Java bringt ständig Information für neues Update

NosyTheCat · 18.11.2014, 20:24

Hallo,

ich habe das Problem, dass wenn ich irgendeine Seite aufgerufen habe, dass dann ein Fenster aufklappt und darin steht, dass Java eine Aktualisierung benötigt.

schrauber · 18.11.2014, 20:32

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

NosyTheCat · 18.11.2014, 21:03

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-11-2014
Ran by Eiberger (administrator) on EIBERGER-PC on 18-11-2014 20:56:18
Running from C:\Users\Eiberger\Downloads
Loaded Profile: Eiberger (Available profiles: Eiberger)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\ProgramData\369116b8-dbeb-4541-87d3-4725ded56029\maintainer.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_223.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_223.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7506136 2013-12-06] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2463552 2014-10-04] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation)
HKU\S-1-5-21-813546910-1973016697-1823807669-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7767832 2014-10-01] (SUPERAntiSpyware)
HKU\S-1-5-21-813546910-1973016697-1823807669-1000\...\MountPoints2: {17631452-c61c-11e3-97d8-806e6f6e6963} - F:\masterar.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKLM -> {758B870D-DF78-4A6A-9955-DEDDCACF94DC} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKU\.DEFAULT -> {758B870D-DF78-4A6A-9955-DEDDCACF94DC} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKU\S-1-5-21-813546910-1973016697-1823807669-1000 -> {758B870D-DF78-4A6A-9955-DEDDCACF94DC} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\searchplugins\google-images.xml
FF SearchPlugin: C:\Users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\searchplugins\google-maps.xml
FF Extension: PriceLess - C:\Users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\Extensions\BY@le3wT8U.edu [2014-11-01]
FF Extension: Diablo 3 profile + - C:\Users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\Extensions\jid1-M4HE20OYnEIt5A@jetpack.xpi [2014-05-26]
FF Extension: Strict Pop-up Blocker - C:\Users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\Extensions\jid1-P34HaABBBpOerQ@jetpack.xpi [2014-06-20]

Chrome: 
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Eiberger\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (PriceLess) - C:\Users\Eiberger\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp [2014-11-01]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-10-04] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-08-01] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-17] (Intel Corporation)
R2 MaintainerSvc4.19.7305058; C:\ProgramData\369116b8-dbeb-4541-87d3-4725ded56029\maintainer.exe [123624 2014-11-18] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-10-04] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19440960 2014-10-04] (NVIDIA Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2589496 2014-10-17] (AVG Technologies)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [21408 2013-08-01] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [21920 2013-08-01] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-01] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46568 2013-08-01] ()
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-11-04] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-17] (Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20288 2014-10-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-09-09] (TuneUp Software)
S3 GPU-Z; \??\C:\Users\Eiberger\AppData\Local\Temp\GPU-Z.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-18 20:56 - 2014-11-18 20:56 - 00012670 _____ () C:\Users\Eiberger\Downloads\FRST.txt
2014-11-18 20:55 - 2014-11-18 20:56 - 00000000 ____D () C:\FRST
2014-11-18 20:54 - 2014-11-18 20:54 - 02117120 _____ (Farbar) C:\Users\Eiberger\Downloads\FRST64.exe
2014-11-18 19:57 - 2014-11-18 19:57 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-15 13:05 - 2014-11-15 13:05 - 00002762 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-11-15 12:54 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-15 12:54 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-15 12:54 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-15 12:54 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-15 12:54 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-15 12:54 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-15 12:54 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-15 12:54 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-15 12:54 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-15 12:54 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-15 12:54 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-15 12:54 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-15 12:54 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-15 12:54 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-15 12:54 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-15 12:54 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-15 12:54 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-15 12:54 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-15 12:54 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-15 12:54 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-15 12:54 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-15 12:54 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-15 12:54 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-15 12:54 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-15 12:54 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-15 12:54 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-15 12:54 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-15 12:54 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-15 12:54 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-15 12:54 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-15 12:54 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-15 12:54 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-15 12:54 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-15 12:54 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-15 12:54 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-15 12:54 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-15 12:54 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-15 12:54 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-15 12:54 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-15 12:54 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-15 12:54 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-15 12:54 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-15 12:54 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-15 12:54 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-15 12:54 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-15 12:54 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-15 12:54 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-15 12:54 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-15 12:54 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-15 12:54 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-15 12:54 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-15 12:54 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-15 12:54 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-15 12:54 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-15 12:54 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-15 12:54 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-15 12:54 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-15 12:54 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-15 12:54 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-15 12:54 - 2014-10-14 03:20 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-15 12:54 - 2014-10-14 03:16 - 01463808 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-15 12:54 - 2014-10-14 03:16 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-15 12:54 - 2014-10-14 03:16 - 00686592 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-15 12:54 - 2014-10-14 03:16 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-11-15 12:54 - 2014-10-14 03:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-15 12:54 - 2014-10-14 03:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-15 12:54 - 2014-10-14 03:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-15 12:54 - 2014-10-14 03:11 - 00686592 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-15 12:54 - 2014-10-14 02:50 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-15 12:54 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-15 12:54 - 2014-10-14 02:49 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-15 12:54 - 2014-10-14 02:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-11-15 12:54 - 2014-10-14 02:49 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-15 12:54 - 2014-10-14 02:48 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-15 12:54 - 2014-10-14 02:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-15 12:54 - 2014-10-14 02:45 - 00686592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-15 12:53 - 2014-10-25 03:19 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-15 12:53 - 2014-10-25 03:08 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-15 12:53 - 2014-10-03 03:07 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-15 12:53 - 2014-10-03 03:06 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-15 12:53 - 2014-10-03 03:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-15 12:53 - 2014-10-03 03:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-15 12:53 - 2014-10-03 03:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-15 12:53 - 2014-10-03 02:46 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-15 12:53 - 2014-10-03 02:46 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-15 12:53 - 2014-10-03 02:46 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-15 12:53 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-15 12:53 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-15 12:53 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-15 12:53 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-15 12:53 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-15 12:53 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-15 12:52 - 2014-10-14 03:16 - 03243008 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-15 12:52 - 2014-10-14 02:49 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-15 12:52 - 2014-10-09 07:49 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-15 12:47 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-15 12:47 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-04 22:36 - 2014-11-04 22:36 - 00000000 ____D () C:\Program Files (x86)\Microsoft ASP.NET
2014-11-03 23:13 - 2014-11-03 23:13 - 01998336 _____ () C:\Users\Eiberger\Downloads\adwcleaner_4.002(1).exe
2014-11-03 23:11 - 2014-11-03 23:11 - 00012660 _____ () C:\Users\Eiberger\Desktop\bookmarks-2014-11-03.json
2014-11-03 22:36 - 2014-11-18 19:58 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-11-03 22:36 - 2014-11-04 22:36 - 00000516 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task a4a6502c-dddc-4a8d-9226-56dcaade5457.job
2014-11-03 22:36 - 2014-11-04 21:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-11-03 22:36 - 2014-11-03 23:22 - 00001858 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-11-03 22:36 - 2014-11-03 22:51 - 00000516 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 06c0407f-967f-4cce-b690-50278ee351fb.job
2014-11-03 22:36 - 2014-11-03 22:36 - 00003606 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 06c0407f-967f-4cce-b690-50278ee351fb
2014-11-03 22:36 - 2014-11-03 22:36 - 00003532 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task a4a6502c-dddc-4a8d-9226-56dcaade5457
2014-11-03 22:36 - 2014-11-03 22:36 - 00000000 ____D () C:\Users\Eiberger\AppData\Roaming\SUPERAntiSpyware.com
2014-11-03 22:36 - 2014-11-03 22:36 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-11-03 22:35 - 2014-11-03 22:41 - 00000000 ____D () C:\Users\Eiberger\AppData\Roaming\StormFall
2014-11-03 22:35 - 2014-11-03 22:40 - 00000000 ____D () C:\Users\Eiberger\AppData\Roaming\Opera Software
2014-11-03 22:35 - 2014-11-03 22:40 - 00000000 ____D () C:\Users\Eiberger\AppData\Local\Opera Software
2014-11-03 22:35 - 2014-11-03 22:40 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-11-03 22:35 - 2014-11-03 22:34 - 19603608 _____ (SUPERAntiSpyware) C:\Users\Eiberger\Downloads\SUPERAntiSpyware_CB-DL-Manager [1].exe
2014-11-03 22:34 - 2014-11-03 22:34 - 00845088 _____ ( ) C:\Users\Eiberger\Downloads\SUPERAntiSpyware_CB-DL-Manager.exe
2014-11-03 22:34 - 2014-11-03 22:34 - 00000000 ____D () C:\Users\Eiberger\AppData\Local\StormFall
2014-11-03 21:57 - 2014-11-03 21:57 - 01998336 _____ () C:\Users\Eiberger\Downloads\adwcleaner_4.002.exe
2014-11-03 21:01 - 2014-11-18 19:58 - 00000000 ____D () C:\ProgramData\369116b8-dbeb-4541-87d3-4725ded56029
2014-11-03 20:42 - 2014-11-04 22:20 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-03 20:42 - 2014-11-03 20:42 - 00001108 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-11-03 20:42 - 2014-11-03 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-11-03 20:42 - 2014-11-03 20:42 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-11-03 20:42 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-03 20:42 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-03 20:42 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-03 20:41 - 2014-11-03 20:41 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Eiberger\Downloads\mbam-setup-2.0.3.1025.exe
2014-11-01 12:45 - 2014-11-01 12:45 - 00002231 _____ () C:\Users\Public\Desktop\AVG 1-Klick-Wartung.lnk
2014-11-01 12:45 - 2014-11-01 12:45 - 00002219 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015.lnk
2014-11-01 12:45 - 2014-11-01 12:45 - 00002207 _____ () C:\Users\Public\Desktop\AVG PC TuneUp 2015.lnk
2014-11-01 12:45 - 2014-11-01 12:45 - 00000000 ____D () C:\Users\Eiberger\AppData\Roaming\AVG
2014-11-01 12:45 - 2014-11-01 12:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015
2014-11-01 12:45 - 2014-10-17 12:34 - 00040248 _____ (AVG Technologies) C:\Windows\system32\TURegOpt.exe
2014-11-01 12:45 - 2014-10-17 12:34 - 00029496 _____ (AVG Technologies) C:\Windows\system32\authuitu.dll
2014-11-01 12:45 - 2014-10-17 12:34 - 00025400 _____ (AVG Technologies) C:\Windows\SysWOW64\authuitu.dll
2014-11-01 12:44 - 2014-11-01 12:44 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-11-01 12:43 - 2014-11-01 12:43 - 00000000 ____D () C:\Users\Eiberger\AppData\Local\Avg
2014-11-01 12:42 - 2014-11-01 12:46 - 00000000 ____D () C:\ProgramData\AVG
2014-11-01 12:41 - 2014-11-01 12:42 - 90754872 _____ (AVG Technologies) C:\Users\Eiberger\Downloads\avg_tuht_stf_all_2015_185.exe
2014-11-01 12:40 - 2014-11-01 12:40 - 00003412 _____ () C:\Windows\System32\Tasks\LuckyTab
2014-11-01 12:39 - 2014-11-01 12:39 - 03786312 _____ (hxxp://yourfile-downloader.com) C:\Users\Eiberger\Downloads\JokerPlayer.blog.de---Fearfix.msi.7z_downloader.exe
2014-11-01 12:07 - 2014-11-01 12:07 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Eiberger\Downloads\ParetoLogic PC Health Advisor_de.exe
2014-10-28 23:34 - 2014-10-28 23:34 - 00001882 _____ () C:\Users\Eiberger\Desktop\PlayMaxPayne3 - Verknüpfung.lnk
2014-10-25 10:32 - 2014-10-04 07:42 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-10-25 10:32 - 2014-10-04 07:41 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-10-25 10:32 - 2014-09-04 20:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-10-25 10:32 - 2014-09-04 20:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-10-24 14:50 - 2014-10-24 14:50 - 00000000 ____D () C:\Users\Eiberger\Documents\Rockstar Games
2014-10-24 14:50 - 2014-10-24 14:50 - 00000000 ____D () C:\Users\Eiberger\AppData\Local\Chromium
2014-10-24 14:36 - 2014-10-24 14:36 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-10-24 13:52 - 2014-10-24 13:52 - 00000000 ____D () C:\ProgramData\Rockstar Games
2014-10-23 13:46 - 2014-10-24 13:42 - 00000000 ____D () C:\Users\Eiberger\Documents\Max Payne 2 Savegames
2014-10-23 13:41 - 2014-10-23 13:41 - 00001327 _____ () C:\Users\Public\Desktop\Max Payne 2.lnk
2014-10-23 13:37 - 2014-10-24 14:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-10-20 19:12 - 2014-10-20 19:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-20 19:03 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-20 19:03 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-20 19:03 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-20 19:03 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-20 19:03 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-20 19:03 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-20 19:02 - 2014-09-18 22:32 - 00112568 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-10-20 19:02 - 2014-09-18 22:29 - 01942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-10-20 19:02 - 2014-09-18 02:43 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-10-20 19:02 - 2014-09-18 02:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-10-20 19:02 - 2014-09-04 11:23 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-20 19:02 - 2014-09-04 06:06 - 00373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-20 19:02 - 2014-07-16 04:23 - 03724800 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-20 19:02 - 2014-07-16 03:56 - 03223040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-20 19:01 - 2014-09-11 04:47 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-10-20 19:01 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-20 19:01 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-20 19:01 - 2014-07-16 04:23 - 01121280 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-20 19:01 - 2014-07-16 04:23 - 00455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-20 19:01 - 2014-07-16 04:23 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-20 19:01 - 2014-07-16 04:23 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-10-20 19:01 - 2014-07-16 04:23 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-20 19:01 - 2014-07-16 04:23 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-10-20 19:01 - 2014-07-16 04:23 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-20 19:01 - 2014-07-16 03:56 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-20 19:01 - 2014-07-16 03:56 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-20 19:01 - 2014-07-16 03:56 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-20 19:01 - 2014-07-16 03:56 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-10-20 19:01 - 2014-07-16 03:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-20 19:01 - 2014-07-16 03:55 - 01053696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-20 19:01 - 2014-07-16 03:38 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-18 20:54 - 2014-04-17 11:24 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-18 20:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-18 20:48 - 2009-07-14 05:45 - 00028896 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-18 20:48 - 2009-07-14 05:45 - 00028896 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-18 20:22 - 2014-04-17 10:55 - 01873306 _____ () C:\Windows\WindowsUpdate.log
2014-11-18 20:04 - 2010-11-21 07:50 - 00700454 _____ () C:\Windows\system32\perfh007.dat
2014-11-18 20:04 - 2010-11-21 07:50 - 00150092 _____ () C:\Windows\system32\perfc007.dat
2014-11-18 20:04 - 2009-07-14 06:13 - 01624034 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-18 19:58 - 2009-07-14 05:51 - 00219089 _____ () C:\Windows\setupact.log
2014-11-18 19:57 - 2014-04-17 11:40 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-18 19:57 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-18 19:57 - 2009-07-14 05:45 - 00273208 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-18 19:56 - 2014-04-30 00:23 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-18 19:55 - 2010-11-21 04:47 - 00321034 _____ () C:\Windows\PFRO.log
2014-11-15 14:32 - 2014-05-05 16:53 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-15 14:31 - 2014-05-05 16:53 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-15 14:20 - 2014-04-22 23:15 - 00000000 ____D () C:\Users\Eiberger\AppData\Roaming\vlc
2014-11-15 13:54 - 2014-04-17 11:24 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-15 13:54 - 2014-04-17 11:24 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-15 13:54 - 2014-04-17 11:24 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-05 17:47 - 2014-04-25 14:39 - 00000000 ____D () C:\Users\Eiberger\AppData\Local\CrashDumps
2014-11-03 23:17 - 2014-06-25 16:27 - 00000000 ____D () C:\AdwCleaner
2014-11-03 22:40 - 2014-04-17 11:25 - 00001421 _____ () C:\Users\Eiberger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-03 22:38 - 2014-04-22 17:19 - 00000000 ____D () C:\Program Files (x86)\Spiele
2014-11-03 22:37 - 2009-07-14 03:34 - 00000518 _____ () C:\Windows\win.ini
2014-11-01 12:47 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-11-01 12:41 - 2014-06-19 12:14 - 00000000 ____D () C:\ProgramData\64f31131d09115a2
2014-11-01 12:40 - 2014-05-29 14:03 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-11-01 12:16 - 2014-04-17 11:33 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-01 12:16 - 2014-04-17 11:11 - 00002127 _____ () C:\Windows\epplauncher.mif
2014-11-01 12:15 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-10-30 12:25 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-25 10:42 - 2014-09-24 19:20 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft
2014-10-25 10:33 - 2014-04-17 11:43 - 00000000 ____D () C:\Users\Eiberger\AppData\Local\NVIDIA Corporation
2014-10-25 10:32 - 2014-04-17 11:37 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-24 14:35 - 2014-08-28 12:27 - 00045377 _____ () C:\Windows\DirectX.log
2014-10-24 14:33 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-23 13:41 - 2014-05-31 18:41 - 00000000 ____D () C:\Users\Eiberger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-10-21 15:14 - 2014-06-01 11:30 - 00000000 ____D () C:\Users\Eiberger\Documents\Max Payne Savegames
2014-10-20 23:29 - 2014-04-23 15:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-20 19:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-18 20:43

==================== End Of Log ============================

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-11-2014
Ran by Eiberger at 2014-11-18 20:57:12
Running from C:\Users\Eiberger\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.185 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.185 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.185 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
FIFA 13 (HKLM-x32\...\{A29E18C2-7AB1-4b6b-848C-5D5E2C85F0C0}) (Version: 1.0.0.0 - Electronic Arts)
Gameforge Live 2.0.4 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.4 - Gameforge)
Google Update Helper (x32 Version: 1.3.25.0 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{B1AC3709-3E98-4F2C-A84E-4BCA2A452E64}) (Version: 4.2.40.2418 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.670 - Oracle)
Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Max Payne 2 (HKLM-x32\...\Max Payne 2) (Version: 1.1.102.0 - Rockstar Games)
Max Payne 3 (HKLM-x32\...\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}) (Version: 1.0.0.0 - Rockstar Games)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 33.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.0 (x86 de)) (Version: 33.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.3 - NVIDIA Corporation)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.0.10.69 - Electronic Arts, Inc.)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 1.1.5.34233 - Grinding Gear Games)
PlanMaker Viewer (HKLM-x32\...\PlanMaker Viewer) (Version:  - SoftMaker Software GmbH)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7111 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version:  - )
SHIELD Streaming (Version: 3.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.56 - NVIDIA Corporation) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1158 - SUPERAntiSpyware.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TextMaker Viewer (HKLM-x32\...\TextMaker Viewer) (Version:  - SoftMaker Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World Championship Snooker 2004 (HKLM-x32\...\{69D6FFE7-6F59-11D8-94C5-0003CE117910}) (Version: 1.00.0000 - Codemasters)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

04-11-2014 21:36:14 Windows Update
15-11-2014 11:41:23 Windows Update
15-11-2014 13:30:26 Windows Update
18-11-2014 19:16:51 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {152DEBDC-73A4-4E4E-A153-ED9BF891A9E5} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2014-10-17] (AVG Technologies)
Task: {2453EC4D-89D5-441E-95CE-5B040A8B2E1A} - System32\Tasks\LuckyTab => C:\Program Files (x86)\LuckyTab\LuckyTab.exe <==== ATTENTION
Task: {38EC0D10-3A55-4B91-BCF5-6B2671B23DC3} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21] (Adobe Systems Incorporated)
Task: {814DBFB9-66B8-4EBC-8630-9F0F2ACA31AE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-15] (Adobe Systems Incorporated)
Task: {CC2551A9-A1F0-4A49-9400-07AEA9515B52} - System32\Tasks\SUPERAntiSpyware Scheduled Task 06c0407f-967f-4cce-b690-50278ee351fb => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {E9B21D12-7222-493C-9693-78BBF260D53E} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: {FA69715F-FC5C-4C6F-8201-1A079B8E43B5} - System32\Tasks\SUPERAntiSpyware Scheduled Task a4a6502c-dddc-4a8d-9226-56dcaade5457 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 06c0407f-967f-4cce-b690-50278ee351fb.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task a4a6502c-dddc-4a8d-9226-56dcaade5457.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (whitelisted) =============

2013-08-01 16:31 - 2013-08-01 16:31 - 00198120 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2013-08-01 16:31 - 2013-08-01 16:31 - 00054760 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2013-08-01 16:31 - 2013-08-01 16:31 - 00034792 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2014-10-17 12:34 - 2014-10-17 12:34 - 00699704 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2014-04-17 11:39 - 2014-03-04 14:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-10-17 12:34 - 2014-10-17 12:34 - 00835896 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2014-11-03 03:02 - 2014-11-18 19:58 - 00123624 _____ () C:\ProgramData\369116b8-dbeb-4541-87d3-4725ded56029\maintainer.exe
2014-04-17 11:29 - 2013-09-17 02:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-10-20 19:12 - 2014-10-20 19:12 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-11-15 13:54 - 2014-11-15 13:54 - 16840880 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-813546910-1973016697-1823807669-500 - Administrator - Disabled)
Eiberger (S-1-5-21-813546910-1973016697-1823807669-1000 - Administrator - Enabled) => C:\Users\Eiberger
Gast (S-1-5-21-813546910-1973016697-1823807669-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/18/2014 07:59:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/15/2014 00:41:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/05/2014 05:47:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 33.0.0.5397, Zeitstempel: 0x543924b1
Name des fehlerhaften Moduls: mozalloc.dll, Version: 33.0.0.5397, Zeitstempel: 0x5438ffbb
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001425
ID des fehlerhaften Prozesses: 0x1090
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (11/05/2014 05:33:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/04/2014 09:36:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 11:20:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 10:53:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 08:31:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2014 00:40:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 33.0.0.5397, Zeitstempel: 0x543924b1
Name des fehlerhaften Moduls: mozalloc.dll, Version: 33.0.0.5397, Zeitstempel: 0x5438ffbb
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001425
ID des fehlerhaften Prozesses: 0xe4c
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (11/01/2014 00:16:14 PM) (Source: Microsoft Security Client Setup) (EventID: 100) (User: Eiberger-PC)
Description: HRESULT:0x8004FF0A
Description:Security Essentials is still installed on your computer.. Security Essentials was not removed from your computer. It will continue to monitor your computer and help protect it from potential threats. Error code:0x8004FF0A.


System errors:
=============
Error: (11/03/2014 10:47:03 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 10:47:03 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 10:40:54 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 10:34:05 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 09:56:27 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 09:56:22 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 09:45:49 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 09:45:48 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 09:40:53 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)

Error: (11/03/2014 09:39:48 PM) (Source: DCOM) (EventID: 10016) (User: Eiberger-PC)
Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}Eiberger-PCEibergerS-1-5-21-813546910-1973016697-1823807669-1000LocalHost (unter Verwendung von LRPC)


Microsoft Office Sessions:
=========================
Error: (11/18/2014 07:59:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/15/2014 00:41:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/05/2014 05:47:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.0.0.5397543924b1mozalloc.dll33.0.0.53975438ffbb8000000300001425109001cff9161fb14b6bC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll6208902a-650b-11e4-a666-d43d7ef8a6ff

Error: (11/05/2014 05:33:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/04/2014 09:36:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 11:20:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 10:53:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 08:31:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2014 00:40:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.0.0.5397543924b1mozalloc.dll33.0.0.53975438ffbb8000000300001425e4c01cff5c8a96e77f1C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllf0013669-61bb-11e4-ae15-d43d7ef8a6ff

Error: (11/01/2014 00:16:14 PM) (Source: Microsoft Security Client Setup) (EventID: 100) (User: Eiberger-PC)
Description: HRESULT:0x8004FF0A
Description:Security Essentials is still installed on your computer.. Security Essentials was not removed from your computer. It will continue to monitor your computer and help protect it from potential threats. Error code:0x8004FF0A.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 29%
Total physical RAM: 8142.93 MB
Available physical RAM: 5760.67 MB
Total Pagefile: 16284.05 MB
Available Pagefile: 13787.79 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:200 GB) (Free:81.63 GB) NTFS
Drive d: (Daten) (Fixed) (Total:263.71 GB) (Free:263.61 GB) NTFS
Drive e: (HI-TECH Treiber) (Fixed) (Total:1.95 GB) (Free:0.86 GB) NTFS
Drive f: (CDROM) (CDROM) (Total:7.54 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A81ECA4A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=263.7 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=07 NTFS)

==================== End Of Log ============================

schrauber · 19.11.2014, 17:31

hi,

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

NosyTheCat · 20.11.2014, 19:06

Code:

ATTFilter

19:01:06.0108 0x0938  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
19:01:23.0482 0x0938  ============================================================
19:01:23.0482 0x0938  Current date / time: 2014/11/20 19:01:23.0482
19:01:23.0482 0x0938  SystemInfo:
19:01:23.0482 0x0938  
19:01:23.0482 0x0938  OS Version: 6.1.7601 ServicePack: 1.0
19:01:23.0482 0x0938  Product type: Workstation
19:01:23.0482 0x0938  ComputerName: EIBERGER-PC
19:01:23.0482 0x0938  UserName: Eiberger
19:01:23.0482 0x0938  Windows directory: C:\Windows
19:01:23.0482 0x0938  System windows directory: C:\Windows
19:01:23.0482 0x0938  Running under WOW64
19:01:23.0482 0x0938  Processor architecture: Intel x64
19:01:23.0482 0x0938  Number of processors: 4
19:01:23.0482 0x0938  Page size: 0x1000
19:01:23.0482 0x0938  Boot type: Normal boot
19:01:23.0482 0x0938  ============================================================
19:01:28.0912 0x0938  KLMD registered as C:\Windows\system32\drivers\96109536.sys
19:01:29.0135 0x0938  System UUID: {BB74A4D8-7FBC-C93A-92E1-16EA75F9C81F}
19:01:29.0630 0x0938  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:01:29.0982 0x0938  ============================================================
19:01:29.0982 0x0938  \Device\Harddisk0\DR0:
19:01:29.0982 0x0938  MBR partitions:
19:01:29.0983 0x0938  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:01:29.0983 0x0938  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x18FFF800
19:01:29.0983 0x0938  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x19032000, BlocksNum 0x20F6B800
19:01:29.0983 0x0938  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x39F9D800, BlocksNum 0x3E8000
19:01:29.0983 0x0938  ============================================================
19:01:30.0024 0x0938  C: <-> \Device\Harddisk0\DR0\Partition2
19:01:30.0053 0x0938  D: <-> \Device\Harddisk0\DR0\Partition3
19:01:30.0091 0x0938  E: <-> \Device\Harddisk0\DR0\Partition4
19:01:30.0091 0x0938  ============================================================
19:01:30.0091 0x0938  Initialize success
19:01:30.0091 0x0938  ============================================================
19:01:59.0887 0x119c  ============================================================
19:01:59.0887 0x119c  Scan started
19:01:59.0887 0x119c  Mode: Manual; SigCheck; TDLFS; 
19:01:59.0887 0x119c  ============================================================
19:01:59.0887 0x119c  KSN ping started
19:02:13.0368 0x119c  KSN ping finished: true
19:02:16.0585 0x119c  ================ Scan system memory ========================
19:02:16.0585 0x119c  System memory - ok
19:02:16.0585 0x119c  ================ Scan services =============================
19:02:16.0645 0x119c  [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
19:02:16.0745 0x119c  !SASCORE - ok
19:02:16.0865 0x119c  [ 0B94DF0DB9DCA3EDB2B57747D5433E7F, B8C4501476396B434D5EA35451556CB97ACF4C8CF666B9C753E2FEFA77DD7213 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:02:16.0885 0x119c  1394ohci - ok
19:02:16.0905 0x119c  [ 114ACFE781B214B95F53D52020466CFD, CB25CED9C0AA17CC14AABBE845BF497E33C0642699236A93BCA7B197CAA6D2D8 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:02:16.0925 0x119c  ACPI - ok
19:02:16.0935 0x119c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:02:16.0945 0x119c  AcpiPmi - ok
19:02:17.0005 0x119c  [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:02:17.0025 0x119c  AdobeARMservice - ok
19:02:17.0095 0x119c  [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:02:17.0115 0x119c  AdobeFlashPlayerUpdateSvc - ok
19:02:17.0145 0x119c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
19:02:17.0175 0x119c  adp94xx - ok
19:02:17.0215 0x119c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
19:02:17.0235 0x119c  adpahci - ok
19:02:17.0245 0x119c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
19:02:17.0265 0x119c  adpu320 - ok
19:02:17.0285 0x119c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:02:17.0315 0x119c  AeLookupSvc - ok
19:02:17.0355 0x119c  [ BDF76C3CE993FFB6214287272708364F, C2112D58104DD8FB74530F6DCA4F1261C82F26DE928E0BD764BCB6EF49B59A2D ] AFD             C:\Windows\system32\drivers\afd.sys
19:02:17.0385 0x119c  AFD - ok
19:02:17.0415 0x119c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
19:02:17.0415 0x119c  agp440 - ok
19:02:17.0425 0x119c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
19:02:17.0445 0x119c  ALG - ok
19:02:17.0465 0x119c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:02:17.0465 0x119c  aliide - ok
19:02:17.0485 0x119c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
19:02:17.0495 0x119c  amdide - ok
19:02:17.0515 0x119c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
19:02:17.0525 0x119c  AmdK8 - ok
19:02:17.0535 0x119c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
19:02:17.0535 0x119c  AmdPPM - ok
19:02:17.0555 0x119c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:02:17.0565 0x119c  amdsata - ok
19:02:17.0575 0x119c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
19:02:17.0585 0x119c  amdsbs - ok
19:02:17.0605 0x119c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:02:17.0605 0x119c  amdxata - ok
19:02:17.0635 0x119c  [ D6934D14EDAEC74F47C8C6A8026ADA01, 6FC7F30216DD33441702438E7BE49158DB1C62B45B30FA27280FCB8E394E5EA7 ] AppID           C:\Windows\system32\drivers\appid.sys
19:02:17.0645 0x119c  AppID - ok
19:02:17.0655 0x119c  [ A66E46C7C869B195EBB2D8F00A210B75, 45E4CD1681DEC199796FD7047485BA65B80200BC6E15B621C674A388B438E7F8 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:02:17.0675 0x119c  AppIDSvc - ok
19:02:17.0685 0x119c  [ 9651B55594F10F65D6D4498B89E5A4C5, 0726F44A81298116E61DCF720383C2E295EA96C79364A19B1ED1C274D20B3D77 ] Appinfo         C:\Windows\System32\appinfo.dll
19:02:17.0695 0x119c  Appinfo - ok
19:02:17.0695 0x119c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
19:02:17.0705 0x119c  arc - ok
19:02:17.0705 0x119c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:02:17.0715 0x119c  arcsas - ok
19:02:17.0765 0x119c  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:02:17.0775 0x119c  aspnet_state - ok
19:02:17.0795 0x119c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:02:17.0815 0x119c  AsyncMac - ok
19:02:17.0845 0x119c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:02:17.0855 0x119c  atapi - ok
19:02:17.0885 0x119c  [ AE981AA606E196EBFB280878824B7F4D, 9F6DE45BB9E56EEBEBD9653297478AAEA8E5E7D3D6EC698F76FFD103303FF07D ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:02:17.0905 0x119c  AudioEndpointBuilder - ok
19:02:17.0915 0x119c  [ AE981AA606E196EBFB280878824B7F4D, 9F6DE45BB9E56EEBEBD9653297478AAEA8E5E7D3D6EC698F76FFD103303FF07D ] AudioSrv        C:\Windows\System32\Audiosrv.dll
19:02:17.0935 0x119c  AudioSrv - ok
19:02:17.0965 0x119c  [ CDA9ED9AEE49BB4076B0FAF5DBE3B666, 31FA98F0A6284EAD0110944694C70C978E3825884F6B429C353B966E20A43413 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:02:17.0975 0x119c  AxInstSV - ok
19:02:18.0005 0x119c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
19:02:18.0015 0x119c  b06bdrv - ok
19:02:18.0045 0x119c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
19:02:18.0055 0x119c  b57nd60a - ok
19:02:18.0095 0x119c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:02:18.0105 0x119c  BDESVC - ok
19:02:18.0115 0x119c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:02:18.0135 0x119c  Beep - ok
19:02:18.0165 0x119c  [ F513F0CE75F873A0050A34379A8E76B5, CB1329CCAE7B8EBB711772F4A4C5ABBC47347C948BBBDEE011A8A25872B0C17D ] BFE             C:\Windows\System32\bfe.dll
19:02:18.0185 0x119c  BFE - ok
19:02:18.0225 0x119c  [ DB3159AA87392A6098C4343D47C7C2D7, 6146FDAE88C6B0E992CDFBAD4D789F2B2073B407F8D6FD3A50867D917220FD2C ] BITS            C:\Windows\System32\qmgr.dll
19:02:18.0255 0x119c  BITS - ok
19:02:18.0275 0x119c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:02:18.0295 0x119c  blbdrive - ok
19:02:18.0315 0x119c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:02:18.0335 0x119c  bowser - ok
19:02:18.0345 0x119c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
19:02:18.0365 0x119c  BrFiltLo - ok
19:02:18.0375 0x119c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
19:02:18.0385 0x119c  BrFiltUp - ok
19:02:18.0395 0x119c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
19:02:18.0415 0x119c  Browser - ok
19:02:18.0445 0x119c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:02:18.0465 0x119c  Brserid - ok
19:02:18.0475 0x119c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:02:18.0485 0x119c  BrSerWdm - ok
19:02:18.0505 0x119c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:02:18.0515 0x119c  BrUsbMdm - ok
19:02:18.0515 0x119c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:02:18.0525 0x119c  BrUsbSer - ok
19:02:18.0535 0x119c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
19:02:18.0555 0x119c  BTHMODEM - ok
19:02:18.0585 0x119c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
19:02:18.0605 0x119c  bthserv - ok
19:02:18.0625 0x119c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:02:18.0655 0x119c  cdfs - ok
19:02:18.0665 0x119c  [ E5F4FD3D59B9141560D4174AAE6E66E0, 41614846F083525E913C4C36FB3E4227138833978ECCD840737B766F0BA24D62 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:02:18.0675 0x119c  cdrom - ok
19:02:18.0685 0x119c  [ 07EE502550B85828B5F9B22AE2857A68, 172ED99E403A0359F4BAE8BB33238FA78051D91E0114249EA9428737D1357571 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:02:18.0695 0x119c  CertPropSvc - ok
19:02:18.0705 0x119c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
19:02:18.0715 0x119c  circlass - ok
19:02:18.0745 0x119c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
19:02:18.0755 0x119c  CLFS - ok
19:02:18.0785 0x119c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:02:18.0795 0x119c  clr_optimization_v2.0.50727_32 - ok
19:02:18.0815 0x119c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:02:18.0825 0x119c  clr_optimization_v2.0.50727_64 - ok
19:02:18.0875 0x119c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:02:18.0885 0x119c  clr_optimization_v4.0.30319_32 - ok
19:02:18.0925 0x119c  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:02:18.0935 0x119c  clr_optimization_v4.0.30319_64 - ok
19:02:18.0965 0x119c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
19:02:18.0985 0x119c  CmBatt - ok
19:02:18.0995 0x119c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:02:19.0005 0x119c  cmdide - ok
19:02:19.0045 0x119c  [ 29F5E6D593ED5CAC96B0889FD6CF555B, 1A0807F57DD83CAADED8BF96E6FF3A1DAB8C38E4A377D26D60E55C9B814D40AF ] CNG             C:\Windows\system32\Drivers\cng.sys
19:02:19.0075 0x119c  CNG - ok
19:02:19.0105 0x119c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
19:02:19.0115 0x119c  Compbatt - ok
19:02:19.0135 0x119c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
19:02:19.0145 0x119c  CompositeBus - ok
19:02:19.0155 0x119c  COMSysApp - ok
19:02:19.0155 0x119c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
19:02:19.0165 0x119c  crcdisk - ok
19:02:19.0195 0x119c  [ 509D31797A4B8A3D6ED78A330B19A919, 27676BD3DFFFD2B9EE8CF73DAF5DC33AEA4385D9A749452B15BC5124B4086927 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:02:19.0215 0x119c  CryptSvc - ok
19:02:19.0245 0x119c  [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:02:19.0285 0x119c  DcomLaunch - ok
19:02:19.0305 0x119c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
19:02:19.0335 0x119c  defragsvc - ok
19:02:19.0355 0x119c  [ A61E76AA38582730CEFA51B78B3184B2, 1E7B401E9765C18CA17F26D796CC77601FC06220C4B88FE5727215B0446BE8BB ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:02:19.0365 0x119c  DfsC - ok
19:02:19.0385 0x119c  [ 3249F4E4DBF1BD24B40DFF385F2511D4, BFDF544580127CE07FCF01DE6A011C478F7D5948569B649BB5B0AAD85B2188F2 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:02:19.0405 0x119c  Dhcp - ok
19:02:19.0405 0x119c  [ 9ED290A1E8FDBCF269B26CDA541DDC84, 103332D59EFAAF60B014F4450C4B68051417B5CBBF4CA1769CCE694925CB0A83 ] discache        C:\Windows\system32\drivers\discache.sys
19:02:19.0415 0x119c  discache - ok
19:02:19.0435 0x119c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
19:02:19.0445 0x119c  Disk - ok
19:02:19.0455 0x119c  [ 138A622CB3A5A892441D71874E26C41C, FF3E2C53BC1A64A25DF265E3F744F13C0D3F585C6EF3FA6730FF7052B7E7AF66 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:02:19.0465 0x119c  Dnscache - ok
19:02:19.0475 0x119c  [ 8DA62036CC6192959D675142A3084916, BA97989D8E047872C54BC517697366741AFBB483906185EDED67C7C5854FCB4F ] dot3svc         C:\Windows\System32\dot3svc.dll
19:02:19.0495 0x119c  dot3svc - ok
19:02:19.0515 0x119c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
19:02:19.0565 0x119c  DPS - ok
19:02:19.0595 0x119c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:02:19.0615 0x119c  drmkaud - ok
19:02:19.0655 0x119c  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:02:19.0675 0x119c  DXGKrnl - ok
19:02:19.0685 0x119c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
19:02:19.0705 0x119c  EapHost - ok
19:02:19.0765 0x119c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
19:02:19.0835 0x119c  ebdrv - ok
19:02:19.0855 0x119c  [ 6598EBC4D209318EBD81F76833ECBEDB, A941E8FD33962F69722A007E946AA36B0A52C3913958C700404D21E09D331D9E ] EFS             C:\Windows\System32\lsass.exe
19:02:19.0855 0x119c  EFS - ok
19:02:19.0905 0x119c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:02:19.0935 0x119c  ehRecvr - ok
19:02:19.0955 0x119c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
19:02:19.0975 0x119c  ehSched - ok
19:02:20.0005 0x119c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
19:02:20.0025 0x119c  elxstor - ok
19:02:20.0035 0x119c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:02:20.0045 0x119c  ErrDev - ok
19:02:20.0085 0x119c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
19:02:20.0105 0x119c  EventSystem - ok
19:02:20.0135 0x119c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
19:02:20.0165 0x119c  exfat - ok
19:02:20.0185 0x119c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:02:20.0215 0x119c  fastfat - ok
19:02:20.0245 0x119c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
19:02:20.0265 0x119c  Fax - ok
19:02:20.0275 0x119c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
19:02:20.0285 0x119c  fdc - ok
19:02:20.0315 0x119c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
19:02:20.0345 0x119c  fdPHost - ok
19:02:20.0355 0x119c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:02:20.0375 0x119c  FDResPub - ok
19:02:20.0405 0x119c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:02:20.0415 0x119c  FileInfo - ok
19:02:20.0415 0x119c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:02:20.0435 0x119c  Filetrace - ok
19:02:20.0435 0x119c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
19:02:20.0445 0x119c  flpydisk - ok
19:02:20.0445 0x119c  [ BAD52A4449DB51D70826EBDE87D84E22, D9B805CD3B0995FBF8A10060B08D9CAEB1B87371B5B9C0FF07400AEB73B9F0EB ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:02:20.0455 0x119c  FltMgr - ok
19:02:20.0475 0x119c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
19:02:20.0505 0x119c  FontCache - ok
19:02:20.0555 0x119c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:02:20.0555 0x119c  FontCache3.0.0.0 - ok
19:02:20.0575 0x119c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:02:20.0575 0x119c  FsDepends - ok
19:02:20.0585 0x119c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:02:20.0595 0x119c  Fs_Rec - ok
19:02:20.0595 0x119c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:02:20.0605 0x119c  fvevol - ok
19:02:20.0625 0x119c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:02:20.0625 0x119c  gagp30kx - ok
19:02:20.0705 0x119c  [ C511B8331F7CCB3FD7902958C261CC85, DCF70C551A559A539C3366657EBBAC9A39CEFA916010813FE70D51D7742C0C1B ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
19:02:20.0765 0x119c  GfExperienceService - ok
19:02:20.0805 0x119c  [ 030B778F4272DF185E4E2E8EC49D162E, 702E884DC9C56D67A250F2DE4C293A878054F0F0A3BB64944A204445D9D5357F ] gpsvc           C:\Windows\System32\gpsvc.dll
19:02:20.0825 0x119c  gpsvc - ok
19:02:20.0865 0x119c  GPU-Z - ok
19:02:20.0885 0x119c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:02:20.0895 0x119c  hcw85cir - ok
19:02:20.0935 0x119c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:02:20.0945 0x119c  HdAudAddService - ok
19:02:20.0965 0x119c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
19:02:20.0985 0x119c  HDAudBus - ok
19:02:20.0985 0x119c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
19:02:20.0995 0x119c  HidBatt - ok
19:02:21.0005 0x119c  [ FDF5EAD19FD8B2D0C50A9CCDD7836F9E, B865703E3D9BFC75DF363BF943213C47A63445415E211000717009D2BD0C062B ] HidBth          C:\Windows\system32\drivers\hidbth.sys
19:02:21.0005 0x119c  HidBth - ok
19:02:21.0025 0x119c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
19:02:21.0035 0x119c  HidIr - ok
19:02:21.0055 0x119c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
19:02:21.0075 0x119c  hidserv - ok
19:02:21.0115 0x119c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
19:02:21.0115 0x119c  HidUsb - ok
19:02:21.0145 0x119c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:02:21.0175 0x119c  hkmsvc - ok
19:02:21.0195 0x119c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:02:21.0205 0x119c  HomeGroupListener - ok
19:02:21.0225 0x119c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:02:21.0235 0x119c  HomeGroupProvider - ok
19:02:21.0265 0x119c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:02:21.0265 0x119c  HpSAMD - ok
19:02:21.0285 0x119c  [ 30C2ABEA8C73FE17292420D6AF68822E, FBAF41833E9D99CBB8056C82AD1327BBCE8168F9ABCFDF332C3B1236BAF9B5AD ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:02:21.0305 0x119c  HTTP - ok
19:02:21.0315 0x119c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:02:21.0325 0x119c  hwpolicy - ok
19:02:21.0335 0x119c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
19:02:21.0345 0x119c  i8042prt - ok
19:02:21.0355 0x119c  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
19:02:21.0375 0x119c  iaStorA - ok
19:02:21.0415 0x119c  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
19:02:21.0425 0x119c  IAStorDataMgrSvc - ok
19:02:21.0425 0x119c  [ CE5CD8CBE940965867D507AB8EA2795A, 1CC2C23A1436E4C911DD3B942D8F6DABB7249AB04426F9AB6B6045034226DD25 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
19:02:21.0435 0x119c  iaStorF - ok
19:02:21.0445 0x119c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:02:21.0455 0x119c  iaStorV - ok
19:02:21.0495 0x119c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:02:21.0515 0x119c  idsvc - ok
19:02:21.0635 0x119c  IEEtwCollectorService - ok
19:02:21.0655 0x119c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
19:02:21.0665 0x119c  iirsp - ok
19:02:21.0705 0x119c  [ 39F3C7E218CE9118106D166F09AE1352, B78ADFC87AACF868D62A7FB0971B8786C1315A9B4D34D3E3159AD3F24D78AD62 ] ikbevent        C:\Windows\system32\DRIVERS\ikbevent.sys
19:02:21.0725 0x119c  ikbevent - ok
19:02:21.0755 0x119c  [ 1E2A51DB8B28CD431D2B5C76A71AAEE3, A356E381C155DF7D3E905696D63A652D1C01D524B6B866C2288ECC5F3B3D4AB9 ] IKEEXT          C:\Windows\System32\ikeext.dll
19:02:21.0775 0x119c  IKEEXT - ok
19:02:21.0785 0x119c  [ 404906005D768E48BF16218B420249C7, 78409A077F244FCAC806180384C240F3BB1FF7ECF02EDB5E5D3188F458AB23D1 ] imsevent        C:\Windows\system32\DRIVERS\imsevent.sys
19:02:21.0805 0x119c  imsevent - ok
19:02:21.0845 0x119c  [ 3F2BB021CB280880F8C1B7A6FEF9B447, CEC0BF9D6C9CF6E6A9F9B4E656BD47208AC977EDDC11C1C3BCD07EB50BABC017 ] INETMON         C:\Windows\System32\Drivers\INETMON.sys
19:02:21.0865 0x119c  INETMON - ok
19:02:21.0955 0x119c  [ 69976169745EDFB3225D9ABEB5E91155, D1AFF69AF178B46FD9F319AA9DF8738ACB03559DE24C1114EEF46A22D01F0982 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:02:22.0005 0x119c  IntcAzAudAddService - ok
19:02:22.0045 0x119c  [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
19:02:22.0455 0x119c  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
19:02:32.0497 0x119c  Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - warning
19:02:34.0913 0x119c  [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
19:02:35.0489 0x119c  Intel(R) Capability Licensing Service TCP IP Interface - ok
19:02:35.0558 0x119c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:02:35.0563 0x119c  intelide - ok
19:02:35.0596 0x119c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:02:35.0615 0x119c  intelppm - ok
19:02:35.0674 0x119c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:02:35.0695 0x119c  IPBusEnum - ok
19:02:35.0713 0x119c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:02:35.0733 0x119c  IpFilterDriver - ok
19:02:35.0822 0x119c  [ 44A0A05577B41E2157161071AB109C8A, 84A190CEAC4993141C19E323563C3A6DBF6F9B643A7C02E96DF298F0AFB9F6B9 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:02:35.0837 0x119c  iphlpsvc - ok
19:02:35.0868 0x119c  [ 3CB3DBEECB9672698B5C1A6EAB2940B0, AC252B7344A3A3F2799D4FF5612FAF9DC8830F30C97B69950CF9245EA5415D08 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:02:35.0875 0x119c  IPMIDRV - ok
19:02:35.0906 0x119c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:02:35.0926 0x119c  IPNAT - ok
19:02:35.0944 0x119c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:02:35.0954 0x119c  IRENUM - ok
19:02:36.0000 0x119c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:02:36.0006 0x119c  isapnp - ok
19:02:36.0077 0x119c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:02:36.0086 0x119c  iScsiPrt - ok
19:02:36.0137 0x119c  [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT            C:\Windows\system32\DRIVERS\ISCTD64.sys
19:02:36.0143 0x119c  ISCT - ok
19:02:36.0184 0x119c  [ 5215D12B13FC2BC7717AA4884846D34F, B97B8FFC6FB212398BF772C08B318411EA70B683B816906F30EF35DEB5B1C130 ] ISCTAgent       C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
19:02:36.0203 0x119c  ISCTAgent - ok
19:02:36.0256 0x119c  [ 75779002A6084C1A011E195E421A9C75, 03D84CE7E50EEA1DFB298F4CE3669F478920ECEB33513FE2DC16C8BF90DF3830 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
19:02:36.0261 0x119c  iusb3hcs - ok
19:02:36.0295 0x119c  [ F390B641FE6115F536B8B78AA71B8814, 8F26FCEC9B1442224A8DEE3B6459F788DBCEDFB206846BFAA3B26E40B06E2D28 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
19:02:36.0305 0x119c  iusb3hub - ok
19:02:36.0329 0x119c  [ 653B86AA174FF7661D00EE1E524B234F, F4598336206097DD3C838F7315D87D989D8AB755F773ED613E984C2CC95D511B ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
19:02:36.0344 0x119c  iusb3xhc - ok
19:02:36.0380 0x119c  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
19:02:36.0410 0x119c  jhi_service - ok
19:02:36.0433 0x119c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:02:36.0439 0x119c  kbdclass - ok
19:02:36.0444 0x119c  [ 3985332405FA64D8E679A1DB24901596, CA4C274704B9F4AE560CC32AD7C22D39ADAD13C61709E21F70C9B1AACE34B7A2 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
19:02:36.0450 0x119c  kbdhid - ok
19:02:36.0464 0x119c  [ 6598EBC4D209318EBD81F76833ECBEDB, A941E8FD33962F69722A007E946AA36B0A52C3913958C700404D21E09D331D9E ] KeyIso          C:\Windows\system32\lsass.exe
19:02:36.0471 0x119c  KeyIso - ok
19:02:36.0487 0x119c  [ A6C623B5EAF9C0D03EA9BB55215E3307, 115863684786480C2EEF7B31690C60D28A4B8CAB9B9E5AB55BADECC692805E7E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:02:36.0494 0x119c  KSecDD - ok
19:02:36.0510 0x119c  [ F2908E8C29163DD5E7A02556012792C5, DE8FA9FA3FB7B403ADDBC371DB20BD20DA774E16E7C7EB147B840731A68E9763 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:02:36.0518 0x119c  KSecPkg - ok
19:02:36.0520 0x119c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:02:36.0551 0x119c  ksthunk - ok
19:02:36.0568 0x119c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:02:36.0597 0x119c  KtmRm - ok
19:02:36.0632 0x119c  [ 5CE3ADEF1C7203DCC0467E084ACE5643, E8A26479F296451310D42215E3E280C80A18BD6E537A854D1702873AC4162382 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:02:36.0649 0x119c  LanmanServer - ok
19:02:36.0660 0x119c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:02:36.0692 0x119c  LanmanWorkstation - ok
19:02:36.0707 0x119c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:02:36.0725 0x119c  lltdio - ok
19:02:36.0738 0x119c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:02:36.0773 0x119c  lltdsvc - ok
19:02:36.0790 0x119c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:02:36.0809 0x119c  lmhosts - ok
19:02:36.0859 0x119c  [ 3DE66F47365AA8CEB18B1EE272F4FEBA, 8DDD6AB4AEDE3B2FEA0D3B63DD24E3F3422D6ADE067756A3919FCED53C349167 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:02:36.0869 0x119c  LMS - ok
19:02:36.0899 0x119c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
19:02:36.0906 0x119c  LSI_FC - ok
19:02:36.0912 0x119c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:02:36.0918 0x119c  LSI_SAS - ok
19:02:36.0928 0x119c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
19:02:36.0934 0x119c  LSI_SAS2 - ok
19:02:36.0947 0x119c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
19:02:36.0954 0x119c  LSI_SCSI - ok
19:02:36.0967 0x119c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:02:36.0997 0x119c  luafv - ok
19:02:37.0070 0x119c  [ 501CABDF9860347D9D95B575C7D3859F, 48D06933C10338E3F058F5DE587DB38013C04598AEF45AB174C879D774AD1B35 ] MaintainerSvc4.19.7305058 C:\ProgramData\369116b8-dbeb-4541-87d3-4725ded56029\maintainer.exe
19:02:37.0092 0x119c  MaintainerSvc4.19.7305058 - ok
19:02:37.0150 0x119c  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
19:02:37.0157 0x119c  MBAMSwissArmy - ok
19:02:37.0185 0x119c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:02:37.0207 0x119c  Mcx2Svc - ok
19:02:37.0216 0x119c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
19:02:37.0221 0x119c  megasas - ok
19:02:37.0241 0x119c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
19:02:37.0250 0x119c  MegaSR - ok
19:02:37.0263 0x119c  [ E0EF6C1399A9B1AAA0B28590411BED04, 10C193D1ED434A6DC2AD8C450012B9AF1C848A0A0B3B775F13495648FB77E009 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
19:02:37.0270 0x119c  MEIx64 - ok
19:02:37.0276 0x119c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
19:02:37.0297 0x119c  MMCSS - ok
19:02:37.0305 0x119c  [ BFFB0C93D9FB43CA42EF11C9240BFF7F, E1E98C55DF9A56316050A21AC5A7D764338DA55F6124B52A52E71B5B0089C3FA ] Modem           C:\Windows\system32\drivers\modem.sys
19:02:37.0313 0x119c  Modem - ok
19:02:37.0334 0x119c  [ 009E04D73298787DAA406104B17305A7, E9713CF96C1FE6808E7F5CDF3255A930D38B7FBBF51DCA63B17F40A37D621718 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:02:37.0342 0x119c  monitor - ok
19:02:37.0358 0x119c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:02:37.0363 0x119c  mouclass - ok
19:02:37.0369 0x119c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:02:37.0383 0x119c  mouhid - ok
19:02:37.0393 0x119c  [ B3F55C20008956239A2190DBD7CC4C31, C13A37497856B97DD8E676DD61A65E4FFD42037E691D022C5C5B8E0567E78905 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:02:37.0399 0x119c  mountmgr - ok
19:02:37.0441 0x119c  [ 6ACCF2E8210880D7005C608AFDB5301C, D00122C928C5818A24E6C11183F79C253CFB6576AD54DC92AEEFC630ABBDE655 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:02:37.0447 0x119c  MozillaMaintenance - ok
19:02:37.0474 0x119c  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
19:02:37.0484 0x119c  MpFilter - ok
19:02:37.0504 0x119c  [ 53F46BB6A5B9355E2E45408B1A9E2164, 882FF95EA238094A84AC3AF19569FC244B9E0F9852FAB2DF424020962106475A ] mpio            C:\Windows\system32\drivers\mpio.sys
19:02:37.0512 0x119c  mpio - ok
19:02:37.0518 0x119c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:02:37.0525 0x119c  mpsdrv - ok
19:02:37.0555 0x119c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:02:37.0583 0x119c  MpsSvc - ok
19:02:37.0602 0x119c  [ 83A296715A67D696F101130AB44B92A7, 365D984745C38CA6AD2EE038834A02BE03AAAF02BCEB40B4E60E4309C01C3BE2 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:02:37.0610 0x119c  MRxDAV - ok
19:02:37.0620 0x119c  [ 5E7C44139F12A1809EA20B201A9350EE, 2359816A2586D1E823A1A36084E23A9DBC8CAD81F071B7189DCBA18C35E2CC36 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:02:37.0629 0x119c  mrxsmb - ok
19:02:37.0640 0x119c  [ B10A0DF47FB6A1B807617A8EB8CF1045, 6EAD4CD5B6325718143AF46B100E0122C254A7E3EECF87AE8590A783D60DD2D0 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:02:37.0657 0x119c  mrxsmb10 - ok
19:02:37.0661 0x119c  [ 0849567AC686035985B343A3393F9002, 3CE86081838A4FBEC6DECEBC6A10C507ECCEA3866D06F1105C7E8B843820BC90 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:02:37.0669 0x119c  mrxsmb20 - ok
19:02:37.0675 0x119c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:02:37.0681 0x119c  msahci - ok
19:02:37.0691 0x119c  [ 5F1EE156E37819F681FDBEAEB7887C81, 26B096109F2EA198B0BAB2D73076BFC45B468E5F09467CC8C0C02125CE2B18B6 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:02:37.0698 0x119c  msdsm - ok
19:02:37.0707 0x119c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
19:02:37.0727 0x119c  MSDTC - ok
19:02:37.0731 0x119c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:02:37.0757 0x119c  Msfs - ok
19:02:37.0777 0x119c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:02:37.0796 0x119c  mshidkmdf - ok
19:02:37.0798 0x119c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:02:37.0803 0x119c  msisadrv - ok
19:02:37.0828 0x119c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:02:37.0855 0x119c  MSiSCSI - ok
19:02:37.0857 0x119c  msiserver - ok
19:02:37.0876 0x119c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:02:37.0900 0x119c  MSKSSRV - ok
19:02:37.0957 0x119c  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
19:02:37.0963 0x119c  MsMpSvc - ok
19:02:37.0966 0x119c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:02:37.0995 0x119c  MSPCLOCK - ok
19:02:38.0005 0x119c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:02:38.0031 0x119c  MSPQM - ok
19:02:38.0050 0x119c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:02:38.0061 0x119c  MsRPC - ok
19:02:38.0071 0x119c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
19:02:38.0076 0x119c  mssmbios - ok
19:02:38.0084 0x119c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:02:38.0112 0x119c  MSTEE - ok
19:02:38.0122 0x119c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
19:02:38.0136 0x119c  MTConfig - ok
19:02:38.0146 0x119c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
19:02:38.0152 0x119c  Mup - ok
19:02:38.0174 0x119c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
19:02:38.0209 0x119c  napagent - ok
19:02:38.0231 0x119c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:02:38.0245 0x119c  NativeWifiP - ok
19:02:38.0270 0x119c  [ 37060C2BFFFBF8235AB8021D33807AEC, 253FCA7D61757670BFB6D13E7B265E41E55B288312717513BD82E7954D6A9866 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:02:38.0288 0x119c  NDIS - ok
19:02:38.0300 0x119c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:02:38.0333 0x119c  NdisCap - ok
19:02:38.0363 0x119c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:02:38.0370 0x119c  NdisTapi - ok
19:02:38.0399 0x119c  [ 662CBFAA835FFF1A935DD01890AAFC62, 41CD715EF77446E2ECD70A512BF2A5DC8C32C0F38E56F48621461784C28CF914 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:02:38.0406 0x119c  Ndisuio - ok
19:02:38.0423 0x119c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:02:38.0443 0x119c  NdisWan - ok
19:02:38.0464 0x119c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:02:38.0476 0x119c  NDProxy - ok
19:02:38.0489 0x119c  [ BB14215BBAF8EBB5E5FFAA3B6B04D177, 7A53CBF15409FAF34F3959263E7C3E69770CF06B4FEB7A08E3009C18A098DBA3 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:02:38.0496 0x119c  NetBIOS - ok
19:02:38.0530 0x119c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:02:38.0551 0x119c  NetBT - ok
19:02:38.0564 0x119c  [ 6598EBC4D209318EBD81F76833ECBEDB, A941E8FD33962F69722A007E946AA36B0A52C3913958C700404D21E09D331D9E ] Netlogon        C:\Windows\system32\lsass.exe
19:02:38.0571 0x119c  Netlogon - ok
19:02:38.0598 0x119c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
19:02:38.0630 0x119c  Netman - ok
19:02:38.0653 0x119c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:02:38.0662 0x119c  NetMsmqActivator - ok
19:02:38.0677 0x119c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:02:38.0685 0x119c  NetPipeActivator - ok
19:02:38.0704 0x119c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
19:02:38.0733 0x119c  netprofm - ok
19:02:38.0737 0x119c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:02:38.0745 0x119c  NetTcpActivator - ok
19:02:38.0748 0x119c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:02:38.0756 0x119c  NetTcpPortSharing - ok
19:02:38.0775 0x119c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
19:02:38.0781 0x119c  nfrd960 - ok
19:02:38.0809 0x119c  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:02:38.0817 0x119c  NisDrv - ok
19:02:38.0844 0x119c  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
19:02:38.0855 0x119c  NisSrv - ok
19:02:38.0865 0x119c  [ 843E337C1CDD282545ED7515345E263B, B0E485856FC1C28DA6C453BF60A04F603BA15D7B0D84896E878049198F2FD1C9 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:02:38.0877 0x119c  NlaSvc - ok
19:02:38.0897 0x119c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:02:38.0916 0x119c  Npfs - ok
19:02:38.0931 0x119c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
19:02:38.0947 0x119c  nsi - ok
19:02:38.0962 0x119c  [ F7DAC05B4067C8D9DD1FF2FCF7E33291, DBF28724C79EE77CD6C1D7BFC2D502FCA284E40CFCA6EA1337129E0DAAFC808D ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:02:38.0969 0x119c  nsiproxy - ok
19:02:39.0006 0x119c  [ 48B6047F82D5A8D0AEC71593F4ACD79B, A96F91C1DFD1CBB17C05B5DAAC4956169380E988FB4223E4588FEF34C2BC5249 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:02:39.0049 0x119c  Ntfs - ok
19:02:39.0071 0x119c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
19:02:39.0101 0x119c  Null - ok
19:02:39.0141 0x119c  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
19:02:39.0149 0x119c  NVHDA - ok
19:02:39.0383 0x119c  [ 757ACE4D4C9FF0571F86AA5D586B45E8, E7F23CC1DE26E2DAA690B78B05FC001EE0051F0ED9B9BCE9E7FA4E9684D4F3D4 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:02:39.0558 0x119c  nvlddmkm - ok
19:02:39.0664 0x119c  [ CF4905C5F3179F20DA550CD135EE90EE, D887773F537268CD1141776FC439299C2C9F2986D7962D83FE534E3CD4F983AD ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
19:02:40.0188 0x119c  NvNetworkService - ok
19:02:40.0222 0x119c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:02:40.0229 0x119c  nvraid - ok
19:02:40.0239 0x119c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:02:40.0247 0x119c  nvstor - ok
19:02:40.0295 0x119c  [ 6B2CFB1BF233F6946F293B5B30FD599A, 91FC84D5D0497235015850FA1DFFFD8EDEB3C89FAB0BAD65AC86E161CC3593BD ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
19:02:40.0316 0x119c  NvStreamKms - ok
19:02:40.0662 0x119c  [ 2FAD0F3004D0CFEE5148CB36E6999DBD, 4EE62420BBC6B81048B35E549F2332EA3640B41101FC174C74CCCC412AF0D6E3 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
19:02:40.0947 0x119c  NvStreamSvc - ok
19:02:41.0011 0x119c  [ 1C7CC708AC4A02A3BE8915539780534A, 0EBDE100880963BF1EC05002BA244CA7700693E958D1974CDD2AC3927D93224F ] nvsvc           C:\Windows\system32\nvvsvc.exe
19:02:41.0029 0x119c  nvsvc - ok
19:02:41.0042 0x119c  [ 1AF619620613869C07F9C147BC37520F, 0AD4E100354E201D5E72BA236C1464F5083A7E3B58C4AC6BA712489D258955F5 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
19:02:41.0054 0x119c  nvvad_WaveExtensible - ok
19:02:41.0161 0x119c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:02:41.0172 0x119c  nv_agp - ok
19:02:41.0263 0x119c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:02:41.0270 0x119c  ohci1394 - ok
19:02:41.0451 0x119c  [ 8830D42427D05B15B032108EBBDBD289, 977AEE57EF7639A1B1C8D8858AF369927EB16181100FCC4517F4B58148138C22 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:02:41.0578 0x119c  p2pimsvc - ok
19:02:41.0796 0x119c  [ 5B7BADED6943AA6F4B6C1ABA5FCCB25F, 07D17B7778A88A3007E98C47773D1D8649C3AF5284BCC870829DDF2725CF2FC1 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:02:41.0842 0x119c  p2psvc - ok
19:02:41.0890 0x119c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
19:02:41.0932 0x119c  Parport - ok
19:02:41.0957 0x119c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:02:41.0963 0x119c  partmgr - ok
19:02:42.0005 0x119c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:02:42.0035 0x119c  PcaSvc - ok
19:02:42.0040 0x119c  [ 9CE2B541DEBE8DCA0ECD251584540703, 04395C3C57C1200C29266077816922CF342A06ECCCB4EDEC0AFA6923C5800B5B ] pci             C:\Windows\system32\drivers\pci.sys
19:02:42.0048 0x119c  pci - ok
19:02:42.0084 0x119c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
19:02:42.0090 0x119c  pciide - ok
19:02:42.0122 0x119c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
19:02:42.0130 0x119c  pcmcia - ok
19:02:42.0133 0x119c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:02:42.0139 0x119c  pcw - ok
19:02:42.0168 0x119c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:02:42.0196 0x119c  PEAUTH - ok
19:02:42.0270 0x119c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:02:42.0288 0x119c  PerfHost - ok
19:02:42.0362 0x119c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
19:02:42.0411 0x119c  pla - ok
19:02:42.0456 0x119c  [ 34B06971CA5A740B32A63646C60BA3FC, 6B08A6D183216AF6AD4A61CEBCCD6CC9F99E0184632DAB965FCBB805D3AE0EA5 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:02:42.0470 0x119c  PlugPlay - ok
19:02:42.0496 0x119c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:02:42.0514 0x119c  PNRPAutoReg - ok
19:02:42.0521 0x119c  [ 8830D42427D05B15B032108EBBDBD289, 977AEE57EF7639A1B1C8D8858AF369927EB16181100FCC4517F4B58148138C22 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:02:42.0533 0x119c  PNRPsvc - ok
19:02:42.0577 0x119c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:02:42.0632 0x119c  PolicyAgent - ok
19:02:42.0676 0x119c  [ B2392DBB9085E39AAB5204BE92FB3AB0, BB7741859C9FB5B3DCA98DDC2869C05AD06DA896F5B0CA821D433C46463F8536 ] Power           C:\Windows\system32\umpo.dll
19:02:42.0695 0x119c  Power - ok
19:02:42.0723 0x119c  [ D8874711B6C3DD308F84E42BA6EFF179, A7E14D9A80D0F2A38568E99E34FFBE2430743523D6739C0251EE5E4E8BBB68CC ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:02:42.0731 0x119c  PptpMiniport - ok
19:02:42.0744 0x119c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
19:02:42.0758 0x119c  Processor - ok
19:02:42.0786 0x119c  [ 5CCDC5AECAC81371CCCB77F0556C757F, A7A195C20B7316BDA795B03A1166DAE1892F96F471FBD9595AAACBDF035F42B4 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:02:42.0834 0x119c  ProfSvc - ok
19:02:42.0846 0x119c  [ 6598EBC4D209318EBD81F76833ECBEDB, A941E8FD33962F69722A007E946AA36B0A52C3913958C700404D21E09D331D9E ] ProtectedStorage C:\Windows\system32\lsass.exe
19:02:42.0854 0x119c  ProtectedStorage - ok
19:02:42.0895 0x119c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:02:42.0923 0x119c  Psched - ok
19:02:42.0971 0x119c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
19:02:42.0997 0x119c  ql2300 - ok
19:02:43.0022 0x119c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
19:02:43.0029 0x119c  ql40xx - ok
19:02:43.0045 0x119c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
19:02:43.0059 0x119c  QWAVE - ok
19:02:43.0085 0x119c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:02:43.0095 0x119c  QWAVEdrv - ok
19:02:43.0112 0x119c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:02:43.0131 0x119c  RasAcd - ok
19:02:43.0170 0x119c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:02:43.0189 0x119c  RasAgileVpn - ok
19:02:43.0219 0x119c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
19:02:43.0267 0x119c  RasAuto - ok
19:02:43.0271 0x119c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:02:43.0307 0x119c  Rasl2tp - ok
19:02:43.0335 0x119c  [ 8AB012D47B12630A72F56E26A1B5E63C, 404FCBA4561AAA50EB7F467B8303317153DC47B4FFB17F457E3FA20A4E74ED9D ] RasMan          C:\Windows\System32\rasmans.dll
19:02:43.0347 0x119c  RasMan - ok
19:02:43.0351 0x119c  [ 77682DE44B334E6AAFCD0ED61FB7404F, C95DF9113D8B777BC9CFE319A710C9293210377F531F0C38FA38C588B8A3F5B4 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:02:43.0358 0x119c  RasPppoe - ok
19:02:43.0388 0x119c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:02:43.0425 0x119c  RasSstp - ok
19:02:43.0456 0x119c  [ DB854D79B792CBDD51F3072B44D724F0, 0FF84D8ECE098C28596B77F71582BC362FB23C671922544F847B659D52B9F8A9 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:02:43.0495 0x119c  rdbss - ok
19:02:43.0527 0x119c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
19:02:43.0545 0x119c  rdpbus - ok
19:02:43.0571 0x119c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:02:43.0590 0x119c  RDPCDD - ok
19:02:43.0615 0x119c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:02:43.0646 0x119c  RDPENCDD - ok
19:02:43.0649 0x119c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:02:43.0677 0x119c  RDPREFMP - ok
19:02:43.0698 0x119c  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:02:43.0709 0x119c  RDPWD - ok
19:02:43.0735 0x119c  [ 9500266AFA2548D2812DC59D8C1D7BD3, 25FFD440B02D7D651B57133D94C95EB526F7189F3329060D004F28BA179BF89F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:02:43.0743 0x119c  rdyboost - ok
19:02:43.0766 0x119c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:02:43.0774 0x119c  RemoteAccess - ok
19:02:43.0796 0x119c  [ 44A031C50D6E8077A034D59E094AB1E2, 7C03954A82C15B14D9160C2E8675A82A47E1C34E0D731CE5A4DED795CF873EED ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:02:43.0806 0x119c  RemoteRegistry - ok
19:02:43.0812 0x119c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:02:43.0832 0x119c  RpcEptMapper - ok
19:02:43.0838 0x119c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
19:02:43.0846 0x119c  RpcLocator - ok
19:02:43.0862 0x119c  [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] RpcSs           C:\Windows\system32\rpcss.dll
19:02:43.0877 0x119c  RpcSs - ok
19:02:43.0900 0x119c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:02:43.0925 0x119c  rspndr - ok
19:02:43.0953 0x119c  [ AC4CA62572CA516945AB92D6C9F501F4, 6CB4178DD1ED3D8224EA1F91CAA00AFBC756DCA2DFD71F399B05E511E79D5150 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
19:02:43.0969 0x119c  RTL8167 - ok
19:02:43.0979 0x119c  [ 6598EBC4D209318EBD81F76833ECBEDB, A941E8FD33962F69722A007E946AA36B0A52C3913958C700404D21E09D331D9E ] SamSs           C:\Windows\system32\lsass.exe
19:02:43.0987 0x119c  SamSs - ok
19:02:44.0012 0x119c  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
19:02:44.0017 0x119c  SASDIFSV - ok
19:02:44.0027 0x119c  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
19:02:44.0031 0x119c  SASKUTIL - ok
19:02:44.0041 0x119c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:02:44.0047 0x119c  sbp2port - ok
19:02:44.0072 0x119c  [ D499F5678EAA373A3AADC27099FDB3F2, 6A497D40D81D8AECF3214399BA43B29D64048AC7145715205DF148277F39C60F ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:02:44.0091 0x119c  SCardSvr - ok
19:02:44.0103 0x119c  [ 6C89B679B02EB9B0BEC6CFBD4CF0B661, 3D6073E10DCD97A0849C44DBE550853F6ABA21E9DF585E98F68AA2DFB8740845 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:02:44.0109 0x119c  scfilter - ok
19:02:44.0135 0x119c  [ 71DC215E28157761DE3A9F9CA418B238, A443DB5DB2768459F7A702784F419564DC268511A71DCC13BDCEA6FA280D06DF ] Schedule        C:\Windows\system32\schedsvc.dll
19:02:44.0160 0x119c  Schedule - ok
19:02:44.0178 0x119c  [ 07EE502550B85828B5F9B22AE2857A68, 172ED99E403A0359F4BAE8BB33238FA78051D91E0114249EA9428737D1357571 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:02:44.0185 0x119c  SCPolicySvc - ok
19:02:44.0196 0x119c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:02:44.0217 0x119c  SDRSVC - ok
19:02:44.0240 0x119c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:02:44.0270 0x119c  secdrv - ok
19:02:44.0277 0x119c  [ EA764FF72CD57F69B6E1E1A4F713708C, C2C5E268297F00B7263635C0D296D3F76B5E09BAE6E33B0E350CDBC9C0A1FD9A ] seclogon        C:\Windows\system32\seclogon.dll
19:02:44.0293 0x119c  seclogon - ok
19:02:44.0312 0x119c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
19:02:44.0333 0x119c  SENS - ok
19:02:44.0353 0x119c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:02:44.0364 0x119c  SensrSvc - ok
19:02:44.0380 0x119c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
19:02:44.0394 0x119c  Serenum - ok
19:02:44.0413 0x119c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
19:02:44.0432 0x119c  Serial - ok
19:02:44.0454 0x119c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
19:02:44.0468 0x119c  sermouse - ok
19:02:44.0485 0x119c  [ F8F5016A8021390DFAF8782687B4F226, BF51874E3448F2800DCC74BDDCFD86D55C95B4B076DFAE61DD821A440BB0405E ] SessionEnv      C:\Windows\system32\sessenv.dll
19:02:44.0495 0x119c  SessionEnv - ok
19:02:44.0504 0x119c  [ C3D57658C34C68DB5D8970A1CF96284E, 4227C4AFDA94FB87FDB6642FB345209809EB86EC8F02DB79502AE54EF4A98A4B ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:02:44.0510 0x119c  sffdisk - ok
19:02:44.0520 0x119c  [ 21EACBEFFFB0FB4999D3D10245CF10A5, 46EFD8D61FE7CB6C9BAA84B869558749CC394D15B425E1657CABA6EAE718D6CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:02:44.0527 0x119c  sffp_mmc - ok
19:02:44.0529 0x119c  [ AF660EA3039E8FE3C2051D7224C82F34, F559BF0492DBFFE877D04DF565265195794BEB92CCAC22E4665CD7BE42F8FA2B ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:02:44.0546 0x119c  sffp_sd - ok
19:02:44.0560 0x119c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
19:02:44.0577 0x119c  sfloppy - ok
19:02:44.0600 0x119c  [ 8944F9C62D18FD16B1114C48C1E3DB26, 7AAC831672DBD63A4B4C5E7AC89A3CCA08FED87E0ED5AFCBBB1345F28A8E4C76 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:02:44.0613 0x119c  SharedAccess - ok
19:02:44.0635 0x119c  [ EA9092F3DB26EDC7199AB64C9EF0D2D7, 2FD5AFD91CF50FEEE0E5C59590C471BE61470E1C0BF4DC3745B75739BB0769F3 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:02:44.0648 0x119c  ShellHWDetection - ok
19:02:44.0661 0x119c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
19:02:44.0667 0x119c  SiSRaid2 - ok
19:02:44.0674 0x119c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:02:44.0680 0x119c  SiSRaid4 - ok
19:02:44.0700 0x119c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:02:44.0725 0x119c  Smb - ok
19:02:44.0745 0x119c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:02:44.0752 0x119c  SNMPTRAP - ok
19:02:44.0758 0x119c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:02:44.0763 0x119c  spldr - ok
19:02:44.0782 0x119c  [ B98780FA7839BB6B14823C56A7BDA35C, 7EF79A807DE9940A93BDE9E18CD83940773BCA26CA68646C76BC2F96B6DC2E5B ] Spooler         C:\Windows\System32\spoolsv.exe
19:02:44.0802 0x119c  Spooler - ok
19:02:44.0874 0x119c  [ 53952A2A89985D1A3486F9FC661BA538, 181F0195F3DD6E0ECB0976A3BA8C2BDD9D8542D4BFFB856995E990E73D6CFCA6 ] sppsvc          C:\Windows\system32\sppsvc.exe
19:02:44.0942 0x119c  sppsvc - ok
19:02:44.0956 0x119c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:02:44.0981 0x119c  sppuinotify - ok
19:02:44.0999 0x119c  [ 20735E269DF367C76EF02DDE9C3FA477, 0D794D191A74406CCD62DCC270F9350981EE935488C61ADF168E98A712EE42B6 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:02:45.0013 0x119c  srv - ok
19:02:45.0021 0x119c  [ 961689D48702EB998A08E6CAB105AEC7, E47626F7C0AE63B8B72C797E4F5DCD135C3988E8814374EF9D401DA15A0CC873 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:02:45.0034 0x119c  srv2 - ok
19:02:45.0058 0x119c  [ 896BEAAF23419696E73469DC207B4D26, 96A1457EF40665A01203DEC0B94AF52D1D22614B29AB7C7B195C89D74AEA87E1 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:02:45.0066 0x119c  srvnet - ok
19:02:45.0099 0x119c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:02:45.0132 0x119c  SSDPSRV - ok
19:02:45.0161 0x119c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:02:45.0181 0x119c  SstpSvc - ok
19:02:45.0235 0x119c  [ CDA9313E34887A111B8309B55BCDCD82, AC070AA093B7013E4D1B29F4FAF9B469C3C261E4D3D1512B4F77CC609CBD1484 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:02:45.0245 0x119c  Stereo Service - ok
19:02:45.0286 0x119c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
19:02:45.0292 0x119c  stexstor - ok
19:02:45.0325 0x119c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
19:02:45.0345 0x119c  stisvc - ok
19:02:45.0365 0x119c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
19:02:45.0371 0x119c  swenum - ok
19:02:45.0400 0x119c  [ 5D967724564F7ACCEBAC3720CFE89C32, 3420E958DA13235968138E593BC190469F456059518B7524BDE9F6F1271679F2 ] swprv           C:\Windows\System32\swprv.dll
19:02:45.0420 0x119c  swprv - ok
19:02:45.0460 0x119c  [ 25E0900D1B452EDEB09B1F9B71195153, 96F47A96AA3510EBC67579806A679D82CF85709A1E041D026378E8F6DC0EB374 ] SysMain         C:\Windows\system32\sysmain.dll
19:02:45.0494 0x119c  SysMain - ok
19:02:45.0502 0x119c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:02:45.0522 0x119c  TabletInputService - ok
19:02:45.0537 0x119c  [ D583628BEAD52E4E78E5A8FA338D0E02, 15D69565A824ACDB5F25903351CB9427605CB41E2BD8828D190E09D20007241C ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:02:45.0556 0x119c  TapiSrv - ok
19:02:45.0569 0x119c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
19:02:45.0589 0x119c  TBS - ok
19:02:45.0643 0x119c  [ 4F80944B03112F486212DC20BE166079, B4C1AF42E450A280C8018EF123555F4E3FD943BDC14E4ECD0AB72BB40C22AF94 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:02:45.0674 0x119c  Tcpip - ok
19:02:45.0712 0x119c  [ 4F80944B03112F486212DC20BE166079, B4C1AF42E450A280C8018EF123555F4E3FD943BDC14E4ECD0AB72BB40C22AF94 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:02:45.0743 0x119c  TCPIP6 - ok
19:02:45.0765 0x119c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:02:45.0772 0x119c  tcpipreg - ok
19:02:45.0779 0x119c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:02:45.0786 0x119c  TDPIPE - ok
19:02:45.0793 0x119c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:02:45.0799 0x119c  TDTCP - ok
19:02:45.0806 0x119c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:02:45.0826 0x119c  tdx - ok
19:02:45.0829 0x119c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
19:02:45.0835 0x119c  TermDD - ok
19:02:45.0864 0x119c  [ 6A5B600AD0041E9AF564DE73B716F3D2, D6426A63D8EED6E1630E639F489B096E3A1BE5178561F20B3CB8B1289FF9227A ] TermService     C:\Windows\System32\termsrv.dll
19:02:45.0886 0x119c  TermService - ok
19:02:45.0904 0x119c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
19:02:45.0915 0x119c  Themes - ok
19:02:45.0933 0x119c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
19:02:45.0953 0x119c  THREADORDER - ok
19:02:45.0964 0x119c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
19:02:45.0984 0x119c  TrkWks - ok
19:02:46.0024 0x119c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:02:46.0044 0x119c  TrustedInstaller - ok
19:02:46.0066 0x119c  [ 2CE1083C5A2D9BA5FFAD087F997EE25C, 1293A1B4D98A800A16BCD3ED52EA8AB429259FC16F9B6D3A0CAAEE7C7BE57DF7 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:02:46.0072 0x119c  tssecsrv - ok
19:02:46.0093 0x119c  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:02:46.0101 0x119c  TsUsbFlt - ok
19:02:46.0112 0x119c  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
19:02:46.0126 0x119c  TsUsbGD - ok
19:02:46.0219 0x119c  [ 2F18B7F32A8BE677AC494C08B5CA7E45, 26C858BDC34936CCE0FBA67D96677425A9E68DC35D2212994EA18F70EB2C4178 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
19:02:46.0335 0x119c  TuneUp.UtilitiesSvc - ok
19:02:46.0386 0x119c  [ 45427C4B8CAC6B241478F149B935CD80, 7F772D6D00D1ADD394F5907804661C75780EE9F8DF21EF0719D3E4ABA00092B7 ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
19:02:46.0392 0x119c  TuneUpUtilitiesDrv - ok
19:02:46.0421 0x119c  [ A9EFA7F181D82632CDEDEEBC99FA0A41, 2F775A9382CD899B4360B9E61563F47F3DAA14FEDB204865705747437B211D6C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:02:46.0430 0x119c  tunnel - ok
19:02:46.0436 0x119c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
19:02:46.0443 0x119c  uagp35 - ok
19:02:46.0454 0x119c  [ 992DCA93480DBF9EF103A7350C5B360E, A97739B3299EBA2043E1593C211F3AEFFA2258D8D8F0643FF3E7A6893DFC86AA ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:02:46.0467 0x119c  udfs - ok
19:02:46.0486 0x119c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:02:46.0501 0x119c  UI0Detect - ok
19:02:46.0512 0x119c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:02:46.0518 0x119c  uliagpkx - ok
19:02:46.0533 0x119c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:02:46.0548 0x119c  umbus - ok
19:02:46.0560 0x119c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
19:02:46.0579 0x119c  UmPass - ok
19:02:46.0592 0x119c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
19:02:46.0622 0x119c  upnphost - ok
19:02:46.0643 0x119c  [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:02:46.0651 0x119c  usbccgp - ok
19:02:46.0658 0x119c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:02:46.0667 0x119c  usbcir - ok
19:02:46.0679 0x119c  [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
19:02:46.0697 0x119c  usbehci - ok
19:02:46.0724 0x119c  [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:02:46.0749 0x119c  usbhub - ok
19:02:46.0763 0x119c  [ 2E48D2104D0E58B224F14BBAE3741027, 0ED458A9EA80630EBFBE336FBC468A3A5BB18C478C096D38DDBAAC81C1AF0BA3 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:02:46.0770 0x119c  usbohci - ok
19:02:46.0780 0x119c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
19:02:46.0801 0x119c  usbprint - ok
19:02:46.0812 0x119c  [ ED08C252A0041F8FC0237BAB585BABDC, DF5948BCD5CEB5B69E1A0096465C069E233DB81F5524D7364FF3FCD1E5B28880 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:02:46.0820 0x119c  USBSTOR - ok
19:02:46.0828 0x119c  [ 3DB5C26BDA80B5A3B8A8117E922A5055, 49842BA08A3E7094EE8EA599E6ECFE4998188213DA938206C47DA77E76271FDB ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
19:02:46.0836 0x119c  usbuhci - ok
19:02:46.0851 0x119c  [ 81D8645AC588E7A6D9755D8FD84E6FDD, 0D6904CF522CD822AE106259D46BC161F56E3992FEA6F1DF70EDC5BFA2247F5E ] UxSms           C:\Windows\System32\uxsms.dll
19:02:46.0868 0x119c  UxSms - ok
19:02:46.0879 0x119c  [ 6598EBC4D209318EBD81F76833ECBEDB, A941E8FD33962F69722A007E946AA36B0A52C3913958C700404D21E09D331D9E ] VaultSvc        C:\Windows\system32\lsass.exe
19:02:46.0886 0x119c  VaultSvc - ok
19:02:46.0910 0x119c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:02:46.0916 0x119c  vdrvroot - ok
19:02:46.0930 0x119c  [ 44082C4A89ABDAC0C4B08AA8834270B4, C312E144AC4E5475506EBC62CC5D0529B256771C1FA2D709228D3F6BFEB55DED ] vds             C:\Windows\System32\vds.exe
19:02:46.0959 0x119c  vds - ok
19:02:46.0973 0x119c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:02:46.0982 0x119c  vga - ok
19:02:46.0995 0x119c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:02:47.0022 0x119c  VgaSave - ok
19:02:47.0032 0x119c  [ 2E9907E787CDAFA2AAA7F928853B7142, 29F30D60BBE5909D4DB569D52ADC7677CA94831B6E5CB25927386CC24CCCE898 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:02:47.0040 0x119c  vhdmp - ok
19:02:47.0057 0x119c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:02:47.0062 0x119c  viaide - ok
19:02:47.0071 0x119c  [ B7962BD45492837173E0EF274E691C1F, 6845F94E6345888714206072229035C0E93BA6E8B4EACFA8C479474B5FF1AA88 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:02:47.0077 0x119c  volmgr - ok
19:02:47.0083 0x119c  [ 0904EF550B3D3FEB326638A4BAD9937E, 462FA11F260C420756DBD989CB505EEB9A286B9EEB826EB2935C119C839EDC8E ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:02:47.0093 0x119c  volmgrx - ok
19:02:47.0109 0x119c  [ DF83AA1C4278E2C0E36C0479C1555A9C, EA082BE4E38E22FD0C7D0A98DC227E2E33C0D87964D87276A2F56044656CD6F0 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:02:47.0117 0x119c  volsnap - ok
19:02:47.0135 0x119c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:02:47.0143 0x119c  vsmraid - ok
19:02:47.0185 0x119c  [ 9A11A37C0519E42587CED5E5941FA17D, 3A6518C9DF6B0A6EDB37FD148A68523A2EE4561B4F49B55707026343B301F2F7 ] VSS             C:\Windows\system32\vssvc.exe
19:02:47.0227 0x119c  VSS - ok
19:02:47.0240 0x119c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
19:02:47.0246 0x119c  vwifibus - ok
19:02:47.0261 0x119c  [ C7B83BD98BA3560374569C0C13EA3685, 68C05B99D6035568E2470FE7E73167AF584CC721F76E02CA1470CA5E1E341607 ] W32Time         C:\Windows\system32\w32time.dll
19:02:47.0282 0x119c  W32Time - ok
19:02:47.0305 0x119c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
19:02:47.0324 0x119c  WacomPen - ok
19:02:47.0344 0x119c  [ 226028D956C43CE4D8DDFFA89873E890, F1208BAF5041595981CC6E2EB36D7E9487A4BFA4B895337C21135CED6B375936 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:02:47.0352 0x119c  WANARP - ok
19:02:47.0354 0x119c  [ 226028D956C43CE4D8DDFFA89873E890, F1208BAF5041595981CC6E2EB36D7E9487A4BFA4B895337C21135CED6B375936 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:02:47.0361 0x119c  Wanarpv6 - ok
19:02:47.0401 0x119c  [ F91B8969183F3461BD3D3438052AEAD0, 8AC901D5CF209479DBE1DD0D7BB084848796E0659C134998F82CDFC6EC7059E7 ] wbengine        C:\Windows\system32\wbengine.exe
19:02:47.0434 0x119c  wbengine - ok
19:02:47.0448 0x119c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:02:47.0461 0x119c  WbioSrvc - ok
19:02:47.0471 0x119c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:02:47.0500 0x119c  wcncsvc - ok
19:02:47.0522 0x119c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:02:47.0541 0x119c  WcsPlugInService - ok
19:02:47.0565 0x119c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
19:02:47.0571 0x119c  Wd - ok
19:02:47.0600 0x119c  [ 37CE6867FC4A6827009A713A9737262C, D8890524F4EF358E35C4A992BEAF7C8FB5ED647FE4D899D3CF608C2201E218A5 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:02:47.0617 0x119c  Wdf01000 - ok
19:02:47.0631 0x119c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:02:47.0653 0x119c  WdiServiceHost - ok
19:02:47.0656 0x119c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:02:47.0667 0x119c  WdiSystemHost - ok
19:02:47.0680 0x119c  [ 1BABAABCB29B03CFA7BC30833963398E, A354415572EEEB6FD7847F0FAF07BB7772E761EA485CFF3FE7837706515E85A0 ] WebClient       C:\Windows\System32\webclnt.dll
19:02:47.0700 0x119c  WebClient - ok
19:02:47.0728 0x119c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:02:47.0751 0x119c  Wecsvc - ok
19:02:47.0763 0x119c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:02:47.0784 0x119c  wercplsupport - ok
19:02:47.0794 0x119c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:02:47.0822 0x119c  WerSvc - ok
19:02:47.0851 0x119c  [ 009604986BAE004733728282BD98BB03, CE82EA41E6CC1EF2D11BFB2761105C422EA9A146FF52034C4A2221A4B5FD3940 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:02:47.0857 0x119c  WfpLwf - ok
19:02:47.0868 0x119c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:02:47.0873 0x119c  WIMMount - ok
19:02:47.0885 0x119c  WinDefend - ok
19:02:47.0895 0x119c  WinHttpAutoProxySvc - ok
19:02:47.0936 0x119c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:02:47.0958 0x119c  Winmgmt - ok
19:02:48.0006 0x119c  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
19:02:48.0059 0x119c  WinRM - ok
19:02:48.0095 0x119c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
19:02:48.0112 0x119c  WinUsb - ok
19:02:48.0145 0x119c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:02:48.0175 0x119c  Wlansvc - ok
19:02:48.0185 0x119c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
19:02:48.0200 0x119c  WmiAcpi - ok
19:02:48.0214 0x119c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:02:48.0230 0x119c  wmiApSrv - ok
19:02:48.0243 0x119c  WMPNetworkSvc - ok
19:02:48.0255 0x119c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:02:48.0263 0x119c  WPCSvc - ok
19:02:48.0274 0x119c  [ 40E549091F6BA713114B85159BFC6993, E37255A374A0CF31087A1E0535ED6BC32B8848B084A1626A0AC4F2BAA376FB36 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:02:48.0283 0x119c  WPDBusEnum - ok
19:02:48.0305 0x119c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:02:48.0323 0x119c  ws2ifsl - ok
19:02:48.0338 0x119c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
19:02:48.0359 0x119c  wscsvc - ok
19:02:48.0361 0x119c  WSearch - ok
19:02:48.0416 0x119c  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:02:48.0455 0x119c  wuauserv - ok
19:02:48.0472 0x119c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:02:48.0479 0x119c  WudfPf - ok
19:02:48.0498 0x119c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:02:48.0514 0x119c  WUDFRd - ok
19:02:48.0535 0x119c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:02:48.0543 0x119c  wudfsvc - ok
19:02:48.0574 0x119c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:02:48.0594 0x119c  WwanSvc - ok
19:02:48.0609 0x119c  xhunter1 - ok
19:02:48.0611 0x119c  ================ Scan global ===============================
19:02:48.0633 0x119c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
19:02:48.0662 0x119c  [ BDADDE9AD8DD2BF67426C23A8874D776, CD8EE0EB9370F70340580C271CEA4CF6B4C91D5670999740F628EAE721FF8879 ] C:\Windows\system32\winsrv.dll
19:02:48.0669 0x119c  [ BDADDE9AD8DD2BF67426C23A8874D776, CD8EE0EB9370F70340580C271CEA4CF6B4C91D5670999740F628EAE721FF8879 ] C:\Windows\system32\winsrv.dll
19:02:48.0699 0x119c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
19:02:48.0716 0x119c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
19:02:48.0720 0x119c  [ Global ] - ok
19:02:48.0720 0x119c  ================ Scan MBR ==================================
19:02:48.0733 0x119c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:02:48.0997 0x119c  \Device\Harddisk0\DR0 - ok
19:02:48.0997 0x119c  ================ Scan VBR ==================================
19:02:48.0999 0x119c  [ E045046BB4D564CE52082AC65B9EAC4C ] \Device\Harddisk0\DR0\Partition1
19:02:48.0999 0x119c  \Device\Harddisk0\DR0\Partition1 - ok
19:02:49.0001 0x119c  [ 5C02307A1A43E374A3009C9666DC949A ] \Device\Harddisk0\DR0\Partition2
19:02:49.0002 0x119c  \Device\Harddisk0\DR0\Partition2 - ok
19:02:49.0003 0x119c  [ 2FE70A79A27FE0EB3F1DC9EAC76C1559 ] \Device\Harddisk0\DR0\Partition3
19:02:49.0004 0x119c  \Device\Harddisk0\DR0\Partition3 - ok
19:02:49.0006 0x119c  [ 0E61B6AE72B3553A1A85E014D161A3E3 ] \Device\Harddisk0\DR0\Partition4
19:02:49.0007 0x119c  \Device\Harddisk0\DR0\Partition4 - ok
19:02:49.0007 0x119c  ================ Scan generic autorun ======================
19:02:49.0336 0x119c  [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe
19:02:49.0362 0x119c  MSC - ok
19:02:49.0457 0x119c  [ 4A0477ADCD07EC9D21257A2E456B16C5, CEF9C81730C12283A7600C3D921D89A62B14D1C46544B493F3AF7520DD2D1F79 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
19:02:49.0503 0x119c  IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
19:02:49.0503 0x119c  IAStorIcon ( UnsignedFile.Multi.Generic ) - warning
19:02:49.0652 0x119c  [ 781BAF1C6935A5D60C7945B34313F2DE, 3EE92C8CDF56775DB18C459D04B8B39679334CEC83AF634C051906E33DA99C48 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
19:02:49.0754 0x119c  RTHDVCPL - ok
19:02:49.0834 0x119c  [ D6DBF46C5CAE0EEDA1DF1BD080D6FE3B, F93A5992B384B663F3A9D60BADA8E031A45B96A66C9AEA4B948563520DB69992 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
19:02:49.0931 0x119c  NvBackend - ok
19:02:49.0961 0x119c  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
19:02:49.0970 0x119c  ShadowPlay - ok
19:02:50.0017 0x119c  [ 796227FCA947A0B8E3D6A097B27F2363, F14B1F8CF253A27554D4C24228911355FA475AABF086B66A498E825E8E3CBFA5 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
19:02:50.0025 0x119c  USB3MON - ok
19:02:50.0080 0x119c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:02:50.0118 0x119c  Sidebar - ok
19:02:50.0139 0x119c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:02:50.0150 0x119c  mctadmin - ok
19:02:50.0166 0x119c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:02:50.0191 0x119c  Sidebar - ok
19:02:50.0195 0x119c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:02:50.0205 0x119c  mctadmin - ok
19:02:50.0348 0x119c  [ AB8A460FCEF1AFBFF25F35069795E521, 3F4F97FE5DAD758E58262C431498BEB136AA85929F2BEA9F47C56D805E1CC45F ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
19:02:51.0257 0x119c  SUPERAntiSpyware - ok
19:02:51.0263 0x119c  Waiting for KSN requests completion. In queue: 113
19:02:52.0263 0x119c  Waiting for KSN requests completion. In queue: 113
19:02:53.0263 0x119c  Waiting for KSN requests completion. In queue: 113
19:02:54.0263 0x119c  Waiting for KSN requests completion. In queue: 113
19:02:55.0263 0x119c  Waiting for KSN requests completion. In queue: 113
19:02:56.0263 0x119c  Waiting for KSN requests completion. In queue: 113
19:02:57.0263 0x119c  Waiting for KSN requests completion. In queue: 86
19:02:58.0263 0x119c  Waiting for KSN requests completion. In queue: 86
19:02:59.0263 0x119c  Waiting for KSN requests completion. In queue: 31
19:03:00.0263 0x119c  Waiting for KSN requests completion. In queue: 31
19:03:01.0263 0x119c  Waiting for KSN requests completion. In queue: 31
19:03:02.0263 0x119c  Waiting for KSN requests completion. In queue: 31
19:03:03.0271 0x119c  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
19:03:03.0301 0x119c  Win FW state via NFP2: enabled
19:03:03.0302 0x119c  ============================================================
19:03:03.0302 0x119c  Scan finished
19:03:03.0302 0x119c  ============================================================
19:03:03.0306 0x0e44  Detected object count: 2
19:03:03.0306 0x0e44  Actual detected object count: 2
19:03:48.0456 0x0e44  Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:48.0456 0x0e44  Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:03:48.0457 0x0e44  IAStorIcon ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:48.0457 0x0e44  IAStorIcon ( UnsignedFile.Multi.Generic ) - User select action: Skip

schrauber · 21.11.2014, 16:19

hi,

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

NosyTheCat · 05.12.2014, 20:22

Code:

ATTFilter

ComboFix 14-12-04.01 - Eiberger 05.12.2014  20:11:31.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.8143.5957 [GMT 1:00]
ausgeführt von:: c:\users\Eiberger\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
SP: Microsoft Security Essentials *Enabled/Updated* {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\ntuser.pol
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\KL3s0B0aRe.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\KL3s0B0aRe.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\background.html
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\content.js
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\KL3s0B0aRe.js
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\lsdb.js
c:\users\Eiberger\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\manifest.json
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\background.html
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\content.js
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\KL3s0B0aRe.js
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\lsdb.js
c:\users\Eiberger\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\manifest.json
c:\users\Eiberger\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Eiberger\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Eiberger\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Eiberger\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Eiberger\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Eiberger\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
c:\users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\extensions\BY@le3wT8U.edu
c:\users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\extensions\BY@le3wT8U.edu\bootstrap.js
c:\users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\extensions\BY@le3wT8U.edu\chrome.manifest
c:\users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\extensions\BY@le3wT8U.edu\content\bg.js
c:\users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\extensions\BY@le3wT8U.edu\install.rdf
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\background.html
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\content.js
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\KL3s0B0aRe.js
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\lsdb.js
c:\users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\manifest.json
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\background.html
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\content.js
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\KL3s0B0aRe.js
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\lsdb.js
c:\users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\glgnaooagkmoibgfgcmegfbadhogbndi\2.2\manifest.json
c:\users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp
c:\users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\background.html
c:\users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\content.js
c:\users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\lsdb.js
c:\users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\manifest.json
c:\users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkhfbcaagjlhapfghmeecdmggaenoofp\5.2\TC5kB.js
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-11-05 bis 2014-12-05  ))))))))))))))))))))))))))))))
.
.
2014-12-05 19:14 . 2014-12-05 19:14	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-12-05 19:08 . 2014-09-16 22:13	1188440	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D882FE7A-2656-4E24-8D25-D2FC94F7B6EF}\gapaengine.dll
2014-12-05 19:07 . 2014-11-02 04:20	11632448	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9E7336D9-7EB4-47B2-9AF2-6220102347DE}\mpengine.dll
2014-11-24 22:44 . 2014-09-16 22:13	1188440	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{296AA7FB-FC38-4A6A-9F0C-BB3AE458D232}\gapaengine.dll
2014-11-24 22:44 . 2014-11-02 04:20	11632448	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-11-18 19:55 . 2014-11-18 19:57	--------	d-----w-	C:\FRST
2014-11-18 19:09 . 2014-11-11 03:45	729600	----a-w-	c:\windows\system32\kerberos.dll
2014-11-18 19:09 . 2014-11-11 03:35	690688	----a-w-	c:\windows\system32\adtschema.dll
2014-11-18 19:09 . 2014-11-11 03:13	690688	----a-w-	c:\windows\SysWow64\adtschema.dll
2014-11-18 19:09 . 2014-11-11 03:45	463872	----a-w-	c:\windows\system32\certcli.dll
2014-11-18 19:09 . 2014-11-11 03:21	551424	----a-w-	c:\windows\SysWow64\kerberos.dll
2014-11-18 19:09 . 2014-11-11 03:21	342528	----a-w-	c:\windows\SysWow64\certcli.dll
2014-11-18 19:09 . 2014-11-11 03:08	241152	----a-w-	c:\windows\system32\pku2u.dll
2014-11-18 19:09 . 2014-11-11 02:44	186880	----a-w-	c:\windows\SysWow64\pku2u.dll
2014-11-15 11:53 . 2014-08-21 06:43	1882624	----a-w-	c:\windows\system32\msxml3.dll
2014-11-15 11:52 . 2014-10-09 06:49	3201536	----a-w-	c:\windows\system32\win32k.sys
2014-11-15 11:52 . 2014-10-14 02:16	3243008	----a-w-	c:\windows\system32\msi.dll
2014-11-15 11:52 . 2014-10-14 01:49	2364416	----a-w-	c:\windows\SysWow64\msi.dll
2014-11-15 11:47 . 2014-10-18 02:05	861696	----a-w-	c:\windows\system32\oleaut32.dll
2014-11-15 11:47 . 2014-10-18 01:33	571904	----a-w-	c:\windows\SysWow64\oleaut32.dll
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-11-15 13:31 . 2014-05-05 15:53	103374192	----a-w-	c:\windows\system32\MRT.exe
2014-11-15 12:54 . 2014-04-17 10:24	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-11-15 12:54 . 2014-04-17 10:24	701104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-11-04 21:20 . 2014-11-03 19:42	129752	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-10-30 11:25 . 2010-11-21 03:27	275080	------w-	c:\windows\system32\MpSigStub.exe
2014-10-17 11:34 . 2014-11-01 11:45	40248	----a-w-	c:\windows\system32\TURegOpt.exe
2014-10-17 11:34 . 2014-11-01 11:45	29496	----a-w-	c:\windows\system32\authuitu.dll
2014-10-17 11:34 . 2014-11-01 11:45	25400	----a-w-	c:\windows\SysWow64\authuitu.dll
2014-10-04 06:42 . 2014-10-25 09:32	1291280	----a-w-	c:\windows\SysWow64\nvspbridge.dll
2014-10-04 06:42 . 2014-04-17 10:40	2197680	----a-w-	c:\windows\SysWow64\nvspcap.dll
2014-10-04 06:41 . 2014-10-25 09:32	1715224	----a-w-	c:\windows\system32\nvspbridge64.dll
2014-10-04 06:41 . 2014-04-17 10:40	2800296	----a-w-	c:\windows\system32\nvspcap64.dll
2014-10-01 10:11 . 2014-11-03 19:42	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2014-10-01 10:11 . 2014-11-03 19:42	93400	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2014-10-01 10:11 . 2014-11-03 19:42	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
2014-09-25 02:08 . 2014-09-30 17:25	371712	----a-w-	c:\windows\system32\qdvd.dll
2014-09-25 01:40 . 2014-09-30 17:25	519680	----a-w-	c:\windows\SysWow64\qdvd.dll
2014-09-18 21:32 . 2014-10-20 18:02	112568	----a-w-	c:\windows\system32\consent.exe
2014-09-18 21:29 . 2014-10-20 18:02	1942016	----a-w-	c:\windows\system32\authui.dll
2014-09-18 01:43 . 2014-10-20 18:02	337408	----a-w-	c:\windows\SysWow64\msihnd.dll
2014-09-18 01:43 . 2014-10-20 18:02	1806848	----a-w-	c:\windows\SysWow64\authui.dll
2014-09-16 22:13 . 2014-05-02 09:39	1188440	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-09-11 03:47 . 2014-10-20 18:01	249344	----a-w-	c:\windows\system32\wksprt.exe
2014-09-09 22:18 . 2014-09-24 18:19	2048	----a-w-	c:\windows\system32\tzres.dll
2014-09-09 21:49 . 2014-09-24 18:19	2048	----a-w-	c:\windows\SysWow64\tzres.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2014-10-01 7767832]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-02-22 292088]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
ISCTSystray.lnk - c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2013-8-1 5545448]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 0 (0x0)
"EnableInstallerDetection"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MaintainerSvc4.19.7305058;MaintainerSvc4.19.7305058;c:\programdata\369116b8-dbeb-4541-87d3-4725ded56029\maintainer.exe;c:\programdata\369116b8-dbeb-4541-87d3-4725ded56029\maintainer.exe [x]
R3 GPU-Z;GPU-Z;c:\users\Eiberger\AppData\Local\Temp\GPU-Z.sys;c:\users\Eiberger\AppData\Local\Temp\GPU-Z.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 xhunter1;xhunter1;c:\windows\xhunter1.sys;c:\windows\xhunter1.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 ISCTAgent;Intel(R) Smart Connect Technology Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe ;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe  [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys;c:\windows\SYSNATIVE\DRIVERS\ikbevent.sys [x]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys;c:\windows\SYSNATIVE\DRIVERS\imsevent.sys [x]
S3 INETMON;INETMON;c:\windows\System32\Drivers\INETMON.sys;c:\windows\SYSNATIVE\Drivers\INETMON.sys [x]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2014-11-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-17 12:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-08-22 1331288]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-08-07 36352]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-12-06 7506136]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-10-04 2463552]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-10-04 2800296]
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
mSearch Bar = hxxp://www.google.com
uSearchAssistant = hxxp://www.google.com
uSearchURL,(Default) = hxxp://www.google.com/
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Eiberger\AppData\Roaming\Mozilla\Firefox\Profiles\2zyxy5pl.default\
FF - prefs.js: browser.startup.homepage - www.google.de
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_223_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_223_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_223_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_223_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_223.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_223.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_223.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_223.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-12-05  20:16:06
ComboFix-quarantined-files.txt  2014-12-05 19:16
.
Vor Suchlauf: 8 Verzeichnis(se), 86.785.208.320 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 86.254.161.920 Bytes frei
.
- - End Of File - - 254E15D79E9B69CF727F2BD159890278
A36C5E4F47E84449FF07ED3517B43A31

schrauber · 06.12.2014, 16:33

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Java bringt ständig Information für neues Update

Plagegeister aller Art und deren Bekämpfung: Java bringt ständig Information für neues Update