explorer / firefox antwortet nicht ... gehäuft

elagtric · 20.11.2014, 12:56

hallo community,

hab seit ca 1 woche das probem, dass beim "surfen" teils urige wartezeiten entstehen und nach (resigniertem) schliessen des fensters mittig (sinngemäss) ein "explorer antwortet nicht. abbrechen oder problemlösung suchen" auftaucht. teilweise muss ich das fenster teilweise 5 mal wegklicken.

installiert hab ich ein älteres vista mit avast als scanner, der vor ca. 2 wochen ein infiziertes "whservice" fand, danach aber erstmal wieder ruhe war. aktuelle "startzeit-scans" bringen keinerlei funde.

hab mir im überschwang zwar den aktuellen mbam downloadet, würde mich aber gerne auf die professionelle heranhehensweise hier verlassen und nicht voreilig den sturm im wasserglas lostreten. hab gelernt, dass es mitunter wirklich an der richtigen strategie liegt ...

interessanterweise meldet mir sogar meine bevorzugte suchmaschine "metager" des öfteren per fehlermeldung, dass ich aufgrund zuvieler anfragen die suchzeit erhöhen sollte. hatte mit der metager noch nie probleme, bin deshalb etwas verunsichert.

mag sich jemand meinereiner annehmen ?

mfg, thomas

schrauber · 20.11.2014, 13:00

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

elagtric · 20.11.2014, 13:31

Zitat:

Zitat von schrauber

hi,
FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-11-2014
Ran by chef (administrator) on WOPR on 20-11-2014 13:22:03
Running from C:\Users\chef\Downloads
Loaded Profile: chef (Available profiles: chef & alle anderen & Sven)
Platform: Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files\GNU\GnuPG\dirmngr.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(Realtek) C:\Program Files\oem\11n USB Wireless LAN Utility\RtlService.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor Corp.) C:\Program Files\oem\11n USB Wireless LAN Utility\RtWLan.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Ruiware LLC) C:\Program Files\Ruiware\WinPatrol\WinPatrol.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Mozilla Corporation) C:\Program Files\mama\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\chef\Downloads\FRST(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [3825176 2012-11-13] (Safer-Networking Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-08-08] (AVAST Software)
HKU\S-1-5-21-1461220110-1976370169-1414792120-1000\...\Run: [ccleaner] => C:\Program Files\CCleaner\CCleaner.exe [4324120 2013-11-22] (Piriform Ltd)
HKU\S-1-5-21-1461220110-1976370169-1414792120-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3713032 2012-11-13] (Safer-Networking Ltd.)
HKU\S-1-5-21-1461220110-1976370169-1414792120-1000\...\Run: [WinPatrol] => C:\Program Files\Ruiware\WinPatrol\winpatrol.exe [1154112 2014-07-21] (Ruiware LLC)
HKU\S-1-5-21-1461220110-1976370169-1414792120-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1461220110-1976370169-1414792120-1000\...\Policies\Explorer: [DisallowRun] 1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1461220110-1976370169-1414792120-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-1461220110-1976370169-1414792120-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
HKU\S-1-5-21-1461220110-1976370169-1414792120-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.giga.de/androidnews/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E62696E672E636F6D2F7365617263683F713D7B7365617263685465726D737D267372633D49452D536561726368426F7826464F524D3D494538535243&st={searchTerms}&clid=0f8a6cfe-902a-4c11-8265-9538cb8a19a4&pid=proxtubede&k=0
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {2C93367C-BA9A-4CA2-B582-4B61404C765D} URL = http://www.myvideo.de.anonymize-me.de/?to=6D79766964656F2E6465&st={searchTerms}&clid=0f8a6cfe-902a-4c11-8265-9538cb8a19a4&pid=proxtubede&mode=bounce&k=0
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {411EA882-929B-449F-9C65-7CEDED8DEDFE} URL = http://de.wikipedia.org.anonymize-me.de/?to=64652E77696B6970656469612E6F7267&st={searchTerms}&clid=0f8a6cfe-902a-4c11-8265-9538cb8a19a4&pid=proxtubede&mode=bounce&k=0
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.bing.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E62696E672E636F6D2F7365617263683F713D7B7365617263685465726D737D26464F524D3D494538535243&st={searchTerms}&clid=0f8a6cfe-902a-4c11-8265-9538cb8a19a4&pid=proxtubede&k=0
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {6BF147B5-7A30-4782-B5B9-8C0AA3632EC8} URL = http://search.ebay.de.anonymize-me.de/?to=656261792E6465&st={searchTerms}&clid=0f8a6cfe-902a-4c11-8265-9538cb8a19a4&pid=proxtubede&mode=bounce&k=0
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {80E424A2-185B-4FAE-BA5E-37FBF8B2D48B} URL = http://www.otto.de.anonymize-me.de/?to=6F74746F2E6465&st={searchTerms}&clid=0f8a6cfe-902a-4c11-8265-9538cb8a19a4&pid=proxtubede&mode=bounce&k=0
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {97132A2A-367E-4E5A-9D73-CB11EA3ECCD8} URL = http://www.pricerunner.de.anonymize-me.de/?to=707269636572756E6E65722E6465&st={searchTerms}&clid=0f8a6cfe-902a-4c11-8265-9538cb8a19a4&pid=proxtubede&mode=bounce&k=0
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1461220110-1976370169-1414792120-1000 -> {CC2AE24D-3E94-4B16-8A85-7B52A831737B} URL = http://www.amazon.de.anonymize-me.de/?to=616D617A6F6E2E6465&st={searchTerms}&clid=0f8a6cfe-902a-4c11-8265-9538cb8a19a4&pid=proxtubede&mode=bounce&k=0
BHO: No Name -> {0025320D-4D37-4C73-9A5C-0C28F04068A3} -> C:\Users\chef\AppData\LocalLow\IE-BHO\bho.dll ()
BHO: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\chef\AppData\Roaming\Mozilla\Firefox\Profiles\hu9w8ya7.default
FF Homepage: metager.de
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF -> C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @videolan.org/vlc,version=2.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF user.js: detected! => C:\Users\chef\AppData\Roaming\Mozilla\Firefox\Profiles\hu9w8ya7.default\user.js
FF Extension: Ghostery - C:\Users\chef\AppData\Roaming\Mozilla\Firefox\Profiles\hu9w8ya7.default\Extensions\firefox@ghostery.com.xpi [2014-03-21]
FF Extension: TrackMeNot - C:\Users\chef\AppData\Roaming\Mozilla\Firefox\Profiles\hu9w8ya7.default\Extensions\trackmenot@mrl.nyu.edu.xpi [2014-03-21]
FF Extension: Walnut for Firefox - C:\Users\chef\AppData\Roaming\Mozilla\Firefox\Profiles\hu9w8ya7.default\Extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi [2014-05-11]
FF Extension: NoScript - C:\Users\chef\AppData\Roaming\Mozilla\Firefox\Profiles\hu9w8ya7.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-03-21]
FF Extension: Adblock Plus - C:\Users\chef\AppData\Roaming\Mozilla\Firefox\Profiles\hu9w8ya7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-21]
FF Extension: BetterPrivacy - C:\Users\chef\AppData\Roaming\Mozilla\Firefox\Profiles\hu9w8ya7.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2014-03-21]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-03-19]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\mama\Mozilla Firefox\firefox.exe

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [aakchaleigkohafkfjfjbblobjifikek] - C:\Users\chef\AppData\LocalLow\proxtube\CHROME\proxtube.crx [2012-04-19]
CHR HKLM\...\Chrome\Extension: [aelagkdenjbofboohaniobdlpgiefdcd] - C:\Users\chef\ChromeExtensions\aelagkdenjbofboohaniobdlpgiefdcd\amazon-icon-swde.crx [2014-10-26]
CHR HKLM\...\Chrome\Extension: [cfigonhgidedenkkhlilmefgodjpefna] - C:\Users\chef\AppData\Local\CRE\cfigonhgidedenkkhlilmefgodjpefna.crx [2014-10-26]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-26]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-12-19] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-26] (AVAST Software)
R2 DirMngr; C:\Program Files\GNU\GnuPG\dirmngr.exe [216576 2014-09-03] () [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2013-03-26] (Nitro PDF Software)
R2 RealtekCU; C:\Program Files\oem\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [File not signed]
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-04-26] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-04-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [54832 2014-05-15] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-04-26] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777488 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411680 2014-05-15] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57672 2014-04-26] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-04-26] ()
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdLH3.sys [83984 2012-02-23] (Advanced Micro Devices)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-11-05] (Disc Soft Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [864360 2011-09-06] (Realtek Semiconductor Corporation                           )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-11-05] (Duplex Secure Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-18] (Microsoft Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 catchme; \??\C:\Users\chef\AppData\Local\Temp\catchme.sys [X]
S1 gfjnxobt; \??\C:\Windows\system32\drivers\gfjnxobt.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NANMp50; System32\Drivers\NANMp50.sys [X]
S3 NANSp50; System32\Drivers\NANSp50.sys [X]
S3 netr28u; system32\DRIVERS\netr28u.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 RTL8192su; system32\DRIVERS\RTL8192su.sys [X]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP3\WNt500x86\Sandra.sys [X]
S1 vdrv1000; system32\DRIVERS\vdrv1000.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-20 13:21 - 2014-11-20 13:21 - 01108992 _____ (Farbar) C:\Users\chef\Downloads\FRST(1).exe
2014-11-20 12:33 - 2014-11-20 12:34 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-20 12:33 - 2014-11-20 12:33 - 00000899 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-11-20 12:33 - 2014-11-20 12:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-11-20 12:33 - 2014-11-20 12:33 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-11-20 12:33 - 2014-10-01 11:11 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-20 12:30 - 2014-11-20 12:32 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\chef\Downloads\mbam-setup-2.0.3.1025.exe
2014-11-20 10:40 - 2014-11-20 10:40 - 00000022 _____ () C:\Windows\S.dirmngr
2014-11-20 07:50 - 2014-11-20 12:06 - 00054183 ____N () C:\Windows\WindowsUpdate.log
2014-11-16 11:36 - 2014-11-19 07:42 - 00002429 _____ () C:\Users\chef\Desktop\Corel Painter IX.lnk
2014-11-16 11:35 - 2014-11-16 11:35 - 00000000 ____D () C:\Users\chef\AppData\Roaming\Corel
2014-11-16 11:34 - 2014-11-16 11:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel Painter IX
2014-11-16 11:33 - 2014-11-16 11:33 - 00000000 ____D () C:\Program Files\Corel
2014-11-16 11:19 - 2014-11-16 11:30 - 111959992 _____ (Corel Corporation ) C:\Users\chef\Downloads\CorelPainterIX.5TBYBEN.exe
2014-11-15 06:55 - 2014-11-15 06:56 - 01826500 _____ () C:\Users\chef\Downloads\heroquest-2-08i-en-win.zip
2014-11-15 06:42 - 2014-11-15 06:50 - 00000000 ____D () C:\Users\chef\Downloads\hqo092
2014-11-15 06:41 - 2014-11-15 06:41 - 00000000 ____D () C:\Program Files\hq
2014-11-15 06:36 - 2014-11-15 06:37 - 11482171 _____ () C:\Users\chef\Downloads\hqo092.zip
2014-11-12 13:20 - 2014-10-10 02:01 - 00449536 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 13:20 - 2014-10-10 02:00 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 13:20 - 2014-10-10 02:00 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 13:20 - 2014-10-10 00:22 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 13:19 - 2014-09-19 01:50 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 13:19 - 2014-08-27 01:55 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 13:19 - 2014-08-27 01:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 13:18 - 2014-10-24 02:04 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 13:18 - 2014-08-12 03:25 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 13:17 - 2014-10-18 02:08 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 13:17 - 2014-10-03 02:18 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 13:17 - 2014-10-03 02:17 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 13:17 - 2014-10-03 02:17 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 13:17 - 2014-10-03 02:17 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 13:10 - 2014-10-13 00:34 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 11:23 - 2014-10-27 20:10 - 12366848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 11:23 - 2014-10-27 20:05 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 11:23 - 2014-10-27 20:02 - 09739776 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 11:23 - 2014-10-27 19:59 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 11:23 - 2014-10-27 19:59 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 11:23 - 2014-10-27 19:58 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 11:23 - 2014-10-27 19:57 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-12 11:23 - 2014-10-27 19:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 11:23 - 2014-10-27 19:56 - 01802752 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 11:23 - 2014-10-27 19:56 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-12 11:23 - 2014-10-27 19:56 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 11:23 - 2014-10-27 19:56 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 11:23 - 2014-10-27 19:56 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 11:23 - 2014-10-27 19:55 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 11:23 - 2014-10-27 19:55 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 11:23 - 2014-10-27 19:55 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 11:23 - 2014-10-27 19:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 11:23 - 2014-10-27 19:55 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-12 11:23 - 2014-10-27 19:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-12 11:23 - 2014-10-27 19:55 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-12 11:23 - 2014-10-27 19:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-09 15:37 - 2014-11-09 15:37 - 00000000 ____D () C:\Users\Sven\AppData\Roaming\OpenOffice
2014-11-07 06:22 - 2014-11-07 06:22 - 00031552 _____ () C:\Users\chef\Documents\MiDiMoD.rbs
2014-11-06 09:37 - 2014-11-08 20:37 - 00032768 _____ () C:\Windows\ReBirth RB-338 2.prf
2014-11-06 09:23 - 2014-11-06 09:23 - 00000000 ____D () C:\Users\chef\Downloads\hero
2014-11-06 09:22 - 2014-11-06 09:22 - 00584537 _____ () C:\Users\chef\Downloads\HeroQuest-PC.rar
2014-11-06 07:12 - 2014-11-06 07:12 - 00000000 ____D () C:\Users\chef\AppData\Roaming\Help
2014-11-06 07:12 - 2014-11-06 07:12 - 00000000 ____D () C:\Users\chef\AppData\Local\Help
2014-11-06 07:08 - 2007-02-18 22:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\winhlp32.exe
2014-11-06 07:08 - 2007-02-18 22:11 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\ftsrch.dll
2014-11-06 07:08 - 2007-02-18 22:11 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\ftlx041e.dll
2014-11-06 07:08 - 2007-02-18 22:11 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\ftlx0411.dll
2014-11-06 07:07 - 2014-11-06 07:08 - 00614819 _____ () C:\Users\chef\Downloads\Windows6.0-KB917607-x86.msu
2014-11-06 06:50 - 2014-11-06 06:50 - 00000931 _____ () C:\Users\chef\Desktop\Rebirth RB-338 2.0.lnk
2014-11-06 06:50 - 2014-11-06 06:50 - 00000000 ____D () C:\Users\chef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Propellerhead
2014-11-06 06:50 - 2014-11-06 06:50 - 00000000 ____D () C:\Program Files\Propellerhead
2014-11-06 06:50 - 1998-10-14 20:27 - 00025088 _____ (Propellerhead Software) C:\Windows\ReWire.dll
2014-11-06 06:50 - 1997-11-03 22:10 - 00277776 _____ (Microsoft Corporation) C:\Windows\system\Msvcrt.dll
2014-11-06 06:47 - 2014-11-06 06:47 - 00000000 ____D () C:\Users\chef\Downloads\rebirth_iso_installation
2014-11-06 06:25 - 2014-11-06 06:46 - 224655804 _____ () C:\Users\chef\Downloads\rebirth_iso_installation.zip
2014-11-05 20:48 - 2014-11-05 20:48 - 00000184 _____ () C:\Users\chef\Desktop\Amazon.de.url
2014-11-05 20:48 - 2014-11-05 20:48 - 00000000 ____D () C:\Users\chef\AppData\Local\Temp401a5942c46c74cee15224829bb906c4_
2014-11-05 20:48 - 2014-11-05 20:48 - 00000000 ____D () C:\Users\chef\AppData\Local\Temp0c4af09e2295b9104f04948d15d12ae6_
2014-11-05 20:47 - 2014-11-05 20:47 - 00000000 ____D () C:\Users\chef\AppData\Local\Tempd1de761ff1a0c79b6dd5525d6282fb41_
2014-11-05 20:27 - 2014-11-05 20:27 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-11-05 20:19 - 2014-11-05 20:19 - 00001735 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-11-05 20:18 - 2014-11-05 20:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-11-05 20:18 - 2014-11-05 20:18 - 00320120 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2014-11-05 20:17 - 2014-11-06 18:16 - 00000000 ____D () C:\Users\chef\AppData\Roaming\DAEMON Tools Lite
2014-11-05 20:17 - 2014-11-05 20:27 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite
2014-11-05 20:16 - 2014-11-05 20:31 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-11-05 20:08 - 2014-11-05 20:09 - 13429504 _____ (Disc Soft Ltd) C:\Users\chef\Downloads\DTLite4491-0356.exe
2014-11-05 19:37 - 2014-11-05 20:11 - 00000000 ___SD () C:\Users\Public\Virtual CDs
2014-10-26 20:20 - 2014-10-26 20:20 - 00000637 _____ () C:\Users\chef\Desktop\ReBirth RB-338.lnk
2014-10-26 20:20 - 2014-10-26 20:20 - 00000000 ____D () C:\Users\chef\ChromeExtensions
2014-10-26 20:20 - 2014-10-26 20:20 - 00000000 ____D () C:\Users\chef\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ReBirth RB-338
2014-10-26 20:20 - 2014-10-26 20:20 - 00000000 ____D () C:\Users\chef\AppData\Local\Temp401a5942c46c74cee15224829bb906c4
2014-10-26 20:20 - 2014-10-26 20:20 - 00000000 ____D () C:\Users\chef\AppData\Local\Temp0c4af09e2295b9104f04948d15d12ae6
2014-10-26 20:19 - 2014-11-06 07:12 - 00000000 ____D () C:\ReBirth RB-338
2014-10-26 20:19 - 2014-11-02 11:59 - 00000000 ____D () C:\Users\chef\AppData\Roaming\WHService
2014-10-26 20:19 - 2014-10-26 20:19 - 00000000 ____D () C:\Users\chef\AppData\Roaming\Security Systems
2014-10-26 20:19 - 2014-10-26 20:19 - 00000000 ____D () C:\Users\chef\AppData\Local\Tempd1de761ff1a0c79b6dd5525d6282fb41
2014-10-26 20:16 - 2014-10-26 20:16 - 01048928 _____ () C:\Users\chef\Downloads\ReBirth-lnstall.exe
2014-10-23 13:49 - 2014-10-23 13:49 - 00000000 ____D () C:\Users\chef\AppData\Local\Adobe
2014-10-22 20:33 - 2014-06-13 19:22 - 00156824 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-22 20:32 - 2014-06-15 23:18 - 01131664 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-22 20:32 - 2014-06-13 19:22 - 00081560 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-22 20:26 - 2014-09-05 00:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2014-10-22 14:45 - 2014-10-22 16:10 - 00000000 ____D () C:\Program Files\Mozilla Thunderbird

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-20 13:22 - 2014-03-24 15:03 - 00016198 _____ () C:\Users\chef\Downloads\FRST.txt
2014-11-20 13:22 - 2014-03-24 15:03 - 00000000 ____D () C:\FRST
2014-11-20 12:40 - 2006-11-02 13:45 - 00003648 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-20 12:40 - 2006-11-02 13:45 - 00003648 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-20 12:33 - 2013-04-08 09:18 - 00000000 ____D () C:\Users\chef\AppData\Roaming\Malwarebytes
2014-11-20 12:33 - 2013-04-08 09:18 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-20 12:28 - 2006-11-02 11:33 - 01567222 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-20 12:06 - 2013-05-13 21:31 - 00000620 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-11-20 10:40 - 2006-11-02 13:58 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-20 09:56 - 2006-11-02 13:58 - 00032510 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-17 22:31 - 2012-11-11 15:06 - 00000000 ____D () C:\Users\chef\AppData\Roaming\vlc
2014-11-16 12:35 - 2013-12-11 17:36 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-16 06:29 - 2012-03-31 16:39 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-11-16 06:29 - 2012-03-31 16:39 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-11-14 14:30 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-12 22:36 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\rescache
2014-11-12 22:20 - 2006-11-02 13:44 - 00254728 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 22:17 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-11-12 13:16 - 2013-10-18 12:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 13:11 - 2006-11-02 11:24 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-11-09 16:41 - 2013-12-22 18:38 - 00000000 ____D () C:\ProgramData\TEMP
2014-11-09 14:00 - 2012-08-05 15:51 - 00000996 _____ () C:\Users\Sven\Desktop\Turtle Odyssey 2.lnk
2014-11-06 07:09 - 2006-11-02 16:36 - 00000000 ____D () C:\Windows\de-DE
2014-11-06 06:50 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system
2014-11-05 20:28 - 2012-03-29 12:40 - 00000000 ____D () C:\Users\chef
2014-11-05 20:12 - 2012-04-19 14:44 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-11-05 20:11 - 2006-11-02 12:18 - 00000000 ___RD () C:\Users\Public
2014-11-03 13:52 - 2012-04-17 22:37 - 00004630 _____ () C:\Users\chef\Desktop\Neues Textdokument.txt
2014-10-30 12:24 - 2012-03-30 07:39 - 00229000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-26 16:14 - 2014-10-02 12:16 - 00000000 ____D () C:\Users\chef\AppData\Roaming\gnupg
2014-10-25 19:10 - 2012-04-12 17:01 - 00000000 ____D () C:\Users\chef\AppData\Local\IceChat
2014-10-22 16:10 - 2014-03-20 19:29 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-10-22 16:01 - 2012-11-11 14:54 - 00000000 ____D () C:\Users\chef\AppData\Local\Runic Games

Some content of TEMP:
====================
C:\Users\alle anderen\AppData\Local\temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-20 10:45

==================== End Of Log ============================

--- --- ---
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

die additions.txt ist nicht neu, schon bissl her, aber trotzdem :

---
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014 01
Ran by chef at 2014-03-24 15:03:34
Running from C:\Users\chef\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.1084.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{3825F8BD-F784-6FBB-A5CD-857559148007}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2012.1219.1521.27485 - Ihr Firmenname) Hidden
AMD VISION Engine Control Center (Version: 2012.1219.1521.27485 - Ihr Firmenname) Hidden
ATI AVIVO Codecs (Version: 11.6.0.10524 - ATI Technologies Inc.) Hidden
Auslogics DiskDefrag (HKLM\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 4.5.1.0 - Auslogics Labs Pty Ltd)
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2013 - Avast Software)
Catalyst Control Center - Branding (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
ccc-utility (Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.08 - Piriform)
Commander (HKLM\...\Commander) (Version: - )
Daum PotPlayer 1.5.40688 (HKLM\...\PotPlayer) (Version: - )
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
File Commander/W (HKLM\...\{4F6B70B1-EFFA-469F-A7B8-94A565C1B31F}) (Version: 2.40 - Brian Havard)
Fizzball (HKLM\...\BFG-Fizzball) (Version: - )
FreeCommander 2009.02b (HKLM\...\FreeCommander_is1) (Version: 2009.02 - Marek Jasinski)
HydraVision (Version: 4.2.206.0 - ATI Technologies Inc.) Hidden
IceChat 7.70 (Build 20101031) (HKLM\...\IceChat_is1) (Version: 7.70 - IceChat Networks)
inSSIDer (HKLM\...\{BF6379E6-9936-46B0-B6AC-C56EE3987D2E}) (Version: 2.1.1 - MetaGeek)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.32 - Irfan Skiljan)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 28.0 (x86 de) (HKLM\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
Nitro Reader 3 (HKLM\...\{36A1AA90-FB87-4B29-82F3-B116B0023167}) (Version: 3.5.2.10 - Nitro)
NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OpenOffice 4.0.1 (HKLM\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
Pizza Dude (HKLM\...\Pizza Dude_is1) (Version: 1.0 - MyPlayCity, Inc.)
Ravensburger tiptoi (HKLM\...\Ravensburger tiptoi) (Version: - )
Revo Uninstaller 1.93 (HKLM\...\Revo Uninstaller) (Version: 1.93 - VS Revo Group)
RK-WLAN-Keygen (HKLM\...\RK-WLAN-Keygen_is1) (Version: 1.4 - Robert Knapp Software)
Security Task Manager 1.8g (HKLM\...\Security Task Manager) (Version: 1.8g - Neuber Software)
SiSoftware Sandra Lite 2012.SP3 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 18.40.2012.5 - SiSoftware)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.0.12 - Safer-Networking Ltd.)
Subsea Relic (HKLM\...\Subsea Relic_is1) (Version: 1.0 - MyPlayCity, Inc.)
Torchlight II (HKLM\...\{55F7D521-17CA-454D-9D4D-975EF2E10708}_is1) (Version: - White Rabbit Interactive)
Turtle Odyssey 2 (HKLM\...\Turtle Odyssey 2) (Version: - )
Ultra Defragmenter (HKLM\...\UltraDefrag) (Version: 6.0.2 - UltraDefrag Development Team)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.1 (HKLM\...\VLC media player) (Version: 2.1.1 - VideoLAN)
WinPatrol (HKLM\...\{84481A87-2316-4923-8FAB-3BA8CA29323D}) (Version: 30.1.2014 - BillP Studios)
WinRAR 5.01 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Wireless LAN Driver and Utility (HKLM\...\{9C049499-055C-4A0C-A916-1D12314F45EB}) (Version: 1.00.0183 - Co.,Ltd.)

==================== Restore Points =========================

13-03-2014 22:00:46 Windows Update
13-03-2014 22:55:43 Windows Update
15-03-2014 09:53:15 Geplanter Prüfpunkt
15-03-2014 18:59:32 Windows Update
18-03-2014 21:41:32 Windows Update
19-03-2014 16:27:34 Geplanter Prüfpunkt
19-03-2014 18:35:41 Revo Uninstaller's restore point - Avira Free Antivirus
19-03-2014 18:53:51 avast! antivirus system restore point
20-03-2014 14:46:18 Geplanter Prüfpunkt
20-03-2014 16:27:24 Revo Uninstaller's restore point - Mozilla Firefox 28.0 (x86 de)
20-03-2014 16:28:58 Revo Uninstaller's restore point - Google Chrome
20-03-2014 16:30:25 Revo Uninstaller's restore point - Free YouTube to MP3 Converter version 3.11.34.1015
20-03-2014 16:31:25 Revo Uninstaller's restore point - Microsoft Silverlight
20-03-2014 16:31:38 Removed Microsoft Silverlight
20-03-2014 16:33:22 Revo Uninstaller's restore point - Tiny Youtube Converter 1.6
20-03-2014 16:33:43 Removed Tiny Youtube Converter 1.6
23-03-2014 10:00:00 Windows Update
24-03-2014 13:20:34 Revo Uninstaller's restore point - MyDefrag v4.3.1

==================== Hosts content: ==========================

2006-11-02 11:23 - 2014-03-13 23:35 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {18DFD9FC-082E-4E9B-8285-5F21D2B4EDAE} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {2D2DEC4F-74BB-4FB5-9626-21B3A60365F1} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => Rundll32.exe %windir%\system32\pla.dll,PlaConvertLogEntries
Task: {2F2205D4-5436-49A0-892C-2A7E06D950E4} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {48532C1B-0A33-468A-9FD0-7FBD32011A98} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {5916F864-469C-4391-8604-E4EA141A2699} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-05] ()
Task: {5BFA86C4-2A30-44DC-8B26-0CEFD049D8BC} - \WPD\SqmUpload_S-1-5-21-1461220110-1976370169-1414792120-1000 No Task File
Task: {6D8C4D6D-8246-4F4F-90BC-FF9EA222D078} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {747A4083-D19A-46A2-A99D-A3236076DF27} - System32\Tasks\Check for updates (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {82EE28F0-4EEC-4C5D-98B0-62841C6EFAE5} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\VistaSP1CEIP => C:\Windows\servicing\vsp1ceip.exe [2008-01-18] (Microsoft Corporation)
Task: {84356A22-A76A-4E94-8A8A-4C9AECCC57EC} - System32\Tasks\Scan the system (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: {8B0E6FAB-F43A-4988-AF0A-A21646C212F0} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {8E3B76BD-F61C-4784-8077-206C06DE4E8F} - System32\Tasks\Refresh immunization (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {9348E16E-26B4-4BA3-BA03-5CBA4919B7B5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-23] (Adobe Systems Incorporated)
Task: {9ED703A9-5FFD-40D5-895A-4385EE1509DE} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-18] (Microsoft Corporation)
Task: {C8B3025B-D21E-4527-BBC6-CDFBFEB026E1} - \Microsoft\Windows\Bluetooth\UninstallDeviceTask No Task File
Task: {F34CA2D1-473C-4E6B-B64D-93031B716607} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-03-19] (AVAST Software)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job.bak => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe

==================== Loaded Modules (whitelisted) =============

2014-03-24 14:14 - 2014-03-24 08:41 - 02189312 _____ () C:\Program Files\AVAST Software\Avast\defs\14032400\algo.dll
2012-12-19 15:31 - 2012-12-19 15:31 - 00065024 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2012-04-06 02:09 - 2012-04-06 02:09 - 00037376 _____ () C:\Windows\system32\atitmpxx.dll
2013-05-13 21:31 - 2012-11-13 13:06 - 00528288 _____ () C:\Program Files\Spybot - Search & Destroy 2\JSDialogPack150.bpl
2013-05-13 21:31 - 2012-11-13 13:06 - 00108960 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-05-13 21:31 - 2012-11-13 13:06 - 00416160 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2013-05-13 21:31 - 2012-11-13 13:06 - 00158624 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-05-13 21:31 - 2012-11-13 13:06 - 00554400 _____ () C:\Program Files\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl
2013-05-13 21:31 - 2012-08-23 08:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-03-19 19:54 - 2014-03-19 19:54 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-12-27 18:24 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files\oem\11n USB Wireless LAN Utility\EnumDevLib.dll
2014-03-12 17:54 - 2014-02-18 04:46 - 00643948 ____N () C:\Program Files\BillP Studios\WinPatrol\sqlite3.dll
2014-03-21 09:41 - 2014-03-15 09:40 - 03642480 _____ () C:\Program Files\mama\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\chef:gs5sys
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:3BE7E50E
AlternateDataStreams: C:\ProgramData\Templates:gs5sys
AlternateDataStreams: C:\ProgramData\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\chef\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\chef\Cookies:gs5sys
AlternateDataStreams: C:\Users\chef\Lokale Einstellungen:gs5sys
AlternateDataStreams: C:\Users\chef\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\chef\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\chef\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\chef\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\chef\AppData\Local\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\chef\AppData\Local\Verlauf:gs5sys
AlternateDataStreams: C:\Users\chef\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys

==================== Safe Mode (whitelisted) ===================

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Intellinet Wireless Utility.lnk => C:\Windows\pss\Intellinet Wireless Utility.lnk.CommonStartup
MSCONFIG\startupreg: HydraVisionDesktopManager => "C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe"
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe

==================== Faulty Device Manager Devices =============

Name: Realtek RTL8168/8111-Familie-PCI-E-Gigabit-Ethernet-NIC (NDIS 6.0)
Description: Realtek RTL8168/8111-Familie-PCI-E-Gigabit-Ethernet-NIC (NDIS 6.0)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8169
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2014-03-13 11:51:30.607
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_b36bda857faff8dc\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:30.421
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_b36bda857faff8dc\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:30.228
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_b36bda857faff8dc\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:30.043
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_b36bda857faff8dc\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:29.855
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_b36bda857faff8dc\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:29.664
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22665_none_b36bda857faff8dc\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:29.337
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:29.146
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:28.957
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2014-03-13 11:51:28.769
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

==================== Memory info ===========================

Percentage of memory in use: 40%
Total physical RAM: 3325.17 MB
Available physical RAM: 1978.54 MB
Total Pagefile: 6884.35 MB
Available Pagefile: 5408.34 MB
Total Virtual: 2047.88 MB
Available Virtual: 1886 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:153.38 GB) (Free:103.37 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 153 GB) (Disk ID: 3FA8567C)
Partition 1: (Active) - (Size=153 GB) - (Type=07 NTFS)

==================== End Of Log ============================

hoffe, alles halbwegs hinbekommen zu haben.

schrauber · 20.11.2014, 19:19

hi,

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

elagtric · 22.11.2014, 12:23

Zitat:

Zitat von schrauber

hi,

hier das LOG vom TDSSKILLER. wollte alles zwischen die (vorgegebenen) eckigen klammern pasten, aber das geht irgendwie nicht richtig.

---
12:00:11.0223 0x0bd0 TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
12:00:18.0992 0x0bd0 ============================================================
12:00:18.0992 0x0bd0 Current date / time: 2014/11/22 12:00:18.0992
12:00:18.0992 0x0bd0 SystemInfo:
12:00:18.0992 0x0bd0
12:00:18.0992 0x0bd0 OS Version: 6.0.6002 ServicePack: 2.0
12:00:18.0992 0x0bd0 Product type: Workstation
12:00:18.0992 0x0bd0 ComputerName: WOPR
12:00:18.0992 0x0bd0 UserName: chef
12:00:18.0992 0x0bd0 Windows directory: C:\Windows
12:00:18.0992 0x0bd0 System windows directory: C:\Windows
12:00:18.0992 0x0bd0 Processor architecture: Intel x86
12:00:18.0992 0x0bd0 Number of processors: 2
12:00:18.0992 0x0bd0 Page size: 0x1000
12:00:18.0992 0x0bd0 Boot type: Normal boot
12:00:18.0992 0x0bd0 ============================================================
12:00:21.0878 0x0bd0 KLMD registered as C:\Windows\system32\drivers\67666709.sys
12:00:22.0268 0x0bd0 System UUID: {BA18660B-9215-6D4F-6489-53D6E5DD0FEF}
12:00:23.0111 0x0bd0 Drive \Device\Harddisk0\DR0 - Size: 0x2658AE0000 ( 153.39 Gb ), SectorSize: 0x200, Cylinders: 0x4E37, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:00:23.0126 0x0bd0 ============================================================
12:00:23.0126 0x0bd0 \Device\Harddisk0\DR0:
12:00:23.0126 0x0bd0 MBR partitions:
12:00:23.0126 0x0bd0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x132C4000
12:00:23.0126 0x0bd0 ============================================================
12:00:23.0126 0x0bd0 C: <-> \Device\Harddisk0\DR0\Partition1
12:00:23.0126 0x0bd0 ============================================================
12:00:23.0126 0x0bd0 Initialize success
12:00:23.0126 0x0bd0 ============================================================
12:02:09.0299 0x10bc ============================================================
12:02:09.0299 0x10bc Scan started
12:02:09.0299 0x10bc Mode: Manual; SigCheck; TDLFS;
12:02:09.0299 0x10bc ============================================================
12:02:09.0299 0x10bc KSN ping started
12:02:09.0566 0x10bc KSN ping finished: true
12:02:09.0981 0x10bc ================ Scan system memory ========================
12:02:09.0981 0x10bc System memory - ok
12:02:09.0981 0x10bc ================ Scan services =============================
12:02:10.0134 0x10bc [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
12:02:10.0259 0x10bc ACPI - ok
12:02:10.0336 0x10bc [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:02:10.0358 0x10bc AdobeFlashPlayerUpdateSvc - ok
12:02:10.0401 0x10bc [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:02:10.0433 0x10bc adp94xx - ok
12:02:10.0448 0x10bc [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:02:10.0473 0x10bc adpahci - ok
12:02:10.0491 0x10bc [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
12:02:10.0508 0x10bc adpu160m - ok
12:02:10.0524 0x10bc [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:02:10.0543 0x10bc adpu320 - ok
12:02:10.0578 0x10bc [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:02:10.0606 0x10bc AeLookupSvc - ok
12:02:10.0650 0x10bc [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
12:02:10.0679 0x10bc AFD - ok
12:02:10.0696 0x10bc [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:02:10.0711 0x10bc agp440 - ok
12:02:10.0738 0x10bc [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
12:02:10.0754 0x10bc aic78xx - ok
12:02:10.0783 0x10bc [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
12:02:10.0816 0x10bc ALG - ok
12:02:10.0833 0x10bc [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys
12:02:10.0847 0x10bc aliide - ok
12:02:10.0879 0x10bc [ 50EBBB86E493BD9AB7DDF914A90EEF8E, 1A8E6F70DEADA905CDA6D939C7510DF359F5D7D5A19C7EDBC3394DB9E2446C17 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:02:10.0906 0x10bc AMD External Events Utility - ok
12:02:11.0007 0x10bc AMD FUEL Service - ok
12:02:11.0013 0x10bc [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
12:02:11.0028 0x10bc amdagp - ok
12:02:11.0044 0x10bc [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys
12:02:11.0059 0x10bc amdide - ok
12:02:11.0068 0x10bc [ FF258424F0B2EF25EB98F04EE386E6E3, 09DC3854BF0D52FB80AB08DC4E0DD4A9E37ACAA500083A56F9836C837EBCFA82 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
12:02:11.0088 0x10bc amdiox86 - ok
12:02:11.0094 0x10bc [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
12:02:11.0145 0x10bc AmdK7 - ok
12:02:11.0151 0x10bc [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:02:11.0202 0x10bc AmdK8 - ok
12:02:11.0582 0x10bc [ 70EB74785AB7FC603FEF19D87B7A7946, 011F7757E6E7DDFCA9894FA9EA197EF4FB69CC916A8DCA7B772F92DBD684ECA1 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:02:12.0258 0x10bc amdkmdag - ok
12:02:12.0308 0x10bc [ BA99833BBDE9C4FF389FC8114FB14843, 34442D942CF267786E3574640E25FBD49390E3E78F8558C4B3B676E31778D07C ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
12:02:12.0337 0x10bc amdkmdap - ok
12:02:12.0360 0x10bc [ 66F4DE5876DC1A47BA1ACE909FA9AEEF, 2194C4323081E30E93DCA3602F276CBD6BE25256094E62332FA03B397962CE28 ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
12:02:12.0374 0x10bc AODDriver4.2 - ok
12:02:12.0407 0x10bc [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
12:02:12.0425 0x10bc Appinfo - ok
12:02:12.0461 0x10bc [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys
12:02:12.0478 0x10bc arc - ok
12:02:12.0498 0x10bc [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:02:12.0511 0x10bc arcsas - ok
12:02:12.0577 0x10bc [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:02:12.0593 0x10bc aspnet_state - ok
12:02:12.0663 0x10bc [ 4D6C6E0505A8E5A0656DCB223497D37C, 7F9457AF4B6E4FC6C4F77BD39DB5EB5520C44D22974B9781EA0F984D6830637C ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
12:02:12.0675 0x10bc aswHwid - ok
12:02:12.0698 0x10bc [ 1A2CC93BBD77C2D95A7567938D7D7239, DD082ACA011DA63CC1A69BAD8C42B9DA3A9975194D87B5584A39C91ED92341E3 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
12:02:12.0712 0x10bc aswMonFlt - ok
12:02:12.0722 0x10bc [ FFB1BDC9CAF255019D678DB5BEDAF0F0, 5FBCD3F2AFFB25EB717B913E709EFBEEAC6520B910B8AC11BF830A5B7E33F797 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
12:02:12.0735 0x10bc aswRdr - ok
12:02:12.0775 0x10bc [ 24B3BDA01DB3A704E33A5266C7B52DAF, FB2555504570E8FD6AA251BE9D05EDC2B73596EF830384130556EC64E518FE65 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
12:02:12.0787 0x10bc aswRvrt - ok
12:02:12.0832 0x10bc [ D13182758BAC9B4996D592E7684C9267, 8CDF8F3962659A6F3AE77AD9A4982E2D754E0DE3610BE26985444A4DCCDF181A ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
12:02:12.0963 0x10bc aswSnx - ok
12:02:13.0068 0x10bc [ D1A68A33B082FA1C7087CE54A7923D90, 9B776122078044A1336D0E7C5F3F016BC7196571DBF379F804AF70C49D642714 ] aswSP C:\Windows\system32\drivers\aswSP.sys
12:02:13.0128 0x12a4 Object required for P2P: [ D51145F6B0CE987850F13A61DAD5E531 ] AdobeFlashPlayerUpdateSvc
12:02:13.0131 0x10bc aswSP - ok
12:02:13.0179 0x10bc [ AF01CD260A9EF60B09029C9F5EF99040, C74A94598DC8DBD3AB13E43A60ED12698A121332446867FC3B75745626E0B7CB ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
12:02:13.0195 0x10bc aswTdi - ok
12:02:13.0206 0x10bc [ B2D7EE52633CA8831DDAFCA81C2D46C3, 017C6C376520380F29AF465F1464C3652D421C4B873B7AC2647498F356032361 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
12:02:13.0227 0x10bc aswVmm - ok
12:02:13.0282 0x10bc [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:02:13.0312 0x10bc AsyncMac - ok
12:02:13.0342 0x10bc [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
12:02:13.0357 0x10bc atapi - ok
12:02:13.0390 0x10bc [ 35290682DBDB9CEDE934B73369F3CEDE, 4938D052AA1AC75294C7DDCC42CB580A92A5393FE4ACB8F9F6ABE20F17CA527D ] AtiHDAudioService C:\Windows\system32\drivers\AtihdLH3.sys
12:02:13.0406 0x10bc AtiHDAudioService - ok
12:02:13.0457 0x10bc [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:02:13.0487 0x10bc AudioEndpointBuilder - ok
12:02:13.0515 0x10bc [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:02:13.0545 0x10bc Audiosrv - ok
12:02:13.0649 0x10bc [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:02:13.0663 0x10bc avast! Antivirus - ok
12:02:13.0689 0x10bc [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
12:02:13.0691 0x12a4 Object send P2P result: true
12:02:13.0721 0x10bc Beep - ok
12:02:13.0759 0x10bc [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
12:02:13.0793 0x10bc BFE - ok
12:02:13.0898 0x10bc [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\system32\qmgr.dll
12:02:13.0961 0x10bc BITS - ok
12:02:13.0967 0x10bc blbdrive - ok
12:02:14.0025 0x10bc [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:02:14.0067 0x10bc bowser - ok
12:02:14.0102 0x10bc [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
12:02:14.0129 0x10bc BrFiltLo - ok
12:02:14.0134 0x10bc [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
12:02:14.0158 0x10bc BrFiltUp - ok
12:02:14.0194 0x10bc [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
12:02:14.0229 0x10bc Browser - ok
12:02:14.0236 0x10bc [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
12:02:14.0288 0x10bc Brserid - ok
12:02:14.0295 0x10bc [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
12:02:14.0348 0x10bc BrSerWdm - ok
12:02:14.0353 0x10bc [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
12:02:14.0403 0x10bc BrUsbMdm - ok
12:02:14.0409 0x10bc [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
12:02:14.0459 0x10bc BrUsbSer - ok
12:02:14.0478 0x10bc [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:02:14.0530 0x10bc BTHMODEM - ok
12:02:14.0673 0x10bc catchme - ok
12:02:14.0696 0x10bc [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:02:14.0729 0x10bc cdfs - ok
12:02:14.0763 0x10bc [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:02:14.0789 0x10bc cdrom - ok
12:02:14.0821 0x10bc [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
12:02:14.0846 0x10bc CertPropSvc - ok
12:02:14.0861 0x10bc [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys
12:02:14.0912 0x10bc circlass - ok
12:02:14.0946 0x10bc [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
12:02:14.0971 0x10bc CLFS - ok
12:02:15.0026 0x10bc [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:02:15.0042 0x10bc clr_optimization_v2.0.50727_32 - ok
12:02:15.0068 0x10bc [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:02:15.0089 0x10bc clr_optimization_v4.0.30319_32 - ok
12:02:15.0099 0x10bc [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:02:15.0113 0x10bc cmdide - ok
12:02:15.0128 0x10bc [ 82B8C91D327CFECF76CB58716F7D4997, 6F06A4BC44B170BB28BF464E9BB5216D39D11CB8D442570B575A741B032EAEE6 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
12:02:15.0142 0x10bc Compbatt - ok
12:02:15.0153 0x10bc COMSysApp - ok
12:02:15.0170 0x10bc [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:02:15.0184 0x10bc crcdisk - ok
12:02:15.0191 0x10bc [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys
12:02:15.0243 0x10bc Crusoe - ok
12:02:15.0286 0x10bc [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:02:15.0309 0x10bc CryptSvc - ok
12:02:15.0379 0x10bc [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:02:15.0433 0x10bc DcomLaunch - ok
12:02:15.0469 0x10bc [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:02:15.0489 0x10bc DfsC - ok
12:02:15.0620 0x10bc [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
12:02:15.0962 0x10bc DFSR - ok
12:02:16.0032 0x10bc [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
12:02:16.0065 0x10bc Dhcp - ok
12:02:16.0126 0x10bc [ 2A312D761AE650B1BF1296733E872AAC, A05BB3B3BF2DA68599E593BB4367774A74141DE327092C77BCDA3C0F36C8D6AD ] DirMngr C:\Program Files\GNU\GnuPG\dirmngr.exe
12:02:16.0141 0x10bc DirMngr - detected UnsignedFile.Multi.Generic ( 1 )
12:02:16.0497 0x10bc Detect skipped due to KSN trusted
12:02:16.0497 0x10bc DirMngr - ok
12:02:16.0528 0x10bc [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
12:02:16.0566 0x10bc disk - ok
12:02:16.0592 0x10bc [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:02:16.0615 0x10bc Dnscache - ok
12:02:16.0648 0x10bc [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
12:02:16.0680 0x10bc dot3svc - ok
12:02:16.0713 0x10bc [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
12:02:16.0748 0x10bc DPS - ok
12:02:16.0765 0x10bc [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:02:16.0782 0x10bc drmkaud - ok
12:02:16.0830 0x10bc [ 00C161B3D20AE0F9C7C3C0EB53AB7155, 38FE83B482FA580B292F7DFC8B372C78AECD6FF53EC41EB7BF4A2461827CDD64 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
12:02:16.0851 0x10bc dtsoftbus01 - ok
12:02:16.0918 0x10bc [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:02:16.0959 0x10bc DXGKrnl - ok
12:02:17.0033 0x10bc [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
12:02:17.0099 0x10bc E1G60 - ok
12:02:17.0135 0x10bc [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
12:02:17.0161 0x10bc EapHost - ok
12:02:17.0204 0x10bc [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
12:02:17.0224 0x10bc Ecache - ok
12:02:17.0263 0x10bc [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:02:17.0288 0x10bc elxstor - ok
12:02:17.0341 0x10bc [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
12:02:17.0385 0x10bc EMDMgmt - ok
12:02:17.0466 0x10bc [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
12:02:17.0502 0x10bc EventSystem - ok
12:02:17.0539 0x10bc [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
12:02:17.0561 0x10bc exfat - ok
12:02:17.0623 0x10bc [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:02:17.0645 0x10bc fastfat - ok
12:02:17.0673 0x10bc [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:02:17.0725 0x10bc fdc - ok
12:02:17.0752 0x10bc [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
12:02:17.0784 0x10bc fdPHost - ok
12:02:17.0805 0x10bc [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
12:02:17.0911 0x10bc FDResPub - ok
12:02:18.0031 0x10bc [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:02:18.0091 0x10bc FileInfo - ok
12:02:18.0099 0x10bc [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:02:18.0130 0x10bc Filetrace - ok
12:02:18.0137 0x10bc [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:02:18.0187 0x10bc flpydisk - ok
12:02:18.0209 0x10bc [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:02:18.0231 0x10bc FltMgr - ok
12:02:18.0441 0x10bc [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
12:02:18.0504 0x10bc FontCache - ok
12:02:18.0644 0x10bc [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:02:18.0691 0x10bc FontCache3.0.0.0 - ok
12:02:18.0722 0x10bc [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:02:18.0753 0x10bc Fs_Rec - ok
12:02:18.0785 0x10bc [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:02:18.0831 0x10bc gagp30kx - ok
12:02:18.0831 0x10bc gfjnxobt - ok
12:02:18.0956 0x10bc [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
12:02:19.0034 0x10bc gpsvc - ok
12:02:19.0065 0x10bc [ 3F90E001369A07243763BD5A523D8722, 25907F85787D879E75C3FE74C93567382AFB2D528BEEC61D71E3A6BE2D71DFBE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:02:19.0097 0x10bc HdAudAddService - ok
12:02:19.0143 0x10bc [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:02:19.0190 0x10bc HDAudBus - ok
12:02:19.0221 0x10bc [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:02:19.0268 0x10bc HidBth - ok
12:02:19.0268 0x10bc [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
12:02:19.0315 0x10bc HidIr - ok
12:02:19.0377 0x10bc [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\System32\hidserv.dll
12:02:19.0393 0x10bc hidserv - ok
12:02:19.0424 0x10bc [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:02:19.0440 0x10bc HidUsb - ok
12:02:19.0471 0x10bc [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
12:02:19.0502 0x10bc hkmsvc - ok
12:02:19.0518 0x10bc [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
12:02:19.0533 0x10bc HpCISSs - ok
12:02:19.0580 0x10bc [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:02:19.0627 0x10bc HTTP - ok
12:02:19.0658 0x10bc [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys
12:02:19.0674 0x10bc i2omp - ok
12:02:19.0689 0x10bc [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
12:02:19.0721 0x10bc i8042prt - ok
12:02:19.0752 0x10bc [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
12:02:19.0767 0x10bc iaStorV - ok
12:02:19.0861 0x10bc [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:02:20.0033 0x10bc idsvc - ok
12:02:20.0095 0x10bc [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:02:20.0157 0x10bc iirsp - ok
12:02:20.0267 0x10bc [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
12:02:20.0391 0x10bc IKEEXT - ok
12:02:20.0407 0x10bc [ 97469037714070E45194ED318D636401, DDB5AE39BE0BD37ECB44969A5FA740E5B1169342347D0DB3E5DF0353A6708271 ] intelide C:\Windows\system32\drivers\intelide.sys
12:02:20.0485 0x10bc intelide - ok
12:02:20.0501 0x10bc [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:02:20.0547 0x10bc intelppm - ok
12:02:20.0594 0x10bc [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:02:20.0625 0x10bc IPBusEnum - ok
12:02:20.0657 0x10bc [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:02:20.0688 0x10bc IpFilterDriver - ok
12:02:20.0719 0x10bc [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:02:20.0735 0x10bc iphlpsvc - ok
12:02:20.0750 0x10bc IpInIp - ok
12:02:20.0750 0x10bc [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
12:02:20.0797 0x10bc IPMIDRV - ok
12:02:20.0813 0x10bc [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
12:02:20.0844 0x10bc IPNAT - ok
12:02:20.0859 0x10bc [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:02:20.0891 0x10bc IRENUM - ok
12:02:20.0922 0x10bc [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:02:20.0937 0x10bc isapnp - ok
12:02:20.0953 0x10bc [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
12:02:20.0984 0x10bc iScsiPrt - ok
12:02:20.0984 0x10bc [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
12:02:21.0000 0x10bc iteatapi - ok
12:02:21.0015 0x10bc [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
12:02:21.0031 0x10bc iteraid - ok
12:02:21.0047 0x10bc [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:02:21.0062 0x10bc kbdclass - ok
12:02:21.0078 0x10bc [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:02:21.0093 0x10bc kbdhid - ok
12:02:21.0125 0x10bc [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
12:02:21.0140 0x10bc KeyIso - ok
12:02:21.0265 0x10bc [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:02:21.0296 0x10bc KSecDD - ok
12:02:21.0343 0x10bc [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
12:02:21.0390 0x10bc KtmRm - ok
12:02:21.0421 0x10bc [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\System32\srvsvc.dll
12:02:21.0452 0x10bc LanmanServer - ok
12:02:21.0483 0x10bc [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:02:21.0515 0x10bc LanmanWorkstation - ok
12:02:21.0530 0x10bc [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:02:21.0561 0x10bc lltdio - ok
12:02:21.0639 0x10bc [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:02:21.0686 0x10bc lltdsvc - ok
12:02:21.0717 0x10bc [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:02:21.0764 0x10bc lmhosts - ok
12:02:21.0811 0x10bc [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:02:21.0842 0x10bc LSI_FC - ok
12:02:21.0858 0x10bc [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:02:21.0873 0x10bc LSI_SAS - ok
12:02:21.0889 0x10bc [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:02:21.0905 0x10bc LSI_SCSI - ok
12:02:21.0936 0x10bc [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
12:02:21.0967 0x10bc luafv - ok
12:02:21.0967 0x10bc [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys
12:02:21.0983 0x10bc megasas - ok
12:02:22.0014 0x10bc [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
12:02:22.0045 0x10bc MMCSS - ok
12:02:22.0061 0x10bc [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
12:02:22.0092 0x10bc Modem - ok
12:02:22.0107 0x10bc [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:02:22.0139 0x10bc monitor - ok
12:02:22.0154 0x10bc [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:02:22.0170 0x10bc mouclass - ok
12:02:22.0185 0x10bc [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:02:22.0217 0x10bc mouhid - ok
12:02:22.0232 0x10bc [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
12:02:22.0263 0x10bc MountMgr - ok
12:02:22.0295 0x10bc [ 28048289E32294004A86935CC40A3252, D397C3BAD6BCDA33FA0982E10677598E8BDF69A0933D19A36873CB45BA4FB819 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:02:22.0310 0x10bc MozillaMaintenance - ok
12:02:22.0373 0x10bc [ 6460D4A5C981567E74A7AC1349DE10F5, 9C16035B9A9BE3D7077851621E9BDED223B4C6A156562076957B49B9FCAB3A05 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
12:02:22.0404 0x10bc MpFilter - ok
12:02:22.0419 0x10bc [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys
12:02:22.0435 0x10bc mpio - ok
12:02:22.0451 0x10bc [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:02:22.0466 0x10bc mpsdrv - ok
12:02:22.0513 0x10bc [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:02:22.0560 0x10bc MpsSvc - ok
12:02:22.0575 0x10bc [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
12:02:22.0575 0x10bc Mraid35x - ok
12:02:22.0607 0x10bc [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:02:22.0622 0x10bc MRxDAV - ok
12:02:22.0653 0x10bc [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:02:22.0685 0x10bc mrxsmb - ok
12:02:22.0700 0x10bc [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:02:22.0731 0x10bc mrxsmb10 - ok
12:02:22.0731 0x10bc [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:02:22.0747 0x10bc mrxsmb20 - ok
12:02:22.0763 0x10bc [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci C:\Windows\system32\drivers\msahci.sys
12:02:22.0778 0x10bc msahci - ok
12:02:22.0794 0x10bc [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:02:22.0809 0x10bc msdsm - ok
12:02:22.0841 0x10bc [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
12:02:22.0872 0x10bc MSDTC - ok
12:02:22.0903 0x10bc [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:02:22.0934 0x10bc Msfs - ok
12:02:22.0950 0x10bc [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:02:22.0965 0x10bc msisadrv - ok
12:02:22.0997 0x10bc [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:02:23.0028 0x10bc MSiSCSI - ok
12:02:23.0043 0x10bc msiserver - ok
12:02:23.0043 0x10bc [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:02:23.0075 0x10bc MSKSSRV - ok
12:02:23.0121 0x10bc [ A4B109D057E15A438CE74E5B71187417, C91568C1AE2863218988D4D7A2B64041AB2C1EE2E9DF3720407FCE513ADA056F ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:02:23.0137 0x10bc MsMpSvc - ok
12:02:23.0153 0x10bc [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:02:23.0184 0x10bc MSPCLOCK - ok
12:02:23.0184 0x10bc [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:02:23.0215 0x10bc MSPQM - ok
12:02:23.0246 0x10bc [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:02:23.0277 0x10bc MsRPC - ok
12:02:23.0293 0x10bc [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:02:23.0309 0x10bc mssmbios - ok
12:02:23.0324 0x10bc [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:02:23.0355 0x10bc MSTEE - ok
12:02:23.0371 0x10bc [ D48659BB24C48345D926ECB45C1EBDF5, EDEDE58316827530C25F8085F62AD48EA6D44B0F8AC1917B940F53B02CF72EA6 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
12:02:23.0387 0x10bc MTsensor - ok
12:02:23.0387 0x10bc [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
12:02:23.0418 0x10bc Mup - ok
12:02:23.0418 0x10bc NANMp50 - ok
12:02:23.0418 0x10bc NANSp50 - ok
12:02:23.0480 0x10bc [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
12:02:23.0511 0x10bc napagent - ok
12:02:23.0543 0x10bc [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:02:23.0574 0x10bc NativeWifiP - ok
12:02:23.0621 0x10bc [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:02:23.0667 0x10bc NDIS - ok
12:02:23.0699 0x10bc [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:02:23.0730 0x10bc NdisTapi - ok
12:02:23.0745 0x10bc [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:02:23.0761 0x10bc Ndisuio - ok
12:02:23.0777 0x10bc [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:02:23.0808 0x10bc NdisWan - ok
12:02:23.0808 0x10bc [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:02:23.0839 0x10bc NDProxy - ok
12:02:23.0870 0x10bc [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:02:23.0901 0x10bc NetBIOS - ok
12:02:23.0948 0x10bc [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
12:02:23.0995 0x10bc netbt - ok
12:02:24.0011 0x10bc [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
12:02:24.0042 0x10bc Netlogon - ok
12:02:24.0120 0x10bc [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
12:02:24.0182 0x10bc Netman - ok
12:02:24.0229 0x10bc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:02:24.0260 0x10bc NetMsmqActivator - ok
12:02:24.0260 0x10bc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:02:24.0291 0x10bc NetPipeActivator - ok
12:02:24.0323 0x10bc [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
12:02:24.0369 0x10bc netprofm - ok
12:02:24.0369 0x10bc netr28u - ok
12:02:24.0385 0x10bc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:02:24.0416 0x10bc NetTcpActivator - ok
12:02:24.0416 0x10bc [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:02:24.0447 0x10bc NetTcpPortSharing - ok
12:02:24.0479 0x10bc [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:02:24.0510 0x10bc nfrd960 - ok
12:02:24.0557 0x10bc [ 6A83B8AF342E61DEE353BAA81F67B7DA, F883A69DC57A203CEF4A264ADA3669EFA11149FE479A32FF38A37C86D24D7DE7 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:02:24.0572 0x10bc NisDrv - ok
12:02:24.0619 0x10bc [ 877C975D6FED8B12C445312D1286771E, 2FD5F2FE0414D00B8E4EF389E1AD11356C14F700A906770B0AB88B464D963948 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
12:02:24.0666 0x10bc NisSrv - ok
12:02:24.0713 0x10bc [ A2D5A587A4F30E1B3E9D0FD8D736F8C4, BC50D44F29404F4FE9F77F539BBD0B43D41BA081A0B48A57602FB1CEFC1C1B4F ] NitroReaderDriverReadSpool3 C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
12:02:24.0728 0x10bc NitroReaderDriverReadSpool3 - ok
12:02:24.0759 0x10bc [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
12:02:24.0822 0x10bc NlaSvc - ok
12:02:24.0853 0x10bc [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:02:24.0869 0x10bc Npfs - ok
12:02:24.0884 0x10bc [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
12:02:24.0915 0x10bc nsi - ok
12:02:24.0915 0x10bc [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:02:24.0947 0x10bc nsiproxy - ok
12:02:25.0274 0x10bc [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:02:25.0383 0x10bc Ntfs - ok
12:02:25.0446 0x10bc [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
12:02:25.0508 0x10bc ntrigdigi - ok
12:02:25.0524 0x10bc [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
12:02:25.0555 0x10bc Null - ok
12:02:25.0586 0x10bc [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:02:25.0602 0x10bc nvraid - ok
12:02:25.0602 0x10bc [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:02:25.0617 0x10bc nvstor - ok
12:02:25.0633 0x10bc [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:02:25.0649 0x10bc nv_agp - ok
12:02:25.0649 0x10bc NwlnkFlt - ok
12:02:25.0664 0x10bc NwlnkFwd - ok
12:02:25.0664 0x10bc [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:02:25.0727 0x10bc ohci1394 - ok
12:02:25.0914 0x10bc [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
12:02:25.0992 0x10bc p2pimsvc - ok
12:02:26.0039 0x10bc [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
12:02:26.0085 0x10bc p2psvc - ok
12:02:26.0163 0x10bc [ 8A79FDF04A73428597E2CAF9D0D67850, DB438FDE5510AB2F350ED1AC4CF0E99D3CC665FE46533A438A8FDA4DAF950F93 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:02:26.0195 0x10bc Parport - ok
12:02:26.0241 0x10bc [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:02:26.0273 0x10bc partmgr - ok
12:02:26.0288 0x10bc [ 6C580025C81CAF3AE9E3617C22CAD00E, 64F9061196462085E5DCD3ACB97A0D8FC67CA9A96DDD6E2103AFFF1593AE236A ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
12:02:26.0319 0x10bc Parvdm - ok
12:02:26.0366 0x10bc [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
12:02:26.0413 0x10bc PcaSvc - ok
12:02:26.0460 0x10bc [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
12:02:26.0475 0x10bc pci - ok
12:02:26.0538 0x10bc [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide C:\Windows\system32\drivers\pciide.sys
12:02:26.0569 0x10bc pciide - ok
12:02:26.0600 0x10bc [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:02:26.0631 0x10bc pcmcia - ok
12:02:26.0694 0x10bc [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:02:26.0787 0x10bc PEAUTH - ok
12:02:27.0240 0x10bc [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
12:02:27.0474 0x10bc pla - ok
12:02:27.0505 0x10bc [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:02:27.0552 0x10bc PlugPlay - ok
12:02:27.0583 0x10bc [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
12:02:27.0630 0x10bc PNRPAutoReg - ok
12:02:27.0661 0x10bc [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
12:02:27.0708 0x10bc PNRPsvc - ok
12:02:27.0770 0x10bc [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:02:27.0833 0x10bc PolicyAgent - ok
12:02:27.0879 0x10bc [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:02:27.0911 0x10bc PptpMiniport - ok
12:02:27.0942 0x10bc [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:02:27.0973 0x10bc Processor - ok
12:02:28.0004 0x10bc [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll
12:02:28.0035 0x10bc ProfSvc - ok
12:02:28.0035 0x10bc [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
12:02:28.0067 0x10bc ProtectedStorage - ok
12:02:28.0082 0x10bc [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
12:02:28.0113 0x10bc PSched - ok
12:02:28.0191 0x10bc [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:02:28.0238 0x10bc ql2300 - ok
12:02:28.0254 0x10bc [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:02:28.0269 0x10bc ql40xx - ok
12:02:28.0316 0x10bc [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
12:02:28.0347 0x10bc QWAVE - ok
12:02:28.0363 0x10bc [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:02:28.0379 0x10bc QWAVEdrv - ok
12:02:28.0394 0x10bc [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:02:28.0425 0x10bc RasAcd - ok
12:02:28.0457 0x10bc [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
12:02:28.0503 0x10bc RasAuto - ok
12:02:28.0535 0x10bc [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:02:28.0566 0x10bc Rasl2tp - ok
12:02:28.0613 0x10bc [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
12:02:28.0644 0x10bc RasMan - ok
12:02:28.0675 0x10bc [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:02:28.0691 0x10bc RasPppoe - ok
12:02:28.0706 0x10bc [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:02:28.0722 0x10bc RasSstp - ok
12:02:28.0753 0x10bc [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:02:28.0784 0x10bc rdbss - ok
12:02:28.0800 0x10bc [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:02:28.0831 0x10bc RDPCDD - ok
12:02:28.0847 0x10bc [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
12:02:28.0909 0x10bc rdpdr - ok
12:02:28.0909 0x10bc [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:02:28.0940 0x10bc RDPENCDD - ok
12:02:28.0971 0x10bc [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:02:29.0003 0x10bc RDPWD - ok
12:02:29.0065 0x10bc [ EA569D48B2E755AF6D96F03F3335D98A, EED2DCDF187A69F36A38129C8A1E0D6FE0EBF9232DEAF68A116E9A26E40AB636 ] RealtekCU C:\Program Files\oem\11n USB Wireless LAN Utility\RtlService.exe
12:02:29.0065 0x10bc RealtekCU - detected UnsignedFile.Multi.Generic ( 1 )
12:02:29.0439 0x10bc Detect skipped due to KSN trusted
12:02:29.0439 0x10bc RealtekCU - ok
12:02:29.0486 0x10bc [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
12:02:29.0564 0x10bc RemoteAccess - ok
12:02:29.0611 0x10bc [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:02:29.0689 0x10bc RemoteRegistry - ok
12:02:29.0720 0x10bc [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
12:02:29.0767 0x10bc RpcLocator - ok
12:02:29.0829 0x10bc [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
12:02:29.0923 0x10bc RpcSs - ok
12:02:29.0970 0x10bc [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:02:30.0001 0x10bc rspndr - ok
12:02:30.0017 0x10bc [ 283392AF1860ECDB5E0F8EBD7F3D72DF, B947025A41D7A16C48330ECE469860023D2109537A3DDC631C8EF9672687FF93 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
12:02:30.0079 0x10bc RTL8169 - ok
12:02:30.0141 0x10bc [ 94A9B11D36AD10E1E69F84C7B01F58A5, B9E9919A00BD9530EC942A4ED20FDABA000F984F1674AD0177978466FAF46DBF ] RTL8192cu C:\Windows\system32\DRIVERS\rtwlanu.sys
12:02:30.0266 0x10bc RTL8192cu - ok
12:02:30.0282 0x10bc RTL8192su - ok
12:02:30.0313 0x10bc [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
12:02:30.0329 0x10bc SamSs - ok
12:02:30.0329 0x10bc SANDRA - ok
12:02:30.0360 0x10bc [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:02:30.0375 0x10bc sbp2port - ok
12:02:30.0391 0x10bc [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:02:30.0422 0x10bc SCardSvr - ok
12:02:30.0485 0x10bc [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
12:02:30.0531 0x10bc Schedule - ok
12:02:30.0547 0x10bc [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
12:02:30.0578 0x10bc SCPolicySvc - ok
12:02:30.0609 0x10bc [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:02:30.0625 0x10bc SDRSVC - ok
12:02:30.0719 0x10bc [ 206387AB881E93A1A6EB89966C8651F1, 3BF9DFF3E70F0787F7F94BE5B9717DFADD9E13AB8154FAE295CEAC834F0835E5 ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
12:02:30.0765 0x10bc SDScannerService - ok
12:02:30.0843 0x10bc [ A529CFE32565C0B145578FFB2B32C9A5, 4B1596CBDDA74D510707FD475AAB3A89B1203E0B95ECAE3756CAA56555F9F66D ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
12:02:30.0953 0x10bc SDUpdateService - ok
12:02:31.0015 0x10bc [ CB63BDB77BB86549FC3303C2F11EDC18, 1C96C082B9CE08C8F3C088D5DE68BA8783E6F6A837A88E2654BC4CBCF7B81846 ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
12:02:31.0046 0x10bc SDWSCService - ok
12:02:31.0093 0x10bc [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:02:31.0155 0x10bc secdrv - ok
12:02:31.0187 0x10bc [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
12:02:31.0218 0x10bc seclogon - ok
12:02:31.0233 0x10bc [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\system32\sens.dll
12:02:31.0265 0x10bc SENS - ok
12:02:31.0296 0x10bc [ CE9EC966638EF0B10B864DDEDF62A099, 2DEC5A8C947D87C12B342F15B8A552A0D49B979A2AC32D2C97FC7A3A76C34524 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:02:31.0327 0x10bc Serenum - ok
12:02:31.0327 0x10bc [ 6D663022DB3E7058907784AE14B69898, 54263888C64A7F010D3B5E399369B0F3FF3AF0A0DE8ADB502B98277533E4D45F ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:02:31.0358 0x10bc Serial - ok
12:02:31.0374 0x10bc [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:02:31.0421 0x10bc sermouse - ok
12:02:31.0467 0x10bc [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
12:02:31.0499 0x10bc SessionEnv - ok
12:02:31.0499 0x10bc [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:02:31.0545 0x10bc sffdisk - ok
12:02:31.0545 0x10bc [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:02:31.0592 0x10bc sffp_mmc - ok
12:02:31.0592 0x10bc [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:02:31.0639 0x10bc sffp_sd - ok
12:02:31.0639 0x10bc [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:02:31.0686 0x10bc sfloppy - ok
12:02:31.0717 0x10bc [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:02:31.0748 0x10bc SharedAccess - ok
12:02:31.0779 0x10bc [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:02:31.0811 0x10bc ShellHWDetection - ok
12:02:31.0826 0x10bc [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp C:\Windows\system32\drivers\sisagp.sys
12:02:31.0842 0x10bc sisagp - ok
12:02:31.0857 0x10bc [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
12:02:31.0873 0x10bc SiSRaid2 - ok
12:02:31.0889 0x10bc [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:02:31.0904 0x10bc SiSRaid4 - ok
12:02:32.0076 0x10bc [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
12:02:32.0279 0x10bc slsvc - ok
12:02:32.0310 0x10bc [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
12:02:32.0341 0x10bc SLUINotify - ok
12:02:32.0357 0x10bc [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:02:32.0388 0x10bc Smb - ok
12:02:32.0419 0x10bc [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:02:32.0435 0x10bc SNMPTRAP - ok
12:02:32.0466 0x10bc [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
12:02:32.0481 0x10bc spldr - ok
12:02:32.0528 0x10bc [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
12:02:32.0544 0x10bc Spooler - ok
12:02:32.0622 0x10bc [ CBEAEA2729985BFB260641AB424E0166, 2FCED2951D5A1ACF93150BB0CA2293CCBE4227EBAAEA8438A78B5AFC6591F375 ] sptd C:\Windows\System32\Drivers\sptd.sys
12:02:33.0137 0x10bc sptd - ok
12:02:33.0199 0x10bc [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
12:02:33.0215 0x10bc srv - ok
12:02:33.0261 0x10bc [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:02:33.0277 0x10bc srv2 - ok
12:02:33.0293 0x10bc [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:02:33.0308 0x10bc srvnet - ok
12:02:33.0355 0x10bc [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:02:33.0402 0x10bc SSDPSRV - ok
12:02:33.0417 0x10bc [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:02:33.0433 0x10bc SstpSvc - ok
12:02:33.0495 0x10bc [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
12:02:33.0558 0x10bc stisvc - ok
12:02:33.0589 0x10bc [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:02:33.0605 0x10bc swenum - ok
12:02:33.0683 0x10bc [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
12:02:33.0729 0x10bc swprv - ok
12:02:33.0745 0x10bc [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
12:02:33.0761 0x10bc Symc8xx - ok
12:02:33.0776 0x10bc [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
12:02:33.0792 0x10bc Sym_hi - ok
12:02:33.0792 0x10bc [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
12:02:33.0807 0x10bc Sym_u3 - ok
12:02:33.0854 0x10bc [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
12:02:33.0917 0x10bc SysMain - ok
12:02:33.0932 0x10bc [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:02:33.0963 0x10bc TabletInputService - ok
12:02:34.0010 0x10bc [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:02:34.0057 0x10bc TapiSrv - ok
12:02:34.0088 0x10bc [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
12:02:34.0119 0x10bc TBS - ok
12:02:34.0182 0x10bc [ A4196D394207369E1431E8681B373312, BEF96BAB70FDF94F8CB2942BDEA9B4D934443E5305E3FD737809C3F7524B1E8E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:02:34.0244 0x10bc Tcpip - ok
12:02:34.0275 0x10bc [ A4196D394207369E1431E8681B373312, BEF96BAB70FDF94F8CB2942BDEA9B4D934443E5305E3FD737809C3F7524B1E8E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
12:02:34.0322 0x10bc Tcpip6 - ok
12:02:34.0353 0x10bc [ 95389980F70FC4990A4395A0B8BBE1D6, FB5CBC85733A4EC4FB9F210A5D4E5989F6A3F2995D895F5B41163CDFC04DB82C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:02:34.0369 0x10bc tcpipreg - ok
12:02:34.0400 0x10bc [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:02:34.0431 0x10bc TDPIPE - ok
12:02:34.0431 0x10bc [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:02:34.0463 0x10bc TDTCP - ok
12:02:34.0494 0x10bc [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:02:34.0525 0x10bc tdx - ok
12:02:34.0541 0x10bc [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:02:34.0556 0x10bc TermDD - ok
12:02:34.0603 0x10bc [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
12:02:34.0650 0x10bc TermService - ok
12:02:34.0681 0x10bc [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
12:02:34.0712 0x10bc Themes - ok
12:02:34.0728 0x10bc [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
12:02:34.0759 0x10bc THREADORDER - ok
12:02:34.0790 0x10bc [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
12:02:34.0821 0x10bc TrkWks - ok
12:02:34.0868 0x10bc [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:02:34.0884 0x10bc TrustedInstaller - ok
12:02:34.0915 0x10bc [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:02:34.0931 0x10bc tssecsrv - ok
12:02:34.0962 0x10bc [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
12:02:34.0977 0x10bc tunmp - ok
12:02:34.0993 0x10bc [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:02:35.0009 0x10bc tunnel - ok
12:02:35.0040 0x10bc [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:02:35.0055 0x10bc uagp35 - ok
12:02:35.0087 0x10bc [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:02:35.0133 0x10bc udfs - ok
12:02:35.0149 0x10bc [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:02:35.0180 0x10bc UI0Detect - ok
12:02:35.0196 0x10bc [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:02:35.0211 0x10bc uliagpkx - ok
12:02:35.0227 0x10bc [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys
12:02:35.0258 0x10bc uliahci - ok
12:02:35.0274 0x10bc [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
12:02:35.0289 0x10bc UlSata - ok
12:02:35.0289 0x10bc [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
12:02:35.0321 0x10bc ulsata2 - ok
12:02:35.0336 0x10bc [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:02:35.0367 0x10bc umbus - ok
12:02:35.0399 0x10bc [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
12:02:35.0445 0x10bc upnphost - ok
12:02:35.0477 0x10bc [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:02:35.0492 0x10bc usbccgp - ok
12:02:35.0492 0x10bc [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:02:35.0555 0x10bc usbcir - ok
12:02:35.0555 0x10bc [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:02:35.0570 0x10bc usbehci - ok
12:02:35.0586 0x10bc [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:02:35.0617 0x10bc usbhub - ok
12:02:35.0633 0x10bc [ D457EBD0C3A8B3A3A144355B5EE91CBC, 6AD52BDBB1607A48F0B02E663B97C3A00E3345B1B12C259608A5AE728C1C06B2 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
12:02:35.0648 0x10bc usbohci - ok
12:02:35.0664 0x10bc [ B51E52ACF758BE00EF3A58EA452FE360, 79E629EC5DE8AB7F31B0EE9AE94C71E8F703FED5C09A816228726974F7790C85 ] usbprint C:\Windows\system32\drivers\usbprint.sys
12:02:35.0726 0x10bc usbprint - ok
12:02:35.0726 0x10bc [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:02:35.0757 0x10bc USBSTOR - ok
12:02:35.0757 0x10bc [ 325DBBACB8A36AF9988CCF40EAC228CC, 22FE5658A12296634FBE9D8565485BEE8CB200C47182F70DC9D2B0442E10C4AA ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:02:35.0820 0x10bc usbuhci - ok
12:02:35.0835 0x10bc [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
12:02:35.0867 0x10bc UxSms - ok
12:02:35.0882 0x10bc vdrv1000 - ok
12:02:35.0945 0x10bc [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
12:02:35.0991 0x10bc vds - ok
12:02:36.0007 0x10bc [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:02:36.0054 0x10bc vga - ok
12:02:36.0085 0x10bc [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:02:36.0116 0x10bc VgaSave - ok
12:02:36.0116 0x10bc [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp C:\Windows\system32\drivers\viaagp.sys
12:02:36.0132 0x10bc viaagp - ok
12:02:36.0147 0x10bc [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys
12:02:36.0210 0x10bc ViaC7 - ok
12:02:36.0210 0x10bc [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide C:\Windows\system32\drivers\viaide.sys
12:02:36.0225 0x10bc viaide - ok
12:02:36.0225 0x10bc [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:02:36.0241 0x10bc volmgr - ok
12:02:36.0272 0x10bc [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:02:36.0303 0x10bc volmgrx - ok
12:02:36.0319 0x10bc [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:02:36.0350 0x10bc volsnap - ok
12:02:36.0350 0x10bc [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:02:36.0366 0x10bc vsmraid - ok
12:02:36.0428 0x10bc [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
12:02:36.0506 0x10bc VSS - ok
12:02:36.0553 0x10bc [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
12:02:36.0600 0x10bc W32Time - ok
12:02:36.0600 0x10bc [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:02:36.0647 0x10bc WacomPen - ok
12:02:36.0678 0x10bc [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
12:02:36.0693 0x10bc Wanarp - ok
12:02:36.0709 0x10bc [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:02:36.0725 0x10bc Wanarpv6 - ok
12:02:36.0740 0x10bc [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:02:36.0771 0x10bc wcncsvc - ok
12:02:36.0818 0x10bc [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:02:36.0849 0x10bc WcsPlugInService - ok
12:02:36.0865 0x10bc [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys
12:02:36.0881 0x10bc Wd - ok
12:02:36.0927 0x10bc [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:02:36.0974 0x10bc Wdf01000 - ok
12:02:37.0005 0x10bc [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:02:37.0037 0x10bc WdiServiceHost - ok
12:02:37.0052 0x10bc [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:02:37.0083 0x10bc WdiSystemHost - ok
12:02:37.0115 0x10bc [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
12:02:37.0146 0x10bc WebClient - ok
12:02:37.0161 0x10bc [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:02:37.0193 0x10bc Wecsvc - ok
12:02:37.0224 0x10bc [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:02:37.0255 0x10bc wercplsupport - ok
12:02:37.0286 0x10bc [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
12:02:37.0317 0x10bc WerSvc - ok
12:02:37.0364 0x10bc [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
12:02:37.0395 0x10bc WinDefend - ok
12:02:37.0411 0x10bc WinHttpAutoProxySvc - ok
12:02:37.0458 0x10bc [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:02:37.0489 0x10bc Winmgmt - ok
12:02:37.0567 0x10bc [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
12:02:37.0707 0x10bc WinRM - ok
12:02:37.0801 0x10bc [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:02:37.0848 0x10bc Wlansvc - ok
12:02:37.0879 0x10bc [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
12:02:37.0910 0x10bc WmiAcpi - ok
12:02:37.0941 0x10bc [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:02:37.0973 0x10bc wmiApSrv - ok
12:02:38.0051 0x10bc [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
12:02:38.0113 0x10bc WMPNetworkSvc - ok
12:02:38.0160 0x10bc [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:02:38.0191 0x10bc WPCSvc - ok
12:02:38.0222 0x10bc [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:02:38.0253 0x10bc WPDBusEnum - ok
12:02:38.0285 0x10bc [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
12:02:38.0300 0x10bc WpdUsb - ok
12:02:38.0394 0x10bc [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:02:38.0441 0x10bc WPFFontCache_v0400 - ok
12:02:38.0472 0x10bc [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:02:38.0503 0x10bc ws2ifsl - ok
12:02:38.0534 0x10bc [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\system32\wscsvc.dll
12:02:38.0550 0x10bc wscsvc - ok
12:02:38.0565 0x10bc WSearch - ok
12:02:38.0675 0x10bc [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
12:02:38.0784 0x10bc wuauserv - ok
12:02:38.0831 0x10bc [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:02:38.0862 0x10bc WudfPf - ok
12:02:38.0862 0x10bc [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:02:38.0893 0x10bc WUDFRd - ok
12:02:38.0909 0x10bc [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:02:38.0924 0x10bc wudfsvc - ok
12:02:38.0940 0x10bc ================ Scan global ===============================
12:02:38.0987 0x10bc [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
12:02:39.0033 0x10bc [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:02:39.0080 0x10bc [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:02:39.0127 0x10bc [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
12:02:39.0127 0x10bc [ Global ] - ok
12:02:39.0127 0x10bc ================ Scan MBR ==================================
12:02:39.0143 0x10bc [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:02:39.0330 0x10bc \Device\Harddisk0\DR0 - ok
12:02:39.0330 0x10bc ================ Scan VBR ==================================
12:02:39.0330 0x10bc [ 04041FDB93E2C1A4CE579BF408071B58 ] \Device\Harddisk0\DR0\Partition1
12:02:39.0361 0x10bc \Device\Harddisk0\DR0\Partition1 - ok
12:02:39.0361 0x10bc ================ Scan generic autorun ======================
12:02:39.0439 0x10bc [ E279E55C0D5F5DA2E1FD268EBD12F268, 06C40AF999881699DD9B73440D2ED48F404864C3FB8FF7B36560759892CAAA12 ] c:\Program Files\Microsoft Security Client\msseces.exe
12:02:39.0501 0x10bc MSC - ok
12:02:39.0720 0x10bc [ B5A4EBA9487F08BECC843A87422B8052, EA905E9169CE8C934F2D6F7E319A75E31EA9E1840CC455298BEB3F92E22FCAAE ] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
12:02:40.0001 0x10bc SDTray - ok
12:02:40.0219 0x10bc [ 21B8FAAFA5CCD89663AAD5833ABF4B35, DE46AD49AE1ED34697EE387BB77E73BCD7DA60E6063E02660021A9C2EA3C0801 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
12:02:40.0500 0x10bc AvastUI.exe - ok
12:02:40.0718 0x10bc [ BD9F34DE12E1D8547BBE1E12A7F9F245, E9A087E70FA19F555247778F95917B0CB6A46EE3F6B7765FFA9380192BC4A919 ] C:\Program Files\CCleaner\CCleaner.exe
12:02:40.0921 0x10bc ccleaner - ok
12:02:41.0108 0x10bc [ 1B2B3215F4B6B735813844AC1769E239, FCC4D5E52329531904637C19F0BA6EBD857CDFB814D3DCD799062D049FF2E485 ] C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe
12:02:41.0280 0x10bc Spybot-S&D Cleaning - ok
12:02:41.0358 0x10bc [ 059C2F55E82C8EDB20E8F26B2A7D2B19, BC323A8B8E0C3A5C2ABF23EDA0314A6117B9C2BC417A66CA5D6B25773E84E8F1 ] C:\Program Files\Ruiware\WinPatrol\winpatrol.exe
12:02:41.0420 0x10bc WinPatrol - ok
12:02:41.0810 0x10bc [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe
12:02:41.0966 0x10bc DAEMON Tools Lite - ok
12:02:41.0982 0x10bc Waiting for KSN requests completion. In queue: 27
12:02:43.0027 0x10bc AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
12:02:43.0058 0x10bc AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
12:02:43.0089 0x10bc Win FW state via NFP2: enabled
12:02:43.0355 0x10bc ============================================================
12:02:43.0355 0x10bc Scan finished
12:02:43.0355 0x10bc ============================================================
12:02:43.0370 0x12b8 Detected object count: 0
12:02:43.0370 0x12b8 Actual detected object count: 0
12:02:58.0409 0x0a3c Deinitialize success

---

das mit den eckigen klammern funktioniert irgendwie nicht richtig.
gruß, thomas

elagtric · 22.11.2014, 15:19

Zitat:

Zitat von schrauber

hi schrauber,

hier das logfile :

Code:

ATTFilter

12:00:11.0223 0x0bd0  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
12:00:18.0992 0x0bd0  ============================================================
12:00:18.0992 0x0bd0  Current date / time: 2014/11/22 12:00:18.0992
12:00:18.0992 0x0bd0  SystemInfo:
12:00:18.0992 0x0bd0  
12:00:18.0992 0x0bd0  OS Version: 6.0.6002 ServicePack: 2.0
12:00:18.0992 0x0bd0  Product type: Workstation
12:00:18.0992 0x0bd0  ComputerName: WOPR
12:00:18.0992 0x0bd0  UserName: chef
12:00:18.0992 0x0bd0  Windows directory: C:\Windows
12:00:18.0992 0x0bd0  System windows directory: C:\Windows
12:00:18.0992 0x0bd0  Processor architecture: Intel x86
12:00:18.0992 0x0bd0  Number of processors: 2
12:00:18.0992 0x0bd0  Page size: 0x1000
12:00:18.0992 0x0bd0  Boot type: Normal boot
12:00:18.0992 0x0bd0  ============================================================
12:00:21.0878 0x0bd0  KLMD registered as C:\Windows\system32\drivers\67666709.sys
12:00:22.0268 0x0bd0  System UUID: {BA18660B-9215-6D4F-6489-53D6E5DD0FEF}
12:00:23.0111 0x0bd0  Drive \Device\Harddisk0\DR0 - Size: 0x2658AE0000 ( 153.39 Gb ), SectorSize: 0x200, Cylinders: 0x4E37, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:00:23.0126 0x0bd0  ============================================================
12:00:23.0126 0x0bd0  \Device\Harddisk0\DR0:
12:00:23.0126 0x0bd0  MBR partitions:
12:00:23.0126 0x0bd0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x132C4000
12:00:23.0126 0x0bd0  ============================================================
12:00:23.0126 0x0bd0  C: <-> \Device\Harddisk0\DR0\Partition1
12:00:23.0126 0x0bd0  ============================================================
12:00:23.0126 0x0bd0  Initialize success
12:00:23.0126 0x0bd0  ============================================================
12:02:09.0299 0x10bc  ============================================================
12:02:09.0299 0x10bc  Scan started
12:02:09.0299 0x10bc  Mode: Manual; SigCheck; TDLFS; 
12:02:09.0299 0x10bc  ============================================================
12:02:09.0299 0x10bc  KSN ping started
12:02:09.0566 0x10bc  KSN ping finished: true
12:02:09.0981 0x10bc  ================ Scan system memory ========================
12:02:09.0981 0x10bc  System memory - ok
12:02:09.0981 0x10bc  ================ Scan services =============================
12:02:10.0134 0x10bc  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
12:02:10.0259 0x10bc  ACPI - ok
12:02:10.0336 0x10bc  [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:02:10.0358 0x10bc  AdobeFlashPlayerUpdateSvc - ok
12:02:10.0401 0x10bc  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:02:10.0433 0x10bc  adp94xx - ok
12:02:10.0448 0x10bc  [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:02:10.0473 0x10bc  adpahci - ok
12:02:10.0491 0x10bc  [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
12:02:10.0508 0x10bc  adpu160m - ok
12:02:10.0524 0x10bc  [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:02:10.0543 0x10bc  adpu320 - ok
12:02:10.0578 0x10bc  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:02:10.0606 0x10bc  AeLookupSvc - ok
12:02:10.0650 0x10bc  [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD             C:\Windows\system32\drivers\afd.sys
12:02:10.0679 0x10bc  AFD - ok
12:02:10.0696 0x10bc  [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:02:10.0711 0x10bc  agp440 - ok
12:02:10.0738 0x10bc  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
12:02:10.0754 0x10bc  aic78xx - ok
12:02:10.0783 0x10bc  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
12:02:10.0816 0x10bc  ALG - ok
12:02:10.0833 0x10bc  [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:02:10.0847 0x10bc  aliide - ok
12:02:10.0879 0x10bc  [ 50EBBB86E493BD9AB7DDF914A90EEF8E, 1A8E6F70DEADA905CDA6D939C7510DF359F5D7D5A19C7EDBC3394DB9E2446C17 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:02:10.0906 0x10bc  AMD External Events Utility - ok
12:02:11.0007 0x10bc  AMD FUEL Service - ok
12:02:11.0013 0x10bc  [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:02:11.0028 0x10bc  amdagp - ok
12:02:11.0044 0x10bc  [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide          C:\Windows\system32\drivers\amdide.sys
12:02:11.0059 0x10bc  amdide - ok
12:02:11.0068 0x10bc  [ FF258424F0B2EF25EB98F04EE386E6E3, 09DC3854BF0D52FB80AB08DC4E0DD4A9E37ACAA500083A56F9836C837EBCFA82 ] amdiox86        C:\Windows\system32\DRIVERS\amdiox86.sys
12:02:11.0088 0x10bc  amdiox86 - ok
12:02:11.0094 0x10bc  [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
12:02:11.0145 0x10bc  AmdK7 - ok
12:02:11.0151 0x10bc  [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:02:11.0202 0x10bc  AmdK8 - ok
12:02:11.0582 0x10bc  [ 70EB74785AB7FC603FEF19D87B7A7946, 011F7757E6E7DDFCA9894FA9EA197EF4FB69CC916A8DCA7B772F92DBD684ECA1 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
12:02:12.0258 0x10bc  amdkmdag - ok
12:02:12.0308 0x10bc  [ BA99833BBDE9C4FF389FC8114FB14843, 34442D942CF267786E3574640E25FBD49390E3E78F8558C4B3B676E31778D07C ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
12:02:12.0337 0x10bc  amdkmdap - ok
12:02:12.0360 0x10bc  [ 66F4DE5876DC1A47BA1ACE909FA9AEEF, 2194C4323081E30E93DCA3602F276CBD6BE25256094E62332FA03B397962CE28 ] AODDriver4.2    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
12:02:12.0374 0x10bc  AODDriver4.2 - ok
12:02:12.0407 0x10bc  [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo         C:\Windows\System32\appinfo.dll
12:02:12.0425 0x10bc  Appinfo - ok
12:02:12.0461 0x10bc  [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc             C:\Windows\system32\drivers\arc.sys
12:02:12.0478 0x10bc  arc - ok
12:02:12.0498 0x10bc  [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:02:12.0511 0x10bc  arcsas - ok
12:02:12.0577 0x10bc  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:02:12.0593 0x10bc  aspnet_state - ok
12:02:12.0663 0x10bc  [ 4D6C6E0505A8E5A0656DCB223497D37C, 7F9457AF4B6E4FC6C4F77BD39DB5EB5520C44D22974B9781EA0F984D6830637C ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
12:02:12.0675 0x10bc  aswHwid - ok
12:02:12.0698 0x10bc  [ 1A2CC93BBD77C2D95A7567938D7D7239, DD082ACA011DA63CC1A69BAD8C42B9DA3A9975194D87B5584A39C91ED92341E3 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
12:02:12.0712 0x10bc  aswMonFlt - ok
12:02:12.0722 0x10bc  [ FFB1BDC9CAF255019D678DB5BEDAF0F0, 5FBCD3F2AFFB25EB717B913E709EFBEEAC6520B910B8AC11BF830A5B7E33F797 ] aswRdr          C:\Windows\system32\drivers\aswRdr.sys
12:02:12.0735 0x10bc  aswRdr - ok
12:02:12.0775 0x10bc  [ 24B3BDA01DB3A704E33A5266C7B52DAF, FB2555504570E8FD6AA251BE9D05EDC2B73596EF830384130556EC64E518FE65 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
12:02:12.0787 0x10bc  aswRvrt - ok
12:02:12.0832 0x10bc  [ D13182758BAC9B4996D592E7684C9267, 8CDF8F3962659A6F3AE77AD9A4982E2D754E0DE3610BE26985444A4DCCDF181A ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
12:02:12.0963 0x10bc  aswSnx - ok
12:02:13.0068 0x10bc  [ D1A68A33B082FA1C7087CE54A7923D90, 9B776122078044A1336D0E7C5F3F016BC7196571DBF379F804AF70C49D642714 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
12:02:13.0128 0x12a4  Object required for P2P: [ D51145F6B0CE987850F13A61DAD5E531 ] AdobeFlashPlayerUpdateSvc
12:02:13.0131 0x10bc  aswSP - ok
12:02:13.0179 0x10bc  [ AF01CD260A9EF60B09029C9F5EF99040, C74A94598DC8DBD3AB13E43A60ED12698A121332446867FC3B75745626E0B7CB ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
12:02:13.0195 0x10bc  aswTdi - ok
12:02:13.0206 0x10bc  [ B2D7EE52633CA8831DDAFCA81C2D46C3, 017C6C376520380F29AF465F1464C3652D421C4B873B7AC2647498F356032361 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
12:02:13.0227 0x10bc  aswVmm - ok
12:02:13.0282 0x10bc  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:02:13.0312 0x10bc  AsyncMac - ok
12:02:13.0342 0x10bc  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
12:02:13.0357 0x10bc  atapi - ok
12:02:13.0390 0x10bc  [ 35290682DBDB9CEDE934B73369F3CEDE, 4938D052AA1AC75294C7DDCC42CB580A92A5393FE4ACB8F9F6ABE20F17CA527D ] AtiHDAudioService C:\Windows\system32\drivers\AtihdLH3.sys
12:02:13.0406 0x10bc  AtiHDAudioService - ok
12:02:13.0457 0x10bc  [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:02:13.0487 0x10bc  AudioEndpointBuilder - ok
12:02:13.0515 0x10bc  [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:02:13.0545 0x10bc  Audiosrv - ok
12:02:13.0649 0x10bc  [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:02:13.0663 0x10bc  avast! Antivirus - ok
12:02:13.0689 0x10bc  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:02:13.0691 0x12a4  Object send P2P result: true
12:02:13.0721 0x10bc  Beep - ok
12:02:13.0759 0x10bc  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
12:02:13.0793 0x10bc  BFE - ok
12:02:13.0898 0x10bc  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\system32\qmgr.dll
12:02:13.0961 0x10bc  BITS - ok
12:02:13.0967 0x10bc  blbdrive - ok
12:02:14.0025 0x10bc  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:02:14.0067 0x10bc  bowser - ok
12:02:14.0102 0x10bc  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
12:02:14.0129 0x10bc  BrFiltLo - ok
12:02:14.0134 0x10bc  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
12:02:14.0158 0x10bc  BrFiltUp - ok
12:02:14.0194 0x10bc  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
12:02:14.0229 0x10bc  Browser - ok
12:02:14.0236 0x10bc  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
12:02:14.0288 0x10bc  Brserid - ok
12:02:14.0295 0x10bc  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
12:02:14.0348 0x10bc  BrSerWdm - ok
12:02:14.0353 0x10bc  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
12:02:14.0403 0x10bc  BrUsbMdm - ok
12:02:14.0409 0x10bc  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
12:02:14.0459 0x10bc  BrUsbSer - ok
12:02:14.0478 0x10bc  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:02:14.0530 0x10bc  BTHMODEM - ok
12:02:14.0673 0x10bc  catchme - ok
12:02:14.0696 0x10bc  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:02:14.0729 0x10bc  cdfs - ok
12:02:14.0763 0x10bc  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:02:14.0789 0x10bc  cdrom - ok
12:02:14.0821 0x10bc  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
12:02:14.0846 0x10bc  CertPropSvc - ok
12:02:14.0861 0x10bc  [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass        C:\Windows\system32\drivers\circlass.sys
12:02:14.0912 0x10bc  circlass - ok
12:02:14.0946 0x10bc  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
12:02:14.0971 0x10bc  CLFS - ok
12:02:15.0026 0x10bc  [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:02:15.0042 0x10bc  clr_optimization_v2.0.50727_32 - ok
12:02:15.0068 0x10bc  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:02:15.0089 0x10bc  clr_optimization_v4.0.30319_32 - ok
12:02:15.0099 0x10bc  [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:02:15.0113 0x10bc  cmdide - ok
12:02:15.0128 0x10bc  [ 82B8C91D327CFECF76CB58716F7D4997, 6F06A4BC44B170BB28BF464E9BB5216D39D11CB8D442570B575A741B032EAEE6 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
12:02:15.0142 0x10bc  Compbatt - ok
12:02:15.0153 0x10bc  COMSysApp - ok
12:02:15.0170 0x10bc  [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:02:15.0184 0x10bc  crcdisk - ok
12:02:15.0191 0x10bc  [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
12:02:15.0243 0x10bc  Crusoe - ok
12:02:15.0286 0x10bc  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:02:15.0309 0x10bc  CryptSvc - ok
12:02:15.0379 0x10bc  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:02:15.0433 0x10bc  DcomLaunch - ok
12:02:15.0469 0x10bc  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:02:15.0489 0x10bc  DfsC - ok
12:02:15.0620 0x10bc  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
12:02:15.0962 0x10bc  DFSR - ok
12:02:16.0032 0x10bc  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
12:02:16.0065 0x10bc  Dhcp - ok
12:02:16.0126 0x10bc  [ 2A312D761AE650B1BF1296733E872AAC, A05BB3B3BF2DA68599E593BB4367774A74141DE327092C77BCDA3C0F36C8D6AD ] DirMngr         C:\Program Files\GNU\GnuPG\dirmngr.exe
12:02:16.0141 0x10bc  DirMngr - detected UnsignedFile.Multi.Generic ( 1 )
12:02:16.0497 0x10bc  Detect skipped due to KSN trusted
12:02:16.0497 0x10bc  DirMngr - ok
12:02:16.0528 0x10bc  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
12:02:16.0566 0x10bc  disk - ok
12:02:16.0592 0x10bc  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:02:16.0615 0x10bc  Dnscache - ok
12:02:16.0648 0x10bc  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
12:02:16.0680 0x10bc  dot3svc - ok
12:02:16.0713 0x10bc  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
12:02:16.0748 0x10bc  DPS - ok
12:02:16.0765 0x10bc  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:02:16.0782 0x10bc  drmkaud - ok
12:02:16.0830 0x10bc  [ 00C161B3D20AE0F9C7C3C0EB53AB7155, 38FE83B482FA580B292F7DFC8B372C78AECD6FF53EC41EB7BF4A2461827CDD64 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
12:02:16.0851 0x10bc  dtsoftbus01 - ok
12:02:16.0918 0x10bc  [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:02:16.0959 0x10bc  DXGKrnl - ok
12:02:17.0033 0x10bc  [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
12:02:17.0099 0x10bc  E1G60 - ok
12:02:17.0135 0x10bc  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
12:02:17.0161 0x10bc  EapHost - ok
12:02:17.0204 0x10bc  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
12:02:17.0224 0x10bc  Ecache - ok
12:02:17.0263 0x10bc  [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:02:17.0288 0x10bc  elxstor - ok
12:02:17.0341 0x10bc  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
12:02:17.0385 0x10bc  EMDMgmt - ok
12:02:17.0466 0x10bc  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
12:02:17.0502 0x10bc  EventSystem - ok
12:02:17.0539 0x10bc  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:02:17.0561 0x10bc  exfat - ok
12:02:17.0623 0x10bc  [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:02:17.0645 0x10bc  fastfat - ok
12:02:17.0673 0x10bc  [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:02:17.0725 0x10bc  fdc - ok
12:02:17.0752 0x10bc  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
12:02:17.0784 0x10bc  fdPHost - ok
12:02:17.0805 0x10bc  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:02:17.0911 0x10bc  FDResPub - ok
12:02:18.0031 0x10bc  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:02:18.0091 0x10bc  FileInfo - ok
12:02:18.0099 0x10bc  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:02:18.0130 0x10bc  Filetrace - ok
12:02:18.0137 0x10bc  [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:02:18.0187 0x10bc  flpydisk - ok
12:02:18.0209 0x10bc  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:02:18.0231 0x10bc  FltMgr - ok
12:02:18.0441 0x10bc  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
12:02:18.0504 0x10bc  FontCache - ok
12:02:18.0644 0x10bc  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:02:18.0691 0x10bc  FontCache3.0.0.0 - ok
12:02:18.0722 0x10bc  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:02:18.0753 0x10bc  Fs_Rec - ok
12:02:18.0785 0x10bc  [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:02:18.0831 0x10bc  gagp30kx - ok
12:02:18.0831 0x10bc  gfjnxobt - ok
12:02:18.0956 0x10bc  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
12:02:19.0034 0x10bc  gpsvc - ok
12:02:19.0065 0x10bc  [ 3F90E001369A07243763BD5A523D8722, 25907F85787D879E75C3FE74C93567382AFB2D528BEEC61D71E3A6BE2D71DFBE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:02:19.0097 0x10bc  HdAudAddService - ok
12:02:19.0143 0x10bc  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:02:19.0190 0x10bc  HDAudBus - ok
12:02:19.0221 0x10bc  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:02:19.0268 0x10bc  HidBth - ok
12:02:19.0268 0x10bc  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:02:19.0315 0x10bc  HidIr - ok
12:02:19.0377 0x10bc  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\System32\hidserv.dll
12:02:19.0393 0x10bc  hidserv - ok
12:02:19.0424 0x10bc  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:02:19.0440 0x10bc  HidUsb - ok
12:02:19.0471 0x10bc  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:02:19.0502 0x10bc  hkmsvc - ok
12:02:19.0518 0x10bc  [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
12:02:19.0533 0x10bc  HpCISSs - ok
12:02:19.0580 0x10bc  [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:02:19.0627 0x10bc  HTTP - ok
12:02:19.0658 0x10bc  [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp           C:\Windows\system32\drivers\i2omp.sys
12:02:19.0674 0x10bc  i2omp - ok
12:02:19.0689 0x10bc  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:02:19.0721 0x10bc  i8042prt - ok
12:02:19.0752 0x10bc  [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
12:02:19.0767 0x10bc  iaStorV - ok
12:02:19.0861 0x10bc  [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:02:20.0033 0x10bc  idsvc - ok
12:02:20.0095 0x10bc  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:02:20.0157 0x10bc  iirsp - ok
12:02:20.0267 0x10bc  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:02:20.0391 0x10bc  IKEEXT - ok
12:02:20.0407 0x10bc  [ 97469037714070E45194ED318D636401, DDB5AE39BE0BD37ECB44969A5FA740E5B1169342347D0DB3E5DF0353A6708271 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:02:20.0485 0x10bc  intelide - ok
12:02:20.0501 0x10bc  [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:02:20.0547 0x10bc  intelppm - ok
12:02:20.0594 0x10bc  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:02:20.0625 0x10bc  IPBusEnum - ok
12:02:20.0657 0x10bc  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:02:20.0688 0x10bc  IpFilterDriver - ok
12:02:20.0719 0x10bc  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:02:20.0735 0x10bc  iphlpsvc - ok
12:02:20.0750 0x10bc  IpInIp - ok
12:02:20.0750 0x10bc  [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
12:02:20.0797 0x10bc  IPMIDRV - ok
12:02:20.0813 0x10bc  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
12:02:20.0844 0x10bc  IPNAT - ok
12:02:20.0859 0x10bc  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:02:20.0891 0x10bc  IRENUM - ok
12:02:20.0922 0x10bc  [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:02:20.0937 0x10bc  isapnp - ok
12:02:20.0953 0x10bc  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
12:02:20.0984 0x10bc  iScsiPrt - ok
12:02:20.0984 0x10bc  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
12:02:21.0000 0x10bc  iteatapi - ok
12:02:21.0015 0x10bc  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
12:02:21.0031 0x10bc  iteraid - ok
12:02:21.0047 0x10bc  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:02:21.0062 0x10bc  kbdclass - ok
12:02:21.0078 0x10bc  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:02:21.0093 0x10bc  kbdhid - ok
12:02:21.0125 0x10bc  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
12:02:21.0140 0x10bc  KeyIso - ok
12:02:21.0265 0x10bc  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:02:21.0296 0x10bc  KSecDD - ok
12:02:21.0343 0x10bc  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:02:21.0390 0x10bc  KtmRm - ok
12:02:21.0421 0x10bc  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\System32\srvsvc.dll
12:02:21.0452 0x10bc  LanmanServer - ok
12:02:21.0483 0x10bc  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:02:21.0515 0x10bc  LanmanWorkstation - ok
12:02:21.0530 0x10bc  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:02:21.0561 0x10bc  lltdio - ok
12:02:21.0639 0x10bc  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:02:21.0686 0x10bc  lltdsvc - ok
12:02:21.0717 0x10bc  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:02:21.0764 0x10bc  lmhosts - ok
12:02:21.0811 0x10bc  [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:02:21.0842 0x10bc  LSI_FC - ok
12:02:21.0858 0x10bc  [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:02:21.0873 0x10bc  LSI_SAS - ok
12:02:21.0889 0x10bc  [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:02:21.0905 0x10bc  LSI_SCSI - ok
12:02:21.0936 0x10bc  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
12:02:21.0967 0x10bc  luafv - ok
12:02:21.0967 0x10bc  [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas         C:\Windows\system32\drivers\megasas.sys
12:02:21.0983 0x10bc  megasas - ok
12:02:22.0014 0x10bc  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
12:02:22.0045 0x10bc  MMCSS - ok
12:02:22.0061 0x10bc  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
12:02:22.0092 0x10bc  Modem - ok
12:02:22.0107 0x10bc  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:02:22.0139 0x10bc  monitor - ok
12:02:22.0154 0x10bc  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:02:22.0170 0x10bc  mouclass - ok
12:02:22.0185 0x10bc  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:02:22.0217 0x10bc  mouhid - ok
12:02:22.0232 0x10bc  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
12:02:22.0263 0x10bc  MountMgr - ok
12:02:22.0295 0x10bc  [ 28048289E32294004A86935CC40A3252, D397C3BAD6BCDA33FA0982E10677598E8BDF69A0933D19A36873CB45BA4FB819 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:02:22.0310 0x10bc  MozillaMaintenance - ok
12:02:22.0373 0x10bc  [ 6460D4A5C981567E74A7AC1349DE10F5, 9C16035B9A9BE3D7077851621E9BDED223B4C6A156562076957B49B9FCAB3A05 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
12:02:22.0404 0x10bc  MpFilter - ok
12:02:22.0419 0x10bc  [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:02:22.0435 0x10bc  mpio - ok
12:02:22.0451 0x10bc  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:02:22.0466 0x10bc  mpsdrv - ok
12:02:22.0513 0x10bc  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:02:22.0560 0x10bc  MpsSvc - ok
12:02:22.0575 0x10bc  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
12:02:22.0575 0x10bc  Mraid35x - ok
12:02:22.0607 0x10bc  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:02:22.0622 0x10bc  MRxDAV - ok
12:02:22.0653 0x10bc  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:02:22.0685 0x10bc  mrxsmb - ok
12:02:22.0700 0x10bc  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:02:22.0731 0x10bc  mrxsmb10 - ok
12:02:22.0731 0x10bc  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:02:22.0747 0x10bc  mrxsmb20 - ok
12:02:22.0763 0x10bc  [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:02:22.0778 0x10bc  msahci - ok
12:02:22.0794 0x10bc  [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:02:22.0809 0x10bc  msdsm - ok
12:02:22.0841 0x10bc  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
12:02:22.0872 0x10bc  MSDTC - ok
12:02:22.0903 0x10bc  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:02:22.0934 0x10bc  Msfs - ok
12:02:22.0950 0x10bc  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:02:22.0965 0x10bc  msisadrv - ok
12:02:22.0997 0x10bc  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:02:23.0028 0x10bc  MSiSCSI - ok
12:02:23.0043 0x10bc  msiserver - ok
12:02:23.0043 0x10bc  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:02:23.0075 0x10bc  MSKSSRV - ok
12:02:23.0121 0x10bc  [ A4B109D057E15A438CE74E5B71187417, C91568C1AE2863218988D4D7A2B64041AB2C1EE2E9DF3720407FCE513ADA056F ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:02:23.0137 0x10bc  MsMpSvc - ok
12:02:23.0153 0x10bc  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:02:23.0184 0x10bc  MSPCLOCK - ok
12:02:23.0184 0x10bc  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:02:23.0215 0x10bc  MSPQM - ok
12:02:23.0246 0x10bc  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:02:23.0277 0x10bc  MsRPC - ok
12:02:23.0293 0x10bc  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:02:23.0309 0x10bc  mssmbios - ok
12:02:23.0324 0x10bc  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:02:23.0355 0x10bc  MSTEE - ok
12:02:23.0371 0x10bc  [ D48659BB24C48345D926ECB45C1EBDF5, EDEDE58316827530C25F8085F62AD48EA6D44B0F8AC1917B940F53B02CF72EA6 ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
12:02:23.0387 0x10bc  MTsensor - ok
12:02:23.0387 0x10bc  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:02:23.0418 0x10bc  Mup - ok
12:02:23.0418 0x10bc  NANMp50 - ok
12:02:23.0418 0x10bc  NANSp50 - ok
12:02:23.0480 0x10bc  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
12:02:23.0511 0x10bc  napagent - ok
12:02:23.0543 0x10bc  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:02:23.0574 0x10bc  NativeWifiP - ok
12:02:23.0621 0x10bc  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:02:23.0667 0x10bc  NDIS - ok
12:02:23.0699 0x10bc  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:02:23.0730 0x10bc  NdisTapi - ok
12:02:23.0745 0x10bc  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:02:23.0761 0x10bc  Ndisuio - ok
12:02:23.0777 0x10bc  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:02:23.0808 0x10bc  NdisWan - ok
12:02:23.0808 0x10bc  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:02:23.0839 0x10bc  NDProxy - ok
12:02:23.0870 0x10bc  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:02:23.0901 0x10bc  NetBIOS - ok
12:02:23.0948 0x10bc  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
12:02:23.0995 0x10bc  netbt - ok
12:02:24.0011 0x10bc  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
12:02:24.0042 0x10bc  Netlogon - ok
12:02:24.0120 0x10bc  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
12:02:24.0182 0x10bc  Netman - ok
12:02:24.0229 0x10bc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:02:24.0260 0x10bc  NetMsmqActivator - ok
12:02:24.0260 0x10bc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:02:24.0291 0x10bc  NetPipeActivator - ok
12:02:24.0323 0x10bc  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
12:02:24.0369 0x10bc  netprofm - ok
12:02:24.0369 0x10bc  netr28u - ok
12:02:24.0385 0x10bc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:02:24.0416 0x10bc  NetTcpActivator - ok
12:02:24.0416 0x10bc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:02:24.0447 0x10bc  NetTcpPortSharing - ok
12:02:24.0479 0x10bc  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:02:24.0510 0x10bc  nfrd960 - ok
12:02:24.0557 0x10bc  [ 6A83B8AF342E61DEE353BAA81F67B7DA, F883A69DC57A203CEF4A264ADA3669EFA11149FE479A32FF38A37C86D24D7DE7 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:02:24.0572 0x10bc  NisDrv - ok
12:02:24.0619 0x10bc  [ 877C975D6FED8B12C445312D1286771E, 2FD5F2FE0414D00B8E4EF389E1AD11356C14F700A906770B0AB88B464D963948 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
12:02:24.0666 0x10bc  NisSrv - ok
12:02:24.0713 0x10bc  [ A2D5A587A4F30E1B3E9D0FD8D736F8C4, BC50D44F29404F4FE9F77F539BBD0B43D41BA081A0B48A57602FB1CEFC1C1B4F ] NitroReaderDriverReadSpool3 C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
12:02:24.0728 0x10bc  NitroReaderDriverReadSpool3 - ok
12:02:24.0759 0x10bc  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:02:24.0822 0x10bc  NlaSvc - ok
12:02:24.0853 0x10bc  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:02:24.0869 0x10bc  Npfs - ok
12:02:24.0884 0x10bc  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
12:02:24.0915 0x10bc  nsi - ok
12:02:24.0915 0x10bc  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:02:24.0947 0x10bc  nsiproxy - ok
12:02:25.0274 0x10bc  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:02:25.0383 0x10bc  Ntfs - ok
12:02:25.0446 0x10bc  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
12:02:25.0508 0x10bc  ntrigdigi - ok
12:02:25.0524 0x10bc  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
12:02:25.0555 0x10bc  Null - ok
12:02:25.0586 0x10bc  [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:02:25.0602 0x10bc  nvraid - ok
12:02:25.0602 0x10bc  [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:02:25.0617 0x10bc  nvstor - ok
12:02:25.0633 0x10bc  [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:02:25.0649 0x10bc  nv_agp - ok
12:02:25.0649 0x10bc  NwlnkFlt - ok
12:02:25.0664 0x10bc  NwlnkFwd - ok
12:02:25.0664 0x10bc  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:02:25.0727 0x10bc  ohci1394 - ok
12:02:25.0914 0x10bc  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
12:02:25.0992 0x10bc  p2pimsvc - ok
12:02:26.0039 0x10bc  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:02:26.0085 0x10bc  p2psvc - ok
12:02:26.0163 0x10bc  [ 8A79FDF04A73428597E2CAF9D0D67850, DB438FDE5510AB2F350ED1AC4CF0E99D3CC665FE46533A438A8FDA4DAF950F93 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
12:02:26.0195 0x10bc  Parport - ok
12:02:26.0241 0x10bc  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:02:26.0273 0x10bc  partmgr - ok
12:02:26.0288 0x10bc  [ 6C580025C81CAF3AE9E3617C22CAD00E, 64F9061196462085E5DCD3ACB97A0D8FC67CA9A96DDD6E2103AFFF1593AE236A ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
12:02:26.0319 0x10bc  Parvdm - ok
12:02:26.0366 0x10bc  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:02:26.0413 0x10bc  PcaSvc - ok
12:02:26.0460 0x10bc  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
12:02:26.0475 0x10bc  pci - ok
12:02:26.0538 0x10bc  [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide          C:\Windows\system32\drivers\pciide.sys
12:02:26.0569 0x10bc  pciide - ok
12:02:26.0600 0x10bc  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:02:26.0631 0x10bc  pcmcia - ok
12:02:26.0694 0x10bc  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:02:26.0787 0x10bc  PEAUTH - ok
12:02:27.0240 0x10bc  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
12:02:27.0474 0x10bc  pla - ok
12:02:27.0505 0x10bc  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:02:27.0552 0x10bc  PlugPlay - ok
12:02:27.0583 0x10bc  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
12:02:27.0630 0x10bc  PNRPAutoReg - ok
12:02:27.0661 0x10bc  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
12:02:27.0708 0x10bc  PNRPsvc - ok
12:02:27.0770 0x10bc  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:02:27.0833 0x10bc  PolicyAgent - ok
12:02:27.0879 0x10bc  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:02:27.0911 0x10bc  PptpMiniport - ok
12:02:27.0942 0x10bc  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
12:02:27.0973 0x10bc  Processor - ok
12:02:28.0004 0x10bc  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
12:02:28.0035 0x10bc  ProfSvc - ok
12:02:28.0035 0x10bc  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
12:02:28.0067 0x10bc  ProtectedStorage - ok
12:02:28.0082 0x10bc  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
12:02:28.0113 0x10bc  PSched - ok
12:02:28.0191 0x10bc  [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:02:28.0238 0x10bc  ql2300 - ok
12:02:28.0254 0x10bc  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:02:28.0269 0x10bc  ql40xx - ok
12:02:28.0316 0x10bc  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
12:02:28.0347 0x10bc  QWAVE - ok
12:02:28.0363 0x10bc  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:02:28.0379 0x10bc  QWAVEdrv - ok
12:02:28.0394 0x10bc  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:02:28.0425 0x10bc  RasAcd - ok
12:02:28.0457 0x10bc  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
12:02:28.0503 0x10bc  RasAuto - ok
12:02:28.0535 0x10bc  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:02:28.0566 0x10bc  Rasl2tp - ok
12:02:28.0613 0x10bc  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
12:02:28.0644 0x10bc  RasMan - ok
12:02:28.0675 0x10bc  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:02:28.0691 0x10bc  RasPppoe - ok
12:02:28.0706 0x10bc  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:02:28.0722 0x10bc  RasSstp - ok
12:02:28.0753 0x10bc  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:02:28.0784 0x10bc  rdbss - ok
12:02:28.0800 0x10bc  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:02:28.0831 0x10bc  RDPCDD - ok
12:02:28.0847 0x10bc  [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
12:02:28.0909 0x10bc  rdpdr - ok
12:02:28.0909 0x10bc  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:02:28.0940 0x10bc  RDPENCDD - ok
12:02:28.0971 0x10bc  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:02:29.0003 0x10bc  RDPWD - ok
12:02:29.0065 0x10bc  [ EA569D48B2E755AF6D96F03F3335D98A, EED2DCDF187A69F36A38129C8A1E0D6FE0EBF9232DEAF68A116E9A26E40AB636 ] RealtekCU       C:\Program Files\oem\11n USB Wireless LAN Utility\RtlService.exe
12:02:29.0065 0x10bc  RealtekCU - detected UnsignedFile.Multi.Generic ( 1 )
12:02:29.0439 0x10bc  Detect skipped due to KSN trusted
12:02:29.0439 0x10bc  RealtekCU - ok
12:02:29.0486 0x10bc  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:02:29.0564 0x10bc  RemoteAccess - ok
12:02:29.0611 0x10bc  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:02:29.0689 0x10bc  RemoteRegistry - ok
12:02:29.0720 0x10bc  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
12:02:29.0767 0x10bc  RpcLocator - ok
12:02:29.0829 0x10bc  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
12:02:29.0923 0x10bc  RpcSs - ok
12:02:29.0970 0x10bc  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:02:30.0001 0x10bc  rspndr - ok
12:02:30.0017 0x10bc  [ 283392AF1860ECDB5E0F8EBD7F3D72DF, B947025A41D7A16C48330ECE469860023D2109537A3DDC631C8EF9672687FF93 ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
12:02:30.0079 0x10bc  RTL8169 - ok
12:02:30.0141 0x10bc  [ 94A9B11D36AD10E1E69F84C7B01F58A5, B9E9919A00BD9530EC942A4ED20FDABA000F984F1674AD0177978466FAF46DBF ] RTL8192cu       C:\Windows\system32\DRIVERS\rtwlanu.sys
12:02:30.0266 0x10bc  RTL8192cu - ok
12:02:30.0282 0x10bc  RTL8192su - ok
12:02:30.0313 0x10bc  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
12:02:30.0329 0x10bc  SamSs - ok
12:02:30.0329 0x10bc  SANDRA - ok
12:02:30.0360 0x10bc  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:02:30.0375 0x10bc  sbp2port - ok
12:02:30.0391 0x10bc  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:02:30.0422 0x10bc  SCardSvr - ok
12:02:30.0485 0x10bc  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
12:02:30.0531 0x10bc  Schedule - ok
12:02:30.0547 0x10bc  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:02:30.0578 0x10bc  SCPolicySvc - ok
12:02:30.0609 0x10bc  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:02:30.0625 0x10bc  SDRSVC - ok
12:02:30.0719 0x10bc  [ 206387AB881E93A1A6EB89966C8651F1, 3BF9DFF3E70F0787F7F94BE5B9717DFADD9E13AB8154FAE295CEAC834F0835E5 ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
12:02:30.0765 0x10bc  SDScannerService - ok
12:02:30.0843 0x10bc  [ A529CFE32565C0B145578FFB2B32C9A5, 4B1596CBDDA74D510707FD475AAB3A89B1203E0B95ECAE3756CAA56555F9F66D ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
12:02:30.0953 0x10bc  SDUpdateService - ok
12:02:31.0015 0x10bc  [ CB63BDB77BB86549FC3303C2F11EDC18, 1C96C082B9CE08C8F3C088D5DE68BA8783E6F6A837A88E2654BC4CBCF7B81846 ] SDWSCService    C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
12:02:31.0046 0x10bc  SDWSCService - ok
12:02:31.0093 0x10bc  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:02:31.0155 0x10bc  secdrv - ok
12:02:31.0187 0x10bc  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
12:02:31.0218 0x10bc  seclogon - ok
12:02:31.0233 0x10bc  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\system32\sens.dll
12:02:31.0265 0x10bc  SENS - ok
12:02:31.0296 0x10bc  [ CE9EC966638EF0B10B864DDEDF62A099, 2DEC5A8C947D87C12B342F15B8A552A0D49B979A2AC32D2C97FC7A3A76C34524 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:02:31.0327 0x10bc  Serenum - ok
12:02:31.0327 0x10bc  [ 6D663022DB3E7058907784AE14B69898, 54263888C64A7F010D3B5E399369B0F3FF3AF0A0DE8ADB502B98277533E4D45F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:02:31.0358 0x10bc  Serial - ok
12:02:31.0374 0x10bc  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:02:31.0421 0x10bc  sermouse - ok
12:02:31.0467 0x10bc  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:02:31.0499 0x10bc  SessionEnv - ok
12:02:31.0499 0x10bc  [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:02:31.0545 0x10bc  sffdisk - ok
12:02:31.0545 0x10bc  [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:02:31.0592 0x10bc  sffp_mmc - ok
12:02:31.0592 0x10bc  [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:02:31.0639 0x10bc  sffp_sd - ok
12:02:31.0639 0x10bc  [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
12:02:31.0686 0x10bc  sfloppy - ok
12:02:31.0717 0x10bc  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:02:31.0748 0x10bc  SharedAccess - ok
12:02:31.0779 0x10bc  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:02:31.0811 0x10bc  ShellHWDetection - ok
12:02:31.0826 0x10bc  [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:02:31.0842 0x10bc  sisagp - ok
12:02:31.0857 0x10bc  [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
12:02:31.0873 0x10bc  SiSRaid2 - ok
12:02:31.0889 0x10bc  [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:02:31.0904 0x10bc  SiSRaid4 - ok
12:02:32.0076 0x10bc  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
12:02:32.0279 0x10bc  slsvc - ok
12:02:32.0310 0x10bc  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
12:02:32.0341 0x10bc  SLUINotify - ok
12:02:32.0357 0x10bc  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:02:32.0388 0x10bc  Smb - ok
12:02:32.0419 0x10bc  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:02:32.0435 0x10bc  SNMPTRAP - ok
12:02:32.0466 0x10bc  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:02:32.0481 0x10bc  spldr - ok
12:02:32.0528 0x10bc  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
12:02:32.0544 0x10bc  Spooler - ok
12:02:32.0622 0x10bc  [ CBEAEA2729985BFB260641AB424E0166, 2FCED2951D5A1ACF93150BB0CA2293CCBE4227EBAAEA8438A78B5AFC6591F375 ] sptd            C:\Windows\System32\Drivers\sptd.sys
12:02:33.0137 0x10bc  sptd - ok
12:02:33.0199 0x10bc  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:02:33.0215 0x10bc  srv - ok
12:02:33.0261 0x10bc  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:02:33.0277 0x10bc  srv2 - ok
12:02:33.0293 0x10bc  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:02:33.0308 0x10bc  srvnet - ok
12:02:33.0355 0x10bc  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:02:33.0402 0x10bc  SSDPSRV - ok
12:02:33.0417 0x10bc  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:02:33.0433 0x10bc  SstpSvc - ok
12:02:33.0495 0x10bc  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
12:02:33.0558 0x10bc  stisvc - ok
12:02:33.0589 0x10bc  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:02:33.0605 0x10bc  swenum - ok
12:02:33.0683 0x10bc  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
12:02:33.0729 0x10bc  swprv - ok
12:02:33.0745 0x10bc  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
12:02:33.0761 0x10bc  Symc8xx - ok
12:02:33.0776 0x10bc  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
12:02:33.0792 0x10bc  Sym_hi - ok
12:02:33.0792 0x10bc  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
12:02:33.0807 0x10bc  Sym_u3 - ok
12:02:33.0854 0x10bc  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
12:02:33.0917 0x10bc  SysMain - ok
12:02:33.0932 0x10bc  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:02:33.0963 0x10bc  TabletInputService - ok
12:02:34.0010 0x10bc  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:02:34.0057 0x10bc  TapiSrv - ok
12:02:34.0088 0x10bc  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
12:02:34.0119 0x10bc  TBS - ok
12:02:34.0182 0x10bc  [ A4196D394207369E1431E8681B373312, BEF96BAB70FDF94F8CB2942BDEA9B4D934443E5305E3FD737809C3F7524B1E8E ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:02:34.0244 0x10bc  Tcpip - ok
12:02:34.0275 0x10bc  [ A4196D394207369E1431E8681B373312, BEF96BAB70FDF94F8CB2942BDEA9B4D934443E5305E3FD737809C3F7524B1E8E ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
12:02:34.0322 0x10bc  Tcpip6 - ok
12:02:34.0353 0x10bc  [ 95389980F70FC4990A4395A0B8BBE1D6, FB5CBC85733A4EC4FB9F210A5D4E5989F6A3F2995D895F5B41163CDFC04DB82C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:02:34.0369 0x10bc  tcpipreg - ok
12:02:34.0400 0x10bc  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:02:34.0431 0x10bc  TDPIPE - ok
12:02:34.0431 0x10bc  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:02:34.0463 0x10bc  TDTCP - ok
12:02:34.0494 0x10bc  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:02:34.0525 0x10bc  tdx - ok
12:02:34.0541 0x10bc  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:02:34.0556 0x10bc  TermDD - ok
12:02:34.0603 0x10bc  [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService     C:\Windows\System32\termsrv.dll
12:02:34.0650 0x10bc  TermService - ok
12:02:34.0681 0x10bc  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
12:02:34.0712 0x10bc  Themes - ok
12:02:34.0728 0x10bc  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
12:02:34.0759 0x10bc  THREADORDER - ok
12:02:34.0790 0x10bc  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
12:02:34.0821 0x10bc  TrkWks - ok
12:02:34.0868 0x10bc  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:02:34.0884 0x10bc  TrustedInstaller - ok
12:02:34.0915 0x10bc  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:02:34.0931 0x10bc  tssecsrv - ok
12:02:34.0962 0x10bc  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
12:02:34.0977 0x10bc  tunmp - ok
12:02:34.0993 0x10bc  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:02:35.0009 0x10bc  tunnel - ok
12:02:35.0040 0x10bc  [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:02:35.0055 0x10bc  uagp35 - ok
12:02:35.0087 0x10bc  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:02:35.0133 0x10bc  udfs - ok
12:02:35.0149 0x10bc  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:02:35.0180 0x10bc  UI0Detect - ok
12:02:35.0196 0x10bc  [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:02:35.0211 0x10bc  uliagpkx - ok
12:02:35.0227 0x10bc  [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
12:02:35.0258 0x10bc  uliahci - ok
12:02:35.0274 0x10bc  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
12:02:35.0289 0x10bc  UlSata - ok
12:02:35.0289 0x10bc  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
12:02:35.0321 0x10bc  ulsata2 - ok
12:02:35.0336 0x10bc  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:02:35.0367 0x10bc  umbus - ok
12:02:35.0399 0x10bc  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
12:02:35.0445 0x10bc  upnphost - ok
12:02:35.0477 0x10bc  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:02:35.0492 0x10bc  usbccgp - ok
12:02:35.0492 0x10bc  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:02:35.0555 0x10bc  usbcir - ok
12:02:35.0555 0x10bc  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:02:35.0570 0x10bc  usbehci - ok
12:02:35.0586 0x10bc  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:02:35.0617 0x10bc  usbhub - ok
12:02:35.0633 0x10bc  [ D457EBD0C3A8B3A3A144355B5EE91CBC, 6AD52BDBB1607A48F0B02E663B97C3A00E3345B1B12C259608A5AE728C1C06B2 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
12:02:35.0648 0x10bc  usbohci - ok
12:02:35.0664 0x10bc  [ B51E52ACF758BE00EF3A58EA452FE360, 79E629EC5DE8AB7F31B0EE9AE94C71E8F703FED5C09A816228726974F7790C85 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
12:02:35.0726 0x10bc  usbprint - ok
12:02:35.0726 0x10bc  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:02:35.0757 0x10bc  USBSTOR - ok
12:02:35.0757 0x10bc  [ 325DBBACB8A36AF9988CCF40EAC228CC, 22FE5658A12296634FBE9D8565485BEE8CB200C47182F70DC9D2B0442E10C4AA ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
12:02:35.0820 0x10bc  usbuhci - ok
12:02:35.0835 0x10bc  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
12:02:35.0867 0x10bc  UxSms - ok
12:02:35.0882 0x10bc  vdrv1000 - ok
12:02:35.0945 0x10bc  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
12:02:35.0991 0x10bc  vds - ok
12:02:36.0007 0x10bc  [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:02:36.0054 0x10bc  vga - ok
12:02:36.0085 0x10bc  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:02:36.0116 0x10bc  VgaSave - ok
12:02:36.0116 0x10bc  [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:02:36.0132 0x10bc  viaagp - ok
12:02:36.0147 0x10bc  [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7           C:\Windows\system32\drivers\viac7.sys
12:02:36.0210 0x10bc  ViaC7 - ok
12:02:36.0210 0x10bc  [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:02:36.0225 0x10bc  viaide - ok
12:02:36.0225 0x10bc  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:02:36.0241 0x10bc  volmgr - ok
12:02:36.0272 0x10bc  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:02:36.0303 0x10bc  volmgrx - ok
12:02:36.0319 0x10bc  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:02:36.0350 0x10bc  volsnap - ok
12:02:36.0350 0x10bc  [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:02:36.0366 0x10bc  vsmraid - ok
12:02:36.0428 0x10bc  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
12:02:36.0506 0x10bc  VSS - ok
12:02:36.0553 0x10bc  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
12:02:36.0600 0x10bc  W32Time - ok
12:02:36.0600 0x10bc  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:02:36.0647 0x10bc  WacomPen - ok
12:02:36.0678 0x10bc  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:02:36.0693 0x10bc  Wanarp - ok
12:02:36.0709 0x10bc  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:02:36.0725 0x10bc  Wanarpv6 - ok
12:02:36.0740 0x10bc  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:02:36.0771 0x10bc  wcncsvc - ok
12:02:36.0818 0x10bc  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:02:36.0849 0x10bc  WcsPlugInService - ok
12:02:36.0865 0x10bc  [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd              C:\Windows\system32\drivers\wd.sys
12:02:36.0881 0x10bc  Wd - ok
12:02:36.0927 0x10bc  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:02:36.0974 0x10bc  Wdf01000 - ok
12:02:37.0005 0x10bc  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:02:37.0037 0x10bc  WdiServiceHost - ok
12:02:37.0052 0x10bc  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:02:37.0083 0x10bc  WdiSystemHost - ok
12:02:37.0115 0x10bc  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
12:02:37.0146 0x10bc  WebClient - ok
12:02:37.0161 0x10bc  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:02:37.0193 0x10bc  Wecsvc - ok
12:02:37.0224 0x10bc  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:02:37.0255 0x10bc  wercplsupport - ok
12:02:37.0286 0x10bc  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:02:37.0317 0x10bc  WerSvc - ok
12:02:37.0364 0x10bc  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:02:37.0395 0x10bc  WinDefend - ok
12:02:37.0411 0x10bc  WinHttpAutoProxySvc - ok
12:02:37.0458 0x10bc  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:02:37.0489 0x10bc  Winmgmt - ok
12:02:37.0567 0x10bc  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:02:37.0707 0x10bc  WinRM - ok
12:02:37.0801 0x10bc  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:02:37.0848 0x10bc  Wlansvc - ok
12:02:37.0879 0x10bc  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
12:02:37.0910 0x10bc  WmiAcpi - ok
12:02:37.0941 0x10bc  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:02:37.0973 0x10bc  wmiApSrv - ok
12:02:38.0051 0x10bc  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:02:38.0113 0x10bc  WMPNetworkSvc - ok
12:02:38.0160 0x10bc  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:02:38.0191 0x10bc  WPCSvc - ok
12:02:38.0222 0x10bc  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:02:38.0253 0x10bc  WPDBusEnum - ok
12:02:38.0285 0x10bc  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
12:02:38.0300 0x10bc  WpdUsb - ok
12:02:38.0394 0x10bc  [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:02:38.0441 0x10bc  WPFFontCache_v0400 - ok
12:02:38.0472 0x10bc  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:02:38.0503 0x10bc  ws2ifsl - ok
12:02:38.0534 0x10bc  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\system32\wscsvc.dll
12:02:38.0550 0x10bc  wscsvc - ok
12:02:38.0565 0x10bc  WSearch - ok
12:02:38.0675 0x10bc  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:02:38.0784 0x10bc  wuauserv - ok
12:02:38.0831 0x10bc  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:02:38.0862 0x10bc  WudfPf - ok
12:02:38.0862 0x10bc  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:02:38.0893 0x10bc  WUDFRd - ok
12:02:38.0909 0x10bc  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:02:38.0924 0x10bc  wudfsvc - ok
12:02:38.0940 0x10bc  ================ Scan global ===============================
12:02:38.0987 0x10bc  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
12:02:39.0033 0x10bc  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:02:39.0080 0x10bc  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:02:39.0127 0x10bc  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
12:02:39.0127 0x10bc  [ Global ] - ok
12:02:39.0127 0x10bc  ================ Scan MBR ==================================
12:02:39.0143 0x10bc  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:02:39.0330 0x10bc  \Device\Harddisk0\DR0 - ok
12:02:39.0330 0x10bc  ================ Scan VBR ==================================
12:02:39.0330 0x10bc  [ 04041FDB93E2C1A4CE579BF408071B58 ] \Device\Harddisk0\DR0\Partition1
12:02:39.0361 0x10bc  \Device\Harddisk0\DR0\Partition1 - ok
12:02:39.0361 0x10bc  ================ Scan generic autorun ======================
12:02:39.0439 0x10bc  [ E279E55C0D5F5DA2E1FD268EBD12F268, 06C40AF999881699DD9B73440D2ED48F404864C3FB8FF7B36560759892CAAA12 ] c:\Program Files\Microsoft Security Client\msseces.exe
12:02:39.0501 0x10bc  MSC - ok
12:02:39.0720 0x10bc  [ B5A4EBA9487F08BECC843A87422B8052, EA905E9169CE8C934F2D6F7E319A75E31EA9E1840CC455298BEB3F92E22FCAAE ] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
12:02:40.0001 0x10bc  SDTray - ok
12:02:40.0219 0x10bc  [ 21B8FAAFA5CCD89663AAD5833ABF4B35, DE46AD49AE1ED34697EE387BB77E73BCD7DA60E6063E02660021A9C2EA3C0801 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
12:02:40.0500 0x10bc  AvastUI.exe - ok
12:02:40.0718 0x10bc  [ BD9F34DE12E1D8547BBE1E12A7F9F245, E9A087E70FA19F555247778F95917B0CB6A46EE3F6B7765FFA9380192BC4A919 ] C:\Program Files\CCleaner\CCleaner.exe
12:02:40.0921 0x10bc  ccleaner - ok
12:02:41.0108 0x10bc  [ 1B2B3215F4B6B735813844AC1769E239, FCC4D5E52329531904637C19F0BA6EBD857CDFB814D3DCD799062D049FF2E485 ] C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe
12:02:41.0280 0x10bc  Spybot-S&D Cleaning - ok
12:02:41.0358 0x10bc  [ 059C2F55E82C8EDB20E8F26B2A7D2B19, BC323A8B8E0C3A5C2ABF23EDA0314A6117B9C2BC417A66CA5D6B25773E84E8F1 ] C:\Program Files\Ruiware\WinPatrol\winpatrol.exe
12:02:41.0420 0x10bc  WinPatrol - ok
12:02:41.0810 0x10bc  [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe
12:02:41.0966 0x10bc  DAEMON Tools Lite - ok
12:02:41.0982 0x10bc  Waiting for KSN requests completion. In queue: 27
12:02:43.0027 0x10bc  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
12:02:43.0058 0x10bc  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
12:02:43.0089 0x10bc  Win FW state via NFP2: enabled
12:02:43.0355 0x10bc  ============================================================
12:02:43.0355 0x10bc  Scan finished
12:02:43.0355 0x10bc  ============================================================
12:02:43.0370 0x12b8  Detected object count: 0
12:02:43.0370 0x12b8  Actual detected object count: 0
12:02:58.0409 0x0a3c  Deinitialize success

jetzt vielleicht manuell nochmal besser hinbekommen. das mit dem zwischen die "[TDSSKILLER]" setzen geht nicht. bekomm eine meldung, dass mein text zu kurz ist oder es wird garnix zitiert.

gruß, thomas

schrauber · 23.11.2014, 08:21

Lade Dir bitte Windows Repair - All in one von tweaking.com hier herunter und installiere es.
Deaktiviere bitte (wenn möglich) Dein Antivirusprogramm.
Bedenke, dass die einzelnen Reparaturen einige Zeit benötigen. Starte keine anderen Anwendungen in dieser Zeit.
Starte das Programm und führe die Punkte 1-5 durch. (Siehe Bildanleitung)
Achte darauf, dass bei Dir die Häkchen so gesetzt sind wie unter Punkt 4.
Setze auch ein Häkchen bei "Restart/Shutdown System" und klicke "Restart System" an bevor Du Punkt 5 durchführst.

elagtric · 24.11.2014, 21:40

Zitat:

Zitat von schrauber

windowsrepair

erstmal vielen dank, da lag wohl einiges im argen.

wobei die anleitung mit dem bild bissl irreführend ist, da bei mir ab schritt 3 ein reboot erzwungen wurde. also nix mit 1:1 durchackern .....

hab glaube auch das sichern (in schritt 5 vergessen), da der ganze plan immer wirrer wurde.

jedenfalls wurde jede menge repariert und ich schau einfach mal, wie sich meine kiste die nexten tage verhält. das mit dem metager-problem (zuviele anfragen) hatte sich schon einen tag später wieder gegeben, aus dem mozilla-problem wurden statt "hänger" unregelmässige crash-reports ... details konnte ich aber aus der meldung nix copy&pasten ... scheint wohl nur mozilla vorbehalten ...

jedenfalls danke erstmal, und ich bewundere euch ehrlich ! dachte immer, ich hätte die kiste halbwegs im griff, aber die zeit steht wohl nicht still ... ich zieh den hut !

gruß, elagtric

schrauber · 25.11.2014, 17:34

Schalte bei FF mal die Hardwarebeschleunigung ab.

elagtric · 26.11.2014, 22:41

Zitat:

Zitat von schrauber

Schalte bei FF mal die Hardwarebeschleunigung ab.

oki, gerade disabled.

aber mich beschleicht so langsam das Gefühl, dass ich da vielleicht doch etwas kaputtrepariert oder beim Ausmisten zuviel gelöscht habe.

Firefox crasht jetzt eigentlich jedesmal, ca. 10 sek. nach Beenden. Neu hinzu kommt eine unbekannte Hardware, die bzw. deren Treiber bei jedem Neustart von Windows installiert werden möchte, was dann in einer unendlichen Suche ins Leere läuft.
Dann fehlen teilweise auch Symbole der aktiven Programme in der Startleiste ... vielleicht wirklich mal ein handfester Grund, alles neu aufzusetzen. Auch wenns erstmal wieder urig Arbeit macht, bis alles wieder so eingerichtet ist wie gewohnt.

Edit : hab gerade durch "about:crashes" in der adresszeile die crashreports gefunden, die ich auf platte vergebens gesucht habe. am aussagekräftigsten scheinen mir jene Zeilen zu sein :

Crash Reason EXCEPTION_BREAKPOINT

Processor Notes sp-processor03_phx1_mozilla_com.11942:2012; MozillaProcessorAlgorithm2015; skunk_classifier: reject - not a plugin hang

und :

{"phase":"Metrics Storage Backend","conditions":[{"name":"FHR: Flushing storage shutdown","state":{"shutdownInitiated":false,"initialized":false,"shutdownRequested":true,"initializeHadError":false,"providerManagerInProgress":true, "storageInProgress":false,"hasProviderManager":true,"hasStorage":true,"shutdownComplete":false},"filename":"resource://gre/modules/HealthReport.jsm","lineNumber":4360,"stack":["resource://gre/modules/HealthReport.jsm:AbstractHealthReporter.prototype<.init/<:4360",""]}]}

wobei ich da nicht wirklich erkenne, an was es nun hakt.

Gruß, elagtric

Zitat:

Zitat von elagtric

oki, gerade disabled.

...
Gruß, elagtric

nach zähem Ringen Mensch gegen Maschine und einer Neuinstallierung von Firefox verdichten sich die Anzeichen, dass auf irgendeine Weise AVAST! dazwischengefunkt hat.
Nach disablen der Schutzfunktion lief der Rechner sofort spürbar "runder".

konkret :

vorher :

- CCCleaner hing sich auf, wenn ich unter Extras den Autostartordner aufrufen wollte
- der neue Firefox weigerte sich beharrlich, die vorher auf den Desktop exportierten Bookmarks einzulesen.
- ständige "explorer antwortet nicht"

nachher : bis jetzt lüppt die Mühle wieder rund, hab erstmal den AVAST updatet und taste mich langsam wieder nach vorne.

Das mit den "verschwundenen Symbolen" lag wohl daran, dass ich im Zuge des vom "Tweaking.com windows repair" angeratenen "clean-boot" den umständlichen Weg via msconfig gewählt habe und davon ausging, dass das abschalten der Dienste ein einmaliger Vorgang wäre und beim nächsten Neustart wieder alles wie gewohnt geladen wird.

Vorteil der ganzen Sache: man bekommt wieder ein bissl Gefühl für seine Mühle, auch wenn der Weg ziemlich steinig ist

mal sehen, wie das ganze läuft, wenn ich den FF wieder auf alte Usability getrimmt habe. Vielleicht ist wirklich nur etwas beim AVAST! schiefgelaufen.

schrauber · 27.11.2014, 19:41

Ein AV Programm funkt da auch gerne mal rein, das ist korrekt. Ich würde dann Avast neu installieren.

elagtric · 29.11.2014, 01:43

Zitat:

Zitat von schrauber

Ein AV Programm funkt da auch gerne mal rein, das ist korrekt. Ich würde dann Avast neu installieren.

momentan sieht es so aus :

Avast updatet,
CCleaner + Firefox neu aufgesetzt

Firefox verhält sich auch nach re-installation der liebgewonnenen addons (bis auf (vorerst erstmal ) noscript und trackmenot ) absolut sauber.

lediglich der CCleaner stresst noch ein bissl. ich kann alle menupunkte auswählen oder starten, aber sobald ich "autostart" auswähle, bekomme ich "keine rückmeldung vom Programm"

mal gehts, mal nach einer Weile, meistens jedoch bekomme ich einen Hänger.

ansonst läuft alles rund, nur CCleaner stellt sich noch quer.

Werde bei Gelegenheit den Avast! mal komplett runterschmeissen und neu aufsetzen, danke für den Tip !

mehr als meine ehrliche Anerkennung kann ich Euch momentan nicht aussprechen, meine Frau betrachtet alle Spenden ausser für die Tierhilfe als "feindlich", aber ich hoffe, noch vor Weihnachten wenigstens 'nen Zwanni locker machen zu können. Unabhängig davon mach ich Werbung für Euch, wo's geht ... Ehre, wem Ehre gebührt !

macht weiter so !

schrauber · 29.11.2014, 20:01

Ok dann räumen wir noch auf

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

25.11.2014, 17:34	#9
schrauber /// the machine /// TB-Ausbilder	explorer / firefox antwortet nicht ... gehäuft Schalte bei FF mal die Hardwarebeschleunigung ab. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

27.11.2014, 19:41	#11
schrauber /// the machine /// TB-Ausbilder	explorer / firefox antwortet nicht ... gehäuft Ein AV Programm funkt da auch gerne mal rein, das ist korrekt. Ich würde dann Avast neu installieren. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

explorer / firefox antwortet nicht ... gehäuft

Plagegeister aller Art und deren Bekämpfung: explorer / firefox antwortet nicht ... gehäuft