Spamhaus + DNS Blacklist PBL und XBL

binar · 21.11.2014, 20:11

Hallo,

Ich habe das folgende Problem.

Ich kann kaum Websites öffnen. Muss des öfteren die Websites 4-5 neu laden. Es ist meistens egal um welche Website es sich handelt. Zudem habe ich auch andere Browser benutzt außer Chrome wie z.B. Firefox und IE.

Dieses Problem besteht erst seit dem 20.11.14 so gegen 10 Uhr am Abend hat es angefangen.

Ich habe auf dieser Website : ICSI Netalyzr

einen Test durchführen lassen. Dieser ergab das ich in einer DNS Blacklist eingetragen bin.
Ich habe ein wenig auf der Seite Spamhaus gelesen. Es geht da um PC´s geht welche Viren etc. haben. Diese kommen anscheinend in diese Blacklist. Korrigiert mich wenn ich da falsch liege.
Ich habe zudem nichts neues auf meinem Computer installiert. Ich habe auf einmal gemerkt das PC langsamer wurde. Neugestartet aber wenig geholfen, sowie Modem vom Strom genommen dachte es wäre vielleicht die Internetverbindung.

Mein PC: Win 8 64 Bit
8 Gb Ram
Internetanbieter: Unitymedia + 100er Leitung
Modem Technicolor TC 7200 sowie Router WNR 2200

Auf der Seite Spamhaus kann man seine IP eingeben und herausfinden ob man eingetragen ist, dies habe ich gemacht. Ich konnte mich sogar vom XBL aus der Liste entfernen.

Nur beim PBL verstehe ich nichts mehr.

Was soll ich jetzt machen. Laut meinem Anti Vira ist alles in Ordnung. Auch Malwarebytes hat nichts gefunden.

Bin für die Hilfe und Antworten sehr dankbar

mfg
binar

schrauber · 21.11.2014, 20:21

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

binar · 21.11.2014, 20:46

Hi ich hatte das Problem das die FRST und Addition txt datein zu viele Zeichen hatten mehr als 120000. Hört sich nicht gut an......

Ich habe sie als Anhang

FRST sind anscheinend zu groß für das Hochladen

binar · 21.11.2014, 21:53

Habe nun die FRST als Winrar hochgeladen .

schrauber · 22.11.2014, 18:25

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

binar · 22.11.2014, 18:32

1. Teil FRST

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-11-2014
Ran by Skillchamp (administrator) on PC on 21-11-2014 20:38:21
Running from C:\Users\Skillchamp\Downloads
Loaded Profile: Skillchamp (Available profiles: Skillchamp)
Platform: Windows 8 Pro (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\AMD\amdacpusrsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [124208 2014-10-22] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [703736 2014-10-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2432053586-1222344974-1202538709-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2432053586-1222344974-1202538709-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5EBDEC773905D001
HKU\S-1-5-21-2432053586-1222344974-1202538709-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-21]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-21]
CHR Extension: (MEGA) - C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2014-11-21]
CHR Extension: (YouTube) - C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-21]
CHR Extension: (Google-Suche) - C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-21]
CHR Extension: (AdBlock) - C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-11-21]
CHR Extension: (Google Wallet) - C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-21]
CHR Extension: (Google Mail) - C:\Users\Skillchamp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-21]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
R2 amdacpusrsvc; C:\AMD\amdacpusrsvc.exe [82432 2014-04-17] () [File not signed]
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [432888 2014-10-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [432888 2014-10-23] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [164656 2014-10-22] (Avira Operations GmbH & Co. KG)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [274656 2014-04-18] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [215040 2013-12-19] (Advanced Micro Devices)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119272 2014-10-23] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131608 2014-10-23] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-10-23] (Avira Operations GmbH & Co. KG)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-21 20:38 - 2014-11-21 20:38 - 00008351 _____ () C:\Users\Skillchamp\Downloads\FRST.txt
2014-11-21 20:36 - 2014-11-21 20:36 - 00022521 _____ () C:\Users\Skillchamp\logfiles.rar
2014-11-21 20:34 - 2014-11-21 20:34 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\WinRAR
2014-11-21 20:33 - 2014-11-21 20:33 - 02034504 _____ () C:\Users\Skillchamp\Downloads\winrar-x64-511d.exe
2014-11-21 20:33 - 2014-11-21 20:33 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-11-21 20:33 - 2014-11-21 20:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-11-21 20:33 - 2014-11-21 20:33 - 00000000 ____D () C:\Program Files\WinRAR
2014-11-21 20:29 - 2014-11-21 20:29 - 01110476 _____ () C:\Users\Skillchamp\Downloads\7z920.exe
2014-11-21 20:29 - 2014-11-21 20:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-11-21 20:29 - 2014-11-21 20:29 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2014-11-21 20:23 - 2014-11-21 20:38 - 00000000 ____D () C:\FRST
2014-11-21 20:23 - 2014-11-21 20:23 - 02117632 _____ (Farbar) C:\Users\Skillchamp\Downloads\FRST64.exe
2014-11-21 18:06 - 2014-11-21 18:06 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense
2014-11-21 18:04 - 2014-11-21 18:04 - 08311744 _____ () C:\Users\Skillchamp\Downloads\MEGAsyncSetup.exe
2014-11-21 18:04 - 2014-11-21 18:04 - 00000000 ____D () C:\Users\Skillchamp\AppData\Local\MEGAsync
2014-11-21 17:42 - 2014-11-21 18:18 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\LeagueSharp
2014-11-21 17:40 - 2014-07-15 23:51 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-11-21 17:36 - 2014-06-10 23:44 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-11-21 17:36 - 2014-06-10 23:43 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-11-21 17:34 - 2012-09-20 10:08 - 00027280 _____ (Microsoft Corporation) C:\Windows\system32\avrt.dll
2014-11-21 17:34 - 2012-09-20 09:40 - 00389360 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2014-11-21 17:34 - 2012-09-20 09:31 - 00425192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-11-21 17:34 - 2012-09-20 08:55 - 03265256 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys
2014-11-21 17:34 - 2012-09-20 08:55 - 00533224 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys
2014-11-21 17:34 - 2012-09-20 07:47 - 00307192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 03964416 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 01513984 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 01304064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00866304 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00699392 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 00588800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00545280 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00420352 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 00410624 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\wlidcredprov.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-11-21 17:34 - 2012-09-20 07:33 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2014-11-21 17:34 - 2012-09-20 07:33 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2014-11-21 17:34 - 2012-09-20 07:32 - 01739264 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 01019392 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\provcore.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00256512 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\ProximityService.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\perfos.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\RpcEpMap.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2014-11-21 17:34 - 2012-09-20 07:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\perfnet.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2014-11-21 17:34 - 2012-09-20 07:31 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\DevPropMgr.dll
2014-11-21 17:34 - 2012-09-20 07:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\mmcss.dll
2014-11-21 17:34 - 2012-09-20 07:30 - 02016256 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2014-11-21 17:34 - 2012-09-20 07:30 - 01743872 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2014-11-21 17:34 - 2012-09-20 07:30 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2014-11-21 17:34 - 2012-09-20 07:30 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-11-21 17:34 - 2012-09-20 07:30 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2014-11-21 17:34 - 2012-09-20 07:30 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll
2014-11-21 17:34 - 2012-09-20 07:30 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2014-11-21 17:34 - 2012-09-20 07:13 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2014-11-21 17:34 - 2012-09-20 07:13 - 00023656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avrt.dll
2014-11-21 17:34 - 2012-09-20 07:08 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2014-11-21 17:34 - 2012-09-20 06:55 - 00995328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2014-11-21 17:34 - 2012-09-20 06:55 - 00465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2014-11-21 17:34 - 2012-09-20 06:55 - 00417280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-11-21 17:34 - 2012-09-20 06:55 - 00333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2014-11-21 17:34 - 2012-09-20 06:55 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll
2014-11-21 17:34 - 2012-09-20 06:55 - 00263168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcredprov.dll
2014-11-21 17:34 - 2012-09-20 06:55 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2014-11-21 17:34 - 2012-09-20 06:55 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2014-11-21 17:34 - 2012-09-20 06:55 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-11-21 17:34 - 2012-09-20 06:55 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2014-11-21 17:34 - 2012-09-20 06:54 - 01369600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 01196032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 01137152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00709632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provcore.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00449024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00413184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfdisk.dll
2014-11-21 17:34 - 2012-09-20 06:54 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfnet.dll
2014-11-21 17:34 - 2012-09-20 06:53 - 02007040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll
2014-11-21 17:34 - 2012-09-20 06:53 - 01247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2014-11-21 17:34 - 2012-09-20 06:53 - 00675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2014-11-21 17:34 - 2012-09-20 06:53 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2014-11-21 17:34 - 2012-09-20 06:53 - 00366080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-11-21 17:34 - 2012-09-20 06:53 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2014-11-21 17:33 - 2014-07-12 05:41 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\KBDRUM.DLL
2014-11-21 17:33 - 2014-07-12 05:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-11-21 17:33 - 2014-07-12 05:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-11-21 17:33 - 2014-07-12 05:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-11-21 17:33 - 2014-07-12 05:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-11-21 17:33 - 2014-07-12 05:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-11-21 17:33 - 2014-07-12 05:16 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRUM.DLL
2014-11-21 17:33 - 2014-07-12 05:16 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-11-21 17:33 - 2014-07-12 05:16 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-11-21 17:33 - 2014-07-12 05:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-11-21 17:33 - 2014-07-12 05:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-11-21 17:33 - 2014-07-12 05:15 - 00006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-11-21 17:33 - 2014-07-12 01:02 - 00478352 _____ () C:\Windows\SysWOW64\locale.nls
2014-11-21 17:33 - 2014-07-12 01:00 - 00478352 _____ () C:\Windows\system32\locale.nls
2014-11-21 17:33 - 2014-07-08 23:33 - 00181248 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2014-11-21 17:33 - 2014-07-08 23:32 - 01539584 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2014-11-21 17:33 - 2014-07-08 23:32 - 00340480 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2014-11-21 17:33 - 2014-07-08 23:30 - 01220608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2014-11-21 17:33 - 2014-07-07 06:52 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2014-11-21 17:33 - 2014-07-07 06:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2014-11-21 17:33 - 2014-07-04 11:52 - 00328000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-11-21 17:33 - 2014-07-03 02:59 - 01824784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-11-21 17:33 - 2014-07-03 01:30 - 01408952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-11-21 17:33 - 2014-06-28 08:01 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2014-11-21 17:33 - 2014-06-28 07:57 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-11-21 17:33 - 2014-06-28 07:56 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-11-21 17:33 - 2014-06-25 08:09 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-11-21 17:33 - 2014-06-25 08:07 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-11-21 17:33 - 2014-06-18 00:27 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-11-21 17:33 - 2014-06-18 00:23 - 02238464 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-11-21 17:33 - 2014-06-11 15:47 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-11-21 17:33 - 2014-06-11 05:40 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-11-21 17:33 - 2014-06-10 23:44 - 01403896 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-11-21 17:33 - 2014-02-04 11:57 - 01271664 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-11-21 17:33 - 2013-05-24 23:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-11-21 17:33 - 2013-05-24 23:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-11-21 17:33 - 2012-09-27 08:17 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2014-11-21 17:33 - 2012-09-27 08:17 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\ndadmin.exe
2014-11-21 17:33 - 2012-09-27 08:15 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2014-11-21 17:33 - 2012-09-27 07:35 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.exe
2014-11-21 17:33 - 2012-09-27 07:35 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndadmin.exe
2014-11-21 17:33 - 2012-09-27 07:34 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2014-11-21 17:33 - 2012-09-20 07:33 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2014-11-21 17:33 - 2012-09-20 07:33 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2014-11-21 17:33 - 2012-09-20 07:33 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2014-11-21 17:33 - 2012-09-20 07:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2014-11-21 17:33 - 2012-09-20 07:32 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\perfctrs.dll
2014-11-21 17:33 - 2012-09-20 07:32 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
2014-11-21 17:33 - 2012-09-20 07:32 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2014-11-21 17:33 - 2012-09-20 07:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2014-11-21 17:33 - 2012-09-20 07:31 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2014-11-21 17:33 - 2012-09-20 07:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2014-11-21 17:33 - 2012-09-20 07:31 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2014-11-21 17:33 - 2012-09-20 07:30 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2014-11-21 17:33 - 2012-09-20 07:09 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2014-11-21 17:33 - 2012-09-20 06:55 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2014-11-21 17:33 - 2012-09-20 06:54 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2014-11-21 17:33 - 2012-09-20 06:54 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfctrs.dll
2014-11-21 17:33 - 2012-09-20 06:54 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2014-11-21 17:33 - 2012-09-20 06:54 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfos.dll
2014-11-21 17:33 - 2012-09-20 06:54 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2014-11-21 17:33 - 2012-09-20 06:53 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2014-11-21 17:32 - 2012-11-20 06:24 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-11-21 17:32 - 2012-11-20 06:17 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-11-21 17:32 - 2012-11-20 06:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL
2014-11-21 17:32 - 2012-11-20 05:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDKURD.DLL
2014-11-21 17:32 - 2012-11-06 08:33 - 01566432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-11-21 17:32 - 2012-11-06 05:48 - 01150160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-11-21 17:32 - 2012-11-06 05:20 - 00883712 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2014-11-21 17:32 - 2012-11-06 05:20 - 00516608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2014-11-21 17:32 - 2012-11-06 05:20 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-11-21 17:32 - 2012-11-06 05:20 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2014-11-21 17:32 - 2012-11-06 05:20 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2014-11-21 17:32 - 2012-11-06 05:20 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2014-11-21 17:32 - 2012-11-06 05:20 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2014-11-21 17:32 - 2012-11-06 05:20 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 08552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2014-11-21 17:32 - 2012-11-06 05:19 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2014-11-21 17:32 - 2012-11-06 05:18 - 11459584 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2014-11-21 17:32 - 2012-11-06 05:18 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2014-11-21 17:32 - 2012-11-06 05:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2014-11-21 17:32 - 2012-11-06 05:18 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2014-11-21 17:32 - 2012-11-06 05:18 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2014-11-21 17:32 - 2012-11-06 05:17 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2014-11-21 17:32 - 2012-11-06 05:17 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2014-11-21 17:32 - 2012-11-06 05:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2014-11-21 17:32 - 2012-11-06 04:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-11-21 17:32 - 2012-11-06 04:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2014-11-21 17:32 - 2012-11-06 04:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2014-11-21 17:32 - 2012-11-06 04:55 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2014-11-21 17:32 - 2012-11-06 04:55 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2014-11-21 17:32 - 2012-11-06 04:55 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2014-11-21 17:32 - 2012-11-06 04:55 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fxppm.sys
2014-11-21 17:31 - 2012-10-24 05:54 - 00396008 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2014-11-21 17:31 - 2012-10-17 05:32 - 01172992 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2014-11-21 17:31 - 2012-10-17 05:32 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2014-11-21 17:31 - 2012-10-17 04:57 - 00929792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2014-11-21 17:31 - 2012-10-17 04:57 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2014-11-21 17:31 - 2012-10-12 07:13 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\dskquota.dll
2014-11-21 17:31 - 2012-10-12 06:39 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquota.dll
2014-11-21 17:31 - 2012-10-11 08:47 - 00793200 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-11-21 17:31 - 2012-10-11 08:25 - 00056552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2014-11-21 17:31 - 2012-10-11 08:23 - 00441576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-11-21 17:31 - 2012-10-11 08:13 - 00033512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys
2014-11-21 17:31 - 2012-10-11 06:46 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2014-11-21 17:31 - 2012-10-11 06:46 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Compression.dll
2014-11-21 17:31 - 2012-10-11 06:46 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\BdeUISrv.exe
2014-11-21 17:31 - 2012-10-11 06:45 - 00579584 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2014-11-21 17:31 - 2012-10-11 06:45 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2014-11-21 17:31 - 2012-10-11 06:45 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2014-11-21 17:31 - 2012-10-11 06:44 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-11-21 17:31 - 2012-10-11 06:44 - 00264704 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll
2014-11-21 17:31 - 2012-10-11 06:44 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2014-11-21 17:31 - 2012-10-11 06:43 - 01280000 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-11-21 17:31 - 2012-10-11 06:43 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2014-11-21 17:31 - 2012-10-11 06:43 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-11-21 17:31 - 2012-10-11 06:43 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2014-11-21 17:31 - 2012-10-11 06:43 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\AppxSip.dll
2014-11-21 17:31 - 2012-10-11 06:43 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2014-11-21 17:31 - 2012-10-11 06:43 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-11-21 17:31 - 2012-10-11 06:42 - 00612416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-11-21 17:31 - 2012-10-11 06:23 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-pdc.dll
2014-11-21 17:31 - 2012-10-11 06:23 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\kbdhebl3.dll
2014-11-21 17:31 - 2012-10-11 06:07 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2014-11-21 17:31 - 2012-10-11 06:07 - 00414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2014-11-21 17:31 - 2012-10-11 06:07 - 00116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Compression.dll
2014-11-21 17:31 - 2012-10-11 06:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2014-11-21 17:31 - 2012-10-11 06:06 - 00289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-11-21 17:31 - 2012-10-11 06:06 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2014-11-21 17:31 - 2012-10-11 06:06 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2014-11-21 17:31 - 2012-10-11 06:06 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-11-21 17:31 - 2012-10-11 06:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2014-11-21 17:31 - 2012-10-11 06:06 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-11-21 17:31 - 2012-10-11 06:05 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxSip.dll
2014-11-21 17:31 - 2012-10-11 05:42 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdhebl3.dll
2014-11-21 17:30 - 2014-03-25 00:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-11-21 17:30 - 2014-03-24 23:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-11-21 17:30 - 2014-02-04 00:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-11-21 17:30 - 2014-02-04 00:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-11-21 17:30 - 2014-02-01 07:55 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2014-11-21 17:30 - 2014-01-31 01:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-11-21 17:30 - 2014-01-31 01:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-11-21 17:30 - 2014-01-27 04:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-11-21 17:30 - 2014-01-16 00:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-11-21 17:30 - 2014-01-03 00:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-11-21 17:30 - 2014-01-03 00:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-11-21 17:30 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2014-11-21 17:30 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2014-11-21 17:30 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2014-11-21 17:30 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-11-21 17:30 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2014-11-21 17:30 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-11-21 17:30 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2014-11-21 17:30 - 2013-08-10 06:21 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2014-11-21 17:30 - 2013-08-10 06:21 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncInfo.dll
2014-11-21 17:30 - 2013-08-10 04:58 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2014-11-21 17:30 - 2013-08-03 07:40 - 01374208 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2014-11-21 17:30 - 2013-08-03 07:40 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2014-11-21 17:30 - 2013-08-03 07:40 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-11-21 17:30 - 2013-08-03 06:14 - 00399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2014-11-21 17:30 - 2013-08-03 06:13 - 01245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2014-11-21 17:30 - 2013-08-03 06:13 - 00437248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2014-11-21 17:30 - 2013-08-02 07:28 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-11-21 17:30 - 2013-08-02 06:08 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-11-21 17:30 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-11-21 17:30 - 2013-07-25 00:10 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2014-11-21 17:30 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-11-21 17:30 - 2013-07-25 00:06 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2014-11-21 17:30 - 2013-07-13 07:15 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2014-11-21 17:30 - 2013-07-13 05:23 - 00366592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll
2014-11-21 17:30 - 2013-04-10 00:17 - 01125888 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-11-21 17:30 - 2013-04-09 23:29 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2014-11-21 17:30 - 2012-11-27 07:39 - 01122768 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2014-11-21 17:30 - 2012-11-27 05:49 - 01027152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2014-11-21 17:30 - 2012-11-27 05:20 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2014-11-21 17:30 - 2012-11-27 05:20 - 00560128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2014-11-21 17:30 - 2012-11-27 05:20 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2014-11-21 17:30 - 2012-11-27 05:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll
2014-11-21 17:30 - 2012-11-27 05:19 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2014-11-21 17:30 - 2012-11-27 05:19 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2014-11-21 17:30 - 2012-11-27 05:19 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2014-11-21 17:30 - 2012-09-20 07:48 - 00062488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2014-11-21 17:30 - 2012-09-11 06:28 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe
2014-11-21 17:30 - 2012-09-11 06:27 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll
2014-11-21 17:29 - 2014-07-24 14:50 - 00447296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-11-21 17:29 - 2014-07-17 00:28 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2014-11-21 17:29 - 2014-07-16 23:59 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-11-21 17:29 - 2014-07-16 23:59 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2014-11-21 17:29 - 2014-07-12 07:45 - 01549824 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2014-11-21 17:29 - 2014-07-12 05:36 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-11-21 17:29 - 2014-07-12 05:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-11-21 17:29 - 2014-07-12 05:34 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-11-21 17:29 - 2014-07-12 05:34 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-11-21 17:29 - 2014-06-28 07:57 - 01341952 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-11-21 17:29 - 2014-06-28 03:23 - 01126400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-11-21 17:29 - 2014-05-03 07:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-11-21 17:29 - 2014-04-29 23:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-11-21 17:29 - 2014-04-29 23:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-11-21 17:29 - 2014-03-01 10:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-11-21 17:29 - 2014-03-01 10:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-11-21 17:29 - 2014-03-01 09:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-11-21 17:29 - 2014-03-01 07:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-11-21 17:29 - 2014-02-15 05:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-11-21 17:29 - 2013-11-26 00:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-11-21 17:29 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-11-21 17:29 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-11-21 17:29 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-11-21 17:29 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2014-11-21 17:29 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-11-21 17:29 - 2013-07-19 23:13 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-11-21 17:29 - 2013-07-19 23:13 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-11-21 17:29 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2014-11-21 17:29 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2014-11-21 17:29 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2014-11-21 17:29 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2014-11-21 17:29 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2014-11-21 17:29 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2014-11-21 17:29 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2014-11-21 17:29 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2014-11-21 17:29 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-11-21 17:29 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-11-21 17:29 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-11-21 17:29 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-11-21 17:29 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2014-11-21 17:29 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2014-11-21 17:29 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2014-11-21 17:29 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2014-11-21 17:29 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2014-11-21 17:29 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2014-11-21 17:29 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-11-21 17:29 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2014-11-21 17:29 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-11-21 17:29 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2014-11-21 17:29 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2014-11-21 17:29 - 2013-06-16 23:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-11-21 17:29 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2014-11-21 17:29 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-11-21 17:29 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-11-21 17:29 - 2013-06-01 12:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-11-21 17:29 - 2013-06-01 11:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-11-21 17:29 - 2013-06-01 10:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2014-11-21 17:29 - 2013-06-01 10:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2014-11-21 17:29 - 2013-06-01 10:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2014-11-21 17:29 - 2013-06-01 10:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2014-11-21 17:29 - 2013-06-01 10:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-11-21 17:29 - 2013-06-01 10:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2014-11-21 17:29 - 2013-06-01 10:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-11-21 17:29 - 2013-06-01 10:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2014-11-21 17:29 - 2013-06-01 10:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-11-21 17:29 - 2013-06-01 10:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2014-11-21 17:29 - 2013-06-01 10:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-11-21 17:29 - 2013-06-01 10:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-11-21 17:29 - 2013-06-01 10:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2014-11-21 17:29 - 2013-06-01 10:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2014-11-21 17:29 - 2013-06-01 10:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2014-11-21 17:29 - 2013-06-01 04:08 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2014-11-21 17:29 - 2012-10-02 08:34 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-11-21 17:28 - 2014-10-22 04:34 - 00010777 _____ () C:\Windows\system32\AutoconfigV2.cab
2014-11-21 17:28 - 2014-10-22 04:33 - 00581016 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe
2014-11-21 17:28 - 2014-10-22 04:33 - 00462760 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-11-21 17:28 - 2014-10-22 02:08 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-11-21 17:28 - 2014-10-22 02:08 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-21 17:28 - 2014-10-22 02:01 - 00695808 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-11-21 17:28 - 2014-10-22 02:01 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-11-21 17:28 - 2014-10-22 02:01 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-11-21 17:28 - 2014-10-22 02:00 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2014-11-21 17:28 - 2013-10-31 06:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-11-21 17:28 - 2013-10-31 06:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2014-11-21 17:28 - 2013-10-31 05:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2014-11-21 17:28 - 2013-10-31 04:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2014-11-21 17:28 - 2013-10-13 21:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2014-11-21 17:28 - 2013-08-27 06:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-11-21 17:28 - 2013-08-27 06:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-11-21 17:28 - 2013-08-26 23:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-11-21 17:28 - 2013-08-26 23:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-11-21 17:28 - 2012-10-11 06:46 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2014-11-21 17:28 - 2012-10-11 06:44 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2014-11-21 17:28 - 2012-10-11 06:07 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2014-11-21 17:16 - 2014-05-29 05:04 - 00094552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2014-11-21 17:04 - 2014-11-21 17:04 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\Subversion
2014-11-21 16:56 - 2014-11-21 16:56 - 00000000 ____D () C:\Users\Skillchamp\AppData\Local\LeagueSharp
2014-11-21 16:55 - 2014-11-21 17:43 - 00000000 ____D () C:\Users\Skillchamp\Desktop\LeagueSharp
2014-11-21 16:49 - 2014-10-30 01:53 - 00713672 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-21 16:49 - 2014-10-30 01:53 - 00106432 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-21 16:46 - 2014-11-21 16:52 - 00000000 ___RD () C:\Windows\BrowserChoice
2014-11-21 16:42 - 2014-11-21 16:42 - 00000117 _____ () C:\Windows\system32\netcfg-10936652.txt
2014-11-21 16:42 - 2014-11-21 16:42 - 00000117 _____ () C:\Windows\system32\netcfg-10933392.txt
2014-11-21 14:19 - 2014-11-21 14:20 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-21 14:19 - 2014-10-31 23:26 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-21 14:14 - 2014-10-11 08:44 - 19764736 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-21 14:14 - 2014-10-11 06:57 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-11-21 14:14 - 2014-10-09 04:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-11-21 14:14 - 2014-10-09 04:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-11-21 14:14 - 2014-10-09 04:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-11-21 14:14 - 2014-09-26 07:30 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-11-21 14:14 - 2014-09-22 06:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2014-11-21 14:14 - 2014-09-22 04:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2014-11-21 14:14 - 2014-09-18 00:24 - 00987136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll
2014-11-21 14:14 - 2014-09-18 00:24 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmscan.dll
2014-11-21 14:14 - 2014-09-18 00:24 - 00278528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm.dll
2014-11-21 14:14 - 2014-09-18 00:24 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adrclient.dll
2014-11-21 14:14 - 2014-09-17 23:57 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll
2014-11-21 14:14 - 2014-09-17 23:57 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll
2014-11-21 14:14 - 2014-09-17 23:57 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\srm.dll
2014-11-21 14:14 - 2014-09-17 23:57 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\adrclient.dll
2014-11-21 14:14 - 2014-08-28 12:34 - 00059400 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-21 14:14 - 2014-08-28 07:05 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-11-21 14:14 - 2014-08-28 07:05 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-11-21 14:14 - 2014-08-28 07:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-11-21 14:14 - 2014-08-28 07:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-11-21 14:14 - 2014-08-28 07:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-21 14:14 - 2014-08-28 07:01 - 03285504 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-21 14:14 - 2014-08-28 07:01 - 01623552 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-21 14:14 - 2014-08-28 07:01 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-21 14:14 - 2014-08-28 07:01 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-11-21 14:14 - 2014-08-28 07:01 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-11-21 14:14 - 2014-08-28 07:01 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-21 14:14 - 2014-08-28 07:01 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-21 14:14 - 2014-08-28 07:01 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2014-11-21 14:14 - 2014-08-01 00:40 - 01287680 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-11-21 14:14 - 2013-01-10 00:26 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmstormod.dll
2014-11-21 14:14 - 2013-01-10 00:23 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\srmstormod.dll
2014-11-21 14:14 - 2012-10-12 07:14 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\srmshell.dll
2014-11-21 14:14 - 2012-10-12 07:14 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\srmtrace.dll
2014-11-21 14:14 - 2012-10-12 07:14 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\srm_ps.dll
2014-11-21 14:14 - 2012-10-12 06:41 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmshell.dll
2014-11-21 14:14 - 2012-10-12 06:41 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmtrace.dll
2014-11-21 14:14 - 2012-10-12 06:41 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm_ps.dll
2014-11-21 14:14 - 2012-10-10 08:04 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-11-21 14:14 - 2012-10-10 07:31 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-11-21 14:13 - 2014-01-31 01:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-11-21 14:13 - 2013-01-10 02:53 - 00028904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2014-11-21 14:13 - 2013-01-10 02:29 - 00091880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-11-21 14:13 - 2013-01-10 00:26 - 01752064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2014-11-21 14:13 - 2013-01-10 00:26 - 01611776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2014-11-21 14:13 - 2013-01-10 00:26 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2014-11-21 14:13 - 2013-01-10 00:26 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-11-21 14:13 - 2013-01-10 00:26 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2014-11-21 14:13 - 2013-01-10 00:23 - 02094592 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2014-11-21 14:13 - 2013-01-10 00:23 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2014-11-21 14:13 - 2013-01-10 00:23 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-11-21 14:13 - 2013-01-10 00:23 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-11-21 14:13 - 2013-01-10 00:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-11-21 14:13 - 2013-01-10 00:23 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2014-11-21 14:13 - 2013-01-10 00:22 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-11-21 14:13 - 2013-01-10 00:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2014-11-21 14:13 - 2013-01-10 00:22 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2014-11-21 14:13 - 2012-11-02 06:19 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2014-11-21 14:13 - 2012-11-02 06:18 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2014-11-21 14:13 - 2012-11-02 06:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2014-11-21 14:13 - 2012-11-02 06:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2014-11-21 14:13 - 2012-11-02 06:18 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2014-11-21 14:13 - 2012-11-02 06:18 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2014-11-21 14:12 - 2014-09-03 03:48 - 00510464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-11-21 14:12 - 2014-09-03 03:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-11-21 14:12 - 2014-06-13 02:57 - 01453400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-11-21 14:12 - 2014-06-13 02:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-11-21 14:12 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-11-21 14:12 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-11-21 14:12 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-11-21 14:12 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-11-21 14:12 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-11-21 14:12 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2014-11-21 14:12 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2014-11-21 14:12 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2014-11-21 14:12 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2014-11-21 14:12 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2014-11-21 14:12 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2014-11-21 14:12 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2014-11-21 14:12 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2014-11-21 14:12 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2014-11-21 14:12 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2014-11-21 14:12 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2014-11-21 14:12 - 2013-08-15 23:43 - 00083968 _____ () C:\Windows\SysWOW64\OEMLicense.dll
2014-11-21 14:12 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2014-11-21 14:12 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2014-11-21 14:12 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-11-21 14:12 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-11-21 14:12 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll

binar · 22.11.2014, 18:35

2. Teil

Code:

ATTFilter

2014-11-21 14:12 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-11-21 14:12 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-11-21 14:12 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-11-21 14:12 - 2012-09-20 07:33 - 00110592 _____ () C:\Windows\system32\OEMLicense.dll
2014-11-21 14:10 - 2014-06-18 00:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-11-21 14:10 - 2014-06-18 00:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-11-21 14:10 - 2014-06-05 02:12 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2014-11-21 14:10 - 2014-06-04 00:12 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2014-11-21 14:08 - 2014-09-13 07:24 - 02233152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-11-21 14:08 - 2014-09-06 01:46 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2014-11-21 14:08 - 2014-09-03 03:48 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2014-11-21 14:08 - 2014-09-03 03:22 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-11-21 14:08 - 2014-08-29 05:17 - 02043392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-11-21 14:08 - 2014-08-29 05:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-11-21 14:08 - 2014-08-29 05:04 - 02837504 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-11-21 14:08 - 2014-08-29 05:04 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-11-21 14:08 - 2014-08-28 07:04 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2014-11-21 14:08 - 2014-08-28 07:04 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2014-11-21 14:08 - 2014-08-28 06:59 - 00616448 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2014-11-21 14:08 - 2014-08-28 06:59 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2014-11-21 14:08 - 2014-08-28 06:59 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2014-11-21 14:08 - 2014-08-28 06:59 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2014-11-21 14:08 - 2014-07-24 14:12 - 00328512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-11-21 14:08 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2014-11-21 14:08 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-11-21 14:08 - 2013-05-04 05:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-11-21 14:07 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-11-21 14:07 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-11-21 14:05 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-11-21 14:04 - 2012-08-31 01:53 - 00017888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2014-11-21 14:04 - 2012-08-31 01:52 - 00017888 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2014-11-21 14:03 - 2014-10-03 02:21 - 00522728 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-21 14:03 - 2014-10-02 23:29 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-21 14:03 - 2014-10-02 23:29 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-21 14:03 - 2014-10-02 23:29 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-21 14:03 - 2013-03-02 11:57 - 00077544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2014-11-21 14:03 - 2013-03-02 11:39 - 00495336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-11-21 14:03 - 2013-03-02 09:23 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2014-11-21 14:03 - 2013-03-02 09:23 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2014-11-21 14:03 - 2013-03-02 09:23 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-11-21 14:03 - 2013-03-02 09:23 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncInfo.dll
2014-11-21 14:03 - 2013-03-02 09:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2014-11-21 14:03 - 2013-03-02 09:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2014-11-21 14:03 - 2013-03-02 09:21 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2014-11-21 14:03 - 2013-03-02 09:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-11-21 14:03 - 2013-03-02 03:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2014-11-21 14:03 - 2013-03-02 03:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2014-11-21 14:03 - 2013-03-02 03:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-11-21 14:03 - 2013-03-02 03:44 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2014-11-21 14:03 - 2013-03-02 03:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2014-11-21 14:03 - 2013-03-02 03:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2014-11-21 14:03 - 2013-03-02 03:43 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2014-11-21 14:03 - 2013-03-02 03:15 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2014-11-21 14:03 - 2013-03-01 05:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2014-11-21 14:00 - 2014-09-22 06:53 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-11-21 14:00 - 2014-08-26 23:08 - 00270024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-11-21 14:00 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-11-21 14:00 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-11-21 13:59 - 2014-08-09 09:30 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-11-21 13:59 - 2014-08-09 09:29 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2014-11-21 13:59 - 2014-07-07 06:53 - 01125376 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-11-21 13:59 - 2014-07-07 06:52 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-21 13:59 - 2014-07-07 06:52 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-11-21 13:59 - 2014-07-07 06:51 - 05982208 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-11-21 13:59 - 2014-07-07 05:01 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-11-21 13:59 - 2014-07-07 05:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-11-21 13:59 - 2014-07-07 05:00 - 05095424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-11-21 13:59 - 2014-07-07 04:59 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-11-21 13:59 - 2014-06-02 23:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-11-21 13:58 - 2014-10-18 09:44 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-21 13:58 - 2014-10-18 08:05 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-21 13:58 - 2014-10-11 08:45 - 10115072 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-11-21 13:58 - 2014-10-11 08:44 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-21 13:58 - 2014-10-11 08:44 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-11-21 13:58 - 2014-10-11 08:43 - 02307072 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-11-21 13:58 - 2014-10-11 06:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-11-21 13:58 - 2014-10-11 06:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-21 13:58 - 2014-10-11 06:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-11-21 13:58 - 2014-10-11 06:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-11-21 13:58 - 2014-10-02 00:05 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-21 13:58 - 2014-07-24 04:33 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2014-11-21 13:58 - 2014-07-24 04:33 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2014-11-21 13:58 - 2014-06-13 00:34 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-11-21 13:58 - 2014-06-13 00:29 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-11-21 13:58 - 2013-04-24 00:13 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-11-21 13:58 - 2013-04-24 00:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-11-21 13:58 - 2013-04-23 23:56 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-11-21 13:58 - 2013-04-23 23:55 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-11-21 13:57 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-11-21 13:57 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-11-21 13:57 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-11-21 13:57 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-11-21 13:57 - 2013-03-02 09:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-11-21 13:57 - 2013-03-02 03:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2014-11-21 13:57 - 2012-12-15 05:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-11-21 13:57 - 2012-11-08 05:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-11-21 13:57 - 2012-11-08 05:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-11-21 13:57 - 2012-11-08 05:20 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-11-21 13:57 - 2012-11-08 05:20 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-11-21 13:57 - 2012-11-08 05:02 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-11-21 13:57 - 2012-11-08 05:01 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-11-21 13:57 - 2012-11-03 06:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe
2014-11-21 13:57 - 2012-11-03 06:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll
2014-11-21 13:57 - 2012-10-24 04:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2014-11-21 13:57 - 2012-10-24 03:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2014-11-21 13:57 - 2012-10-06 05:53 - 02893824 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-11-21 13:57 - 2012-10-06 05:15 - 02400256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-11-21 13:56 - 2014-03-11 04:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-11-21 13:56 - 2014-03-11 01:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-11-21 13:56 - 2014-03-11 01:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-11-21 13:56 - 2014-03-11 01:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-11-21 13:56 - 2014-03-11 01:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-11-21 13:56 - 2014-03-11 01:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-11-21 13:56 - 2014-03-11 01:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-11-21 13:56 - 2014-03-11 01:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-11-21 13:56 - 2014-03-11 01:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-11-21 13:56 - 2014-03-11 01:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-11-21 13:56 - 2014-03-10 04:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-11-21 13:56 - 2014-03-10 02:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-21 13:56 - 2013-04-11 23:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-11-21 13:56 - 2013-04-11 23:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-11-21 13:56 - 2013-02-02 09:40 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2014-11-21 13:56 - 2013-02-02 09:40 - 00370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2014-11-21 13:56 - 2013-02-02 09:40 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2014-11-21 13:56 - 2013-02-02 09:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2014-11-21 13:56 - 2013-02-02 09:40 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2014-11-21 13:56 - 2013-02-02 09:39 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-11-21 13:56 - 2013-02-02 09:38 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2014-11-21 13:56 - 2013-02-02 09:24 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2014-11-21 13:56 - 2013-02-02 09:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2014-11-21 13:56 - 2013-02-02 09:23 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2014-11-21 13:56 - 2013-02-02 09:23 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\wlroamextension.dll
2014-11-21 13:56 - 2013-02-02 09:23 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2014-11-21 13:56 - 2013-02-02 09:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2014-11-21 13:56 - 2013-02-02 09:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2014-11-21 13:56 - 2013-02-02 09:21 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-11-21 13:56 - 2013-02-02 09:20 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2014-11-21 13:56 - 2013-02-02 09:20 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2014-11-21 13:56 - 2013-02-02 08:25 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-11-21 13:56 - 2013-02-02 06:41 - 01437184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2014-11-21 13:56 - 2013-02-02 06:31 - 01690624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-11-21 13:56 - 2012-11-27 04:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2014-11-21 13:56 - 2012-11-27 04:55 - 00029952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthhfHid.sys
2014-11-21 13:56 - 2012-09-20 07:32 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-11-21 13:56 - 2012-09-20 07:32 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-11-21 13:55 - 2014-10-11 08:44 - 03248640 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-21 13:55 - 2014-10-11 06:41 - 00713728 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-21 13:55 - 2014-10-11 06:41 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-21 13:55 - 2014-10-11 06:05 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-21 13:55 - 2014-10-11 06:04 - 00713728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-21 13:55 - 2014-07-16 00:03 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-11-21 13:55 - 2014-07-12 03:36 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-11-21 13:55 - 2014-05-03 04:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-11-21 13:55 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-11-21 13:55 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-11-21 13:55 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-11-21 13:55 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-11-21 13:55 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-11-21 13:55 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-11-21 13:55 - 2012-11-20 05:56 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-11-21 13:55 - 2012-10-12 09:08 - 00027880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-11-21 13:55 - 2012-10-12 07:14 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2014-11-21 13:54 - 2013-02-12 01:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-11-21 13:53 - 2013-12-05 00:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-11-21 13:53 - 2013-12-05 00:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-11-21 13:53 - 2013-05-15 03:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-11-21 13:53 - 2013-05-15 03:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-11-21 13:53 - 2013-05-15 03:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2014-11-21 13:53 - 2013-05-15 03:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-11-21 13:53 - 2013-05-04 08:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2014-11-21 13:53 - 2013-05-04 07:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2014-11-21 13:53 - 2013-05-04 07:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-11-21 13:53 - 2013-05-04 07:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2014-11-21 13:53 - 2013-05-04 07:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-11-21 13:53 - 2013-05-04 07:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2014-11-21 13:53 - 2013-05-04 07:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2014-11-21 13:53 - 2013-05-04 07:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 00820736 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2014-11-21 13:53 - 2013-05-04 07:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2014-11-21 13:53 - 2013-05-04 07:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2014-11-21 13:53 - 2013-05-04 05:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2014-11-21 13:53 - 2013-05-04 05:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2014-11-21 13:53 - 2013-05-04 05:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2014-11-21 13:53 - 2013-05-04 05:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2014-11-21 13:53 - 2013-05-04 05:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2014-11-21 13:53 - 2013-05-04 05:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2014-11-21 13:53 - 2013-05-04 05:56 - 00582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2014-11-21 13:53 - 2013-05-04 05:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2014-11-21 13:53 - 2013-05-04 05:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-11-21 13:53 - 2013-05-04 05:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2014-11-21 13:53 - 2013-05-04 05:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2014-11-21 13:53 - 2013-05-04 05:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2014-11-21 13:53 - 2013-05-04 05:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2014-11-21 13:53 - 2013-05-04 05:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-11-21 13:53 - 2013-05-04 05:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2014-11-21 13:53 - 2013-03-02 03:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-11-21 13:53 - 2013-03-02 03:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2014-11-21 13:53 - 2013-02-02 09:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2014-11-21 13:53 - 2013-02-02 09:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2014-11-21 13:52 - 2013-11-20 01:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-11-21 13:52 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-11-21 13:52 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2014-11-21 13:52 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-11-21 13:52 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-11-21 13:52 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-11-21 13:52 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2014-11-21 13:52 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-11-21 13:52 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-11-21 13:52 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-11-21 13:52 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2014-11-21 13:52 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2014-11-21 13:52 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-11-21 13:52 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2014-11-21 13:52 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2014-11-21 13:52 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2014-11-21 13:52 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2014-11-21 13:52 - 2012-11-03 06:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-11-21 13:52 - 2012-11-03 06:26 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2014-11-21 13:52 - 2012-11-03 06:24 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-11-21 13:52 - 2012-11-03 06:24 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-11-21 13:52 - 2012-11-03 06:24 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2014-11-21 13:52 - 2012-11-03 06:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2014-11-21 13:52 - 2012-11-03 06:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2014-11-21 13:52 - 2012-11-03 06:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2014-11-21 13:52 - 2012-11-03 06:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2014-11-21 13:52 - 2012-11-03 06:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2014-11-21 13:52 - 2012-11-03 06:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2014-11-21 13:52 - 2012-11-03 06:04 - 00003584 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2014-11-21 13:52 - 2012-11-03 06:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2014-11-21 13:52 - 2012-11-03 06:00 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2014-11-21 13:52 - 2012-10-24 04:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2014-11-21 13:52 - 2012-10-24 04:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-11-21 13:52 - 2012-10-24 04:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2014-11-21 13:52 - 2012-10-24 04:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2014-11-21 13:51 - 2014-09-25 00:29 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-21 13:51 - 2014-09-25 00:29 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-11-21 13:51 - 2014-09-25 00:01 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-21 13:51 - 2014-09-25 00:01 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-11-21 13:51 - 2014-06-06 15:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-11-21 13:51 - 2014-06-06 11:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-11-21 13:51 - 2014-05-29 23:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-11-21 13:51 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-11-21 13:51 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-11-21 13:51 - 2013-11-20 00:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-11-21 13:51 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-11-21 13:51 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-11-21 13:51 - 2013-04-03 00:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-11-21 13:51 - 2013-04-03 00:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-11-21 13:51 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-11-21 13:51 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-11-21 13:51 - 2013-03-15 01:17 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2014-11-21 13:50 - 2014-06-20 00:35 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-11-21 13:50 - 2014-06-19 23:24 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-11-21 13:50 - 2014-06-05 18:56 - 00112984 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-11-21 13:50 - 2013-04-09 06:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-21 13:50 - 2013-04-09 06:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-21 13:50 - 2013-04-09 06:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-11-21 13:50 - 2013-04-09 06:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll
2014-11-21 13:50 - 2013-04-09 05:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-11-21 13:50 - 2013-04-09 05:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2014-11-21 13:50 - 2013-04-09 05:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-11-21 13:50 - 2013-04-09 05:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-11-21 13:50 - 2013-04-09 05:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-11-21 13:50 - 2013-04-09 05:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2014-11-21 13:50 - 2013-04-09 05:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2014-11-21 13:50 - 2013-04-09 05:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-11-21 13:50 - 2013-04-09 05:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-11-21 13:50 - 2013-04-09 05:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-11-21 13:50 - 2013-04-09 05:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2014-11-21 13:50 - 2013-04-09 05:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-11-21 13:50 - 2013-04-09 05:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2014-11-21 13:50 - 2013-04-09 05:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2014-11-21 13:50 - 2013-04-09 05:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2014-11-21 13:50 - 2013-04-09 03:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-11-21 13:50 - 2013-04-09 00:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-21 13:50 - 2013-04-09 00:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-21 13:50 - 2013-04-08 22:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-11-21 13:50 - 2013-04-08 22:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-11-21 13:50 - 2013-04-08 22:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-11-21 13:50 - 2013-04-08 22:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-11-21 13:50 - 2013-04-08 22:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-11-21 13:50 - 2013-04-08 22:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2014-11-21 13:50 - 2013-04-08 22:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2014-11-21 13:50 - 2013-04-08 22:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-11-21 13:50 - 2013-04-05 00:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-11-21 13:50 - 2013-03-15 23:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2014-11-21 13:50 - 2013-03-15 23:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2014-11-21 13:50 - 2013-03-06 07:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-11-21 13:50 - 2013-03-02 10:59 - 00411880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-11-21 13:50 - 2013-02-02 09:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-11-21 13:50 - 2012-09-20 07:32 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2014-11-21 13:50 - 2012-09-20 06:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2014-11-21 13:49 - 2014-01-31 01:48 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-11-21 13:49 - 2014-01-31 01:06 - 01628160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-11-21 13:49 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-11-21 13:49 - 2013-04-09 06:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2014-11-21 13:49 - 2013-04-09 06:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll
2014-11-21 13:49 - 2013-04-09 05:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-11-21 13:49 - 2013-04-09 05:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-11-21 13:49 - 2013-04-09 05:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-11-21 13:49 - 2013-04-09 05:50 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll
2014-11-21 13:49 - 2013-04-09 05:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2014-11-21 13:49 - 2013-04-09 05:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-11-21 13:49 - 2013-04-09 05:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2014-11-21 13:49 - 2013-04-09 05:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-11-21 13:49 - 2013-04-09 05:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2014-11-21 13:49 - 2013-04-09 05:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2014-11-21 13:49 - 2013-04-09 03:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2014-11-21 13:49 - 2013-04-09 03:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2014-11-21 13:49 - 2013-04-09 03:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2014-11-21 13:49 - 2013-04-09 00:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2014-11-21 13:49 - 2013-04-08 22:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-11-21 13:49 - 2013-04-08 22:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-11-21 13:49 - 2013-04-08 22:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-11-21 13:49 - 2013-04-08 22:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2014-11-21 13:49 - 2013-04-08 22:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-11-21 13:49 - 2013-04-08 22:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2014-11-21 13:49 - 2013-04-08 22:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2014-11-21 13:49 - 2013-04-08 22:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2014-11-21 13:49 - 2013-04-08 22:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2014-11-21 13:49 - 2013-03-02 11:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2014-11-21 13:49 - 2013-02-02 09:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2014-11-21 13:49 - 2013-01-10 02:40 - 00303848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-11-21 13:49 - 2012-11-20 05:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys
2014-11-21 13:49 - 2012-11-06 06:00 - 00463768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-21 13:49 - 2012-10-11 06:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2014-11-21 13:49 - 2012-10-11 06:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-11-21 13:49 - 2012-10-11 06:44 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2014-11-21 13:49 - 2012-10-11 06:19 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2014-11-21 13:49 - 2012-10-11 06:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-11-21 13:49 - 2012-10-11 06:06 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2014-11-21 13:49 - 2012-10-11 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-11-21 13:49 - 2012-09-20 07:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\fhmanagew.exe
2014-11-21 13:49 - 2012-09-20 07:33 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2014-11-21 13:49 - 2012-09-20 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2014-11-21 13:49 - 2012-09-20 07:32 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2014-11-21 13:49 - 2012-09-20 07:32 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2014-11-21 13:49 - 2012-09-20 07:32 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2014-11-21 13:49 - 2012-09-20 07:32 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-11-21 13:49 - 2012-09-20 07:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-11-21 13:49 - 2012-09-20 07:32 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\fhcat.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\fhshl.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\fhsvc.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchapi.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fhevents.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\fhsrchph.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhlisten.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\fhautoplay.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fhcleanup.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\fhtask.dll
2014-11-21 13:49 - 2012-09-20 07:31 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\fhsvcctl.dll
2014-11-21 13:49 - 2012-09-20 07:12 - 09374208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-11-21 13:49 - 2012-09-20 07:09 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2014-11-21 13:49 - 2012-09-20 06:55 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2014-11-21 13:49 - 2012-09-20 06:55 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2014-11-21 13:49 - 2012-09-20 06:54 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2014-11-21 13:49 - 2012-09-20 06:54 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2014-11-21 13:49 - 2012-09-20 06:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2014-11-21 13:49 - 2012-09-20 06:54 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2014-11-21 13:49 - 2012-09-20 06:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2014-11-21 13:49 - 2012-09-20 06:54 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2014-11-21 13:49 - 2012-09-20 06:32 - 09374208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-11-21 13:48 - 2014-11-08 12:22 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-21 13:48 - 2014-11-08 12:21 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-21 13:48 - 2014-11-08 07:57 - 00187904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-21 13:48 - 2014-11-08 07:56 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-21 13:48 - 2014-10-11 09:35 - 00171840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-21 13:48 - 2014-10-11 08:44 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-11-21 13:48 - 2014-10-11 08:43 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-21 13:48 - 2014-10-11 06:57 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-11-21 13:48 - 2014-05-30 00:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-11-21 13:48 - 2014-04-12 10:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-11-21 13:48 - 2014-04-12 10:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-11-21 13:48 - 2014-04-12 10:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-21 13:48 - 2014-04-12 10:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-21 13:48 - 2014-04-12 10:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-21 13:48 - 2014-04-12 10:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-21 13:48 - 2014-04-12 08:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-11-21 13:48 - 2014-04-12 08:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-21 13:48 - 2014-04-12 08:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-21 13:48 - 2014-04-12 08:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-21 13:48 - 2014-04-12 08:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-21 13:48 - 2014-04-12 07:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2014-11-21 13:48 - 2014-03-04 00:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-11-21 13:47 - 2014-10-26 02:56 - 01409536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-21 13:47 - 2014-10-26 02:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-11-21 13:47 - 2014-10-26 02:56 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-11-21 13:47 - 2014-10-26 02:56 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-21 13:47 - 2014-10-26 02:55 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-21 13:47 - 2014-10-26 02:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-21 13:47 - 2014-10-26 01:35 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-21 13:47 - 2014-10-26 01:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-21 13:47 - 2014-10-26 01:35 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-11-21 13:47 - 2014-10-26 01:34 - 13758464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-21 13:47 - 2014-10-26 01:34 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-21 13:47 - 2014-10-26 01:34 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-11-21 13:47 - 2014-10-26 01:34 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-21 13:47 - 2014-10-26 01:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-21 13:47 - 2014-10-25 22:48 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-11-21 13:47 - 2014-10-23 13:47 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-21 13:47 - 2014-10-23 12:04 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-21 13:47 - 2014-08-22 00:56 - 01418752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-21 13:47 - 2014-08-22 00:27 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-21 13:47 - 2012-11-10 05:23 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-11-21 13:47 - 2012-11-10 05:22 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\RDWebAI.dll
2014-11-21 13:47 - 2012-11-10 05:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VmHostAI.dll
2014-11-21 13:47 - 2012-11-10 05:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\appserverai.dll
2014-11-21 13:47 - 2012-11-01 05:41 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-11-21 13:47 - 2012-11-01 05:40 - 02361344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-11-21 13:47 - 2012-11-01 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-11-21 13:47 - 2012-11-01 05:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-21 13:47 - 2012-11-01 05:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-11-21 13:47 - 2012-11-01 05:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-21 13:46 - 2014-10-26 02:56 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-21 13:46 - 2014-10-26 02:55 - 19284480 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-21 13:46 - 2014-10-26 02:55 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-21 13:46 - 2014-10-26 02:55 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 15399424 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-21 13:46 - 2014-10-26 02:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-21 13:46 - 2014-10-26 02:53 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-21 13:46 - 2014-10-26 01:36 - 01762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-21 13:46 - 2014-10-26 01:35 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-21 13:46 - 2014-10-26 01:35 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-21 13:46 - 2014-10-26 01:35 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-21 13:46 - 2014-10-26 01:34 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-21 13:46 - 2014-10-26 01:34 - 02055168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-21 13:46 - 2014-10-26 01:34 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-21 13:46 - 2014-10-26 01:34 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-11-21 13:46 - 2014-10-26 01:34 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-21 13:46 - 2014-10-26 01:34 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-21 13:46 - 2014-10-26 01:34 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-21 13:46 - 2014-10-26 01:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-21 13:46 - 2014-10-26 01:13 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-21 13:45 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-11-21 13:45 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-11-21 13:45 - 2012-12-13 05:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-11-21 13:45 - 2012-12-13 04:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-11-21 12:47 - 2014-11-21 19:31 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2432053586-1222344974-1202538709-1001
2014-11-21 12:42 - 2014-11-21 12:42 - 00000117 _____ () C:\Windows\system32\netcfg-30571890.txt
2014-11-21 11:09 - 2014-11-21 11:09 - 00000117 _____ () C:\Windows\system32\netcfg-24986898.txt
2014-11-21 05:30 - 2014-04-16 19:20 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2014-11-21 05:30 - 2014-04-16 19:20 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2014-11-21 05:27 - 2014-11-21 05:27 - 01118920 _____ (Microsoft Corporation) C:\Users\Skillchamp\Downloads\NDP452-KB2901954-Web.exe
2014-11-21 05:27 - 2014-11-21 05:27 - 00000000 ____D () C:\Users\Skillchamp\Downloads\LeagueSharp
2014-11-21 05:25 - 2014-11-21 05:25 - 03391073 _____ ( ) C:\Users\Skillchamp\Downloads\LeagueSharp-update.exe
2014-11-21 05:22 - 2014-11-21 05:22 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\Macromedia
2014-11-21 05:22 - 2014-11-21 05:22 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\LolClient
2014-11-21 04:56 - 2014-11-21 04:56 - 00000000 ____D () C:\ProgramData\Riot Games
2014-11-21 04:55 - 2014-11-21 04:55 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-11-21 04:55 - 2014-11-21 04:55 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-11-21 04:54 - 2014-11-21 04:54 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-11-21 04:54 - 2014-11-21 04:54 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-11-21 04:54 - 2014-11-21 04:54 - 00000000 ____D () C:\Program Files\MSBuild
2014-11-21 04:53 - 2012-07-06 03:02 - 01166440 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-11-21 04:53 - 2012-07-06 03:02 - 00778856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2014-11-21 04:52 - 2014-11-21 04:52 - 00001613 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2014-11-21 04:52 - 2014-11-21 04:52 - 00000000 ____D () C:\Riot Games
2014-11-21 04:52 - 2014-11-21 04:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-11-21 04:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-11-21 04:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-11-21 04:52 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-11-21 04:52 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-11-21 04:52 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-11-21 04:51 - 2014-11-21 04:55 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\Riot Games
2014-11-21 04:50 - 2014-11-21 04:50 - 30668968 _____ (Riot Games) C:\Users\Skillchamp\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2014-11-21 04:45 - 2014-11-21 04:45 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-11-21 04:45 - 2014-11-21 04:45 - 00000000 ____D () C:\ProgramData\Sun
2014-11-21 04:45 - 2014-11-21 04:45 - 00000000 ____D () C:\ProgramData\Oracle
2014-11-21 04:45 - 2014-11-21 04:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-11-21 04:45 - 2014-11-21 04:45 - 00000000 ____D () C:\Program Files (x86)\Java
2014-11-21 04:44 - 2014-11-21 04:44 - 00001954 _____ () C:\Users\Public\Desktop\S.K.I.L.L. - Special Force 2.lnk
2014-11-21 04:36 - 2014-11-21 04:36 - 00000156 _____ () C:\Windows\system32\netcfg-1442884.txt
2014-11-21 04:32 - 2014-11-21 04:32 - 00638888 _____ (Oracle Corporation) C:\Users\Skillchamp\Downloads\chromeinstall-8u25 (1).exe
2014-11-21 04:29 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-21 04:29 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-21 04:29 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-11-21 04:29 - 2012-11-06 05:00 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wushareduxresources.dll
2014-11-21 04:28 - 2014-11-21 19:29 - 00000000 ____D () C:\Users\Skillchamp\Downloads\Gameforge Live
2014-11-21 04:28 - 2014-11-21 04:28 - 00638888 _____ (Oracle Corporation) C:\Users\Skillchamp\Downloads\chromeinstall-8u25.exe
2014-11-21 04:28 - 2014-11-21 04:28 - 00000000 ____D () C:\Users\Skillchamp\AppData\Local\Gameforge4d
2014-11-21 04:27 - 2014-11-21 04:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-11-21 04:27 - 2014-11-21 04:44 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-11-21 04:27 - 2014-11-21 04:27 - 20226640 _____ (Gameforge ) C:\Users\Skillchamp\Downloads\SKILL_GameforgeLiveSetup.exe
2014-11-21 04:27 - 2014-11-21 04:27 - 00001071 _____ () C:\Users\Public\Desktop\Gameforge Live.lnk
2014-11-21 04:24 - 2014-11-21 18:08 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\ATI
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 ____D () C:\Users\Skillchamp\AppData\Local\ATI
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 ____D () C:\Users\Skillchamp\AppData\Local\AMD
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 ____D () C:\ProgramData\ATI
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 ____D () C:\ProgramData\AMD
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 ____D () C:\Program Files\AMD
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-11-21 04:24 - 2014-11-21 04:24 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-11-21 04:23 - 2014-11-21 04:24 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-11-21 04:23 - 2014-11-21 04:24 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-11-21 04:23 - 2014-11-21 04:23 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\Avira
2014-11-21 04:23 - 2014-11-21 04:23 - 00000000 ____D () C:\Program Files\ATI
2014-11-21 04:23 - 2014-11-21 04:23 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-11-21 04:22 - 2014-11-21 04:24 - 00000000 ____D () C:\AMD
2014-11-21 04:21 - 2014-11-21 04:21 - 00891224 _____ (AMD) C:\Users\Skillchamp\Downloads\amddriverdownloader.exe
2014-11-21 04:20 - 2014-11-21 04:20 - 00002251 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-21 04:20 - 2014-11-21 04:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-11-21 04:19 - 2014-11-21 20:24 - 00001124 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-21 04:19 - 2014-11-21 19:26 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 04:19 - 2014-11-21 04:20 - 00004096 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-21 04:19 - 2014-11-21 04:20 - 00000000 ____D () C:\Users\Skillchamp\AppData\Local\Google
2014-11-21 04:19 - 2014-11-21 04:20 - 00000000 ____D () C:\Program Files (x86)\Google
2014-11-21 04:19 - 2014-11-21 04:19 - 00003860 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-21 04:19 - 2014-11-21 04:18 - 00043064 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-11-21 04:17 - 2014-10-23 14:02 - 00131608 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-11-21 04:17 - 2014-10-23 14:02 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-11-21 04:17 - 2014-10-23 14:01 - 00119272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-11-21 04:16 - 2014-11-21 05:27 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-21 04:16 - 2014-11-21 04:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-11-21 04:16 - 2014-11-21 04:17 - 00000000 ____D () C:\ProgramData\Avira
2014-11-21 04:16 - 2014-11-21 04:17 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-11-21 04:16 - 2014-11-21 04:16 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-11-21 04:15 - 2014-11-21 04:15 - 00001442 _____ () C:\Users\Skillchamp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-21 04:15 - 2014-11-21 04:15 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\Adobe
2014-11-21 04:15 - 2014-11-21 04:15 - 00000000 ____D () C:\Users\Skillchamp\AppData\Local\VirtualStore
2014-11-21 04:14 - 2014-11-21 20:36 - 00000000 ____D () C:\Users\Skillchamp
2014-11-21 04:14 - 2014-11-21 19:46 - 01260423 _____ () C:\Windows\WindowsUpdate.log
2014-11-21 04:14 - 2014-11-21 16:52 - 00000000 ____D () C:\Users\Skillchamp\AppData\Local\Packages
2014-11-21 04:14 - 2014-11-21 16:52 - 00000000 ____D () C:\ProgramData\PRICache
2014-11-21 04:14 - 2014-11-21 04:14 - 00000020 ___SH () C:\Users\Skillchamp\ntuser.ini
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Vorlagen
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Startmenü
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Netzwerkumgebung
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Lokale Einstellungen
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Eigene Dateien
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Druckumgebung
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Documents\Eigene Musik
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Documents\Eigene Bilder
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\AppData\Local\Verlauf
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\AppData\Local\Anwendungsdaten
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 _SHDL () C:\Users\Skillchamp\Anwendungsdaten
2014-11-21 04:14 - 2014-11-21 04:14 - 00000000 ____D () C:\Windows\CSC
2014-11-21 04:14 - 2012-07-26 09:13 - 00000000 ___RD () C:\Users\Skillchamp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-21 04:14 - 2012-07-26 09:13 - 00000000 ___RD () C:\Users\Skillchamp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-21 04:14 - 2012-07-26 09:13 - 00000000 ___RD () C:\Users\Skillchamp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-11-21 04:14 - 2012-07-26 09:13 - 00000000 ____D () C:\Users\Skillchamp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-11-21 04:13 - 2014-11-21 04:13 - 00000117 _____ () C:\Windows\system32\netcfg-65629.txt
2014-11-21 04:13 - 2014-11-21 04:13 - 00000117 _____ () C:\Windows\system32\netcfg-61230.txt
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Programme
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-11-21 04:13 - 2014-11-21 04:13 - 00000000 __SHD () C:\Recovery
2014-11-21 04:11 - 2014-11-21 04:11 - 00001135 _____ () C:\Windows\system32\netcfg-38204.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000185 _____ () C:\Windows\system32\netcfg-46285.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000164 _____ () C:\Windows\system32\netcfg-42900.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000161 _____ () C:\Windows\system32\netcfg-46067.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000160 _____ () C:\Windows\system32\netcfg-45848.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000160 _____ () C:\Windows\system32\netcfg-45333.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000160 _____ () C:\Windows\system32\netcfg-37705.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000159 _____ () C:\Windows\system32\netcfg-43196.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000157 _____ () C:\Windows\system32\netcfg-45583.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000157 _____ () C:\Windows\system32\netcfg-43539.txt
2014-11-21 04:11 - 2014-11-21 04:11 - 00000150 _____ () C:\Windows\system32\netcfg-42603.txt
2014-11-21 04:10 - 2014-11-21 18:09 - 00138134 _____ () C:\Windows\PFRO.log
2014-11-21 04:10 - 2014-11-21 04:14 - 00000000 ____D () C:\Windows\Panther

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-21 20:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-11-21 19:28 - 2012-07-26 11:27 - 00751892 _____ () C:\Windows\system32\perfh007.dat
2014-11-21 19:28 - 2012-07-26 11:27 - 00155620 _____ () C:\Windows\system32\perfc007.dat
2014-11-21 19:28 - 2012-07-26 08:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-21 18:09 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-21 18:08 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData
2014-11-21 18:07 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-11-21 18:07 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-11-21 18:07 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-11-21 18:07 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\system32\oobe
2014-11-21 18:06 - 2012-07-26 09:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-21 18:06 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\WinStore
2014-11-21 18:00 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-11-21 17:35 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2014-11-21 16:50 - 2012-07-26 06:37 - 00000000 ____D () C:\Windows\servicing
2014-11-21 16:47 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-11-21 16:47 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-11-21 16:46 - 2012-07-26 11:29 - 00000000 ____D () C:\Program Files\Windows Journal
2014-11-21 16:46 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-21 16:46 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-11-21 16:46 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-21 16:46 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-11-21 16:46 - 2012-07-26 09:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-21 16:46 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-21 16:46 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-21 16:45 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-11-21 16:45 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-11-21 16:45 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-11-21 16:45 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\system32\Dism
2014-11-21 14:19 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-11-21 14:17 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-11-21 04:24 - 2012-07-26 08:21 - 00013043 _____ () C:\Windows\setupact.log
2014-11-21 04:23 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\restore
2014-11-21 04:13 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\Recovery
2014-11-21 04:13 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows NT
2014-11-21 04:13 - 2012-07-26 06:37 - 00000000 __RHD () C:\Users\Default
2014-11-21 04:12 - 2012-07-26 09:13 - 00001720 _____ () C:\Windows\DtcInstall.log
2014-11-21 04:10 - 2012-07-26 09:13 - 00262144 _____ () C:\Windows\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\Skillchamp\AppData\Local\Temp\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
C:\Users\Skillchamp\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-21 04:10

==================== End Of Log ============================

Addition Txt Datei

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2014
Ran by Skillchamp at 2014-11-21 20:38:42
Running from C:\Users\Skillchamp\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Avira (HKLM-x32\...\{9480d4af-12b9-4e56-8034-4031ef6ab39d}) (Version: 1.1.25.25607 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.25.25607 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.7.342 - Avira)
Gameforge Live 2.0.5 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.5 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.65 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version:  - )
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

21-11-2014 03:23:44 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {1BEABD58-798C-46D2-922D-6A877A4FBF2B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-21] (Google Inc.)
Task: {773BCF96-2D68-41E1-B17F-649E7C3A372D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-21] (Google Inc.)
Task: {A5E0AFFB-D8DC-46B3-9071-AE883D524A4E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-10-31] (Microsoft Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-04-17 22:29 - 2014-04-17 22:29 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-04-17 21:55 - 2014-04-17 21:55 - 00082432 _____ () C:\AMD\amdacpusrsvc.exe
2014-04-17 22:29 - 2014-04-17 22:29 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-11-21 04:20 - 2014-11-14 22:15 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.65\libglesv2.dll
2014-11-21 04:20 - 2014-11-14 22:15 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.65\libegl.dll
2014-11-21 04:20 - 2014-11-14 22:15 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.65\pdf.dll
2014-11-21 04:20 - 2014-11-14 22:15 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.65\ffmpegsumo.dll

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-2432053586-1222344974-1202538709-500 - Administrator - Disabled)
Gast (S-1-5-21-2432053586-1222344974-1202538709-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2432053586-1222344974-1202538709-1003 - Limited - Enabled)
Skillchamp (S-1-5-21-2432053586-1222344974-1202538709-1001 - Administrator - Enabled) => C:\Users\Skillchamp

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/21/2014 04:56:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LeagueSharp.Loader.exe, Version: 1.0.0.6, Zeitstempel: 0x546cbe29
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16864, Zeitstempel: 0x531d2be6
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00010f22
ID des fehlerhaften Prozesses: 0x818
Startzeit der fehlerhaften Anwendung: 0xLeagueSharp.Loader.exe0
Pfad der fehlerhaften Anwendung: LeagueSharp.Loader.exe1
Pfad des fehlerhaften Moduls: LeagueSharp.Loader.exe2
Berichtskennung: LeagueSharp.Loader.exe3
Vollständiger Name des fehlerhaften Pakets: LeagueSharp.Loader.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: LeagueSharp.Loader.exe5

Error: (11/21/2014 04:56:40 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: LeagueSharp.Loader.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.Reflection.TargetInvocationException
Stapel:
   bei System.ComponentModel.AsyncCompletedEventArgs.RaiseExceptionIfNecessary()
   bei LeagueSharp.Loader.Class.Updater+<>c__DisplayClass1.<GetRepositories>b__0(System.Object, System.Net.DownloadStringCompletedEventArgs)
   bei System.Net.WebClient.OnDownloadStringCompleted(System.Net.DownloadStringCompletedEventArgs)
   bei System.Net.WebClient.DownloadStringOperationCompleted(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.DispatcherOperation.InvokeImpl()
   bei System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   bei System.Windows.Threading.DispatcherOperation.Invoke()
   bei System.Windows.Threading.Dispatcher.ProcessQueue()
   bei System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei LeagueSharp.Loader.App.Main()

Error: (11/21/2014 01:34:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm rads_user_kernel.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: f84

Startzeit: 01d00587731a30e4

Endzeit: 0

Anwendungspfad: C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe

Berichts-ID: bc0ff987-717a-11e4-be66-74d435e0732e

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/21/2014 00:42:12 PM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: amdacpusrsvc[EVENT]: SERVICE_CONTROL_POWEREVENT: RESUME: FAILED.

Error: (11/21/2014 00:42:12 PM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: amdacpusrsvcacpusrsvc: GraphicsMemory API Wrapper: Dummy Packet Submission FAILED

Error: (11/21/2014 04:35:58 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm chromeinstall-8u25 (1).exe, Version 8.0.250.18 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 9f8

Startzeit: 01d0053bd426eee7

Endzeit: 4294967295

Anwendungspfad: C:\Users\Skillchamp\Downloads\chromeinstall-8u25 (1).exe

Berichts-ID: 80f8b4ae-712f-11e4-be66-74d435e0732e

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (11/21/2014 04:18:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: PC)
Description: Die App „windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.


System errors:
=============
Error: (11/21/2014 06:48:03 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5

Error: (11/21/2014 04:43:31 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Der Dienst Gruppenrichtlinienclient konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (11/21/2014 11:09:15 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5

Error: (11/21/2014 04:18:30 AM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900.

Error: (11/21/2014 04:12:23 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (11/21/2014 04:11:23 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde mit folgendem Fehler beendet: 
%%21

Error: (11/21/2014 04:11:22 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "IP-Hilfsdienst" wurde mit folgendem Fehler beendet: 
%%1058

Error: (11/21/2014 04:10:50 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.


Microsoft Office Sessions:
=========================
Error: (11/21/2014 04:56:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LeagueSharp.Loader.exe1.0.0.6546cbe29KERNELBASE.dll6.2.9200.16864531d2be6e043435200010f2281801d005a3ae9788ebC:\Users\Skillchamp\Desktop\LeagueSharp\LeagueSharp.Loader.exeC:\Windows\SYSTEM32\KERNELBASE.dllfb696222-7196-11e4-be69-74d435e0732e

Error: (11/21/2014 04:56:40 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: LeagueSharp.Loader.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.Reflection.TargetInvocationException
Stapel:
   bei System.ComponentModel.AsyncCompletedEventArgs.RaiseExceptionIfNecessary()
   bei LeagueSharp.Loader.Class.Updater+<>c__DisplayClass1.<GetRepositories>b__0(System.Object, System.Net.DownloadStringCompletedEventArgs)
   bei System.Net.WebClient.OnDownloadStringCompleted(System.Net.DownloadStringCompletedEventArgs)
   bei System.Net.WebClient.DownloadStringOperationCompleted(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.DispatcherOperation.InvokeImpl()
   bei System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   bei System.Windows.Threading.DispatcherOperation.Invoke()
   bei System.Windows.Threading.Dispatcher.ProcessQueue()
   bei System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   bei MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   bei MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   bei System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   bei MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   bei MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   bei System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   bei System.Windows.Application.RunDispatcher(System.Object)
   bei System.Windows.Application.RunInternal(System.Windows.Window)
   bei System.Windows.Application.Run(System.Windows.Window)
   bei LeagueSharp.Loader.App.Main()

Error: (11/21/2014 01:34:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: rads_user_kernel.exe0.0.0.0f8401d00587731a30e40C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exebc0ff987-717a-11e4-be66-74d435e0732e

Error: (11/21/2014 00:42:12 PM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: amdacpusrsvc[EVENT]: SERVICE_CONTROL_POWEREVENT: RESUME: FAILED.

Error: (11/21/2014 00:42:12 PM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: amdacpusrsvcacpusrsvc: GraphicsMemory API Wrapper: Dummy Packet Submission FAILED

Error: (11/21/2014 04:35:58 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chromeinstall-8u25 (1).exe8.0.250.189f801d0053bd426eee74294967295C:\Users\Skillchamp\Downloads\chromeinstall-8u25 (1).exe80f8b4ae-712f-11e4-be66-74d435e0732e

Error: (11/21/2014 04:18:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: PC)
Description: windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel


==================== Memory info =========================== 

Processor: AMD FX(tm)-8320 Eight-Core Processor 
Percentage of memory in use: 18%
Total physical RAM: 8156.66 MB
Available physical RAM: 6650.27 MB
Total Pagefile: 12764.66 MB
Available Pagefile: 10744.51 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:464.37 GB) (Free:422.05 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================

schrauber · 22.11.2014, 18:37

Soweit seh ich mal nix. Haste den Router mal 30 min vom Strom genommen?

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

binar · 22.11.2014, 18:56

TDSSKiller txt

Code:

ATTFilter

18:53:50.0155 0x00d4  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
18:53:50.0155 0x00d4  UEFI system
18:54:06.0700 0x00d4  ============================================================
18:54:06.0700 0x00d4  Current date / time: 2014/11/22 18:54:06.0700
18:54:06.0700 0x00d4  SystemInfo:
18:54:06.0700 0x00d4  
18:54:06.0700 0x00d4  OS Version: 6.2.9200 ServicePack: 0.0
18:54:06.0700 0x00d4  Product type: Workstation
18:54:06.0700 0x00d4  ComputerName: PC
18:54:06.0700 0x00d4  UserName: Skillchamp
18:54:06.0700 0x00d4  Windows directory: C:\Windows
18:54:06.0700 0x00d4  System windows directory: C:\Windows
18:54:06.0700 0x00d4  Running under WOW64
18:54:06.0700 0x00d4  Processor architecture: Intel x64
18:54:06.0700 0x00d4  Number of processors: 8
18:54:06.0700 0x00d4  Page size: 0x1000
18:54:06.0700 0x00d4  Boot type: Normal boot
18:54:06.0700 0x00d4  ============================================================
18:54:07.0452 0x00d4  KLMD registered as C:\Windows\system32\drivers\86061999.sys
18:54:07.0948 0x00d4  System UUID: {6AF8EF85-DA3F-FEF5-9FB2-469B5B400C84}
18:54:09.0027 0x00d4  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:54:09.0033 0x00d4  ============================================================
18:54:09.0033 0x00d4  \Device\Harddisk0\DR0:
18:54:09.0033 0x00d4  GPT partitions:
18:54:09.0034 0x00d4  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {79FFDFD9-E8CC-43C7-8506-AF7311839619}, Name: EFI system partition, StartLBA 0x96800, BlocksNum 0x31800
18:54:09.0034 0x00d4  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {27B61DC5-B72D-4EEE-819E-E4E1E0F21FB3}, Name: Microsoft reserved partition, StartLBA 0xC8000, BlocksNum 0x40000
18:54:09.0034 0x00d4  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {407C95F0-9696-4B88-9C04-D118DCAF6342}, Name: Basic data partition, StartLBA 0x108000, BlocksNum 0x3A0BC000
18:54:09.0034 0x00d4  MBR partitions:
18:54:09.0034 0x00d4  ============================================================
18:54:09.0051 0x00d4  C: <-> \Device\Harddisk0\DR0\Partition3
18:54:09.0051 0x00d4  ============================================================
18:54:09.0051 0x00d4  Initialize success
18:54:09.0051 0x00d4  ============================================================
18:54:34.0377 0x0af8  ============================================================
18:54:34.0377 0x0af8  Scan started
18:54:34.0377 0x0af8  Mode: Manual; SigCheck; TDLFS; 
18:54:34.0377 0x0af8  ============================================================
18:54:34.0377 0x0af8  KSN ping started
18:54:36.0713 0x0af8  KSN ping finished: true
18:54:38.0093 0x0af8  ================ Scan system memory ========================
18:54:38.0093 0x0af8  System memory - ok
18:54:38.0094 0x0af8  ================ Scan services =============================
18:54:38.0285 0x0af8  [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
18:54:38.0353 0x0af8  1394ohci - ok
18:54:38.0373 0x0af8  [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware           C:\Windows\system32\drivers\3ware.sys
18:54:38.0388 0x0af8  3ware - ok
18:54:38.0432 0x0af8  [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:54:38.0471 0x0af8  ACPI - ok
18:54:38.0487 0x0af8  [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
18:54:38.0501 0x0af8  acpiex - ok
18:54:38.0513 0x0af8  [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
18:54:38.0542 0x0af8  acpipagr - ok
18:54:38.0547 0x0af8  [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
18:54:38.0573 0x0af8  AcpiPmi - ok
18:54:38.0577 0x0af8  [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
18:54:38.0598 0x0af8  acpitime - ok
18:54:38.0624 0x0af8  [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:54:38.0660 0x0af8  adp94xx - ok
18:54:38.0675 0x0af8  [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:54:38.0702 0x0af8  adpahci - ok
18:54:38.0709 0x0af8  [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:54:38.0725 0x0af8  adpu320 - ok
18:54:38.0745 0x0af8  [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:54:38.0795 0x0af8  AeLookupSvc - ok
18:54:38.0835 0x0af8  [ FE7FB9612D354EB41DF4F0FF5D6FB259, 98D5BD9C1300195C49CB0717A831A06D99F7AE631D5EA065E10BFE7C2FA57A18 ] AFD             C:\Windows\system32\drivers\afd.sys
18:54:38.0868 0x0af8  AFD - ok
18:54:38.0888 0x0af8  [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:54:38.0915 0x0af8  agp440 - ok
18:54:38.0968 0x0af8  [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG             C:\Windows\System32\alg.exe
18:54:39.0023 0x0af8  ALG - ok
18:54:39.0063 0x0af8  [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
18:54:39.0115 0x0af8  AllUserInstallAgent - ok
18:54:39.0153 0x0af8  [ E7BDC2E7D885A65031C6B93D5A80B019, B37B05CA81A200A0C303946A21901ED382468761AB8BB8F7F310700A060E813F ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:54:39.0193 0x0af8  AMD External Events Utility - ok
18:54:39.0254 0x0af8  AMD FUEL Service - ok
18:54:39.0304 0x0af8  [ 31424EA67E83EAAF76ED3473F2F8F758, CBB8B604A6A18239F079BC6AABC97ED0DC851B08C0659D24BA576F084770E7C4 ] amdacpksd       C:\Windows\system32\drivers\amdacpksd.sys
18:54:39.0350 0x0af8  amdacpksd - ok
18:54:39.0380 0x0af8  [ E696F48E288CC3FFDB9AEBF6AFDB791C, 78532672634EA9AE1E6C823528136DF74407CCF5518B4919CC074498B1D321B6 ] amdacpusrsvc    C:\AMD\amdacpusrsvc.exe
18:54:39.0396 0x0af8  amdacpusrsvc - detected UnsignedFile.Multi.Generic ( 1 )
18:54:41.0767 0x0af8  Detect skipped due to KSN trusted
18:54:41.0767 0x0af8  amdacpusrsvc - ok
18:54:41.0806 0x0af8  [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
18:54:41.0854 0x0af8  AmdK8 - ok
18:54:41.0909 0x0af8  [ F2FF8C1B41B3784EDBD5C6D5397F403C, 104873700D2BDF4812DC48200B4609F46A63E7A50594A0599100EF1438863708 ] amdkmafd        C:\Windows\system32\drivers\amdkmafd.sys
18:54:41.0931 0x0af8  amdkmafd - ok
18:54:42.0340 0x0af8  [ 342156AF1FED5ED3A5D3FBB3D87F48E8, 119C85492EDCA82731E23A261DE39A72783713B01B89D8FA2F47400EB03C7C57 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
18:54:42.0896 0x0af8  amdkmdag - ok
18:54:42.0971 0x0af8  [ 9DCA2AFEABF1D109FB2C229491C9F293, F020F4FDD29897C656287A2D01D51B4AE45AA604E4291BCE05FB7D994242EC04 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
18:54:43.0014 0x0af8  amdkmdap - ok
18:54:43.0042 0x0af8  [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
18:54:43.0085 0x0af8  AmdPPM - ok
18:54:43.0109 0x0af8  [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:54:43.0134 0x0af8  amdsata - ok
18:54:43.0157 0x0af8  [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:54:43.0176 0x0af8  amdsbs - ok
18:54:43.0184 0x0af8  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:54:43.0195 0x0af8  amdxata - ok
18:54:43.0319 0x0af8  [ 6F1BBF101B6DC9D34A564C2009D83B63, 1679D48C5A2CE6434E09F1D1330E616F8130C7A0ADF5C14D847CCEABDDA2950E ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
18:54:43.0337 0x0af8  AntiVirSchedulerService - ok
18:54:43.0365 0x0af8  [ 6F1BBF101B6DC9D34A564C2009D83B63, 1679D48C5A2CE6434E09F1D1330E616F8130C7A0ADF5C14D847CCEABDDA2950E ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
18:54:43.0377 0x0af8  AntiVirService - ok
18:54:43.0404 0x0af8  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.3    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:54:43.0414 0x0af8  AODDriver4.3 - ok
18:54:43.0433 0x0af8  [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID           C:\Windows\system32\drivers\appid.sys
18:54:43.0471 0x0af8  AppID - ok
18:54:43.0499 0x0af8  [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:54:43.0523 0x0af8  AppIDSvc - ok
18:54:43.0544 0x0af8  [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo         C:\Windows\System32\appinfo.dll
18:54:43.0557 0x0af8  Appinfo - ok
18:54:43.0581 0x0af8  [ 2D14788C5D0836292BEB27BBE109BE56, D032FDBD9E1708F77348655DE00DB395E38EB27A7EC3FB2EF3BA07D22CBC1402 ] AppMgmt         C:\Windows\System32\appmgmts.dll
18:54:43.0622 0x0af8  AppMgmt - ok
18:54:43.0635 0x0af8  [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc             C:\Windows\system32\drivers\arc.sys
18:54:43.0649 0x0af8  arc - ok
18:54:43.0655 0x0af8  [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:54:43.0669 0x0af8  arcsas - ok
18:54:43.0672 0x0af8  [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:54:43.0721 0x0af8  AsyncMac - ok
18:54:43.0737 0x0af8  [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi           C:\Windows\system32\drivers\atapi.sys
18:54:43.0753 0x0af8  atapi - ok
18:54:43.0791 0x0af8  [ DFCCB0FE19E8EB2B7122D9195AC67EE1, 50F2A607B2E4ADB1C00DC575BDBE1368D4BACE55CBC5F2AAF760EB717D016AB1 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys
18:54:43.0831 0x0af8  AtiHDAudioService - ok
18:54:43.0866 0x0af8  [ 8FB10919E1283FD108334FDBFB173574, EAD11C6FA884AAC9E8534C267E9B1D2EAB1F2A396EACC900525465A2AEAB84D3 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
18:54:43.0899 0x0af8  AudioEndpointBuilder - ok
18:54:43.0939 0x0af8  [ 37B2C3BFD6E259A5CBC0053100908157, BB2103C67ED00D2A6C19D97BDFC8D7695F1957910743CA406038262DB1BB9339 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
18:54:43.0973 0x0af8  Audiosrv - ok
18:54:44.0003 0x0af8  [ 1B87A1F2FA5B91AC1A7D171B8D952441, 4CB21F6567021DAE6B2E35B9BA84D015580E2DDFEBEB1AA9637BD93F42883DD2 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
18:54:44.0015 0x0af8  avgntflt - ok
18:54:44.0032 0x0af8  [ AF61774060F277FE45CBD3A9A8E7D45A, 2F96DC9735BAF017603D72A258BF7A772BF8C4AFECB5AA0CAD8F8E3CCAA0F2B5 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
18:54:44.0046 0x0af8  avipbb - ok
18:54:44.0098 0x0af8  [ F21955927D1C99206A8B91DE2CCE85E1, 26A6155CF46123C489CBE19B5B3E3B0D9ED02C9388E57058724B0FFB7D7C08B5 ] Avira.OE.ServiceHost C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
18:54:44.0107 0x0af8  Avira.OE.ServiceHost - ok
18:54:44.0111 0x0af8  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
18:54:44.0121 0x0af8  avkmgr - ok
18:54:44.0146 0x0af8  [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:54:44.0168 0x0af8  AxInstSV - ok
18:54:44.0207 0x0af8  [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
18:54:44.0269 0x0af8  b06bdrv - ok
18:54:44.0299 0x0af8  [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
18:54:44.0318 0x0af8  BasicDisplay - ok
18:54:44.0322 0x0af8  [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
18:54:44.0343 0x0af8  BasicRender - ok
18:54:44.0376 0x0af8  [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC          C:\Windows\System32\bdesvc.dll
18:54:44.0412 0x0af8  BDESVC - ok
18:54:44.0429 0x0af8  [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep            C:\Windows\system32\drivers\Beep.sys
18:54:44.0465 0x0af8  Beep - ok
18:54:44.0501 0x0af8  [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE             C:\Windows\System32\bfe.dll
18:54:44.0548 0x0af8  BFE - ok
18:54:44.0592 0x0af8  [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS            C:\Windows\System32\qmgr.dll
18:54:44.0674 0x0af8  BITS - ok
18:54:44.0693 0x0af8  [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:54:44.0729 0x0af8  bowser - ok
18:54:44.0768 0x0af8  [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
18:54:44.0799 0x0af8  BrokerInfrastructure - ok
18:54:44.0822 0x0af8  [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser         C:\Windows\System32\browser.dll
18:54:44.0869 0x0af8  Browser - ok
18:54:44.0897 0x0af8  [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
18:54:44.0917 0x0af8  BthAvrcpTg - ok
18:54:44.0937 0x0af8  [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
18:54:44.0990 0x0af8  BthHFEnum - ok
18:54:45.0012 0x0af8  [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
18:54:45.0044 0x0af8  bthhfhid - ok
18:54:45.0064 0x0af8  [ 033916CE8784A848B9A3D686B7F66D97, B4D0514D59646CF6B70D4FA488CF95C38EA38CC5C509329CC8753E897C640AFA ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
18:54:45.0085 0x0af8  BTHMODEM - ok
18:54:45.0123 0x0af8  [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv         C:\Windows\system32\bthserv.dll
18:54:45.0144 0x0af8  bthserv - ok
18:54:45.0154 0x0af8  [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:54:45.0168 0x0af8  cdfs - ok
18:54:45.0188 0x0af8  [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom           C:\Windows\System32\drivers\cdrom.sys
18:54:45.0236 0x0af8  cdrom - ok
18:54:45.0253 0x0af8  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc     C:\Windows\System32\certprop.dll
18:54:45.0279 0x0af8  CertPropSvc - ok
18:54:45.0283 0x0af8  [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass        C:\Windows\System32\drivers\circlass.sys
18:54:45.0308 0x0af8  circlass - ok
18:54:45.0332 0x0af8  [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS            C:\Windows\system32\drivers\CLFS.sys
18:54:45.0354 0x0af8  CLFS - ok
18:54:45.0368 0x0af8  [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
18:54:45.0388 0x0af8  CmBatt - ok
18:54:45.0423 0x0af8  [ DBF9E5346431557BF56F41E7F8EC0DC1, D5FA34C873DA9BE40301D53198355556506AB5145B78B14D0AA88570A0058589 ] CNG             C:\Windows\system32\Drivers\cng.sys
18:54:45.0457 0x0af8  CNG - ok
18:54:45.0477 0x0af8  [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
18:54:45.0526 0x0af8  CompositeBus - ok
18:54:45.0531 0x0af8  COMSysApp - ok
18:54:45.0537 0x0af8  [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv          C:\Windows\system32\drivers\condrv.sys
18:54:45.0552 0x0af8  condrv - ok
18:54:45.0578 0x0af8  [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:54:45.0617 0x0af8  CryptSvc - ok
18:54:45.0679 0x0af8  [ F2C69C3D98249DE14D4B2832516D4FD5, 5F622A61A99202802B35532036CFCFDFB1FDEC32465BA8CCAB4C4FAFA336FC2A ] CSC             C:\Windows\system32\drivers\csc.sys
18:54:45.0742 0x0af8  CSC - ok
18:54:45.0788 0x0af8  [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4, 7F6F888CF4D7EF93144A791891E41858F7C0CDDC0B65ED09B9CD55EE3734FCCF ] CscService      C:\Windows\System32\cscsvc.dll
18:54:45.0833 0x0af8  CscService - ok
18:54:45.0858 0x0af8  [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam             C:\Windows\system32\drivers\dam.sys
18:54:45.0872 0x0af8  dam - ok
18:54:45.0948 0x0af8  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:54:45.0994 0x0af8  DcomLaunch - ok
18:54:46.0028 0x0af8  [ FC1569B5705887D74FE7C8A39BE1C71C, 7DEB8FE472C72C439A2F54B6277C0A87AC2083869BD9AF8226071B7AA33B09FF ] defragsvc       C:\Windows\System32\defragsvc.dll
18:54:46.0066 0x0af8  defragsvc - ok
18:54:46.0099 0x0af8  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\Windows\system32\das.dll
18:54:46.0139 0x0af8  DeviceAssociationService - ok
18:54:46.0166 0x0af8  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
18:54:46.0189 0x0af8  DeviceInstall - ok
18:54:46.0205 0x0af8  [ 431141C6859990824D17F71C30A78728, 448B3DC20C8FDD5B66217E0E01DBCC4904F94BDA0826F109D139DDD2C2D7FBF2 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
18:54:46.0231 0x0af8  Dfsc - ok
18:54:46.0259 0x0af8  [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:54:46.0284 0x0af8  Dhcp - ok
18:54:46.0312 0x0af8  [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache        C:\Windows\system32\drivers\discache.sys
18:54:46.0330 0x0af8  discache - ok
18:54:46.0354 0x0af8  [ AE3786294CC246A5403783E1B86A0168, 29A7B4B490CBB16DAEF5D67D0A58A2577CF3FEE8F889484DB867F6913D9D2A28 ] disk            C:\Windows\system32\drivers\disk.sys
18:54:46.0369 0x0af8  disk - ok
18:54:46.0386 0x0af8  [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
18:54:46.0403 0x0af8  dmvsc - ok
18:54:46.0427 0x0af8  [ B9450BC3F1820A99D010D7426BCA60E9, FC7C35A0C522E5DA52B0616CF99F4903EAC14946180A18A8D8A0FF555BAA87C5 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:54:46.0465 0x0af8  Dnscache - ok
18:54:46.0497 0x0af8  [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc         C:\Windows\System32\dot3svc.dll
18:54:46.0524 0x0af8  dot3svc - ok
18:54:46.0537 0x0af8  [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS             C:\Windows\system32\dps.dll
18:54:46.0554 0x0af8  DPS - ok
18:54:46.0588 0x0af8  [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:54:46.0621 0x0af8  drmkaud - ok
18:54:46.0653 0x0af8  [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
18:54:46.0687 0x0af8  DsmSvc - ok
18:54:46.0760 0x0af8  [ 2BB5627EB587FA995086C3D8C21B6D3F, 871E35BBE66180781324D38823B74263B660CF9254EE348A15421FAC5667F294 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:54:46.0834 0x0af8  DXGKrnl - ok
18:54:46.0872 0x0af8  [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost         C:\Windows\System32\eapsvc.dll
18:54:46.0897 0x0af8  Eaphost - ok
18:54:46.0997 0x0af8  [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv           C:\Windows\system32\drivers\evbda.sys
18:54:47.0138 0x0af8  ebdrv - ok
18:54:47.0163 0x0af8  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] EFS             C:\Windows\System32\lsass.exe
18:54:47.0190 0x0af8  EFS - ok
18:54:47.0233 0x0af8  [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
18:54:47.0269 0x0af8  EhStorClass - ok
18:54:47.0294 0x0af8  [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
18:54:47.0317 0x0af8  EhStorTcgDrv - ok
18:54:47.0325 0x0af8  [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
18:54:47.0342 0x0af8  ErrDev - ok
18:54:47.0377 0x0af8  [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem     C:\Windows\system32\es.dll
18:54:47.0408 0x0af8  EventSystem - ok
18:54:47.0431 0x0af8  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat           C:\Windows\system32\drivers\exfat.sys
18:54:47.0467 0x0af8  exfat - ok
18:54:47.0515 0x0af8  [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:54:47.0635 0x0af8  fastfat - ok
18:54:47.0674 0x0af8  [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax             C:\Windows\system32\fxssvc.exe
18:54:47.0745 0x0af8  Fax - ok
18:54:47.0758 0x0af8  [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc             C:\Windows\System32\drivers\fdc.sys
18:54:47.0778 0x0af8  fdc - ok
18:54:47.0798 0x0af8  [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:54:47.0825 0x0af8  fdPHost - ok
18:54:47.0829 0x0af8  [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:54:47.0847 0x0af8  FDResPub - ok
18:54:47.0870 0x0af8  [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc           C:\Windows\system32\fhsvc.dll
18:54:47.0905 0x0af8  fhsvc - ok
18:54:47.0917 0x0af8  [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:54:47.0931 0x0af8  FileInfo - ok
18:54:47.0935 0x0af8  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:54:47.0959 0x0af8  Filetrace - ok
18:54:47.0963 0x0af8  [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
18:54:47.0987 0x0af8  flpydisk - ok
18:54:48.0005 0x0af8  [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:54:48.0027 0x0af8  FltMgr - ok
18:54:48.0075 0x0af8  [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache       C:\Windows\system32\FntCache.dll
18:54:48.0124 0x0af8  FontCache - ok
18:54:48.0208 0x0af8  [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:54:48.0236 0x0af8  FontCache3.0.0.0 - ok
18:54:48.0256 0x0af8  [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:54:48.0272 0x0af8  FsDepends - ok
18:54:48.0285 0x0af8  [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:54:48.0299 0x0af8  Fs_Rec - ok
18:54:48.0332 0x0af8  [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:54:48.0352 0x0af8  fvevol - ok
18:54:48.0375 0x0af8  [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
18:54:48.0386 0x0af8  FxPPM - ok
18:54:48.0400 0x0af8  [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:54:48.0414 0x0af8  gagp30kx - ok
18:54:48.0422 0x0af8  [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
18:54:48.0443 0x0af8  gencounter - ok
18:54:48.0471 0x0af8  [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
18:54:48.0491 0x0af8  GPIOClx0101 - ok
18:54:48.0560 0x0af8  [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc           C:\Windows\System32\gpsvc.dll
18:54:48.0605 0x0af8  gpsvc - ok
18:54:48.0623 0x0af8  [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:54:48.0630 0x0af8  gupdate - ok
18:54:48.0634 0x0af8  [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:54:48.0640 0x0af8  gupdatem - ok
18:54:48.0685 0x0af8  [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:54:48.0722 0x0af8  HdAudAddService - ok
18:54:48.0746 0x0af8  [ 58CC013EFA9893057160EDA018D8ADCE, BE8AA220CFBD90202C1B130DF349C3198E3447F3C2DC7BC5FC8816F57F78BA00 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
18:54:48.0765 0x0af8  HDAudBus - ok
18:54:48.0784 0x0af8  [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
18:54:48.0796 0x0af8  HidBatt - ok
18:54:48.0820 0x0af8  [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth          C:\Windows\System32\drivers\hidbth.sys
18:54:48.0841 0x0af8  HidBth - ok
18:54:48.0864 0x0af8  [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
18:54:48.0885 0x0af8  hidi2c - ok
18:54:48.0891 0x0af8  [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr           C:\Windows\System32\drivers\hidir.sys
18:54:48.0922 0x0af8  HidIr - ok
18:54:48.0948 0x0af8  [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv         C:\Windows\system32\hidserv.dll
18:54:48.0984 0x0af8  hidserv - ok
18:54:48.0993 0x0af8  [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
18:54:49.0011 0x0af8  HidUsb - ok
18:54:49.0025 0x0af8  [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:54:49.0060 0x0af8  hkmsvc - ok
18:54:49.0108 0x0af8  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:54:49.0133 0x0af8  HomeGroupListener - ok
18:54:49.0174 0x0af8  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:54:49.0199 0x0af8  HomeGroupProvider - ok
18:54:49.0221 0x0af8  [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:54:49.0235 0x0af8  HpSAMD - ok
18:54:49.0285 0x0af8  [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:54:49.0329 0x0af8  HTTP - ok
18:54:49.0346 0x0af8  [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:54:49.0356 0x0af8  hwpolicy - ok
18:54:49.0360 0x0af8  [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
18:54:49.0382 0x0af8  hyperkbd - ok
18:54:49.0386 0x0af8  [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
18:54:49.0401 0x0af8  HyperVideo - ok
18:54:49.0407 0x0af8  [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
18:54:49.0440 0x0af8  i8042prt - ok
18:54:49.0469 0x0af8  [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:54:49.0496 0x0af8  iaStorV - ok
18:54:49.0501 0x0af8  [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:54:49.0513 0x0af8  iirsp - ok
18:54:49.0561 0x0af8  [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT          C:\Windows\System32\ikeext.dll
18:54:49.0657 0x0af8  IKEEXT - ok
18:54:49.0663 0x0af8  [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide        C:\Windows\system32\drivers\intelide.sys
18:54:49.0674 0x0af8  intelide - ok
18:54:49.0692 0x0af8  [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
18:54:49.0718 0x0af8  intelppm - ok
18:54:49.0723 0x0af8  [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:54:49.0745 0x0af8  IpFilterDriver - ok
18:54:49.0787 0x0af8  [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:54:49.0842 0x0af8  iphlpsvc - ok
18:54:49.0869 0x0af8  [ A4071DA3AE419F9694BFCB267C7DB8D7, 392DEE1DA51606C29418A98D2861F115E9F67C688B4281C53E87BA73A98809FB ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
18:54:49.0894 0x0af8  IPMIDRV - ok
18:54:49.0912 0x0af8  [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:54:49.0942 0x0af8  IPNAT - ok
18:54:49.0947 0x0af8  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:54:49.0958 0x0af8  IRENUM - ok
18:54:49.0962 0x0af8  [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:54:49.0973 0x0af8  isapnp - ok
18:54:49.0989 0x0af8  [ E6530FD4F61B40F338BF4355A21B9A09, FE9BF039B9901BEC260A69F7C49ACFA9881AD470DCCBA70C7EC36F518DA71702 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
18:54:50.0015 0x0af8  iScsiPrt - ok
18:54:50.0034 0x0af8  [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
18:54:50.0047 0x0af8  kbdclass - ok
18:54:50.0061 0x0af8  [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
18:54:50.0079 0x0af8  kbdhid - ok
18:54:50.0096 0x0af8  [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
18:54:50.0114 0x0af8  kdnic - ok
18:54:50.0129 0x0af8  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] KeyIso          C:\Windows\system32\lsass.exe
18:54:50.0138 0x0af8  KeyIso - ok
18:54:50.0169 0x0af8  [ 8B3EB6372436195B8EA8AE09A184BCE2, 9AFB7A9D6AEEBF5994C85B355155024768116E2D537C9FA169BC3F4594ECD35C ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:54:50.0183 0x0af8  KSecDD - ok
18:54:50.0226 0x0af8  [ 0EB535ADDC065F2D0CBFC089630A6065, F6DD544227A5B7A0C80E401EB5461963567A24834C60AF520FBABC1A9FB4E631 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:54:50.0263 0x0af8  KSecPkg - ok
18:54:50.0288 0x0af8  [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:54:50.0314 0x0af8  ksthunk - ok
18:54:50.0348 0x0af8  [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:54:50.0407 0x0af8  KtmRm - ok
18:54:50.0451 0x0af8  [ 05A5B36592BB5F371B6AB020A2691E42, 384230A10EA0394E260282509B7D8EFCBFF8814611F6EFAB2DD346B97963EC55 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:54:50.0511 0x0af8  LanmanServer - ok
18:54:50.0544 0x0af8  [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:54:50.0566 0x0af8  LanmanWorkstation - ok
18:54:50.0576 0x0af8  [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:54:50.0619 0x0af8  lltdio - ok
18:54:50.0660 0x0af8  [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:54:50.0696 0x0af8  lltdsvc - ok
18:54:50.0711 0x0af8  [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:54:50.0743 0x0af8  lmhosts - ok
18:54:50.0767 0x0af8  [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:54:50.0800 0x0af8  LSI_SAS - ok
18:54:50.0808 0x0af8  [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
18:54:50.0829 0x0af8  LSI_SAS2 - ok
18:54:50.0840 0x0af8  [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:54:50.0854 0x0af8  LSI_SCSI - ok
18:54:50.0859 0x0af8  [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
18:54:50.0872 0x0af8  LSI_SSS - ok
18:54:50.0900 0x0af8  [ 1DC9B701F8EB7D67774035AC9C3104F6, 77371267CDA605F78674BF8FA14B134B22299CD96EADA60A68762207595F0B46 ] LSM             C:\Windows\System32\lsm.dll
18:54:50.0923 0x0af8  LSM - ok
18:54:50.0939 0x0af8  [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv           C:\Windows\system32\drivers\luafv.sys
18:54:50.0972 0x0af8  luafv - ok
18:54:51.0007 0x0af8  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
18:54:51.0028 0x0af8  MBAMProtector - ok
18:54:51.0110 0x0af8  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler   C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
18:54:51.0187 0x0af8  MBAMScheduler - ok
18:54:51.0218 0x0af8  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService     C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
18:54:51.0259 0x0af8  MBAMService - ok
18:54:51.0275 0x0af8  [ D1F2D4DF0A5D3B700794E26356A55B44, E8A06F85BAAC221026E3213947D59DF13DE8E17FBDD2BC68B6B921D74C632612 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
18:54:51.0286 0x0af8  MBAMWebAccessControl - ok
18:54:51.0304 0x0af8  [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:54:51.0316 0x0af8  megasas - ok
18:54:51.0344 0x0af8  [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
18:54:51.0370 0x0af8  MegaSR - ok
18:54:51.0390 0x0af8  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS           C:\Windows\system32\mmcss.dll
18:54:51.0403 0x0af8  MMCSS - ok
18:54:51.0407 0x0af8  [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem           C:\Windows\system32\drivers\modem.sys
18:54:51.0429 0x0af8  Modem - ok
18:54:51.0449 0x0af8  [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor         C:\Windows\System32\drivers\monitor.sys
18:54:51.0470 0x0af8  monitor - ok
18:54:51.0482 0x0af8  [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
18:54:51.0495 0x0af8  mouclass - ok
18:54:51.0515 0x0af8  [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
18:54:51.0534 0x0af8  mouhid - ok
18:54:51.0549 0x0af8  [ E7E9DBFDD3F25ED0C05B99AE9FA18BDE, 6D0204BA271FD3262DAE6E6BF9C12C0D49E3C9AF40EB1E072BD5CA5E2B8598D5 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:54:51.0562 0x0af8  mountmgr - ok
18:54:51.0577 0x0af8  [ 4CCBBD4944777CA100B9A6C2F149A46F, 7FC172FAF8266BFBBBBAD94FD67EA3C1872F5927DC3900A9A54DB2DFE34E7415 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:54:51.0599 0x0af8  mpsdrv - ok
18:54:51.0658 0x0af8  [ 9DE3341BD4E14BC5FADFCAD3019F2D0D, 37E0531EADABC6D4BCC496826651D4D14CF0D10156FF13C11BDE466084B44FF4 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:54:51.0707 0x0af8  MpsSvc - ok
18:54:51.0721 0x0af8  [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:54:51.0763 0x0af8  MRxDAV - ok
18:54:51.0811 0x0af8  [ 14EE56050E1637926F5CFA65B1F4209B, C654280B4BB461898B43DF350B5BB76C2FDEBD6B49A19D08B2F28D92E2FA3D0D ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:54:51.0861 0x0af8  mrxsmb - ok
18:54:51.0886 0x0af8  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:54:51.0922 0x0af8  mrxsmb10 - ok
18:54:51.0954 0x0af8  [ 0AA400AB21745F1153ECE75E0186509A, E26696A00008BB8D88ABED6F379FFFAE21ACE9AA7108D9E89A7D99CAF2F23FEF ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:54:51.0988 0x0af8  mrxsmb20 - ok
18:54:52.0015 0x0af8  [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
18:54:52.0056 0x0af8  MsBridge - ok
18:54:52.0091 0x0af8  [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC           C:\Windows\System32\msdtc.exe
18:54:52.0126 0x0af8  MSDTC - ok
18:54:52.0149 0x0af8  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:54:52.0172 0x0af8  Msfs - ok
18:54:52.0197 0x0af8  [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
18:54:52.0212 0x0af8  msgpiowin32 - ok
18:54:52.0226 0x0af8  [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:54:52.0253 0x0af8  mshidkmdf - ok
18:54:52.0258 0x0af8  [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
18:54:52.0273 0x0af8  mshidumdf - ok
18:54:52.0285 0x0af8  [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:54:52.0296 0x0af8  msisadrv - ok
18:54:52.0320 0x0af8  [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:54:52.0343 0x0af8  MSiSCSI - ok
18:54:52.0346 0x0af8  msiserver - ok
18:54:52.0350 0x0af8  [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:54:52.0362 0x0af8  MSKSSRV - ok
18:54:52.0375 0x0af8  [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
18:54:52.0389 0x0af8  MsLldp - ok
18:54:52.0409 0x0af8  [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:54:52.0420 0x0af8  MSPCLOCK - ok
18:54:52.0423 0x0af8  [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:54:52.0446 0x0af8  MSPQM - ok
18:54:52.0468 0x0af8  [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:54:52.0495 0x0af8  MsRPC - ok
18:54:52.0511 0x0af8  [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
18:54:52.0519 0x0af8  mssmbios - ok
18:54:52.0523 0x0af8  [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:54:52.0535 0x0af8  MSTEE - ok
18:54:52.0539 0x0af8  [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
18:54:52.0562 0x0af8  MTConfig - ok
18:54:52.0577 0x0af8  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup             C:\Windows\system32\Drivers\mup.sys
18:54:52.0591 0x0af8  Mup - ok
18:54:52.0606 0x0af8  [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
18:54:52.0620 0x0af8  mvumis - ok
18:54:52.0651 0x0af8  [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent        C:\Windows\system32\qagentRT.dll
18:54:52.0683 0x0af8  napagent - ok
18:54:52.0706 0x0af8  [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:54:52.0736 0x0af8  NativeWifiP - ok
18:54:52.0764 0x0af8  [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc          C:\Windows\System32\ncasvc.dll
18:54:52.0784 0x0af8  NcaSvc - ok
18:54:52.0816 0x0af8  [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
18:54:52.0864 0x0af8  NcdAutoSetup - ok
18:54:52.0934 0x0af8  [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:54:52.0964 0x0af8  NDIS - ok
18:54:52.0980 0x0af8  [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:54:52.0995 0x0af8  NdisCap - ok
18:54:53.0005 0x0af8  [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
18:54:53.0038 0x0af8  NdisImPlatform - ok
18:54:53.0068 0x0af8  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:54:53.0124 0x0af8  NdisTapi - ok
18:54:53.0143 0x0af8  [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:54:53.0163 0x0af8  Ndisuio - ok
18:54:53.0172 0x0af8  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:54:53.0199 0x0af8  NdisWan - ok
18:54:53.0204 0x0af8  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY   C:\Windows\system32\DRIVERS\ndiswan.sys
18:54:53.0217 0x0af8  NDISWANLEGACY - ok
18:54:53.0240 0x0af8  [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:54:53.0263 0x0af8  NDProxy - ok
18:54:53.0268 0x0af8  [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu             C:\Windows\system32\drivers\Ndu.sys
18:54:53.0283 0x0af8  Ndu - ok
18:54:53.0295 0x0af8  [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:54:53.0309 0x0af8  NetBIOS - ok
18:54:53.0328 0x0af8  [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:54:53.0363 0x0af8  NetBT - ok
18:54:53.0379 0x0af8  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] Netlogon        C:\Windows\system32\lsass.exe
18:54:53.0387 0x0af8  Netlogon - ok
18:54:53.0438 0x0af8  [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman          C:\Windows\System32\netman.dll
18:54:53.0498 0x0af8  Netman - ok
18:54:53.0535 0x0af8  [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm        C:\Windows\System32\netprofmsvc.dll
18:54:53.0578 0x0af8  netprofm - ok
18:54:53.0634 0x0af8  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:54:53.0689 0x0af8  NetTcpPortSharing - ok
18:54:53.0714 0x0af8  [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:54:53.0734 0x0af8  nfrd960 - ok
18:54:53.0762 0x0af8  [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:54:53.0798 0x0af8  NlaSvc - ok
18:54:53.0814 0x0af8  [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:54:53.0826 0x0af8  Npfs - ok
18:54:53.0839 0x0af8  [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
18:54:53.0866 0x0af8  npsvctrig - ok
18:54:53.0894 0x0af8  [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi             C:\Windows\system32\nsisvc.dll
18:54:53.0906 0x0af8  nsi - ok
18:54:53.0928 0x0af8  [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:54:53.0952 0x0af8  nsiproxy - ok
18:54:54.0016 0x0af8  [ 7BE3EDFFA3216F989A6BDCB14795DD08, 19A2D0120C46CA9BCFBC16DC3E65687ACDDCBA33B79128188652BA2AFAA2EE2F ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:54:54.0149 0x0af8  Ntfs - ok
18:54:54.0166 0x0af8  [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null            C:\Windows\system32\drivers\Null.sys
18:54:54.0183 0x0af8  Null - ok
18:54:54.0212 0x0af8  [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:54:54.0227 0x0af8  nvraid - ok
18:54:54.0233 0x0af8  [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:54:54.0249 0x0af8  nvstor - ok
18:54:54.0255 0x0af8  [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:54:54.0270 0x0af8  nv_agp - ok
18:54:54.0294 0x0af8  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:54:54.0323 0x0af8  p2pimsvc - ok
18:54:54.0360 0x0af8  [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc          C:\Windows\system32\p2psvc.dll
18:54:54.0402 0x0af8  p2psvc - ok
18:54:54.0415 0x0af8  [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport         C:\Windows\System32\drivers\parport.sys
18:54:54.0443 0x0af8  Parport - ok
18:54:54.0473 0x0af8  [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:54:54.0493 0x0af8  partmgr - ok
18:54:54.0519 0x0af8  [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:54:54.0556 0x0af8  PcaSvc - ok
18:54:54.0576 0x0af8  [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci             C:\Windows\system32\drivers\pci.sys
18:54:54.0589 0x0af8  pci - ok
18:54:54.0600 0x0af8  [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide          C:\Windows\system32\drivers\pciide.sys
18:54:54.0611 0x0af8  pciide - ok
18:54:54.0629 0x0af8  [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:54:54.0648 0x0af8  pcmcia - ok
18:54:54.0659 0x0af8  [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw             C:\Windows\system32\drivers\pcw.sys
18:54:54.0672 0x0af8  pcw - ok
18:54:54.0693 0x0af8  [ 0698DEDEAD6A00AD0D468C687D830FBF, B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA ] pdc             C:\Windows\system32\drivers\pdc.sys
18:54:54.0706 0x0af8  pdc - ok
18:54:54.0744 0x0af8  [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:54:54.0810 0x0af8  PEAUTH - ok
18:54:54.0889 0x0af8  [ DF0D9BDCB600913F40FF125BF8CE1979, 63544C3CEAF47FEEB761FD25BCAE53610C7AD65B7B2295C49D72A7C3C78A376D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
18:54:54.0972 0x0af8  PeerDistSvc - ok
18:54:55.0041 0x0af8  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:54:55.0076 0x0af8  PerfHost - ok
18:54:55.0156 0x0af8  [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla             C:\Windows\system32\pla.dll
18:54:55.0222 0x0af8  pla - ok
18:54:55.0249 0x0af8  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:54:55.0260 0x0af8  PlugPlay - ok
18:54:55.0288 0x0af8  [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:54:55.0300 0x0af8  PNRPAutoReg - ok
18:54:55.0319 0x0af8  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:54:55.0333 0x0af8  PNRPsvc - ok
18:54:55.0363 0x0af8  [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:54:55.0400 0x0af8  PolicyAgent - ok
18:54:55.0428 0x0af8  [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power           C:\Windows\system32\umpo.dll
18:54:55.0470 0x0af8  Power - ok
18:54:55.0495 0x0af8  [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:54:55.0528 0x0af8  PptpMiniport - ok
18:54:56.0014 0x0af8  [ EE553F62E81D7F7F3718DB960A1EF2C0, 84A8C79B4F51D606F567A038280007F278D57BE06AB0F060E4D43AC1347AB459 ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
18:54:56.0193 0x0af8  PrintNotify - ok
18:54:56.0215 0x0af8  [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor       C:\Windows\System32\drivers\processr.sys
18:54:56.0243 0x0af8  Processor - ok
18:54:56.0271 0x0af8  [ 7319B31138CF508E0C4502946657A4B4, 03C57F90F673012B983720D1477822AABA6D6D54F700AB2248CAED6451B37CA3 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:54:56.0301 0x0af8  ProfSvc - ok
18:54:56.0322 0x0af8  [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:54:56.0341 0x0af8  Psched - ok
18:54:56.0379 0x0af8  [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE           C:\Windows\system32\qwave.dll
18:54:56.0417 0x0af8  QWAVE - ok
18:54:56.0440 0x0af8  [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:54:56.0464 0x0af8  QWAVEdrv - ok
18:54:56.0477 0x0af8  [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:54:56.0503 0x0af8  RasAcd - ok
18:54:56.0527 0x0af8  [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:54:56.0554 0x0af8  RasAgileVpn - ok
18:54:56.0570 0x0af8  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto         C:\Windows\System32\rasauto.dll
18:54:56.0614 0x0af8  RasAuto - ok
18:54:56.0634 0x0af8  [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:54:56.0660 0x0af8  Rasl2tp - ok
18:54:56.0694 0x0af8  [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan          C:\Windows\System32\rasmans.dll
18:54:56.0725 0x0af8  RasMan - ok
18:54:56.0750 0x0af8  [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:54:56.0766 0x0af8  RasPppoe - ok
18:54:56.0771 0x0af8  [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:54:56.0787 0x0af8  RasSstp - ok
18:54:56.0817 0x0af8  [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:54:56.0854 0x0af8  rdbss - ok
18:54:56.0872 0x0af8  [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
18:54:56.0890 0x0af8  rdpbus - ok
18:54:56.0906 0x0af8  [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
18:54:56.0934 0x0af8  RDPDR - ok
18:54:56.0965 0x0af8  [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:54:56.0976 0x0af8  RdpVideoMiniport - ok
18:54:56.0983 0x0af8  [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:54:57.0014 0x0af8  RDPWD - ok
18:54:57.0043 0x0af8  [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:54:57.0072 0x0af8  rdyboost - ok
18:54:57.0110 0x0af8  [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:54:57.0127 0x0af8  RemoteAccess - ok
18:54:57.0149 0x0af8  [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:54:57.0179 0x0af8  RemoteRegistry - ok
18:54:57.0198 0x0af8  [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:54:57.0235 0x0af8  RpcEptMapper - ok
18:54:57.0251 0x0af8  [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator      C:\Windows\system32\locator.exe
18:54:57.0290 0x0af8  RpcLocator - ok
18:54:57.0331 0x0af8  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs           C:\Windows\system32\rpcss.dll
18:54:57.0357 0x0af8  RpcSs - ok
18:54:57.0367 0x0af8  [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:54:57.0390 0x0af8  rspndr - ok
18:54:57.0438 0x0af8  [ 15923AA360F7675D3D43C9669316A0BA, AD1852732082140C62CC44A01914162E44BF412B4A852DF27DC0E0765E64288F ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
18:54:57.0471 0x0af8  RTL8168 - ok
18:54:57.0488 0x0af8  [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
18:54:57.0507 0x0af8  s3cap - ok
18:54:57.0529 0x0af8  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] SamSs           C:\Windows\system32\lsass.exe
18:54:57.0538 0x0af8  SamSs - ok
18:54:57.0557 0x0af8  [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:54:57.0571 0x0af8  sbp2port - ok
18:54:57.0584 0x0af8  [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:54:57.0611 0x0af8  SCardSvr - ok
18:54:57.0626 0x0af8  [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:54:57.0651 0x0af8  scfilter - ok
18:54:57.0707 0x0af8  [ 201C397A73DFEE109490F4BA1168CFC2, 74FC2A30CBF2E2197E75860A3B308CDCBEB3C28794ABED388B493505A2D84BAA ] Schedule        C:\Windows\system32\schedsvc.dll
18:54:57.0757 0x0af8  Schedule - ok
18:54:57.0778 0x0af8  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:54:57.0791 0x0af8  SCPolicySvc - ok
18:54:57.0818 0x0af8  [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
18:54:57.0835 0x0af8  sdbus - ok
18:54:57.0881 0x0af8  [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:54:57.0904 0x0af8  SDRSVC - ok
18:54:57.0923 0x0af8  [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor          C:\Windows\System32\drivers\sdstor.sys
18:54:57.0936 0x0af8  sdstor - ok
18:54:57.0948 0x0af8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:54:57.0959 0x0af8  secdrv - ok
18:54:58.0012 0x0af8  [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon        C:\Windows\system32\seclogon.dll
18:54:58.0072 0x0af8  seclogon - ok
18:54:58.0089 0x0af8  [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS            C:\Windows\System32\sens.dll
18:54:58.0128 0x0af8  SENS - ok
18:54:58.0154 0x0af8  [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:54:58.0176 0x0af8  SensrSvc - ok
18:54:58.0196 0x0af8  [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
18:54:58.0218 0x0af8  SerCx - ok
18:54:58.0235 0x0af8  [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum         C:\Windows\System32\drivers\serenum.sys
18:54:58.0260 0x0af8  Serenum - ok
18:54:58.0264 0x0af8  [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial          C:\Windows\System32\drivers\serial.sys
18:54:58.0278 0x0af8  Serial - ok
18:54:58.0282 0x0af8  [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
18:54:58.0296 0x0af8  sermouse - ok
18:54:58.0322 0x0af8  [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv      C:\Windows\system32\sessenv.dll
18:54:58.0349 0x0af8  SessionEnv - ok
18:54:58.0353 0x0af8  [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
18:54:58.0372 0x0af8  sfloppy - ok
18:54:58.0416 0x0af8  [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:54:58.0463 0x0af8  SharedAccess - ok
18:54:58.0498 0x0af8  [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:54:58.0545 0x0af8  ShellHWDetection - ok
18:54:58.0550 0x0af8  [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:54:58.0561 0x0af8  SiSRaid2 - ok
18:54:58.0576 0x0af8  [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:54:58.0589 0x0af8  SiSRaid4 - ok
18:54:58.0660 0x0af8  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
18:54:58.0686 0x0af8  SkypeUpdate - ok
18:54:58.0703 0x0af8  [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:54:58.0717 0x0af8  SNMPTRAP - ok
18:54:58.0749 0x0af8  [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
18:54:58.0769 0x0af8  spaceport - ok
18:54:58.0774 0x0af8  [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
18:54:58.0796 0x0af8  SpbCx - ok
18:54:58.0825 0x0af8  [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler         C:\Windows\System32\spoolsv.exe
18:54:58.0861 0x0af8  Spooler - ok
18:54:59.0002 0x0af8  [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc          C:\Windows\system32\sppsvc.exe
18:54:59.0186 0x0af8  sppsvc - ok
18:54:59.0227 0x0af8  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:54:59.0259 0x0af8  srv - ok
18:54:59.0292 0x0af8  [ B56A855B23676CCE05B626C6037FD02F, 3C0DCB16A96BD6A002A4FAF1AF939AF470D95137CB745F5DAD039B5D8C956E30 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:54:59.0329 0x0af8  srv2 - ok
18:54:59.0366 0x0af8  [ 78E9665C8DC59106D133CBEF0F0C3DE3, 380FD51EE00CEF3FFEF9BFB5E14538E084F1DDF8D8F8BCDF4EC23CB8C3A40D2F ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:54:59.0384 0x0af8  srvnet - ok
18:54:59.0411 0x0af8  [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:54:59.0432 0x0af8  SSDPSRV - ok
18:54:59.0445 0x0af8  [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:54:59.0479 0x0af8  SstpSvc - ok
18:54:59.0494 0x0af8  [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:54:59.0505 0x0af8  stexstor - ok
18:54:59.0542 0x0af8  [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc          C:\Windows\System32\wiaservc.dll
18:54:59.0571 0x0af8  stisvc - ok
18:54:59.0596 0x0af8  [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci        C:\Windows\system32\drivers\storahci.sys
18:54:59.0609 0x0af8  storahci - ok
18:54:59.0625 0x0af8  [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
18:54:59.0637 0x0af8  storflt - ok
18:54:59.0651 0x0af8  [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc         C:\Windows\system32\storsvc.dll
18:54:59.0663 0x0af8  StorSvc - ok
18:54:59.0667 0x0af8  [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc         C:\Windows\system32\drivers\storvsc.sys
18:54:59.0679 0x0af8  storvsc - ok
18:54:59.0683 0x0af8  [ 1A36AC469140F87CDE62D7F8524E270C, B07086E0D844567FF0A880366EA8ED8042F8ED744E6AB1FD9539F360905A07F2 ] storvsp         C:\Windows\System32\drivers\storvsp.sys
18:54:59.0696 0x0af8  storvsp - ok
18:54:59.0702 0x0af8  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc           C:\Windows\system32\svsvc.dll
18:54:59.0727 0x0af8  svsvc - ok
18:54:59.0731 0x0af8  [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum          C:\Windows\System32\drivers\swenum.sys
18:54:59.0741 0x0af8  swenum - ok
18:54:59.0765 0x0af8  [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv           C:\Windows\System32\swprv.dll
18:54:59.0803 0x0af8  swprv - ok
18:54:59.0856 0x0af8  [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] SysMain         C:\Windows\system32\sysmain.dll
18:54:59.0919 0x0af8  SysMain - ok
18:54:59.0952 0x0af8  [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
18:54:59.0975 0x0af8  SystemEventsBroker - ok
18:54:59.0988 0x0af8  [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\Windows\System32\TabSvc.dll
18:55:00.0010 0x0af8  TabletInputService - ok
18:55:00.0034 0x0af8  [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:55:00.0060 0x0af8  TapiSrv - ok
18:55:00.0151 0x0af8  [ 2AE9136724568DB4F08BC04F131CFC54, 11AA017AE39D0A63233D01A8AE33FD53D5302683E037D29B73366D6233764080 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:55:00.0296 0x0af8  Tcpip - ok
18:55:00.0377 0x0af8  [ 2AE9136724568DB4F08BC04F131CFC54, 11AA017AE39D0A63233D01A8AE33FD53D5302683E037D29B73366D6233764080 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:55:00.0435 0x0af8  TCPIP6 - ok
18:55:00.0469 0x0af8  [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:55:00.0484 0x0af8  tcpipreg - ok
18:55:00.0494 0x0af8  [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:55:00.0518 0x0af8  tdx - ok
18:55:00.0536 0x0af8  [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
18:55:00.0548 0x0af8  terminpt - ok
18:55:00.0583 0x0af8  [ 2B3D2FDF50EDABEBE0A9E6F741C81858, F0C3A1DC968C5D28EF68BE4352577B4F8D4B4FB6274268DCCCD8A5C132DEC2F9 ] TermService     C:\Windows\System32\termsrv.dll
18:55:00.0655 0x0af8  TermService - ok
18:55:00.0673 0x0af8  [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes          C:\Windows\system32\themeservice.dll
18:55:00.0703 0x0af8  Themes - ok
18:55:00.0723 0x0af8  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER     C:\Windows\system32\mmcss.dll
18:55:00.0732 0x0af8  THREADORDER - ok
18:55:00.0760 0x0af8  [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
18:55:00.0792 0x0af8  TimeBroker - ok
18:55:00.0819 0x0af8  [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM             C:\Windows\system32\drivers\tpm.sys
18:55:00.0835 0x0af8  TPM - ok
18:55:00.0850 0x0af8  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks          C:\Windows\System32\trkwks.dll
18:55:00.0874 0x0af8  TrkWks - ok
18:55:00.0899 0x0af8  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:55:00.0918 0x0af8  TrustedInstaller - ok
18:55:00.0933 0x0af8  [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:55:00.0948 0x0af8  TsUsbFlt - ok
18:55:00.0972 0x0af8  [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
18:55:00.0987 0x0af8  TsUsbGD - ok
18:55:01.0000 0x0af8  [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:55:01.0024 0x0af8  tunnel - ok
18:55:01.0029 0x0af8  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:55:01.0042 0x0af8  uagp35 - ok
18:55:01.0057 0x0af8  [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
18:55:01.0071 0x0af8  UASPStor - ok
18:55:01.0099 0x0af8  [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
18:55:01.0117 0x0af8  UCX01000 - ok
18:55:01.0144 0x0af8  [ 25C50F4EDF70D0A831E0566BD181CCF2, F2F9E86FB5617C16077D2073EC0AA747F76F1EB5148BA110347A84F3C3569F83 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:55:01.0164 0x0af8  udfs - ok
18:55:01.0193 0x0af8  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:55:01.0217 0x0af8  UI0Detect - ok
18:55:01.0229 0x0af8  [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:55:01.0242 0x0af8  uliagpkx - ok
18:55:01.0257 0x0af8  [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus           C:\Windows\System32\drivers\umbus.sys
18:55:01.0278 0x0af8  umbus - ok
18:55:01.0291 0x0af8  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass          C:\Windows\System32\drivers\umpass.sys
18:55:01.0315 0x0af8  UmPass - ok
18:55:01.0336 0x0af8  [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService    C:\Windows\System32\umrdp.dll
18:55:01.0362 0x0af8  UmRdpService - ok
18:55:01.0388 0x0af8  [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost        C:\Windows\System32\upnphost.dll
18:55:01.0414 0x0af8  upnphost - ok
18:55:01.0443 0x0af8  [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
18:55:01.0476 0x0af8  usbccgp - ok
18:55:01.0504 0x0af8  [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir          C:\Windows\System32\drivers\usbcir.sys
18:55:01.0535 0x0af8  usbcir - ok
18:55:01.0547 0x0af8  [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
18:55:01.0561 0x0af8  usbehci - ok
18:55:01.0585 0x0af8  [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
18:55:01.0623 0x0af8  usbhub - ok
18:55:01.0651 0x0af8  [ FAAB461D5AEB21EE5FC5C0DBD6648223, 187EB7AC6CDE39621C587EB1551DBC358DE2BC7C8A4265DB817C9D6F5ADE54A3 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
18:55:01.0684 0x0af8  USBHUB3 - ok
18:55:01.0699 0x0af8  [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci         C:\Windows\System32\drivers\usbohci.sys
18:55:01.0719 0x0af8  usbohci - ok
18:55:01.0723 0x0af8  [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
18:55:01.0744 0x0af8  usbprint - ok
18:55:01.0764 0x0af8  [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
18:55:01.0779 0x0af8  USBSTOR - ok
18:55:01.0783 0x0af8  [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
18:55:01.0810 0x0af8  usbuhci - ok
18:55:01.0828 0x0af8  [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
18:55:01.0848 0x0af8  USBXHCI - ok
18:55:01.0862 0x0af8  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] VaultSvc        C:\Windows\system32\lsass.exe
18:55:01.0871 0x0af8  VaultSvc - ok
18:55:01.0888 0x0af8  [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:55:01.0900 0x0af8  vdrvroot - ok
18:55:01.0938 0x0af8  [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds             C:\Windows\System32\vds.exe
18:55:01.0992 0x0af8  vds - ok
18:55:02.0011 0x0af8  [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
18:55:02.0025 0x0af8  VerifierExt - ok
18:55:02.0069 0x0af8  [ 500BE6B2E49883720D0AE8BB859ED7A3, 4606B02A3E8123510676E554635EB5ECF9DC5F2B83928710C8563787C52CC102 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
18:55:02.0120 0x0af8  vhdmp - ok
18:55:02.0133 0x0af8  [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:55:02.0144 0x0af8  viaide - ok
18:55:02.0162 0x0af8  [ 0E43886F01C85B47BA0A3157274BCF59, C81E1841B1138D8C224FAF76258F7EB65145CCAF7938CA86CBADD8FFF79BA596 ] Vid             C:\Windows\System32\drivers\Vid.sys
18:55:02.0203 0x0af8  Vid - ok
18:55:02.0222 0x0af8  [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
18:55:02.0246 0x0af8  vmbus - ok
18:55:02.0252 0x0af8  [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
18:55:02.0265 0x0af8  VMBusHID - ok
18:55:02.0270 0x0af8  [ B4F432A51826FFC66F4DF72A83E8E4B1, 2C6F4D477F91605A3685FCF9EC6EA798E74C6853CC91547A749E9C050E7C19E8 ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
18:55:02.0285 0x0af8  vmbusr - ok
18:55:02.0312 0x0af8  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
18:55:02.0349 0x0af8  vmicheartbeat - ok
18:55:02.0370 0x0af8  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\Windows\System32\ICSvc.dll
18:55:02.0384 0x0af8  vmickvpexchange - ok
18:55:02.0392 0x0af8  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv         C:\Windows\System32\ICSvc.dll
18:55:02.0406 0x0af8  vmicrdv - ok
18:55:02.0414 0x0af8  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown    C:\Windows\System32\ICSvc.dll
18:55:02.0428 0x0af8  vmicshutdown - ok
18:55:02.0437 0x0af8  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync    C:\Windows\System32\ICSvc.dll
18:55:02.0451 0x0af8  vmictimesync - ok
18:55:02.0459 0x0af8  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss         C:\Windows\System32\ICSvc.dll
18:55:02.0474 0x0af8  vmicvss - ok
18:55:02.0489 0x0af8  [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:55:02.0503 0x0af8  volmgr - ok
18:55:02.0524 0x0af8  [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:55:02.0550 0x0af8  volmgrx - ok
18:55:02.0576 0x0af8  [ AA37946941ED3805AB3A924965907147, 11BD8FA585F193EED050458E93679D730FC2C09D19237DA40B0190132D328CB2 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:55:02.0598 0x0af8  volsnap - ok
18:55:02.0611 0x0af8  [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci            C:\Windows\System32\drivers\vpci.sys
18:55:02.0624 0x0af8  vpci - ok
18:55:02.0629 0x0af8  [ 0190AFFF28F600461C0164353CC7EE27, D112DF69C9E629EC77FB95E7ACDDAAE24B5028C84454134BD26FEF9CC953AC0E ] vpcivsp         C:\Windows\System32\drivers\vpcivsp.sys
18:55:02.0648 0x0af8  vpcivsp - ok
18:55:02.0664 0x0af8  [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:55:02.0679 0x0af8  vsmraid - ok
18:55:02.0728 0x0af8  [ B97009087B2A6F1E8B3981B051F3D18F, B639C779826893C469EF650E714A50A8F7BC5511FC9B5EFF690CA8A0AB0D49F8 ] VSS             C:\Windows\system32\vssvc.exe
18:55:02.0782 0x0af8  VSS - ok
18:55:02.0802 0x0af8  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
18:55:02.0828 0x0af8  VSTXRAID - ok
18:55:02.0832 0x0af8  [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
18:55:02.0843 0x0af8  vwifibus - ok
18:55:02.0888 0x0af8  [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time         C:\Windows\system32\w32time.dll
18:55:02.0945 0x0af8  W32Time - ok
18:55:02.0950 0x0af8  [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
18:55:02.0965 0x0af8  WacomPen - ok
18:55:02.0996 0x0af8  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
18:55:03.0026 0x0af8  Wanarp - ok
18:55:03.0035 0x0af8  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:55:03.0049 0x0af8  Wanarpv6 - ok
18:55:03.0108 0x0af8  [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine        C:\Windows\system32\wbengine.exe
18:55:03.0193 0x0af8  wbengine - ok
18:55:03.0217 0x0af8  [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:55:03.0254 0x0af8  WbioSrvc - ok
18:55:03.0277 0x0af8  [ F43314B83101DEBF7D7CCD42493CFC60, F4B70372559F2FD9A74FB87422EC6EF024F925AE4D838473E04E6B48AB7255AF ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
18:55:03.0305 0x0af8  Wcmsvc - ok
18:55:03.0335 0x0af8  [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:55:03.0366 0x0af8  wcncsvc - ok
18:55:03.0383 0x0af8  [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:55:03.0396 0x0af8  WcsPlugInService - ok
18:55:03.0420 0x0af8  [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd              C:\Windows\system32\drivers\wd.sys
18:55:03.0432 0x0af8  Wd - ok
18:55:03.0458 0x0af8  [ B7FD627AAE8E95848BFEC437C923A87E, 26188FC7E86AD9B92FB732DD3EC5E8EAB18EB52B21E854B27798EC08C49167D8 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
18:55:03.0474 0x0af8  WdBoot - ok
18:55:03.0512 0x0af8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:55:03.0570 0x0af8  Wdf01000 - ok
18:55:03.0599 0x0af8  [ FAC362ED29713A535C6E2EEFFA5B4733, C4AF6C5A74389F9F51668433D4478806016C4913CB241F77513601803D532EC0 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
18:55:03.0619 0x0af8  WdFilter - ok
18:55:03.0636 0x0af8  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:55:03.0667 0x0af8  WdiServiceHost - ok
18:55:03.0672 0x0af8  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:55:03.0688 0x0af8  WdiSystemHost - ok
18:55:03.0721 0x0af8  [ 9B1384CE8E681D2D77BB3524B8E86311, BDEF9D0A79A7C26A88088A306F91632F300E587736CDD2C64717EC54DD6E89FF ] WebClient       C:\Windows\System32\webclnt.dll
18:55:03.0791 0x0af8  WebClient - ok
18:55:03.0809 0x0af8  [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:55:03.0852 0x0af8  Wecsvc - ok
18:55:03.0857 0x0af8  [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:55:03.0902 0x0af8  wercplsupport - ok
18:55:03.0928 0x0af8  [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:55:03.0980 0x0af8  WerSvc - ok
18:55:04.0017 0x0af8  [ 44BB9C31E6242C4BD1CE7C2B440C2533, E603BB001028918B687818E930340008C752679B133037367A8A8E41DA559FFE ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
18:55:04.0034 0x0af8  WFPLWFS - ok
18:55:04.0048 0x0af8  [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc          C:\Windows\System32\wiarpc.dll
18:55:04.0070 0x0af8  WiaRpc - ok
18:55:04.0089 0x0af8  [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:55:04.0101 0x0af8  WIMMount - ok
18:55:04.0122 0x0af8  WinDefend - ok
18:55:04.0166 0x0af8  [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
18:55:04.0205 0x0af8  WinHttpAutoProxySvc - ok
18:55:04.0259 0x0af8  [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:55:04.0314 0x0af8  Winmgmt - ok
18:55:04.0416 0x0af8  [ 89DA335401D956F2696E35A38817BE19, D5A8D5C0BE285564AB0DF1B4594FE612359C72BE3B64063C3460BB73AA34F413 ] WinRM           C:\Windows\system32\WsmSvc.dll
18:55:04.0554 0x0af8  WinRM - ok
18:55:04.0664 0x0af8  [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc         C:\Windows\System32\wlansvc.dll
18:55:04.0724 0x0af8  WlanSvc - ok
18:55:04.0792 0x0af8  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B, B76226808406D8B38DE2D3A8CCE633BB507022C8BAAA6C3DAD34204CC6CE1284 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
18:55:04.0907 0x0af8  wlidsvc - ok
18:55:04.0932 0x0af8  [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
18:55:04.0957 0x0af8  WmiAcpi - ok
18:55:04.0988 0x0af8  [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:55:05.0021 0x0af8  wmiApSrv - ok
18:55:05.0041 0x0af8  WMPNetworkSvc - ok
18:55:05.0056 0x0af8  [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
18:55:05.0073 0x0af8  wpcfltr - ok
18:55:05.0090 0x0af8  [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:55:05.0115 0x0af8  WPCSvc - ok
18:55:05.0139 0x0af8  [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:55:05.0155 0x0af8  WPDBusEnum - ok
18:55:05.0158 0x0af8  [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
18:55:05.0180 0x0af8  WpdUpFltr - ok
18:55:05.0209 0x0af8  [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:55:05.0233 0x0af8  ws2ifsl - ok
18:55:05.0259 0x0af8  [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] wscsvc          C:\Windows\System32\wscsvc.dll
18:55:05.0284 0x0af8  wscsvc - ok
18:55:05.0288 0x0af8  WSearch - ok
18:55:05.0363 0x0af8  [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService       C:\Windows\System32\WSService.dll
18:55:05.0435 0x0af8  WSService - ok
18:55:05.0566 0x0af8  [ 10EA2DBD2820A504D98D19F5EDAAFC04, 5B84D7C169CBAEBCE4A03BB89426E74DBF5AFCA1F8FDE2A5BC1006A8464D7E24 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:55:05.0650 0x0af8  wuauserv - ok
18:55:05.0674 0x0af8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:55:05.0701 0x0af8  WudfPf - ok
18:55:05.0709 0x0af8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
18:55:05.0735 0x0af8  WUDFRd - ok
18:55:05.0776 0x0af8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:55:05.0824 0x0af8  wudfsvc - ok
18:55:05.0863 0x0af8  [ 6D9E07436B6646EC8F7EFFD39B6BA288, 82C1CEA93ECEF17D221AD0F87C5BD96F3FD8143841C16BD9608BD4D58D90B8E0 ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:55:05.0907 0x0af8  WwanSvc - ok
18:55:05.0912 0x0af8  ================ Scan global ===============================
18:55:05.0948 0x0af8  [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\system32\basesrv.dll
18:55:05.0977 0x0af8  [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\system32\winsrv.dll
18:55:06.0007 0x0af8  [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\system32\sxssrv.dll
18:55:06.0062 0x0af8  [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\system32\services.exe
18:55:06.0076 0x0af8  [ Global ] - ok
18:55:06.0076 0x0af8  ================ Scan MBR ==================================
18:55:06.0093 0x0af8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:55:06.0271 0x0af8  \Device\Harddisk0\DR0 - ok
18:55:06.0272 0x0af8  ================ Scan VBR ==================================
18:55:06.0301 0x0af8  [ DCBE1F362888A590A1D5EBD01E63E0C9 ] \Device\Harddisk0\DR0\Partition1
18:55:06.0312 0x0af8  \Device\Harddisk0\DR0\Partition1 - ok
18:55:06.0323 0x0af8  [ F7AEF8C23A1BB158CBF4C8788E775D56 ] \Device\Harddisk0\DR0\Partition2
18:55:06.0324 0x0af8  \Device\Harddisk0\DR0\Partition2 - ok
18:55:06.0335 0x0af8  [ A6AE0EEA6D863E2B1582F47C96533D4C ] \Device\Harddisk0\DR0\Partition3
18:55:06.0343 0x0af8  \Device\Harddisk0\DR0\Partition3 - ok
18:55:06.0343 0x0af8  ================ Scan generic autorun ======================
18:55:06.0371 0x0af8  [ 5909C378DF9132FC91F50AF70A53455A, E13CE76ABAFA459BFDB4B7806E73BF57217D0800206FC24805E66573F3670604 ] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
18:55:06.0383 0x0af8  Avira Systray - ok
18:55:06.0434 0x0af8  [ 616954748C2F28D653C7BAE814CA51FD, D75E46D978E42C2E7041206B18591EDAF700AD27077AE4D1D76E2857A4A77BF8 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
18:55:06.0465 0x0af8  avgnt - ok
18:55:06.0549 0x0af8  [ 06BB3578BE06B0980AF9917EC94488EC, 4C66DC5C55E7AC80838D21AA04D194ACE62D70FF0D469FAB910FFE05B1C2A4E7 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
18:55:06.0568 0x0af8  StartCCC - ok
18:55:06.0609 0x0af8  [ 887CAA31048EB8ED09A0CBD0E6F46F09, BBCED0BD4EB00C3FECFC9448223D4C441A868787877291F5489B07B43FAB65A4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
18:55:06.0643 0x0af8  SunJavaUpdateSched - ok
18:55:06.0644 0x0af8  Waiting for KSN requests completion. In queue: 121
18:55:07.0644 0x0af8  Waiting for KSN requests completion. In queue: 92
18:55:08.0644 0x0af8  Waiting for KSN requests completion. In queue: 22
18:55:09.0719 0x0af8  AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.7.310 ), 0x41000 ( enabled : updated )
18:55:09.0763 0x0af8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.6.305.0 ), 0x60100 ( disabled : updated )
18:55:09.0776 0x0af8  Win FW state via NFP2: enabled
18:55:12.0154 0x0af8  ============================================================
18:55:12.0154 0x0af8  Scan finished
18:55:12.0154 0x0af8  ============================================================
18:55:12.0168 0x13ec  Detected object count: 0
18:55:12.0168 0x13ec  Actual detected object count: 0

schrauber · 23.11.2014, 14:48

Meine Frage?

binar · 23.11.2014, 16:47

Ok , sorry mein Fehler. Es wurden keine infizierten Objekte gefunden. Habe aber die Logfiles vom TDSSKiller dennoch gepostet.

Wie kann ich bzw. wie soll ich weiter vorgehen?

Ja der Router wurde mindestens 30min vom Strom genommen.

Zudem sagt mir Netalyzr
Bestimmte TCP-Protokolle werden im abgehenden Datenverkehr gesperrt
Fragmentierter UDP-Datenverkehr wird gesperrt
Die Zeit für den Aufbau einer TCP-Verbindung war etwas zu hoch
Im Netzwerk scheinen Inhaltsfilter oder Komprimierungsproxys vorhanden zu sein

Die Zeit, die Ihr Computer benötigt, um eine TCP-Verbindung zu unserem Server aufzubauen, beträgt 1500 ms. Dieser Wert ist recht hoch. Dies kann auf zahlreiche Faktoren zurückgeführt werden einschließlich einer großen Distanz zwischen Ihrem Computer und unserem Server, einer besonders langsamen oder schlechten Netzwerkverbindung oder Problemen in Ihrem Netzwerk.

DNS Test
Ein beliebter Name weist eine erhebliche Anomalie auf. Der vom Reverse Name Lookup vorgeschlagene Besitz entspricht nicht unserem Verständnis des ursprünglichen Namens. Dies ist vielleicht auf einen Fehler in den Domaininformationen zurückzuführen. Es ist aber auch möglich, dass der DNS-Server Ihres Internetdienstanbieters als DNS-"Man-In-The-Middle" fungiert.
Wir haben versucht, HTTP-Inhalte von den IP-Adressen herunterzuladen, die Ihnen der DNS-Server Ihres Internetdienstanbieters für diese Namen zurückgegeben hat. Wo der Download erfolgreich war, können Sie auf die IP-Adresse in der Tabelle unten klicken, um eine komprimierte Datei mit einem HTTP-Sitzungstranskript herunterzuladen.
Hinweis! Der Sitzungsinhalt gefährdet möglicherweise Ihren Computer, wenn sie ihn in einem Browser öffnen. Seien Sie also bitte vorsichtig, wenn Sie den Inhalt untersuchen.

schrauber · 24.11.2014, 11:59

Ich würde jetzt den Router auf Werkseinstellungen zurücksetzen, dann den DNS am Rechner flushen.

binar · 24.11.2014, 16:54

Das habe ich gemacht. Router auf Werkseinstellung und DNS am Rechner flushen.

Also gefühlt würde ich sagen ist die Internetverbindung schneller geworden, also die Ladezeiten sind runter gegangen.

Netalyzr sagt mir aber dennoch das ich in einer DNS Blacklist sei. Also das Spamhaus sagt ich wäre in PBL und XBL eingetragen. Das ist alles sehr komisch. Ich meine es befindet sich kein Virus oder sonstiges auf dem PC laut den Logfiles . Habe auch bei Unitymedia angerufen. Die sagen die Leitung sei in Ordnung ....
Die schicken aber einen Techniker vorbei ..

Werde gucken was die nächsten Tage mit sich bringen

schrauber · 25.11.2014, 12:09

Du wirst aus so ner Liste ja auch nicht innerhalb ner Stunde wieder entfernt

binar · 25.11.2014, 13:21

Hab wieder einen Test gemacht bei Netalyzr und bin anscheinend nicht mehr auf der Liste des Spamhaus. Zudem funktioniert das Internet wesentlich besser seit dem ich das Modem auf die Werkseinstellung gebracht habe und DNS Flush am Rechner.

Es gibt nur eine Seite und zwar das Spiel : skill special force 2
Auf dieser Seite bekomme ich manchmal von Chrome oder anderen Browsern: ,,Die Webseite ist nicht verfügbar´´ Fehler 101 (net::ERR_CONNECTION_RESET)
Habe auch die Hilfsanweisungen gemacht die von Chrome angeboten werden , leider keine Veränderung. Zudem ich das Spiel gar nicht patchen. Es bleibt im Update Vorgang kurz vor dem Ende stehen, mit der Meldung Unstable Internet connection try again if your network is connected.

Das habe ich aber nur in diesem Spiel, auch geblockt oder sonstiges habe ich es nicht...

Dennoch möchte ich mich bei dir Bedanken schrauber . Ich glaube Unitymedia ist bei soetwas in ihrer Unfähigkeit nicht zu übertreffen.

Ich glaube ich würde ohne dieses Forum und deiner Hilfe immer noch auf Unitymedia warten.

Zudem hat mir heute Unitymedia eine SMS geschickt. Sie sagen die Störung sei behoben , deswegen wird kein ,,Techniker´´ vorbeikommen.

Liegt möglicherweise am Kabel , welches mit dem PC und dem Modem verbunden ist. Es ist mindestens 4 Jahre alt und zum Teil geknickt.

Nochmals danke schrauber

23.11.2014, 14:48	#10
schrauber /// the machine /// TB-Ausbilder	Spamhaus + DNS Blacklist PBL und XBL Meine Frage? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

24.11.2014, 11:59	#12
schrauber /// the machine /// TB-Ausbilder	Spamhaus + DNS Blacklist PBL und XBL Ich würde jetzt den Router auf Werkseinstellungen zurücksetzen, dann den DNS am Rechner flushen. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

25.11.2014, 12:09	#14
schrauber /// the machine /// TB-Ausbilder	Spamhaus + DNS Blacklist PBL und XBL Du wirst aus so ner Liste ja auch nicht innerhalb ner Stunde wieder entfernt __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Spamhaus + DNS Blacklist PBL und XBL

Plagegeister aller Art und deren Bekämpfung: Spamhaus + DNS Blacklist PBL und XBL