728 0x15c8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:51:28.0730 0x15c8  monitor - ok
16:51:28.0735 0x15c8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:51:28.0737 0x15c8  mouclass - ok
16:51:28.0744 0x15c8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:51:28.0746 0x15c8  mouhid - ok
16:51:28.0781 0x15c8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:51:28.0785 0x15c8  mountmgr - ok
16:51:28.0821 0x15c8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:51:28.0826 0x15c8  mpio - ok
16:51:28.0833 0x15c8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:51:28.0837 0x15c8  mpsdrv - ok
16:51:28.0897 0x15c8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:51:28.0915 0x15c8  MpsSvc - ok
16:51:28.0969 0x15c8  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:51:28.0974 0x15c8  MRxDAV - ok
16:51:29.0000 0x15c8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:51:29.0005 0x15c8  mrxsmb - ok
16:51:29.0030 0x15c8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:51:29.0038 0x15c8  mrxsmb10 - ok
16:51:29.0115 0x15c8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:51:29.0119 0x15c8  mrxsmb20 - ok
16:51:29.0153 0x15c8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:51:29.0155 0x15c8  msahci - ok
16:51:29.0175 0x15c8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:51:29.0179 0x15c8  msdsm - ok
16:51:29.0203 0x15c8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
16:51:29.0209 0x15c8  MSDTC - ok
16:51:29.0230 0x15c8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:51:29.0232 0x15c8  Msfs - ok
16:51:29.0246 0x15c8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:51:29.0248 0x15c8  mshidkmdf - ok
16:51:29.0256 0x15c8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:51:29.0258 0x15c8  msisadrv - ok
16:51:29.0299 0x15c8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:51:29.0304 0x15c8  MSiSCSI - ok
16:51:29.0309 0x15c8  msiserver - ok
16:51:29.0327 0x15c8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:51:29.0329 0x15c8  MSKSSRV - ok
16:51:29.0352 0x15c8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:51:29.0354 0x15c8  MSPCLOCK - ok
16:51:29.0367 0x15c8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:51:29.0368 0x15c8  MSPQM - ok
16:51:29.0410 0x15c8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:51:29.0419 0x15c8  MsRPC - ok
16:51:29.0437 0x15c8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
16:51:29.0438 0x15c8  mssmbios - ok
16:51:29.0453 0x15c8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:51:29.0455 0x15c8  MSTEE - ok
16:51:29.0466 0x15c8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
16:51:29.0468 0x15c8  MTConfig - ok
16:51:29.0482 0x15c8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
16:51:29.0484 0x15c8  Mup - ok
16:51:29.0537 0x15c8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
16:51:29.0549 0x15c8  napagent - ok
16:51:29.0610 0x15c8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:51:29.0619 0x15c8  NativeWifiP - ok
16:51:29.0689 0x15c8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:51:29.0738 0x15c8  NDIS - ok
16:51:29.0787 0x15c8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:51:29.0789 0x15c8  NdisCap - ok
16:51:29.0793 0x15c8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:51:29.0795 0x15c8  NdisTapi - ok
16:51:29.0839 0x15c8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:51:29.0842 0x15c8  Ndisuio - ok
16:51:29.0883 0x15c8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:51:29.0888 0x15c8  NdisWan - ok
16:51:29.0928 0x15c8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:51:29.0931 0x15c8  NDProxy - ok
16:51:29.0942 0x15c8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:51:29.0944 0x15c8  NetBIOS - ok
16:51:30.0013 0x15c8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:51:30.0021 0x15c8  NetBT - ok
16:51:30.0042 0x15c8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
16:51:30.0044 0x15c8  Netlogon - ok
16:51:30.0079 0x15c8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
16:51:30.0089 0x15c8  Netman - ok
16:51:30.0218 0x15c8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:51:30.0254 0x15c8  NetMsmqActivator - ok
16:51:30.0261 0x15c8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:51:30.0264 0x15c8  NetPipeActivator - ok
16:51:30.0277 0x15c8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
16:51:30.0289 0x15c8  netprofm - ok
16:51:30.0295 0x15c8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:51:30.0298 0x15c8  NetTcpActivator - ok
16:51:30.0304 0x15c8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:51:30.0307 0x15c8  NetTcpPortSharing - ok
16:51:30.0321 0x15c8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
16:51:30.0323 0x15c8  nfrd960 - ok
16:51:30.0348 0x15c8  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:51:30.0357 0x15c8  NlaSvc - ok
16:51:30.0415 0x15c8  [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] npf             C:\Windows\system32\drivers\npf.sys
16:51:30.0417 0x15c8  npf - ok
16:51:30.0420 0x15c8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:51:30.0423 0x15c8  Npfs - ok
16:51:30.0466 0x15c8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
16:51:30.0469 0x15c8  nsi - ok
16:51:30.0485 0x15c8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:51:30.0488 0x15c8  nsiproxy - ok
16:51:30.0583 0x15c8  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:51:30.0621 0x15c8  Ntfs - ok
16:51:30.0656 0x15c8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
16:51:30.0658 0x15c8  Null - ok
16:51:30.0698 0x15c8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:51:30.0703 0x15c8  nvraid - ok
16:51:30.0737 0x15c8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:51:30.0742 0x15c8  nvstor - ok
16:51:30.0761 0x15c8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:51:30.0766 0x15c8  nv_agp - ok
16:51:30.0800 0x15c8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:51:30.0803 0x15c8  ohci1394 - ok
16:51:30.0838 0x15c8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:51:30.0847 0x15c8  p2pimsvc - ok
16:51:30.0952 0x15c8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
16:51:30.0963 0x15c8  p2psvc - ok
16:51:30.0998 0x15c8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
16:51:31.0002 0x15c8  Parport - ok
16:51:31.0042 0x15c8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:51:31.0045 0x15c8  partmgr - ok
16:51:31.0068 0x15c8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:51:31.0074 0x15c8  PcaSvc - ok
16:51:31.0089 0x15c8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
16:51:31.0095 0x15c8  pci - ok
16:51:31.0118 0x15c8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:51:31.0120 0x15c8  pciide - ok
16:51:31.0135 0x15c8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
16:51:31.0141 0x15c8  pcmcia - ok
16:51:31.0171 0x15c8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:51:31.0174 0x15c8  pcw - ok
16:51:31.0201 0x15c8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:51:31.0217 0x15c8  PEAUTH - ok
16:51:31.0297 0x15c8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:51:31.0300 0x15c8  PerfHost - ok
16:51:31.0381 0x15c8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
16:51:31.0418 0x15c8  pla - ok
16:51:31.0504 0x15c8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:51:31.0515 0x15c8  PlugPlay - ok
16:51:31.0545 0x15c8  [ 205E1B699FD3F2F9B036EEA2EC30C620, 9D5C8009BC3F6F76438FC82C3DAAA3E9CC87F74CDE841A0ADD9EF00E98DB6890 ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
16:51:31.0548 0x15c8  PnkBstrA - ok
16:51:31.0560 0x15c8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:51:31.0563 0x15c8  PNRPAutoReg - ok
16:51:31.0573 0x15c8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:51:31.0580 0x15c8  PNRPsvc - ok
16:51:31.0651 0x15c8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:51:31.0663 0x15c8  PolicyAgent - ok
16:51:31.0698 0x15c8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
16:51:31.0704 0x15c8  Power - ok
16:51:31.0729 0x15c8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:51:31.0733 0x15c8  PptpMiniport - ok
16:51:31.0760 0x15c8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
16:51:31.0763 0x15c8  Processor - ok
16:51:31.0785 0x15c8  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:51:31.0792 0x15c8  ProfSvc - ok
16:51:31.0795 0x15c8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:51:31.0797 0x15c8  ProtectedStorage - ok
16:51:31.0830 0x15c8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:51:31.0835 0x15c8  Psched - ok
16:51:31.0940 0x15c8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
16:51:31.0999 0x15c8  ql2300 - ok
16:51:32.0021 0x15c8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
16:51:32.0025 0x15c8  ql40xx - ok
16:51:32.0067 0x15c8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
16:51:32.0075 0x15c8  QWAVE - ok
16:51:32.0091 0x15c8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:51:32.0093 0x15c8  QWAVEdrv - ok
16:51:32.0106 0x15c8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:51:32.0109 0x15c8  RasAcd - ok
16:51:32.0146 0x15c8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:51:32.0149 0x15c8  RasAgileVpn - ok
16:51:32.0155 0x15c8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
16:51:32.0160 0x15c8  RasAuto - ok
16:51:32.0201 0x15c8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:51:32.0206 0x15c8  Rasl2tp - ok
16:51:32.0238 0x15c8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
16:51:32.0247 0x15c8  RasMan - ok
16:51:32.0260 0x15c8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:51:32.0263 0x15c8  RasPppoe - ok
16:51:32.0278 0x15c8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:51:32.0281 0x15c8  RasSstp - ok
16:51:32.0298 0x15c8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:51:32.0305 0x15c8  rdbss - ok
16:51:32.0321 0x15c8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:51:32.0324 0x15c8  rdpbus - ok
16:51:32.0337 0x15c8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:51:32.0339 0x15c8  RDPCDD - ok
16:51:32.0345 0x15c8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:51:32.0346 0x15c8  RDPENCDD - ok
16:51:32.0364 0x15c8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:51:32.0365 0x15c8  RDPREFMP - ok
16:51:32.0400 0x15c8  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:51:32.0401 0x15c8  RdpVideoMiniport - ok
16:51:32.0433 0x15c8  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:51:32.0438 0x15c8  RDPWD - ok
16:51:32.0472 0x15c8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:51:32.0477 0x15c8  rdyboost - ok
16:51:32.0527 0x15c8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:51:32.0531 0x15c8  RemoteAccess - ok
16:51:32.0599 0x15c8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:51:32.0604 0x15c8  RemoteRegistry - ok
16:51:32.0648 0x15c8  [ 6D850FAD4CC9498D1F382B77BA4035CC, 689B8D90BFA404F2ABEF3F7CD098382DAA81A4CF6BF3784C9CC24DAF33F10660 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
16:51:32.0652 0x15c8  RimUsb - ok
16:51:32.0690 0x15c8  [ 344604E6913BD6E4EAEC34AF2E0943D7, 4ADFE13AFECD0F263A27F647FC6BA1AB47B2A28F9D70FCAC90F23D0A2FB8C493 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
16:51:32.0693 0x15c8  RimVSerPort - ok
16:51:32.0720 0x15c8  [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
16:51:32.0723 0x15c8  ROOTMODEM - ok
16:51:32.0735 0x15c8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:51:32.0739 0x15c8  RpcEptMapper - ok
16:51:32.0778 0x15c8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
16:51:32.0781 0x15c8  RpcLocator - ok
16:51:32.0840 0x15c8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
16:51:32.0850 0x15c8  RpcSs - ok
16:51:32.0866 0x15c8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:51:32.0870 0x15c8  rspndr - ok
16:51:32.0952 0x15c8  [ D2D055E7ED70A5EE885D17D35DF97E80, 51781E55EEE111140A261822D3F78D76AD288E9DDF8578E236358E0AEB872C2F ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:51:32.0975 0x15c8  RTL8167 - ok
16:51:32.0981 0x15c8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
16:51:32.0983 0x15c8  SamSs - ok
16:51:33.0020 0x15c8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:51:33.0023 0x15c8  sbp2port - ok
16:51:33.0044 0x15c8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:51:33.0050 0x15c8  SCardSvr - ok
16:51:33.0088 0x15c8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:51:33.0090 0x15c8  scfilter - ok
16:51:33.0147 0x15c8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
16:51:33.0173 0x15c8  Schedule - ok
16:51:33.0224 0x15c8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:51:33.0227 0x15c8  SCPolicySvc - ok
16:51:33.0306 0x15c8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:51:33.0312 0x15c8  SDRSVC - ok
16:51:33.0456 0x15c8  [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
16:51:33.0485 0x15c8  SDScannerService - ok
16:51:33.0647 0x15c8  [ 68D6C7F99BC73B88954D844FCCBEB2A0, F746861B103C8BE8EA234B9FCFBBDD2412C79FB65F2F1E0F5E6EBC0B34905FF1 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
16:51:33.0684 0x15c8  SDUpdateService - ok
16:51:33.0749 0x15c8  [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
16:51:33.0753 0x15c8  SDWSCService - ok
16:51:33.0763 0x15c8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:51:33.0764 0x15c8  secdrv - ok
16:51:33.0772 0x15c8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
16:51:33.0775 0x15c8  seclogon - ok
16:51:33.0814 0x15c8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
16:51:33.0817 0x15c8  SENS - ok
16:51:33.0843 0x15c8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:51:33.0846 0x15c8  SensrSvc - ok
16:51:33.0864 0x15c8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:51:33.0866 0x15c8  Serenum - ok
16:51:33.0891 0x15c8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:51:33.0895 0x15c8  Serial - ok
16:51:33.0906 0x15c8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
16:51:33.0908 0x15c8  sermouse - ok
16:51:33.0953 0x15c8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
16:51:33.0957 0x15c8  SessionEnv - ok
16:51:33.0985 0x15c8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:51:33.0987 0x15c8  sffdisk - ok
16:51:34.0013 0x15c8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:51:34.0015 0x15c8  sffp_mmc - ok
16:51:34.0024 0x15c8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:51:34.0026 0x15c8  sffp_sd - ok
16:51:34.0063 0x15c8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
16:51:34.0065 0x15c8  sfloppy - ok
16:51:34.0152 0x15c8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:51:34.0162 0x15c8  SharedAccess - ok
16:51:34.0289 0x15c8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:51:34.0300 0x15c8  ShellHWDetection - ok
16:51:34.0320 0x15c8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:51:34.0323 0x15c8  SiSRaid2 - ok
16:51:34.0342 0x15c8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
16:51:34.0346 0x15c8  SiSRaid4 - ok
16:51:34.0425 0x15c8  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
16:51:34.0433 0x15c8  SkypeUpdate - ok
16:51:34.0468 0x15c8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:51:34.0472 0x15c8  Smb - ok
16:51:34.0534 0x15c8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:51:34.0537 0x15c8  SNMPTRAP - ok
16:51:34.0547 0x15c8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:51:34.0549 0x15c8  spldr - ok
16:51:34.0612 0x15c8  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
16:51:34.0626 0x15c8  Spooler - ok
16:51:34.0781 0x15c8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:51:34.0897 0x15c8  sppsvc - ok
16:51:34.0957 0x15c8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:51:34.0961 0x15c8  sppuinotify - ok
16:51:35.0047 0x15c8  [ 74D30C2EF66C2EB19F17ED5423AA8038, F79AB2B2B60620565FB2169255F95F4B37F6113F0AF776D1BAD02681EBE0DB54 ] sptd            C:\Windows\System32\Drivers\sptd.sys
16:51:35.0058 0x15c8  sptd - ok
16:51:35.0099 0x15c8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:51:35.0111 0x15c8  srv - ok
16:51:35.0236 0x15c8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:51:35.0247 0x15c8  srv2 - ok
16:51:35.0324 0x15c8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:51:35.0329 0x15c8  srvnet - ok
16:51:35.0439 0x15c8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:51:35.0462 0x15c8  SSDPSRV - ok
16:51:35.0657 0x15c8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:51:35.0714 0x15c8  SstpSvc - ok
16:51:35.0719 0x15c8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:51:35.0721 0x15c8  SstpSvc - ok
16:51:36.0041 0x15c8  [ B5C26A6A92C9A6CD64399D2B06D29464, 6CAF09892D4C516361125AAF5387D5BF306EC26133EE45DBBC35C8B6190BAD24 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:51:36.0064 0x15c8  Steam Client Service - ok
16:51:36.0121 0x15c8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
16:51:36.0123 0x15c8  stexstor - ok
16:51:36.0284 0x15c8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
16:51:36.0299 0x15c8  stisvc - ok
16:51:36.0343 0x15c8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
16:51:36.0345 0x15c8  swenum - ok
16:51:36.0382 0x15c8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
16:51:36.0395 0x15c8  swprv - ok
16:51:36.0542 0x15c8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
16:51:36.0594 0x15c8  SysMain - ok
16:51:36.0656 0x15c8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:51:36.0670 0x15c8  TabletInputService - ok
16:51:36.0766 0x15c8  [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
16:51:36.0782 0x15c8  tap0901 - ok
16:51:37.0067 0x15c8  [ 17911685D6D047CE32B2C6EE8A6AFAFA, 867632574F13B5E15F7C4154464C33A8A86C995376A292C7A22E08C23E32752B ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
16:51:38.0237 0x15c8  taphss6 - ok
16:51:38.0566 0x15c8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:51:38.0743 0x15c8  TapiSrv - ok
16:51:39.0165 0x15c8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
16:51:39.0169 0x15c8  TBS - ok
16:51:39.0665 0x15c8  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:51:39.0708 0x15c8  Tcpip - ok
16:51:39.0829 0x15c8  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:51:39.0861 0x15c8  TCPIP6 - ok
16:51:39.0950 0x15c8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:51:39.0983 0x15c8  tcpipreg - ok
16:51:40.0160 0x15c8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:51:40.0162 0x15c8  TDPIPE - ok
16:51:40.0228 0x15c8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:51:40.0229 0x15c8  TDTCP - ok
16:51:40.0282 0x15c8  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:51:40.0287 0x15c8  tdx - ok
16:51:40.0343 0x15c8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
16:51:40.0346 0x15c8  TermDD - ok
16:51:40.0451 0x15c8  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
16:51:40.0467 0x15c8  TermService - ok
16:51:40.0482 0x15c8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
16:51:40.0486 0x15c8  Themes - ok
16:51:40.0534 0x15c8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
16:51:40.0537 0x15c8  THREADORDER - ok
16:51:40.0557 0x15c8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
16:51:40.0562 0x15c8  TrkWks - ok
16:51:40.0671 0x15c8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:51:40.0676 0x15c8  TrustedInstaller - ok
16:51:40.0730 0x15c8  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:51:40.0732 0x15c8  tssecsrv - ok
16:51:40.0766 0x15c8  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:51:40.0770 0x15c8  TsUsbFlt - ok
16:51:40.0811 0x15c8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:51:40.0815 0x15c8  tunnel - ok
16:51:40.0861 0x15c8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
16:51:40.0864 0x15c8  uagp35 - ok
16:51:40.0993 0x15c8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:51:41.0003 0x15c8  udfs - ok
16:51:41.0038 0x15c8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:51:41.0041 0x15c8  UI0Detect - ok
16:51:41.0074 0x15c8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:51:41.0077 0x15c8  uliagpkx - ok
16:51:41.0114 0x15c8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
16:51:41.0135 0x15c8  umbus - ok
16:51:41.0426 0x15c8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
16:51:41.0429 0x15c8  UmPass - ok
16:51:41.0459 0x15c8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
16:51:41.0470 0x15c8  upnphost - ok
16:51:41.0539 0x15c8  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
16:51:41.0541 0x15c8  USBAAPL64 - ok
16:51:41.0572 0x15c8  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
16:51:41.0575 0x15c8  usbaudio - ok
16:51:41.0599 0x15c8  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:51:41.0602 0x15c8  usbccgp - ok
16:51:41.0639 0x15c8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:51:41.0642 0x15c8  usbcir - ok
16:51:41.0686 0x15c8  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
16:51:41.0689 0x15c8  usbehci - ok
16:51:41.0736 0x15c8  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:51:41.0745 0x15c8  usbhub - ok
16:51:41.0832 0x15c8  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:51:41.0834 0x15c8  usbohci - ok
16:51:41.0884 0x15c8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:51:41.0887 0x15c8  usbprint - ok
16:51:41.0915 0x15c8  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
16:51:41.0918 0x15c8  usbscan - ok
16:51:41.0935 0x15c8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:51:41.0938 0x15c8  USBSTOR - ok
16:51:41.0969 0x15c8  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:51:41.0971 0x15c8  usbuhci - ok
16:51:42.0010 0x15c8  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
16:51:42.0016 0x15c8  usbvideo - ok
16:51:42.0066 0x15c8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
16:51:42.0070 0x15c8  UxSms - ok
16:51:42.0086 0x15c8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
16:51:42.0089 0x15c8  VaultSvc - ok
16:51:42.0110 0x15c8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:51:42.0113 0x15c8  vdrvroot - ok
16:51:42.0189 0x15c8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
16:51:42.0264 0x15c8  vds - ok
16:51:42.0297 0x15c8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:51:42.0299 0x15c8  vga - ok
16:51:42.0313 0x15c8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:51:42.0314 0x15c8  VgaSave - ok
16:51:42.0357 0x15c8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:51:42.0364 0x15c8  vhdmp - ok
16:51:42.0395 0x15c8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:51:42.0396 0x15c8  viaide - ok
16:51:42.0411 0x15c8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:51:42.0414 0x15c8  volmgr - ok
16:51:42.0471 0x15c8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:51:42.0480 0x15c8  volmgrx - ok
16:51:42.0503 0x15c8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:51:42.0511 0x15c8  volsnap - ok
16:51:42.0546 0x15c8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
16:51:42.0551 0x15c8  vsmraid - ok
16:51:42.0786 0x15c8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
16:51:42.0845 0x15c8  VSS - ok
16:51:42.0881 0x15c8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:51:42.0892 0x15c8  vwifibus - ok
16:51:43.0213 0x15c8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
16:51:43.0298 0x15c8  W32Time - ok
16:51:43.0625 0x15c8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
16:51:44.0115 0x15c8  WacomPen - ok
16:51:44.0147 0x15c8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:51:44.0151 0x15c8  WANARP - ok
16:51:45.0061 0x15c8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:51:45.0237 0x15c8  Wanarpv6 - ok
16:51:45.0824 0x15c8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
16:51:45.0867 0x15c8  wbengine - ok
16:51:45.0896 0x15c8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:51:45.0902 0x15c8  WbioSrvc - ok
16:51:45.0953 0x15c8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:51:45.0964 0x15c8  wcncsvc - ok
16:51:45.0985 0x15c8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:51:45.0988 0x15c8  WcsPlugInService - ok
16:51:46.0003 0x15c8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
16:51:46.0023 0x15c8  Wd - ok
16:51:46.0164 0x15c8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:51:46.0182 0x15c8  Wdf01000 - ok
16:51:46.0200 0x15c8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:51:46.0204 0x15c8  WdiServiceHost - ok
16:51:46.0208 0x15c8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:51:46.0211 0x15c8  WdiSystemHost - ok
16:51:46.0271 0x15c8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
16:51:46.0291 0x15c8  WebClient - ok
16:51:46.0301 0x15c8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:51:46.0308 0x15c8  Wecsvc - ok
16:51:46.0337 0x15c8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:51:46.0341 0x15c8  wercplsupport - ok
16:51:46.0371 0x15c8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:51:46.0375 0x15c8  WerSvc - ok
16:51:46.0397 0x15c8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:51:46.0412 0x15c8  WfpLwf - ok
16:51:46.0434 0x15c8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:51:46.0436 0x15c8  WIMMount - ok
16:51:46.0484 0x15c8  WinDefend - ok
16:51:46.0490 0x15c8  WinHttpAutoProxySvc - ok
16:51:46.0601 0x15c8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:51:46.0608 0x15c8  Winmgmt - ok
16:51:47.0105 0x15c8  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:51:47.0237 0x15c8  WinRM - ok
16:51:47.0273 0x15c8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:51:47.0276 0x15c8  WinUsb - ok
16:51:47.0331 0x15c8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:51:47.0356 0x15c8  Wlansvc - ok
16:51:47.0391 0x15c8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:51:47.0393 0x15c8  WmiAcpi - ok
16:51:47.0450 0x15c8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:51:47.0456 0x15c8  wmiApSrv - ok
16:51:47.0472 0x15c8  WMPNetworkSvc - ok
16:51:47.0482 0x15c8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:51:47.0485 0x15c8  WPCSvc - ok
16:51:47.0538 0x15c8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:51:47.0542 0x15c8  WPDBusEnum - ok
16:51:47.0554 0x15c8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:51:47.0556 0x15c8  ws2ifsl - ok
16:51:47.0589 0x15c8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
16:51:47.0752 0x15c8  wscsvc - ok
16:51:47.0757 0x15c8  WSearch - ok
16:51:48.0229 0x15c8  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:51:48.0306 0x15c8  wuauserv - ok
16:51:48.0596 0x15c8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:51:48.0896 0x15c8  WudfPf - ok
16:51:48.0920 0x15c8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:51:48.0927 0x15c8  WUDFRd - ok
16:51:48.0980 0x15c8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:51:48.0985 0x15c8  wudfsvc - ok
16:51:49.0096 0x15c8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:51:49.0153 0x15c8  WwanSvc - ok
16:51:49.0271 0x15c8  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
16:51:49.0275 0x15c8  xusb21 - ok
16:51:49.0383 0x15c8  [ 81C2D8DC20A36636A644EB63D985F824, 71438E12BA5BE388B2EAE8AEDB19AF314714132F8F91B5FA3BE5C584AEF464D8 ] {3f538614-b636-4023-9ec2-564ada4b07b3}Gw64 C:\Windows\system32\drivers\{3f538614-b636-4023-9ec2-564ada4b07b3}Gw64.sys
16:51:49.0386 0x15c8  {3f538614-b636-4023-9ec2-564ada4b07b3}Gw64 - ok
16:51:49.0387 0x15c8  ================ Scan global ===============================
16:51:49.0579 0x15c8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
16:51:49.0651 0x15c8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:51:49.0664 0x15c8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:51:49.0690 0x15c8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:51:49.0784 0x15c8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
16:51:49.0793 0x15c8  [ Global ] - ok
16:51:49.0794 0x15c8  ================ Scan MBR ==================================
16:51:49.0819 0x15c8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:51:51.0845 0x15c8  \Device\Harddisk0\DR0 - ok
16:51:51.0845 0x15c8  ================ Scan VBR ==================================
16:51:51.0848 0x15c8  [ C8A982E1C406822FB989FB83DD6DED53 ] \Device\Harddisk0\DR0\Partition1
16:51:51.0996 0x15c8  \Device\Harddisk0\DR0\Partition1 - ok
16:51:52.0029 0x15c8  [ 2868929FFA353A7CA073B5302FC345FA ] \Device\Harddisk0\DR0\Partition2
16:51:52.0165 0x15c8  \Device\Harddisk0\DR0\Partition2 - ok
16:51:52.0168 0x15c8  [ 3E015E91F9B2BD59CF5C5A34E008EE0A ] \Device\Harddisk0\DR0\Partition3
16:51:52.0169 0x15c8  \Device\Harddisk0\DR0\Partition3 - ok
16:51:52.0169 0x15c8  ================ Scan generic autorun ======================
16:51:54.0038 0x15c8  [ 2AA3480A3980B77338057E55CF8F5469, 508A75BBBDBD4714CC31F74607B79D48B0CF12C2CA36AFDD184B1CEDB0D842F5 ] C:\Program Files\Logitech Gaming Software\LCore.exe
16:51:54.0347 0x15c8  Launch LCore - ok
16:51:56.0250 0x15c8  [ 47D99FEC44A9E082B2D761AB5A938CA8, FF8CAD5CD331A7DAFAA616C530F500E74663EC86BB832032D2EFD3F77EBF75FF ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:51:57.0445 0x15c8  RTHDVCPL - ok
16:51:57.0909 0x15c8  [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
16:51:57.0916 0x15c8  AVP - ok
16:51:58.0482 0x15c8  [ 96835FC19D90ADAFCA5D18289D5983AB, C628E4D8CDCAE8EB34A62C75AC644A3108C4DBB2FFE63BCA518A0005E0C9B593 ] C:\Program Files (x86)\Razer\Mamba\RazerTray.exe
16:51:58.0555 0x15c8  Razer Mamba Driver - ok
16:51:59.0006 0x15c8  [ 16598A9758F386F82D2C447C70C95D10, 0A698135EFC195C359702AA76897B9C67712FDE0A54B51587134B65510B154ED ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
16:51:59.0024 0x15c8  StartCCC - ok
16:51:59.0712 0x15c8  [ 62671FD60D37214538CC44D0D603BC21, 121D9F9658A5C462D7597A6EFD54A769EB40E8B4A5A16382B2BC0D4434970559 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
16:51:59.0755 0x15c8  Wondershare Helper Compact.exe - ok
16:51:59.0866 0x15c8  [ 603668084332DDB58D8C5AACE30B04FC, B6FA6BBE18D433F41F96640726444B7CB9D669BAE87A545E1408391B9469EDB9 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
16:51:59.0871 0x15c8  iTunesHelper - ok
16:52:01.0062 0x15c8  [ 7EE68A122ED08E4AAD8DA551E34D2515, B3C9AB270AF595D3DBAFBF4A312B96CBF00C16F0A03CCC86BE56825CD1EB7143 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
16:52:01.0155 0x15c8  SDTray - ok
16:52:01.0293 0x15c8  [ 308F2EE28005510DE616409148CF077B, A2126CB185B0053086BDD6F0A16A503F6CA629AC677E4B7AE6D43C770061D087 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
16:52:01.0300 0x15c8  SunJavaUpdateSched - ok
16:52:01.0617 0x15c8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:52:01.0645 0x15c8  Sidebar - ok
16:52:01.0681 0x15c8  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:52:01.0685 0x15c8  mctadmin - ok
16:52:01.0714 0x15c8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:52:01.0733 0x15c8  Sidebar - ok
16:52:01.0739 0x15c8  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:52:01.0741 0x15c8  mctadmin - ok
16:52:01.0930 0x15c8  [ 42E974C4428C22980B17547D0AE32A83, 33C55B98C9001F2F999025E43BCE6ACC2A8E95FD5D6B5BB7DF2E31C88828A210 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGDE.EXE
16:52:01.0938 0x15c8  EPSON SX218 Series - ok
16:52:02.0433 0x15c8  [ 6FA1F6B8090F04D581E16212886BD861, 1A0D90C6BC9EBE319BF4524FA0EA326073A256252377B860AF48AECE46B6DAC2 ] C:\Users\Paul\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
16:52:02.0465 0x15c8  Spotify Web Helper - ok
16:52:02.0693 0x15c8  [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
16:52:02.0774 0x15c8  DAEMON Tools Lite - ok
16:52:02.0778 0x15c8  Waiting for KSN requests completion. In queue: 14
16:52:03.0779 0x15c8  Waiting for KSN requests completion. In queue: 14
16:52:04.0779 0x15c8  Waiting for KSN requests completion. In queue: 14
16:52:06.0158 0x15c8  AV detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
16:52:06.0262 0x15c8  FW detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\wmifw.exe ( 13.0.1.4190 ), 0x41010 ( enabled )
16:52:09.0319 0x15c8  ============================================================
16:52:09.0320 0x15c8  Scan finished
16:52:09.0320 0x15c8  ============================================================
16:52:09.0327 0x1698  Detected object count: 0
16:52:09.0327 0x1698  Actual detected object count: 0
16:52:16.0032 0x1764  Deinitialize success
Hier ist der TDSSKiller er hat nichts gefunden aber hab sie tortzdem mal reingepostet

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.08.21.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.17054
Paul :: PAUL-PC [administrator]

21.08.2014 16:51:53
mbar-log-2014-08-21 (16-51-53).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 304514
Time elapsed: 19 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\System32\drivers\{3f538614-b636-4023-9ec2-564ada4b07b3}Gw64.sys (PUP.Optional.Sanbreel.A) -> Delete on reboot. [81c2d8dc20a36636a644eb63d985f824]

Physical Sectors Detected: 0
(No malicious items detected)

(end)
Hier ist der mbar.exe Text

Alt 22.08.2014, 17:07   #12
schrauber
/// the machine
/// TB-Ausbilder
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Jo, das ist nur noch bissl Adware.

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 22.08.2014, 19:34   #13
Punschiii
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Warum muss ich das alle downloaden hilft mir das den Key-Logger zu entfernen oder brauchst du das um zu wissen ob der Key-Logger noch da ist oder nicht ?

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Paul on 22.08.2014 at 20:16:48,53
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\livesupport_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\optprostart_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\systweakasp_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\LyricsSay-1-codedownloader_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_hero-editor_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_fuer_landwirtschaftssimulator-2011_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_fuer_minecraft-skinedit_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APNSetup_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\LyricsSay-1-codedownloader_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_hero-editor_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_fuer_landwirtschaftssimulator-2011_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_fuer_minecraft-skinedit_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\systweak"
Successfully deleted: [Folder] "C:\Users\Paul\AppData\Roaming\advanced system protector"
Successfully deleted: [Folder] "C:\Users\Paul\AppData\Roaming\dvdvideosoftiehelpers"
Successfully deleted: [Folder] "C:\Users\Paul\AppData\Roaming\newnext.me"
Successfully deleted: [Folder] "C:\Users\Paul\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Paul\AppData\Roaming\similarsites"
Successfully deleted: [Folder] "C:\Users\Paul\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\Paul\appdata\locallow\sitefinder"
Successfully deleted: [Folder] "C:\Program Files (x86)\dll-files.com fixer"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 22.08.2014 at 20:31:50,34
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Hier hast du schonmal den Log von JRT das andere kommt auch gleich


Code:
ATTFilter
# AdwCleaner v3.308 - Bericht erstellt am 22/08/2014 um 20:52:20
# Aktualisiert 20/08/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Paul - PAUL-PC
# Gestartet von : C:\Users\Paul\Desktop\adwcleaner_3.308.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : {3f538614-b636-4023-9ec2-564ada4b07b3}Gw64

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\cosstminn
Ordner Gelöscht : C:\ProgramData\Downloaid ekeepEr
Ordner Gelöscht : C:\Program Files (x86)\eSupport.com
Ordner Gelöscht : C:\Program Files (x86)\supporter
Ordner Gelöscht : C:\Program Files (x86)\cosstminn
Ordner Gelöscht : C:\Users\Paul\AppData\Local\eSupport.com
Ordner Gelöscht : C:\Users\Paul\AppData\Local\genienext
Ordner Gelöscht : C:\Users\Paul\AppData\Local\Mobogenie
Ordner Gelöscht : C:\Users\Paul\AppData\Local\webplayer
Ordner Gelöscht : C:\Users\Paul\AppData\Roaming\Oxy
Ordner Gelöscht : C:\Users\Paul\AppData\Roaming\Windows Net Data
Ordner Gelöscht : C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
Ordner Gelöscht : C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oxy
Ordner Gelöscht : C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Users\Paul\AppData\Roaming\regsvr32.exe_log.txt
Datei Gelöscht : C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk

***** [ Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\lpoimibckejjdjcfbdnajaicnklhfplh
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\mkcedibhemacmilmkpndpkoidlnmgngg
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\biclient_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\updateglindorus_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\updateglindorus_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\utilglindorus_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\utilglindorus_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\vopackage_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajam_download_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gelöscht : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{be0fb33b}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32C53681-8E69-4659-8320-7422685BD486}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{596EAA89-F3D2-4174-9BD9-F7D79C744CDA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{32C53681-8E69-4659-8320-7422685BD486}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Escolade
Schlüssel Gelöscht : HKCU\Software\InstalledThirdPartyPrograms
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Schlüssel Gelöscht : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Schlüssel Gelöscht : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Schlüssel Gelöscht : HKLM\SOFTWARE\Uniblue
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.17054


-\\ Google Chrome v36.0.1985.143

[ Datei : C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=M00E0307C-A1CD-4032-AFD7-15EA73016568&SearchSource=58&CUI=&UM=5&UP=SPD3967F35-B21E-4817-978A-277E58004002&q={searchTerms}&SSPV=
Gelöscht [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=M00E0307C-A1CD-4032-AFD7-15EA73016568&SearchSource=58&CUI=&UM=5&UP=SPD3967F35-B21E-4817-978A-277E58004002&q={searchTerms}&SSPV=
Gelöscht [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Gelöscht [Extension] : flpcjncodpafbgdpnkljologafpionhb
Gelöscht [Extension] : gkojfkhlekighikafcpjkiklfbnlmeio
Gelöscht [Extension] : lpoimibckejjdjcfbdnajaicnklhfplh

*************************

AdwCleaner[R0].txt - [7155 octets] - [22/08/2014 20:48:49]
AdwCleaner[S0].txt - [6679 octets] - [22/08/2014 20:52:20]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6739 octets] ##########


Hier ist der andere Log hoffe du kannst mir helfen
Geändert von Punschiii (22.08.2014 um 20:02 Uhr)

Alt 23.08.2014, 16:35   #14
schrauber
/// the machine
/// TB-Ausbilder
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Weil wir damit die ganze Adware entfernt haben. Jetzt machen wir noch nen Kontrollscan dann sind wir durch.


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.08.2014, 09:19   #15
Punschiii
 
Keylogger sicher weg ? - Standard

Keylogger sicher weg ?


Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=2342710295f232479069632bbb78d671
# engine=19802
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=false
# utc_time=2014-08-23 04:38:19
# local_time=2014-08-23 06:38:19 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Kaspersky Internet Security'
# compatibility_mode=1291 16777213 100 99 27214 63578221 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 25759 160441749 0 0
# scanned=5742
# found=2
# cleaned=0
# scan_time=265
sh=77C8C9E39FCDEC45260379A294461E88A3F2EAD4 ft=1 fh=c71c0011e0f291fb vn="Variante von Win64/SProtector.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\supporter\Supporter_x64.dll.vir"
sh=8C16C4BB963ABEDFF13717A74CF31104244ED2D7 ft=1 fh=4222af6c7e742501 vn="MSIL/Adware.OxyPumper.B Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Paul\AppData\Roaming\Oxy\Updater.exe.vir"
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
all ok
Hier ist der Eset Scann Log



Code:
ATTFilter
 Results of screen317's Security Check version 0.99.87  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10 Out of date! 
``````````````Antivirus/Firewall Check:`````````````` 
Kaspersky Internet Security   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Spybot - Search & Destroy 
 Java 7 Update 67  
 Adobe Flash Player 14.0.0.145  
 Google Chrome 36.0.1985.125  
 Google Chrome 36.0.1985.143  
````````Process Check: objlist.exe by Laurent````````  
 Spybot Teatimer.exe is disabled! 
 Kaspersky Lab Kaspersky Internet Security 2013 avp.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

Hier ist der Security Check und eine frische FRST.log


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-08-2014
Ran by Paul (administrator) on PAUL-PC on 23-08-2014 18:32:06
Running from C:\Users\Paul\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
() C:\Windows\System32\PnkBstrA.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Spotify Ltd) C:\Users\Paul\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Razer USA Ltd) C:\Program Files (x86)\Razer\Mamba\RazerTray.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ESET) C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
() C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8290584 2013-08-01] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-07-30] (Realtek Semiconductor)
HKLM-x32\...\Run: [AVP] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-12-28] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Razer Mamba Driver] => C:\Program Files (x86)\Razer\Mamba\RazerTray.exe [3278728 2009-12-15] (Razer USA Ltd)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1980416 2013-12-18] (Wondershare)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-09-22] (Microsoft Corporation)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\Run: [EPSON SX218 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGDE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\Run: [Spotify Web Helper] => C:\Users\Paul\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1178168 2014-07-22] (Spotify Ltd)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_Plugin.exe [851632 2014-07-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-895077429-3266421892-1986878405-1000\...\Policies\Explorer: [DisallowRun] 1
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDD5E6BB5AFB6CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/
HKCU\Software\Microsoft\Internet Explorer\Main,start page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - Default Value = {CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D}
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-12-28]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-12-28]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-12-28]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-12-28]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-12-28]

Chrome: 
=======
CHR HomePage: https://www.google.de/
CHR StartupUrls: "https://www.google.de/"
CHR DefaultSearchKeyword: trovi.com
CHR DefaultSearchProvider: Trovi search
CHR DefaultSearchURL: hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=M00E0307C-A1CD-4032-AFD7-15EA73016568&SearchSource=58&CUI=&UM=5&UP=SPD3967F35-B21E-4817-978A-277E58004002&q={searchTerms}&SSPV=
CHR DefaultSuggestURL: hxxp://suggest.seccint.com/CSuggestJson.ashx?prefix={searchTerms}
CHR Extension: (ProxFlow) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2014-06-26]
CHR Extension: (BetterTTV) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2014-07-23]
CHR Extension: (Google Docs) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-26]
CHR Extension: (Google Drive) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-26]
CHR Extension: (YouTube) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-26]
CHR Extension: (GMX MailCheck) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\camnampocfohlcgbajligmemmabnljcm [2014-08-22]
CHR Extension: (Rainbow Forest (SHERIFFF)) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfdjilcpogpekcjghekpjffcoaaimjid [2014-05-26]
CHR Extension: (Google-Suche) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-26]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-05-26]
CHR Extension: (AdBlock) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-26]
CHR Extension: (Hola Besseres Internet) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2014-07-21]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-05-26]
CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-05-26]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-05-26]
CHR Extension: (Google Wallet) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-26]
CHR Extension: (YouTube Unblocker) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-06-26]
CHR Extension: (Google Mail) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-26]
CHR Extension: (Anti-Banner) - C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-05-26]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2013-05-16]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2013-05-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-12-28] (Kaspersky Lab ZAO)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-10-10] () [File not signed]
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2013-12-20] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2013-12-20] (BlueStack Systems, Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-05-23] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-04-27] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [114448 2013-12-20] (BlueStack Systems)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-06-01] (Disc Soft Ltd)
S3 EagleX64; No ImagePath
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-12-28] (Kaspersky Lab ZAO)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [91008 2014-05-20] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [628320 2014-05-20] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-12-28] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-12-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-12-28] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-12-28] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-05-16] (Kaspersky Lab ZAO)
S3 LADF_DHP2; C:\Windows\System32\DRIVERS\ladfDHP2amd64.sys [62168 2010-09-29] (Logitech)
S3 LADF_SBVM; C:\Windows\System32\DRIVERS\ladfSBVMamd64.sys [377176 2010-09-29] (Logitech)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [78336 2013-01-03] (Research In Motion Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-07-14] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-01-15] (Anchorfree Inc.)
U3 atnw49xn; C:\Windows\System32\Drivers\atnw49xn.sys [0 ] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-23 18:32 - 2014-08-23 18:32 - 00021156 _____ () C:\Users\Paul\Desktop\FRST.txt
2014-08-23 18:31 - 2014-08-23 18:31 - 02103296 _____ (Farbar) C:\Users\Paul\Desktop\FRST64.exe
2014-08-23 18:30 - 2014-08-23 18:31 - 02103296 _____ (Farbar) C:\Users\Paul\Downloads\FRST64.exe
2014-08-23 18:24 - 2014-08-23 18:24 - 02347384 _____ (ESET) C:\Users\Paul\Desktop\esetsmartinstaller_deu.exe
2014-08-23 18:24 - 2014-08-23 18:24 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-23 12:57 - 2014-08-23 12:56 - 00004918 _____ () C:\Users\Paul\Desktop\staiy_cs-go_cfg.txt
2014-08-22 20:55 - 2014-08-23 11:04 - 00000112 _____ () C:\Windows\setupact.log
2014-08-22 20:55 - 2014-08-22 20:55 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-22 20:54 - 2014-08-22 20:54 - 00000808 _____ () C:\Windows\PFRO.log
2014-08-22 20:49 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-08-22 20:48 - 2014-08-22 20:52 - 00000000 ___DC () C:\AdwCleaner
2014-08-22 20:16 - 2014-08-22 20:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-22 18:33 - 2014-08-22 18:33 - 00343535 _____ () C:\Users\Paul\Documents\ts3_clientui-win64-1394624943-2014-08-22 18_33_29.849959.dmp
2014-08-22 18:32 - 2014-08-22 18:33 - 00325693 _____ () C:\Users\Paul\Documents\ts3_clientui-win64-1394624943-2014-08-22 18_32_54.283924.dmp
2014-08-21 16:51 - 2014-08-22 09:58 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-08-21 16:51 - 2014-08-21 17:22 - 00128728 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-21 16:51 - 2014-08-21 16:51 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-21 16:48 - 2014-08-21 17:21 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-17 11:24 - 2014-08-23 18:32 - 00000000 ___DC () C:\FRST
2014-08-16 10:42 - 2014-08-16 10:42 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Oracle
2014-08-16 10:41 - 2014-08-16 10:41 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-16 10:41 - 2014-08-16 10:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-16 10:33 - 2014-08-16 10:33 - 00000000 ____D () C:\Users\Paul\AppData\Local\Adobe
2014-08-16 00:36 - 2014-08-16 00:36 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Auslogics
2014-08-16 00:35 - 2014-08-16 00:35 - 00001286 _____ () C:\Users\Paul\Desktop\Auslogics Disk Defrag Professional.lnk
2014-08-15 18:25 - 2014-08-15 20:26 - 00000000 ____D () C:\Program Files\Recuva
2014-08-15 17:53 - 2014-08-15 17:53 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
2014-08-15 17:53 - 2014-08-15 17:53 - 00000000 ____D () C:\Program Files (x86)\Convar
2014-08-15 17:49 - 2014-08-15 17:49 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-08-14 19:33 - 2014-08-14 19:33 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-08-14 19:33 - 2014-08-14 19:33 - 00000628 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-08-14 19:33 - 2014-08-14 19:33 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-08-14 19:32 - 2014-08-15 17:23 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-14 19:32 - 2014-08-14 19:37 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-14 19:32 - 2014-08-14 19:32 - 00001395 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-08-14 19:32 - 2014-08-14 19:32 - 00001383 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-08-14 19:32 - 2014-08-14 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-08-14 19:32 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-08-14 16:30 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 16:30 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 16:30 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 16:30 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 16:30 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 16:30 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 16:30 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 16:30 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 16:28 - 2014-07-24 14:11 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 16:28 - 2014-07-24 14:10 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 16:28 - 2014-07-24 14:10 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 16:28 - 2014-07-24 14:09 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 16:28 - 2014-07-24 14:09 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 16:28 - 2014-07-24 12:52 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-14 16:28 - 2014-07-24 12:52 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-14 16:28 - 2014-07-24 12:51 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-14 16:28 - 2014-07-24 12:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-14 16:28 - 2014-07-24 12:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 16:28 - 2014-07-24 12:29 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-14 16:28 - 2014-07-24 11:37 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-14 16:28 - 2014-07-24 11:32 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-14 16:27 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 16:27 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-14 16:27 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 16:27 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 16:27 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 16:27 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 16:27 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-14 16:27 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-14 16:27 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 16:27 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-14 16:27 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 16:27 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 16:27 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-14 16:27 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 16:27 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-14 16:27 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-14 16:27 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-14 16:26 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 16:25 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-14 16:25 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-14 16:25 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-14 16:25 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 16:25 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-14 16:22 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 16:22 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-14 16:20 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-14 16:20 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-10 12:57 - 2014-08-10 12:57 - 00000000 ____D () C:\Program Files\WinPcap
2014-08-10 12:56 - 2014-08-15 17:52 - 00000000 ____D () C:\ProgramData\Freemake
2014-08-10 12:56 - 2014-08-15 17:52 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-08-10 12:56 - 2014-08-10 13:08 - 00000000 ____D () C:\Users\Paul\Documents\Freemake
2014-08-02 14:29 - 2014-08-02 14:29 - 00000000 ____D () C:\Users\Paul\AppData\Local\master131
2014-08-02 14:20 - 2014-08-02 14:20 - 00000000 ____D () C:\Windows\RazorDOX
2014-08-02 13:19 - 2014-08-02 13:19 - 00000000 ____D () C:\Users\Paul\AppData\Local\wNtbcQLqtVsx1nZ3mA
2014-08-02 00:51 - 2014-08-02 00:51 - 00000000 ____D () C:\Users\Paul\AppData\Local\Xenocode
2014-08-01 20:58 - 2014-08-01 20:58 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\MW3 FoV Changer
2014-08-01 13:33 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-01 13:33 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-01 13:33 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-01 13:33 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-01 13:33 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-01 13:33 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-01 13:32 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-01 13:32 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-01 13:32 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-01 13:32 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-07-30 22:32 - 2014-07-30 22:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____D () C:\Program Files\Realtek
2014-07-30 14:22 - 2014-07-30 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-07-30 14:22 - 2014-07-30 14:22 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-07-30 14:22 - 2014-07-30 14:22 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 03962840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-07-30 14:22 - 2014-07-30 14:22 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02117424 _____ () C:\Windows\system32\SStudio.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-07-30 14:22 - 2014-07-30 14:22 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-07-30 14:22 - 2014-07-30 14:22 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00110080 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00094720 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2014-07-30 14:22 - 2014-07-30 14:22 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00033592 _____ () C:\Windows\system32\audioLibVc.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-07-30 14:21 - 2014-07-30 14:21 - 00939224 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-07-30 14:21 - 2014-07-30 14:21 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 28685824 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 24107520 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 23409152 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 15376384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 10335208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 08866928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 06799688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 06796592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 05442048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 04358656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-07-30 14:08 - 2014-07-30 14:08 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-07-30 14:08 - 2014-07-30 14:08 - 01117184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00848896 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00806912 _____ (AMD) C:\Windows\system32\coinst_14.100.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00723841 _____ () C:\Windows\system32\atiicdxx.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00638976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 00580816 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-07-30 14:08 - 2014-07-30 14:08 - 00580816 _____ () C:\Windows\system32\atiapfxx.blb
2014-07-30 14:08 - 2014-07-30 14:08 - 00368128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-07-30 14:08 - 2014-07-30 14:08 - 00275124 _____ () C:\Windows\system32\ativvaxy_vi.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00274656 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 00273712 _____ () C:\Windows\system32\ativvaxy_vi_nd.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00234804 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00233008 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-07-30 14:08 - 2014-07-30 14:08 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00134192 _____ () C:\Windows\system32\ativce03.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00082128 _____ () C:\Windows\system32\ativce02.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-07-30 13:57 - 2014-07-30 14:32 - 00000246 _____ () C:\Windows\Tasks\Driver Booster SkipUAC (Paul).job
2014-07-30 13:57 - 2014-07-30 13:57 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\IObit
2014-07-30 13:57 - 2014-07-30 13:57 - 00000000 ____D () C:\ProgramData\IObit
2014-07-30 13:44 - 2014-07-30 13:44 - 00021712 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2014-07-30 13:41 - 2014-07-30 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-07-30 13:41 - 2014-07-30 13:41 - 00000000 ____D () C:\Program Files\CPUID
2014-07-30 12:14 - 2014-07-30 17:44 - 00000000 ____D () C:\Users\Paul\Desktop\PC Setup !
2014-07-29 15:02 - 2014-07-29 15:14 - 00000000 ____D () C:\Users\Paul\AppData\Local\HitsBlender
2014-07-29 15:02 - 2014-07-29 15:02 - 00000326 _____ () C:\Windows\Tasks\Update Service HitsBlender.job
2014-07-29 15:02 - 2014-07-29 15:02 - 00000000 ____D () C:\ProgramData\HitsBlender
2014-07-29 14:55 - 2014-07-29 14:55 - 00000466 _____ () C:\Windows\Tasks\Driver Tool-RTMScanRunOnce.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000466 _____ () C:\Windows\Tasks\Driver Tool-RTMScan.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000464 _____ () C:\Windows\Tasks\Driver Tool-RTMUpdater.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000454 _____ () C:\Windows\Tasks\Driver Tool-RTMRules.job
2014-07-29 14:51 - 2014-08-13 16:05 - 00000000 ____D () C:\Users\Paul\AppData\Local\www.rene-zeidler.de
2014-07-29 14:51 - 2014-07-29 14:51 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\www.rene-zeidler.de
2014-07-29 14:51 - 2014-07-29 14:51 - 00000000 ____D () C:\ProgramData\www.rene-zeidler.de
2014-07-29 14:49 - 2014-07-29 14:49 - 00000294 ____H () C:\Windows\Tasks\Microsoft_Hardware_Launch_LifeExp_exe.job
2014-07-29 14:25 - 2014-07-29 14:25 - 00000318 ____H () C:\Windows\Tasks\Microsoft_Hardware_Launch_rundll32_exe.job
2014-07-26 23:03 - 2014-07-26 23:03 - 00000000 ____D () C:\Users\Paul\AppData\Local\SKIDROW
2014-07-25 17:45 - 2014-07-27 00:40 - 00000000 ____D () C:\Users\Paul\AppData\Local\TeknoGods
2014-07-24 18:56 - 2014-07-24 18:56 - 00000000 ____D () C:\Users\Paul\Documents\My Cheat Tables

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-23 18:34 - 2014-08-23 18:32 - 00021156 _____ () C:\Users\Paul\Desktop\FRST.txt
2014-08-23 18:32 - 2014-08-17 11:24 - 00000000 ___DC () C:\FRST
2014-08-23 18:31 - 2014-08-23 18:31 - 02103296 _____ (Farbar) C:\Users\Paul\Desktop\FRST64.exe
2014-08-23 18:31 - 2014-08-23 18:30 - 02103296 _____ (Farbar) C:\Users\Paul\Downloads\FRST64.exe
2014-08-23 18:26 - 2013-09-26 20:04 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-23 18:24 - 2014-08-23 18:24 - 02347384 _____ (ESET) C:\Users\Paul\Desktop\esetsmartinstaller_deu.exe
2014-08-23 18:24 - 2014-08-23 18:24 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-23 16:36 - 2013-12-20 15:16 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Spotify
2014-08-23 16:24 - 2013-09-22 12:50 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-23 12:57 - 2014-07-20 01:50 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\.minecraft
2014-08-23 12:56 - 2014-08-23 12:57 - 00004918 _____ () C:\Users\Paul\Desktop\staiy_cs-go_cfg.txt
2014-08-23 11:13 - 2009-07-14 06:45 - 00014592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-23 11:13 - 2009-07-14 06:45 - 00014592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-23 11:04 - 2014-08-22 20:55 - 00000112 _____ () C:\Windows\setupact.log
2014-08-23 11:04 - 2013-09-26 19:17 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-08-22 22:50 - 2013-09-20 22:54 - 01853423 _____ () C:\Windows\WindowsUpdate.log
2014-08-22 20:55 - 2014-08-22 20:55 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-22 20:55 - 2014-06-01 20:59 - 00275856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-22 20:54 - 2014-08-22 20:54 - 00000808 _____ () C:\Windows\PFRO.log
2014-08-22 20:52 - 2014-08-22 20:48 - 00000000 ___DC () C:\AdwCleaner
2014-08-22 20:16 - 2014-08-22 20:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-22 18:33 - 2014-08-22 18:33 - 00343535 _____ () C:\Users\Paul\Documents\ts3_clientui-win64-1394624943-2014-08-22 18_33_29.849959.dmp
2014-08-22 18:33 - 2014-08-22 18:32 - 00325693 _____ () C:\Users\Paul\Documents\ts3_clientui-win64-1394624943-2014-08-22 18_32_54.283924.dmp
2014-08-22 16:22 - 2013-09-21 14:27 - 00000000 ____D () C:\Windows\Minidump
2014-08-22 15:37 - 2013-12-20 15:19 - 00000000 ____D () C:\Users\Paul\AppData\Local\Spotify
2014-08-22 15:15 - 2014-07-21 20:28 - 00162304 ___SH () C:\Users\Paul\Desktop\Thumbs.db
2014-08-22 09:58 - 2014-08-21 16:51 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-08-21 17:22 - 2014-08-21 16:51 - 00128728 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-21 17:21 - 2014-08-21 16:48 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-21 17:14 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\addins
2014-08-21 16:51 - 2014-08-21 16:51 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-16 17:03 - 2013-11-29 21:37 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Skype
2014-08-16 11:28 - 2013-09-21 11:53 - 00000000 ____D () C:\Users\Paul\Desktop\Alles
2014-08-16 10:42 - 2014-08-16 10:42 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Oracle
2014-08-16 10:41 - 2014-08-16 10:41 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-16 10:41 - 2014-08-16 10:41 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-16 10:41 - 2014-08-16 10:41 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-16 10:41 - 2013-10-19 21:25 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-16 10:33 - 2014-08-16 10:33 - 00000000 ____D () C:\Users\Paul\AppData\Local\Adobe
2014-08-16 00:36 - 2014-08-16 00:36 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Auslogics
2014-08-16 00:36 - 2013-11-29 21:56 - 00000000 ____D () C:\ProgramData\Auslogics
2014-08-16 00:35 - 2014-08-16 00:35 - 00001286 _____ () C:\Users\Paul\Desktop\Auslogics Disk Defrag Professional.lnk
2014-08-16 00:35 - 2014-04-10 19:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2014-08-16 00:35 - 2013-11-29 21:56 - 00000000 ____D () C:\Program Files (x86)\Auslogics
2014-08-16 00:29 - 2013-09-20 23:48 - 00000000 ____D () C:\Windows\Panther
2014-08-15 20:26 - 2014-08-15 18:25 - 00000000 ____D () C:\Program Files\Recuva
2014-08-15 20:25 - 2013-09-20 23:18 - 00000000 ____D () C:\Users\Paul
2014-08-15 17:53 - 2014-08-15 17:53 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
2014-08-15 17:53 - 2014-08-15 17:53 - 00000000 ____D () C:\Program Files (x86)\Convar
2014-08-15 17:52 - 2014-08-10 12:56 - 00000000 ____D () C:\ProgramData\Freemake
2014-08-15 17:52 - 2014-08-10 12:56 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-08-15 17:49 - 2014-08-15 17:49 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-08-15 17:23 - 2014-08-14 19:32 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-15 06:07 - 2014-01-10 17:34 - 00001032 _____ () C:\Windows\wininit.ini
2014-08-14 19:37 - 2014-08-14 19:32 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-14 19:33 - 2014-08-14 19:33 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-08-14 19:33 - 2014-08-14 19:33 - 00000628 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-08-14 19:33 - 2014-08-14 19:33 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-08-14 19:32 - 2014-08-14 19:32 - 00001395 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-08-14 19:32 - 2014-08-14 19:32 - 00001383 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-08-14 19:32 - 2014-08-14 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-08-14 16:49 - 2013-09-22 01:04 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 16:40 - 2013-09-22 01:04 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-14 16:29 - 2014-04-28 11:36 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-13 16:05 - 2014-07-29 14:51 - 00000000 ____D () C:\Users\Paul\AppData\Local\www.rene-zeidler.de
2014-08-10 13:08 - 2014-08-10 12:56 - 00000000 ____D () C:\Users\Paul\Documents\Freemake
2014-08-10 12:57 - 2014-08-10 12:57 - 00000000 ____D () C:\Program Files\WinPcap
2014-08-08 19:51 - 2014-06-20 08:54 - 00000000 ____D () C:\Users\Paul\AppData\Local\Arma 3
2014-08-07 04:06 - 2014-08-14 16:20 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-14 16:20 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-05 09:20 - 2013-09-21 13:51 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-04 13:36 - 2009-07-14 19:58 - 00700130 _____ () C:\Windows\system32\perfh007.dat
2014-08-04 13:36 - 2009-07-14 19:58 - 00149768 _____ () C:\Windows\system32\perfc007.dat
2014-08-04 13:36 - 2009-07-14 07:13 - 01622706 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-02 14:29 - 2014-08-02 14:29 - 00000000 ____D () C:\Users\Paul\AppData\Local\master131
2014-08-02 14:20 - 2014-08-02 14:20 - 00000000 ____D () C:\Windows\RazorDOX
2014-08-02 13:19 - 2014-08-02 13:19 - 00000000 ____D () C:\Users\Paul\AppData\Local\wNtbcQLqtVsx1nZ3mA
2014-08-02 00:51 - 2014-08-02 00:51 - 00000000 ____D () C:\Users\Paul\AppData\Local\Xenocode
2014-08-02 00:51 - 2013-09-20 23:19 - 00000000 ____D () C:\Users\Paul\AppData\Local\VirtualStore
2014-08-01 20:58 - 2014-08-01 20:58 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\MW3 FoV Changer
2014-07-30 22:32 - 2014-07-30 22:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2014-07-30 19:03 - 2013-12-31 13:15 - 00000000 ____D () C:\Users\Paul\AppData\Local\DayZ
2014-07-30 17:44 - 2014-07-30 12:14 - 00000000 ____D () C:\Users\Paul\Desktop\PC Setup !
2014-07-30 14:32 - 2014-07-30 13:57 - 00000246 _____ () C:\Windows\Tasks\Driver Booster SkipUAC (Paul).job
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-30 14:23 - 2014-07-30 14:23 - 00000000 ____D () C:\Program Files\Realtek
2014-07-30 14:22 - 2014-07-30 14:22 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-07-30 14:22 - 2014-07-30 14:22 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-07-30 14:22 - 2014-07-30 14:22 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 03962840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-07-30 14:22 - 2014-07-30 14:22 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02117424 _____ () C:\Windows\system32\SStudio.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-07-30 14:22 - 2014-07-30 14:22 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-07-30 14:22 - 2014-07-30 14:22 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00110080 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00094720 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2014-07-30 14:22 - 2014-07-30 14:22 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00033592 _____ () C:\Windows\system32\audioLibVc.dll
2014-07-30 14:22 - 2014-07-30 14:22 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-07-30 14:21 - 2014-07-30 14:21 - 00939224 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-07-30 14:21 - 2014-07-30 14:21 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-07-30 14:21 - 2013-09-21 11:43 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 28685824 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 24107520 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 23409152 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 15376384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 10335208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 08866928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 06799688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 06796592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 05442048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 04358656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-07-30 14:08 - 2014-07-30 14:08 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-07-30 14:08 - 2014-07-30 14:08 - 01117184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00848896 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00806912 _____ (AMD) C:\Windows\system32\coinst_14.100.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00723841 _____ () C:\Windows\system32\atiicdxx.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00638976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 00580816 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-07-30 14:08 - 2014-07-30 14:08 - 00580816 _____ () C:\Windows\system32\atiapfxx.blb
2014-07-30 14:08 - 2014-07-30 14:08 - 00368128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-07-30 14:08 - 2014-07-30 14:08 - 00275124 _____ () C:\Windows\system32\ativvaxy_vi.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00274656 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-07-30 14:08 - 2014-07-30 14:08 - 00273712 _____ () C:\Windows\system32\ativvaxy_vi_nd.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00234804 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00233008 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-07-30 14:08 - 2014-07-30 14:08 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00134192 _____ () C:\Windows\system32\ativce03.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00082128 _____ () C:\Windows\system32\ativce02.dat
2014-07-30 14:08 - 2014-07-30 14:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-07-30 14:08 - 2014-07-30 14:08 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-07-30 14:08 - 2013-12-07 00:03 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-07-30 14:08 - 2013-12-06 23:57 - 07520200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-07-30 14:08 - 2013-12-06 23:56 - 08010968 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-07-30 14:08 - 2013-12-06 22:53 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-07-30 14:08 - 2013-12-06 22:53 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-07-30 14:08 - 2013-12-06 22:52 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-07-30 14:08 - 2013-09-05 10:01 - 01343272 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-07-30 14:08 - 2013-09-05 09:25 - 27907584 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-07-30 14:08 - 2013-09-05 08:34 - 01177600 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-07-30 14:08 - 2013-09-05 08:34 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-07-30 14:08 - 2013-09-05 08:33 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-07-30 13:57 - 2014-07-30 13:57 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\IObit
2014-07-30 13:57 - 2014-07-30 13:57 - 00000000 ____D () C:\ProgramData\IObit
2014-07-30 13:44 - 2014-07-30 13:44 - 00021712 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2014-07-30 13:41 - 2014-07-30 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-07-30 13:41 - 2014-07-30 13:41 - 00000000 ____D () C:\Program Files\CPUID
2014-07-30 13:40 - 2014-04-26 00:05 - 00007598 _____ () C:\Users\Paul\AppData\Local\Resmon.ResmonCfg
2014-07-30 12:12 - 2013-09-21 18:01 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2014-07-30 12:12 - 2013-09-21 18:01 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner
2014-07-30 12:06 - 2014-03-18 17:24 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\DAEMON Tools Lite
2014-07-29 15:30 - 2013-09-21 11:11 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-29 15:28 - 2014-01-26 00:33 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-29 15:14 - 2014-07-29 15:02 - 00000000 ____D () C:\Users\Paul\AppData\Local\HitsBlender
2014-07-29 15:04 - 2014-07-19 00:50 - 00000000 ____D () C:\ProgramData\fc19193c6c4b0b24
2014-07-29 15:02 - 2014-07-29 15:02 - 00000326 _____ () C:\Windows\Tasks\Update Service HitsBlender.job
2014-07-29 15:02 - 2014-07-29 15:02 - 00000000 ____D () C:\ProgramData\HitsBlender
2014-07-29 15:02 - 2013-11-27 15:59 - 00000000 ____D () C:\Users\Paul\AppData\Local\cache
2014-07-29 14:55 - 2014-07-29 14:55 - 00000466 _____ () C:\Windows\Tasks\Driver Tool-RTMScanRunOnce.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000466 _____ () C:\Windows\Tasks\Driver Tool-RTMScan.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000464 _____ () C:\Windows\Tasks\Driver Tool-RTMUpdater.job
2014-07-29 14:55 - 2014-07-29 14:55 - 00000454 _____ () C:\Windows\Tasks\Driver Tool-RTMRules.job
2014-07-29 14:51 - 2014-07-29 14:51 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\www.rene-zeidler.de
2014-07-29 14:51 - 2014-07-29 14:51 - 00000000 ____D () C:\ProgramData\www.rene-zeidler.de
2014-07-29 14:49 - 2014-07-29 14:49 - 00000294 ____H () C:\Windows\Tasks\Microsoft_Hardware_Launch_LifeExp_exe.job
2014-07-29 14:25 - 2014-07-29 14:25 - 00000318 ____H () C:\Windows\Tasks\Microsoft_Hardware_Launch_rundll32_exe.job
2014-07-28 21:53 - 2014-05-23 23:54 - 00000000 ____D () C:\Users\Paul\AppData\Local\ftblauncher
2014-07-27 00:40 - 2014-07-25 17:45 - 00000000 ____D () C:\Users\Paul\AppData\Local\TeknoGods
2014-07-26 23:03 - 2014-07-26 23:03 - 00000000 ____D () C:\Users\Paul\AppData\Local\SKIDROW
2014-07-26 01:45 - 2014-02-28 22:00 - 00002250 _____ () C:\Users\Paul\AppData\Roaming\Profile1.dat
2014-07-26 01:45 - 2014-02-28 22:00 - 00001792 _____ () C:\Users\Paul\AppData\Roaming\Profile0.dat
2014-07-24 19:08 - 2013-10-12 21:53 - 00000000 ____D () C:\Users\Paul\AppData\Roaming\ftblauncher
2014-07-24 18:56 - 2014-07-24 18:56 - 00000000 ____D () C:\Users\Paul\Documents\My Cheat Tables
2014-07-24 14:11 - 2014-08-14 16:28 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-24 14:10 - 2014-08-14 16:28 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-24 14:10 - 2014-08-14 16:28 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 19279872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 15399936 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-24 14:09 - 2014-08-14 16:28 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-24 14:09 - 2014-08-14 16:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-24 12:52 - 2014-08-14 16:28 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-24 12:52 - 2014-08-14 16:28 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 14371328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 13757440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 02054656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-24 12:51 - 2014-08-14 16:28 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-24 12:51 - 2014-08-14 16:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-24 12:33 - 2014-08-14 16:28 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-24 12:29 - 2014-08-14 16:28 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-24 11:37 - 2014-08-14 16:28 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-07-24 11:32 - 2014-08-14 16:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

Some content of TEMP:
====================
C:\Users\Paul\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2013-11-21 18:11

==================== End Of Log ============================
--- --- ---
Geändert von Punschiii (24.08.2014 um 09:33 Uhr)

Antwort
Seite 1 von 2 1 2

Themen zu Keylogger sicher weg ?
anderes, aufgesetzt, bereits, firefox, irgendetwas, kaspersky, keylogger, mobogenie, mobogenie entfernen, msil/adware.oxypumper.b, pup.optional.sanbreel.a, search, spybot, troja, trojaner, win64/sprotector.b, würde


« PUP.Optional.OneClickDownloader.A | Yourfile Downloader ist auf meinem Rechner - wie kann ich es entfernen? »


Ähnliche Themen: Keylogger sicher weg ?


  1. Ich bin mir nicht Sicher, ob ich Sicher bin?
    Plagegeister aller Art und deren Bekämpfung - 08.08.2015 (12)
  2. "Selbstinstallation" von Winrar und Keylogger "The best Keylogger" möglich?
    Plagegeister aller Art und deren Bekämpfung - 26.06.2014 (19)
  3. Sicher ist sicher: Ressourcen rund um die Entwicklung sicherer Anwendungen
    Nachrichten - 11.12.2012 (0)
  4. Sicher ist sicher: Attack Surface Analyzer 1.0
    Nachrichten - 13.08.2012 (0)
  5. Keylogger - free, sicher, transparent
    Überwachung, Datenschutz und Spam - 24.09.2011 (38)
  6. Facemoods - schädigend? (hijackthis) - sicher ist sicher
    Plagegeister aller Art und deren Bekämpfung - 02.09.2011 (13)
  7. Keylogger Trojan-Spy.Win32.KeyLogger.cqd in Windows32
    Plagegeister aller Art und deren Bekämpfung - 05.08.2010 (1)
  8. WoW Keylogger: Keylogger : TR\FakeAV.C[Trojan]
    Log-Analyse und Auswertung - 20.01.2010 (11)
  9. Keylogger
    Plagegeister aller Art und deren Bekämpfung - 26.11.2008 (0)
  10. Keylogger?
    Plagegeister aller Art und deren Bekämpfung - 25.11.2008 (0)
  11. Keylogger
    Log-Analyse und Auswertung - 31.10.2008 (18)
  12. xp advanced keylogger Commercial KeyLogger
    Plagegeister aller Art und deren Bekämpfung - 03.08.2007 (4)
  13. KeyLogger...
    Log-Analyse und Auswertung - 20.04.2007 (20)
  14. Keylogger ? !
    Mülltonne - 14.04.2007 (9)
  15. family keylogger Commercial KeyLogger
    Plagegeister aller Art und deren Bekämpfung - 29.03.2006 (17)
  16. Keylogger
    Log-Analyse und Auswertung - 27.09.2005 (1)
  17. sicher ist sicher, bitte mal log prüfen...
    Log-Analyse und Auswertung - 07.06.2005 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Keylogger sicher weg ? - Hallo erstmal, Ich bin das erste mal hier und wollte fragen wie ich mir sicher sein kann das ein Keylogger bzw Trojaner etc. auf meinem PC weg ist ohne das - Keylogger sicher weg ?...
Archiv
Du betrachtest: Keylogger sicher weg ? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19