| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
04.09.2014, 08:33
| #1 |
| |  acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht. Hallo! Beim Virenscan mit Avast kommt die Meldung über eine Bedrohung und zwar Win32:evo-gen in C:\windows\system32\drivers\acedrv01.sys. Wenn ich die empfohlene Aktion ausführe (in Virencontainer schieben, Datei löschen) und dann nach runterfahren des PCs erneut scanne ist die Datei immer noch da. Zudem funktioniert das CD Laufwerk nicht mehr, es erkennt die CDs nicht. Hier die Logs: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-09-2014 Ran by zuppy (administrator) on LAPTOP-ZUPPY on 04-09-2014 09:18:44 Running from C:\Users\zuppy\Downloads Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 9 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Windows\System32\SLsvc.exe () C:\Windows\System32\WLTRYSVC.EXE (Dell Inc.) C:\Windows\System32\BCMWLTRY.EXE (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Andrea Electronics Corporation) C:\Windows\System32\AEstSrv.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Juniper Networks) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe (Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (SupportSoft, Inc.) C:\Program Files\Dell Support Center\bin\sprtsvc.exe (IDT, Inc.) C:\Windows\System32\stacsv.exe (Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (Creative Technology Ltd.) C:\Windows\OEM02Mon.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Dell Inc.) C:\Windows\System32\WLTRAY.EXE (Creative Technology Ltd.) C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe (Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (CyberLink Corp.) C:\Program Files\Dell\MediaDirect\PCMService.exe (SupportSoft, Inc.) C:\Program Files\Dell Support Center\bin\sprtcmd.exe (Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe (Nuance Communications, Inc.) C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (IDT, Inc.) C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe () C:\Program Files\DivX\DivX Update\DivXUpdate.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Akamai Technologies, Inc.) C:\Users\zuppy\AppData\Local\Akamai\netsession_win.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Avanquest Software ) C:\Program Files\Digital Line Detect\DLG.exe (Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe (Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe (Akamai Technologies, Inc.) C:\Users\zuppy\AppData\Local\Akamai\netsession_win.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Microsoft Corporation) C:\Windows\System32\conime.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-19] (Microsoft Corporation) HKLM\...\Run: [ECenter] => C:\Dell\E-Center\EULALauncher.exe [17920 2008-02-29] ( ) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [159744 2007-09-07] (Alps Electric Co., Ltd.) HKLM\...\Run: [OEM02Mon.exe] => C:\Windows\OEM02Mon.exe [36864 2008-03-04] (Creative Technology Ltd.) HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Windows\system32\WLTRAY.exe [1548288 2007-03-21] (Dell Inc.) HKLM\...\Run: [DELL Webcam Manager] => C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe [118784 2007-07-27] (Creative Technology Ltd.) HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [174872 2007-03-21] (Intel Corporation) HKLM\...\Run: [dscactivate] => C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [16384 2008-03-11] ( ) HKLM\...\Run: [PCMService] => C:\Program Files\Dell\MediaDirect\PCMService.exe [189736 2007-11-01] (CyberLink Corp.) HKLM\...\Run: [DellSupportCenter] => C:\Program Files\Dell Support Center\bin\sprtcmd.exe [206064 2008-08-14] (SupportSoft, Inc.) HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdSync.exe [215552 2006-11-02] (Microsoft Corporation) HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.) HKLM\...\Run: [PaperPort PTD] => C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [29984 2008-07-09] (Nuance Communications, Inc.) HKLM\...\Run: [IndexSearch] => C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [46368 2008-07-09] (Nuance Communications, Inc.) HKLM\...\Run: [PPort11reminder] => C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.) HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40368 2011-08-31] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-29] (Adobe Systems Incorporated) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.) HKLM\...\Run: [BrMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [622592 2007-02-06] (Brother Industries, Ltd.) HKLM\...\Run: [SigmatelSysTrayApp] => C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [405504 2007-09-07] (IDT, Inc.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-08] (AVAST Software) HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.) HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.) HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] () HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation) HKU\.DEFAULT\...\Run: [msnmsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [DellSupportCenter] => C:\Program Files\Dell Support Center\bin\sprtcmd.exe [206064 2008-08-14] (SupportSoft, Inc.) HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation) HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [MsnMsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [MobileDocuments] => C:\Program Files\Common Files\Apple\Internet Services\ubd.exe HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [Akamai NetSession Interface] => C:\Users\zuppy\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.) HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.) HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation) HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {16f2ba31-8bde-11e1-9be4-001d094fc2c5} - G:\LaunchU3.exe -a HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {2959ee1c-3444-11df-884a-001d094fc2c5} - F:\autorun.exe HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {a09b9b27-9157-11de-8d28-001f3a4c1991} - F:\AutoRun.exe HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {a09b9b55-9157-11de-8d28-001f3a4c1991} - G:\AutoRun.exe HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {f46ab122-0be1-11df-8784-001d094fc2c5} - G:\LaunchU3.exe -a Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software ) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickSet.lnk ShortcutTarget: QuickSet.lnk -> C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gmx.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.v9.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=FUJITSUXMHY2160BH_K431T832B28DT832B28DX&ts=1356443800 SearchScopes: HKCU - {715A3DAE-8345-4964-B73E-F3596DBA56C8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=9M&apn_dtid=OSJ000&apn_uid=714CCA31-D6C6-489A-B82B-5FEF78C366F9&apn_sauid=985DA777-D9DA-4CE6-8BC2-474155BE940E BHO: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC) FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: PDF Architect 2 -> C:\Program Files\PDF Architect 2\np-previewer.dll (pdfforge GmbH) FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-19] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-23] Chrome: ======= CHR CustomProfile: C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-17] CHR Extension: (Google Drive) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-17] CHR Extension: (YouTube) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-19] CHR Extension: (Google-Suche) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-19] CHR Extension: (avast! SafePrice) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-08-17] CHR Extension: (avast! Online Security) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-17] CHR Extension: (Google Wallet) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-07] CHR Extension: (Google Mail) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-19] CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-08] CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-15] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-15] (AVAST Software) R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed] R2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [427376 2009-04-02] (Juniper Networks) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed] R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed] S3 PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [1771560 2014-06-26] (pdfforge GmbH) S3 pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [861736 2014-06-26] (pdfforge GmbH) R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed] R2 sprtsvc_dellsupportcenter; C:\Program Files\Dell Support Center\bin\sprtsvc.exe [201968 2008-08-14] (SupportSoft, Inc.) S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation) [File not signed] R2 wltrysvc; C:\Windows\System32\bcmwltry.exe [1724416 2007-03-21] (Dell Inc.) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S4 acedrv01; C:\Windows\system32\drivers\acedrv01.sys [93696 2009-04-01] (ACE GmbH) [File not signed] R2 acedrv02; C:\Windows\system32\drivers\acedrv02.sys [97280 2009-04-01] (ACE GmbH) [File not signed] R2 acedrv04; C:\Windows\system32\drivers\acedrv04.sys [97280 2009-04-01] (Protect Software GmbH) [File not signed] R2 acedrv05; C:\Windows\system32\drivers\acedrv05.sys [97792 2009-04-01] (Protect Software GmbH) [File not signed] R2 acedrv06; C:\Windows\system32\drivers\acedrv06.sys [99840 2009-04-01] (Protect Software GmbH) [File not signed] R2 acedrv07; C:\Windows\system32\drivers\acedrv07.sys [101376 2009-04-01] (Protect Software GmbH) [File not signed] R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-07-15] () R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [26136 2014-07-15] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-07-15] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55112 2014-07-15] (AVAST Software) R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-07-15] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-07-15] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-07-15] (AVAST Software) R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57800 2014-07-15] (AVAST Software) R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-07-15] () R3 dsNcAdpt; C:\Windows\System32\DRIVERS\dsNcAdpt.sys [23552 2009-04-02] (Juniper Networks) S3 LTXMD_VAC; C:\Windows\System32\drivers\lmvac.sys [18912 2008-07-01] (Windows (R) Codename Longhorn DDK provider) R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-12-09] (Avira GmbH) S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [25984 2009-12-12] (The OpenVPN Project) S2 adfs; No ImagePath S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X] S3 cmnsusbser; system32\DRIVERS\cmnsusbser.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-04 09:18 - 2014-09-04 09:19 - 00022369 _____ () C:\Users\zuppy\Downloads\FRST.txt 2014-09-04 09:18 - 2014-09-04 09:18 - 00000000 ____D () C:\FRST 2014-09-04 09:17 - 2014-09-04 09:18 - 01096704 _____ (Farbar) C:\Users\zuppy\Downloads\FRST.exe 2014-09-04 09:15 - 2014-09-04 09:15 - 00000472 _____ () C:\Users\zuppy\Downloads\defogger_disable.log 2014-09-04 09:15 - 2014-09-04 09:15 - 00000000 _____ () C:\Users\zuppy\defogger_reenable 2014-09-04 09:14 - 2014-09-04 09:14 - 00050477 _____ () C:\Users\zuppy\Downloads\Defogger.exe 2014-09-04 08:22 - 2014-08-23 03:03 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-09-04 08:22 - 2014-08-23 01:26 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-28 12:35 - 2014-08-28 12:35 - 00011740 _____ () C:\Users\zuppy\Downloads\Rechnung Svenja Hartwig (0013,14).xlsx 2014-08-18 14:38 - 2014-08-18 14:38 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\Oracle 2014-08-18 14:36 - 2014-08-18 14:36 - 00000000 ____D () C:\Program Files\Common Files\Java 2014-08-18 14:35 - 2014-08-18 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-08-18 14:35 - 2014-08-18 14:34 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-08-18 14:35 - 2014-08-18 14:34 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-08-18 14:35 - 2014-08-18 14:34 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-08-18 14:35 - 2014-08-18 14:34 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2014-08-18 14:34 - 2014-08-18 14:34 - 00000000 ____D () C:\Program Files\Java 2014-08-17 21:07 - 2014-08-17 21:07 - 00067342 _____ () C:\Users\zuppy\Downloads\vietnam visum 2014-08-17 12:10 - 2014-08-17 12:10 - 00001925 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-17 12:10 - 2014-08-17 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-17 12:08 - 2014-09-04 09:13 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-08-17 12:08 - 2014-09-04 08:34 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-08-17 12:07 - 2014-08-17 12:07 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Deployment 2014-08-17 12:07 - 2014-08-17 12:07 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Apps\2.0 2014-08-17 11:55 - 2014-08-17 11:55 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\PDF Architect 2 2014-08-17 11:48 - 2014-08-17 11:48 - 00000784 _____ () C:\Users\Public\Desktop\PDF Architect 2.lnk 2014-08-17 11:48 - 2014-08-17 11:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2 2014-08-17 11:47 - 2014-08-17 11:48 - 00000000 ____D () C:\Program Files\PDF Architect 2 2014-08-17 11:47 - 2014-08-17 11:47 - 00000000 ____D () C:\Users\zuppy\Documents\PDF Architect 2 2014-08-17 11:47 - 2014-08-17 11:47 - 00000000 ____D () C:\ProgramData\PDF Architect 2 2014-08-17 11:45 - 2014-08-17 11:51 - 00000000 ____D () C:\Program Files\PDFCreator 2014-08-17 11:45 - 2014-08-17 11:45 - 00000790 _____ () C:\Users\Public\Desktop\PDFCreator.lnk 2014-08-17 11:45 - 2014-08-17 11:45 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\pdfforge 2014-08-17 11:45 - 2014-08-17 11:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2014-08-17 11:45 - 2014-04-25 17:44 - 00662288 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCT2.OCX 2014-08-17 11:45 - 2014-04-25 17:44 - 00137000 _____ (Microsoft Corporation) C:\Windows\system32\MSMAPI32.OCX 2014-08-17 11:45 - 2014-04-25 17:44 - 00095416 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll 2014-08-17 11:45 - 2014-04-25 17:44 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\MSMPIDE.DLL 2014-08-17 11:45 - 1998-07-06 18:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\system32\VB6DE.DLL 2014-08-17 11:45 - 1998-07-06 18:55 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\MSCMCDE.DLL 2014-08-17 11:45 - 1998-07-06 18:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\MSCC2DE.DLL 2014-08-17 11:42 - 2014-08-17 11:43 - 27843432 _____ (pdfforge ) C:\Users\zuppy\Downloads\PDFCreator-1_7_3_setup.exe 2014-08-17 11:40 - 2014-08-17 11:40 - 00000000 _____ () C:\Users\zuppy\Downloads\SetupWordToPDF_237_v2.9.exe.28bypr0.partial 2014-08-17 11:37 - 2014-06-27 00:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2014-08-17 11:37 - 2014-06-27 00:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2014-08-17 11:37 - 2014-06-27 00:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2014-08-17 11:36 - 2014-06-06 06:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-14 15:12 - 2014-07-08 02:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-08-14 15:12 - 2014-06-14 02:44 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-14 15:12 - 2014-06-14 02:33 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2014-08-14 15:12 - 2014-06-02 12:31 - 02263552 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-14 15:12 - 2014-06-02 12:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-14 15:12 - 2014-06-02 12:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-14 15:12 - 2014-06-02 12:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2014-08-14 15:12 - 2014-06-02 10:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-14 15:11 - 2014-07-24 20:07 - 12356608 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-08-14 15:11 - 2014-07-24 19:58 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-08-14 15:11 - 2014-07-24 19:57 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-08-14 15:11 - 2014-07-24 19:52 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-08-14 15:11 - 2014-07-24 19:51 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-08-14 15:11 - 2014-07-24 19:51 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-08-14 15:11 - 2014-07-24 19:50 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2014-08-14 15:11 - 2014-07-24 19:50 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-08-14 15:11 - 2014-07-24 19:49 - 01802240 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-08-14 15:11 - 2014-07-24 19:49 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-08-14 15:11 - 2014-07-24 19:49 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-08-14 15:11 - 2014-07-24 19:49 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-08-14 15:11 - 2014-07-24 19:49 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-08-14 15:11 - 2014-07-24 19:48 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-08-14 15:11 - 2014-07-24 19:48 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-08-14 15:11 - 2014-07-24 19:48 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-08-14 15:11 - 2014-07-24 19:48 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-08-14 15:11 - 2014-07-24 19:48 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2014-08-14 15:11 - 2014-07-24 19:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2014-08-14 15:11 - 2014-07-24 19:48 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2014-08-14 15:11 - 2014-07-24 19:47 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-08-14 14:46 - 2014-08-14 14:46 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-08-10 08:46 - 2014-08-10 08:46 - 00001626 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-08-10 08:46 - 2014-08-10 08:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-08-10 08:45 - 2014-08-10 08:46 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-04 09:19 - 2014-09-04 09:18 - 00022369 _____ () C:\Users\zuppy\Downloads\FRST.txt 2014-09-04 09:18 - 2014-09-04 09:18 - 00000000 ____D () C:\FRST 2014-09-04 09:18 - 2014-09-04 09:17 - 01096704 _____ (Farbar) C:\Users\zuppy\Downloads\FRST.exe 2014-09-04 09:16 - 2006-11-02 14:47 - 00003568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-09-04 09:16 - 2006-11-02 14:47 - 00003568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-09-04 09:15 - 2014-09-04 09:15 - 00000472 _____ () C:\Users\zuppy\Downloads\defogger_disable.log 2014-09-04 09:15 - 2014-09-04 09:15 - 00000000 _____ () C:\Users\zuppy\defogger_reenable 2014-09-04 09:15 - 2008-04-24 12:24 - 00000000 ____D () C:\Users\zuppy 2014-09-04 09:14 - 2014-09-04 09:14 - 00050477 _____ () C:\Users\zuppy\Downloads\Defogger.exe 2014-09-04 09:13 - 2014-08-17 12:08 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-09-04 09:10 - 2008-04-26 20:38 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\Skype 2014-09-04 08:48 - 2008-04-21 18:30 - 01869918 _____ () C:\Windows\WindowsUpdate.log 2014-09-04 08:39 - 2012-04-11 10:49 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-09-04 08:34 - 2014-08-17 12:08 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-09-04 08:32 - 2009-01-15 14:45 - 00065536 _____ () C:\Windows\system32\Ikeext.etl 2014-09-04 08:32 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-09-04 08:32 - 2006-11-02 14:47 - 03736840 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-09-04 08:25 - 2006-11-02 15:01 - 00032534 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-09-03 19:08 - 2011-11-10 19:30 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Akamai 2014-09-03 19:08 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\spool 2014-09-03 19:08 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\Msdtc 2014-09-03 19:08 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\registration 2014-09-03 19:08 - 2006-11-02 12:22 - 51118080 _____ () C:\Windows\system32\config\software_previous 2014-09-03 19:08 - 2006-11-02 12:22 - 34340864 _____ () C:\Windows\system32\config\system_previous 2014-09-03 18:57 - 2006-11-02 12:22 - 50331648 _____ () C:\Windows\system32\config\components_previous 2014-09-03 18:57 - 2006-11-02 12:22 - 00061440 _____ () C:\Windows\system32\config\sam_previous 2014-09-03 18:21 - 2014-01-23 18:55 - 00001893 _____ () C:\Users\Public\Desktop\avast! SafeZone.lnk 2014-09-03 18:21 - 2014-01-23 18:55 - 00001833 _____ () C:\Users\Public\Desktop\avast! Pro Antivirus.lnk 2014-09-03 18:17 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\tracing 2014-08-29 12:49 - 2006-11-02 12:22 - 00524288 _____ () C:\Windows\system32\config\default_previous 2014-08-29 12:49 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\security_previous 2014-08-28 17:18 - 2008-12-07 15:38 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\EndNote 2014-08-28 17:18 - 2008-05-09 16:58 - 00000000 ____D () C:\Users\zuppy\Documents\Bewerbungen und Briefe 2014-08-28 16:26 - 2014-07-07 19:01 - 00000000 ____D () C:\Users\zuppy\Desktop\Bewerbungskram 2014-08-28 12:35 - 2014-08-28 12:35 - 00011740 _____ () C:\Users\zuppy\Downloads\Rechnung Svenja Hartwig (0013,14).xlsx 2014-08-23 03:03 - 2014-09-04 08:22 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-23 01:26 - 2014-09-04 08:22 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-18 17:22 - 2013-05-31 14:30 - 00019456 _____ () C:\Users\zuppy\Documents\OP-Katalog Assistenten.xls 2014-08-18 14:38 - 2014-08-18 14:38 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\Oracle 2014-08-18 14:36 - 2014-08-18 14:36 - 00000000 ____D () C:\Program Files\Common Files\Java 2014-08-18 14:36 - 2013-09-25 20:14 - 00000000 ____D () C:\ProgramData\Oracle 2014-08-18 14:35 - 2014-08-18 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-08-18 14:34 - 2014-08-18 14:35 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-08-18 14:34 - 2014-08-18 14:35 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-08-18 14:34 - 2014-08-18 14:35 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-08-18 14:34 - 2014-08-18 14:35 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2014-08-18 14:34 - 2014-08-18 14:34 - 00000000 ____D () C:\Program Files\Java 2014-08-17 21:43 - 2013-12-02 18:43 - 02177536 _____ () C:\Users\zuppy\Documents\Route Zuppy2014.xls 2014-08-17 21:07 - 2014-08-17 21:07 - 00067342 _____ () C:\Users\zuppy\Downloads\vietnam visum 2014-08-17 19:08 - 2008-05-09 17:30 - 00000000 ____D () C:\Users\zuppy\Documents\Zuppys Sammelsorium 2014-08-17 14:50 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-08-17 13:35 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache 2014-08-17 13:23 - 2010-01-03 09:48 - 01567294 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-17 13:11 - 2008-04-21 19:03 - 00445828 _____ () C:\Windows\PFRO.log 2014-08-17 13:09 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE 2014-08-17 12:10 - 2014-08-17 12:10 - 00001925 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-17 12:10 - 2014-08-17 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-17 12:09 - 2008-04-21 18:51 - 00000000 ____D () C:\Program Files\Google 2014-08-17 12:07 - 2014-08-17 12:07 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Deployment 2014-08-17 12:07 - 2014-08-17 12:07 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Apps\2.0 2014-08-17 11:55 - 2014-08-17 11:55 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\PDF Architect 2 2014-08-17 11:52 - 2013-08-10 21:59 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-17 11:51 - 2014-08-17 11:45 - 00000000 ____D () C:\Program Files\PDFCreator 2014-08-17 11:48 - 2014-08-17 11:48 - 00000784 _____ () C:\Users\Public\Desktop\PDF Architect 2.lnk 2014-08-17 11:48 - 2014-08-17 11:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2 2014-08-17 11:48 - 2014-08-17 11:47 - 00000000 ____D () C:\Program Files\PDF Architect 2 2014-08-17 11:47 - 2014-08-17 11:47 - 00000000 ____D () C:\Users\zuppy\Documents\PDF Architect 2 2014-08-17 11:47 - 2014-08-17 11:47 - 00000000 ____D () C:\ProgramData\PDF Architect 2 2014-08-17 11:45 - 2014-08-17 11:45 - 00000790 _____ () C:\Users\Public\Desktop\PDFCreator.lnk 2014-08-17 11:45 - 2014-08-17 11:45 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\pdfforge 2014-08-17 11:45 - 2014-08-17 11:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2014-08-17 11:44 - 2006-11-02 12:24 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2014-08-17 11:43 - 2014-08-17 11:42 - 27843432 _____ (pdfforge ) C:\Users\zuppy\Downloads\PDFCreator-1_7_3_setup.exe 2014-08-17 11:40 - 2014-08-17 11:40 - 00000000 _____ () C:\Users\zuppy\Downloads\SetupWordToPDF_237_v2.9.exe.28bypr0.partial 2014-08-14 14:46 - 2014-08-14 14:46 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-08-14 14:46 - 2008-04-26 18:22 - 00000000 ____D () C:\ProgramData\Skype 2014-08-12 18:39 - 2013-09-25 12:28 - 00003218 _____ () C:\Windows\setupact.log 2014-08-12 18:39 - 2008-04-26 18:24 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Adobe 2014-08-10 08:46 - 2014-08-10 08:46 - 00001626 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-08-10 08:46 - 2014-08-10 08:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-08-10 08:46 - 2014-08-10 08:45 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-08-10 08:46 - 2010-04-03 08:03 - 00000000 ____D () C:\Program Files\iTunes 2014-08-10 08:45 - 2010-10-03 09:26 - 00000000 ____D () C:\Program Files\iPod 2014-08-10 08:45 - 2008-04-24 13:45 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-08-10 07:55 - 2008-07-21 13:42 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-08-08 09:14 - 2010-06-04 09:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-08-05 09:20 - 2009-10-03 01:38 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe Files to move or delete: ==================== C:\ProgramData\ezsid.dat C:\Users\zuppy\avira_antivir_personal_de.exe C:\Users\zuppy\dell_support_center.exe C:\Users\zuppy\DivXInstaller.exe C:\Users\zuppy\JuniperSetupClientInstaller.exe C:\Users\zuppy\server.dll C:\Users\zuppy\uawin32.dll Some content of TEMP: ==================== C:\Users\zuppy\AppData\Local\Temp\AdobeUpdater12345.exe C:\Users\zuppy\AppData\Local\Temp\avgnt.exe C:\Users\zuppy\AppData\Local\Temp\DataCard_Setup.exe C:\Users\zuppy\AppData\Local\Temp\jre-7u40-windows-i586-iftw.exe C:\Users\zuppy\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe C:\Users\zuppy\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe C:\Users\zuppy\AppData\Local\Temp\ResetDevice.exe C:\Users\zuppy\AppData\Local\Temp\SkypeSetup.exe C:\Users\zuppy\AppData\Local\Temp\_is4652.exe C:\Users\zuppy\AppData\Local\Temp\_isB2F9.exe C:\Users\zuppy\AppData\Local\Temp\_isD4CB.exe C:\Users\zuppy\AppData\Local\Temp\_isF425.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-09-04 08:37 ==================== End Of Log ============================ dditional scan result of Farbar Recovery Scan Tool (x86) Version: 03-09-2014 Ran by zuppy at 2014-09-04 09:20:04 Running from C:\Users\zuppy\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 32 Bit HP CIO Components Installer (Version: 1.0.0 - Hewlett-Packard) Hidden Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Community Help (Version: 3.0.0 - Adobe Systems Incorporated) Hidden Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.0.45.2 - Adobe Systems Incorporated) Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated) Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated) Adobe Media Player (Version: 0.0.0 - Adobe Systems Incorporated) Hidden Adobe Reader 8.3.1 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A83000000003}) (Version: 8.3.1 - Adobe Systems Incorporated) Advanced Audio FX Engine (HKLM\...\Advanced Audio FX Engine) (Version: - ) Advanced Video FX Engine (HKLM\...\Advanced Video FX Engine) (Version: - ) AIO_Scan (Version: 90.0.222.000 - Hewlett-Packard) Hidden Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc) Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) avast! Pro Antivirus (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software) Benutzerhandbuch (HKLM\...\{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}) (Version: - ) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Brother MFL-Pro Suite (HKLM\...\{9A912C12-A7DA-44D7-BD57-5CA85E2F33E1}) (Version: 1.00 - Brother Industries, Ltd.) Brother MFL-Pro Suite MFC-J415W (HKLM\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 1.0.3.0 - Brother Industries, Ltd.) Brother MFL-Pro Suite MFC-J5910DW (HKLM\...\{830F55B6-4398-4B72-A0D8-66397B902C0E}) (Version: 1.1.1.0 - Brother Industries, Ltd.) Browser Address Error Redirector (HKLM\...\{62230596-37E5-4618-A329-0D21F529A86F}) (Version: 1.00.0000 - Dell) Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Conexant HDA D330 MDC V.92 Modem (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F) (Version: - ) Dell Handbuch zum Einstieg (HKLM\...\{FD023F61-65E9-465C-B558-7C64EB2B97E6}) (Version: 1.00.0000 - Dell Inc.) Dell Support Center (Support Software) (HKLM\...\{E3BFEE55-39E2-4BE0-B966-89FE583822C1}) (Version: 2.2.08100 - Dell) Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1.102.7 - Alps Electric) Dell Webcam Center (HKLM\...\Dell Webcam Center) (Version: - ) Dell Webcam Manager (HKLM\...\Dell Webcam Manager) (Version: - ) Dell Wireless WLAN Card (HKLM\...\Broadcom 802.11b Network Adapter) (Version: 4.102.15.61 - Dell Inc.) Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.21 - BVRP Software, Inc) DivX-Setup (HKLM\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC) EndNote X1 (HKLM\...\{87F7773C-EC9C-461A-AA7B-4AF8EF54DF49}) (Version: 11.0.0.2571 - Thomson ResearchSoft) Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.) Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden iCloud (HKLM\...\{79BD66B2-4DAE-4C3B-B08E-DC72E507C163}) (Version: 2.1.3.25 - Apple Inc.) Intel(R) Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - ) iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.) Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden Juniper Networks Network Connect 6.0.0 (HKLM\...\Juniper Network Connect 6.0.0) (Version: 6.0.0.14137 - Juniper Networks) Juniper Networks Setup Client (HKCU\...\JuniperSetupClient) (Version: 1.1.0.0 - Juniper Networks) Juniper Networks Setup Client Activex Control (HKLM\...\JuniperSetupClient Activex Control) (Version: 1.1.0.0 - Juniper Networks) Laptop Integrated Webcam Driver (1.04.01.1011) (HKLM\...\Creative OEM002) (Version: - ) Live! Cam Avatar Creator (HKLM\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.0817.1 - Creative Technology Ltd.) MediaDirect (HKLM\...\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}) (Version: 3.5 - Dell) Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation) Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Office 2000 Disc 2 (HKLM\...\{00040407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation) Microsoft Office 2000 Premium (HKLM\...\{00000407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation) Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation) Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden MobileMe Control Panel (HKLM\...\{710BF966-43C8-4216-A8EC-BC4E169FF7C1}) (Version: 3.1.8.0 - Apple Inc.) Modem-Diagnose-Tool (HKLM\...\{F63A3748-B93D-4360-9AD4-B064481A5C7B}) (Version: 1.0.20.0 - Dell) MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NetWaiting (HKLM\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.44 - BVRP Software, Inc) OutlookAddinSetup (HKLM\...\{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}) (Version: 1.0.0 - CyberLink) PaperPort Image Printer (HKLM\...\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}) (Version: 1.00.0000 - Nuance Communications, Inc.) PDF Architect 2 (HKLM\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH) PDF Architect 2 View Module (HKLM\...\{C960FF38-431D-429D-AD1F-FBD12A45B7C5}) (Version: 2.0.17.17583 - pdfforge GmbH) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge) QuickSet (HKLM\...\{C4972073-2BFE-475D-8441-564EA97DA161}) (Version: 8.2.17 - Dell Inc.) QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.) Roxio Creator Audio (Version: 3.7.0 - Roxio) Hidden Roxio Creator Copy (Version: 3.7.0 - Roxio) Hidden Roxio Creator Data (Version: 3.7.0 - Roxio) Hidden Roxio Creator DE (HKLM\...\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}) (Version: 10.1 - ) Roxio Creator DE (Version: 3.7.0 - Roxio) Hidden Roxio Creator Tools (Version: 3.7.0 - Roxio) Hidden Roxio Express Labeler 3 (Version: 3.2.1 - Roxio) Hidden Roxio Update Manager (Version: 6.0.0 - Roxio) Hidden Samsung PC Studio (Version: 3.0.0.50903 - Samsung Electronics Co., Ltd.) Hidden ScanSoft PaperPort 11 (HKLM\...\{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}) (Version: 11.2.0000 - Nuance Communications, Inc.) SigmaTel Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 5.10.5207.0 - SigmaTel) Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.9.9216 - Skype Technologies S.A.) Skype™ 6.18 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.) Steuer Update 14.01 (Version: 14.01 - Lexware) Hidden TAXMAN 2008 (Version: 14.00 - Lexware) Hidden Toolbox (Version: 90.0.146.000 - Hewlett-Packard) Hidden Uninstall 1.0.0.0 (HKLM\...\Uninstall_is1) (Version: - ) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation) VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden VoiceOver Kit (HKLM\...\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}) (Version: 1.42.128.0 - Apple Inc.) Windows Live Anmelde-Assistent (HKLM\...\{83E2CFA9-E0EB-4E08-9F85-43E577FF3D60}) (Version: 5.000.818.6 - Microsoft Corporation) Windows Live installer (HKLM\...\{7A7B0BF3-2F00-4F03-8A9B-6ABCC07B90C6}) (Version: 12.0.1471.1025 - Microsoft Corporation) WinRAR (HKLM\...\WinRAR archiver) (Version: - ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-674920860-3319793373-282348367-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\ProgramData\Skype\Plugins\ezPMUtils.dll (EasyBits Media) CustomCLSID: HKU\S-1-5-21-674920860-3319793373-282348367-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\ProgramData\Skype\Plugins\ezPMUtils.dll (EasyBits Media) ==================== Restore Points ========================= 03-09-2014 16:40:56 Windows Update 04-09-2014 06:21:14 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 12:23 - 2009-07-17 13:17 - 00000759 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {0095BE75-F80C-4DAD-8030-55BD325E1E71} - System32\Tasks\{3F3986D8-C83C-415C-9E00-98151FD048F5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.120/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered Task: {111E33D8-AE44-4977-A944-DA3FE835755A} - System32\Tasks\AdobeAAMUpdater-1.0-Laptop-Zuppy-zuppy => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated) Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM Task: {2D5822C8-BB73-4303-BA2E-4EF25B96311C} - System32\Tasks\{C1B4FB68-4F24-4758-B6B6-23A4C743B4C5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.1.0.112.210/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered Task: {2E7A8485-0DE8-4992-A245-3444DCEE84F9} - System32\Tasks\{6F020FC3-4B8E-4BB4-A121-782D1A9285C8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.116.210/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered Task: {332A1E0B-2D95-4DE3-B779-FB51E049B858} - System32\Tasks\{8D88EE3E-5C40-4DC5-AC35-6CF9A0049944} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.111.210/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome  ffered-installed;madedefaultTask: {332C1A39-B3AB-474D-A2E1-1FDC641F033D} - System32\Tasks\{777EABD7-0780-4196-9809-FE179DD174DE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.1.0.112.210/de/abandoninstall?page=tsDownload&installinfo=google-toolbar ffered-notinstalled,google-chrome:notoffered;toolbarofferedTask: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-19] (Microsoft Corporation) Task: {621DF182-42D8-4650-8EAF-BB32F0D09DA9} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - zuppy => C:\Program Files\Windows Calendar\wincal.exe [2009-04-11] (Microsoft Corporation) Task: {7850DF3C-415F-48F3-9653-795DA96D4603} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-17] (Google Inc.) Task: {7D7C5FCA-AD6A-4C65-97AB-09C36A896AED} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup Task: {88416C57-77BC-4801-9BF5-0E9F8528F810} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation) Task: {9E1FB878-0BD8-4949-86EE-734FAF1868B7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-14] (Adobe Systems Incorporated) Task: {AE2284DD-E5E7-408C-A1C4-D699987CC5A3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {DD498F21-3BFA-478A-914A-1DA8BCBF485F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-17] (Google Inc.) Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-05] () Task: {F7073345-06C8-47AF-965C-9C781BADADA5} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-15] (AVAST Software) Task: {FF8F1D98-9CC5-4741-8F1A-2204CA44A378} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2008-04-21 18:42 - 2007-03-21 21:33 - 00024064 _____ () C:\Windows\System32\WLTRYSVC.EXE 2008-04-21 18:42 - 2007-03-21 21:33 - 00065536 _____ () C:\Windows\System32\bcmwlrmt.dll 2014-01-23 18:53 - 2014-07-15 18:02 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll 2014-09-03 18:25 - 2014-09-03 18:25 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\14090300\algo.dll 2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2010-10-07 12:30 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll 2008-04-24 13:01 - 2007-09-20 18:34 - 00129024 _____ () C:\Program Files\WinRAR\rarext.dll 2014-01-23 18:53 - 2014-07-15 18:03 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe 2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll 2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files\Common Files\Apple\Internet Services\zlib1.dll 2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files\Common Files\Apple\Internet Services\libxml2.dll 2014-08-17 12:10 - 2014-08-07 05:20 - 08537928 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\pdf.dll 2014-08-17 12:10 - 2014-08-07 05:20 - 00353096 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll 2014-08-17 12:10 - 2014-08-07 05:20 - 01732936 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll 2014-08-17 12:10 - 2014-08-07 05:20 - 14669128 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/03/2014 06:10:50 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005. Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess. Vorgang: Generatordaten werden gesammelt Kontext: Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220} Generatorname: System Writer Generatorinstanz-ID: {29420848-3613-409b-b2b3-864d4e3386aa} Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\LANGUAGES> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\LANGUAGES> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\JS> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\JS> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\WHITE-ON-BLACK> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\WHITE-ON-BLACK> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\RETINA> in der Hash-Zuordnung kann nicht aktualisiert werden. Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) System errors: ============= Error: (09/04/2014 08:32:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: adfs%%2 Error: (09/04/2014 08:32:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Parallel port driver%%1058 Error: (09/04/2014 08:24:55 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: {C2BFE331-6739-4270-86C9-493D9A04CD38} Error: (09/04/2014 08:16:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: adfs%%2 Error: (09/04/2014 08:16:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Parallel port driver%%1058 Error: (09/03/2014 06:25:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86 Error: (09/03/2014 06:23:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: adfs%%2 Error: (09/03/2014 06:23:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Parallel port driver%%1058 Error: (09/03/2014 06:18:53 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {C2BFE331-6739-4270-86C9-493D9A04CD38} Error: (09/03/2014 06:17:00 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Windows Update Microsoft Office Sessions: ========================= Error: (09/03/2014 06:10:50 PM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005 Vorgang: Generatordaten werden gesammelt Kontext: Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220} Generatorname: System Writer Generatorinstanz-ID: {29420848-3613-409b-b2b3-864d4e3386aa} Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\LANGUAGES Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\LANGUAGES Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\JS Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\JS Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\WHITE-ON-BLACK Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\WHITE-ON-BLACK Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Kontext: Anwendung, SystemIndex Katalog Details: Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f) C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\RETINA CodeIntegrity Errors: =================================== Date: 2013-12-27 20:39:50.994 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:39:50.073 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:39:49.157 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:39:48.185 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:39:47.179 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:39:46.241 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:35:55.448 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:35:54.396 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:35:53.353 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-12-27 20:35:52.370 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Memory info =========================== Processor: Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz Percentage of memory in use: 58% Total physical RAM: 2037.31 MB Available physical RAM: 849.41 MB Total Pagefile: 4315.87 MB Available Pagefile: 2831.83 MB Total Virtual: 2047.88 MB Available Virtual: 1908.15 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:136.46 GB) (Free:22.1 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:5.39 GB) NTFS Drive g: () (Removable) (Total:1.92 GB) (Free:1.91 GB) FAT ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149.1 GB) (Disk ID: A0000000) Partition 1: (Not Active) - (Size=94 MB) - (Type=DE) Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS) Partition 3: (Active) - (Size=136.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=2.5 GB) - (Type=OF Extended) ======================================================== Disk: 1 (Size: 1.9 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ==================== End Of Log ============================ |
|
04.09.2014, 08:35
| #2 |
| /// the machine /// TB-Ausbilder    | acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht. hi,
__________________ So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ |
|
04.09.2014, 13:14
| #3 |
| | acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht. Ich komme da leider nicht weiter... Ich finde das # nicht! bzw. Wenn ich es über die Tastatur eingebe kommen keine klammern oder ähnliches...Du meinst doch das schreibprogramm Editor, oder?
__________________Also, ich finde den # nicht worauf ich drücken soll... 14:04:16.0341 0x1554 TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58 14:04:41.0708 0x1554 ============================================================ 14:04:41.0708 0x1554 Current date / time: 2014/09/04 14:04:41.0708 14:04:41.0708 0x1554 SystemInfo: 14:04:41.0708 0x1554 14:04:41.0709 0x1554 OS Version: 6.0.6002 ServicePack: 2.0 14:04:41.0709 0x1554 Product type: Workstation 14:04:41.0709 0x1554 ComputerName: LAPTOP-ZUPPY 14:04:41.0709 0x1554 UserName: zuppy 14:04:41.0709 0x1554 Windows directory: C:\Windows 14:04:41.0709 0x1554 System windows directory: C:\Windows 14:04:41.0709 0x1554 Processor architecture: Intel x86 14:04:41.0709 0x1554 Number of processors: 2 14:04:41.0709 0x1554 Page size: 0x1000 14:04:41.0709 0x1554 Boot type: Normal boot 14:04:41.0709 0x1554 ============================================================ 14:04:42.0591 0x1554 KLMD registered as C:\Windows\system32\drivers\10900206.sys 14:04:43.0638 0x1554 System UUID: {A0082DC7-3D22-32A9-6E20-26ECBB06EF58} 14:04:45.0806 0x1554 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 14:04:45.0846 0x1554 ============================================================ 14:04:45.0846 0x1554 \Device\Harddisk0\DR0: 14:04:45.0847 0x1554 MBR partitions: 14:04:45.0847 0x1554 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2F800, BlocksNum 0x1400000 14:04:45.0847 0x1554 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x142F800, BlocksNum 0x110E97F8 14:04:45.0869 0x1554 ============================================================ 14:04:45.0925 0x1554 C: <-> \Device\Harddisk0\DR0\Partition2 14:04:46.0015 0x1554 D: <-> \Device\Harddisk0\DR0\Partition1 14:04:46.0016 0x1554 ============================================================ 14:04:46.0016 0x1554 Initialize success 14:04:46.0016 0x1554 ============================================================ 14:04:47.0907 0x0bac ============================================================ 14:04:47.0907 0x0bac Scan started 14:04:47.0907 0x0bac Mode: Manual; 14:04:47.0907 0x0bac ============================================================ 14:04:47.0907 0x0bac KSN ping started 14:05:01.0274 0x0bac KSN ping finished: true 14:05:02.0377 0x0bac ================ Scan system memory ======================== 14:05:02.0377 0x0bac System memory - ok 14:05:02.0377 0x0bac ================ Scan services ============================= 14:05:02.0722 0x0bac [ 9AD3AC19F5A9968DB4297C4319D7CDDB, 454F45F471237858176492CF31340ECC7B8401539BE97C4B60257AD73FE7B8F9 ] acedrv01 C:\Windows\system32\drivers\acedrv01.sys 14:05:02.0727 0x0bac acedrv01 - ok 14:05:02.0808 0x0bac [ E00A398C09A6515769A4BC39E91064EB, 8F5EAAFCC6E18E6CCB681AFCF1DFE8311F6E8876F061285F6170C2A2D66EBCE6 ] acedrv02 C:\Windows\system32\drivers\acedrv02.sys 14:05:02.0813 0x0bac acedrv02 - ok 14:05:02.0857 0x0bac [ 2D838D7CE9B7CDAFDEC7ED43CC99FA1E, A758D61FD10B05AB9254E158DA83D13D857B33708DD45BBA77FE9C4430228655 ] acedrv04 C:\Windows\system32\drivers\acedrv04.sys 14:05:02.0891 0x0bac acedrv04 - ok 14:05:02.0986 0x0bac [ 0A1E97197609F92D2425B67DA0BB0A7F, 818FD957C6EA1869ED13EA8C0681D2850141E22A68A2D982E4AEEA2736F50555 ] acedrv05 C:\Windows\system32\drivers\acedrv05.sys 14:05:02.0991 0x0bac acedrv05 - ok 14:05:03.0043 0x0bac [ 44010948BDE6ADE50DD1386657C73E83, D5344784B092D31D9660406D371ED62EDFAB3EB880D129BEC0783208AE172274 ] acedrv06 C:\Windows\system32\drivers\acedrv06.sys 14:05:03.0048 0x0bac acedrv06 - ok 14:05:03.0103 0x0bac [ 4E5451DD0AEC8504D7F8030DD2D4C416, D1BF62B1D3D3D347DA46C0FE002C117FABC0ABCCABD1C56D5A6D9F1682C61233 ] acedrv07 C:\Windows\system32\drivers\acedrv07.sys 14:05:03.0108 0x0bac acedrv07 - ok 14:05:03.0217 0x0bac [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys 14:05:03.0251 0x0bac ACPI - ok 14:05:03.0293 0x0bac adfs - ok 14:05:03.0432 0x0bac [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 14:05:03.0443 0x0bac AdobeFlashPlayerUpdateSvc - ok 14:05:03.0547 0x0bac [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 14:05:03.0581 0x0bac adp94xx - ok 14:05:03.0609 0x0bac [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys 14:05:03.0631 0x0bac adpahci - ok 14:05:03.0657 0x0bac [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys 14:05:03.0662 0x0bac adpu160m - ok 14:05:03.0688 0x0bac [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 14:05:03.0695 0x0bac adpu320 - ok 14:05:03.0773 0x0bac [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 14:05:03.0775 0x0bac AeLookupSvc - ok 14:05:03.0866 0x0bac [ EF1142512BEC12F1C2C87735DA1755BE, 236EFD8FBA717123E0CF5A136ACEBB80A2BE1FA4B1A9A2C74728BC4EB4E787D8 ] AESTFilters C:\Windows\system32\aestsrv.exe 14:05:03.0870 0x0bac AESTFilters - ok 14:05:03.0964 0x0bac [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys 14:05:04.0030 0x0bac AFD - ok 14:05:04.0114 0x0bac [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4, 2E89838BD068314F4BE59753486E5D666FE2A3DD0A616E00EED4E0F83DB87401 ] agp440 C:\Windows\system32\drivers\agp440.sys 14:05:04.0117 0x0bac agp440 - ok 14:05:04.0153 0x0bac [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys 14:05:04.0157 0x0bac aic78xx - ok 14:05:04.0196 0x0bac [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe 14:05:04.0199 0x0bac ALG - ok 14:05:04.0214 0x0bac [ E32A92E1574A467F7C762922F6162D76, 8FFDB6DF3DCA371BF0252BA42A4D9E67D6CC08B67C9008F6992646156E3DDAF7 ] aliide C:\Windows\system32\drivers\aliide.sys 14:05:04.0216 0x0bac aliide - ok 14:05:04.0237 0x0bac [ 848F27E5B27C1C253F6CEFDC1A5D8F21, 0FE955D82CE68A1FC5DCA33626179005B90803821005A370EB36352817433089 ] amdagp C:\Windows\system32\drivers\amdagp.sys 14:05:04.0240 0x0bac amdagp - ok 14:05:04.0262 0x0bac [ B52B576CB0099A62F87214F371031561, E11C1FC16CF8D7B26856EB07E59537EFF5D2AFBB83B4A18CCFA3909DC8FD3196 ] amdide C:\Windows\system32\drivers\amdide.sys 14:05:04.0265 0x0bac amdide - ok 14:05:04.0282 0x0bac [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys 14:05:04.0285 0x0bac AmdK7 - ok 14:05:04.0295 0x0bac [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 14:05:04.0299 0x0bac AmdK8 - ok 14:05:04.0383 0x0bac [ 350F19EB5FE4EC37A2414DF56CDE1AA8, AC78C39D08D7DFEC19AF3FEF40C0EB8290897CABFF1DE40A399026E37426C735 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys 14:05:04.0390 0x0bac ApfiltrService - ok 14:05:04.0473 0x0bac [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll 14:05:04.0475 0x0bac Appinfo - ok 14:05:04.0603 0x0bac [ 6B73E94F9FE82D45781B8C8A09483082, C35EEAE7457168387A7C77A315524A3703ABDE49D9F23F59057315D9249D3473 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 14:05:04.0606 0x0bac Apple Mobile Device - ok 14:05:04.0629 0x0bac [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys 14:05:04.0633 0x0bac arc - ok 14:05:04.0707 0x0bac [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys 14:05:04.0712 0x0bac arcsas - ok 14:05:04.0874 0x0bac [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe 14:05:04.0878 0x0bac aspnet_state - ok 14:05:04.0949 0x0bac [ 3BFBB5DAE801CB893B8B46345FED6437, 2C2B71C1294585265D4871E74F17541500CA20DE34AC516F2A906DD81964C833 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys 14:05:04.0951 0x0bac aswHwid - ok 14:05:05.0021 0x0bac [ 4E39E113E8F5FEE3C49160A0D657A4D5, AAB66B7C0EC63FD457F579ABDC21ED96F5E11C546AA7067AF2BA79BADCDE00B2 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys 14:05:05.0023 0x0bac aswKbd - ok 14:05:05.0036 0x0bac [ C3014C735F450FE822C97FFBB0627113, 1CCFE845AED1757B8C1F52D310933076FF1EC197D82E499DB4592B09D66137B0 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys 14:05:05.0040 0x0bac aswMonFlt - ok 14:05:05.0088 0x0bac [ D6C9024F5D14843D33ADA8A6A10A1BE1, D40022D0A360FD4010D3D5D452BBC4CE9EE68224DEAB9584626E6F435E128857 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys 14:05:05.0091 0x0bac aswRdr - ok 14:05:05.0104 0x0bac [ B7750AF7EDFD95674EB7CA92BCDD3358, A097577004F3CF71E2F9465F02B073D39926D7DEE2E2A9516D888158A5CB19E9 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys 14:05:05.0107 0x0bac aswRvrt - ok 14:05:05.0219 0x0bac [ 51FDE588D860857A97E4C4B560E40C9B, 8A3AC3E55249DAE6CCD95593989F8B100D5C4712A16681A36E5D0F2F08BD57AA ] aswSnx C:\Windows\system32\drivers\aswSnx.sys 14:05:05.0264 0x0bac aswSnx - ok 14:05:05.0326 0x0bac [ 1AEB8CDB797666AF709A291B47AE81E0, 12AC4DBC6338BA5E5C04B449FF8362E7EC8EBFCA675C4F21BE847DFDCAE8F7C9 ] aswSP C:\Windows\system32\drivers\aswSP.sys 14:05:05.0349 0x0bac aswSP - ok 14:05:05.0377 0x0bac [ 26C51C289E39E8EE0F12B8B06B71E436, 81382FC3E836698432EE832A166F09251CC9164B17584E90F73037A1FA54E4F7 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys 14:05:05.0430 0x0bac aswTdi - ok 14:05:05.0476 0x0bac [ 90BEE0170D70D6744CEF2355EEAF8086, 8F9FF53F529B854934020E2F8163605DC794FF48464D3D4439BAAF70ECE8E963 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys 14:05:05.0484 0x0bac aswVmm - ok 14:05:05.0542 0x0bac [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 14:05:05.0544 0x0bac AsyncMac - ok 14:05:05.0583 0x0bac [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys 14:05:05.0585 0x0bac atapi - ok 14:05:05.0679 0x0bac [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 14:05:05.0702 0x0bac AudioEndpointBuilder - ok 14:05:05.0735 0x0bac [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll 14:05:05.0744 0x0bac Audiosrv - ok 14:05:05.0812 0x0bac [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe 14:05:05.0815 0x0bac avast! Antivirus - ok 14:05:05.0928 0x0bac [ 746F59822A5187510471FC46889B8CC9, 7D731460D5EE677C19C632366E3B055AD10B1E65808AE10D3E082641C9F705FF ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys 14:05:05.0962 0x0bac BCM43XX - ok 14:05:06.0040 0x0bac [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys 14:05:06.0042 0x0bac Beep - ok 14:05:06.0136 0x0bac [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll 14:05:06.0159 0x0bac BFE - ok 14:05:06.0270 0x0bac [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll 14:05:06.0316 0x0bac BITS - ok 14:05:06.0327 0x0bac blbdrive - ok 14:05:06.0452 0x0bac [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 14:05:06.0475 0x0bac Bonjour Service - ok 14:05:06.0525 0x0bac [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 14:05:06.0529 0x0bac bowser - ok 14:05:06.0599 0x0bac [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys 14:05:06.0601 0x0bac BrFiltLo - ok 14:05:06.0624 0x0bac [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys 14:05:06.0626 0x0bac BrFiltUp - ok 14:05:06.0674 0x0bac [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll 14:05:06.0680 0x0bac Browser - ok 14:05:06.0741 0x0bac [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys 14:05:06.0745 0x0bac Brserid - ok 14:05:06.0769 0x0bac [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys 14:05:06.0773 0x0bac BrSerWdm - ok 14:05:06.0798 0x0bac [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys 14:05:06.0800 0x0bac BrUsbMdm - ok 14:05:06.0819 0x0bac [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys 14:05:06.0846 0x0bac BrUsbSer - ok 14:05:06.0959 0x0bac [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc C:\Program Files\Browny02\BrYNSvc.exe 14:05:06.0969 0x0bac BrYNSvc - ok 14:05:06.0990 0x0bac [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 14:05:06.0993 0x0bac BTHMODEM - ok 14:05:07.0033 0x0bac [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 14:05:07.0037 0x0bac cdfs - ok 14:05:07.0115 0x0bac [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 14:05:07.0119 0x0bac cdrom - ok 14:05:07.0196 0x0bac [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll 14:05:07.0199 0x0bac CertPropSvc - ok 14:05:07.0224 0x0bac [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys 14:05:07.0227 0x0bac circlass - ok 14:05:07.0272 0x0bac [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys 14:05:07.0283 0x0bac CLFS - ok 14:05:07.0355 0x0bac [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 14:05:07.0360 0x0bac clr_optimization_v2.0.50727_32 - ok 14:05:07.0434 0x0bac [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 14:05:07.0467 0x0bac clr_optimization_v4.0.30319_32 - ok 14:05:07.0514 0x0bac [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 14:05:07.0516 0x0bac CmBatt - ok 14:05:07.0532 0x0bac [ C177DD90B5DC1DCAA96CCECE752E6F0F, 4469A32BFE9D0207A55AB222E4AF111D8780FCDB3E2D0BFB24742B4CE9040BA7 ] cmdide C:\Windows\system32\drivers\cmdide.sys 14:05:07.0534 0x0bac cmdide - ok 14:05:07.0576 0x0bac cmnsusbser - ok 14:05:07.0631 0x0bac [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 14:05:07.0633 0x0bac Compbatt - ok 14:05:07.0642 0x0bac COMSysApp - ok 14:05:07.0662 0x0bac [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 14:05:07.0664 0x0bac crcdisk - ok 14:05:07.0689 0x0bac [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys 14:05:07.0692 0x0bac Crusoe - ok 14:05:07.0779 0x0bac [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll 14:05:07.0786 0x0bac CryptSvc - ok 14:05:07.0896 0x0bac [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll 14:05:07.0946 0x0bac DcomLaunch - ok 14:05:07.0993 0x0bac [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 14:05:07.0998 0x0bac DfsC - ok 14:05:08.0157 0x0bac [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe 14:05:08.0268 0x0bac DFSR - ok 14:05:08.0355 0x0bac [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll 14:05:08.0366 0x0bac Dhcp - ok 14:05:08.0452 0x0bac [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys 14:05:08.0456 0x0bac disk - ok 14:05:08.0536 0x0bac [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll 14:05:08.0542 0x0bac Dnscache - ok 14:05:08.0591 0x0bac [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll 14:05:08.0600 0x0bac dot3svc - ok 14:05:08.0681 0x0bac [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys 14:05:08.0688 0x0bac Dot4 - ok 14:05:08.0708 0x0bac [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys 14:05:08.0710 0x0bac Dot4Print - ok 14:05:08.0764 0x0bac [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys 14:05:08.0767 0x0bac dot4usb - ok 14:05:08.0837 0x0bac [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll 14:05:08.0845 0x0bac DPS - ok 14:05:08.0878 0x0bac [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 14:05:08.0880 0x0bac drmkaud - ok 14:05:08.0909 0x0bac [ 4823163C246868863D41A2F5EE06A21E, 6CFCBBAAD564CE155FDA33EE6025ADEE23807AC3D15975F5B0C7F55CAD3463DF ] dsNcAdpt C:\Windows\system32\DRIVERS\dsNcAdpt.sys 14:05:08.0911 0x0bac dsNcAdpt - ok 14:05:09.0004 0x0bac [ 8A888331C308D7BC3ACADC5D417E94E9, 24999FB485AD7FCBF1F02BF1F39E71A0B4F3043998B9EAE605B5AC2E2760F710 ] dsNcService C:\Program Files\Juniper Networks\Common Files\dsNcService.exe 14:05:09.0027 0x0bac dsNcService - ok 14:05:09.0102 0x0bac [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 14:05:09.0136 0x0bac DXGKrnl - ok 14:05:09.0241 0x0bac [ 7505290504C8E2D172FA378CC0497BCC, 8DD69E1B27EC13E62529C87B6B796675681E6329C825E64EEC9134B15C08161C ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys 14:05:09.0250 0x0bac e1express - ok 14:05:09.0320 0x0bac [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys 14:05:09.0326 0x0bac E1G60 - ok 14:05:09.0368 0x0bac [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll 14:05:09.0373 0x0bac EapHost - ok 14:05:09.0450 0x0bac [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys 14:05:09.0457 0x0bac Ecache - ok 14:05:09.0533 0x0bac [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe 14:05:09.0555 0x0bac ehRecvr - ok 14:05:09.0594 0x0bac [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe 14:05:09.0607 0x0bac ehSched - ok 14:05:09.0628 0x0bac [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll 14:05:09.0631 0x0bac ehstart - ok 14:05:09.0697 0x0bac [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys 14:05:09.0727 0x0bac elxstor - ok 14:05:09.0808 0x0bac [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll 14:05:09.0864 0x0bac EMDMgmt - ok 14:05:09.0943 0x0bac [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll 14:05:09.0966 0x0bac EventSystem - ok 14:05:10.0058 0x0bac [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys 14:05:10.0064 0x0bac exfat - ok 14:05:10.0109 0x0bac [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys 14:05:10.0116 0x0bac fastfat - ok 14:05:10.0195 0x0bac [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys 14:05:10.0198 0x0bac fdc - ok 14:05:10.0229 0x0bac [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll 14:05:10.0233 0x0bac fdPHost - ok 14:05:10.0261 0x0bac [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll 14:05:10.0265 0x0bac FDResPub - ok 14:05:10.0312 0x0bac [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 14:05:10.0316 0x0bac FileInfo - ok 14:05:10.0337 0x0bac [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 14:05:10.0340 0x0bac Filetrace - ok 14:05:10.0361 0x0bac [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 14:05:10.0363 0x0bac flpydisk - ok 14:05:10.0411 0x0bac [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 14:05:10.0420 0x0bac FltMgr - ok 14:05:10.0526 0x0bac [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll 14:05:10.0571 0x0bac FontCache - ok 14:05:10.0638 0x0bac [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 14:05:10.0641 0x0bac FontCache3.0.0.0 - ok 14:05:10.0687 0x0bac [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 14:05:10.0690 0x0bac Fs_Rec - ok 14:05:10.0724 0x0bac [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 14:05:10.0728 0x0bac gagp30kx - ok 14:05:10.0813 0x0bac [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys 14:05:10.0815 0x0bac GEARAspiWDM - ok 14:05:10.0921 0x0bac [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll 14:05:10.0955 0x0bac gpsvc - ok 14:05:11.0051 0x0bac [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 14:05:11.0055 0x0bac gupdate - ok 14:05:11.0090 0x0bac [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 14:05:11.0094 0x0bac gupdatem - ok 14:05:11.0150 0x0bac [ 3F90E001369A07243763BD5A523D8722, 25907F85787D879E75C3FE74C93567382AFB2D528BEEC61D71E3A6BE2D71DFBE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 14:05:11.0160 0x0bac HdAudAddService - ok 14:05:11.0230 0x0bac [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 14:05:11.0263 0x0bac HDAudBus - ok 14:05:11.0299 0x0bac [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys 14:05:11.0302 0x0bac HidBth - ok 14:05:11.0325 0x0bac [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys 14:05:11.0328 0x0bac HidIr - ok 14:05:11.0373 0x0bac [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll 14:05:11.0378 0x0bac hidserv - ok 14:05:11.0395 0x0bac [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 14:05:11.0397 0x0bac HidUsb - ok 14:05:11.0446 0x0bac [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll 14:05:11.0453 0x0bac hkmsvc - ok 14:05:11.0475 0x0bac [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys 14:05:11.0478 0x0bac HpCISSs - ok 14:05:11.0557 0x0bac [ E9E589C9AB799F52E18F057635A2B362, 24857D672B09C13EF290E7EA587D25270DE23740EE18E2FCF16716D9E0D0E457 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys 14:05:11.0624 0x0bac HSF_DPV - ok 14:05:11.0663 0x0bac [ 7845D2385F4DC7DFB3CCAF0C2FA4948E, 18F01851E18CCF84A7987B739C7661C8BF272CF69F4E6BA87A69FCDBA1B8774A ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys 14:05:11.0672 0x0bac HSXHWAZL - ok 14:05:11.0731 0x0bac [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys 14:05:11.0754 0x0bac HTTP - ok 14:05:11.0804 0x0bac hwdatacard - ok 14:05:11.0866 0x0bac [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys 14:05:11.0869 0x0bac i2omp - ok 14:05:11.0935 0x0bac [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 14:05:11.0939 0x0bac i8042prt - ok 14:05:12.0038 0x0bac [ AE38A12F79A4980DDB88F36514F8A1DA, CA7EE57EC2ECA88ABFD087DAF8963021DC12821FDFAAD0336A16F8DC119C0FC4 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe 14:05:12.0060 0x0bac IAANTMON - ok 14:05:12.0109 0x0bac [ 997E8F5939F2D12CD9F2E6B395724C16, C22F10BADE29DA6F7EB79D9F5D81D9FBEC17D4D4F8B25E0AF4E5CEAE28E8ABF6 ] iaStor C:\Windows\system32\drivers\iastor.sys 14:05:12.0118 0x0bac iaStor - ok 14:05:12.0149 0x0bac [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys 14:05:12.0159 0x0bac iaStorV - ok 14:05:12.0299 0x0bac [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe 14:05:12.0304 0x0bac IDriverT - ok 14:05:12.0401 0x0bac [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 14:05:12.0446 0x0bac idsvc - ok 14:05:12.0613 0x0bac [ C134E69CE901422D1F2D7EA8D69098FE, 38D7AB6C85C0BCE34B8F52DDBD6F0371DF551003DF6BAE20A2AB1D1349128890 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys 14:05:12.0726 0x0bac igfx - ok 14:05:12.0755 0x0bac [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys 14:05:12.0758 0x0bac iirsp - ok 14:05:12.0817 0x0bac [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll 14:05:12.0851 0x0bac IKEEXT - ok 14:05:12.0923 0x0bac [ 98D303CCB3415E9202E82043B37D66DC, 53526635EBCA6E2C2E9AAEC68B333CAE6A5FF0008859FCDE3D84A2C9098B30B0 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys 14:05:12.0928 0x0bac IntcHdmiAddService - ok 14:05:12.0971 0x0bac [ 59B00EFB24EAD979BECF413703BB1FAC, CC094DF02F2D894DCE31AB21CA3A90AB93AF9782535FBDE8B383CAD48BAB13DF ] intelide C:\Windows\system32\DRIVERS\intelide.sys 14:05:12.0973 0x0bac intelide - ok 14:05:13.0041 0x0bac [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 14:05:13.0044 0x0bac intelppm - ok 14:05:13.0094 0x0bac [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 14:05:13.0101 0x0bac IPBusEnum - ok 14:05:13.0165 0x0bac [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 14:05:13.0169 0x0bac IpFilterDriver - ok 14:05:13.0220 0x0bac [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 14:05:13.0232 0x0bac iphlpsvc - ok 14:05:13.0240 0x0bac IpInIp - ok 14:05:13.0279 0x0bac [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys 14:05:13.0283 0x0bac IPMIDRV - ok 14:05:13.0321 0x0bac [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys 14:05:13.0326 0x0bac IPNAT - ok 14:05:13.0422 0x0bac [ 35828479CCB4EE3CFD7523AF63443D5B, CA582DB092DC049597268B8245F2EEFF5DB807CBE2CFABEA04EA00DD5ED9A2B6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 14:05:13.0510 0x0bac iPod Service - ok 14:05:13.0558 0x0bac [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys 14:05:13.0561 0x0bac IRENUM - ok 14:05:13.0587 0x0bac [ 2F8ECE2699E7E2070545E9B0960A8ED2, 40214A9220C6EC232C245939E4F40A9FF6D30497E180EDC809B87938A922E52D ] isapnp C:\Windows\system32\drivers\isapnp.sys 14:05:13.0590 0x0bac isapnp - ok 14:05:13.0669 0x0bac [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 14:05:13.0678 0x0bac iScsiPrt - ok 14:05:13.0699 0x0bac [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys 14:05:13.0702 0x0bac iteatapi - ok 14:05:13.0719 0x0bac [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys 14:05:13.0722 0x0bac iteraid - ok 14:05:13.0756 0x0bac [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 14:05:13.0759 0x0bac kbdclass - ok 14:05:13.0804 0x0bac [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 14:05:13.0807 0x0bac kbdhid - ok 14:05:13.0845 0x0bac [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe 14:05:13.0850 0x0bac KeyIso - ok 14:05:13.0952 0x0bac [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 14:05:13.0985 0x0bac KSecDD - ok 14:05:14.0036 0x0bac [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll 14:05:14.0060 0x0bac KtmRm - ok 14:05:14.0136 0x0bac [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll 14:05:14.0147 0x0bac LanmanServer - ok 14:05:14.0189 0x0bac [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 14:05:14.0202 0x0bac LanmanWorkstation - ok 14:05:14.0255 0x0bac [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 14:05:14.0258 0x0bac lltdio - ok 14:05:14.0314 0x0bac [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll 14:05:14.0325 0x0bac lltdsvc - ok 14:05:14.0355 0x0bac [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll 14:05:14.0360 0x0bac lmhosts - ok 14:05:14.0396 0x0bac [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 14:05:14.0400 0x0bac LSI_FC - ok 14:05:14.0418 0x0bac [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 14:05:14.0422 0x0bac LSI_SAS - ok 14:05:14.0447 0x0bac [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 14:05:14.0451 0x0bac LSI_SCSI - ok 14:05:14.0528 0x0bac [ 834098EE53663043E94F51D8B8E2CB0E, CFD6898789ECE64C0103CC801859E018B51639862DA3EE80872D4C559F2514F9 ] LTXMD_VAC C:\Windows\system32\drivers\lmvac.sys 14:05:14.0531 0x0bac LTXMD_VAC - ok 14:05:14.0571 0x0bac [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys 14:05:14.0576 0x0bac luafv - ok 14:05:14.0593 0x0bac [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 14:05:14.0600 0x0bac Mcx2Svc - ok 14:05:14.0622 0x0bac [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys 14:05:14.0624 0x0bac mdmxsdk - ok 14:05:14.0639 0x0bac [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys 14:05:14.0641 0x0bac megasas - ok 14:05:14.0666 0x0bac [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll 14:05:14.0672 0x0bac MMCSS - ok 14:05:14.0709 0x0bac [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys 14:05:14.0712 0x0bac Modem - ok 14:05:14.0760 0x0bac [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 14:05:14.0763 0x0bac monitor - ok 14:05:14.0772 0x0bac [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 14:05:14.0775 0x0bac mouclass - ok 14:05:14.0808 0x0bac [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 14:05:14.0810 0x0bac mouhid - ok 14:05:14.0835 0x0bac [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys 14:05:14.0839 0x0bac MountMgr - ok 14:05:14.0918 0x0bac [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys 14:05:14.0922 0x0bac mpio - ok 14:05:14.0959 0x0bac [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 14:05:14.0963 0x0bac mpsdrv - ok 14:05:15.0024 0x0bac [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll 14:05:15.0058 0x0bac MpsSvc - ok 14:05:15.0083 0x0bac [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys 14:05:15.0086 0x0bac Mraid35x - ok 14:05:15.0117 0x0bac [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 14:05:15.0123 0x0bac MRxDAV - ok 14:05:15.0169 0x0bac [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 14:05:15.0174 0x0bac mrxsmb - ok 14:05:15.0224 0x0bac [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 14:05:15.0234 0x0bac mrxsmb10 - ok 14:05:15.0268 0x0bac [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 14:05:15.0273 0x0bac mrxsmb20 - ok 14:05:15.0297 0x0bac [ 2681302B63B318CBEA6C82902AC5428C, B3E243E8582AE92568231C197FC1CB2BA60EDDCBCAA7F404C4012D2A803B7A8E ] msahci C:\Windows\system32\drivers\msahci.sys 14:05:15.0300 0x0bac msahci - ok 14:05:15.0331 0x0bac [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys 14:05:15.0335 0x0bac msdsm - ok 14:05:15.0377 0x0bac [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe 14:05:15.0385 0x0bac MSDTC - ok 14:05:15.0430 0x0bac [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys 14:05:15.0433 0x0bac Msfs - ok 14:05:15.0484 0x0bac [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 14:05:15.0487 0x0bac msisadrv - ok 14:05:15.0530 0x0bac [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 14:05:15.0538 0x0bac MSiSCSI - ok 14:05:15.0546 0x0bac msiserver - ok 14:05:15.0585 0x0bac [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 14:05:15.0587 0x0bac MSKSSRV - ok 14:05:15.0596 0x0bac [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 14:05:15.0599 0x0bac MSPCLOCK - ok 14:05:15.0613 0x0bac [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 14:05:15.0615 0x0bac MSPQM - ok 14:05:15.0654 0x0bac [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 14:05:15.0662 0x0bac MsRPC - ok 14:05:15.0684 0x0bac [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 14:05:15.0687 0x0bac mssmbios - ok 14:05:15.0738 0x0bac [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 14:05:15.0741 0x0bac MSTEE - ok 14:05:15.0756 0x0bac [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys 14:05:15.0760 0x0bac Mup - ok 14:05:15.0811 0x0bac [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll 14:05:15.0834 0x0bac napagent - ok 14:05:15.0885 0x0bac [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 14:05:15.0892 0x0bac NativeWifiP - ok 14:05:15.0996 0x0bac [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys 14:05:16.0030 0x0bac NDIS - ok 14:05:16.0082 0x0bac [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 14:05:16.0088 0x0bac NdisTapi - ok 14:05:16.0130 0x0bac [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 14:05:16.0132 0x0bac Ndisuio - ok 14:05:16.0149 0x0bac [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 14:05:16.0156 0x0bac NdisWan - ok 14:05:16.0209 0x0bac [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 14:05:16.0212 0x0bac NDProxy - ok 14:05:16.0280 0x0bac [ 51C6D8BFBD4EA5B62A1BA7F4469250D3, 29ACA9D8A5426333F75858D9D3960A4DCDDA4ACC986B3E9E37D255E4FAECDB7C ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 14:05:16.0284 0x0bac Net Driver HPZ12 - ok 14:05:16.0326 0x0bac [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 14:05:16.0329 0x0bac NetBIOS - ok 14:05:16.0387 0x0bac [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys 14:05:16.0396 0x0bac netbt - ok 14:05:16.0423 0x0bac [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe 14:05:16.0427 0x0bac Netlogon - ok 14:05:16.0579 0x0bac [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll 14:05:16.0617 0x0bac Netman - ok 14:05:16.0706 0x0bac [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 14:05:16.0746 0x0bac NetMsmqActivator - ok 14:05:16.0773 0x0bac [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 14:05:16.0778 0x0bac NetPipeActivator - ok 14:05:16.0838 0x0bac [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll 14:05:16.0852 0x0bac netprofm - ok 14:05:16.0868 0x0bac [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 14:05:16.0874 0x0bac NetTcpActivator - ok 14:05:16.0885 0x0bac [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 14:05:16.0890 0x0bac NetTcpPortSharing - ok 14:05:16.0926 0x0bac [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 14:05:16.0930 0x0bac nfrd960 - ok 14:05:16.0958 0x0bac [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll 14:05:16.0969 0x0bac NlaSvc - ok 14:05:17.0010 0x0bac [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys 14:05:17.0013 0x0bac Npfs - ok 14:05:17.0056 0x0bac [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll 14:05:17.0062 0x0bac nsi - ok 14:05:17.0096 0x0bac [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 14:05:17.0098 0x0bac nsiproxy - ok 14:05:17.0244 0x0bac [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 14:05:17.0300 0x0bac Ntfs - ok 14:05:17.0327 0x0bac [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys 14:05:17.0330 0x0bac ntrigdigi - ok 14:05:17.0352 0x0bac [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys 14:05:17.0354 0x0bac Null - ok 14:05:17.0395 0x0bac [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys 14:05:17.0400 0x0bac nvraid - ok 14:05:17.0419 0x0bac [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys 14:05:17.0422 0x0bac nvstor - ok 14:05:17.0440 0x0bac [ 055081FD5076401C1EE1BCAB08D81911, E6621F2D24E7E2544AFD249660F2D1026B94698CA841E79B3F1199ACB2203995 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 14:05:17.0446 0x0bac nv_agp - ok 14:05:17.0454 0x0bac NwlnkFlt - ok 14:05:17.0463 0x0bac NwlnkFwd - ok 14:05:17.0543 0x0bac [ 19CAC780B858822055F46C58A111723C, D91CE501328281B8FEE6943776A145FB3201645B01BA8D1545FFA93A547DE2C7 ] OEM02Dev C:\Windows\system32\DRIVERS\OEM02Dev.sys 14:05:17.0553 0x0bac OEM02Dev - ok 14:05:17.0572 0x0bac [ 86326062A90494BDD79CE383511D7D69, 43D5682CA8ECB4BA7CC1A5C4C2BF966EE4802E8C3AA84CDEB634CA3C410DAB89 ] OEM02Vfx C:\Windows\system32\DRIVERS\OEM02Vfx.sys 14:05:17.0574 0x0bac OEM02Vfx - ok 14:05:17.0651 0x0bac [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys 14:05:17.0655 0x0bac ohci1394 - ok 14:05:17.0726 0x0bac [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll 14:05:17.0771 0x0bac p2pimsvc - ok 14:05:17.0842 0x0bac [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll 14:05:17.0864 0x0bac p2psvc - ok 14:05:17.0913 0x0bac [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys 14:05:17.0918 0x0bac Parport - ok 14:05:17.0965 0x0bac [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys 14:05:17.0969 0x0bac partmgr - ok 14:05:17.0985 0x0bac [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys 14:05:17.0989 0x0bac Parvdm - ok 14:05:18.0034 0x0bac [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll 14:05:18.0041 0x0bac PcaSvc - ok 14:05:18.0085 0x0bac [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys 14:05:18.0110 0x0bac pci - ok 14:05:18.0182 0x0bac [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide C:\Windows\system32\drivers\pciide.sys 14:05:18.0184 0x0bac pciide - ok 14:05:18.0214 0x0bac [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 14:05:18.0226 0x0bac pcmcia - ok 14:05:18.0426 0x0bac [ F97DC1A5244469D367B1334D47118E34, A36B6C402F92BEBE14082296CBF5F69656ED87AB700789028799768FA1FE2A72 ] PDF Architect 2 C:\Program Files\PDF Architect 2\ws.exe 14:05:18.0594 0x0bac PDF Architect 2 - ok 14:05:18.0687 0x0bac [ E81F7D5371C95904D4105B06405D5EDA, A6A41793AC241801D37A95C25B2DA0C3CDDC804B4F2BD087ECBD30C562F3517B ] pdfforge CrashHandler C:\Program Files\PDF Architect 2\crash-handler-ws.exe 14:05:18.0743 0x0bac pdfforge CrashHandler - ok 14:05:18.0862 0x0bac [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 14:05:18.0907 0x0bac PEAUTH - ok 14:05:19.0052 0x0bac [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll 14:05:19.0138 0x0bac pla - ok 14:05:19.0193 0x0bac [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll 14:05:19.0208 0x0bac PlugPlay - ok 14:05:19.0246 0x0bac [ 79834AA2FBF9FE81EEBB229024F6F7FC, 4E243765C11AE9B5D003C3220B8AA0C4671B2627221D2323F80189CA3A307FEF ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 14:05:19.0251 0x0bac Pml Driver HPZ12 - ok 14:05:19.0304 0x0bac [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll 14:05:19.0360 0x0bac PNRPAutoReg - ok 14:05:19.0426 0x0bac [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll 14:05:19.0448 0x0bac PNRPsvc - ok 14:05:19.0486 0x0bac [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 14:05:19.0519 0x0bac PolicyAgent - ok 14:05:19.0565 0x0bac [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 14:05:19.0569 0x0bac PptpMiniport - ok 14:05:19.0603 0x0bac [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor C:\Windows\system32\drivers\processr.sys 14:05:19.0606 0x0bac Processor - ok 14:05:19.0650 0x0bac [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll 14:05:19.0661 0x0bac ProfSvc - ok 14:05:19.0679 0x0bac [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe 14:05:19.0683 0x0bac ProtectedStorage - ok 14:05:19.0725 0x0bac [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys 14:05:19.0728 0x0bac PSched - ok 14:05:19.0782 0x0bac [ E42E3433DBB4CFFE8FDD91EAB29AEA8E, 20ABD8372B242FD356AC143E7EB56F93CFEA4988ED1B0C4434CB64C387D7F66C ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys 14:05:19.0785 0x0bac PxHelp20 - ok 14:05:19.0881 0x0bac [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys 14:05:19.0942 0x0bac ql2300 - ok 14:05:19.0964 0x0bac [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 14:05:19.0969 0x0bac ql40xx - ok 14:05:20.0024 0x0bac [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll 14:05:20.0039 0x0bac QWAVE - ok 14:05:20.0085 0x0bac [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 14:05:20.0088 0x0bac QWAVEdrv - ok 14:05:20.0220 0x0bac [ E642B131FB74CAF4BB8A014F31113142, 18A81B27FB2DA556AC51DBA8956203A6E821D75B2B09F11049250E732318F573 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys 14:05:20.0325 0x0bac R300 - ok 14:05:20.0453 0x0bac [ 70DBDAB246C18B78E2200D6401D038BE, 18395D084AA9BEAF9C20736C90063CE1F862AF3A80F7752DB4FC0D1870D9996D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll 14:05:20.0460 0x0bac RapiMgr - ok 14:05:20.0499 0x0bac [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 14:05:20.0502 0x0bac RasAcd - ok 14:05:20.0548 0x0bac [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll 14:05:20.0559 0x0bac RasAuto - ok 14:05:20.0608 0x0bac [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 14:05:20.0612 0x0bac Rasl2tp - ok 14:05:20.0667 0x0bac [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll 14:05:20.0683 0x0bac RasMan - ok 14:05:20.0767 0x0bac [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 14:05:20.0777 0x0bac RasPppoe - ok 14:05:20.0813 0x0bac [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 14:05:20.0821 0x0bac RasSstp - ok 14:05:20.0886 0x0bac [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 14:05:20.0912 0x0bac rdbss - ok 14:05:20.0921 0x0bac [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 14:05:20.0924 0x0bac RDPCDD - ok 14:05:20.0985 0x0bac [ 0245418224CFA77BF4B41C2FE0622258, 532A8ABB476A1723FDD25A12EA07C97F2588F24D0AE6F86C0105112A9AECCDB9 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys 14:05:20.0995 0x0bac rdpdr - ok 14:05:21.0010 0x0bac [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 14:05:21.0012 0x0bac RDPENCDD - ok 14:05:21.0074 0x0bac [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 14:05:21.0082 0x0bac RDPWD - ok 14:05:21.0174 0x0bac [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll 14:05:21.0181 0x0bac RemoteAccess - ok 14:05:21.0222 0x0bac [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll 14:05:21.0232 0x0bac RemoteRegistry - ok 14:05:21.0297 0x0bac [ 355AAC141B214BEF1DBC1483AFD9BD50, EB9AF96E81C1644C0190D269119BE71C63B60D50153C6EA2659B488C4456DBDF ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys 14:05:21.0300 0x0bac rimmptsk - ok 14:05:21.0322 0x0bac [ A4216C71DD4F60B26418CCFD99CD0815, C189953DD7B3AB31167D8746E8F829D222FEF3F8866317814414EF3E0D92B9E1 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys 14:05:21.0326 0x0bac rimsptsk - ok 14:05:21.0342 0x0bac [ D231B577024AA324AF13A42F3A807D10, F63885D67FA40F3640044C79AE8FAA536D307959D2AE9543C4A8F3CE5447CF91 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys 14:05:21.0345 0x0bac rismxdp - ok 14:05:21.0378 0x0bac [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe 14:05:21.0383 0x0bac RpcLocator - ok 14:05:21.0454 0x0bac [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll 14:05:21.0478 0x0bac RpcSs - ok 14:05:21.0531 0x0bac [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 14:05:21.0536 0x0bac rspndr - ok 14:05:21.0561 0x0bac [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe 14:05:21.0583 0x0bac SamSs - ok 14:05:21.0614 0x0bac [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 14:05:21.0619 0x0bac sbp2port - ok 14:05:21.0653 0x0bac [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll 14:05:21.0679 0x0bac SCardSvr - ok 14:05:21.0758 0x0bac [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll 14:05:21.0792 0x0bac Schedule - ok 14:05:21.0841 0x0bac [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll 14:05:21.0844 0x0bac SCPolicySvc - ok 14:05:21.0892 0x0bac [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 14:05:21.0897 0x0bac sdbus - ok 14:05:21.0942 0x0bac [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll 14:05:21.0952 0x0bac SDRSVC - ok 14:05:22.0002 0x0bac [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys 14:05:22.0005 0x0bac secdrv - ok 14:05:22.0070 0x0bac [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll 14:05:22.0077 0x0bac seclogon - ok 14:05:22.0093 0x0bac [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll 14:05:22.0101 0x0bac SENS - ok 14:05:22.0125 0x0bac [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys 14:05:22.0128 0x0bac Serenum - ok 14:05:22.0161 0x0bac [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys 14:05:22.0167 0x0bac Serial - ok 14:05:22.0206 0x0bac [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys 14:05:22.0208 0x0bac sermouse - ok 14:05:22.0278 0x0bac [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll 14:05:22.0287 0x0bac SessionEnv - ok 14:05:22.0319 0x0bac [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys 14:05:22.0338 0x0bac sffdisk - ok 14:05:22.0355 0x0bac [ 96DED8B20C734AC41641CE275250E55D, E88317D0B31A98917AD30AD9F8CF6B59C1141FFBF7A150D8675A29B95FF150F3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 14:05:22.0357 0x0bac sffp_mmc - ok 14:05:22.0368 0x0bac [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys 14:05:22.0370 0x0bac sffp_sd - ok 14:05:22.0388 0x0bac [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 14:05:22.0391 0x0bac sfloppy - ok 14:05:22.0435 0x0bac [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll 14:05:22.0456 0x0bac SharedAccess - ok 14:05:22.0519 0x0bac [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 14:05:22.0535 0x0bac ShellHWDetection - ok 14:05:22.0578 0x0bac [ 08072B2FB92477FC813271A84B3A8698, A97ABDEB5E37F7B50DD6168FAAD524BE82418FC7818BB667C10951408FB6EB70 ] sisagp C:\Windows\system32\drivers\sisagp.sys 14:05:22.0581 0x0bac sisagp - ok 14:05:22.0605 0x0bac [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys 14:05:22.0609 0x0bac SiSRaid2 - ok 14:05:22.0655 0x0bac [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 14:05:22.0660 0x0bac SiSRaid4 - ok 14:05:22.0743 0x0bac [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe 14:05:22.0751 0x0bac SkypeUpdate - ok 14:05:22.0998 0x0bac [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe 14:05:23.0211 0x0bac slsvc - ok 14:05:23.0297 0x0bac [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll 14:05:23.0312 0x0bac SLUINotify - ok 14:05:23.0346 0x0bac [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys 14:05:23.0351 0x0bac Smb - ok 14:05:23.0385 0x0bac [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 14:05:23.0392 0x0bac SNMPTRAP - ok 14:05:23.0431 0x0bac [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys 14:05:23.0434 0x0bac spldr - ok 14:05:23.0481 0x0bac [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe 14:05:23.0492 0x0bac Spooler - ok 14:05:23.0528 0x0bac sprtsvc_dellsupportcenter - ok 14:05:23.0584 0x0bac [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys 14:05:23.0607 0x0bac srv - ok 14:05:23.0651 0x0bac [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 14:05:23.0659 0x0bac srv2 - ok 14:05:23.0685 0x0bac [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 14:05:23.0691 0x0bac srvnet - ok 14:05:23.0711 0x0bac [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 14:05:23.0723 0x0bac SSDPSRV - ok 14:05:23.0802 0x0bac [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys 14:05:23.0824 0x0bac ssmdrv - ok 14:05:23.0893 0x0bac [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll 14:05:23.0905 0x0bac SstpSvc - ok 14:05:23.0966 0x0bac [ 799AA3E04879B3FED31ECEA02B1CAA9A, EECEE3F666EE3722B5655E596CF4128303AD6CA3C5B45C3501B4D1D2CEC9FD75 ] STacSV C:\Windows\system32\STacSV.exe 14:05:23.0976 0x0bac STacSV - ok 14:05:24.0068 0x0bac [ 5AF135B2E2097D4494B9067CE84E2665, E7517C43BB81B6AE017172BA5389F6B0FC17CF9E60AAB3453A6D80A087C86592 ] STHDA C:\Windows\system32\drivers\stwrt.sys 14:05:24.0090 0x0bac STHDA - ok 14:05:24.0162 0x0bac [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 14:05:24.0164 0x0bac StillCam - ok 14:05:24.0231 0x0bac [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll 14:05:24.0264 0x0bac stisvc - ok 14:05:24.0340 0x0bac [ 7489520E98A119B5A9A00857F4F87D16, 818E070C16A85DD641A865CF439FF862A0D05B1E18B2329C24E8983074E0354E ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe 14:05:24.0390 0x0bac stllssvr - ok 14:05:24.0461 0x0bac [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys 14:05:24.0486 0x0bac swenum - ok 14:05:24.0610 0x0bac [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll 14:05:24.0689 0x0bac swprv - ok 14:05:24.0739 0x0bac [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys 14:05:24.0742 0x0bac Symc8xx - ok 14:05:24.0759 0x0bac [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys 14:05:24.0762 0x0bac Sym_hi - ok 14:05:24.0785 0x0bac [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys 14:05:24.0789 0x0bac Sym_u3 - ok 14:05:24.0859 0x0bac [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll 14:05:24.0904 0x0bac SysMain - ok 14:05:24.0937 0x0bac [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll 14:05:24.0946 0x0bac TabletInputService - ok 14:05:25.0015 0x0bac [ 5C7C939BBD03784FE58C80578D065CC9, 69620ED28E0BF8C466B22760B4476E2A9119BB1C532C9E9BB1A7BCA91A8BB54A ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys 14:05:25.0018 0x0bac tap0901 - ok 14:05:25.0068 0x0bac [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll 14:05:25.0083 0x0bac TapiSrv - ok 14:05:25.0130 0x0bac [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll 14:05:25.0138 0x0bac TBS - ok 14:05:25.0219 0x0bac [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 14:05:25.0264 0x0bac Tcpip - ok 14:05:25.0330 0x0bac [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys 14:05:25.0355 0x0bac Tcpip6 - ok 14:05:25.0396 0x0bac [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 14:05:25.0399 0x0bac tcpipreg - ok 14:05:25.0443 0x0bac [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 14:05:25.0445 0x0bac TDPIPE - ok 14:05:25.0468 0x0bac [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 14:05:25.0470 0x0bac TDTCP - ok 14:05:25.0504 0x0bac [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 14:05:25.0509 0x0bac tdx - ok 14:05:25.0551 0x0bac [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 14:05:25.0555 0x0bac TermDD - ok 14:05:25.0594 0x0bac [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll 14:05:25.0628 0x0bac TermService - ok 14:05:25.0664 0x0bac [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll 14:05:25.0679 0x0bac Themes - ok 14:05:25.0700 0x0bac [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll 14:05:25.0706 0x0bac THREADORDER - ok 14:05:25.0754 0x0bac [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll 14:05:25.0763 0x0bac TrkWks - ok 14:05:25.0835 0x0bac [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 14:05:25.0837 0x0bac TrustedInstaller - ok 14:05:25.0874 0x0bac [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 14:05:25.0877 0x0bac tssecsrv - ok 14:05:25.0952 0x0bac [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys 14:05:25.0955 0x0bac tunmp - ok 14:05:25.0996 0x0bac [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 14:05:25.0999 0x0bac tunnel - ok 14:05:26.0034 0x0bac [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys 14:05:26.0037 0x0bac uagp35 - ok 14:05:26.0067 0x0bac [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys 14:05:26.0078 0x0bac udfs - ok 14:05:26.0124 0x0bac [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 14:05:26.0133 0x0bac UI0Detect - ok 14:05:26.0155 0x0bac [ 6D72EF05921ABDF59FC45C7EBFE7E8DD, 9102CB4B5E8B858B61DE1508C6A00D75584741891899966258E510173DBF7BB9 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 14:05:26.0159 0x0bac uliagpkx - ok 14:05:26.0184 0x0bac [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys 14:05:26.0195 0x0bac uliahci - ok 14:05:26.0252 0x0bac [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys 14:05:26.0268 0x0bac UlSata - ok 14:05:26.0367 0x0bac [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys 14:05:26.0416 0x0bac ulsata2 - ok 14:05:26.0506 0x0bac [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys 14:05:26.0510 0x0bac umbus - ok 14:05:26.0557 0x0bac [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll 14:05:26.0573 0x0bac upnphost - ok 14:05:26.0661 0x0bac [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys 14:05:26.0665 0x0bac USBAAPL - ok 14:05:26.0716 0x0bac [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 14:05:26.0721 0x0bac usbccgp - ok 14:05:26.0828 0x0bac [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys 14:05:26.0856 0x0bac usbcir - ok 14:05:26.0907 0x0bac [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 14:05:26.0911 0x0bac usbehci - ok 14:05:26.0937 0x0bac [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 14:05:26.0947 0x0bac usbhub - ok 14:05:26.0967 0x0bac [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys 14:05:26.0969 0x0bac usbohci - ok 14:05:27.0012 0x0bac [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 14:05:27.0014 0x0bac usbprint - ok 14:05:27.0033 0x0bac [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 14:05:27.0036 0x0bac usbscan - ok 14:05:27.0081 0x0bac [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 14:05:27.0085 0x0bac USBSTOR - ok 14:05:27.0120 0x0bac [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 14:05:27.0125 0x0bac usbuhci - ok 14:05:27.0155 0x0bac [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll 14:05:27.0163 0x0bac UxSms - ok 14:05:27.0217 0x0bac [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe 14:05:27.0251 0x0bac vds - ok 14:05:27.0279 0x0bac [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 14:05:27.0282 0x0bac vga - ok 14:05:27.0327 0x0bac [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys 14:05:27.0330 0x0bac VgaSave - ok 14:05:27.0351 0x0bac [ D5929A28BDFF4367A12CAF06AF901971, DE2A60A9EE1ABACEE6221E4AD5D4AA4CBA12FED448EB36CA3B7A9A5F09A8DC8C ] viaagp C:\Windows\system32\drivers\viaagp.sys 14:05:27.0355 0x0bac viaagp - ok 14:05:27.0367 0x0bac [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys 14:05:27.0370 0x0bac ViaC7 - ok 14:05:27.0385 0x0bac [ 689547CE911998D1E0DA7A5992E025FC, F77F9732F2ACB7E227F692D582CD983C5B3AF3966204D5A6D6A580E3E2E3E084 ] viaide C:\Windows\system32\drivers\viaide.sys 14:05:27.0388 0x0bac viaide - ok 14:05:27.0411 0x0bac [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys 14:05:27.0415 0x0bac volmgr - ok 14:05:27.0505 0x0bac [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 14:05:27.0528 0x0bac volmgrx - ok 14:05:27.0577 0x0bac [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys 14:05:27.0587 0x0bac volsnap - ok 14:05:27.0613 0x0bac [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 14:05:27.0619 0x0bac vsmraid - ok 14:05:27.0718 0x0bac [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe 14:05:27.0783 0x0bac VSS - ok 14:05:27.0819 0x0bac [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll 14:05:27.0842 0x0bac W32Time - ok 14:05:27.0868 0x0bac [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 14:05:27.0870 0x0bac WacomPen - ok 14:05:27.0914 0x0bac [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 14:05:27.0918 0x0bac Wanarp - ok 14:05:27.0928 0x0bac [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 14:05:27.0931 0x0bac Wanarpv6 - ok 14:05:27.0994 0x0bac [ 779F9C90D3FE9C70B6FFD8EF035F3E83, 4E38026BA53139B4A10D5E8F00413FAF442A2A42FE1388FCF2155F07BE826750 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll 14:05:28.0017 0x0bac WcesComm - ok 14:05:28.0058 0x0bac [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll 14:05:28.0093 0x0bac wcncsvc - ok 14:05:28.0123 0x0bac [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 14:05:28.0131 0x0bac WcsPlugInService - ok 14:05:28.0165 0x0bac [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys 14:05:28.0168 0x0bac Wd - ok 14:05:28.0232 0x0bac [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 14:05:28.0299 0x0bac Wdf01000 - ok 14:05:28.0344 0x0bac [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll 14:05:28.0355 0x0bac WdiServiceHost - ok 14:05:28.0363 0x0bac [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll 14:05:28.0372 0x0bac WdiSystemHost - ok 14:05:28.0434 0x0bac [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll 14:05:28.0450 0x0bac WebClient - ok 14:05:28.0497 0x0bac [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll 14:05:28.0511 0x0bac Wecsvc - ok 14:05:28.0556 0x0bac [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll 14:05:28.0565 0x0bac wercplsupport - ok 14:05:28.0611 0x0bac [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll 14:05:28.0623 0x0bac WerSvc - ok 14:05:28.0712 0x0bac [ 4DACA8F07537D4D7E3534BB99294AA26, 8418B5A83D945FF1827C5B19A57BE7FFE1FD523C6795B0ACE88E4A906C82BA2C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys 14:05:28.0768 0x0bac winachsf - ok 14:05:28.0848 0x0bac [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll 14:05:28.0871 0x0bac WinDefend - ok 14:05:28.0884 0x0bac WinHttpAutoProxySvc - ok 14:05:28.0941 0x0bac [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 14:05:28.0951 0x0bac Winmgmt - ok 14:05:29.0057 0x0bac [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll 14:05:29.0162 0x0bac WinRM - ok 14:05:29.0244 0x0bac [ 676F4B665BDD8053EAA53AC1695B8074, 98521FCB6B6B33DD8BF38A703745053481681C7981DFE5A59116D6BDE187D6F6 ] winusb C:\Windows\system32\DRIVERS\winusb.sys 14:05:29.0248 0x0bac winusb - ok 14:05:29.0319 0x0bac [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll 14:05:29.0395 0x0bac Wlansvc - ok 14:05:29.0491 0x0bac [ 94A85E956A065E23E0010A6A7826243B, F70A8301D071667718F04A9F261946ED8D64EE1B08055C518186252198F8F3F1 ] WLSetupSvc C:\Program Files\Windows Live\installer\WLSetupSvc.exe 14:05:29.0535 0x0bac WLSetupSvc - ok 14:05:29.0546 0x0bac wltrysvc - ok 14:05:29.0594 0x0bac [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 14:05:29.0597 0x0bac WmiAcpi - ok 14:05:29.0653 0x0bac [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 14:05:29.0660 0x0bac wmiApSrv - ok 14:05:29.0773 0x0bac [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 14:05:29.0829 0x0bac WMPNetworkSvc - ok 14:05:29.0862 0x0bac [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll 14:05:29.0875 0x0bac WPCSvc - ok 14:05:29.0923 0x0bac [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 14:05:29.0935 0x0bac WPDBusEnum - ok 14:05:29.0976 0x0bac [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys 14:05:29.0980 0x0bac WpdUsb - ok 14:05:30.0128 0x0bac [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 14:05:30.0179 0x0bac WPFFontCache_v0400 - ok 14:05:30.0219 0x0bac [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 14:05:30.0222 0x0bac ws2ifsl - ok 14:05:30.0265 0x0bac [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll 14:05:30.0275 0x0bac wscsvc - ok 14:05:30.0283 0x0bac WSearch - ok 14:05:30.0430 0x0bac [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll 14:05:30.0529 0x0bac wuauserv - ok 14:05:30.0592 0x0bac [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 14:05:30.0599 0x0bac WudfPf - ok 14:05:30.0649 0x0bac [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 14:05:30.0693 0x0bac WUDFRd - ok 14:05:30.0731 0x0bac [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll 14:05:30.0742 0x0bac wudfsvc - ok 14:05:30.0774 0x0bac [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8, 3660379AADB6DB56E54D9C680929CD3882CDE4E6A8BB888FC892110D6B50C627 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys 14:05:30.0777 0x0bac XAudio - ok 14:05:30.0815 0x0bac [ 28DC5D626E036A75A572556F0A6EB1F6, 9AE635C08B87AD85A552ADE0AF8BA10DC258E0DEFE133A2A74EFCD43B7A38A98 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe 14:05:30.0837 0x0bac XAudioService - ok 14:05:30.0925 0x0bac [ 04E268ADFC81964C49DC0C082D520F7E, 7D2574E366636AB1D59A08FE3038268095D627C39636C6ED6BCE1D5ACB44A179 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys 14:05:30.0948 0x0bac yukonwlh - ok 14:05:30.0962 0x0bac ================ Scan global =============================== 14:05:31.0005 0x0bac [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll 14:05:31.0066 0x0bac [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll 14:05:31.0144 0x0bac [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll 14:05:31.0219 0x0bac [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe 14:05:31.0243 0x0bac [ Global ] - ok 14:05:31.0244 0x0bac ================ Scan MBR ================================== 14:05:31.0262 0x0bac [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 14:05:32.0181 0x0bac \Device\Harddisk0\DR0 - ok 14:05:32.0186 0x0bac ================ Scan VBR ================================== 14:05:32.0209 0x0bac [ 4192D6B0C14E129A881AC4D7CF9EE004 ] \Device\Harddisk0\DR0\Partition1 14:05:32.0300 0x0bac \Device\Harddisk0\DR0\Partition1 - ok 14:05:32.0322 0x0bac [ A3127CA54330BCF64EB7FC1A4BE1E54B ] \Device\Harddisk0\DR0\Partition2 14:05:32.0424 0x0bac \Device\Harddisk0\DR0\Partition2 - ok 14:05:32.0428 0x0bac ================ Scan generic autorun ====================== 14:05:32.0624 0x0bac [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe 14:05:32.0677 0x0bac Windows Defender - ok 14:05:32.0796 0x0bac [ D6B7814AA0D1412F0EA77845C0AF7B51, 9946F3B26D2EF8DEABA95571107D3E6A018BB16FC4C609BDEB60B6139300F74E ] C:\Dell\E-Center\EULALauncher.exe 14:05:32.0805 0x0bac ECenter - ok 14:05:32.0862 0x0bac [ 5EF24621ABCE6965E32A365CA613A544, 88B83484ECF6ECA64D947D078F22BDA28D8872435B358043BFDFA8D45961FD22 ] C:\Program Files\DellTPad\Apoint.exe 14:05:32.0868 0x0bac Apoint - ok 14:05:32.0896 0x0bac [ 23242FD6C7D4C61807E84FD3A79248C4, 6E53D0815B4552A05A0EC28871E5E9F0D14815FB52FCDD612C96050B7093493C ] C:\Windows\OEM02Mon.exe 14:05:32.0899 0x0bac OEM02Mon.exe - ok 14:05:32.0951 0x0bac [ F70A63E713110C6668783DB2CAE94AE8, 4916239A9978B1B896BD08F495867A1951F541E8230F5467D51D405E7D418E0A ] C:\Windows\system32\igfxtray.exe 14:05:32.0970 0x0bac IgfxTray - ok 14:05:32.0998 0x0bac [ 99B4071862E7BEF7DD4896A3B6E3477B, 0674D66E05F9A591507522020FDCEFBBC87DD81102FBC2A15A88B2B78EAD1375 ] C:\Windows\system32\hkcmd.exe 14:05:33.0009 0x0bac HotKeysCmds - ok 14:05:33.0035 0x0bac [ 83A3890B00A43D7504C92AB474B82092, C1F888258F1606783A09AA1E5D35FAA25D53EF7C7E15EA648A5CB0B2C8F68342 ] C:\Windows\system32\igfxpers.exe 14:05:33.0044 0x0bac Persistence - ok 14:05:33.0161 0x0bac [ B4233856383157BC2906E6A264D70E3A, 98E18A4C6DBDF4A11BF350E03A84672F75114ED20BD04959E54F044C2F15F685 ] C:\Windows\system32\WLTRAY.exe 14:05:33.0260 0x0bac Broadcom Wireless Manager UI - ok 14:05:33.0313 0x0bac [ DAC9B43BBFA0359E252DDB0CB91DEA6D, 2A109ABECF757567735C439663ED618B49EF7749ABEE6AEF8A100B2028C31A38 ] C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe 14:05:33.0325 0x0bac DELL Webcam Manager - ok 14:05:33.0384 0x0bac [ F371C6DF9A810EF2E6E4FA60ACBB5C33, B168AEEF70F33ACF585260AC3B7E2D201EFB21F989B80738C7E2A59D931ED30D ] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe 14:05:33.0404 0x0bac IAAnotif - ok 14:05:33.0445 0x0bac [ 267B3A856E9F4DB1CABD4E6DB71E07D2, E384B0204375A8E9DCAFB3FD6E72442F3E9418812637F4EFA2653F946EBE8E26 ] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe 14:05:33.0447 0x0bac dscactivate - ok 14:05:33.0528 0x0bac [ B6687CA43A44F0D8732A22191028912F, 0B6B43143D3B750880884D7E561359467B786A3788BD6FBA105EC24B14A52F79 ] C:\Program Files\Dell\MediaDirect\PCMService.exe 14:05:33.0539 0x0bac PCMService - ok 14:05:33.0573 0x0bac [ 3917664C26B4344768C288BBA6FEFCB6, BD7B60C40A46F8C7F730A05B5E22E3C354A507E3AC9331F19DE2984BA255AB08 ] C:\Program Files\Dell Support Center\bin\sprtcmd.exe 14:05:33.0581 0x0bac DellSupportCenter - ok 14:05:33.0640 0x0bac [ 4AB05041D5C922B9A7A5D9059F5538CD, 554885535DB523D25DBDB43FBA9384B8E4EC9DF79B02F3B9FFDE3C498106D463 ] C:\Windows\WindowsMobile\wmdSync.exe 14:05:33.0649 0x0bac Windows Mobile-based device management - ok 14:05:33.0725 0x0bac [ 714C602C1B8CEF17E25C753F1BACF78D, E0B0DC548CA9DA7F3D0EEE9EDACC9058D5C845E8B03B841434EB1E03683A9B73 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe 14:05:33.0740 0x0bac AppleSyncNotifier - ok 14:05:33.0904 0x0bac [ 5447AF432CDA61159ADDE218C468FFD9, 63BD74521F679F195C24C1818267ECCBD8A7F5C2B4CEF3E60EC46B5AE0AC72A8 ] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe 14:05:33.0935 0x0bac AdobeAAMUpdater-1.0 - ok 14:05:34.0010 0x0bac [ 846965AE55A2662B1576C0F392DD1D6E, 0ADE383991FDC5A49DD15A27CB52CF75ABF518F0335E92003C0FF75DB417BBDC ] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe 14:05:34.0044 0x0bac SSBkgdUpdate - ok 14:05:34.0106 0x0bac [ 27249F2A900032F3C2DFAB8DE8F16399, 88F85055FC6A6C3872A9A3697F92E26EEB51655F5D53F49EE22768829839808A ] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe 14:05:34.0109 0x0bac PaperPort PTD - ok 14:05:34.0155 0x0bac [ BE72C212B14FC8F872A70C6C311D0529, 9C6A8060FD4505925894D8FD08EFCDE16BEEAAC70264519135B261C026333CAA ] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe 14:05:34.0158 0x0bac IndexSearch - ok 14:05:34.0195 0x0bac [ A4A66195EB0ECD574A32AAA92DC0A7BD, 4E30D565917158316A541BB29D73BF5F3A01DAB1240363276DE0C5D59B2BFFFE ] C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe 14:05:34.0273 0x0bac PPort11reminder - ok 14:05:34.0447 0x0bac [ 4DE3EF07E0854547309C6B40235A9D44, F73D8E6D98583865D1C8DB728058D83C72A3908E21E04EF313FCB829C040A1EC ] C:\Program Files\Brother\ControlCenter3\brctrcen.exe 14:05:34.0469 0x0bac ControlCenter3 - ok 14:05:34.0956 0x0bac [ 63E9C23A386FFFA84B5E03BFF9B628F0, A370962791EFC4B10548AAD31F89A2B288FBD5BDBF5749323C2D98C14DFB8B49 ] C:\Program Files\Browny02\Brother\BrStMonW.exe 14:05:35.0111 0x0bac BrStsMon00 - ok 14:05:35.0378 0x0bac [ 8EEEF4C038A3FF7E56D47D9C0B912EAC, F3FE8BCC07AF70B4EDA7D599B6E1E68A89137C4F33DC76CB84767F8DB1DE6113 ] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe 14:05:35.0417 0x0bac Adobe Reader Speed Launcher - ok 14:05:35.0575 0x0bac [ 47C1DE0A890613FFCFF1D67648EEDF90, 5821567D7DD99623257AEA794023EF4200E6E17FD09656B40D97C44A35C701BB ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe 14:05:35.0617 0x0bac Adobe ARM - ok 14:05:35.0696 0x0bac [ 545676F48851A5C65A38CAE5B5518C95, F7CD893B8198AA22347CB96A61C258217FA0A1B1CC1733784B5FD84A7B208264 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe 14:05:35.0699 0x0bac APSDaemon - ok 14:05:35.0764 0x0bac [ 9508747869695BF440D7CD19B4930152, 223CDD23FA6CBA048D37C83AE6D3526EC3FBB217D1D5BAA140C11616B2657203 ] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe 14:05:35.0797 0x0bac BrMfcWnd - ok 14:05:35.0881 0x0bac [ 485A4912B2D639694F836451A2B30435, B913073813BD933D882AC9ABC5CE84F96D3238622FFA97BDE8EDED629454F778 ] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe 14:05:35.0903 0x0bac SigmatelSysTrayApp - ok 14:05:36.0153 0x0bac [ 26B558B2D31C7425B455B00E562EAD93, B64D128A2F1FC42BA4376F8EB08D70F4B705745CB983D0631DB45851BF34BBDF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe 14:05:36.0367 0x0bac AvastUI.exe - ok 14:05:36.0463 0x0bac [ 0A8C7CDE76A44A98E1B1CE34D27AC926, 26B86CA609DD15F86981C1FC4667814A2A7EE5D4BC944B5306A06C00DA35E1D0 ] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe 14:05:36.0497 0x0bac DivXMediaServer - ok 14:05:36.0550 0x0bac [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files\QuickTime\QTTask.exe 14:05:36.0573 0x0bac QuickTime Task - ok 14:05:36.0630 0x0bac [ 5D666FC778E7754CC7103402D814809B, 7E9B205B74440D455155014EE8D6FD0D1C647B016D72A28F16709F50BC005D3F ] C:\Program Files\ControlCenter4\BrCcBoot.exe 14:05:36.0636 0x0bac ControlCenter4 - ok 14:05:36.0765 0x0bac [ 16AFB34618E1286FF856DC600AC49C79, 431EC110507685A0F4472EAE35383B4C1E3DC0B56E01CDECFB18F753181DC995 ] C:\Program Files\DivX\DivX Update\DivXUpdate.exe 14:05:36.0862 0x0bac DivXUpdate - ok 14:05:36.0961 0x0bac [ 3B5045DDD039FAB9782851BC486FD92B, 12C59F9E79EB37F26FE0805585EA6B0DAFB41FB8A4FAE972774BC8E3815A1673 ] C:\Program Files\iTunes\iTunesHelper.exe 14:05:36.0967 0x0bac iTunesHelper - ok 14:05:37.0059 0x0bac [ 308F2EE28005510DE616409148CF077B, A2126CB185B0053086BDD6F0A16A503F6CA629AC677E4B7AE6D43C770061D087 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe 14:05:37.0069 0x0bac SunJavaUpdateSched - ok 14:05:37.0200 0x0bac [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 14:05:37.0264 0x0bac Sidebar - ok 14:05:37.0274 0x0bac WindowsWelcomeCenter - ok 14:05:37.0344 0x0bac [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 14:05:37.0375 0x0bac Sidebar - ok 14:05:37.0385 0x0bac WindowsWelcomeCenter - ok 14:05:37.0407 0x0bac [ 3917664C26B4344768C288BBA6FEFCB6, BD7B60C40A46F8C7F730A05B5E22E3C354A507E3AC9331F19DE2984BA255AB08 ] C:\Program Files\Dell Support Center\bin\sprtcmd.exe 14:05:37.0412 0x0bac DellSupportCenter - ok 14:05:37.0481 0x0bac [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe 14:05:37.0486 0x0bac ehTray.exe - ok 14:05:37.0488 0x0bac MsnMsgr - ok 14:05:37.0522 0x0bac MobileDocuments - ok 14:05:37.0523 0x0bac Scan was interrupted by user! 14:05:37.0523 0x0bac Waiting for KSN requests completion. In queue: 78 14:05:38.0524 0x0bac Waiting for KSN requests completion. In queue: 78 14:05:39.0524 0x0bac Waiting for KSN requests completion. In queue: 78 14:05:40.0668 0x0bac AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated ) 14:05:40.0726 0x0bac Win FW state via NFP2: enabled 14:05:43.0079 0x0bac ============================================================ 14:05:43.0079 0x0bac Scan finished 14:05:43.0079 0x0bac ============================================================ 14:05:43.0098 0x1544 Detected object count: 0 14:05:43.0098 0x1544 Actual detected object count: 0 14:05:45.0773 0x0f48 Deinitialize success |
|
05.09.2014, 08:17
| #4 |
| /// the machine /// TB-Ausbilder | acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht. nein, unten in der Antwortbox im Forum, schau einfach auf den Screenshot den ich oben gepostet habe. Lass die von Avast angemeckerte Datei bitte mal bei www.virustotal.com scannen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
05.09.2014, 09:12
| #5 |
| | acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht.Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-09-2014
Ran by zuppy at 2014-09-04 09:20:04
Running from C:\Users\zuppy\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (Version: 1.0.0 - Hewlett-Packard) Hidden
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Community Help (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Media Player (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Reader 8.3.1 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A83000000003}) (Version: 8.3.1 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM\...\Advanced Audio FX Engine) (Version: - )
Advanced Video FX Engine (HKLM\...\Advanced Video FX Engine) (Version: - )
AIO_Scan (Version: 90.0.222.000 - Hewlett-Packard) Hidden
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
avast! Pro Antivirus (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software)
Benutzerhandbuch (HKLM\...\{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}) (Version: - )
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite (HKLM\...\{9A912C12-A7DA-44D7-BD57-5CA85E2F33E1}) (Version: 1.00 - Brother Industries, Ltd.)
Brother MFL-Pro Suite MFC-J415W (HKLM\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 1.0.3.0 - Brother Industries, Ltd.)
Brother MFL-Pro Suite MFC-J5910DW (HKLM\...\{830F55B6-4398-4B72-A0D8-66397B902C0E}) (Version: 1.1.1.0 - Brother Industries, Ltd.)
Browser Address Error Redirector (HKLM\...\{62230596-37E5-4618-A329-0D21F529A86F}) (Version: 1.00.0000 - Dell)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Conexant HDA D330 MDC V.92 Modem (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F) (Version: - )
Dell Handbuch zum Einstieg (HKLM\...\{FD023F61-65E9-465C-B558-7C64EB2B97E6}) (Version: 1.00.0000 - Dell Inc.)
Dell Support Center (Support Software) (HKLM\...\{E3BFEE55-39E2-4BE0-B966-89FE583822C1}) (Version: 2.2.08100 - Dell)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1.102.7 - Alps Electric)
Dell Webcam Center (HKLM\...\Dell Webcam Center) (Version: - )
Dell Webcam Manager (HKLM\...\Dell Webcam Manager) (Version: - )
Dell Wireless WLAN Card (HKLM\...\Broadcom 802.11b Network Adapter) (Version: 4.102.15.61 - Dell Inc.)
Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.21 - BVRP Software, Inc)
DivX-Setup (HKLM\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
EndNote X1 (HKLM\...\{87F7773C-EC9C-461A-AA7B-4AF8EF54DF49}) (Version: 11.0.0.2571 - Thomson ResearchSoft)
Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
iCloud (HKLM\...\{79BD66B2-4DAE-4C3B-B08E-DC72E507C163}) (Version: 2.1.3.25 - Apple Inc.)
Intel(R) Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - )
iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden
Juniper Networks Network Connect 6.0.0 (HKLM\...\Juniper Network Connect 6.0.0) (Version: 6.0.0.14137 - Juniper Networks)
Juniper Networks Setup Client (HKCU\...\JuniperSetupClient) (Version: 1.1.0.0 - Juniper Networks)
Juniper Networks Setup Client Activex Control (HKLM\...\JuniperSetupClient Activex Control) (Version: 1.1.0.0 - Juniper Networks)
Laptop Integrated Webcam Driver (1.04.01.1011) (HKLM\...\Creative OEM002) (Version: - )
Live! Cam Avatar Creator (HKLM\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.0817.1 - Creative Technology Ltd.)
MediaDirect (HKLM\...\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}) (Version: 3.5 - Dell)
Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2000 Disc 2 (HKLM\...\{00040407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation)
Microsoft Office 2000 Premium (HKLM\...\{00000407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
MobileMe Control Panel (HKLM\...\{710BF966-43C8-4216-A8EC-BC4E169FF7C1}) (Version: 3.1.8.0 - Apple Inc.)
Modem-Diagnose-Tool (HKLM\...\{F63A3748-B93D-4360-9AD4-B064481A5C7B}) (Version: 1.0.20.0 - Dell)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NetWaiting (HKLM\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.44 - BVRP Software, Inc)
OutlookAddinSetup (HKLM\...\{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}) (Version: 1.0.0 - CyberLink)
PaperPort Image Printer (HKLM\...\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}) (Version: 1.00.0000 - Nuance Communications, Inc.)
PDF Architect 2 (HKLM\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF Architect 2 View Module (HKLM\...\{C960FF38-431D-429D-AD1F-FBD12A45B7C5}) (Version: 2.0.17.17583 - pdfforge GmbH)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
QuickSet (HKLM\...\{C4972073-2BFE-475D-8441-564EA97DA161}) (Version: 8.2.17 - Dell Inc.)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Roxio Creator Audio (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Copy (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Data (Version: 3.7.0 - Roxio) Hidden
Roxio Creator DE (HKLM\...\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}) (Version: 10.1 - )
Roxio Creator DE (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Tools (Version: 3.7.0 - Roxio) Hidden
Roxio Express Labeler 3 (Version: 3.2.1 - Roxio) Hidden
Roxio Update Manager (Version: 6.0.0 - Roxio) Hidden
Samsung PC Studio (Version: 3.0.0.50903 - Samsung Electronics Co., Ltd.) Hidden
ScanSoft PaperPort 11 (HKLM\...\{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}) (Version: 11.2.0000 - Nuance Communications, Inc.)
SigmaTel Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 5.10.5207.0 - SigmaTel)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.9.9216 - Skype Technologies S.A.)
Skype™ 6.18 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
Steuer Update 14.01 (Version: 14.01 - Lexware) Hidden
TAXMAN 2008 (Version: 14.00 - Lexware) Hidden
Toolbox (Version: 90.0.146.000 - Hewlett-Packard) Hidden
Uninstall 1.0.0.0 (HKLM\...\Uninstall_is1) (Version: - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
VoiceOver Kit (HKLM\...\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}) (Version: 1.42.128.0 - Apple Inc.)
Windows Live Anmelde-Assistent (HKLM\...\{83E2CFA9-E0EB-4E08-9F85-43E577FF3D60}) (Version: 5.000.818.6 - Microsoft Corporation)
Windows Live installer (HKLM\...\{7A7B0BF3-2F00-4F03-8A9B-6ABCC07B90C6}) (Version: 12.0.1471.1025 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-674920860-3319793373-282348367-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\ProgramData\Skype\Plugins\ezPMUtils.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-674920860-3319793373-282348367-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\ProgramData\Skype\Plugins\ezPMUtils.dll (EasyBits Media)
==================== Restore Points =========================
03-09-2014 16:40:56 Windows Update
04-09-2014 06:21:14 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 12:23 - 2009-07-17 13:17 - 00000759 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0095BE75-F80C-4DAD-8030-55BD325E1E71} - System32\Tasks\{3F3986D8-C83C-415C-9E00-98151FD048F5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.120/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered
Task: {111E33D8-AE44-4977-A944-DA3FE835755A} - System32\Tasks\AdobeAAMUpdater-1.0-Laptop-Zuppy-zuppy => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {2D5822C8-BB73-4303-BA2E-4EF25B96311C} - System32\Tasks\{C1B4FB68-4F24-4758-B6B6-23A4C743B4C5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.1.0.112.210/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered
Task: {2E7A8485-0DE8-4992-A245-3444DCEE84F9} - System32\Tasks\{6F020FC3-4B8E-4BB4-A121-782D1A9285C8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.116.210/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered
Task: {332A1E0B-2D95-4DE3-B779-FB51E049B858} - System32\Tasks\{8D88EE3E-5C40-4DC5-AC35-6CF9A0049944} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.111.210/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:offered-installed;madedefault
Task: {332C1A39-B3AB-474D-A2E1-1FDC641F033D} - System32\Tasks\{777EABD7-0780-4196-9809-FE179DD174DE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.1.0.112.210/de/abandoninstall?page=tsDownload&installinfo=google-toolbar:offered-notinstalled,google-chrome:notoffered;toolbaroffered
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-19] (Microsoft Corporation)
Task: {621DF182-42D8-4650-8EAF-BB32F0D09DA9} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - zuppy => C:\Program Files\Windows Calendar\wincal.exe [2009-04-11] (Microsoft Corporation)
Task: {7850DF3C-415F-48F3-9653-795DA96D4603} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-17] (Google Inc.)
Task: {7D7C5FCA-AD6A-4C65-97AB-09C36A896AED} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {88416C57-77BC-4801-9BF5-0E9F8528F810} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {9E1FB878-0BD8-4949-86EE-734FAF1868B7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-14] (Adobe Systems Incorporated)
Task: {AE2284DD-E5E7-408C-A1C4-D699987CC5A3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {DD498F21-3BFA-478A-914A-1DA8BCBF485F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-17] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-05] ()
Task: {F7073345-06C8-47AF-965C-9C781BADADA5} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-15] (AVAST Software)
Task: {FF8F1D98-9CC5-4741-8F1A-2204CA44A378} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2008-04-21 18:42 - 2007-03-21 21:33 - 00024064 _____ () C:\Windows\System32\WLTRYSVC.EXE
2008-04-21 18:42 - 2007-03-21 21:33 - 00065536 _____ () C:\Windows\System32\bcmwlrmt.dll
2014-01-23 18:53 - 2014-07-15 18:02 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-09-03 18:25 - 2014-09-03 18:25 - 02808832 _____ () C:\Program Files\AVAST Software\Avast\defs\14090300\algo.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-10-07 12:30 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2008-04-24 13:01 - 2007-09-20 18:34 - 00129024 _____ () C:\Program Files\WinRAR\rarext.dll
2014-01-23 18:53 - 2014-07-15 18:03 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files\Common Files\Apple\Internet Services\libxml2.dll
2014-08-17 12:10 - 2014-08-07 05:20 - 08537928 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-17 12:10 - 2014-08-07 05:20 - 00353096 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-17 12:10 - 2014-08-07 05:20 - 01732936 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
2014-08-17 12:10 - 2014-08-07 05:20 - 14669128 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/03/2014 06:10:50 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {29420848-3613-409b-b2b3-864d4e3386aa}
Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\LANGUAGES> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\LANGUAGES> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\JS> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\JS> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\WHITE-ON-BLACK> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\WHITE-ON-BLACK> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\RETINA> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
System errors:
=============
Error: (09/04/2014 08:32:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: adfs%%2
Error: (09/04/2014 08:32:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058
Error: (09/04/2014 08:24:55 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {C2BFE331-6739-4270-86C9-493D9A04CD38}
Error: (09/04/2014 08:16:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: adfs%%2
Error: (09/04/2014 08:16:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058
Error: (09/03/2014 06:25:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86
Error: (09/03/2014 06:23:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: adfs%%2
Error: (09/03/2014 06:23:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058
Error: (09/03/2014 06:18:53 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {C2BFE331-6739-4270-86C9-493D9A04CD38}
Error: (09/03/2014 06:17:00 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Microsoft Office Sessions:
=========================
Error: (09/03/2014 06:10:50 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {29420848-3613-409b-b2b3-864d4e3386aa}
Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\LANGUAGES
Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\LANGUAGES
Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\JS
Error: (08/14/2014 03:38:39 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\JS
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\WHITE-ON-BLACK
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\WHITE-ON-BLACK
Error: (08/14/2014 03:38:38 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
C:\USERS\ZUPPY\APPDATA\LOCAL\SKYPE\APPS\LOGIN\IMAGES\RETINA
CodeIntegrity Errors:
===================================
Date: 2013-12-27 20:39:50.994
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:39:50.073
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:39:49.157
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:39:48.185
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:39:47.179
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:39:46.241
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:35:55.448
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:35:54.396
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:35:53.353
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-27 20:35:52.370
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\fveapi.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz
Percentage of memory in use: 58%
Total physical RAM: 2037.31 MB
Available physical RAM: 849.41 MB
Total Pagefile: 4315.87 MB
Available Pagefile: 2831.83 MB
Total Virtual: 2047.88 MB
Available Virtual: 1908.15 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:136.46 GB) (Free:22.1 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:5.39 GB) NTFS
Drive g: () (Removable) (Total:1.92 GB) (Free:1.91 GB) FAT
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149.1 GB) (Disk ID: A0000000)
Partition 1: (Not Active) - (Size=94 MB) - (Type=DE)
Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=136.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2.5 GB) - (Type=OF Extended)
========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-09-2014
Ran by zuppy (administrator) on LAPTOP-ZUPPY on 04-09-2014 09:18:44
Running from C:\Users\zuppy\Downloads
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
() C:\Windows\System32\WLTRYSVC.EXE
(Dell Inc.) C:\Windows\System32\BCMWLTRY.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEstSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Juniper Networks) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(SupportSoft, Inc.) C:\Program Files\Dell Support Center\bin\sprtsvc.exe
(IDT, Inc.) C:\Windows\System32\stacsv.exe
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Creative Technology Ltd.) C:\Windows\OEM02Mon.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Dell Inc.) C:\Windows\System32\WLTRAY.EXE
(Creative Technology Ltd.) C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(CyberLink Corp.) C:\Program Files\Dell\MediaDirect\PCMService.exe
(SupportSoft, Inc.) C:\Program Files\Dell Support Center\bin\sprtcmd.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe
(Nuance Communications, Inc.) C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
(IDT, Inc.) C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Akamai Technologies, Inc.) C:\Users\zuppy\AppData\Local\Akamai\netsession_win.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Avanquest Software ) C:\Program Files\Digital Line Detect\DLG.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe
(Akamai Technologies, Inc.) C:\Users\zuppy\AppData\Local\Akamai\netsession_win.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-19] (Microsoft Corporation)
HKLM\...\Run: [ECenter] => C:\Dell\E-Center\EULALauncher.exe [17920 2008-02-29] ( )
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [159744 2007-09-07] (Alps Electric Co., Ltd.)
HKLM\...\Run: [OEM02Mon.exe] => C:\Windows\OEM02Mon.exe [36864 2008-03-04] (Creative Technology Ltd.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Windows\system32\WLTRAY.exe [1548288 2007-03-21] (Dell Inc.)
HKLM\...\Run: [DELL Webcam Manager] => C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe [118784 2007-07-27] (Creative Technology Ltd.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [174872 2007-03-21] (Intel Corporation)
HKLM\...\Run: [dscactivate] => C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [16384 2008-03-11] ( )
HKLM\...\Run: [PCMService] => C:\Program Files\Dell\MediaDirect\PCMService.exe [189736 2007-11-01] (CyberLink Corp.)
HKLM\...\Run: [DellSupportCenter] => C:\Program Files\Dell Support Center\bin\sprtcmd.exe [206064 2008-08-14] (SupportSoft, Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdSync.exe [215552 2006-11-02] (Microsoft Corporation)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM\...\Run: [PaperPort PTD] => C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [29984 2008-07-09] (Nuance Communications, Inc.)
HKLM\...\Run: [IndexSearch] => C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [46368 2008-07-09] (Nuance Communications, Inc.)
HKLM\...\Run: [PPort11reminder] => C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.)
HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40368 2011-08-31] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-29] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM\...\Run: [BrMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [622592 2007-02-06] (Brother Industries, Ltd.)
HKLM\...\Run: [SigmatelSysTrayApp] => C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [405504 2007-09-07] (IDT, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-08] (AVAST Software)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\.DEFAULT\...\Run: [msnmsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [DellSupportCenter] => C:\Program Files\Dell Support Center\bin\sprtcmd.exe [206064 2008-08-14] (SupportSoft, Inc.)
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [MsnMsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [MobileDocuments] => C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [Akamai NetSession Interface] => C:\Users\zuppy\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {16f2ba31-8bde-11e1-9be4-001d094fc2c5} - G:\LaunchU3.exe -a
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {2959ee1c-3444-11df-884a-001d094fc2c5} - F:\autorun.exe
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {a09b9b27-9157-11de-8d28-001f3a4c1991} - F:\AutoRun.exe
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {a09b9b55-9157-11de-8d28-001f3a4c1991} - G:\AutoRun.exe
HKU\S-1-5-21-674920860-3319793373-282348367-1000\...\MountPoints2: {f46ab122-0be1-11df-8784-001d094fc2c5} - G:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickSet.lnk
ShortcutTarget: QuickSet.lnk -> C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gmx.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.v9.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=FUJITSUXMHY2160BH_K431T832B28DT832B28DX&ts=1356443800
SearchScopes: HKCU - {715A3DAE-8345-4964-B73E-F3596DBA56C8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=9M&apn_dtid=OSJ000&apn_uid=714CCA31-D6C6-489A-B82B-5FEF78C366F9&apn_sauid=985DA777-D9DA-4CE6-8BC2-474155BE940E
BHO: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: PDF Architect 2 -> C:\Program Files\PDF Architect 2\np-previewer.dll (pdfforge GmbH)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-19]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-23]
Chrome:
=======
CHR CustomProfile: C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-17]
CHR Extension: (Google Drive) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-17]
CHR Extension: (YouTube) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-19]
CHR Extension: (Google-Suche) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-19]
CHR Extension: (avast! SafePrice) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-08-17]
CHR Extension: (avast! Online Security) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-17]
CHR Extension: (Google Wallet) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-07]
CHR Extension: (Google Mail) - C:\Users\zuppy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-19]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-08]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-15]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-15] (AVAST Software)
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [427376 2009-04-02] (Juniper Networks)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [File not signed]
S3 PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [1771560 2014-06-26] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [861736 2014-06-26] (pdfforge GmbH)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [File not signed]
R2 sprtsvc_dellsupportcenter; C:\Program Files\Dell Support Center\bin\sprtsvc.exe [201968 2008-08-14] (SupportSoft, Inc.)
S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation) [File not signed]
R2 wltrysvc; C:\Windows\System32\bcmwltry.exe [1724416 2007-03-21] (Dell Inc.) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S4 acedrv01; C:\Windows\system32\drivers\acedrv01.sys [93696 2009-04-01] (ACE GmbH) [File not signed]
R2 acedrv02; C:\Windows\system32\drivers\acedrv02.sys [97280 2009-04-01] (ACE GmbH) [File not signed]
R2 acedrv04; C:\Windows\system32\drivers\acedrv04.sys [97280 2009-04-01] (Protect Software GmbH) [File not signed]
R2 acedrv05; C:\Windows\system32\drivers\acedrv05.sys [97792 2009-04-01] (Protect Software GmbH) [File not signed]
R2 acedrv06; C:\Windows\system32\drivers\acedrv06.sys [99840 2009-04-01] (Protect Software GmbH) [File not signed]
R2 acedrv07; C:\Windows\system32\drivers\acedrv07.sys [101376 2009-04-01] (Protect Software GmbH) [File not signed]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-07-15] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [26136 2014-07-15] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-07-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55112 2014-07-15] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-07-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-07-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-07-15] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57800 2014-07-15] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-07-15] ()
R3 dsNcAdpt; C:\Windows\System32\DRIVERS\dsNcAdpt.sys [23552 2009-04-02] (Juniper Networks)
S3 LTXMD_VAC; C:\Windows\System32\drivers\lmvac.sys [18912 2008-07-01] (Windows (R) Codename Longhorn DDK provider)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-12-09] (Avira GmbH)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [25984 2009-12-12] (The OpenVPN Project)
S2 adfs; No ImagePath
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 cmnsusbser; system32\DRIVERS\cmnsusbser.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-04 09:18 - 2014-09-04 09:19 - 00022369 _____ () C:\Users\zuppy\Downloads\FRST.txt
2014-09-04 09:18 - 2014-09-04 09:18 - 00000000 ____D () C:\FRST
2014-09-04 09:17 - 2014-09-04 09:18 - 01096704 _____ (Farbar) C:\Users\zuppy\Downloads\FRST.exe
2014-09-04 09:15 - 2014-09-04 09:15 - 00000472 _____ () C:\Users\zuppy\Downloads\defogger_disable.log
2014-09-04 09:15 - 2014-09-04 09:15 - 00000000 _____ () C:\Users\zuppy\defogger_reenable
2014-09-04 09:14 - 2014-09-04 09:14 - 00050477 _____ () C:\Users\zuppy\Downloads\Defogger.exe
2014-09-04 08:22 - 2014-08-23 03:03 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-04 08:22 - 2014-08-23 01:26 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-28 12:35 - 2014-08-28 12:35 - 00011740 _____ () C:\Users\zuppy\Downloads\Rechnung Svenja Hartwig (0013,14).xlsx
2014-08-18 14:38 - 2014-08-18 14:38 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\Oracle
2014-08-18 14:36 - 2014-08-18 14:36 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-18 14:35 - 2014-08-18 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-18 14:35 - 2014-08-18 14:34 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-18 14:35 - 2014-08-18 14:34 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-18 14:35 - 2014-08-18 14:34 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-18 14:35 - 2014-08-18 14:34 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-18 14:34 - 2014-08-18 14:34 - 00000000 ____D () C:\Program Files\Java
2014-08-17 21:07 - 2014-08-17 21:07 - 00067342 _____ () C:\Users\zuppy\Downloads\vietnam visum
2014-08-17 12:10 - 2014-08-17 12:10 - 00001925 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-17 12:10 - 2014-08-17 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-17 12:08 - 2014-09-04 09:13 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-17 12:08 - 2014-09-04 08:34 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-17 12:07 - 2014-08-17 12:07 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Deployment
2014-08-17 12:07 - 2014-08-17 12:07 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Apps\2.0
2014-08-17 11:55 - 2014-08-17 11:55 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\PDF Architect 2
2014-08-17 11:48 - 2014-08-17 11:48 - 00000784 _____ () C:\Users\Public\Desktop\PDF Architect 2.lnk
2014-08-17 11:48 - 2014-08-17 11:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2
2014-08-17 11:47 - 2014-08-17 11:48 - 00000000 ____D () C:\Program Files\PDF Architect 2
2014-08-17 11:47 - 2014-08-17 11:47 - 00000000 ____D () C:\Users\zuppy\Documents\PDF Architect 2
2014-08-17 11:47 - 2014-08-17 11:47 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2014-08-17 11:45 - 2014-08-17 11:51 - 00000000 ____D () C:\Program Files\PDFCreator
2014-08-17 11:45 - 2014-08-17 11:45 - 00000790 _____ () C:\Users\Public\Desktop\PDFCreator.lnk
2014-08-17 11:45 - 2014-08-17 11:45 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\pdfforge
2014-08-17 11:45 - 2014-08-17 11:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-08-17 11:45 - 2014-04-25 17:44 - 00662288 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCT2.OCX
2014-08-17 11:45 - 2014-04-25 17:44 - 00137000 _____ (Microsoft Corporation) C:\Windows\system32\MSMAPI32.OCX
2014-08-17 11:45 - 2014-04-25 17:44 - 00095416 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2014-08-17 11:45 - 2014-04-25 17:44 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\MSMPIDE.DLL
2014-08-17 11:45 - 1998-07-06 18:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\system32\VB6DE.DLL
2014-08-17 11:45 - 1998-07-06 18:55 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\MSCMCDE.DLL
2014-08-17 11:45 - 1998-07-06 18:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\MSCC2DE.DLL
2014-08-17 11:42 - 2014-08-17 11:43 - 27843432 _____ (pdfforge ) C:\Users\zuppy\Downloads\PDFCreator-1_7_3_setup.exe
2014-08-17 11:40 - 2014-08-17 11:40 - 00000000 _____ () C:\Users\zuppy\Downloads\SetupWordToPDF_237_v2.9.exe.28bypr0.partial
2014-08-17 11:37 - 2014-06-27 00:17 - 00619664 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-17 11:37 - 2014-06-27 00:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-17 11:37 - 2014-06-27 00:17 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-17 11:36 - 2014-06-06 06:28 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 15:12 - 2014-07-08 02:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 15:12 - 2014-06-14 02:44 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 15:12 - 2014-06-14 02:33 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-14 15:12 - 2014-06-02 12:31 - 02263552 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 15:12 - 2014-06-02 12:31 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-14 15:12 - 2014-06-02 12:30 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 15:12 - 2014-06-02 12:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-08-14 15:12 - 2014-06-02 10:56 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 15:11 - 2014-07-24 20:07 - 12356608 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 15:11 - 2014-07-24 19:58 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 15:11 - 2014-07-24 19:57 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 15:11 - 2014-07-24 19:52 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 15:11 - 2014-07-24 19:51 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 15:11 - 2014-07-24 19:51 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 15:11 - 2014-07-24 19:50 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-14 15:11 - 2014-07-24 19:50 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 15:11 - 2014-07-24 19:49 - 01802240 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 15:11 - 2014-07-24 19:49 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-14 15:11 - 2014-07-24 19:49 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 15:11 - 2014-07-24 19:49 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 15:11 - 2014-07-24 19:49 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 15:11 - 2014-07-24 19:48 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 15:11 - 2014-07-24 19:48 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 15:11 - 2014-07-24 19:48 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 15:11 - 2014-07-24 19:48 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 15:11 - 2014-07-24 19:48 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-14 15:11 - 2014-07-24 19:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-14 15:11 - 2014-07-24 19:48 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-14 15:11 - 2014-07-24 19:47 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 14:46 - 2014-08-14 14:46 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-08-10 08:46 - 2014-08-10 08:46 - 00001626 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-10 08:46 - 2014-08-10 08:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-10 08:45 - 2014-08-10 08:46 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-04 09:19 - 2014-09-04 09:18 - 00022369 _____ () C:\Users\zuppy\Downloads\FRST.txt
2014-09-04 09:18 - 2014-09-04 09:18 - 00000000 ____D () C:\FRST
2014-09-04 09:18 - 2014-09-04 09:17 - 01096704 _____ (Farbar) C:\Users\zuppy\Downloads\FRST.exe
2014-09-04 09:16 - 2006-11-02 14:47 - 00003568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-04 09:16 - 2006-11-02 14:47 - 00003568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-04 09:15 - 2014-09-04 09:15 - 00000472 _____ () C:\Users\zuppy\Downloads\defogger_disable.log
2014-09-04 09:15 - 2014-09-04 09:15 - 00000000 _____ () C:\Users\zuppy\defogger_reenable
2014-09-04 09:15 - 2008-04-24 12:24 - 00000000 ____D () C:\Users\zuppy
2014-09-04 09:14 - 2014-09-04 09:14 - 00050477 _____ () C:\Users\zuppy\Downloads\Defogger.exe
2014-09-04 09:13 - 2014-08-17 12:08 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-04 09:10 - 2008-04-26 20:38 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\Skype
2014-09-04 08:48 - 2008-04-21 18:30 - 01869918 _____ () C:\Windows\WindowsUpdate.log
2014-09-04 08:39 - 2012-04-11 10:49 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-04 08:34 - 2014-08-17 12:08 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-04 08:32 - 2009-01-15 14:45 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-09-04 08:32 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-04 08:32 - 2006-11-02 14:47 - 03736840 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-04 08:25 - 2006-11-02 15:01 - 00032534 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-09-03 19:08 - 2011-11-10 19:30 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Akamai
2014-09-03 19:08 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\spool
2014-09-03 19:08 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\Msdtc
2014-09-03 19:08 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\registration
2014-09-03 19:08 - 2006-11-02 12:22 - 51118080 _____ () C:\Windows\system32\config\software_previous
2014-09-03 19:08 - 2006-11-02 12:22 - 34340864 _____ () C:\Windows\system32\config\system_previous
2014-09-03 18:57 - 2006-11-02 12:22 - 50331648 _____ () C:\Windows\system32\config\components_previous
2014-09-03 18:57 - 2006-11-02 12:22 - 00061440 _____ () C:\Windows\system32\config\sam_previous
2014-09-03 18:21 - 2014-01-23 18:55 - 00001893 _____ () C:\Users\Public\Desktop\avast! SafeZone.lnk
2014-09-03 18:21 - 2014-01-23 18:55 - 00001833 _____ () C:\Users\Public\Desktop\avast! Pro Antivirus.lnk
2014-09-03 18:17 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\tracing
2014-08-29 12:49 - 2006-11-02 12:22 - 00524288 _____ () C:\Windows\system32\config\default_previous
2014-08-29 12:49 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\security_previous
2014-08-28 17:18 - 2008-12-07 15:38 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\EndNote
2014-08-28 17:18 - 2008-05-09 16:58 - 00000000 ____D () C:\Users\zuppy\Documents\Bewerbungen und Briefe
2014-08-28 16:26 - 2014-07-07 19:01 - 00000000 ____D () C:\Users\zuppy\Desktop\Bewerbungskram
2014-08-28 12:35 - 2014-08-28 12:35 - 00011740 _____ () C:\Users\zuppy\Downloads\Rechnung Svenja Hartwig (0013,14).xlsx
2014-08-23 03:03 - 2014-09-04 08:22 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 01:26 - 2014-09-04 08:22 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-18 17:22 - 2013-05-31 14:30 - 00019456 _____ () C:\Users\zuppy\Documents\OP-Katalog Assistenten.xls
2014-08-18 14:38 - 2014-08-18 14:38 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\Oracle
2014-08-18 14:36 - 2014-08-18 14:36 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-18 14:36 - 2013-09-25 20:14 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-18 14:35 - 2014-08-18 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-18 14:34 - 2014-08-18 14:35 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-18 14:34 - 2014-08-18 14:35 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-18 14:34 - 2014-08-18 14:35 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-18 14:34 - 2014-08-18 14:35 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-18 14:34 - 2014-08-18 14:34 - 00000000 ____D () C:\Program Files\Java
2014-08-17 21:43 - 2013-12-02 18:43 - 02177536 _____ () C:\Users\zuppy\Documents\Route Zuppy2014.xls
2014-08-17 21:07 - 2014-08-17 21:07 - 00067342 _____ () C:\Users\zuppy\Downloads\vietnam visum
2014-08-17 19:08 - 2008-05-09 17:30 - 00000000 ____D () C:\Users\zuppy\Documents\Zuppys Sammelsorium
2014-08-17 14:50 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-17 13:35 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache
2014-08-17 13:23 - 2010-01-03 09:48 - 01567294 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-17 13:11 - 2008-04-21 19:03 - 00445828 _____ () C:\Windows\PFRO.log
2014-08-17 13:09 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-08-17 12:10 - 2014-08-17 12:10 - 00001925 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-17 12:10 - 2014-08-17 12:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-17 12:09 - 2008-04-21 18:51 - 00000000 ____D () C:\Program Files\Google
2014-08-17 12:07 - 2014-08-17 12:07 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Deployment
2014-08-17 12:07 - 2014-08-17 12:07 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Apps\2.0
2014-08-17 11:55 - 2014-08-17 11:55 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\PDF Architect 2
2014-08-17 11:52 - 2013-08-10 21:59 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-17 11:51 - 2014-08-17 11:45 - 00000000 ____D () C:\Program Files\PDFCreator
2014-08-17 11:48 - 2014-08-17 11:48 - 00000784 _____ () C:\Users\Public\Desktop\PDF Architect 2.lnk
2014-08-17 11:48 - 2014-08-17 11:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2
2014-08-17 11:48 - 2014-08-17 11:47 - 00000000 ____D () C:\Program Files\PDF Architect 2
2014-08-17 11:47 - 2014-08-17 11:47 - 00000000 ____D () C:\Users\zuppy\Documents\PDF Architect 2
2014-08-17 11:47 - 2014-08-17 11:47 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2014-08-17 11:45 - 2014-08-17 11:45 - 00000790 _____ () C:\Users\Public\Desktop\PDFCreator.lnk
2014-08-17 11:45 - 2014-08-17 11:45 - 00000000 ____D () C:\Users\zuppy\AppData\Roaming\pdfforge
2014-08-17 11:45 - 2014-08-17 11:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-08-17 11:44 - 2006-11-02 12:24 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-08-17 11:43 - 2014-08-17 11:42 - 27843432 _____ (pdfforge ) C:\Users\zuppy\Downloads\PDFCreator-1_7_3_setup.exe
2014-08-17 11:40 - 2014-08-17 11:40 - 00000000 _____ () C:\Users\zuppy\Downloads\SetupWordToPDF_237_v2.9.exe.28bypr0.partial
2014-08-14 14:46 - 2014-08-14 14:46 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-08-14 14:46 - 2008-04-26 18:22 - 00000000 ____D () C:\ProgramData\Skype
2014-08-12 18:39 - 2013-09-25 12:28 - 00003218 _____ () C:\Windows\setupact.log
2014-08-12 18:39 - 2008-04-26 18:24 - 00000000 ____D () C:\Users\zuppy\AppData\Local\Adobe
2014-08-10 08:46 - 2014-08-10 08:46 - 00001626 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-10 08:46 - 2014-08-10 08:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-10 08:46 - 2014-08-10 08:45 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-10 08:46 - 2010-04-03 08:03 - 00000000 ____D () C:\Program Files\iTunes
2014-08-10 08:45 - 2010-10-03 09:26 - 00000000 ____D () C:\Program Files\iPod
2014-08-10 08:45 - 2008-04-24 13:45 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-10 07:55 - 2008-07-21 13:42 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-08 09:14 - 2010-06-04 09:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-05 09:20 - 2009-10-03 01:38 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
Files to move or delete:
====================
C:\ProgramData\ezsid.dat
C:\Users\zuppy\avira_antivir_personal_de.exe
C:\Users\zuppy\dell_support_center.exe
C:\Users\zuppy\DivXInstaller.exe
C:\Users\zuppy\JuniperSetupClientInstaller.exe
C:\Users\zuppy\server.dll
C:\Users\zuppy\uawin32.dll
Some content of TEMP:
====================
C:\Users\zuppy\AppData\Local\Temp\AdobeUpdater12345.exe
C:\Users\zuppy\AppData\Local\Temp\avgnt.exe
C:\Users\zuppy\AppData\Local\Temp\DataCard_Setup.exe
C:\Users\zuppy\AppData\Local\Temp\jre-7u40-windows-i586-iftw.exe
C:\Users\zuppy\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\zuppy\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\zuppy\AppData\Local\Temp\ResetDevice.exe
C:\Users\zuppy\AppData\Local\Temp\SkypeSetup.exe
C:\Users\zuppy\AppData\Local\Temp\_is4652.exe
C:\Users\zuppy\AppData\Local\Temp\_isB2F9.exe
C:\Users\zuppy\AppData\Local\Temp\_isD4CB.exe
C:\Users\zuppy\AppData\Local\Temp\_isF425.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-04 08:37
==================== End Of Log ============================
--- --- --- --- --- --- [/CODE] |
|
05.09.2014, 09:25
| #6 |
| | acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht.Code:
ATTFilter 14:04:16.0341 0x1554 TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
14:04:41.0708 0x1554 ============================================================
14:04:41.0708 0x1554 Current date / time: 2014/09/04 14:04:41.0708
14:04:41.0708 0x1554 SystemInfo:
14:04:41.0708 0x1554
14:04:41.0709 0x1554 OS Version: 6.0.6002 ServicePack: 2.0
14:04:41.0709 0x1554 Product type: Workstation
14:04:41.0709 0x1554 ComputerName: LAPTOP-ZUPPY
14:04:41.0709 0x1554 UserName: zuppy
14:04:41.0709 0x1554 Windows directory: C:\Windows
14:04:41.0709 0x1554 System windows directory: C:\Windows
14:04:41.0709 0x1554 Processor architecture: Intel x86
14:04:41.0709 0x1554 Number of processors: 2
14:04:41.0709 0x1554 Page size: 0x1000
14:04:41.0709 0x1554 Boot type: Normal boot
14:04:41.0709 0x1554 ============================================================
14:04:42.0591 0x1554 KLMD registered as C:\Windows\system32\drivers\10900206.sys
14:04:43.0638 0x1554 System UUID: {A0082DC7-3D22-32A9-6E20-26ECBB06EF58}
14:04:45.0806 0x1554 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:04:45.0846 0x1554 ============================================================
14:04:45.0846 0x1554 \Device\Harddisk0\DR0:
14:04:45.0847 0x1554 MBR partitions:
14:04:45.0847 0x1554 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2F800, BlocksNum 0x1400000
14:04:45.0847 0x1554 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x142F800, BlocksNum 0x110E97F8
14:04:45.0869 0x1554 ============================================================
14:04:45.0925 0x1554 C: <-> \Device\Harddisk0\DR0\Partition2
14:04:46.0015 0x1554 D: <-> \Device\Harddisk0\DR0\Partition1
14:04:46.0016 0x1554 ============================================================
14:04:46.0016 0x1554 Initialize success
14:04:46.0016 0x1554 ============================================================
14:04:47.0907 0x0bac ============================================================
14:04:47.0907 0x0bac Scan started
14:04:47.0907 0x0bac Mode: Manual;
14:04:47.0907 0x0bac ============================================================
14:04:47.0907 0x0bac KSN ping started
14:05:01.0274 0x0bac KSN ping finished: true
14:05:02.0377 0x0bac ================ Scan system memory ========================
14:05:02.0377 0x0bac System memory - ok
14:05:02.0377 0x0bac ================ Scan services =============================
14:05:02.0722 0x0bac [ 9AD3AC19F5A9968DB4297C4319D7CDDB, 454F45F471237858176492CF31340ECC7B8401539BE97C4B60257AD73FE7B8F9 ] acedrv01 C:\Windows\system32\drivers\acedrv01.sys
14:05:02.0727 0x0bac acedrv01 - ok
14:05:02.0808 0x0bac [ E00A398C09A6515769A4BC39E91064EB, 8F5EAAFCC6E18E6CCB681AFCF1DFE8311F6E8876F061285F6170C2A2D66EBCE6 ] acedrv02 C:\Windows\system32\drivers\acedrv02.sys
14:05:02.0813 0x0bac acedrv02 - ok
14:05:02.0857 0x0bac [ 2D838D7CE9B7CDAFDEC7ED43CC99FA1E, A758D61FD10B05AB9254E158DA83D13D857B33708DD45BBA77FE9C4430228655 ] acedrv04 C:\Windows\system32\drivers\acedrv04.sys
14:05:02.0891 0x0bac acedrv04 - ok
14:05:02.0986 0x0bac [ 0A1E97197609F92D2425B67DA0BB0A7F, 818FD957C6EA1869ED13EA8C0681D2850141E22A68A2D982E4AEEA2736F50555 ] acedrv05 C:\Windows\system32\drivers\acedrv05.sys
14:05:02.0991 0x0bac acedrv05 - ok
14:05:03.0043 0x0bac [ 44010948BDE6ADE50DD1386657C73E83, D5344784B092D31D9660406D371ED62EDFAB3EB880D129BEC0783208AE172274 ] acedrv06 C:\Windows\system32\drivers\acedrv06.sys
14:05:03.0048 0x0bac acedrv06 - ok
14:05:03.0103 0x0bac [ 4E5451DD0AEC8504D7F8030DD2D4C416, D1BF62B1D3D3D347DA46C0FE002C117FABC0ABCCABD1C56D5A6D9F1682C61233 ] acedrv07 C:\Windows\system32\drivers\acedrv07.sys
14:05:03.0108 0x0bac acedrv07 - ok
14:05:03.0217 0x0bac [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
14:05:03.0251 0x0bac ACPI - ok
14:05:03.0293 0x0bac adfs - ok
14:05:03.0432 0x0bac [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:05:03.0443 0x0bac AdobeFlashPlayerUpdateSvc - ok
14:05:03.0547 0x0bac [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
14:05:03.0581 0x0bac adp94xx - ok
14:05:03.0609 0x0bac [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys
14:05:03.0631 0x0bac adpahci - ok
14:05:03.0657 0x0bac [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
14:05:03.0662 0x0bac adpu160m - ok
14:05:03.0688 0x0bac [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
14:05:03.0695 0x0bac adpu320 - ok
14:05:03.0773 0x0bac [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:05:03.0775 0x0bac AeLookupSvc - ok
14:05:03.0866 0x0bac [ EF1142512BEC12F1C2C87735DA1755BE, 236EFD8FBA717123E0CF5A136ACEBB80A2BE1FA4B1A9A2C74728BC4EB4E787D8 ] AESTFilters C:\Windows\system32\aestsrv.exe
14:05:03.0870 0x0bac AESTFilters - ok
14:05:03.0964 0x0bac [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
14:05:04.0030 0x0bac AFD - ok
14:05:04.0114 0x0bac [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4, 2E89838BD068314F4BE59753486E5D666FE2A3DD0A616E00EED4E0F83DB87401 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:05:04.0117 0x0bac agp440 - ok
14:05:04.0153 0x0bac [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
14:05:04.0157 0x0bac aic78xx - ok
14:05:04.0196 0x0bac [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
14:05:04.0199 0x0bac ALG - ok
14:05:04.0214 0x0bac [ E32A92E1574A467F7C762922F6162D76, 8FFDB6DF3DCA371BF0252BA42A4D9E67D6CC08B67C9008F6992646156E3DDAF7 ] aliide C:\Windows\system32\drivers\aliide.sys
14:05:04.0216 0x0bac aliide - ok
14:05:04.0237 0x0bac [ 848F27E5B27C1C253F6CEFDC1A5D8F21, 0FE955D82CE68A1FC5DCA33626179005B90803821005A370EB36352817433089 ] amdagp C:\Windows\system32\drivers\amdagp.sys
14:05:04.0240 0x0bac amdagp - ok
14:05:04.0262 0x0bac [ B52B576CB0099A62F87214F371031561, E11C1FC16CF8D7B26856EB07E59537EFF5D2AFBB83B4A18CCFA3909DC8FD3196 ] amdide C:\Windows\system32\drivers\amdide.sys
14:05:04.0265 0x0bac amdide - ok
14:05:04.0282 0x0bac [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
14:05:04.0285 0x0bac AmdK7 - ok
14:05:04.0295 0x0bac [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
14:05:04.0299 0x0bac AmdK8 - ok
14:05:04.0383 0x0bac [ 350F19EB5FE4EC37A2414DF56CDE1AA8, AC78C39D08D7DFEC19AF3FEF40C0EB8290897CABFF1DE40A399026E37426C735 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
14:05:04.0390 0x0bac ApfiltrService - ok
14:05:04.0473 0x0bac [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
14:05:04.0475 0x0bac Appinfo - ok
14:05:04.0603 0x0bac [ 6B73E94F9FE82D45781B8C8A09483082, C35EEAE7457168387A7C77A315524A3703ABDE49D9F23F59057315D9249D3473 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:05:04.0606 0x0bac Apple Mobile Device - ok
14:05:04.0629 0x0bac [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys
14:05:04.0633 0x0bac arc - ok
14:05:04.0707 0x0bac [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys
14:05:04.0712 0x0bac arcsas - ok
14:05:04.0874 0x0bac [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
14:05:04.0878 0x0bac aspnet_state - ok
14:05:04.0949 0x0bac [ 3BFBB5DAE801CB893B8B46345FED6437, 2C2B71C1294585265D4871E74F17541500CA20DE34AC516F2A906DD81964C833 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
14:05:04.0951 0x0bac aswHwid - ok
14:05:05.0021 0x0bac [ 4E39E113E8F5FEE3C49160A0D657A4D5, AAB66B7C0EC63FD457F579ABDC21ED96F5E11C546AA7067AF2BA79BADCDE00B2 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
14:05:05.0023 0x0bac aswKbd - ok
14:05:05.0036 0x0bac [ C3014C735F450FE822C97FFBB0627113, 1CCFE845AED1757B8C1F52D310933076FF1EC197D82E499DB4592B09D66137B0 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
14:05:05.0040 0x0bac aswMonFlt - ok
14:05:05.0088 0x0bac [ D6C9024F5D14843D33ADA8A6A10A1BE1, D40022D0A360FD4010D3D5D452BBC4CE9EE68224DEAB9584626E6F435E128857 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
14:05:05.0091 0x0bac aswRdr - ok
14:05:05.0104 0x0bac [ B7750AF7EDFD95674EB7CA92BCDD3358, A097577004F3CF71E2F9465F02B073D39926D7DEE2E2A9516D888158A5CB19E9 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
14:05:05.0107 0x0bac aswRvrt - ok
14:05:05.0219 0x0bac [ 51FDE588D860857A97E4C4B560E40C9B, 8A3AC3E55249DAE6CCD95593989F8B100D5C4712A16681A36E5D0F2F08BD57AA ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
14:05:05.0264 0x0bac aswSnx - ok
14:05:05.0326 0x0bac [ 1AEB8CDB797666AF709A291B47AE81E0, 12AC4DBC6338BA5E5C04B449FF8362E7EC8EBFCA675C4F21BE847DFDCAE8F7C9 ] aswSP C:\Windows\system32\drivers\aswSP.sys
14:05:05.0349 0x0bac aswSP - ok
14:05:05.0377 0x0bac [ 26C51C289E39E8EE0F12B8B06B71E436, 81382FC3E836698432EE832A166F09251CC9164B17584E90F73037A1FA54E4F7 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
14:05:05.0430 0x0bac aswTdi - ok
14:05:05.0476 0x0bac [ 90BEE0170D70D6744CEF2355EEAF8086, 8F9FF53F529B854934020E2F8163605DC794FF48464D3D4439BAAF70ECE8E963 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
14:05:05.0484 0x0bac aswVmm - ok
14:05:05.0542 0x0bac [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:05:05.0544 0x0bac AsyncMac - ok
14:05:05.0583 0x0bac [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
14:05:05.0585 0x0bac atapi - ok
14:05:05.0679 0x0bac [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:05:05.0702 0x0bac AudioEndpointBuilder - ok
14:05:05.0735 0x0bac [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
14:05:05.0744 0x0bac Audiosrv - ok
14:05:05.0812 0x0bac [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
14:05:05.0815 0x0bac avast! Antivirus - ok
14:05:05.0928 0x0bac [ 746F59822A5187510471FC46889B8CC9, 7D731460D5EE677C19C632366E3B055AD10B1E65808AE10D3E082641C9F705FF ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
14:05:05.0962 0x0bac BCM43XX - ok
14:05:06.0040 0x0bac [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
14:05:06.0042 0x0bac Beep - ok
14:05:06.0136 0x0bac [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
14:05:06.0159 0x0bac BFE - ok
14:05:06.0270 0x0bac [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
14:05:06.0316 0x0bac BITS - ok
14:05:06.0327 0x0bac blbdrive - ok
14:05:06.0452 0x0bac [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:05:06.0475 0x0bac Bonjour Service - ok
14:05:06.0525 0x0bac [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:05:06.0529 0x0bac bowser - ok
14:05:06.0599 0x0bac [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
14:05:06.0601 0x0bac BrFiltLo - ok
14:05:06.0624 0x0bac [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
14:05:06.0626 0x0bac BrFiltUp - ok
14:05:06.0674 0x0bac [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
14:05:06.0680 0x0bac Browser - ok
14:05:06.0741 0x0bac [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
14:05:06.0745 0x0bac Brserid - ok
14:05:06.0769 0x0bac [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
14:05:06.0773 0x0bac BrSerWdm - ok
14:05:06.0798 0x0bac [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
14:05:06.0800 0x0bac BrUsbMdm - ok
14:05:06.0819 0x0bac [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
14:05:06.0846 0x0bac BrUsbSer - ok
14:05:06.0959 0x0bac [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc C:\Program Files\Browny02\BrYNSvc.exe
14:05:06.0969 0x0bac BrYNSvc - ok
14:05:06.0990 0x0bac [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
14:05:06.0993 0x0bac BTHMODEM - ok
14:05:07.0033 0x0bac [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:05:07.0037 0x0bac cdfs - ok
14:05:07.0115 0x0bac [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:05:07.0119 0x0bac cdrom - ok
14:05:07.0196 0x0bac [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
14:05:07.0199 0x0bac CertPropSvc - ok
14:05:07.0224 0x0bac [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys
14:05:07.0227 0x0bac circlass - ok
14:05:07.0272 0x0bac [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
14:05:07.0283 0x0bac CLFS - ok
14:05:07.0355 0x0bac [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:05:07.0360 0x0bac clr_optimization_v2.0.50727_32 - ok
14:05:07.0434 0x0bac [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:05:07.0467 0x0bac clr_optimization_v4.0.30319_32 - ok
14:05:07.0514 0x0bac [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:05:07.0516 0x0bac CmBatt - ok
14:05:07.0532 0x0bac [ C177DD90B5DC1DCAA96CCECE752E6F0F, 4469A32BFE9D0207A55AB222E4AF111D8780FCDB3E2D0BFB24742B4CE9040BA7 ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:05:07.0534 0x0bac cmdide - ok
14:05:07.0576 0x0bac cmnsusbser - ok
14:05:07.0631 0x0bac [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:05:07.0633 0x0bac Compbatt - ok
14:05:07.0642 0x0bac COMSysApp - ok
14:05:07.0662 0x0bac [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
14:05:07.0664 0x0bac crcdisk - ok
14:05:07.0689 0x0bac [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys
14:05:07.0692 0x0bac Crusoe - ok
14:05:07.0779 0x0bac [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:05:07.0786 0x0bac CryptSvc - ok
14:05:07.0896 0x0bac [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:05:07.0946 0x0bac DcomLaunch - ok
14:05:07.0993 0x0bac [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:05:07.0998 0x0bac DfsC - ok
14:05:08.0157 0x0bac [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
14:05:08.0268 0x0bac DFSR - ok
14:05:08.0355 0x0bac [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
14:05:08.0366 0x0bac Dhcp - ok
14:05:08.0452 0x0bac [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
14:05:08.0456 0x0bac disk - ok
14:05:08.0536 0x0bac [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:05:08.0542 0x0bac Dnscache - ok
14:05:08.0591 0x0bac [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
14:05:08.0600 0x0bac dot3svc - ok
14:05:08.0681 0x0bac [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
14:05:08.0688 0x0bac Dot4 - ok
14:05:08.0708 0x0bac [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:05:08.0710 0x0bac Dot4Print - ok
14:05:08.0764 0x0bac [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
14:05:08.0767 0x0bac dot4usb - ok
14:05:08.0837 0x0bac [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
14:05:08.0845 0x0bac DPS - ok
14:05:08.0878 0x0bac [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:05:08.0880 0x0bac drmkaud - ok
14:05:08.0909 0x0bac [ 4823163C246868863D41A2F5EE06A21E, 6CFCBBAAD564CE155FDA33EE6025ADEE23807AC3D15975F5B0C7F55CAD3463DF ] dsNcAdpt C:\Windows\system32\DRIVERS\dsNcAdpt.sys
14:05:08.0911 0x0bac dsNcAdpt - ok
14:05:09.0004 0x0bac [ 8A888331C308D7BC3ACADC5D417E94E9, 24999FB485AD7FCBF1F02BF1F39E71A0B4F3043998B9EAE605B5AC2E2760F710 ] dsNcService C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
14:05:09.0027 0x0bac dsNcService - ok
14:05:09.0102 0x0bac [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:05:09.0136 0x0bac DXGKrnl - ok
14:05:09.0241 0x0bac [ 7505290504C8E2D172FA378CC0497BCC, 8DD69E1B27EC13E62529C87B6B796675681E6329C825E64EEC9134B15C08161C ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
14:05:09.0250 0x0bac e1express - ok
14:05:09.0320 0x0bac [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
14:05:09.0326 0x0bac E1G60 - ok
14:05:09.0368 0x0bac [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
14:05:09.0373 0x0bac EapHost - ok
14:05:09.0450 0x0bac [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
14:05:09.0457 0x0bac Ecache - ok
14:05:09.0533 0x0bac [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:05:09.0555 0x0bac ehRecvr - ok
14:05:09.0594 0x0bac [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
14:05:09.0607 0x0bac ehSched - ok
14:05:09.0628 0x0bac [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
14:05:09.0631 0x0bac ehstart - ok
14:05:09.0697 0x0bac [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys
14:05:09.0727 0x0bac elxstor - ok
14:05:09.0808 0x0bac [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
14:05:09.0864 0x0bac EMDMgmt - ok
14:05:09.0943 0x0bac [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
14:05:09.0966 0x0bac EventSystem - ok
14:05:10.0058 0x0bac [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
14:05:10.0064 0x0bac exfat - ok
14:05:10.0109 0x0bac [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:05:10.0116 0x0bac fastfat - ok
14:05:10.0195 0x0bac [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:05:10.0198 0x0bac fdc - ok
14:05:10.0229 0x0bac [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
14:05:10.0233 0x0bac fdPHost - ok
14:05:10.0261 0x0bac [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
14:05:10.0265 0x0bac FDResPub - ok
14:05:10.0312 0x0bac [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:05:10.0316 0x0bac FileInfo - ok
14:05:10.0337 0x0bac [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:05:10.0340 0x0bac Filetrace - ok
14:05:10.0361 0x0bac [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:05:10.0363 0x0bac flpydisk - ok
14:05:10.0411 0x0bac [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:05:10.0420 0x0bac FltMgr - ok
14:05:10.0526 0x0bac [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
14:05:10.0571 0x0bac FontCache - ok
14:05:10.0638 0x0bac [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:05:10.0641 0x0bac FontCache3.0.0.0 - ok
14:05:10.0687 0x0bac [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:05:10.0690 0x0bac Fs_Rec - ok
14:05:10.0724 0x0bac [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
14:05:10.0728 0x0bac gagp30kx - ok
14:05:10.0813 0x0bac [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
14:05:10.0815 0x0bac GEARAspiWDM - ok
14:05:10.0921 0x0bac [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
14:05:10.0955 0x0bac gpsvc - ok
14:05:11.0051 0x0bac [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
14:05:11.0055 0x0bac gupdate - ok
14:05:11.0090 0x0bac [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
14:05:11.0094 0x0bac gupdatem - ok
14:05:11.0150 0x0bac [ 3F90E001369A07243763BD5A523D8722, 25907F85787D879E75C3FE74C93567382AFB2D528BEEC61D71E3A6BE2D71DFBE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:05:11.0160 0x0bac HdAudAddService - ok
14:05:11.0230 0x0bac [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:05:11.0263 0x0bac HDAudBus - ok
14:05:11.0299 0x0bac [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
14:05:11.0302 0x0bac HidBth - ok
14:05:11.0325 0x0bac [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
14:05:11.0328 0x0bac HidIr - ok
14:05:11.0373 0x0bac [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
14:05:11.0378 0x0bac hidserv - ok
14:05:11.0395 0x0bac [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:05:11.0397 0x0bac HidUsb - ok
14:05:11.0446 0x0bac [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
14:05:11.0453 0x0bac hkmsvc - ok
14:05:11.0475 0x0bac [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
14:05:11.0478 0x0bac HpCISSs - ok
14:05:11.0557 0x0bac [ E9E589C9AB799F52E18F057635A2B362, 24857D672B09C13EF290E7EA587D25270DE23740EE18E2FCF16716D9E0D0E457 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
14:05:11.0624 0x0bac HSF_DPV - ok
14:05:11.0663 0x0bac [ 7845D2385F4DC7DFB3CCAF0C2FA4948E, 18F01851E18CCF84A7987B739C7661C8BF272CF69F4E6BA87A69FCDBA1B8774A ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
14:05:11.0672 0x0bac HSXHWAZL - ok
14:05:11.0731 0x0bac [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:05:11.0754 0x0bac HTTP - ok
14:05:11.0804 0x0bac hwdatacard - ok
14:05:11.0866 0x0bac [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys
14:05:11.0869 0x0bac i2omp - ok
14:05:11.0935 0x0bac [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
14:05:11.0939 0x0bac i8042prt - ok
14:05:12.0038 0x0bac [ AE38A12F79A4980DDB88F36514F8A1DA, CA7EE57EC2ECA88ABFD087DAF8963021DC12821FDFAAD0336A16F8DC119C0FC4 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
14:05:12.0060 0x0bac IAANTMON - ok
14:05:12.0109 0x0bac [ 997E8F5939F2D12CD9F2E6B395724C16, C22F10BADE29DA6F7EB79D9F5D81D9FBEC17D4D4F8B25E0AF4E5CEAE28E8ABF6 ] iaStor C:\Windows\system32\drivers\iastor.sys
14:05:12.0118 0x0bac iaStor - ok
14:05:12.0149 0x0bac [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
14:05:12.0159 0x0bac iaStorV - ok
14:05:12.0299 0x0bac [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
14:05:12.0304 0x0bac IDriverT - ok
14:05:12.0401 0x0bac [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:05:12.0446 0x0bac idsvc - ok
14:05:12.0613 0x0bac [ C134E69CE901422D1F2D7EA8D69098FE, 38D7AB6C85C0BCE34B8F52DDBD6F0371DF551003DF6BAE20A2AB1D1349128890 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
14:05:12.0726 0x0bac igfx - ok
14:05:12.0755 0x0bac [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
14:05:12.0758 0x0bac iirsp - ok
14:05:12.0817 0x0bac [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
14:05:12.0851 0x0bac IKEEXT - ok
14:05:12.0923 0x0bac [ 98D303CCB3415E9202E82043B37D66DC, 53526635EBCA6E2C2E9AAEC68B333CAE6A5FF0008859FCDE3D84A2C9098B30B0 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
14:05:12.0928 0x0bac IntcHdmiAddService - ok
14:05:12.0971 0x0bac [ 59B00EFB24EAD979BECF413703BB1FAC, CC094DF02F2D894DCE31AB21CA3A90AB93AF9782535FBDE8B383CAD48BAB13DF ] intelide C:\Windows\system32\DRIVERS\intelide.sys
14:05:12.0973 0x0bac intelide - ok
14:05:13.0041 0x0bac [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:05:13.0044 0x0bac intelppm - ok
14:05:13.0094 0x0bac [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:05:13.0101 0x0bac IPBusEnum - ok
14:05:13.0165 0x0bac [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:05:13.0169 0x0bac IpFilterDriver - ok
14:05:13.0220 0x0bac [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:05:13.0232 0x0bac iphlpsvc - ok
14:05:13.0240 0x0bac IpInIp - ok
14:05:13.0279 0x0bac [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
14:05:13.0283 0x0bac IPMIDRV - ok
14:05:13.0321 0x0bac [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
14:05:13.0326 0x0bac IPNAT - ok
14:05:13.0422 0x0bac [ 35828479CCB4EE3CFD7523AF63443D5B, CA582DB092DC049597268B8245F2EEFF5DB807CBE2CFABEA04EA00DD5ED9A2B6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:05:13.0510 0x0bac iPod Service - ok
14:05:13.0558 0x0bac [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:05:13.0561 0x0bac IRENUM - ok
14:05:13.0587 0x0bac [ 2F8ECE2699E7E2070545E9B0960A8ED2, 40214A9220C6EC232C245939E4F40A9FF6D30497E180EDC809B87938A922E52D ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:05:13.0590 0x0bac isapnp - ok
14:05:13.0669 0x0bac [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
14:05:13.0678 0x0bac iScsiPrt - ok
14:05:13.0699 0x0bac [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
14:05:13.0702 0x0bac iteatapi - ok
14:05:13.0719 0x0bac [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
14:05:13.0722 0x0bac iteraid - ok
14:05:13.0756 0x0bac [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:05:13.0759 0x0bac kbdclass - ok
14:05:13.0804 0x0bac [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:05:13.0807 0x0bac kbdhid - ok
14:05:13.0845 0x0bac [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
14:05:13.0850 0x0bac KeyIso - ok
14:05:13.0952 0x0bac [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:05:13.0985 0x0bac KSecDD - ok
14:05:14.0036 0x0bac [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
14:05:14.0060 0x0bac KtmRm - ok
14:05:14.0136 0x0bac [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
14:05:14.0147 0x0bac LanmanServer - ok
14:05:14.0189 0x0bac [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:05:14.0202 0x0bac LanmanWorkstation - ok
14:05:14.0255 0x0bac [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:05:14.0258 0x0bac lltdio - ok
14:05:14.0314 0x0bac [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:05:14.0325 0x0bac lltdsvc - ok
14:05:14.0355 0x0bac [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:05:14.0360 0x0bac lmhosts - ok
14:05:14.0396 0x0bac [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
14:05:14.0400 0x0bac LSI_FC - ok
14:05:14.0418 0x0bac [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
14:05:14.0422 0x0bac LSI_SAS - ok
14:05:14.0447 0x0bac [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
14:05:14.0451 0x0bac LSI_SCSI - ok
14:05:14.0528 0x0bac [ 834098EE53663043E94F51D8B8E2CB0E, CFD6898789ECE64C0103CC801859E018B51639862DA3EE80872D4C559F2514F9 ] LTXMD_VAC C:\Windows\system32\drivers\lmvac.sys
14:05:14.0531 0x0bac LTXMD_VAC - ok
14:05:14.0571 0x0bac [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
14:05:14.0576 0x0bac luafv - ok
14:05:14.0593 0x0bac [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:05:14.0600 0x0bac Mcx2Svc - ok
14:05:14.0622 0x0bac [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
14:05:14.0624 0x0bac mdmxsdk - ok
14:05:14.0639 0x0bac [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys
14:05:14.0641 0x0bac megasas - ok
14:05:14.0666 0x0bac [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
14:05:14.0672 0x0bac MMCSS - ok
14:05:14.0709 0x0bac [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
14:05:14.0712 0x0bac Modem - ok
14:05:14.0760 0x0bac [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:05:14.0763 0x0bac monitor - ok
14:05:14.0772 0x0bac [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:05:14.0775 0x0bac mouclass - ok
14:05:14.0808 0x0bac [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:05:14.0810 0x0bac mouhid - ok
14:05:14.0835 0x0bac [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
14:05:14.0839 0x0bac MountMgr - ok
14:05:14.0918 0x0bac [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys
14:05:14.0922 0x0bac mpio - ok
14:05:14.0959 0x0bac [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:05:14.0963 0x0bac mpsdrv - ok
14:05:15.0024 0x0bac [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:05:15.0058 0x0bac MpsSvc - ok
14:05:15.0083 0x0bac [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
14:05:15.0086 0x0bac Mraid35x - ok
14:05:15.0117 0x0bac [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:05:15.0123 0x0bac MRxDAV - ok
14:05:15.0169 0x0bac [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:05:15.0174 0x0bac mrxsmb - ok
14:05:15.0224 0x0bac [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:05:15.0234 0x0bac mrxsmb10 - ok
14:05:15.0268 0x0bac [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:05:15.0273 0x0bac mrxsmb20 - ok
14:05:15.0297 0x0bac [ 2681302B63B318CBEA6C82902AC5428C, B3E243E8582AE92568231C197FC1CB2BA60EDDCBCAA7F404C4012D2A803B7A8E ] msahci C:\Windows\system32\drivers\msahci.sys
14:05:15.0300 0x0bac msahci - ok
14:05:15.0331 0x0bac [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:05:15.0335 0x0bac msdsm - ok
14:05:15.0377 0x0bac [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
14:05:15.0385 0x0bac MSDTC - ok
14:05:15.0430 0x0bac [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:05:15.0433 0x0bac Msfs - ok
14:05:15.0484 0x0bac [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:05:15.0487 0x0bac msisadrv - ok
14:05:15.0530 0x0bac [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:05:15.0538 0x0bac MSiSCSI - ok
14:05:15.0546 0x0bac msiserver - ok
14:05:15.0585 0x0bac [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:05:15.0587 0x0bac MSKSSRV - ok
14:05:15.0596 0x0bac [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:05:15.0599 0x0bac MSPCLOCK - ok
14:05:15.0613 0x0bac [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:05:15.0615 0x0bac MSPQM - ok
14:05:15.0654 0x0bac [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:05:15.0662 0x0bac MsRPC - ok
14:05:15.0684 0x0bac [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
14:05:15.0687 0x0bac mssmbios - ok
14:05:15.0738 0x0bac [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:05:15.0741 0x0bac MSTEE - ok
14:05:15.0756 0x0bac [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
14:05:15.0760 0x0bac Mup - ok
14:05:15.0811 0x0bac [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
14:05:15.0834 0x0bac napagent - ok
14:05:15.0885 0x0bac [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:05:15.0892 0x0bac NativeWifiP - ok
14:05:15.0996 0x0bac [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:05:16.0030 0x0bac NDIS - ok
14:05:16.0082 0x0bac [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:05:16.0088 0x0bac NdisTapi - ok
14:05:16.0130 0x0bac [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:05:16.0132 0x0bac Ndisuio - ok
14:05:16.0149 0x0bac [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:05:16.0156 0x0bac NdisWan - ok
14:05:16.0209 0x0bac [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:05:16.0212 0x0bac NDProxy - ok
14:05:16.0280 0x0bac [ 51C6D8BFBD4EA5B62A1BA7F4469250D3, 29ACA9D8A5426333F75858D9D3960A4DCDDA4ACC986B3E9E37D255E4FAECDB7C ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
14:05:16.0284 0x0bac Net Driver HPZ12 - ok
14:05:16.0326 0x0bac [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:05:16.0329 0x0bac NetBIOS - ok
14:05:16.0387 0x0bac [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
14:05:16.0396 0x0bac netbt - ok
14:05:16.0423 0x0bac [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
14:05:16.0427 0x0bac Netlogon - ok
14:05:16.0579 0x0bac [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
14:05:16.0617 0x0bac Netman - ok
14:05:16.0706 0x0bac [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:05:16.0746 0x0bac NetMsmqActivator - ok
14:05:16.0773 0x0bac [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:05:16.0778 0x0bac NetPipeActivator - ok
14:05:16.0838 0x0bac [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
14:05:16.0852 0x0bac netprofm - ok
14:05:16.0868 0x0bac [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:05:16.0874 0x0bac NetTcpActivator - ok
14:05:16.0885 0x0bac [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:05:16.0890 0x0bac NetTcpPortSharing - ok
14:05:16.0926 0x0bac [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
14:05:16.0930 0x0bac nfrd960 - ok
14:05:16.0958 0x0bac [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
14:05:16.0969 0x0bac NlaSvc - ok
14:05:17.0010 0x0bac [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:05:17.0013 0x0bac Npfs - ok
14:05:17.0056 0x0bac [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
14:05:17.0062 0x0bac nsi - ok
14:05:17.0096 0x0bac [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:05:17.0098 0x0bac nsiproxy - ok
14:05:17.0244 0x0bac [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:05:17.0300 0x0bac Ntfs - ok
14:05:17.0327 0x0bac [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
14:05:17.0330 0x0bac ntrigdigi - ok
14:05:17.0352 0x0bac [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
14:05:17.0354 0x0bac Null - ok
14:05:17.0395 0x0bac [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:05:17.0400 0x0bac nvraid - ok
14:05:17.0419 0x0bac [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:05:17.0422 0x0bac nvstor - ok
14:05:17.0440 0x0bac [ 055081FD5076401C1EE1BCAB08D81911, E6621F2D24E7E2544AFD249660F2D1026B94698CA841E79B3F1199ACB2203995 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:05:17.0446 0x0bac nv_agp - ok
14:05:17.0454 0x0bac NwlnkFlt - ok
14:05:17.0463 0x0bac NwlnkFwd - ok
14:05:17.0543 0x0bac [ 19CAC780B858822055F46C58A111723C, D91CE501328281B8FEE6943776A145FB3201645B01BA8D1545FFA93A547DE2C7 ] OEM02Dev C:\Windows\system32\DRIVERS\OEM02Dev.sys
14:05:17.0553 0x0bac OEM02Dev - ok
14:05:17.0572 0x0bac [ 86326062A90494BDD79CE383511D7D69, 43D5682CA8ECB4BA7CC1A5C4C2BF966EE4802E8C3AA84CDEB634CA3C410DAB89 ] OEM02Vfx C:\Windows\system32\DRIVERS\OEM02Vfx.sys
14:05:17.0574 0x0bac OEM02Vfx - ok
14:05:17.0651 0x0bac [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
14:05:17.0655 0x0bac ohci1394 - ok
14:05:17.0726 0x0bac [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
14:05:17.0771 0x0bac p2pimsvc - ok
14:05:17.0842 0x0bac [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
14:05:17.0864 0x0bac p2psvc - ok
14:05:17.0913 0x0bac [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
14:05:17.0918 0x0bac Parport - ok
14:05:17.0965 0x0bac [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:05:17.0969 0x0bac partmgr - ok
14:05:17.0985 0x0bac [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
14:05:17.0989 0x0bac Parvdm - ok
14:05:18.0034 0x0bac [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
14:05:18.0041 0x0bac PcaSvc - ok
14:05:18.0085 0x0bac [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
14:05:18.0110 0x0bac pci - ok
14:05:18.0182 0x0bac [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide C:\Windows\system32\drivers\pciide.sys
14:05:18.0184 0x0bac pciide - ok
14:05:18.0214 0x0bac [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
14:05:18.0226 0x0bac pcmcia - ok
14:05:18.0426 0x0bac [ F97DC1A5244469D367B1334D47118E34, A36B6C402F92BEBE14082296CBF5F69656ED87AB700789028799768FA1FE2A72 ] PDF Architect 2 C:\Program Files\PDF Architect 2\ws.exe
14:05:18.0594 0x0bac PDF Architect 2 - ok
14:05:18.0687 0x0bac [ E81F7D5371C95904D4105B06405D5EDA, A6A41793AC241801D37A95C25B2DA0C3CDDC804B4F2BD087ECBD30C562F3517B ] pdfforge CrashHandler C:\Program Files\PDF Architect 2\crash-handler-ws.exe
14:05:18.0743 0x0bac pdfforge CrashHandler - ok
14:05:18.0862 0x0bac [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:05:18.0907 0x0bac PEAUTH - ok
14:05:19.0052 0x0bac [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
14:05:19.0138 0x0bac pla - ok
14:05:19.0193 0x0bac [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:05:19.0208 0x0bac PlugPlay - ok
14:05:19.0246 0x0bac [ 79834AA2FBF9FE81EEBB229024F6F7FC, 4E243765C11AE9B5D003C3220B8AA0C4671B2627221D2323F80189CA3A307FEF ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
14:05:19.0251 0x0bac Pml Driver HPZ12 - ok
14:05:19.0304 0x0bac [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
14:05:19.0360 0x0bac PNRPAutoReg - ok
14:05:19.0426 0x0bac [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
14:05:19.0448 0x0bac PNRPsvc - ok
14:05:19.0486 0x0bac [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:05:19.0519 0x0bac PolicyAgent - ok
14:05:19.0565 0x0bac [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:05:19.0569 0x0bac PptpMiniport - ok
14:05:19.0603 0x0bac [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor C:\Windows\system32\drivers\processr.sys
14:05:19.0606 0x0bac Processor - ok
14:05:19.0650 0x0bac [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll
14:05:19.0661 0x0bac ProfSvc - ok
14:05:19.0679 0x0bac [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
14:05:19.0683 0x0bac ProtectedStorage - ok
14:05:19.0725 0x0bac [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
14:05:19.0728 0x0bac PSched - ok
14:05:19.0782 0x0bac [ E42E3433DBB4CFFE8FDD91EAB29AEA8E, 20ABD8372B242FD356AC143E7EB56F93CFEA4988ED1B0C4434CB64C387D7F66C ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
14:05:19.0785 0x0bac PxHelp20 - ok
14:05:19.0881 0x0bac [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys
14:05:19.0942 0x0bac ql2300 - ok
14:05:19.0964 0x0bac [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
14:05:19.0969 0x0bac ql40xx - ok
14:05:20.0024 0x0bac [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
14:05:20.0039 0x0bac QWAVE - ok
14:05:20.0085 0x0bac [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:05:20.0088 0x0bac QWAVEdrv - ok
14:05:20.0220 0x0bac [ E642B131FB74CAF4BB8A014F31113142, 18A81B27FB2DA556AC51DBA8956203A6E821D75B2B09F11049250E732318F573 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
14:05:20.0325 0x0bac R300 - ok
14:05:20.0453 0x0bac [ 70DBDAB246C18B78E2200D6401D038BE, 18395D084AA9BEAF9C20736C90063CE1F862AF3A80F7752DB4FC0D1870D9996D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
14:05:20.0460 0x0bac RapiMgr - ok
14:05:20.0499 0x0bac [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:05:20.0502 0x0bac RasAcd - ok
14:05:20.0548 0x0bac [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
14:05:20.0559 0x0bac RasAuto - ok
14:05:20.0608 0x0bac [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:05:20.0612 0x0bac Rasl2tp - ok
14:05:20.0667 0x0bac [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
14:05:20.0683 0x0bac RasMan - ok
14:05:20.0767 0x0bac [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:05:20.0777 0x0bac RasPppoe - ok
14:05:20.0813 0x0bac [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:05:20.0821 0x0bac RasSstp - ok
14:05:20.0886 0x0bac [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:05:20.0912 0x0bac rdbss - ok
14:05:20.0921 0x0bac [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:05:20.0924 0x0bac RDPCDD - ok
14:05:20.0985 0x0bac [ 0245418224CFA77BF4B41C2FE0622258, 532A8ABB476A1723FDD25A12EA07C97F2588F24D0AE6F86C0105112A9AECCDB9 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
14:05:20.0995 0x0bac rdpdr - ok
14:05:21.0010 0x0bac [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:05:21.0012 0x0bac RDPENCDD - ok
14:05:21.0074 0x0bac [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:05:21.0082 0x0bac RDPWD - ok
14:05:21.0174 0x0bac [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
14:05:21.0181 0x0bac RemoteAccess - ok
14:05:21.0222 0x0bac [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:05:21.0232 0x0bac RemoteRegistry - ok
14:05:21.0297 0x0bac [ 355AAC141B214BEF1DBC1483AFD9BD50, EB9AF96E81C1644C0190D269119BE71C63B60D50153C6EA2659B488C4456DBDF ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
14:05:21.0300 0x0bac rimmptsk - ok
14:05:21.0322 0x0bac [ A4216C71DD4F60B26418CCFD99CD0815, C189953DD7B3AB31167D8746E8F829D222FEF3F8866317814414EF3E0D92B9E1 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
14:05:21.0326 0x0bac rimsptsk - ok
14:05:21.0342 0x0bac [ D231B577024AA324AF13A42F3A807D10, F63885D67FA40F3640044C79AE8FAA536D307959D2AE9543C4A8F3CE5447CF91 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
14:05:21.0345 0x0bac rismxdp - ok
14:05:21.0378 0x0bac [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
14:05:21.0383 0x0bac RpcLocator - ok
14:05:21.0454 0x0bac [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
14:05:21.0478 0x0bac RpcSs - ok
14:05:21.0531 0x0bac [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:05:21.0536 0x0bac rspndr - ok
14:05:21.0561 0x0bac [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
14:05:21.0583 0x0bac SamSs - ok
14:05:21.0614 0x0bac [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:05:21.0619 0x0bac sbp2port - ok
14:05:21.0653 0x0bac [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:05:21.0679 0x0bac SCardSvr - ok
14:05:21.0758 0x0bac [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
14:05:21.0792 0x0bac Schedule - ok
14:05:21.0841 0x0bac [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
14:05:21.0844 0x0bac SCPolicySvc - ok
14:05:21.0892 0x0bac [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
14:05:21.0897 0x0bac sdbus - ok
14:05:21.0942 0x0bac [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:05:21.0952 0x0bac SDRSVC - ok
14:05:22.0002 0x0bac [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:05:22.0005 0x0bac secdrv - ok
14:05:22.0070 0x0bac [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
14:05:22.0077 0x0bac seclogon - ok
14:05:22.0093 0x0bac [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
14:05:22.0101 0x0bac SENS - ok
14:05:22.0125 0x0bac [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
14:05:22.0128 0x0bac Serenum - ok
14:05:22.0161 0x0bac [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
14:05:22.0167 0x0bac Serial - ok
14:05:22.0206 0x0bac [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
14:05:22.0208 0x0bac sermouse - ok
14:05:22.0278 0x0bac [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
14:05:22.0287 0x0bac SessionEnv - ok
14:05:22.0319 0x0bac [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
14:05:22.0338 0x0bac sffdisk - ok
14:05:22.0355 0x0bac [ 96DED8B20C734AC41641CE275250E55D, E88317D0B31A98917AD30AD9F8CF6B59C1141FFBF7A150D8675A29B95FF150F3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:05:22.0357 0x0bac sffp_mmc - ok
14:05:22.0368 0x0bac [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
14:05:22.0370 0x0bac sffp_sd - ok
14:05:22.0388 0x0bac [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
14:05:22.0391 0x0bac sfloppy - ok
14:05:22.0435 0x0bac [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:05:22.0456 0x0bac SharedAccess - ok
14:05:22.0519 0x0bac [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:05:22.0535 0x0bac ShellHWDetection - ok
14:05:22.0578 0x0bac [ 08072B2FB92477FC813271A84B3A8698, A97ABDEB5E37F7B50DD6168FAAD524BE82418FC7818BB667C10951408FB6EB70 ] sisagp C:\Windows\system32\drivers\sisagp.sys
14:05:22.0581 0x0bac sisagp - ok
14:05:22.0605 0x0bac [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
14:05:22.0609 0x0bac SiSRaid2 - ok
14:05:22.0655 0x0bac [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
14:05:22.0660 0x0bac SiSRaid4 - ok
14:05:22.0743 0x0bac [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
14:05:22.0751 0x0bac SkypeUpdate - ok
14:05:22.0998 0x0bac [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
14:05:23.0211 0x0bac slsvc - ok
14:05:23.0297 0x0bac [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
14:05:23.0312 0x0bac SLUINotify - ok
14:05:23.0346 0x0bac [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:05:23.0351 0x0bac Smb - ok
14:05:23.0385 0x0bac [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:05:23.0392 0x0bac SNMPTRAP - ok
14:05:23.0431 0x0bac [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
14:05:23.0434 0x0bac spldr - ok
14:05:23.0481 0x0bac [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
14:05:23.0492 0x0bac Spooler - ok
14:05:23.0528 0x0bac sprtsvc_dellsupportcenter - ok
14:05:23.0584 0x0bac [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
14:05:23.0607 0x0bac srv - ok
14:05:23.0651 0x0bac [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:05:23.0659 0x0bac srv2 - ok
14:05:23.0685 0x0bac [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:05:23.0691 0x0bac srvnet - ok
14:05:23.0711 0x0bac [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:05:23.0723 0x0bac SSDPSRV - ok
14:05:23.0802 0x0bac [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
14:05:23.0824 0x0bac ssmdrv - ok
14:05:23.0893 0x0bac [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:05:23.0905 0x0bac SstpSvc - ok
14:05:23.0966 0x0bac [ 799AA3E04879B3FED31ECEA02B1CAA9A, EECEE3F666EE3722B5655E596CF4128303AD6CA3C5B45C3501B4D1D2CEC9FD75 ] STacSV C:\Windows\system32\STacSV.exe
14:05:23.0976 0x0bac STacSV - ok
14:05:24.0068 0x0bac [ 5AF135B2E2097D4494B9067CE84E2665, E7517C43BB81B6AE017172BA5389F6B0FC17CF9E60AAB3453A6D80A087C86592 ] STHDA C:\Windows\system32\drivers\stwrt.sys
14:05:24.0090 0x0bac STHDA - ok
14:05:24.0162 0x0bac [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
14:05:24.0164 0x0bac StillCam - ok
14:05:24.0231 0x0bac [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
14:05:24.0264 0x0bac stisvc - ok
14:05:24.0340 0x0bac [ 7489520E98A119B5A9A00857F4F87D16, 818E070C16A85DD641A865CF439FF862A0D05B1E18B2329C24E8983074E0354E ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
14:05:24.0390 0x0bac stllssvr - ok
14:05:24.0461 0x0bac [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
14:05:24.0486 0x0bac swenum - ok
14:05:24.0610 0x0bac [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
14:05:24.0689 0x0bac swprv - ok
14:05:24.0739 0x0bac [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
14:05:24.0742 0x0bac Symc8xx - ok
14:05:24.0759 0x0bac [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
14:05:24.0762 0x0bac Sym_hi - ok
14:05:24.0785 0x0bac [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
14:05:24.0789 0x0bac Sym_u3 - ok
14:05:24.0859 0x0bac [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
14:05:24.0904 0x0bac SysMain - ok
14:05:24.0937 0x0bac [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:05:24.0946 0x0bac TabletInputService - ok
14:05:25.0015 0x0bac [ 5C7C939BBD03784FE58C80578D065CC9, 69620ED28E0BF8C466B22760B4476E2A9119BB1C532C9E9BB1A7BCA91A8BB54A ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
14:05:25.0018 0x0bac tap0901 - ok
14:05:25.0068 0x0bac [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:05:25.0083 0x0bac TapiSrv - ok
14:05:25.0130 0x0bac [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
14:05:25.0138 0x0bac TBS - ok
14:05:25.0219 0x0bac [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:05:25.0264 0x0bac Tcpip - ok
14:05:25.0330 0x0bac [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
14:05:25.0355 0x0bac Tcpip6 - ok
14:05:25.0396 0x0bac [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:05:25.0399 0x0bac tcpipreg - ok
14:05:25.0443 0x0bac [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:05:25.0445 0x0bac TDPIPE - ok
14:05:25.0468 0x0bac [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:05:25.0470 0x0bac TDTCP - ok
14:05:25.0504 0x0bac [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:05:25.0509 0x0bac tdx - ok
14:05:25.0551 0x0bac [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
14:05:25.0555 0x0bac TermDD - ok
14:05:25.0594 0x0bac [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll
14:05:25.0628 0x0bac TermService - ok
14:05:25.0664 0x0bac [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
14:05:25.0679 0x0bac Themes - ok
14:05:25.0700 0x0bac [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
14:05:25.0706 0x0bac THREADORDER - ok
14:05:25.0754 0x0bac [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
14:05:25.0763 0x0bac TrkWks - ok
14:05:25.0835 0x0bac [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:05:25.0837 0x0bac TrustedInstaller - ok
14:05:25.0874 0x0bac [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:05:25.0877 0x0bac tssecsrv - ok
14:05:25.0952 0x0bac [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
14:05:25.0955 0x0bac tunmp - ok
14:05:25.0996 0x0bac [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:05:25.0999 0x0bac tunnel - ok
14:05:26.0034 0x0bac [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys
14:05:26.0037 0x0bac uagp35 - ok
14:05:26.0067 0x0bac [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:05:26.0078 0x0bac udfs - ok
14:05:26.0124 0x0bac [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:05:26.0133 0x0bac UI0Detect - ok
14:05:26.0155 0x0bac [ 6D72EF05921ABDF59FC45C7EBFE7E8DD, 9102CB4B5E8B858B61DE1508C6A00D75584741891899966258E510173DBF7BB9 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:05:26.0159 0x0bac uliagpkx - ok
14:05:26.0184 0x0bac [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys
14:05:26.0195 0x0bac uliahci - ok
14:05:26.0252 0x0bac [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
14:05:26.0268 0x0bac UlSata - ok
14:05:26.0367 0x0bac [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
14:05:26.0416 0x0bac ulsata2 - ok
14:05:26.0506 0x0bac [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:05:26.0510 0x0bac umbus - ok
14:05:26.0557 0x0bac [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
14:05:26.0573 0x0bac upnphost - ok
14:05:26.0661 0x0bac [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
14:05:26.0665 0x0bac USBAAPL - ok
14:05:26.0716 0x0bac [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:05:26.0721 0x0bac usbccgp - ok
14:05:26.0828 0x0bac [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:05:26.0856 0x0bac usbcir - ok
14:05:26.0907 0x0bac [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:05:26.0911 0x0bac usbehci - ok
14:05:26.0937 0x0bac [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:05:26.0947 0x0bac usbhub - ok
14:05:26.0967 0x0bac [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:05:26.0969 0x0bac usbohci - ok
14:05:27.0012 0x0bac [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:05:27.0014 0x0bac usbprint - ok
14:05:27.0033 0x0bac [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:05:27.0036 0x0bac usbscan - ok
14:05:27.0081 0x0bac [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:05:27.0085 0x0bac USBSTOR - ok
14:05:27.0120 0x0bac [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
14:05:27.0125 0x0bac usbuhci - ok
14:05:27.0155 0x0bac [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
14:05:27.0163 0x0bac UxSms - ok
14:05:27.0217 0x0bac [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
14:05:27.0251 0x0bac vds - ok
14:05:27.0279 0x0bac [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:05:27.0282 0x0bac vga - ok
14:05:27.0327 0x0bac [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
14:05:27.0330 0x0bac VgaSave - ok
14:05:27.0351 0x0bac [ D5929A28BDFF4367A12CAF06AF901971, DE2A60A9EE1ABACEE6221E4AD5D4AA4CBA12FED448EB36CA3B7A9A5F09A8DC8C ] viaagp C:\Windows\system32\drivers\viaagp.sys
14:05:27.0355 0x0bac viaagp - ok
14:05:27.0367 0x0bac [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys
14:05:27.0370 0x0bac ViaC7 - ok
14:05:27.0385 0x0bac [ 689547CE911998D1E0DA7A5992E025FC, F77F9732F2ACB7E227F692D582CD983C5B3AF3966204D5A6D6A580E3E2E3E084 ] viaide C:\Windows\system32\drivers\viaide.sys
14:05:27.0388 0x0bac viaide - ok
14:05:27.0411 0x0bac [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:05:27.0415 0x0bac volmgr - ok
14:05:27.0505 0x0bac [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:05:27.0528 0x0bac volmgrx - ok
14:05:27.0577 0x0bac [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:05:27.0587 0x0bac volsnap - ok
14:05:27.0613 0x0bac [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
14:05:27.0619 0x0bac vsmraid - ok
14:05:27.0718 0x0bac [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
14:05:27.0783 0x0bac VSS - ok
14:05:27.0819 0x0bac [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
14:05:27.0842 0x0bac W32Time - ok
14:05:27.0868 0x0bac [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
14:05:27.0870 0x0bac WacomPen - ok
14:05:27.0914 0x0bac [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
14:05:27.0918 0x0bac Wanarp - ok
14:05:27.0928 0x0bac [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:05:27.0931 0x0bac Wanarpv6 - ok
14:05:27.0994 0x0bac [ 779F9C90D3FE9C70B6FFD8EF035F3E83, 4E38026BA53139B4A10D5E8F00413FAF442A2A42FE1388FCF2155F07BE826750 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
14:05:28.0017 0x0bac WcesComm - ok
14:05:28.0058 0x0bac [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:05:28.0093 0x0bac wcncsvc - ok
14:05:28.0123 0x0bac [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:05:28.0131 0x0bac WcsPlugInService - ok
14:05:28.0165 0x0bac [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys
14:05:28.0168 0x0bac Wd - ok
14:05:28.0232 0x0bac [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:05:28.0299 0x0bac Wdf01000 - ok
14:05:28.0344 0x0bac [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:05:28.0355 0x0bac WdiServiceHost - ok
14:05:28.0363 0x0bac [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:05:28.0372 0x0bac WdiSystemHost - ok
14:05:28.0434 0x0bac [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
14:05:28.0450 0x0bac WebClient - ok
14:05:28.0497 0x0bac [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:05:28.0511 0x0bac Wecsvc - ok
14:05:28.0556 0x0bac [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:05:28.0565 0x0bac wercplsupport - ok
14:05:28.0611 0x0bac [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
14:05:28.0623 0x0bac WerSvc - ok
14:05:28.0712 0x0bac [ 4DACA8F07537D4D7E3534BB99294AA26, 8418B5A83D945FF1827C5B19A57BE7FFE1FD523C6795B0ACE88E4A906C82BA2C ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
14:05:28.0768 0x0bac winachsf - ok
14:05:28.0848 0x0bac [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
14:05:28.0871 0x0bac WinDefend - ok
14:05:28.0884 0x0bac WinHttpAutoProxySvc - ok
14:05:28.0941 0x0bac [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:05:28.0951 0x0bac Winmgmt - ok
14:05:29.0057 0x0bac [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
14:05:29.0162 0x0bac WinRM - ok
14:05:29.0244 0x0bac [ 676F4B665BDD8053EAA53AC1695B8074, 98521FCB6B6B33DD8BF38A703745053481681C7981DFE5A59116D6BDE187D6F6 ] winusb C:\Windows\system32\DRIVERS\winusb.sys
14:05:29.0248 0x0bac winusb - ok
14:05:29.0319 0x0bac [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
14:05:29.0395 0x0bac Wlansvc - ok
14:05:29.0491 0x0bac [ 94A85E956A065E23E0010A6A7826243B, F70A8301D071667718F04A9F261946ED8D64EE1B08055C518186252198F8F3F1 ] WLSetupSvc C:\Program Files\Windows Live\installer\WLSetupSvc.exe
14:05:29.0535 0x0bac WLSetupSvc - ok
14:05:29.0546 0x0bac wltrysvc - ok
14:05:29.0594 0x0bac [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
14:05:29.0597 0x0bac WmiAcpi - ok
14:05:29.0653 0x0bac [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:05:29.0660 0x0bac wmiApSrv - ok
14:05:29.0773 0x0bac [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
14:05:29.0829 0x0bac WMPNetworkSvc - ok
14:05:29.0862 0x0bac [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:05:29.0875 0x0bac WPCSvc - ok
14:05:29.0923 0x0bac [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:05:29.0935 0x0bac WPDBusEnum - ok
14:05:29.0976 0x0bac [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
14:05:29.0980 0x0bac WpdUsb - ok
14:05:30.0128 0x0bac [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
14:05:30.0179 0x0bac WPFFontCache_v0400 - ok
14:05:30.0219 0x0bac [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:05:30.0222 0x0bac ws2ifsl - ok
14:05:30.0265 0x0bac [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
14:05:30.0275 0x0bac wscsvc - ok
14:05:30.0283 0x0bac WSearch - ok
14:05:30.0430 0x0bac [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
14:05:30.0529 0x0bac wuauserv - ok
14:05:30.0592 0x0bac [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:05:30.0599 0x0bac WudfPf - ok
14:05:30.0649 0x0bac [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:05:30.0693 0x0bac WUDFRd - ok
14:05:30.0731 0x0bac [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:05:30.0742 0x0bac wudfsvc - ok
14:05:30.0774 0x0bac [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8, 3660379AADB6DB56E54D9C680929CD3882CDE4E6A8BB888FC892110D6B50C627 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
14:05:30.0777 0x0bac XAudio - ok
14:05:30.0815 0x0bac [ 28DC5D626E036A75A572556F0A6EB1F6, 9AE635C08B87AD85A552ADE0AF8BA10DC258E0DEFE133A2A74EFCD43B7A38A98 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
14:05:30.0837 0x0bac XAudioService - ok
14:05:30.0925 0x0bac [ 04E268ADFC81964C49DC0C082D520F7E, 7D2574E366636AB1D59A08FE3038268095D627C39636C6ED6BCE1D5ACB44A179 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
14:05:30.0948 0x0bac yukonwlh - ok
14:05:30.0962 0x0bac ================ Scan global ===============================
14:05:31.0005 0x0bac [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
14:05:31.0066 0x0bac [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
14:05:31.0144 0x0bac [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
14:05:31.0219 0x0bac [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
14:05:31.0243 0x0bac [ Global ] - ok
14:05:31.0244 0x0bac ================ Scan MBR ==================================
14:05:31.0262 0x0bac [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
14:05:32.0181 0x0bac \Device\Harddisk0\DR0 - ok
14:05:32.0186 0x0bac ================ Scan VBR ==================================
14:05:32.0209 0x0bac [ 4192D6B0C14E129A881AC4D7CF9EE004 ] \Device\Harddisk0\DR0\Partition1
14:05:32.0300 0x0bac \Device\Harddisk0\DR0\Partition1 - ok
14:05:32.0322 0x0bac [ A3127CA54330BCF64EB7FC1A4BE1E54B ] \Device\Harddisk0\DR0\Partition2
14:05:32.0424 0x0bac \Device\Harddisk0\DR0\Partition2 - ok
14:05:32.0428 0x0bac ================ Scan generic autorun ======================
14:05:32.0624 0x0bac [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe
14:05:32.0677 0x0bac Windows Defender - ok
14:05:32.0796 0x0bac [ D6B7814AA0D1412F0EA77845C0AF7B51, 9946F3B26D2EF8DEABA95571107D3E6A018BB16FC4C609BDEB60B6139300F74E ] C:\Dell\E-Center\EULALauncher.exe
14:05:32.0805 0x0bac ECenter - ok
14:05:32.0862 0x0bac [ 5EF24621ABCE6965E32A365CA613A544, 88B83484ECF6ECA64D947D078F22BDA28D8872435B358043BFDFA8D45961FD22 ] C:\Program Files\DellTPad\Apoint.exe
14:05:32.0868 0x0bac Apoint - ok
14:05:32.0896 0x0bac [ 23242FD6C7D4C61807E84FD3A79248C4, 6E53D0815B4552A05A0EC28871E5E9F0D14815FB52FCDD612C96050B7093493C ] C:\Windows\OEM02Mon.exe
14:05:32.0899 0x0bac OEM02Mon.exe - ok
14:05:32.0951 0x0bac [ F70A63E713110C6668783DB2CAE94AE8, 4916239A9978B1B896BD08F495867A1951F541E8230F5467D51D405E7D418E0A ] C:\Windows\system32\igfxtray.exe
14:05:32.0970 0x0bac IgfxTray - ok
14:05:32.0998 0x0bac [ 99B4071862E7BEF7DD4896A3B6E3477B, 0674D66E05F9A591507522020FDCEFBBC87DD81102FBC2A15A88B2B78EAD1375 ] C:\Windows\system32\hkcmd.exe
14:05:33.0009 0x0bac HotKeysCmds - ok
14:05:33.0035 0x0bac [ 83A3890B00A43D7504C92AB474B82092, C1F888258F1606783A09AA1E5D35FAA25D53EF7C7E15EA648A5CB0B2C8F68342 ] C:\Windows\system32\igfxpers.exe
14:05:33.0044 0x0bac Persistence - ok
14:05:33.0161 0x0bac [ B4233856383157BC2906E6A264D70E3A, 98E18A4C6DBDF4A11BF350E03A84672F75114ED20BD04959E54F044C2F15F685 ] C:\Windows\system32\WLTRAY.exe
14:05:33.0260 0x0bac Broadcom Wireless Manager UI - ok
14:05:33.0313 0x0bac [ DAC9B43BBFA0359E252DDB0CB91DEA6D, 2A109ABECF757567735C439663ED618B49EF7749ABEE6AEF8A100B2028C31A38 ] C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe
14:05:33.0325 0x0bac DELL Webcam Manager - ok
14:05:33.0384 0x0bac [ F371C6DF9A810EF2E6E4FA60ACBB5C33, B168AEEF70F33ACF585260AC3B7E2D201EFB21F989B80738C7E2A59D931ED30D ] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
14:05:33.0404 0x0bac IAAnotif - ok
14:05:33.0445 0x0bac [ 267B3A856E9F4DB1CABD4E6DB71E07D2, E384B0204375A8E9DCAFB3FD6E72442F3E9418812637F4EFA2653F946EBE8E26 ] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe
14:05:33.0447 0x0bac dscactivate - ok
14:05:33.0528 0x0bac [ B6687CA43A44F0D8732A22191028912F, 0B6B43143D3B750880884D7E561359467B786A3788BD6FBA105EC24B14A52F79 ] C:\Program Files\Dell\MediaDirect\PCMService.exe
14:05:33.0539 0x0bac PCMService - ok
14:05:33.0573 0x0bac [ 3917664C26B4344768C288BBA6FEFCB6, BD7B60C40A46F8C7F730A05B5E22E3C354A507E3AC9331F19DE2984BA255AB08 ] C:\Program Files\Dell Support Center\bin\sprtcmd.exe
14:05:33.0581 0x0bac DellSupportCenter - ok
14:05:33.0640 0x0bac [ 4AB05041D5C922B9A7A5D9059F5538CD, 554885535DB523D25DBDB43FBA9384B8E4EC9DF79B02F3B9FFDE3C498106D463 ] C:\Windows\WindowsMobile\wmdSync.exe
14:05:33.0649 0x0bac Windows Mobile-based device management - ok
14:05:33.0725 0x0bac [ 714C602C1B8CEF17E25C753F1BACF78D, E0B0DC548CA9DA7F3D0EEE9EDACC9058D5C845E8B03B841434EB1E03683A9B73 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
14:05:33.0740 0x0bac AppleSyncNotifier - ok
14:05:33.0904 0x0bac [ 5447AF432CDA61159ADDE218C468FFD9, 63BD74521F679F195C24C1818267ECCBD8A7F5C2B4CEF3E60EC46B5AE0AC72A8 ] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
14:05:33.0935 0x0bac AdobeAAMUpdater-1.0 - ok
14:05:34.0010 0x0bac [ 846965AE55A2662B1576C0F392DD1D6E, 0ADE383991FDC5A49DD15A27CB52CF75ABF518F0335E92003C0FF75DB417BBDC ] C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
14:05:34.0044 0x0bac SSBkgdUpdate - ok
14:05:34.0106 0x0bac [ 27249F2A900032F3C2DFAB8DE8F16399, 88F85055FC6A6C3872A9A3697F92E26EEB51655F5D53F49EE22768829839808A ] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
14:05:34.0109 0x0bac PaperPort PTD - ok
14:05:34.0155 0x0bac [ BE72C212B14FC8F872A70C6C311D0529, 9C6A8060FD4505925894D8FD08EFCDE16BEEAAC70264519135B261C026333CAA ] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
14:05:34.0158 0x0bac IndexSearch - ok
14:05:34.0195 0x0bac [ A4A66195EB0ECD574A32AAA92DC0A7BD, 4E30D565917158316A541BB29D73BF5F3A01DAB1240363276DE0C5D59B2BFFFE ] C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe
14:05:34.0273 0x0bac PPort11reminder - ok
14:05:34.0447 0x0bac [ 4DE3EF07E0854547309C6B40235A9D44, F73D8E6D98583865D1C8DB728058D83C72A3908E21E04EF313FCB829C040A1EC ] C:\Program Files\Brother\ControlCenter3\brctrcen.exe
14:05:34.0469 0x0bac ControlCenter3 - ok
14:05:34.0956 0x0bac [ 63E9C23A386FFFA84B5E03BFF9B628F0, A370962791EFC4B10548AAD31F89A2B288FBD5BDBF5749323C2D98C14DFB8B49 ] C:\Program Files\Browny02\Brother\BrStMonW.exe
14:05:35.0111 0x0bac BrStsMon00 - ok
14:05:35.0378 0x0bac [ 8EEEF4C038A3FF7E56D47D9C0B912EAC, F3FE8BCC07AF70B4EDA7D599B6E1E68A89137C4F33DC76CB84767F8DB1DE6113 ] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
14:05:35.0417 0x0bac Adobe Reader Speed Launcher - ok
14:05:35.0575 0x0bac [ 47C1DE0A890613FFCFF1D67648EEDF90, 5821567D7DD99623257AEA794023EF4200E6E17FD09656B40D97C44A35C701BB ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
14:05:35.0617 0x0bac Adobe ARM - ok
14:05:35.0696 0x0bac [ 545676F48851A5C65A38CAE5B5518C95, F7CD893B8198AA22347CB96A61C258217FA0A1B1CC1733784B5FD84A7B208264 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
14:05:35.0699 0x0bac APSDaemon - ok
14:05:35.0764 0x0bac [ 9508747869695BF440D7CD19B4930152, 223CDD23FA6CBA048D37C83AE6D3526EC3FBB217D1D5BAA140C11616B2657203 ] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
14:05:35.0797 0x0bac BrMfcWnd - ok
14:05:35.0881 0x0bac [ 485A4912B2D639694F836451A2B30435, B913073813BD933D882AC9ABC5CE84F96D3238622FFA97BDE8EDED629454F778 ] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
14:05:35.0903 0x0bac SigmatelSysTrayApp - ok
14:05:36.0153 0x0bac [ 26B558B2D31C7425B455B00E562EAD93, B64D128A2F1FC42BA4376F8EB08D70F4B705745CB983D0631DB45851BF34BBDF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
14:05:36.0367 0x0bac AvastUI.exe - ok
14:05:36.0463 0x0bac [ 0A8C7CDE76A44A98E1B1CE34D27AC926, 26B86CA609DD15F86981C1FC4667814A2A7EE5D4BC944B5306A06C00DA35E1D0 ] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
14:05:36.0497 0x0bac DivXMediaServer - ok
14:05:36.0550 0x0bac [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files\QuickTime\QTTask.exe
14:05:36.0573 0x0bac QuickTime Task - ok
14:05:36.0630 0x0bac [ 5D666FC778E7754CC7103402D814809B, 7E9B205B74440D455155014EE8D6FD0D1C647B016D72A28F16709F50BC005D3F ] C:\Program Files\ControlCenter4\BrCcBoot.exe
14:05:36.0636 0x0bac ControlCenter4 - ok
14:05:36.0765 0x0bac [ 16AFB34618E1286FF856DC600AC49C79, 431EC110507685A0F4472EAE35383B4C1E3DC0B56E01CDECFB18F753181DC995 ] C:\Program Files\DivX\DivX Update\DivXUpdate.exe
14:05:36.0862 0x0bac DivXUpdate - ok
14:05:36.0961 0x0bac [ 3B5045DDD039FAB9782851BC486FD92B, 12C59F9E79EB37F26FE0805585EA6B0DAFB41FB8A4FAE972774BC8E3815A1673 ] C:\Program Files\iTunes\iTunesHelper.exe
14:05:36.0967 0x0bac iTunesHelper - ok
14:05:37.0059 0x0bac [ 308F2EE28005510DE616409148CF077B, A2126CB185B0053086BDD6F0A16A503F6CA629AC677E4B7AE6D43C770061D087 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
14:05:37.0069 0x0bac SunJavaUpdateSched - ok
14:05:37.0200 0x0bac [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
14:05:37.0264 0x0bac Sidebar - ok
14:05:37.0274 0x0bac WindowsWelcomeCenter - ok
14:05:37.0344 0x0bac [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
14:05:37.0375 0x0bac Sidebar - ok
14:05:37.0385 0x0bac WindowsWelcomeCenter - ok
14:05:37.0407 0x0bac [ 3917664C26B4344768C288BBA6FEFCB6, BD7B60C40A46F8C7F730A05B5E22E3C354A507E3AC9331F19DE2984BA255AB08 ] C:\Program Files\Dell Support Center\bin\sprtcmd.exe
14:05:37.0412 0x0bac DellSupportCenter - ok
14:05:37.0481 0x0bac [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
14:05:37.0486 0x0bac ehTray.exe - ok
14:05:37.0488 0x0bac MsnMsgr - ok
14:05:37.0522 0x0bac MobileDocuments - ok
14:05:37.0523 0x0bac Scan was interrupted by user!
14:05:37.0523 0x0bac Waiting for KSN requests completion. In queue: 78
14:05:38.0524 0x0bac Waiting for KSN requests completion. In queue: 78
14:05:39.0524 0x0bac Waiting for KSN requests completion. In queue: 78
14:05:40.0668 0x0bac AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated )
14:05:40.0726 0x0bac Win FW state via NFP2: enabled
14:05:43.0079 0x0bac ============================================================
14:05:43.0079 0x0bac Scan finished
14:05:43.0079 0x0bac ============================================================
14:05:43.0098 0x1544 Detected object count: 0
14:05:43.0098 0x1544 Actual detected object count: 0
14:05:45.0773 0x0f48 Deinitialize success
bei Acedrv01.sys Bkav : HW32.CDB.2a4a bei acedrv02.sys Bkav: HW32.CDB.638d bei acedrv04.sys Bkav: HW32.CDB.31e3 bei acedrv05.sys Bkav: HW32.CDB.9bd2 und Jianming: Trojan/JboxGeneric.llc bei acedrv06.sys Bkav: HW32.CDB.8212 bei acedrv07.sys Bkav: HW32.CDB.92d9 ein acedrv03.sys gab es nicht... |
|
06.09.2014, 11:10
| #7 |
| /// the machine /// TB-Ausbilder | acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht. Das ist nen Fehlalarm. ESET Online Scanner
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
08.09.2014, 09:59
| #8 |
| | acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht.Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=1f4f7e32d11a6b468f15353cfc975ec8
# engine=20046
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-09-08 08:39:08
# local_time=2014-09-08 10:39:08 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=782 16777213 100 97 6776 19673123 0 0
# compatibility_mode_1=''
# compatibility_mode=5892 16776573 100 100 256917 247698276 0 0
# scanned=204251
# found=7
# cleaned=7
# scan_time=4891
sh=5B0792AA63B688A8C444CA301677D172CE16A112 ft=0 fh=0000000000000000 vn="JS/Kryptik.ARH Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\zuppy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2QFJWAGQ\tu62swlw35[1].htm"
sh=0F3C115F59DEE0C8CA220050216C3E5B599C7E7C ft=0 fh=0000000000000000 vn="JS/Exploit.Agent.NHE Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\zuppy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\J5Q13GPE\9jmtptyaay[1].htm"
sh=BF48848E49A9603E7C0FE71A754DAA81C26969F9 ft=0 fh=0000000000000000 vn="JS/Exploit.Agent.NHC Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\zuppy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VAM0JKGS\xah0z9317t[1].htm"
sh=2F35BAAED62CC2DBD1B8D21BE1B2F03D60F63A4E ft=1 fh=85c8c915d16f4ca4 vn="Variante von Win32/Systweak evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\zuppy\Downloads\ARO2012_bt.exe"
sh=C3E4061A01296783374329C60225CD830E6DBF6C ft=1 fh=dda13ac0efef666a vn="Win32/Malavida.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\zuppy\Downloads\pasw-windows-malavida.exe"
sh=E2C028A886AA7352539DEE32CBB38770C529A76E ft=1 fh=d2aeb2930bcba9f7 vn="Win32/InstallMonetizer.AQ evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\zuppy\Downloads\PDFCreator-1_7_3_setup.exe"
sh=046BED952478CB0F5F2BF946233DBD1EDE7E7EFA ft=1 fh=6e38c84ccfe7c2e7 vn="Win32/PSW.OnLineGames.OUM Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="F:\i8ikdjwt.exe"
|
|
08.09.2014, 19:11
| #9 |
| /// the machine /// TB-Ausbilder | acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht. Jop, Fehlalarm.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu acedrv01-03 sys in C:\windows\system32\drivers\acedrv01.sys, Entfernung nicht möglich, CD Laufwerk funktioniert nicht. |
| adware, akamai, antivirus, avira, bonjour, browser, cpu, desktop, error, fehler, flash player, google, home, iexplore.exe, mozilla, registry, rundll, scan, security, services.exe, software, svchost.exe, system, windows, wlan |
Linear-Darstellung
