| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Systemunterbrechungen sehr hohe CPU LastWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
31.07.2015, 02:51
| #1 |
 |  Systemunterbrechungen sehr hohe CPU Last Hey, mein Computer läuft nicht so wie er sollte. Wenn ich ihn starte läuft alles super erst so nach ca. 3-4 Stunden fängt es dann zu "laggen" habe dann im Taskmanagar bei den Prozessen gesucht doch nichts gefunden. Habe dann aber im Ressourcenmonitor gesehen das da etwas läuft namens "Systemunterbrechungen" und das nimmt die ganze Leistung meines Computer. Ich hoffe Ihr könnt mir weiterhelfen vielen Dank im vor aus. (Die Systemunterbrechungen sind im Sekunden takt also eine Sekunde läuft er normal dann die nächste hängt er wieder zu 100% als ehr so mini hänger alle 2Sekunden) Mein System: Windows 7 Prof. SP 1 64bit Intel Xeon E3-1231 v3 8GB RAM DDR3 Readon R9 290 FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:30-07-2015
durchgeführt von Lars (Administrator) auf LARS-PC (31-07-2015 03:38:44)
Gestartet von C:\Users\Lars\Downloads
Geladene Profile: Lars (Verfügbare Profile: Lars)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Internet Security\a2service.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Internet Security\a2guard.exe
() C:\Program Files (x86)\Drakonia Configurator\hid.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Drakonia Configurator\trayicon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Spotify Ltd) C:\Users\Lars\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Steam\Steam.exe
(Valve Corporation) C:\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Steam\bin\steamwebhelper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\perfmon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM-x32\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft internet security\a2guard.exe [4939288 2015-07-27] (Emsisoft Ltd)
HKLM-x32\...\Run: [GamingMouse] => C:\Program Files (x86)\Drakonia Configurator\hid.exe [248832 2013-10-29] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-07-27] (Raptr, Inc)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-20] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Run: [Spotify Web Helper] => C:\Users\Lars\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-07-31] (Spotify Ltd)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Run: [Spotify] => C:\Users\Lars\AppData\Roaming\Spotify\Spotify.exe [7652408 2015-07-31] (Spotify Ltd)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-21] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-21] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-21] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-21] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{5702E92A-F6CA-4CF4-B600-A9F672948569}: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-21] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-21] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-31]
CHR Extension: (BetterTTV) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-07-06]
CHR Extension: (Google Docs) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-31]
CHR Extension: (Google Drive) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-31]
CHR Extension: (YouTube) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-31]
CHR Extension: (Adblock Plus) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-05-31]
CHR Extension: (Google Search) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-31]
CHR Extension: (PanicButton) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2015-05-31]
CHR Extension: (Google Sheets) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-31]
CHR Extension: (Adblock Plus) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdbbfekflnbhfbejkkhfoplikipmfei [2015-05-31]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-31]
CHR Extension: (Gmail) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-31]
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Internet Security\a2service.exe [5525328 2015-07-27] (Emsisoft Ltd)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2015-06-22] (Advanced Micro Devices) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-23] ()
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272560 2015-05-21] (Disc Soft Ltd)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-07-14] (LogMeIn, Inc.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1001200 2015-07-19] (Overwolf LTD)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [294600 2015-06-20] (Advanced Micro Devices)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-13] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [494864 2013-08-29] (Intel Corporation)
R1 epp64; C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\epp64.sys [137992 2015-07-27] (Emsisoft GmbH)
R3 fwndis; C:\Windows\System32\DRIVERS\fwndis64.sys [494856 2015-07-08] ()
R1 fwwfp; C:\Program Files (x86)\Emsisoft Internet Security\fwwfp764.sys [523208 2015-07-08] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
R1 networx; C:\Windows\System32\drivers\networx.sys [60736 2015-03-17] (NetFilterSDK.com)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-07-31 03:38 - 2015-07-31 03:39 - 00012833 _____ C:\Users\Lars\Downloads\FRST.txt
2015-07-31 03:38 - 2015-07-31 03:38 - 00000000 ____D C:\FRST
2015-07-31 03:37 - 2015-07-31 03:37 - 02168832 _____ (Farbar) C:\Users\Lars\Downloads\FRST64.exe
2015-07-31 03:35 - 2015-07-31 03:35 - 00000000 ____D C:\Users\Lars\Desktop\Neuer Ordner (3)
2015-07-31 03:32 - 2015-07-31 03:32 - 00000000 ____D C:\Users\Lars\Documents\WPA Files
2015-07-31 03:32 - 2015-07-31 03:32 - 00000000 ____D C:\ProgramData\WindowsPerformanceRecorder
2015-07-31 03:30 - 2015-07-31 03:30 - 01186640 _____ C:\Users\Lars\Downloads\ProcessExplorer.zip
2015-07-31 03:26 - 2015-07-31 03:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2015-07-31 03:26 - 2015-07-31 03:26 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-07-30 15:49 - 2015-07-30 15:53 - 116511944 _____ (Oracle Corporation) C:\Users\Lars\Downloads\VirtualBox-5.0.0-101573-Win.exe
2015-07-30 01:54 - 2015-07-30 02:03 - 300766360 _____ (AMD Inc.) C:\Users\Lars\Downloads\amd-catalyst-15.7.1-with-dotnet45-win7-64bit.exe
2015-07-30 01:52 - 2015-07-30 01:52 - 00991536 _____ (Microsoft Corporation) C:\Users\Lars\Downloads\sdksetup.exe
2015-07-30 01:51 - 2015-07-30 01:51 - 00000000 ____D C:\Users\Lars\AppData\Roaming\ATI
2015-07-30 01:51 - 2015-07-30 01:51 - 00000000 ____D C:\Users\Lars\AppData\Local\ATI
2015-07-30 01:51 - 2015-07-30 01:51 - 00000000 ____D C:\ProgramData\ATI
2015-07-30 01:51 - 2015-07-30 01:51 - 00000000 _____ C:\Windows\ativpsrm.bin
2015-07-30 01:50 - 2015-07-30 01:50 - 00053736 _____ C:\Windows\SysWOW64\CCCInstall_201507300150188871.log
2015-07-30 01:50 - 2015-07-30 01:50 - 00000000 ____D C:\ProgramData\AMD
2015-07-30 01:50 - 2015-07-30 01:50 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-07-30 01:49 - 2015-07-30 01:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-07-30 01:49 - 2015-07-30 01:49 - 00000000 ____D C:\Program Files (x86)\AMD
2015-07-30 01:47 - 2015-07-30 01:47 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-07-30 01:39 - 2015-07-30 01:42 - 00207872 _____ (Power Admin LLC) C:\Windows\PAExec.exe
2015-07-30 01:39 - 2015-07-30 01:39 - 00000000 ____D C:\Users\Lars\Downloads\x64
2015-07-30 01:37 - 2015-07-30 01:39 - 00000000 ____D C:\Users\Lars\Downloads\settings
2015-07-30 01:37 - 2015-07-10 19:22 - 01822720 _____ C:\Users\Lars\Downloads\Display Driver Uninstaller.exe
2015-07-30 01:37 - 2015-07-10 19:22 - 00228864 _____ C:\Users\Lars\Downloads\Display Driver Uninstaller.pdb
2015-07-30 01:36 - 2015-07-30 01:36 - 01206060 _____ (Igor Pavlov) C:\Users\Lars\Downloads\DDU_v15.3.1.0.exe
2015-07-29 21:48 - 2015-07-29 21:48 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zero-One-Launcher
2015-07-29 12:02 - 2015-07-29 12:02 - 07678021 _____ C:\Users\Lars\Downloads\Metro5.1.zip
2015-07-28 11:56 - 2015-07-25 20:07 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-28 11:56 - 2015-07-25 20:04 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-28 11:56 - 2015-07-25 20:04 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-28 11:56 - 2015-07-25 20:03 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-28 11:56 - 2015-07-25 20:03 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-28 11:56 - 2015-07-25 20:03 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-28 11:56 - 2015-07-25 20:03 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-28 11:56 - 2015-07-25 19:55 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-27 09:51 - 2015-07-31 00:13 - 00003208 _____ C:\Windows\setupact.log
2015-07-27 09:51 - 2015-07-27 09:51 - 00000000 _____ C:\Windows\setuperr.log
2015-07-26 23:44 - 2015-07-26 23:44 - 00005510 _____ C:\Users\Lars\Documents\cc_20150726_234412.reg
2015-07-26 23:41 - 2015-07-26 23:42 - 06609608 _____ (Piriform Ltd) C:\Users\Lars\Downloads\ccsetup508.exe
2015-07-26 23:38 - 2015-07-26 23:39 - 00000000 ____D C:\Users\Lars\Desktop\Neuer Ordner (2)
2015-07-26 23:35 - 2015-07-26 23:35 - 00000526 _____ C:\blitzblank.log
2015-07-26 23:18 - 2015-07-26 23:18 - 01125888 _____ C:\Users\Lars\Downloads\BEService_x64.exe
2015-07-26 23:03 - 2015-07-26 23:03 - 02869078 _____ C:\Users\Lars\Downloads\AutoHotkey112203_Install.exe
2015-07-26 12:09 - 2015-07-26 12:09 - 00000025 _____ C:\Users\Lars\Downloads\donations.csv
2015-07-24 00:42 - 2015-07-24 01:42 - 00000000 ____D C:\Users\Lars\AppData\Roaming\SleepTimerUltimate
2015-07-24 00:42 - 2015-07-24 00:42 - 00001146 _____ C:\Users\Public\Desktop\SleepTimer Ultimate.lnk
2015-07-24 00:42 - 2015-07-24 00:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SleepTimer Ultimate
2015-07-24 00:42 - 2015-07-24 00:42 - 00000000 ____D C:\Program Files (x86)\SleepTimer Ultimate
2015-07-24 00:35 - 2015-07-24 00:36 - 01533271 _____ (Christian Handorf ) C:\Users\Lars\Downloads\setup_sleeptimer_13.exe
2015-07-23 09:46 - 2015-07-23 09:46 - 00000000 ____D C:\ProgramData\Steam
2015-07-23 09:43 - 2015-07-31 01:20 - 00000000 ____D C:\Users\Lars\AppData\Local\Arma 3
2015-07-23 09:43 - 2015-07-23 09:45 - 00000000 ____D C:\Users\Lars\Documents\Arma 3
2015-07-23 09:43 - 2015-07-23 09:43 - 00000000 ____D C:\ProgramData\Bohemia Interactive
2015-07-23 09:32 - 2015-07-23 09:32 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Saints Row IV
2015-07-23 09:32 - 2015-07-23 09:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-07-23 09:12 - 2015-07-23 09:12 - 00000000 ____D C:\Program Files (x86)\R.G. Mechanics
2015-07-23 09:10 - 2015-07-29 21:48 - 00001127 _____ C:\Users\Lars\Desktop\Zero-One-Launcher.lnk
2015-07-23 09:10 - 2015-07-29 21:48 - 00000000 ____D C:\Program Files (x86)\Zero-One-Launcher
2015-07-23 09:10 - 2015-07-23 09:10 - 00721825 _____ C:\Users\Lars\Downloads\zero-one-installer.exe
2015-07-23 09:10 - 2015-07-23 09:10 - 00000000 ____D C:\Users\Lars\AppData\Local\Zero-One-Launcher
2015-07-23 09:10 - 2015-07-23 09:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zero-One-Launcher
2015-07-23 01:57 - 2015-07-23 01:57 - 00186368 _____ C:\Users\Lars\Downloads\PlayTV v3 (Normal).exe
2015-07-23 01:34 - 2015-07-23 01:34 - 00000000 ____D C:\Users\Lars\AppData\Local\CEF
2015-07-22 02:22 - 2015-07-22 02:30 - 296078544 _____ (AMD Inc.) C:\Users\Lars\Downloads\amd-catalyst-15.6-beta-software-suite-win7-64bit-june22.exe
2015-07-21 05:37 - 2015-07-21 05:37 - 00000000 _____ C:\Windows\SysWOW64\RENF5B3.tmp
2015-07-21 05:36 - 2015-07-21 05:36 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-20 23:28 - 2015-07-15 05:19 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-07-20 23:28 - 2015-07-15 05:19 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-20 23:28 - 2015-07-15 05:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-07-20 23:28 - 2015-07-15 05:19 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-07-20 23:28 - 2015-07-15 04:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-07-20 23:28 - 2015-07-15 04:55 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-07-20 23:28 - 2015-07-15 04:55 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-07-20 23:28 - 2015-07-15 04:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-07-20 23:28 - 2015-07-15 03:59 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-20 23:28 - 2015-07-15 03:52 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 02603008 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-20 23:28 - 2015-07-09 19:58 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-20 23:28 - 2015-07-09 19:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-20 23:28 - 2015-07-09 19:43 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-20 23:28 - 2015-07-09 19:43 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-20 23:28 - 2015-07-09 19:43 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-20 23:28 - 2015-07-09 19:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-20 23:28 - 2015-07-09 19:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-20 23:28 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-07-20 23:28 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2015-07-20 23:26 - 2015-06-25 10:57 - 03207168 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-20 23:26 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-20 23:26 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-07-20 23:25 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-07-20 23:25 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-07-20 23:25 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-07-20 23:25 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-20 23:25 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-07-20 23:25 - 2015-07-02 22:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-07-20 23:25 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-20 23:25 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-07-20 23:25 - 2015-07-02 22:12 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-20 23:25 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-07-20 23:25 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-20 23:25 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-20 23:25 - 2015-06-27 04:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-07-20 23:25 - 2015-06-27 04:43 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-20 23:25 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-07-20 23:25 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-07-20 23:22 - 2015-06-25 20:09 - 00389832 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-07-20 23:22 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-07-20 23:22 - 2015-06-20 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-07-20 23:22 - 2015-06-20 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-07-20 23:22 - 2015-06-20 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-20 23:22 - 2015-06-20 21:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-20 23:22 - 2015-06-20 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-07-20 23:22 - 2015-06-20 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-20 23:22 - 2015-06-20 21:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-07-20 23:22 - 2015-06-20 21:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-07-20 23:22 - 2015-06-20 21:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-20 23:22 - 2015-06-20 21:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-07-20 23:22 - 2015-06-20 21:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-07-20 23:22 - 2015-06-20 21:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-20 23:22 - 2015-06-20 21:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-07-20 23:22 - 2015-06-20 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-20 23:22 - 2015-06-20 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-07-20 23:22 - 2015-06-20 21:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-20 23:22 - 2015-06-20 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-20 23:22 - 2015-06-20 20:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-20 23:22 - 2015-06-20 20:48 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-07-20 23:22 - 2015-06-20 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-20 23:22 - 2015-06-20 20:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-07-20 23:22 - 2015-06-20 20:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-20 23:22 - 2015-06-20 20:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-20 23:22 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-07-20 23:22 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-07-20 23:22 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-07-20 23:22 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-07-20 23:22 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-20 23:22 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-07-20 23:22 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-07-20 23:22 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-07-20 23:22 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-07-20 23:22 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-07-20 23:22 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-07-20 23:22 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-07-20 23:22 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-07-20 23:22 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-07-20 23:22 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-07-20 23:22 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-07-20 23:22 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-07-20 23:22 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-07-20 23:22 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-07-20 23:21 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-20 23:21 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-07-20 23:20 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-20 23:20 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-20 23:20 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-20 23:20 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-20 23:20 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-07-20 23:20 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-07-20 23:20 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-07-20 23:20 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-07-20 23:19 - 2015-07-01 22:56 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-20 23:19 - 2015-07-01 22:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-07-20 23:19 - 2015-07-01 22:49 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-07-20 23:19 - 2015-07-01 22:48 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-07-20 23:19 - 2015-07-01 22:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-07-20 23:19 - 2015-07-01 22:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-07-20 23:19 - 2015-07-01 22:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-07-20 23:19 - 2015-07-01 22:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-07-20 23:19 - 2015-07-01 22:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-07-20 23:19 - 2015-07-01 22:39 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-07-20 23:19 - 2015-07-01 22:29 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-07-20 23:19 - 2015-07-01 22:29 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-07-20 23:19 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-07-20 23:19 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-07-20 23:19 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-07-20 23:19 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-07-20 23:19 - 2015-07-01 21:27 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-20 23:19 - 2015-07-01 21:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-20 23:19 - 2015-07-01 21:26 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-20 23:18 - 2015-06-15 23:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-07-20 23:18 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-20 23:18 - 2015-06-15 23:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-20 23:18 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-07-20 23:18 - 2015-06-15 23:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-07-20 23:18 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-20 23:18 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-07-20 23:18 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-07-20 23:18 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-07-20 23:18 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-07-20 23:18 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2015-07-20 23:18 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2015-07-20 22:56 - 2015-07-20 22:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-07-20 22:56 - 2015-07-20 22:56 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-07-20 22:56 - 2015-07-14 11:44 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-07-10 19:29 - 2015-07-28 16:09 - 00000000 ___HD C:\$Windows.~BT
2015-07-06 11:10 - 2015-07-08 17:58 - 00000000 ____D C:\Program Files (x86)\ArmA3Sync
2015-07-06 11:10 - 2015-07-06 11:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArmA3Sync
2015-07-06 11:09 - 2015-07-06 11:09 - 03505181 _____ (The [S.o.E] team ) C:\Users\Lars\Downloads\arma3sync-installer-1-4-63.exe
2015-07-06 01:44 - 2015-07-06 01:53 - 00000024 _____ C:\Users\Lars\random.dat
2015-07-06 01:44 - 2015-07-06 01:48 - 00000023 _____ C:\Users\Lars\jagexappletviewer.preferences
2015-07-06 01:44 - 2015-07-06 01:44 - 00002080 _____ C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape.lnk
2015-07-06 01:44 - 2015-07-06 01:44 - 00000043 _____ C:\Users\Lars\jagex_cl_runescape_LIVE.dat
2015-07-06 01:44 - 2015-07-06 01:44 - 00000000 ____D C:\Users\Lars\jagexcache
2015-07-06 01:44 - 2015-07-06 01:44 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2015-07-06 01:44 - 2015-07-06 01:44 - 00000000 ____D C:\.jagex_cache_32
2015-07-06 01:40 - 2015-07-06 01:41 - 24219648 _____ C:\Users\Lars\Downloads\RuneScape.msi
2015-07-04 23:19 - 2015-07-31 00:17 - 00000000 ____D C:\Users\Lars\AppData\Local\LogMeIn Hamachi
2015-07-04 23:19 - 2015-07-04 23:19 - 00000000 ____D C:\Users\Lars\AppData\Local\LogMeIn
2015-07-04 23:19 - 2015-07-04 23:19 - 00000000 ____D C:\ProgramData\LogMeIn
2015-07-04 23:17 - 2015-07-04 23:18 - 10375504 _____ C:\Users\Lars\Downloads\minecraft_server.1.8.jar
2015-07-04 23:16 - 2015-07-04 23:16 - 08552448 _____ C:\Users\Lars\Downloads\hamachi_2.2.0.328.msi
2015-07-04 20:52 - 2015-07-04 20:57 - 158004709 _____ C:\Users\Lars\Downloads\bitdebrid.com_DEF.rar
2015-07-04 10:38 - 2015-07-04 10:39 - 10430924 _____ C:\Users\Lars\Downloads\ets2mp_19200.zip
2015-07-04 10:13 - 2015-07-24 00:29 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-07-04 10:13 - 2015-07-04 10:13 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2015-07-04 10:13 - 2015-07-04 10:13 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-07-04 10:12 - 2015-07-04 10:12 - 02218504 _____ C:\Users\Lars\Downloads\instspeedfan451.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-07-31 03:38 - 2015-05-31 20:02 - 00000000 ____D C:\Program Files (x86)\Emsisoft Internet Security
2015-07-31 03:32 - 2015-05-31 18:12 - 01063721 _____ C:\Windows\WindowsUpdate.log
2015-07-31 03:31 - 2015-05-31 20:18 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Skype
2015-07-31 03:26 - 2015-05-31 19:45 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-31 03:23 - 2015-06-16 21:36 - 00007599 _____ C:\Users\Lars\AppData\Local\Resmon.ResmonCfg
2015-07-31 03:18 - 2015-06-23 14:32 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-31 02:46 - 2015-05-31 19:29 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-31 02:00 - 2015-06-06 10:33 - 00000000 ____D C:\Users\Lars\AppData\Local\Adobe
2015-07-31 01:20 - 2015-01-22 14:22 - 00000000 ____D C:\Steam
2015-07-31 01:14 - 2015-05-31 20:14 - 00000000 ____D C:\Users\Lars\AppData\Roaming\.minecraft
2015-07-31 00:15 - 2015-06-03 14:42 - 00000000 ____D C:\Users\Lars\AppData\Roaming\TS3Client
2015-07-31 00:13 - 2015-05-31 20:08 - 00000000 ____D C:\Users\Lars\AppData\Local\Spotify
2015-07-31 00:13 - 2015-05-31 20:07 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Spotify
2015-07-31 00:02 - 2009-07-14 06:45 - 00031280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-31 00:02 - 2009-07-14 06:45 - 00031280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-30 23:55 - 2015-05-31 19:49 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Raptr
2015-07-30 23:54 - 2015-05-31 19:29 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-30 23:53 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-30 16:34 - 2015-05-31 19:57 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2015-07-30 02:04 - 2015-05-31 19:45 - 00000000 ____D C:\AMD
2015-07-30 01:48 - 2015-05-31 19:45 - 00000000 ____D C:\Program Files\AMD
2015-07-29 21:47 - 2015-05-31 19:31 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-29 08:27 - 2015-05-31 19:49 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-07-29 03:00 - 2015-06-04 03:52 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-28 16:12 - 2015-05-31 19:05 - 00000000 ____D C:\Windows\Panther
2015-07-27 13:46 - 2015-05-31 20:51 - 00000000 ____D C:\Users\Lars\AppData\Local\Battle.net
2015-07-26 23:43 - 2015-06-11 22:13 - 00000000 ____D C:\Users\Lars\AppData\Local\CrashDumps
2015-07-26 23:43 - 2015-06-02 23:07 - 00000000 ____D C:\Users\Lars\AppData\Roaming\TeamViewer
2015-07-26 23:42 - 2015-06-17 11:16 - 00000830 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-07-26 23:42 - 2015-06-17 11:16 - 00000000 ____D C:\Program Files\CCleaner
2015-07-26 23:38 - 2015-06-03 23:37 - 00000000 ____D C:\Program Files (x86)\Overwolf
2015-07-26 23:14 - 2011-04-12 09:55 - 00000000 ____D C:\Windows\ShellNew
2015-07-26 20:19 - 2015-06-07 23:35 - 00000000 ____D C:\Users\Lars\AppData\Roaming\vlc
2015-07-26 18:52 - 2011-04-12 09:43 - 00699092 _____ C:\Windows\system32\perfh007.dat
2015-07-26 18:52 - 2011-04-12 09:43 - 00149232 _____ C:\Windows\system32\perfc007.dat
2015-07-26 18:52 - 2009-07-14 07:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-26 01:57 - 2015-06-23 14:32 - 00000946 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-07-25 10:03 - 2015-06-04 09:37 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-24 08:35 - 2015-06-06 10:40 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-07-24 08:35 - 2015-06-06 10:39 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-07-23 22:27 - 2015-02-07 11:59 - 00000000 ____D C:\Riot Games
2015-07-23 22:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-07-23 09:16 - 2015-06-12 14:46 - 00000000 ____D C:\Users\Lars\AppData\Local\JDownloader 2.0
2015-07-22 01:29 - 2015-06-13 14:37 - 00000000 ____D C:\Users\Lars\Desktop\Neuer Ordner
2015-07-22 01:24 - 2015-06-18 17:19 - 00000000 ____D C:\Users\Lars\Documents\Euro Truck Simulator 2
2015-07-22 01:19 - 2015-06-24 13:35 - 00000000 ____D C:\Users\Lars\Documents\SCANIA Truck Driving Simulator
2015-07-22 00:18 - 2015-05-31 20:56 - 00000000 ____D C:\ProgramData\Riot Games
2015-07-21 05:37 - 2015-05-31 20:06 - 00000000 ____D C:\ProgramData\Oracle
2015-07-21 05:37 - 2015-05-31 20:06 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-21 05:36 - 2015-06-01 21:52 - 00000000 ____D C:\Program Files\Java
2015-07-21 05:18 - 2009-07-14 06:45 - 00295392 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-21 05:17 - 2015-06-04 09:37 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-21 05:17 - 2015-06-04 03:52 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-21 05:17 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-07-21 01:24 - 2015-06-02 00:56 - 00000000 ____D C:\Windows\system32\MRT
2015-07-20 23:41 - 2015-05-31 19:29 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-20 23:41 - 2015-05-31 19:29 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-20 23:21 - 2015-06-23 14:32 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-20 23:21 - 2015-06-23 14:32 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-20 23:21 - 2015-06-23 14:32 - 00003936 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-07-20 23:21 - 2015-06-23 14:32 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-07-08 21:10 - 2015-05-31 20:02 - 00494856 _____ C:\Windows\system32\Drivers\fwndis64.sys
2015-07-06 01:44 - 2015-05-31 18:12 - 00000000 ____D C:\Users\Lars
2015-07-04 20:06 - 2015-06-05 20:36 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-07-04 20:06 - 2015-05-31 20:18 - 00000000 ____D C:\ProgramData\Skype
2015-07-04 10:39 - 2015-06-26 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 Multiplayer
2015-07-04 10:39 - 2015-06-26 21:03 - 00000000 ____D C:\Program Files (x86)\Euro Truck Simulator 2 Multiplayer
2015-07-04 06:52 - 2015-06-23 18:41 - 00012778 _____ C:\Windows\system32\lvcoinst.log
2015-07-03 08:43 - 2015-06-02 00:56 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-06-16 21:36 - 2015-07-31 03:23 - 0007599 _____ () C:\Users\Lars\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap Check =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\System32\winlogon.exe => Datei ist digital signiert
C:\Windows\System32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\System32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\System32\services.exe => Datei ist digital signiert
C:\Windows\System32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\System32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\System32\rpcss.dll => Datei ist digital signiert
C:\Windows\System32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-07-23 22:05
==================== Ende von log ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:30-07-2015
durchgeführt von Lars (2015-07-31 03:39:30)
Gestartet von C:\Users\Lars\Downloads
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3765219005-2896119444-2935634367-500 - Administrator - Disabled)
Gast (S-1-5-21-3765219005-2896119444-2935634367-501 - Limited - Disabled)
Lars (S-1-5-21-3765219005-2896119444-2935634367-1000 - Administrator - Enabled) => C:\Users\Lars
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Emsisoft Internet Security (Enabled - Up to date) {2F44E1F9-850B-1C7A-0E56-EB2E0A3E20C9}
AS: Emsisoft Internet Security (Enabled - Up to date) {9425001D-A331-13F4-34E6-D05C71B96A74}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Emsisoft Internet Security (Enabled) {177F60DC-CF64-1D22-2509-421BF4ED67B2}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
ACP Application (Version: 2.15.10.0003 - Advanced Micro Devices, Inc.) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Akamai NetSession Interface (HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{453294E1-F95E-C930-7517-BDC9209ADE10}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArmA3Sync 1.4.63 (HKLM-x32\...\{F097E7D7-D093-4394-9EED-43AFCCD12B7A}_is1) (Version: 1.4.63 - The [S.o.E] team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bus Driver (HKLM-x32\...\Steam App 302080) (Version: - SCS Software)
Camtasia Studio 8 (HKLM-x32\...\{A79B26D7-D6CB-408A-90CF-51508A4B62AB}) (Version: 8.5.2.1999 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version: - )
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\CopyTrans Suite) (Version: 3.01 - WindSolutions)
Curse Client (HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.820 - Curse)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.0.0.0054 - Disc Soft Ltd)
Drakonia Configurator (HKLM-x32\...\{2EAD3327-2F92-455F-A675-E5CC4980B67A}}_is1) (Version: - )
Echo of Soul (HKLM-x32\...\Echo of Soul) (Version: - )
Emsisoft Internet Security (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
Euro Truck Simulator 2 Multiplayer 0.1.9.2 Alpha (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.1.9.2 Alpha - ETS2MP Team)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Hacker Evolution (HKLM-x32\...\Steam App 70100) (Version: - exosyphen studios)
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
ImTOO iTransfer Platinum (HKLM-x32\...\ImTOO iTransfer Platinum) (Version: 5.7.3.20150526 - ImTOO)
Intel(R) Network Connections 18.7.28.0 (HKLM\...\PROSetDX) (Version: 18.7.28.0 - Intel)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KeePass Password Safe 1.29 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.29 - Dominik Reichl)
Kits Configuration Installer (x32 Version: 8.59.25584 - Microsoft) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.377 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.377 - LogMeIn, Inc.) Hidden
ManyCam 4.1.2 (HKLM-x32\...\ManyCam) (Version: 4.1.2 - Visicom Media Inc.)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.7.0 - Mozilla)
Mozilla Thunderbird 31.7.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.7.0 (x86 de)) (Version: 31.7.0 - Mozilla)
NetWorx 5.3.5 (HKLM\...\NetWorx_is1) (Version: - Softperfect Research)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.55.5 - Black Tree Gaming)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.8.2 - Notepad++ Team)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.87.58.0 - Overwolf Ltd.)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 1.3.1.42807 - Grinding Gear Games)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.76.1028.2013 - Realtek)
RuneScape Launcher 1.2.5 (HKLM-x32\...\{BB1810FD-EB25-4A9D-ADDD-3543190D429A}) (Version: 1.2.5 - Jagex Ltd)
Saints Row IV (HKLM-x32\...\Saints Row IV_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Scania Truck Driving Simulator (HKLM-x32\...\Steam App 258760) (Version: - SCS Software)
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
SleepTimer Ultimate 1.3 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Spotify) (Version: 1.0.11.129.g61510de3 - Spotify AB)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Software Development Kit (HKLM-x32\...\{363a2c1e-637f-45ce-933b-5a5463efd945}) (Version: 8.59.29750 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WPT Redistributables (x32 Version: 8.59.29750 - Microsoft) Hidden
WPTx64 (x32 Version: 8.59.29722 - Microsoft) Hidden
YGOPro DevPro (HKLM-x32\...\{A115F80F-2B26-464E-97A3-8B13EC533C3D}) (Version: 2.1.2 - DevPro, LLC)
Zero-One-Launcher 0.5 (HKLM-x32\...\Zero-One-Launcher) (Version: 0.5 - Zero-One)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3765219005-2896119444-2935634367-1000_Classes\CLSID\{51bbfd1b-39d3-427a-9053-af0b09ebdcfd}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
23-07-2015 22:12:11 Geplanter Prüfpunkt
24-07-2015 17:10:41 Windows Update
28-07-2015 11:55:52 Windows Update
29-07-2015 03:00:10 Windows Update
30-07-2015 01:40:03 DDU System Restored Point
30-07-2015 01:47:42 Gerätetreiber-Paketinstallation: Advanced Micro Devices, Inc. Grafikkarte
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {116BB508-0403-4175-9E54-D956DC8B9543} - System32\Tasks\AdobeAAMUpdater-1.0-Lars-PC-Lars => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {22C37492-1829-43DE-859D-66844ACF14EF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {3A5E383E-1040-427E-B43A-B59A5E4F8FCC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-31] (Google Inc.)
Task: {5B3006C7-49DF-49B5-BEF5-68AF7C4221A0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {5C1C12ED-7584-49C8-87AC-CAA05B28C94E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-31] (Google Inc.)
Task: {9DFC9EED-3EB1-4644-A417-0DD55599D3F3} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-07-19] (Overwolf LTD)
Task: {B6AA6970-8F89-49E4-BFD2-C5986877C312} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-20] (Adobe Systems Incorporated)
Task: {EFF543B6-2F8D-4252-906A-1647A980B455} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {FDF28603-DC9E-48D7-BC75-867521383223} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe [2015-07-20] (Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_209_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-03-20 18:12 - 2015-03-20 18:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-06-16 17:42 - 2013-10-29 13:43 - 00248832 _____ () C:\Program Files (x86)\Drakonia Configurator\hid.exe
2015-06-16 17:42 - 2012-12-11 11:14 - 00240640 _____ () C:\Program Files (x86)\Drakonia Configurator\trayicon.exe
2014-02-28 11:14 - 2014-02-28 11:14 - 00173568 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 01080832 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00833024 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-08-04 15:43 - 2014-08-04 15:43 - 00102344 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2014-08-04 15:43 - 2014-08-04 15:43 - 00108488 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00030208 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00233984 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-08-04 15:46 - 2014-08-04 15:46 - 00563656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-08-04 15:46 - 2014-08-04 15:46 - 00579016 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-02-27 16:51 - 2014-02-27 16:51 - 00159232 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2015-06-16 17:42 - 2013-01-15 17:06 - 00061952 _____ () C:\Program Files (x86)\Drakonia Configurator\HidDevice.dll
2015-06-16 17:42 - 2011-11-22 14:18 - 00249856 _____ () C:\Program Files (x86)\Drakonia Configurator\language.dll
2015-07-29 21:47 - 2015-07-25 10:46 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.125\libglesv2.dll
2015-07-29 21:47 - 2015-07-25 10:46 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.125\libegl.dll
2015-01-22 14:26 - 2015-07-03 18:12 - 00778240 _____ () C:\Steam\SDL2.dll
2015-01-22 14:26 - 2015-07-03 18:12 - 04962816 _____ () C:\Steam\v8.dll
2015-01-22 14:26 - 2015-07-03 18:12 - 01556992 _____ () C:\Steam\icui18n.dll
2015-01-22 14:26 - 2015-07-03 18:12 - 01187840 _____ () C:\Steam\icuuc.dll
2015-01-22 14:26 - 2015-07-24 01:24 - 02410176 _____ () C:\Steam\video.dll
2015-01-22 14:26 - 2014-12-01 23:31 - 02396672 _____ () C:\Steam\libavcodec-56.dll
2015-01-22 14:26 - 2014-12-01 23:31 - 00442880 _____ () C:\Steam\libavutil-54.dll
2015-01-22 14:26 - 2014-12-01 23:31 - 00479744 _____ () C:\Steam\libavformat-56.dll
2015-01-22 14:26 - 2014-12-01 23:31 - 00332800 _____ () C:\Steam\libavresample-2.dll
2015-01-22 14:26 - 2014-12-01 23:31 - 00485888 _____ () C:\Steam\libswscale-3.dll
2015-01-22 14:26 - 2015-07-24 01:23 - 00703168 _____ () C:\Steam\bin\chromehtml.DLL
2015-07-23 01:34 - 2015-07-07 22:41 - 00169984 _____ () C:\Steam\bin\openvr_api.dll
2015-01-22 14:26 - 2015-07-03 18:12 - 39553928 _____ () C:\Steam\bin\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer trusted/restricted ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\aeriagames.com -> hxxp://aeriagames.com
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Aeria Ignite => "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Lars\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: iCloudDrive => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: NetWorx => "C:\Program Files\NetWorx\networx.exe" /auto
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{E57A0DA8-8425-4C0C-9C1D-11925A2F98C0}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{0162E9A3-90CE-4333-BAF0-7B01F338D249}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{E9CC4613-512E-4CC0-9C87-1982F28F11E7}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{0F21637C-EB3C-4DCA-81F0-C1F270A25236}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{FF0EC7EE-D393-428F-8371-C778D6C7B47D}] => (Allow) C:\Steam\Steam.exe
FirewallRules: [{2B64E529-5069-4FA3-B44E-831BBFF6E803}] => (Allow) C:\Steam\Steam.exe
FirewallRules: [{137D9B53-97EA-4DBB-882A-A3B31696E06F}] => (Allow) C:\Steam\bin\steamwebhelper.exe
FirewallRules: [{BC82D8FF-0282-4EFC-BB16-43663CA5E1EB}] => (Allow) C:\Steam\bin\steamwebhelper.exe
FirewallRules: [{7AF82323-8D5C-4484-858C-601815BB9446}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E57A51AA-1928-43A4-B89F-7406E47EB113}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C089D124-DD21-41AE-B92A-3473BFDFD473}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B81199A2-24ED-40AF-96DA-72C2FFE4B5EF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2F6B27B7-0393-4912-AA26-E402E3D025CD}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{A8FB7F37-119B-4AB7-B484-73AB06BE042A}] => (Allow) C:\Steam\steamapps\common\ConSim2015\ConSim2015.exe
FirewallRules: [{1FF0A5F8-02CB-4DCE-8154-B4DA7DF72D5E}] => (Allow) C:\Steam\steamapps\common\ConSim2015\ConSim2015.exe
FirewallRules: [{EC4CBB69-E596-47D1-8A0C-7C69E6AE90C1}] => (Allow) C:\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{2FD7D19E-6026-426B-AADA-F3353E2E9079}] => (Allow) C:\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{99E3DEAC-B77B-4384-979E-32C35DD1C448}] => (Allow) C:\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{B657AF3D-3083-43B3-9952-6F5784279311}] => (Allow) C:\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{70C5B41F-CEAA-435C-AD75-554DFD223905}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{CE6FF1B8-5381-4399-A70D-E2BA3FF9DECF}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B12916BF-98AB-4F55-B611-4D4423FB9BE8}] => (Allow) LPort=8317
FirewallRules: [{F1139318-4F73-4535-B7B8-A39E634F1B35}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{825D0341-7866-4B53-A9C2-0D6A9F56A1E9}] => (Allow) C:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{3891B957-BDEC-445D-9A1A-F5DBE250B06A}] => (Allow) C:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{ED4A67C5-B89C-48C4-A0F3-5C29BE8ED415}] => (Allow) C:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{E765B9F4-CAEF-432B-8F8F-F10364422ED0}] => (Allow) C:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{C86DC137-46D5-437F-97F9-2FF01FB4185D}] => (Allow) C:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{A3224FFD-4431-4FF7-A3AD-D42C3E440300}] => (Allow) C:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{0C19C37C-E7A8-4CB5-8E66-143503AC1A0F}] => (Allow) C:\Steam\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{59C56977-9044-4422-B8AC-83B21C1405C5}] => (Allow) C:\Steam\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{8FC20F5D-037C-4297-8043-564FA2A78A23}] => (Allow) C:\Steam\steamapps\common\Hacker Evolution\HackerEvolution.exe
FirewallRules: [{35D3BDFD-D0A3-40E4-8E9A-733283459029}] => (Allow) C:\Steam\steamapps\common\Hacker Evolution\HackerEvolution.exe
FirewallRules: [{6D30B959-FF8E-490E-8EDD-F63F05C9E6FA}] => (Allow) C:\Steam\steamapps\common\Hacker Evolution\HackerEvolutionModEditor.exe
FirewallRules: [{1915DD34-A55B-41B9-8C43-84CFE2F31462}] => (Allow) C:\Steam\steamapps\common\Hacker Evolution\HackerEvolutionModEditor.exe
FirewallRules: [{73148A93-ED1C-4EA2-A06A-D81AD83B3224}] => (Allow) C:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{398CA0A8-D19E-4525-9586-C7212C9E5D1A}] => (Allow) C:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{67E42F40-C1DC-4C81-8C80-BB585D149129}] => (Allow) C:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{7EFCE76E-438D-4D2F-AEBF-482FE6208667}] => (Allow) C:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{808DA4A2-54BE-46A7-BC1C-305CE0690AB1}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{96DC1658-6BC3-4F0F-8310-CCADCE2625B7}] => (Allow) C:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{3D6127CE-7124-491D-8A3A-DEF2CCF367EF}] => (Allow) C:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{4CA4BCCF-61F3-4220-826B-FAF5E55E59C9}] => (Allow) C:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{6A89E1D7-7506-415C-99F7-51C84F4ACF8A}] => (Allow) C:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C75A0EA5-4F74-4C87-92BE-D5402F7405A1}] => (Allow) C:\Steam\steamapps\common\Scania Truck Driving Simulator\bin\win_x86\scania_truck_driving_simulator.exe
FirewallRules: [{D3BA5280-9A9B-42AA-973D-4D6EBDFE2F30}] => (Allow) C:\Steam\steamapps\common\Scania Truck Driving Simulator\bin\win_x86\scania_truck_driving_simulator.exe
FirewallRules: [{D43EB3A7-170B-4F01-88BC-31D4B55E226B}] => (Allow) C:\Steam\steamapps\common\Bus Driver\bin\win_x86\busdriver.exe
FirewallRules: [{36532757-5C01-4F86-8C45-07F090DBF003}] => (Allow) C:\Steam\steamapps\common\Bus Driver\bin\win_x86\busdriver.exe
FirewallRules: [{9FE13949-7397-4171-A876-D0169A22260D}] => (Allow) C:\Steam\steamapps\common\Bus Driver\bin\win_x86\launcher.exe
FirewallRules: [{92DB1F6E-5947-4C1C-8D4C-A49A74F93FE7}] => (Allow) C:\Steam\steamapps\common\Bus Driver\bin\win_x86\launcher.exe
FirewallRules: [{96225C40-BA12-4E08-AF16-8829EF255166}] => (Allow) C:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{DBB78537-8595-4963-AC8F-B7FEBCFA5287}] => (Allow) C:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{B87D2417-C7BC-44AE-A354-64220C367D33}] => (Allow) C:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{00AF609B-34C9-42A3-B86C-4341537B85A6}] => (Allow) C:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{19C344C1-4AA1-4BE2-972E-341E43191ED7}] => (Allow) C:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{B15008F2-A20D-4728-B437-3E8E708B9336}] => (Allow) C:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{70C5C284-5D84-4C87-AF10-DC42E1DCAAAB}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{E7E9E5AD-622B-4B2C-B0B8-BF4DBAA681DA}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{80892EA1-7CA5-4841-AC97-FB97C438AD6F}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{6E3FB97D-7121-4CA9-AD4E-CA7E16936E2F}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{4272EEEC-338E-42E7-AC66-8F33FEDFCC0E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (07/30/2015 11:55:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/30/2015 11:52:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/30/2015 12:25:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/30/2015 01:53:01 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/30/2015 01:45:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/29/2015 11:42:05 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/29/2015 09:28:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/29/2015 09:22:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/29/2015 08:25:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/28/2015 11:49:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Systemfehler:
=============
Error: (07/30/2015 11:54:09 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (07/30/2015 11:50:52 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (07/30/2015 03:02:20 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Error: (07/30/2015 12:37:44 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80240020 fehlgeschlagen: Upgrade auf Windows 10 Pro
Error: (07/30/2015 12:23:57 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (07/30/2015 01:51:41 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (07/30/2015 01:50:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ACP Kernel Service Driver" wurde aufgrund folgenden Fehlers nicht gestartet:
%%31
Error: (07/30/2015 01:48:36 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ACP Kernel Service Driver" wurde aufgrund folgenden Fehlers nicht gestartet:
%%31
Error: (07/30/2015 01:48:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ACP Kernel Service Driver" wurde aufgrund folgenden Fehlers nicht gestartet:
%%31
Error: (07/30/2015 01:44:10 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Microsoft Office:
=========================
Error: (07/30/2015 11:55:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/30/2015 11:52:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/30/2015 12:25:09 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/30/2015 01:53:01 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/30/2015 01:45:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/29/2015 11:42:05 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/29/2015 09:28:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/29/2015 09:22:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/29/2015 08:25:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/28/2015 11:49:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
==================== Speicherinformationen ===========================
Processor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz
Percentage of memory in use: 36%
Total physical RAM: 8111.05 MB
Available physical RAM: 5114.87 MB
Total Virtual: 16220.32 MB
Available Virtual: 12674.07 MB
==================== Drives ================================
Drive c: (Sekundär) (Fixed) (Total:931.51 GB) (Free:544.74 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F7150527)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Ende von log ============================
  |
|
31.07.2015, 06:27
| #2 |
| /// the machine /// TB-Ausbilder    | Systemunterbrechungen sehr hohe CPU Last hi,
__________________Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ |
|
31.07.2015, 12:00
| #3 |
| | Systemunterbrechungen sehr hohe CPU Last mbar
__________________Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.09.1.1004
www.malwarebytes.org
Database version:
main: v2015.07.31.03
rootkit: v2015.07.30.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17914
Lars :: LARS-PC [administrator]
31.07.2015 12:23:06
mbar-log-2015-07-31 (12-23-06).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 384794
Time elapsed: 18 minute(s), 3 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
1. Code:
ATTFilter 12:42:24.0834 0x126c TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
12:42:30.0283 0x126c ============================================================
12:42:30.0283 0x126c Current date / time: 2015/07/31 12:42:30.0283
12:42:30.0283 0x126c SystemInfo:
12:42:30.0283 0x126c
12:42:30.0283 0x126c OS Version: 6.1.7601 ServicePack: 1.0
12:42:30.0283 0x126c Product type: Workstation
12:42:30.0284 0x126c ComputerName: LARS-PC
12:42:30.0285 0x126c UserName: Lars
12:42:30.0285 0x126c Windows directory: C:\Windows
12:42:30.0285 0x126c System windows directory: C:\Windows
12:42:30.0285 0x126c Running under WOW64
12:42:30.0285 0x126c Processor architecture: Intel x64
12:42:30.0285 0x126c Number of processors: 8
12:42:30.0285 0x126c Page size: 0x1000
12:42:30.0285 0x126c Boot type: Normal boot
12:42:30.0285 0x126c ============================================================
12:42:32.0557 0x126c KLMD registered as C:\Windows\system32\drivers\80092054.sys
12:42:32.0835 0x126c System UUID: {22504BDC-ED52-D832-1105-B012CC4E8831}
12:42:33.0068 0x126c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:42:33.0073 0x126c ============================================================
12:42:33.0073 0x126c \Device\Harddisk0\DR0:
12:42:33.0073 0x126c MBR partitions:
12:42:33.0073 0x126c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
12:42:33.0073 0x126c ============================================================
12:42:33.0104 0x126c C: <-> \Device\Harddisk0\DR0\Partition1
12:42:33.0104 0x126c ============================================================
12:42:33.0104 0x126c Initialize success
12:42:33.0104 0x126c ============================================================
12:42:54.0503 0x09dc ============================================================
12:42:54.0503 0x09dc Scan started
12:42:54.0503 0x09dc Mode: Manual; SigCheck; TDLFS;
12:42:54.0503 0x09dc ============================================================
12:42:54.0503 0x09dc KSN ping started
12:42:56.0940 0x09dc KSN ping finished: true
12:42:58.0143 0x09dc ================ Scan system memory ========================
12:42:58.0143 0x09dc System memory - ok
12:42:58.0144 0x09dc ================ Scan services =============================
12:42:58.0706 0x09dc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:42:58.0790 0x09dc 1394ohci - ok
12:42:58.0991 0x09dc [ 134C00B35A5501EBFAD297BCC5600C38, D05C143E850D3315142375260E0FA865C9BD75445F52029BD98A29B9C9FFEDCF ] a2AntiMalware C:\Program Files (x86)\Emsisoft Internet Security\a2service.exe
12:42:59.0082 0x09dc a2AntiMalware - ok
12:42:59.0116 0x09dc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:42:59.0132 0x09dc ACPI - ok
12:42:59.0141 0x09dc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:42:59.0153 0x09dc AcpiPmi - ok
12:42:59.0231 0x09dc [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:42:59.0265 0x09dc AdobeARMservice - ok
12:42:59.0370 0x09dc [ 011BD8A49AF856E8A8EE32652D1CFC05, 7E45CD5ED185DFCA94069640C19D3079879FD1F3069873D0302ACC372F756F90 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:42:59.0410 0x09dc AdobeFlashPlayerUpdateSvc - ok
12:42:59.0538 0x09dc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:42:59.0575 0x09dc adp94xx - ok
12:42:59.0595 0x09dc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:42:59.0610 0x09dc adpahci - ok
12:42:59.0625 0x09dc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:42:59.0637 0x09dc adpu320 - ok
12:42:59.0655 0x09dc [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:42:59.0696 0x09dc AeLookupSvc - ok
12:42:59.0755 0x09dc [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
12:42:59.0780 0x09dc AFD - ok
12:42:59.0808 0x09dc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
12:42:59.0822 0x09dc agp440 - ok
12:42:59.0847 0x09dc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
12:42:59.0864 0x09dc ALG - ok
12:42:59.0873 0x09dc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
12:42:59.0884 0x09dc aliide - ok
12:42:59.0908 0x09dc [ 34662E949344FEC33B6FFDF56B854F9F, 3DC574737CCF12C61AA3A6C78F9DEC3272C69D5EF52C9C65DF4176498533D8EB ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:42:59.0925 0x09dc AMD External Events Utility - ok
12:42:59.0946 0x09dc [ 64BF5B89009CA81FA920AC62A53AEC12, 4A4C803518474B6F0F347801100C5F503D94617AB767A7FF4C7BAA6CF20D5850 ] amdacpksd C:\Windows\system32\drivers\amdacpksd.sys
12:42:59.0960 0x09dc amdacpksd - ok
12:42:59.0978 0x09dc [ A19EA2BA934C866235B308B0CBFA6D5C, 2D3DCFFA4F6CB6A1AC7BE2EED34BE32C3C6C0F4EDDE116BB9001D6A987B75625 ] amdacpusrsvc C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
12:42:59.0983 0x09dc amdacpusrsvc - detected UnsignedFile.Multi.Generic ( 1 )
12:43:10.0054 0x09dc amdacpusrsvc ( UnsignedFile.Multi.Generic ) - warning
12:43:26.0671 0x09dc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
12:43:26.0691 0x09dc amdide - ok
12:43:26.0720 0x09dc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:43:26.0736 0x09dc AmdK8 - ok
12:43:27.0210 0x09dc [ E0622DAC1B5EE02AB49F67585BEF13E2, BFD47C53045F4E2116DFACADD5891A45101692D350DA1DEDDAC3B512F4C8E9E0 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:43:27.0777 0x09dc amdkmdag - ok
12:43:27.0850 0x09dc [ 20B8412C9BA4C7664285718FA8BEFF1F, 388ED26F5E2451AA5C7E441697679A3554ED2B7AFF3969506766B9B666B5A9CA ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
12:43:27.0871 0x09dc amdkmdap - ok
12:43:27.0890 0x09dc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
12:43:27.0902 0x09dc AmdPPM - ok
12:43:27.0906 0x09dc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:43:27.0918 0x09dc amdsata - ok
12:43:27.0926 0x09dc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
12:43:27.0938 0x09dc amdsbs - ok
12:43:27.0956 0x09dc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:43:27.0965 0x09dc amdxata - ok
12:43:27.0986 0x09dc [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID C:\Windows\system32\drivers\appid.sys
12:43:27.0998 0x09dc AppID - ok
12:43:28.0000 0x09dc [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:43:28.0011 0x09dc AppIDSvc - ok
12:43:28.0018 0x09dc [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo C:\Windows\System32\appinfo.dll
12:43:28.0030 0x09dc Appinfo - ok
12:43:28.0088 0x09dc [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:43:28.0113 0x09dc Apple Mobile Device Service - ok
12:43:28.0126 0x09dc [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
12:43:28.0145 0x09dc AppMgmt - ok
12:43:28.0158 0x09dc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
12:43:28.0170 0x09dc arc - ok
12:43:28.0183 0x09dc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:43:28.0195 0x09dc arcsas - ok
12:43:28.0319 0x09dc [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:43:28.0341 0x09dc aspnet_state - ok
12:43:28.0359 0x09dc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:43:28.0384 0x09dc AsyncMac - ok
12:43:28.0393 0x09dc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
12:43:28.0403 0x09dc atapi - ok
12:43:28.0412 0x09dc [ ED38B8924DE8C806A2A1C12C4F61E9CF, 88B71426CF09A8458B1AE2DDF41F2C86FE9B4DDA742D22BFF8AF110915486DDA ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
12:43:28.0424 0x09dc AtiHDAudioService - ok
12:43:28.0453 0x09dc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:43:28.0477 0x09dc AudioEndpointBuilder - ok
12:43:28.0491 0x09dc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:43:28.0512 0x09dc AudioSrv - ok
12:43:28.0609 0x09dc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:43:28.0714 0x09dc AxInstSV - ok
12:43:28.0765 0x09dc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
12:43:28.0798 0x09dc b06bdrv - ok
12:43:28.0859 0x09dc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:43:28.0897 0x09dc b57nd60a - ok
12:43:29.0071 0x09dc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
12:43:29.0106 0x09dc BDESVC - ok
12:43:29.0140 0x09dc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
12:43:29.0198 0x09dc Beep - ok
12:43:29.0259 0x09dc [ 56805606D40B1EC96AE8442E21318C13, 3CBCB50EA8D2124B5E322D38F721670B4997F5F6865D3C7D5F819B9EF9620394 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
12:43:29.0294 0x09dc BEService - ok
12:43:29.0398 0x09dc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
12:43:29.0446 0x09dc BFE - ok
12:43:29.0482 0x09dc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
12:43:29.0543 0x09dc BITS - ok
12:43:29.0570 0x09dc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:43:29.0612 0x09dc blbdrive - ok
12:43:29.0700 0x09dc [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:43:29.0733 0x09dc Bonjour Service - ok
12:43:29.0740 0x09dc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:43:29.0760 0x09dc bowser - ok
12:43:29.0823 0x09dc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
12:43:29.0855 0x09dc BrFiltLo - ok
12:43:29.0859 0x09dc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
12:43:29.0886 0x09dc BrFiltUp - ok
12:43:29.0894 0x09dc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
12:43:29.0915 0x09dc Browser - ok
12:43:30.0023 0x09dc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:43:30.0077 0x09dc Brserid - ok
12:43:30.0080 0x09dc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:43:30.0094 0x09dc BrSerWdm - ok
12:43:30.0096 0x09dc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:43:30.0112 0x09dc BrUsbMdm - ok
12:43:30.0114 0x09dc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:43:30.0126 0x09dc BrUsbSer - ok
12:43:30.0129 0x09dc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:43:30.0144 0x09dc BTHMODEM - ok
12:43:30.0167 0x09dc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
12:43:30.0192 0x09dc bthserv - ok
12:43:30.0196 0x09dc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:43:30.0220 0x09dc cdfs - ok
12:43:30.0270 0x09dc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:43:30.0491 0x09dc cdrom - ok
12:43:30.0605 0x09dc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
12:43:30.0660 0x09dc CertPropSvc - ok
12:43:30.0752 0x09dc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
12:43:30.0767 0x09dc circlass - ok
12:43:30.0793 0x09dc [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
12:43:30.0810 0x09dc CLFS - ok
12:43:30.0893 0x09dc [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:43:30.0910 0x09dc clr_optimization_v2.0.50727_32 - ok
12:43:30.0965 0x09dc [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:43:30.0997 0x09dc clr_optimization_v2.0.50727_64 - ok
12:43:31.0049 0x09dc [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:43:31.0089 0x09dc clr_optimization_v4.0.30319_32 - ok
12:43:31.0102 0x09dc [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:43:31.0183 0x09dc clr_optimization_v4.0.30319_64 - ok
12:43:31.0198 0x09dc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
12:43:31.0219 0x09dc CmBatt - ok
12:43:31.0223 0x09dc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:43:31.0240 0x09dc cmdide - ok
12:43:31.0282 0x09dc [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
12:43:31.0317 0x09dc CNG - ok
12:43:31.0321 0x09dc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
12:43:31.0332 0x09dc Compbatt - ok
12:43:31.0335 0x09dc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
12:43:31.0351 0x09dc CompositeBus - ok
12:43:31.0365 0x09dc COMSysApp - ok
12:43:31.0368 0x09dc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:43:31.0378 0x09dc crcdisk - ok
12:43:31.0391 0x09dc [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:43:31.0406 0x09dc CryptSvc - ok
12:43:31.0424 0x09dc [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
12:43:31.0459 0x09dc CSC - ok
12:43:31.0477 0x09dc [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
12:43:31.0528 0x09dc CscService - ok
12:43:31.0580 0x09dc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:43:31.0622 0x09dc DcomLaunch - ok
12:43:31.0649 0x09dc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
12:43:31.0678 0x09dc defragsvc - ok
12:43:31.0686 0x09dc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:43:31.0711 0x09dc DfsC - ok
12:43:31.0726 0x09dc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:43:31.0743 0x09dc Dhcp - ok
12:43:31.0821 0x09dc [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack C:\Windows\system32\diagtrack.dll
12:43:31.0856 0x09dc DiagTrack - ok
12:43:31.0929 0x09dc [ E085B7FF07EDBD8F5D2A32E447A23E9F, 6A3D14C3CF3A5325BBF758612428A8C44E8C659A108CDA938AF60D1F5EF4039E ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
12:43:31.0981 0x09dc Disc Soft Lite Bus Service - ok
12:43:32.0015 0x09dc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
12:43:32.0040 0x09dc discache - ok
12:43:32.0082 0x09dc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
12:43:32.0093 0x09dc Disk - ok
12:43:32.0101 0x09dc [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
12:43:32.0114 0x09dc dmvsc - ok
12:43:32.0127 0x09dc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:43:32.0163 0x09dc Dnscache - ok
12:43:32.0170 0x09dc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
12:43:32.0199 0x09dc dot3svc - ok
12:43:32.0229 0x09dc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
12:43:32.0256 0x09dc DPS - ok
12:43:32.0281 0x09dc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:43:32.0324 0x09dc drmkaud - ok
12:43:32.0330 0x09dc [ 496C3C6BC3D930D0960C9E75AA30F4A7, 3FE0E86DA8C2C6A990BB2F1B92C22BD3483882B8D69FF8025BB68A199362C234 ] dtlitescsibus C:\Windows\system32\DRIVERS\dtlitescsibus.sys
12:43:32.0346 0x09dc dtlitescsibus - ok
12:43:32.0443 0x09dc [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:43:32.0478 0x09dc DXGKrnl - ok
12:43:32.0538 0x09dc [ CC2DE631888782989B27B775B09F6FCD, 911009FF41EE5B05EDD76950A696FA1631F93107BEE6CEB153EEB6EEFC8A922A ] e1dexpress C:\Windows\system32\DRIVERS\e1d62x64.sys
12:43:32.0569 0x09dc e1dexpress - ok
12:43:32.0573 0x09dc EagleX64 - ok
12:43:32.0579 0x09dc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
12:43:32.0606 0x09dc EapHost - ok
12:43:32.0704 0x09dc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
12:43:32.0809 0x09dc ebdrv - ok
12:43:32.0836 0x09dc [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] EFS C:\Windows\System32\lsass.exe
12:43:32.0872 0x09dc EFS - ok
12:43:33.0119 0x09dc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:43:33.0159 0x09dc ehRecvr - ok
12:43:33.0164 0x09dc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
12:43:33.0179 0x09dc ehSched - ok
12:43:33.0206 0x09dc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:43:33.0227 0x09dc elxstor - ok
12:43:33.0291 0x09dc [ 24F39BCF577CD56C25DDFF4AC6359399, DF5070A284EEC34A4C8452C77325FFAF4E1601F37C6C7C86AED70EE52BFE37A5 ] epp64 C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\epp64.sys
12:43:33.0317 0x09dc epp64 - ok
12:43:33.0321 0x09dc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:43:33.0336 0x09dc ErrDev - ok
12:43:33.0352 0x09dc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
12:43:33.0384 0x09dc EventSystem - ok
12:43:33.0391 0x09dc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
12:43:33.0420 0x09dc exfat - ok
12:43:33.0425 0x09dc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:43:33.0474 0x09dc fastfat - ok
12:43:33.0506 0x09dc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
12:43:33.0530 0x09dc Fax - ok
12:43:33.0534 0x09dc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
12:43:33.0545 0x09dc fdc - ok
12:43:33.0548 0x09dc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
12:43:33.0573 0x09dc fdPHost - ok
12:43:33.0577 0x09dc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
12:43:33.0602 0x09dc FDResPub - ok
12:43:33.0623 0x09dc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:43:33.0633 0x09dc FileInfo - ok
12:43:33.0636 0x09dc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:43:33.0661 0x09dc Filetrace - ok
12:43:33.0664 0x09dc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
12:43:33.0676 0x09dc flpydisk - ok
12:43:33.0686 0x09dc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:43:33.0699 0x09dc FltMgr - ok
12:43:33.0726 0x09dc [ E612E86FA15EA1EF9A52433A2743C447, 8A66164541D2EE2334B6DE3995C31138EA85E3A06BC7FD901E60D345E4E1E8A8 ] FontCache C:\Windows\system32\FntCache.dll
12:43:33.0757 0x09dc FontCache - ok
12:43:33.0763 0x09dc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:43:33.0773 0x09dc FontCache3.0.0.0 - ok
12:43:33.0780 0x09dc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:43:33.0791 0x09dc FsDepends - ok
12:43:33.0802 0x09dc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:43:33.0811 0x09dc Fs_Rec - ok
12:43:33.0837 0x09dc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:43:33.0852 0x09dc fvevol - ok
12:43:33.0868 0x09dc [ 947F4CC687B703C600AED8CEA2ADB5D6, 32B0AA7D504A4850531CEFFBEE45AFE702C84C362CEE8851AE5147E4C8EED56D ] fwndis C:\Windows\system32\DRIVERS\fwndis64.sys
12:43:33.0884 0x09dc fwndis - ok
12:43:33.0942 0x09dc [ 6C80168263C920F7461DB9C722B13F0C, 0CA7A90B24E1389F0E57996849A7C6FE6CEFAE08F06FD765B7DAD91517831035 ] fwwfp C:\Program Files (x86)\Emsisoft Internet Security\fwwfp764.sys
12:43:33.0962 0x09dc fwwfp - ok
12:43:33.0975 0x09dc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:43:33.0986 0x09dc gagp30kx - ok
12:43:34.0014 0x09dc [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:43:34.0031 0x09dc GEARAspiWDM - ok
12:43:34.0138 0x09dc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
12:43:34.0252 0x09dc gpsvc - ok
12:43:34.0280 0x09dc [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:43:34.0291 0x09dc gupdate - ok
12:43:34.0295 0x09dc [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:43:34.0305 0x09dc gupdatem - ok
12:43:34.0309 0x09dc [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
12:43:34.0318 0x09dc hamachi - ok
12:43:34.0450 0x09dc [ 3FF6FCC221F5128BE77B13BF523F2614, CAB9E7CDEA2EF36E986F2B690C1F19084B30E7F2C28E22A87BA9DBECDAD31F96 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
12:43:34.0498 0x09dc Hamachi2Svc - ok
12:43:34.0504 0x09dc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:43:34.0517 0x09dc hcw85cir - ok
12:43:34.0544 0x09dc [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:43:34.0562 0x09dc HdAudAddService - ok
12:43:34.0575 0x09dc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:43:34.0590 0x09dc HDAudBus - ok
12:43:34.0612 0x09dc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
12:43:34.0625 0x09dc HidBatt - ok
12:43:34.0631 0x09dc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:43:34.0648 0x09dc HidBth - ok
12:43:34.0692 0x09dc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
12:43:34.0724 0x09dc HidIr - ok
12:43:34.0731 0x09dc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
12:43:34.0778 0x09dc hidserv - ok
12:43:34.0782 0x09dc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:43:34.0794 0x09dc HidUsb - ok
12:43:34.0821 0x09dc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:43:34.0852 0x09dc hkmsvc - ok
12:43:34.0888 0x09dc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:43:34.0908 0x09dc HomeGroupListener - ok
12:43:34.0920 0x09dc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:43:34.0955 0x09dc HomeGroupProvider - ok
12:43:34.0976 0x09dc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:43:34.0990 0x09dc HpSAMD - ok
12:43:35.0024 0x09dc [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:43:35.0053 0x09dc HTTP - ok
12:43:35.0056 0x09dc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:43:35.0066 0x09dc hwpolicy - ok
12:43:35.0070 0x09dc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
12:43:35.0083 0x09dc i8042prt - ok
12:43:35.0098 0x09dc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:43:35.0115 0x09dc iaStorV - ok
12:43:35.0145 0x09dc [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:43:35.0172 0x09dc idsvc - ok
12:43:35.0176 0x09dc IEEtwCollectorService - ok
12:43:35.0192 0x09dc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:43:35.0202 0x09dc iirsp - ok
12:43:35.0234 0x09dc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
12:43:35.0280 0x09dc IKEEXT - ok
12:43:35.0312 0x09dc [ B45D80667300D34BF043B421D5D9CD8E, 7481B67DE98CC1B77DFE6B7BBC97B9206E60A60D28A45EC083B9A5D3824202F2 ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
12:43:35.0324 0x09dc Intel(R) PROSet Monitoring Service - ok
12:43:35.0327 0x09dc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
12:43:35.0338 0x09dc intelide - ok
12:43:35.0351 0x09dc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:43:35.0364 0x09dc intelppm - ok
12:43:35.0382 0x09dc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:43:35.0408 0x09dc IPBusEnum - ok
12:43:35.0412 0x09dc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:43:35.0437 0x09dc IpFilterDriver - ok
12:43:35.0462 0x09dc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:43:35.0483 0x09dc iphlpsvc - ok
12:43:35.0509 0x09dc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:43:35.0529 0x09dc IPMIDRV - ok
12:43:35.0534 0x09dc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:43:35.0559 0x09dc IPNAT - ok
12:43:35.0595 0x09dc [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:43:35.0619 0x09dc iPod Service - ok
12:43:35.0628 0x09dc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:43:35.0641 0x09dc IRENUM - ok
12:43:35.0651 0x09dc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:43:35.0661 0x09dc isapnp - ok
12:43:35.0669 0x09dc [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:43:35.0684 0x09dc iScsiPrt - ok
12:43:35.0696 0x09dc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:43:35.0707 0x09dc kbdclass - ok
12:43:35.0713 0x09dc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:43:35.0725 0x09dc kbdhid - ok
12:43:35.0736 0x09dc [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] KeyIso C:\Windows\system32\lsass.exe
12:43:35.0748 0x09dc KeyIso - ok
12:43:35.0815 0x09dc [ C0A6C3D6E02B61B5D100FE17306C276F, F57C7BCC39B30F1DF739D07B76BA18EB68D12D8D1BD13B6AC8DC712C29119495 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:43:35.0826 0x09dc KSecDD - ok
12:43:35.0977 0x09dc [ 7A7328E427694CC7244235C3BC299F80, 7FC2E1F3F93B3334C3A8961CA58B4F38524650F6D8DA9FFA1FB43E1A2B86B710 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:43:36.0005 0x09dc KSecPkg - ok
12:43:36.0095 0x09dc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:43:36.0147 0x09dc ksthunk - ok
12:43:36.0161 0x09dc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
12:43:36.0226 0x09dc KtmRm - ok
12:43:36.0237 0x09dc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:43:36.0266 0x09dc LanmanServer - ok
12:43:36.0305 0x09dc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:43:36.0347 0x09dc LanmanWorkstation - ok
12:43:36.0354 0x09dc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:43:36.0380 0x09dc lltdio - ok
12:43:36.0389 0x09dc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:43:36.0418 0x09dc lltdsvc - ok
12:43:36.0434 0x09dc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:43:36.0459 0x09dc lmhosts - ok
12:43:36.0479 0x09dc [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
12:43:36.0494 0x09dc LMIGuardianSvc - ok
12:43:36.0517 0x09dc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:43:36.0529 0x09dc LSI_FC - ok
12:43:36.0551 0x09dc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:43:36.0563 0x09dc LSI_SAS - ok
12:43:36.0582 0x09dc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
12:43:36.0594 0x09dc LSI_SAS2 - ok
12:43:36.0616 0x09dc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:43:36.0627 0x09dc LSI_SCSI - ok
12:43:36.0635 0x09dc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
12:43:36.0661 0x09dc luafv - ok
12:43:36.0681 0x09dc [ 0C85B2B6FB74B36A251792D45E0EF860, 2E04204560C1159ABC25F273B0B7F81FDF9BA5E88C17929FD924C4E945DE5020 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
12:43:36.0698 0x09dc LVRS64 - ok
12:43:36.0715 0x09dc [ C06234DCDB1BFC0CF7E25CFAC5B7F5FE, 149A3880E1D58CC0768A174DF4E884F3A4432F935D134B5AE536B7020788F5D5 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv.sys
12:43:36.0725 0x09dc ManyCam - ok
12:43:36.0757 0x09dc [ 88B3BADFB02BE4471655EAF88DDC7EBD, F38D69B80A7670F85A9692A01D2D71A54BB413346C3523726E59D1282D349B83 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
12:43:36.0767 0x09dc mcaudrv_simple - ok
12:43:36.0772 0x09dc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:43:36.0785 0x09dc Mcx2Svc - ok
12:43:36.0791 0x09dc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
12:43:36.0802 0x09dc megasas - ok
12:43:36.0809 0x09dc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
12:43:36.0825 0x09dc MegaSR - ok
12:43:36.0830 0x09dc [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
12:43:36.0841 0x09dc MEIx64 - ok
12:43:36.0845 0x09dc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
12:43:36.0870 0x09dc MMCSS - ok
12:43:36.0874 0x09dc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
12:43:36.0899 0x09dc Modem - ok
12:43:36.0910 0x09dc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:43:36.0922 0x09dc monitor - ok
12:43:36.0932 0x09dc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:43:36.0942 0x09dc mouclass - ok
12:43:36.0955 0x09dc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:43:36.0967 0x09dc mouhid - ok
12:43:36.0975 0x09dc [ 87BCD1034CBF33537D4D4C251D39BA26, CB9DD235B62B79383F99873D75E26EEA5EE7914CA89E4B75992207F83420437F ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:43:36.0987 0x09dc mountmgr - ok
12:43:37.0017 0x09dc [ C61EE1594B023725B77915F79E656618, A4AD1952E16C7D2A5BC03E6C339BE0B08165A3231443B6A883E5868FBE13E31F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:43:37.0028 0x09dc MozillaMaintenance - ok
12:43:37.0044 0x09dc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
12:43:37.0057 0x09dc mpio - ok
12:43:37.0062 0x09dc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:43:37.0088 0x09dc mpsdrv - ok
12:43:37.0111 0x09dc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:43:37.0151 0x09dc MpsSvc - ok
12:43:37.0158 0x09dc [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:43:37.0172 0x09dc MRxDAV - ok
12:43:37.0178 0x09dc [ 1877EB1495CFBDAB27D6A32F6DDF3818, 3818055C66AB12A335A905CFFE5D05347F15AE488861C5C183E62E8E0881DA86 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:43:37.0192 0x09dc mrxsmb - ok
12:43:37.0201 0x09dc [ 21AF322605D8C7F2A627C22634D1C9C9, 6B783F95D093FEFB260EA9568926BBB3CB8ED0783184DB3A18733E211933BADD ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:43:37.0240 0x09dc mrxsmb10 - ok
12:43:37.0246 0x09dc [ 45A03A0B6461EFBEE77E0A6AC2816EDA, CFB0C11387F2EC49FD6B69EF747962114EBA6F8B4B4DEC3627E9E969775C4D7E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:43:37.0263 0x09dc mrxsmb20 - ok
12:43:37.0287 0x09dc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
12:43:37.0297 0x09dc msahci - ok
12:43:37.0307 0x09dc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:43:37.0320 0x09dc msdsm - ok
12:43:37.0342 0x09dc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
12:43:37.0368 0x09dc MSDTC - ok
12:43:37.0395 0x09dc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:43:37.0439 0x09dc Msfs - ok
12:43:37.0461 0x09dc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:43:37.0486 0x09dc mshidkmdf - ok
12:43:37.0490 0x09dc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:43:37.0500 0x09dc msisadrv - ok
12:43:37.0533 0x09dc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:43:37.0567 0x09dc MSiSCSI - ok
12:43:37.0570 0x09dc msiserver - ok
12:43:37.0573 0x09dc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:43:37.0598 0x09dc MSKSSRV - ok
12:43:37.0605 0x09dc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:43:37.0630 0x09dc MSPCLOCK - ok
12:43:37.0634 0x09dc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:43:37.0659 0x09dc MSPQM - ok
12:43:37.0686 0x09dc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:43:37.0701 0x09dc MsRPC - ok
12:43:37.0710 0x09dc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:43:37.0720 0x09dc mssmbios - ok
12:43:37.0744 0x09dc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:43:37.0770 0x09dc MSTEE - ok
12:43:37.0774 0x09dc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
12:43:37.0795 0x09dc MTConfig - ok
12:43:37.0818 0x09dc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
12:43:37.0828 0x09dc Mup - ok
12:43:37.0840 0x09dc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
12:43:37.0891 0x09dc napagent - ok
12:43:37.0921 0x09dc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:43:37.0942 0x09dc NativeWifiP - ok
12:43:38.0072 0x09dc [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
12:43:38.0096 0x09dc NDIS - ok
12:43:38.0101 0x09dc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:43:38.0126 0x09dc NdisCap - ok
12:43:38.0131 0x09dc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:43:38.0156 0x09dc NdisTapi - ok
12:43:38.0178 0x09dc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:43:38.0203 0x09dc Ndisuio - ok
12:43:38.0209 0x09dc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:43:38.0236 0x09dc NdisWan - ok
12:43:38.0257 0x09dc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:43:38.0281 0x09dc NDProxy - ok
12:43:38.0293 0x09dc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:43:38.0317 0x09dc NetBIOS - ok
12:43:38.0328 0x09dc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:43:38.0354 0x09dc NetBT - ok
12:43:38.0369 0x09dc [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] Netlogon C:\Windows\system32\lsass.exe
12:43:38.0380 0x09dc Netlogon - ok
12:43:38.0455 0x09dc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
12:43:38.0506 0x09dc Netman - ok
12:43:38.0513 0x09dc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:43:38.0528 0x09dc NetMsmqActivator - ok
12:43:38.0533 0x09dc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:43:38.0545 0x09dc NetPipeActivator - ok
12:43:38.0618 0x09dc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
12:43:38.0705 0x09dc netprofm - ok
12:43:38.0712 0x09dc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:43:38.0729 0x09dc NetTcpActivator - ok
12:43:38.0735 0x09dc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:43:38.0752 0x09dc NetTcpPortSharing - ok
12:43:38.0772 0x09dc [ 81B0BB24141E5A0AA3628E263D4C1010, B8AD759322E2390DFA97FEFC0F4BB1D19093F8C7EC28208D1B5AB1381801FF90 ] networx C:\Windows\system32\drivers\networx.sys
12:43:38.0782 0x09dc networx - ok
12:43:38.0801 0x09dc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:43:38.0812 0x09dc nfrd960 - ok
12:43:38.0825 0x09dc [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
12:43:38.0841 0x09dc NlaSvc - ok
12:43:38.0849 0x09dc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:43:38.0873 0x09dc Npfs - ok
12:43:38.0878 0x09dc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
12:43:38.0902 0x09dc nsi - ok
12:43:38.0906 0x09dc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:43:38.0930 0x09dc nsiproxy - ok
12:43:38.0972 0x09dc [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:43:39.0007 0x09dc Ntfs - ok
12:43:39.0024 0x09dc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
12:43:39.0048 0x09dc Null - ok
12:43:39.0081 0x09dc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:43:39.0094 0x09dc nvraid - ok
12:43:39.0118 0x09dc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:43:39.0132 0x09dc nvstor - ok
12:43:39.0155 0x09dc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:43:39.0168 0x09dc nv_agp - ok
12:43:39.0174 0x09dc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:43:39.0187 0x09dc ohci1394 - ok
12:43:39.0242 0x09dc [ FDB5AA8839B825196C43FC40EA835C2F, 8F7CB29D39451FC415BD913E57BE395FECA750B5376372943052FE7390202FD9 ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
12:43:39.0270 0x09dc OverwolfUpdater - ok
12:43:39.0281 0x09dc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:43:39.0299 0x09dc p2pimsvc - ok
12:43:39.0318 0x09dc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
12:43:39.0340 0x09dc p2psvc - ok
12:43:39.0346 0x09dc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:43:39.0359 0x09dc Parport - ok
12:43:39.0375 0x09dc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:43:39.0386 0x09dc partmgr - ok
12:43:39.0393 0x09dc [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:43:39.0409 0x09dc PcaSvc - ok
12:43:39.0427 0x09dc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
12:43:39.0439 0x09dc pci - ok
12:43:39.0444 0x09dc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
12:43:39.0454 0x09dc pciide - ok
12:43:39.0478 0x09dc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:43:39.0492 0x09dc pcmcia - ok
12:43:39.0515 0x09dc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
12:43:39.0525 0x09dc pcw - ok
12:43:39.0540 0x09dc [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:43:39.0581 0x09dc PEAUTH - ok
12:43:39.0631 0x09dc [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
12:43:39.0671 0x09dc PeerDistSvc - ok
12:43:39.0695 0x09dc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:43:39.0707 0x09dc PerfHost - ok
12:43:39.0892 0x09dc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
12:43:40.0071 0x09dc pla - ok
12:43:40.0102 0x09dc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:43:40.0121 0x09dc PlugPlay - ok
12:43:40.0126 0x09dc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:43:40.0138 0x09dc PNRPAutoReg - ok
12:43:40.0148 0x09dc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:43:40.0174 0x09dc PNRPsvc - ok
12:43:40.0186 0x09dc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:43:40.0238 0x09dc PolicyAgent - ok
12:43:40.0248 0x09dc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
12:43:40.0274 0x09dc Power - ok
12:43:40.0280 0x09dc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:43:40.0305 0x09dc PptpMiniport - ok
12:43:40.0309 0x09dc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
12:43:40.0322 0x09dc Processor - ok
12:43:40.0329 0x09dc [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
12:43:40.0344 0x09dc ProfSvc - ok
12:43:40.0353 0x09dc [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] ProtectedStorage C:\Windows\system32\lsass.exe
12:43:40.0365 0x09dc ProtectedStorage - ok
12:43:40.0372 0x09dc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:43:40.0396 0x09dc Psched - ok
12:43:40.0442 0x09dc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:43:40.0479 0x09dc ql2300 - ok
12:43:40.0493 0x09dc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:43:40.0505 0x09dc ql40xx - ok
12:43:40.0513 0x09dc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
12:43:40.0532 0x09dc QWAVE - ok
12:43:40.0536 0x09dc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:43:40.0551 0x09dc QWAVEdrv - ok
12:43:40.0555 0x09dc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:43:40.0601 0x09dc RasAcd - ok
12:43:40.0628 0x09dc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:43:40.0653 0x09dc RasAgileVpn - ok
12:43:40.0658 0x09dc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
12:43:40.0685 0x09dc RasAuto - ok
12:43:40.0690 0x09dc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:43:40.0716 0x09dc Rasl2tp - ok
12:43:40.0731 0x09dc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
12:43:40.0761 0x09dc RasMan - ok
12:43:40.0773 0x09dc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:43:40.0799 0x09dc RasPppoe - ok
12:43:40.0804 0x09dc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:43:40.0829 0x09dc RasSstp - ok
12:43:40.0842 0x09dc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:43:40.0887 0x09dc rdbss - ok
12:43:40.0891 0x09dc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:43:40.0904 0x09dc rdpbus - ok
12:43:40.0925 0x09dc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:43:40.0948 0x09dc RDPCDD - ok
12:43:40.0958 0x09dc [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:43:40.0972 0x09dc RDPDR - ok
12:43:40.0993 0x09dc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:43:41.0017 0x09dc RDPENCDD - ok
12:43:41.0025 0x09dc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:43:41.0048 0x09dc RDPREFMP - ok
12:43:41.0119 0x09dc [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:43:41.0225 0x09dc RDPWD - ok
12:43:41.0296 0x09dc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:43:41.0332 0x09dc rdyboost - ok
12:43:41.0343 0x09dc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:43:41.0374 0x09dc RemoteAccess - ok
12:43:41.0399 0x09dc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:43:41.0426 0x09dc RemoteRegistry - ok
12:43:41.0434 0x09dc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:43:41.0482 0x09dc RpcEptMapper - ok
12:43:41.0486 0x09dc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
12:43:41.0499 0x09dc RpcLocator - ok
12:43:41.0531 0x09dc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
12:43:41.0562 0x09dc RpcSs - ok
12:43:41.0568 0x09dc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:43:41.0593 0x09dc rspndr - ok
12:43:41.0597 0x09dc [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
12:43:41.0608 0x09dc s3cap - ok
12:43:41.0619 0x09dc [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] SamSs C:\Windows\system32\lsass.exe
12:43:41.0631 0x09dc SamSs - ok
12:43:41.0645 0x09dc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:43:41.0687 0x09dc sbp2port - ok
12:43:41.0700 0x09dc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:43:41.0729 0x09dc SCardSvr - ok
12:43:41.0734 0x09dc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:43:41.0758 0x09dc scfilter - ok
12:43:41.0784 0x09dc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
12:43:41.0829 0x09dc Schedule - ok
12:43:41.0835 0x09dc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:43:41.0859 0x09dc SCPolicySvc - ok
12:43:41.0866 0x09dc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:43:41.0881 0x09dc SDRSVC - ok
12:43:41.0888 0x09dc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:43:41.0911 0x09dc secdrv - ok
12:43:41.0916 0x09dc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
12:43:41.0939 0x09dc seclogon - ok
12:43:41.0952 0x09dc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
12:43:41.0976 0x09dc SENS - ok
12:43:41.0981 0x09dc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:43:41.0992 0x09dc SensrSvc - ok
12:43:41.0997 0x09dc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:43:42.0009 0x09dc Serenum - ok
12:43:42.0025 0x09dc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:43:42.0037 0x09dc Serial - ok
12:43:42.0055 0x09dc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:43:42.0066 0x09dc sermouse - ok
12:43:42.0091 0x09dc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
12:43:42.0142 0x09dc SessionEnv - ok
12:43:42.0153 0x09dc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:43:42.0167 0x09dc sffdisk - ok
12:43:42.0171 0x09dc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:43:42.0184 0x09dc sffp_mmc - ok
12:43:42.0188 0x09dc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:43:42.0201 0x09dc sffp_sd - ok
12:43:42.0212 0x09dc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:43:42.0224 0x09dc sfloppy - ok
12:43:42.0274 0x09dc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:43:42.0304 0x09dc SharedAccess - ok
12:43:42.0316 0x09dc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:43:42.0346 0x09dc ShellHWDetection - ok
12:43:42.0360 0x09dc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
12:43:42.0371 0x09dc SiSRaid2 - ok
12:43:42.0376 0x09dc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:43:42.0387 0x09dc SiSRaid4 - ok
12:43:42.0425 0x09dc [ 0B70786BD1062CD4C6B58E412B9C3E55, 60ED027642FFF97BFFA55AE3EFFCCBB6D6AD8196D35E9ED06F9AF431E3C0402A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:43:42.0442 0x09dc SkypeUpdate - ok
12:43:42.0449 0x09dc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:43:42.0475 0x09dc Smb - ok
12:43:42.0486 0x09dc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:43:42.0499 0x09dc SNMPTRAP - ok
12:43:42.0527 0x09dc [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys
12:43:42.0538 0x09dc speedfan - ok
12:43:42.0548 0x09dc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
12:43:42.0557 0x09dc spldr - ok
12:43:42.0572 0x09dc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
12:43:42.0594 0x09dc Spooler - ok
12:43:42.0658 0x09dc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
12:43:42.0732 0x09dc sppsvc - ok
12:43:42.0740 0x09dc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:43:42.0767 0x09dc sppuinotify - ok
12:43:42.0780 0x09dc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:43:42.0799 0x09dc srv - ok
12:43:42.0811 0x09dc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:43:42.0829 0x09dc srv2 - ok
12:43:42.0853 0x09dc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:43:42.0868 0x09dc srvnet - ok
12:43:42.0876 0x09dc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:43:42.0904 0x09dc SSDPSRV - ok
12:43:42.0914 0x09dc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:43:42.0941 0x09dc SstpSvc - ok
12:43:42.0989 0x09dc [ 7AE700179C4839F657D245319E234A06, 6EAEFE4A8CAF1A70F1BAD4DD457C6AEC080839542D4E5582376489800BE52E89 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:43:43.0013 0x09dc Steam Client Service - ok
12:43:43.0019 0x09dc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
12:43:43.0029 0x09dc stexstor - ok
12:43:43.0069 0x09dc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
12:43:43.0093 0x09dc stisvc - ok
12:43:43.0110 0x09dc [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
12:43:43.0120 0x09dc storflt - ok
12:43:43.0138 0x09dc [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
12:43:43.0216 0x09dc StorSvc - ok
12:43:43.0239 0x09dc [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
12:43:43.0256 0x09dc storvsc - ok
12:43:43.0263 0x09dc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:43:43.0302 0x09dc swenum - ok
12:43:43.0322 0x09dc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
12:43:43.0366 0x09dc swprv - ok
12:43:43.0408 0x09dc [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
12:43:43.0454 0x09dc SysMain - ok
12:43:43.0461 0x09dc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:43:43.0477 0x09dc TabletInputService - ok
12:43:43.0511 0x09dc [ 84CA1EEF6A8A5AE5D5603BBC8ED83FCD, 1C30E026C5ACA703C1EB8164C29CC69FA4D3F3B563C22981F76E872E4CB7CECF ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
12:43:43.0552 0x09dc tap0901 - ok
12:43:43.0562 0x09dc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
12:43:43.0592 0x09dc TapiSrv - ok
12:43:43.0598 0x09dc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
12:43:43.0623 0x09dc TBS - ok
12:43:43.0666 0x09dc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:43:43.0702 0x09dc Tcpip - ok
12:43:43.0739 0x09dc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:43:43.0775 0x09dc TCPIP6 - ok
12:43:43.0784 0x09dc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:43:43.0797 0x09dc tcpipreg - ok
12:43:43.0804 0x09dc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:43:43.0816 0x09dc TDPIPE - ok
12:43:43.0821 0x09dc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:43:43.0832 0x09dc TDTCP - ok
12:43:43.0847 0x09dc [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:43:43.0859 0x09dc tdx - ok
12:43:43.0881 0x09dc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:43:43.0891 0x09dc TermDD - ok
12:43:43.0923 0x09dc [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
12:43:43.0948 0x09dc TermService - ok
12:43:43.0953 0x09dc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
12:43:43.0970 0x09dc Themes - ok
12:43:43.0975 0x09dc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
12:43:44.0001 0x09dc THREADORDER - ok
12:43:44.0007 0x09dc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
12:43:44.0033 0x09dc TrkWks - ok
12:43:44.0079 0x09dc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:43:44.0127 0x09dc TrustedInstaller - ok
12:43:44.0145 0x09dc [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:43:44.0157 0x09dc tssecsrv - ok
12:43:44.0172 0x09dc [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:43:44.0185 0x09dc TsUsbFlt - ok
12:43:44.0207 0x09dc [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
12:43:44.0221 0x09dc TsUsbGD - ok
12:43:44.0228 0x09dc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:43:44.0253 0x09dc tunnel - ok
12:43:44.0269 0x09dc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:43:44.0280 0x09dc uagp35 - ok
12:43:44.0309 0x09dc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:43:44.0338 0x09dc udfs - ok
12:43:44.0350 0x09dc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:43:44.0363 0x09dc UI0Detect - ok
12:43:44.0368 0x09dc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:43:44.0379 0x09dc uliagpkx - ok
12:43:44.0385 0x09dc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:43:44.0397 0x09dc umbus - ok
12:43:44.0402 0x09dc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
12:43:44.0414 0x09dc UmPass - ok
12:43:44.0422 0x09dc [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
12:43:44.0438 0x09dc UmRdpService - ok
12:43:44.0450 0x09dc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
12:43:44.0481 0x09dc upnphost - ok
12:43:44.0514 0x09dc [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
12:43:44.0527 0x09dc USBAAPL64 - ok
12:43:44.0547 0x09dc [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:43:44.0560 0x09dc usbaudio - ok
12:43:44.0567 0x09dc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:43:44.0579 0x09dc usbccgp - ok
12:43:44.0590 0x09dc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:43:44.0603 0x09dc usbcir - ok
12:43:44.0637 0x09dc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:43:44.0706 0x09dc usbehci - ok
12:43:44.0724 0x09dc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:43:44.0753 0x09dc usbhub - ok
12:43:44.0760 0x09dc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:43:44.0773 0x09dc usbohci - ok
12:43:44.0787 0x09dc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:43:44.0801 0x09dc usbprint - ok
12:43:44.0821 0x09dc [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
12:43:44.0833 0x09dc usbscan - ok
12:43:44.0839 0x09dc [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:43:44.0851 0x09dc USBSTOR - ok
12:43:44.0861 0x09dc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:43:44.0873 0x09dc usbuhci - ok
12:43:44.0903 0x09dc [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
12:43:44.0918 0x09dc usbvideo - ok
12:43:44.0934 0x09dc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
12:43:44.0958 0x09dc UxSms - ok
12:43:44.0986 0x09dc [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] VaultSvc C:\Windows\system32\lsass.exe
12:43:44.0998 0x09dc VaultSvc - ok
12:43:45.0006 0x09dc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:43:45.0017 0x09dc vdrvroot - ok
12:43:45.0043 0x09dc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
12:43:45.0076 0x09dc vds - ok
12:43:45.0091 0x09dc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:43:45.0104 0x09dc vga - ok
12:43:45.0114 0x09dc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:43:45.0137 0x09dc VgaSave - ok
12:43:45.0168 0x09dc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:43:45.0182 0x09dc vhdmp - ok
12:43:45.0187 0x09dc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
12:43:45.0197 0x09dc viaide - ok
12:43:45.0206 0x09dc [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
12:43:45.0219 0x09dc vmbus - ok
12:43:45.0225 0x09dc [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
12:43:45.0236 0x09dc VMBusHID - ok
12:43:45.0260 0x09dc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:43:45.0270 0x09dc volmgr - ok
12:43:45.0289 0x09dc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:43:45.0304 0x09dc volmgrx - ok
12:43:45.0317 0x09dc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:43:45.0331 0x09dc volsnap - ok
12:43:45.0362 0x09dc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:43:45.0377 0x09dc vsmraid - ok
12:43:45.0606 0x09dc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
12:43:45.0669 0x09dc VSS - ok
12:43:45.0675 0x09dc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
12:43:45.0688 0x09dc vwifibus - ok
12:43:45.0703 0x09dc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
12:43:45.0745 0x09dc W32Time - ok
12:43:45.0754 0x09dc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:43:45.0765 0x09dc WacomPen - ok
12:43:45.0782 0x09dc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:43:45.0807 0x09dc WANARP - ok
12:43:45.0813 0x09dc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:43:45.0838 0x09dc Wanarpv6 - ok
12:43:45.0887 0x09dc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
12:43:45.0926 0x09dc wbengine - ok
12:43:45.0946 0x09dc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:43:45.0964 0x09dc WbioSrvc - ok
12:43:45.0976 0x09dc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:43:45.0998 0x09dc wcncsvc - ok
12:43:46.0018 0x09dc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:43:46.0031 0x09dc WcsPlugInService - ok
12:43:46.0046 0x09dc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
12:43:46.0057 0x09dc Wd - ok
12:43:46.0076 0x09dc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:43:46.0102 0x09dc Wdf01000 - ok
12:43:46.0121 0x09dc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:43:46.0135 0x09dc WdiServiceHost - ok
12:43:46.0140 0x09dc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:43:46.0153 0x09dc WdiSystemHost - ok
12:43:46.0163 0x09dc [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
12:43:46.0180 0x09dc WebClient - ok
12:43:46.0197 0x09dc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:43:46.0226 0x09dc Wecsvc - ok
12:43:46.0236 0x09dc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:43:46.0261 0x09dc wercplsupport - ok
12:43:46.0326 0x09dc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
12:43:46.0371 0x09dc WerSvc - ok
12:43:46.0377 0x09dc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:43:46.0402 0x09dc WfpLwf - ok
12:43:46.0407 0x09dc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:43:46.0418 0x09dc WIMMount - ok
12:43:46.0422 0x09dc WinDefend - ok
12:43:46.0434 0x09dc WinHttpAutoProxySvc - ok
12:43:46.0477 0x09dc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:43:46.0506 0x09dc Winmgmt - ok
12:43:46.0555 0x09dc [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
12:43:46.0602 0x09dc WinRM - ok
12:43:46.0617 0x09dc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:43:46.0631 0x09dc WinUsb - ok
12:43:46.0749 0x09dc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:43:46.0823 0x09dc Wlansvc - ok
12:43:46.0918 0x09dc [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:43:46.0959 0x09dc wlidsvc - ok
12:43:46.0966 0x09dc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:43:46.0977 0x09dc WmiAcpi - ok
12:43:46.0991 0x09dc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:43:47.0027 0x09dc wmiApSrv - ok
12:43:47.0043 0x09dc WMPNetworkSvc - ok
12:43:47.0048 0x09dc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:43:47.0061 0x09dc WPCSvc - ok
12:43:47.0068 0x09dc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:43:47.0083 0x09dc WPDBusEnum - ok
12:43:47.0089 0x09dc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:43:47.0114 0x09dc ws2ifsl - ok
12:43:47.0137 0x09dc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
12:43:47.0159 0x09dc wscsvc - ok
12:43:47.0165 0x09dc WSearch - ok
12:43:47.0259 0x09dc [ AA3E844A2595B1AA5825C70CA50D963E, F9C7D64D9563CA5167EC9B0D957473B55C02E9456E041AE2CDA6ABFA9641D176 ] wuauserv C:\Windows\system32\wuaueng.dll
12:43:47.0329 0x09dc wuauserv - ok
12:43:47.0340 0x09dc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:43:47.0355 0x09dc WudfPf - ok
12:43:47.0373 0x09dc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:43:47.0390 0x09dc WUDFRd - ok
12:43:47.0404 0x09dc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:43:47.0419 0x09dc wudfsvc - ok
12:43:47.0430 0x09dc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
12:43:47.0448 0x09dc WwanSvc - ok
12:43:47.0455 0x09dc xhunter1 - ok
12:43:47.0476 0x09dc ================ Scan global ===============================
12:43:47.0489 0x09dc [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
12:43:47.0518 0x09dc [ 2313AF8D5A9CEB4A55400A01DD311A95, A5779FE967EA2703E86BEDC32CD736617AF278C72048228F038DFC628E1E0AA2 ] C:\Windows\system32\winsrv.dll
12:43:47.0528 0x09dc [ 2313AF8D5A9CEB4A55400A01DD311A95, A5779FE967EA2703E86BEDC32CD736617AF278C72048228F038DFC628E1E0AA2 ] C:\Windows\system32\winsrv.dll
12:43:47.0544 0x09dc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:43:47.0559 0x09dc [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
12:43:47.0565 0x09dc [ Global ] - ok
12:43:47.0566 0x09dc ================ Scan MBR ==================================
12:43:47.0577 0x09dc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:43:49.0436 0x09dc \Device\Harddisk0\DR0 - ok
12:43:49.0437 0x09dc ================ Scan VBR ==================================
12:43:49.0440 0x09dc [ B1F3ECFAA5C82FBAF4BD335F492E4E22 ] \Device\Harddisk0\DR0\Partition1
12:43:49.0488 0x09dc \Device\Harddisk0\DR0\Partition1 - ok
12:43:49.0489 0x09dc ================ Scan generic autorun ======================
12:43:49.0804 0x09dc [ 8000585FDD9943673CDB53EAF5A56D8E, CC8CA3397D57E835A0785D6819F00E17025132BE8241F7F2CE2E7FDFA369B055 ] c:\program files (x86)\emsisoft internet security\a2guard.exe
12:43:49.0886 0x09dc emsisoft anti-malware - ok
12:43:49.0932 0x09dc [ ED13374E76D833772A687EA3594C1120, 3A2A0C41DED8555ACEB9CAAE7F9C0053B11CEE1877B06D993BDCA0E491DB6CE6 ] C:\Program Files (x86)\Drakonia Configurator\hid.exe
12:43:49.0938 0x09dc GamingMouse - detected UnsignedFile.Multi.Generic ( 1 )
12:43:52.0482 0x09dc GamingMouse ( UnsignedFile.Multi.Generic ) - warning
12:43:52.0482 0x09dc Force sending object to P2P due to detect: C:\Program Files (x86)\Drakonia Configurator\hid.exe
12:43:55.0208 0x09dc Object send P2P result: true
12:43:57.0746 0x09dc [ 4F9DD96AECDC12373D4203253D665C6D, 871FF2367ACD5F9A378FED53574BF28A8129224C4B7C4AF074809ED7CF870904 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
12:43:57.0777 0x09dc SunJavaUpdateSched - ok
12:43:57.0844 0x09dc [ 299EDE8BBC229B7FA0BC0369BAE8CA2E, 788C06C7EDDDC0687A4137BDA00D320146425768960066FCBE0391BE7DBC2280 ] C:\Program Files (x86)\Raptr\raptrstub.exe
12:43:57.0878 0x09dc Raptr - ok
12:43:58.0031 0x09dc [ DF7E805A93829EC42A16F203B8AD8B9F, BE1A311B9C63B3D32E40D3F01716D3CCA2C84004755EF7834671046648894D29 ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
12:43:58.0050 0x09dc StartCCC - ok
12:43:58.0092 0x09dc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:43:58.0124 0x09dc Sidebar - ok
12:43:58.0127 0x09dc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:43:58.0142 0x09dc mctadmin - ok
12:43:58.0162 0x09dc [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:43:58.0189 0x09dc Sidebar - ok
12:43:58.0192 0x09dc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:43:58.0208 0x09dc mctadmin - ok
12:43:58.0338 0x09dc [ C76FD76E54B41B4BC33CB320D2594B57, 9EBDBB933ACA8AE14D97EE81A479085D489DA3F078137A66B070DF8E49EF158C ] C:\Users\Lars\AppData\Roaming\Spotify\SpotifyWebHelper.exe
12:43:58.0376 0x09dc Spotify Web Helper - ok
12:43:58.0534 0x09dc [ 55A226BAB08DF9A47DF6C96848D51C16, C50FCD2F9AA4D3C49AE7D9D0E9D4145ABF61F84A627A78B1A0E66BF0731CCBFC ] C:\Users\Lars\AppData\Roaming\Spotify\Spotify.exe
12:43:58.0650 0x09dc Spotify - ok
12:43:58.0712 0x09dc Skype - ok
12:43:58.0891 0x09dc [ 47DBCC66CF9A3DCEF2D42051431160D3, 5E99CB8333471E80590AED8CA139EF859AD617D1C7BD9406913A86016DCA08F6 ] C:\Program Files\CCleaner\CCleaner64.exe
12:43:59.0108 0x09dc CCleaner Monitoring - ok
12:43:59.0114 0x09dc Waiting for KSN requests completion. In queue: 10
12:44:00.0114 0x09dc Waiting for KSN requests completion. In queue: 10
12:44:01.0114 0x09dc Waiting for KSN requests completion. In queue: 10
12:44:02.0157 0x09dc AV detected via SS2: Emsisoft Internet Security, C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\a2start.exe ( 10.0.0.5561 ), 0x41000 ( enabled : updated )
12:44:02.0159 0x09dc FW detected via SS2: Emsisoft Internet Security, C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\a2start.exe ( 10.0.0.5561 ), 0x41010 ( enabled )
12:44:04.0682 0x09dc ============================================================
12:44:04.0682 0x09dc Scan finished
12:44:04.0682 0x09dc ============================================================
12:44:04.0686 0x0bd8 Detected object count: 2
12:44:04.0686 0x0bd8 Actual detected object count: 2
12:45:00.0757 0x0bd8 C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe - copied to quarantine
12:45:00.0769 0x0bd8 HKLM\SYSTEM\ControlSet001\services\amdacpusrsvc - will be deleted on reboot
12:45:00.0787 0x0bd8 HKLM\SYSTEM\ControlSet002\services\amdacpusrsvc - will be deleted on reboot
12:45:00.0943 0x0bd8 C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe - will be deleted on reboot
12:45:00.0943 0x0bd8 amdacpusrsvc ( UnsignedFile.Multi.Generic ) - User select action: Delete
12:45:00.0981 0x0bd8 C:\Program Files (x86)\Drakonia Configurator\hid.exe - copied to quarantine
12:45:00.0992 0x0bd8 HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run:GamingMouse - will be deleted on reboot
12:45:00.0992 0x0bd8 C:\Program Files (x86)\Drakonia Configurator\hid.exe - will be deleted on reboot
12:45:00.0992 0x0bd8 GamingMouse ( UnsignedFile.Multi.Generic ) - User select action: Delete
12:45:01.0864 0x0bd8 KLMD registered as C:\Windows\system32\drivers\59687619.sys
12:53:15.0120 0x0c70 Deinitialize success
|
|
31.07.2015, 12:01
| #4 |
| | Systemunterbrechungen sehr hohe CPU Last TDSSKILLER 2. Code:
ATTFilter 12:54:46.0369 0x0d58 TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
12:54:48.0382 0x0d58 ============================================================
12:54:48.0382 0x0d58 Current date / time: 2015/07/31 12:54:48.0382
12:54:48.0382 0x0d58 SystemInfo:
12:54:48.0382 0x0d58
12:54:48.0382 0x0d58 OS Version: 6.1.7601 ServicePack: 1.0
12:54:48.0382 0x0d58 Product type: Workstation
12:54:48.0382 0x0d58 ComputerName: LARS-PC
12:54:48.0382 0x0d58 UserName: Lars
12:54:48.0382 0x0d58 Windows directory: C:\Windows
12:54:48.0382 0x0d58 System windows directory: C:\Windows
12:54:48.0382 0x0d58 Running under WOW64
12:54:48.0382 0x0d58 Processor architecture: Intel x64
12:54:48.0382 0x0d58 Number of processors: 8
12:54:48.0382 0x0d58 Page size: 0x1000
12:54:48.0382 0x0d58 Boot type: Normal boot
12:54:48.0382 0x0d58 ============================================================
12:54:48.0382 0x0d58 BG loaded
12:54:49.0302 0x0d58 System UUID: {22504BDC-ED52-D832-1105-B012CC4E8831}
12:54:49.0536 0x0d58 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:54:49.0536 0x0d58 ============================================================
12:54:49.0536 0x0d58 \Device\Harddisk0\DR0:
12:54:49.0536 0x0d58 MBR partitions:
12:54:49.0536 0x0d58 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
12:54:49.0536 0x0d58 ============================================================
12:54:49.0536 0x0d58 C: <-> \Device\Harddisk0\DR0\Partition1
12:54:49.0536 0x0d58 ============================================================
12:54:49.0536 0x0d58 Initialize success
12:54:49.0536 0x0d58 ============================================================
12:54:56.0723 0x0664 ============================================================
12:54:56.0723 0x0664 Scan started
12:54:56.0723 0x0664 Mode: Manual; SigCheck; TDLFS;
12:54:56.0723 0x0664 ============================================================
12:54:56.0723 0x0664 KSN ping started
12:55:17.0783 0x0664 KSN ping finished: true
12:55:23.0855 0x0664 ================ Scan system memory ========================
12:55:23.0855 0x0664 System memory - ok
12:55:23.0856 0x0664 ================ Scan services =============================
12:55:24.0077 0x0664 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:55:24.0147 0x0664 1394ohci - ok
12:55:24.0590 0x0664 [ 134C00B35A5501EBFAD297BCC5600C38, D05C143E850D3315142375260E0FA865C9BD75445F52029BD98A29B9C9FFEDCF ] a2AntiMalware C:\Program Files (x86)\Emsisoft Internet Security\a2service.exe
12:55:24.0684 0x0664 a2AntiMalware - ok
12:55:24.0697 0x0664 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:55:24.0714 0x0664 ACPI - ok
12:55:24.0716 0x0664 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:55:24.0746 0x0664 AcpiPmi - ok
12:55:24.0763 0x0664 [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:55:24.0774 0x0664 AdobeARMservice - ok
12:55:24.0988 0x0664 [ 011BD8A49AF856E8A8EE32652D1CFC05, 7E45CD5ED185DFCA94069640C19D3079879FD1F3069873D0302ACC372F756F90 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:55:25.0010 0x0664 AdobeFlashPlayerUpdateSvc - ok
12:55:25.0028 0x0664 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:55:25.0052 0x0664 adp94xx - ok
12:55:25.0061 0x0664 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:55:25.0077 0x0664 adpahci - ok
12:55:25.0083 0x0664 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:55:25.0095 0x0664 adpu320 - ok
12:55:25.0099 0x0664 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:55:25.0112 0x0664 AeLookupSvc - ok
12:55:25.0124 0x0664 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
12:55:25.0348 0x0664 AFD - ok
12:55:25.0354 0x0664 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
12:55:25.0365 0x0664 agp440 - ok
12:55:25.0368 0x0664 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
12:55:25.0386 0x0664 ALG - ok
12:55:25.0389 0x0664 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
12:55:25.0400 0x0664 aliide - ok
12:55:25.0409 0x0664 [ 34662E949344FEC33B6FFDF56B854F9F, 3DC574737CCF12C61AA3A6C78F9DEC3272C69D5EF52C9C65DF4176498533D8EB ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:55:25.0426 0x0664 AMD External Events Utility - ok
12:55:25.0471 0x0664 [ 64BF5B89009CA81FA920AC62A53AEC12, 4A4C803518474B6F0F347801100C5F503D94617AB767A7FF4C7BAA6CF20D5850 ] amdacpksd C:\Windows\system32\drivers\amdacpksd.sys
12:55:25.0484 0x0664 amdacpksd - ok
12:55:25.0496 0x0664 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
12:55:25.0524 0x0664 amdide - ok
12:55:25.0540 0x0664 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:55:25.0555 0x0664 AmdK8 - ok
12:55:25.0997 0x0664 [ E0622DAC1B5EE02AB49F67585BEF13E2, BFD47C53045F4E2116DFACADD5891A45101692D350DA1DEDDAC3B512F4C8E9E0 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:55:26.0458 0x0664 amdkmdag - ok
12:55:26.0489 0x0664 [ 20B8412C9BA4C7664285718FA8BEFF1F, 388ED26F5E2451AA5C7E441697679A3554ED2B7AFF3969506766B9B666B5A9CA ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
12:55:26.0505 0x0664 amdkmdap - ok
12:55:26.0505 0x0664 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
12:55:26.0520 0x0664 AmdPPM - ok
12:55:26.0536 0x0664 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:55:26.0551 0x0664 amdsata - ok
12:55:26.0614 0x0664 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
12:55:26.0645 0x0664 amdsbs - ok
12:55:26.0645 0x0664 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:55:26.0661 0x0664 amdxata - ok
12:55:26.0661 0x0664 [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID C:\Windows\system32\drivers\appid.sys
12:55:26.0770 0x0664 AppID - ok
12:55:26.0770 0x0664 [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:55:26.0801 0x0664 AppIDSvc - ok
12:55:26.0817 0x0664 [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo C:\Windows\System32\appinfo.dll
12:55:26.0832 0x0664 Appinfo - ok
12:55:26.0832 0x0664 [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:55:26.0848 0x0664 Apple Mobile Device Service - ok
12:55:26.0895 0x0664 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
12:55:26.0941 0x0664 AppMgmt - ok
12:55:26.0941 0x0664 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
12:55:26.0957 0x0664 arc - ok
12:55:26.0973 0x0664 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:55:26.0988 0x0664 arcsas - ok
12:55:27.0129 0x0664 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:55:27.0269 0x0664 aspnet_state - ok
12:55:27.0285 0x0664 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:55:28.0767 0x0664 AsyncMac - ok
12:55:28.0767 0x0664 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
12:55:28.0782 0x0664 atapi - ok
12:55:28.0829 0x0664 [ ED38B8924DE8C806A2A1C12C4F61E9CF, 88B71426CF09A8458B1AE2DDF41F2C86FE9B4DDA742D22BFF8AF110915486DDA ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
12:55:28.0860 0x0664 AtiHDAudioService - ok
12:55:28.0891 0x0664 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:55:28.0923 0x0664 AudioEndpointBuilder - ok
12:55:28.0938 0x0664 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:55:28.0954 0x0664 AudioSrv - ok
12:55:28.0969 0x0664 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:55:29.0500 0x0664 AxInstSV - ok
12:55:29.0531 0x0664 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
12:55:29.0547 0x0664 b06bdrv - ok
12:55:29.0547 0x0664 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:55:29.0578 0x0664 b57nd60a - ok
12:55:29.0593 0x0664 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
12:55:29.0609 0x0664 BDESVC - ok
12:55:29.0609 0x0664 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
12:55:29.0671 0x0664 Beep - ok
12:55:29.0703 0x0664 [ 56805606D40B1EC96AE8442E21318C13, 3CBCB50EA8D2124B5E322D38F721670B4997F5F6865D3C7D5F819B9EF9620394 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
12:55:29.0734 0x0664 BEService - ok
12:55:29.0749 0x0664 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
12:55:29.0765 0x0664 BFE - ok
12:55:29.0781 0x0664 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
12:55:30.0639 0x0664 BITS - ok
12:55:30.0639 0x0664 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:55:30.0654 0x0664 blbdrive - ok
12:55:30.0670 0x0664 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:55:30.0685 0x0664 Bonjour Service - ok
12:55:30.0701 0x0664 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:55:30.0732 0x0664 bowser - ok
12:55:30.0732 0x0664 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
12:55:30.0748 0x0664 BrFiltLo - ok
12:55:30.0763 0x0664 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
12:55:30.0763 0x0664 BrFiltUp - ok
12:55:30.0779 0x0664 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
12:55:30.0795 0x0664 Browser - ok
12:55:30.0810 0x0664 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:55:30.0826 0x0664 Brserid - ok
12:55:30.0841 0x0664 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:55:30.0873 0x0664 BrSerWdm - ok
12:55:30.0873 0x0664 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:55:30.0888 0x0664 BrUsbMdm - ok
12:55:30.0904 0x0664 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:55:30.0904 0x0664 BrUsbSer - ok
12:55:30.0919 0x0664 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:55:30.0935 0x0664 BTHMODEM - ok
12:55:30.0951 0x0664 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
12:55:30.0966 0x0664 bthserv - ok
12:55:30.0982 0x0664 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:55:31.0029 0x0664 cdfs - ok
12:55:31.0060 0x0664 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:55:31.0075 0x0664 cdrom - ok
12:55:31.0091 0x0664 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
12:55:31.0122 0x0664 CertPropSvc - ok
12:55:31.0138 0x0664 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
12:55:31.0153 0x0664 circlass - ok
12:55:31.0169 0x0664 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
12:55:31.0185 0x0664 CLFS - ok
12:55:31.0216 0x0664 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:55:31.0231 0x0664 clr_optimization_v2.0.50727_32 - ok
12:55:31.0247 0x0664 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:55:31.0263 0x0664 clr_optimization_v2.0.50727_64 - ok
12:55:31.0309 0x0664 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:55:31.0450 0x0664 clr_optimization_v4.0.30319_32 - ok
12:55:31.0450 0x0664 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:55:31.0481 0x0664 clr_optimization_v4.0.30319_64 - ok
12:55:31.0512 0x0664 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
12:55:31.0543 0x0664 CmBatt - ok
12:55:31.0543 0x0664 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:55:31.0575 0x0664 cmdide - ok
12:55:31.0575 0x0664 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
12:55:31.0606 0x0664 CNG - ok
12:55:31.0606 0x0664 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
12:55:31.0606 0x0664 Compbatt - ok
12:55:31.0621 0x0664 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
12:55:31.0621 0x0664 CompositeBus - ok
12:55:31.0637 0x0664 COMSysApp - ok
12:55:31.0637 0x0664 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:55:31.0653 0x0664 crcdisk - ok
12:55:31.0653 0x0664 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:55:31.0668 0x0664 CryptSvc - ok
12:55:31.0684 0x0664 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
12:55:31.0731 0x0664 CSC - ok
12:55:31.0746 0x0664 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
12:55:31.0762 0x0664 CscService - ok
12:55:31.0777 0x0664 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:55:31.0809 0x0664 DcomLaunch - ok
12:55:31.0824 0x0664 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
12:55:31.0855 0x0664 defragsvc - ok
12:55:31.0855 0x0664 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:55:31.0887 0x0664 DfsC - ok
12:55:31.0887 0x0664 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:55:31.0933 0x0664 Dhcp - ok
12:55:31.0965 0x0664 [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack C:\Windows\system32\diagtrack.dll
12:55:31.0996 0x0664 DiagTrack - ok
12:55:32.0054 0x0664 [ E085B7FF07EDBD8F5D2A32E447A23E9F, 6A3D14C3CF3A5325BBF758612428A8C44E8C659A108CDA938AF60D1F5EF4039E ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
12:55:32.0091 0x0664 Disc Soft Lite Bus Service - ok
12:55:32.0095 0x0664 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
12:55:32.0122 0x0664 discache - ok
12:55:32.0126 0x0664 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
12:55:32.0140 0x0664 Disk - ok
12:55:32.0145 0x0664 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
12:55:32.0161 0x0664 dmvsc - ok
12:55:32.0166 0x0664 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:55:32.0182 0x0664 Dnscache - ok
12:55:32.0194 0x0664 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
12:55:32.0222 0x0664 dot3svc - ok
12:55:32.0229 0x0664 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
12:55:32.0254 0x0664 DPS - ok
12:55:32.0257 0x0664 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:55:32.0277 0x0664 drmkaud - ok
12:55:32.0280 0x0664 [ 496C3C6BC3D930D0960C9E75AA30F4A7, 3FE0E86DA8C2C6A990BB2F1B92C22BD3483882B8D69FF8025BB68A199362C234 ] dtlitescsibus C:\Windows\system32\DRIVERS\dtlitescsibus.sys
12:55:32.0289 0x0664 dtlitescsibus - ok
12:55:32.0310 0x0664 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:55:32.0333 0x0664 DXGKrnl - ok
12:55:32.0346 0x0664 [ CC2DE631888782989B27B775B09F6FCD, 911009FF41EE5B05EDD76950A696FA1631F93107BEE6CEB153EEB6EEFC8A922A ] e1dexpress C:\Windows\system32\DRIVERS\e1d62x64.sys
12:55:32.0361 0x0664 e1dexpress - ok
12:55:32.0363 0x0664 EagleX64 - ok
12:55:32.0368 0x0664 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
12:55:32.0392 0x0664 EapHost - ok
12:55:32.0782 0x0664 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
12:55:32.0888 0x0664 ebdrv - ok
12:55:32.0893 0x0664 [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] EFS C:\Windows\System32\lsass.exe
12:55:32.0942 0x0664 EFS - ok
12:55:33.0012 0x0664 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:55:33.0052 0x0664 ehRecvr - ok
12:55:33.0056 0x0664 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
12:55:33.0070 0x0664 ehSched - ok
12:55:33.0084 0x0664 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:55:33.0104 0x0664 elxstor - ok
12:55:33.0131 0x0664 [ 24F39BCF577CD56C25DDFF4AC6359399, DF5070A284EEC34A4C8452C77325FFAF4E1601F37C6C7C86AED70EE52BFE37A5 ] epp64 C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\epp64.sys
12:55:33.0142 0x0664 epp64 - ok
12:55:33.0145 0x0664 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:55:33.0157 0x0664 ErrDev - ok
12:55:33.0178 0x0664 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
12:55:33.0207 0x0664 EventSystem - ok
12:55:33.0216 0x0664 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
12:55:33.0245 0x0664 exfat - ok
12:55:33.0251 0x0664 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:55:33.0279 0x0664 fastfat - ok
12:55:33.0294 0x0664 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
12:55:33.0315 0x0664 Fax - ok
12:55:33.0320 0x0664 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
12:55:33.0341 0x0664 fdc - ok
12:55:33.0344 0x0664 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
12:55:33.0370 0x0664 fdPHost - ok
12:55:33.0374 0x0664 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
12:55:33.0397 0x0664 FDResPub - ok
12:55:33.0402 0x0664 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:55:33.0415 0x0664 FileInfo - ok
12:55:33.0419 0x0664 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:55:33.0444 0x0664 Filetrace - ok
12:55:33.0450 0x0664 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
12:55:33.0464 0x0664 flpydisk - ok
12:55:33.0473 0x0664 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:55:33.0487 0x0664 FltMgr - ok
12:55:33.0581 0x0664 [ E612E86FA15EA1EF9A52433A2743C447, 8A66164541D2EE2334B6DE3995C31138EA85E3A06BC7FD901E60D345E4E1E8A8 ] FontCache C:\Windows\system32\FntCache.dll
12:55:33.0611 0x0664 FontCache - ok
12:55:33.0636 0x0664 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:55:33.0648 0x0664 FontCache3.0.0.0 - ok
12:55:33.0656 0x0664 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:55:33.0669 0x0664 FsDepends - ok
12:55:33.0676 0x0664 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:55:33.0687 0x0664 Fs_Rec - ok
12:55:33.0715 0x0664 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:55:33.0730 0x0664 fvevol - ok
12:55:33.0743 0x0664 [ 947F4CC687B703C600AED8CEA2ADB5D6, 32B0AA7D504A4850531CEFFBEE45AFE702C84C362CEE8851AE5147E4C8EED56D ] fwndis C:\Windows\system32\DRIVERS\fwndis64.sys
12:55:33.0759 0x0664 fwndis - ok
12:55:33.0770 0x0664 [ 6C80168263C920F7461DB9C722B13F0C, 0CA7A90B24E1389F0E57996849A7C6FE6CEFAE08F06FD765B7DAD91517831035 ] fwwfp C:\Program Files (x86)\Emsisoft Internet Security\fwwfp764.sys
12:55:33.0786 0x0664 fwwfp - ok
12:55:33.0809 0x0664 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:55:33.0821 0x0664 gagp30kx - ok
12:55:33.0823 0x0664 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:55:33.0833 0x0664 GEARAspiWDM - ok
12:55:33.0849 0x0664 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
12:55:33.0881 0x0664 gpsvc - ok
12:55:33.0968 0x0664 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:55:33.0987 0x0664 gupdate - ok
12:55:33.0994 0x0664 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:55:34.0006 0x0664 gupdatem - ok
12:55:34.0029 0x0664 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
12:55:34.0039 0x0664 hamachi - ok
12:55:34.0747 0x0664 [ 3FF6FCC221F5128BE77B13BF523F2614, CAB9E7CDEA2EF36E986F2B690C1F19084B30E7F2C28E22A87BA9DBECDAD31F96 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
12:55:34.0790 0x0664 Hamachi2Svc - ok
12:55:34.0796 0x0664 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:55:34.0830 0x0664 hcw85cir - ok
12:55:34.0946 0x0664 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:55:34.0965 0x0664 HdAudAddService - ok
12:55:34.0972 0x0664 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:55:34.0988 0x0664 HDAudBus - ok
12:55:34.0991 0x0664 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
12:55:35.0003 0x0664 HidBatt - ok
12:55:35.0008 0x0664 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:55:35.0022 0x0664 HidBth - ok
12:55:35.0026 0x0664 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
12:55:35.0039 0x0664 HidIr - ok
12:55:35.0043 0x0664 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
12:55:35.0065 0x0664 hidserv - ok
12:55:35.0069 0x0664 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:55:35.0080 0x0664 HidUsb - ok
12:55:35.0085 0x0664 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:55:35.0139 0x0664 hkmsvc - ok
12:55:35.0146 0x0664 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:55:35.0162 0x0664 HomeGroupListener - ok
12:55:35.0168 0x0664 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:55:35.0184 0x0664 HomeGroupProvider - ok
12:55:35.0189 0x0664 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:55:35.0201 0x0664 HpSAMD - ok
12:55:35.0219 0x0664 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:55:35.0326 0x0664 HTTP - ok
12:55:35.0348 0x0664 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:55:35.0363 0x0664 hwpolicy - ok
12:55:35.0370 0x0664 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
12:55:35.0386 0x0664 i8042prt - ok
12:55:35.0399 0x0664 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:55:35.0418 0x0664 iaStorV - ok
12:55:35.0437 0x0664 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:55:35.0462 0x0664 idsvc - ok
12:55:35.0466 0x0664 IEEtwCollectorService - ok
12:55:35.0471 0x0664 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:55:35.0482 0x0664 iirsp - ok
12:55:35.0501 0x0664 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
12:55:35.0551 0x0664 IKEEXT - ok
12:55:35.0561 0x0664 [ B45D80667300D34BF043B421D5D9CD8E, 7481B67DE98CC1B77DFE6B7BBC97B9206E60A60D28A45EC083B9A5D3824202F2 ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
12:55:35.0573 0x0664 Intel(R) PROSet Monitoring Service - ok
12:55:35.0577 0x0664 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
12:55:35.0587 0x0664 intelide - ok
12:55:35.0591 0x0664 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:55:35.0603 0x0664 intelppm - ok
12:55:35.0607 0x0664 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:55:35.0631 0x0664 IPBusEnum - ok
12:55:35.0635 0x0664 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:55:35.0660 0x0664 IpFilterDriver - ok
12:55:35.0675 0x0664 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:55:35.0711 0x0664 iphlpsvc - ok
12:55:35.0716 0x0664 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:55:35.0730 0x0664 IPMIDRV - ok
12:55:35.0734 0x0664 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:55:35.0760 0x0664 IPNAT - ok
12:55:35.0775 0x0664 [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:55:35.0805 0x0664 iPod Service - ok
12:55:35.0809 0x0664 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:55:35.0850 0x0664 IRENUM - ok
12:55:35.0855 0x0664 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:55:35.0866 0x0664 isapnp - ok
12:55:35.0873 0x0664 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:55:35.0887 0x0664 iScsiPrt - ok
12:55:35.0891 0x0664 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:55:35.0901 0x0664 kbdclass - ok
12:55:35.0949 0x0664 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:55:35.0980 0x0664 kbdhid - ok
12:55:35.0983 0x0664 [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] KeyIso C:\Windows\system32\lsass.exe
12:55:35.0994 0x0664 KeyIso - ok
12:55:35.0999 0x0664 [ C0A6C3D6E02B61B5D100FE17306C276F, F57C7BCC39B30F1DF739D07B76BA18EB68D12D8D1BD13B6AC8DC712C29119495 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:55:36.0010 0x0664 KSecDD - ok
12:55:36.0016 0x0664 [ 7A7328E427694CC7244235C3BC299F80, 7FC2E1F3F93B3334C3A8961CA58B4F38524650F6D8DA9FFA1FB43E1A2B86B710 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:55:36.0028 0x0664 KSecPkg - ok
12:55:36.0124 0x0664 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:55:36.0182 0x0664 ksthunk - ok
12:55:36.0193 0x0664 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
12:55:36.0223 0x0664 KtmRm - ok
12:55:36.0232 0x0664 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:55:36.0257 0x0664 LanmanServer - ok
12:55:36.0262 0x0664 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:55:36.0285 0x0664 LanmanWorkstation - ok
12:55:36.0292 0x0664 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:55:36.0315 0x0664 lltdio - ok
12:55:36.0323 0x0664 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:55:36.0377 0x0664 lltdsvc - ok
12:55:36.0381 0x0664 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:55:36.0403 0x0664 lmhosts - ok
12:55:36.0418 0x0664 [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
12:55:36.0431 0x0664 LMIGuardianSvc - ok
12:55:36.0437 0x0664 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:55:36.0449 0x0664 LSI_FC - ok
12:55:36.0453 0x0664 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:55:36.0466 0x0664 LSI_SAS - ok
12:55:36.0469 0x0664 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
12:55:36.0479 0x0664 LSI_SAS2 - ok
12:55:36.0484 0x0664 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:55:36.0494 0x0664 LSI_SCSI - ok
12:55:36.0500 0x0664 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
12:55:36.0523 0x0664 luafv - ok
12:55:36.0534 0x0664 [ 0C85B2B6FB74B36A251792D45E0EF860, 2E04204560C1159ABC25F273B0B7F81FDF9BA5E88C17929FD924C4E945DE5020 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
12:55:36.0548 0x0664 LVRS64 - ok
12:55:36.0553 0x0664 [ C06234DCDB1BFC0CF7E25CFAC5B7F5FE, 149A3880E1D58CC0768A174DF4E884F3A4432F935D134B5AE536B7020788F5D5 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv.sys
12:55:36.0562 0x0664 ManyCam - ok
12:55:36.0570 0x0664 [ 88B3BADFB02BE4471655EAF88DDC7EBD, F38D69B80A7670F85A9692A01D2D71A54BB413346C3523726E59D1282D349B83 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
12:55:36.0578 0x0664 mcaudrv_simple - ok
12:55:36.0583 0x0664 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:55:36.0596 0x0664 Mcx2Svc - ok
12:55:36.0599 0x0664 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
12:55:36.0609 0x0664 megasas - ok
12:55:36.0617 0x0664 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
12:55:36.0632 0x0664 MegaSR - ok
12:55:36.0637 0x0664 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
12:55:36.0647 0x0664 MEIx64 - ok
12:55:36.0651 0x0664 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
12:55:36.0677 0x0664 MMCSS - ok
12:55:36.0680 0x0664 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
12:55:36.0703 0x0664 Modem - ok
12:55:36.0706 0x0664 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:55:36.0726 0x0664 monitor - ok
12:55:36.0730 0x0664 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:55:36.0740 0x0664 mouclass - ok
12:55:36.0743 0x0664 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:55:36.0754 0x0664 mouhid - ok
12:55:36.0758 0x0664 [ 87BCD1034CBF33537D4D4C251D39BA26, CB9DD235B62B79383F99873D75E26EEA5EE7914CA89E4B75992207F83420437F ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:55:36.0769 0x0664 mountmgr - ok
12:55:36.0776 0x0664 [ C61EE1594B023725B77915F79E656618, A4AD1952E16C7D2A5BC03E6C339BE0B08165A3231443B6A883E5868FBE13E31F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:55:36.0787 0x0664 MozillaMaintenance - ok
12:55:36.0793 0x0664 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
12:55:36.0806 0x0664 mpio - ok
12:55:36.0811 0x0664 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:55:36.0834 0x0664 mpsdrv - ok
12:55:36.0871 0x0664 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:55:36.0905 0x0664 MpsSvc - ok
12:55:36.0911 0x0664 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:55:36.0926 0x0664 MRxDAV - ok
12:55:36.0947 0x0664 [ 1877EB1495CFBDAB27D6A32F6DDF3818, 3818055C66AB12A335A905CFFE5D05347F15AE488861C5C183E62E8E0881DA86 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:55:37.0036 0x0664 mrxsmb - ok
12:55:37.0044 0x0664 [ 21AF322605D8C7F2A627C22634D1C9C9, 6B783F95D093FEFB260EA9568926BBB3CB8ED0783184DB3A18733E211933BADD ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:55:37.0059 0x0664 mrxsmb10 - ok
12:55:37.0098 0x0664 [ 45A03A0B6461EFBEE77E0A6AC2816EDA, CFB0C11387F2EC49FD6B69EF747962114EBA6F8B4B4DEC3627E9E969775C4D7E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:55:37.0112 0x0664 mrxsmb20 - ok
12:55:37.0116 0x0664 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
12:55:37.0127 0x0664 msahci - ok
12:55:37.0133 0x0664 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:55:37.0145 0x0664 msdsm - ok
12:55:37.0151 0x0664 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
12:55:37.0166 0x0664 MSDTC - ok
12:55:37.0174 0x0664 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:55:37.0253 0x0664 Msfs - ok
12:55:37.0257 0x0664 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:55:37.0282 0x0664 mshidkmdf - ok
12:55:37.0286 0x0664 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:55:37.0297 0x0664 msisadrv - ok
12:55:37.0303 0x0664 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:55:37.0332 0x0664 MSiSCSI - ok
12:55:37.0336 0x0664 msiserver - ok
12:55:37.0353 0x0664 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:55:37.0380 0x0664 MSKSSRV - ok
12:55:37.0405 0x0664 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:55:37.0442 0x0664 MSPCLOCK - ok
12:55:37.0479 0x0664 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:55:37.0504 0x0664 MSPQM - ok
12:55:37.0542 0x0664 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:55:37.0559 0x0664 MsRPC - ok
12:55:37.0593 0x0664 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:55:37.0604 0x0664 mssmbios - ok
12:55:37.0609 0x0664 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:55:37.0633 0x0664 MSTEE - ok
12:55:37.0637 0x0664 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
12:55:37.0648 0x0664 MTConfig - ok
12:55:37.0653 0x0664 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
12:55:37.0664 0x0664 Mup - ok
12:55:37.0676 0x0664 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
12:55:37.0709 0x0664 napagent - ok
12:55:37.0719 0x0664 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:55:37.0736 0x0664 NativeWifiP - ok
12:55:37.0756 0x0664 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
12:55:37.0781 0x0664 NDIS - ok
12:55:37.0786 0x0664 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:55:37.0809 0x0664 NdisCap - ok
12:55:37.0999 0x0664 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:55:38.0068 0x0664 NdisTapi - ok
12:55:38.0075 0x0664 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:55:38.0099 0x0664 Ndisuio - ok
12:55:38.0105 0x0664 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:55:38.0131 0x0664 NdisWan - ok
12:55:38.0136 0x0664 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:55:38.0158 0x0664 NDProxy - ok
12:55:38.0162 0x0664 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:55:38.0217 0x0664 NetBIOS - ok
12:55:38.0227 0x0664 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:55:38.0255 0x0664 NetBT - ok
12:55:38.0272 0x0664 [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] Netlogon C:\Windows\system32\lsass.exe
12:55:38.0284 0x0664 Netlogon - ok
12:55:38.0294 0x0664 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
12:55:38.0323 0x0664 Netman - ok
12:55:38.0330 0x0664 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:38.0375 0x0664 NetMsmqActivator - ok
12:55:38.0381 0x0664 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:38.0393 0x0664 NetPipeActivator - ok
12:55:38.0407 0x0664 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
12:55:38.0434 0x0664 netprofm - ok
12:55:38.0440 0x0664 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:38.0452 0x0664 NetTcpActivator - ok
12:55:38.0456 0x0664 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:38.0467 0x0664 NetTcpPortSharing - ok
12:55:38.0472 0x0664 [ 81B0BB24141E5A0AA3628E263D4C1010, B8AD759322E2390DFA97FEFC0F4BB1D19093F8C7EC28208D1B5AB1381801FF90 ] networx C:\Windows\system32\drivers\networx.sys
12:55:38.0482 0x0664 networx - ok
12:55:38.0486 0x0664 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:55:38.0496 0x0664 nfrd960 - ok
12:55:38.0506 0x0664 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
12:55:38.0521 0x0664 NlaSvc - ok
12:55:38.0525 0x0664 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:55:38.0548 0x0664 Npfs - ok
12:55:38.0552 0x0664 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
12:55:38.0576 0x0664 nsi - ok
12:55:38.0580 0x0664 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:55:38.0602 0x0664 nsiproxy - ok
12:55:38.0640 0x0664 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:55:38.0678 0x0664 Ntfs - ok
12:55:38.0683 0x0664 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
12:55:38.0705 0x0664 Null - ok
12:55:38.0712 0x0664 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:55:38.0724 0x0664 nvraid - ok
12:55:38.0732 0x0664 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:55:38.0744 0x0664 nvstor - ok
12:55:38.0750 0x0664 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:55:38.0762 0x0664 nv_agp - ok
12:55:38.0766 0x0664 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:55:38.0778 0x0664 ohci1394 - ok
12:55:38.0801 0x0664 [ FDB5AA8839B825196C43FC40EA835C2F, 8F7CB29D39451FC415BD913E57BE395FECA750B5376372943052FE7390202FD9 ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
12:55:38.0828 0x0664 OverwolfUpdater - ok
12:55:38.0840 0x0664 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:55:38.0877 0x0664 p2pimsvc - ok
12:55:38.0889 0x0664 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
12:55:38.0907 0x0664 p2psvc - ok
12:55:38.0912 0x0664 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:55:38.0923 0x0664 Parport - ok
12:55:38.0928 0x0664 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:55:38.0939 0x0664 partmgr - ok
12:55:38.0945 0x0664 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:55:38.0958 0x0664 PcaSvc - ok
12:55:38.0965 0x0664 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
12:55:38.0977 0x0664 pci - ok
12:55:38.0981 0x0664 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
12:55:38.0990 0x0664 pciide - ok
12:55:38.0997 0x0664 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:55:39.0010 0x0664 pcmcia - ok
12:55:39.0014 0x0664 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
12:55:39.0024 0x0664 pcw - ok
12:55:39.0040 0x0664 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:55:39.0059 0x0664 PEAUTH - ok
12:55:39.0086 0x0664 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
12:55:39.0121 0x0664 PeerDistSvc - ok
12:55:41.0568 0x0664 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:55:41.0599 0x0664 PerfHost - ok
12:55:41.0646 0x0664 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
12:55:41.0693 0x0664 pla - ok
12:55:41.0724 0x0664 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:55:41.0740 0x0664 PlugPlay - ok
12:55:41.0740 0x0664 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:55:41.0755 0x0664 PNRPAutoReg - ok
12:55:41.0755 0x0664 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:55:41.0771 0x0664 PNRPsvc - ok
12:55:41.0787 0x0664 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:55:41.0818 0x0664 PolicyAgent - ok
12:55:41.0818 0x0664 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
12:55:41.0849 0x0664 Power - ok
12:55:42.0005 0x0664 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:55:42.0067 0x0664 PptpMiniport - ok
12:55:42.0145 0x0664 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
12:55:42.0223 0x0664 Processor - ok
12:55:42.0223 0x0664 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
12:55:42.0239 0x0664 ProfSvc - ok
12:55:42.0239 0x0664 [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] ProtectedStorage C:\Windows\system32\lsass.exe
12:55:42.0255 0x0664 ProtectedStorage - ok
12:55:42.0255 0x0664 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:55:42.0286 0x0664 Psched - ok
12:55:42.0473 0x0664 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:55:42.0738 0x0664 ql2300 - ok
12:55:42.0832 0x0664 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:55:42.0847 0x0664 ql40xx - ok
12:55:42.0863 0x0664 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
12:55:42.0879 0x0664 QWAVE - ok
12:55:42.0879 0x0664 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:55:42.0894 0x0664 QWAVEdrv - ok
12:55:42.0894 0x0664 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:55:42.0925 0x0664 RasAcd - ok
12:55:42.0925 0x0664 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:55:42.0957 0x0664 RasAgileVpn - ok
12:55:42.0957 0x0664 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
12:55:42.0972 0x0664 RasAuto - ok
12:55:42.0988 0x0664 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:55:43.0003 0x0664 Rasl2tp - ok
12:55:43.0019 0x0664 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
12:55:43.0050 0x0664 RasMan - ok
12:55:43.0050 0x0664 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:55:43.0128 0x0664 RasPppoe - ok
12:55:43.0159 0x0664 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:55:43.0191 0x0664 RasSstp - ok
12:55:43.0222 0x0664 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:55:43.0237 0x0664 rdbss - ok
12:55:43.0253 0x0664 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:55:43.0440 0x0664 rdpbus - ok
12:55:43.0456 0x0664 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:55:43.0471 0x0664 RDPCDD - ok
12:55:43.0503 0x0664 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:55:43.0518 0x0664 RDPDR - ok
12:55:43.0534 0x0664 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:55:43.0565 0x0664 RDPENCDD - ok
12:55:43.0581 0x0664 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:55:43.0596 0x0664 RDPREFMP - ok
12:55:43.0612 0x0664 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:55:43.0643 0x0664 RDPWD - ok
12:55:43.0643 0x0664 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:55:43.0659 0x0664 rdyboost - ok
12:55:43.0674 0x0664 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:55:43.0705 0x0664 RemoteAccess - ok
12:55:43.0721 0x0664 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:55:43.0737 0x0664 RemoteRegistry - ok
12:55:43.0752 0x0664 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:55:43.0783 0x0664 RpcEptMapper - ok
12:55:43.0799 0x0664 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
12:55:43.0799 0x0664 RpcLocator - ok
12:55:43.0830 0x0664 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
12:55:43.0861 0x0664 RpcSs - ok
12:55:43.0877 0x0664 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:55:43.0924 0x0664 rspndr - ok
12:55:43.0939 0x0664 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
12:55:43.0955 0x0664 s3cap - ok
12:55:43.0971 0x0664 [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] SamSs C:\Windows\system32\lsass.exe
12:55:43.0971 0x0664 SamSs - ok
12:55:43.0986 0x0664 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:55:44.0002 0x0664 sbp2port - ok
12:55:44.0017 0x0664 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:55:44.0049 0x0664 SCardSvr - ok
12:55:44.0064 0x0664 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:55:44.0095 0x0664 scfilter - ok
12:55:44.0142 0x0664 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
12:55:44.0173 0x0664 Schedule - ok
12:55:44.0236 0x0664 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:55:44.0267 0x0664 SCPolicySvc - ok
12:55:44.0267 0x0664 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:55:44.0283 0x0664 SDRSVC - ok
12:55:44.0345 0x0664 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:55:44.0392 0x0664 secdrv - ok
12:55:44.0392 0x0664 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
12:55:44.0485 0x0664 seclogon - ok
12:55:44.0485 0x0664 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
12:55:44.0517 0x0664 SENS - ok
12:55:44.0517 0x0664 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:55:44.0532 0x0664 SensrSvc - ok
12:55:44.0548 0x0664 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:55:44.0548 0x0664 Serenum - ok
12:55:44.0563 0x0664 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:55:44.0579 0x0664 Serial - ok
12:55:44.0579 0x0664 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:55:44.0595 0x0664 sermouse - ok
12:55:44.0610 0x0664 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
12:55:44.0641 0x0664 SessionEnv - ok
12:55:44.0641 0x0664 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:55:44.0657 0x0664 sffdisk - ok
12:55:44.0657 0x0664 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:55:44.0673 0x0664 sffp_mmc - ok
12:55:44.0673 0x0664 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:55:44.0688 0x0664 sffp_sd - ok
12:55:44.0688 0x0664 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:55:44.0704 0x0664 sfloppy - ok
12:55:44.0719 0x0664 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:55:44.0751 0x0664 SharedAccess - ok
12:55:44.0766 0x0664 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:55:44.0782 0x0664 ShellHWDetection - ok
12:55:44.0797 0x0664 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
12:55:44.0797 0x0664 SiSRaid2 - ok
12:55:44.0813 0x0664 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:55:44.0829 0x0664 SiSRaid4 - ok
12:55:44.0829 0x0664 [ 0B70786BD1062CD4C6B58E412B9C3E55, 60ED027642FFF97BFFA55AE3EFFCCBB6D6AD8196D35E9ED06F9AF431E3C0402A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:55:44.0844 0x0664 SkypeUpdate - ok
12:55:44.0860 0x0664 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:55:44.0891 0x0664 Smb - ok
12:55:44.0907 0x0664 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:55:44.0907 0x0664 SNMPTRAP - ok
12:55:44.0922 0x0664 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys
12:55:44.0922 0x0664 speedfan - ok
12:55:44.0938 0x0664 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
12:55:44.0938 0x0664 spldr - ok
12:55:44.0953 0x0664 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
12:55:44.0985 0x0664 Spooler - ok
12:55:45.0250 0x0664 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
12:55:45.0328 0x0664 sppsvc - ok
12:55:45.0328 0x0664 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:55:45.0359 0x0664 sppuinotify - ok
12:55:45.0375 0x0664 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:55:45.0421 0x0664 srv - ok
12:55:45.0437 0x0664 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:55:45.0468 0x0664 srv2 - ok
12:55:45.0484 0x0664 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:55:45.0515 0x0664 srvnet - ok
12:55:45.0531 0x0664 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:55:45.0577 0x0664 SSDPSRV - ok
12:55:45.0577 0x0664 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:55:45.0609 0x0664 SstpSvc - ok
12:55:45.0624 0x0664 [ 7AE700179C4839F657D245319E234A06, 6EAEFE4A8CAF1A70F1BAD4DD457C6AEC080839542D4E5582376489800BE52E89 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:55:45.0640 0x0664 Steam Client Service - ok
12:55:45.0655 0x0664 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
12:55:45.0655 0x0664 stexstor - ok
12:55:45.0671 0x0664 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
12:55:45.0702 0x0664 stisvc - ok
12:55:45.0718 0x0664 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
12:55:45.0718 0x0664 storflt - ok
12:55:45.0733 0x0664 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
12:55:45.0749 0x0664 StorSvc - ok
12:55:45.0749 0x0664 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
12:55:45.0765 0x0664 storvsc - ok
12:55:45.0765 0x0664 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:55:45.0780 0x0664 swenum - ok
12:55:45.0796 0x0664 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
12:55:45.0827 0x0664 swprv - ok
12:55:45.0874 0x0664 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
12:55:45.0905 0x0664 SysMain - ok
12:55:45.0921 0x0664 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:55:45.0999 0x0664 TabletInputService - ok
12:55:45.0999 0x0664 [ 84CA1EEF6A8A5AE5D5603BBC8ED83FCD, 1C30E026C5ACA703C1EB8164C29CC69FA4D3F3B563C22981F76E872E4CB7CECF ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
12:55:46.0014 0x0664 tap0901 - ok
12:55:46.0014 0x0664 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
12:55:46.0045 0x0664 TapiSrv - ok
12:55:46.0045 0x0664 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
12:55:46.0077 0x0664 TBS - ok
12:55:46.0123 0x0664 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:55:46.0155 0x0664 Tcpip - ok
12:55:46.0201 0x0664 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:55:46.0233 0x0664 TCPIP6 - ok
12:55:46.0248 0x0664 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:55:46.0264 0x0664 tcpipreg - ok
12:55:46.0279 0x0664 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:55:46.0295 0x0664 TDPIPE - ok
12:55:46.0295 0x0664 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:55:46.0311 0x0664 TDTCP - ok
12:55:46.0326 0x0664 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:55:46.0373 0x0664 tdx - ok
12:55:46.0389 0x0664 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:55:46.0389 0x0664 TermDD - ok
12:55:46.0420 0x0664 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
12:55:46.0435 0x0664 TermService - ok
12:55:46.0451 0x0664 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
12:55:46.0482 0x0664 Themes - ok
12:55:46.0482 0x0664 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
12:55:46.0513 0x0664 THREADORDER - ok
12:55:46.0529 0x0664 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
12:55:46.0545 0x0664 TrkWks - ok
12:55:46.0560 0x0664 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:55:46.0576 0x0664 TrustedInstaller - ok
12:55:46.0591 0x0664 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:55:46.0607 0x0664 tssecsrv - ok
12:55:46.0607 0x0664 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:55:46.0623 0x0664 TsUsbFlt - ok
12:55:46.0623 0x0664 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
12:55:46.0638 0x0664 TsUsbGD - ok
12:55:46.0638 0x0664 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:55:46.0669 0x0664 tunnel - ok
12:55:46.0669 0x0664 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:55:46.0685 0x0664 uagp35 - ok
12:55:46.0701 0x0664 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:55:46.0732 0x0664 udfs - ok
12:55:46.0732 0x0664 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:55:46.0747 0x0664 UI0Detect - ok
12:55:46.0779 0x0664 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:55:46.0794 0x0664 uliagpkx - ok
12:55:46.0810 0x0664 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:55:46.0810 0x0664 umbus - ok
12:55:46.0825 0x0664 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
12:55:46.0825 0x0664 UmPass - ok
12:55:46.0841 0x0664 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
12:55:46.0857 0x0664 UmRdpService - ok
12:55:46.0872 0x0664 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
12:55:46.0903 0x0664 upnphost - ok
12:55:46.0903 0x0664 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
12:55:46.0919 0x0664 USBAAPL64 - ok
12:55:46.0935 0x0664 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:55:46.0950 0x0664 usbaudio - ok
12:55:46.0950 0x0664 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:55:46.0981 0x0664 usbccgp - ok
12:55:46.0997 0x0664 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:55:47.0013 0x0664 usbcir - ok
12:55:47.0013 0x0664 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:55:47.0028 0x0664 usbehci - ok
12:55:47.0044 0x0664 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:55:47.0075 0x0664 usbhub - ok
12:55:47.0091 0x0664 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:55:47.0106 0x0664 usbohci - ok
12:55:47.0106 0x0664 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:55:47.0122 0x0664 usbprint - ok
12:55:47.0122 0x0664 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
12:55:47.0137 0x0664 usbscan - ok
12:55:47.0153 0x0664 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:55:47.0169 0x0664 USBSTOR - ok
12:55:47.0169 0x0664 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:55:47.0184 0x0664 usbuhci - ok
12:55:47.0200 0x0664 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
12:55:47.0200 0x0664 usbvideo - ok
12:55:47.0215 0x0664 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
12:55:47.0231 0x0664 UxSms - ok
12:55:47.0247 0x0664 [ 97D879A884E7CDFED51AD63348A35254, 256566B7039B640FFB72C2ED7F1F42E46FFC820637A8959A64F5F08DB2A06A3F ] VaultSvc C:\Windows\system32\lsass.exe
12:55:47.0247 0x0664 VaultSvc - ok
12:55:47.0262 0x0664 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:55:47.0262 0x0664 vdrvroot - ok
12:55:47.0278 0x0664 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
12:55:47.0325 0x0664 vds - ok
12:55:47.0325 0x0664 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:55:47.0340 0x0664 vga - ok
12:55:47.0340 0x0664 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:55:47.0371 0x0664 VgaSave - ok
12:55:47.0371 0x0664 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:55:47.0387 0x0664 vhdmp - ok
12:55:47.0387 0x0664 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
12:55:47.0403 0x0664 viaide - ok
12:55:47.0418 0x0664 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
12:55:47.0434 0x0664 vmbus - ok
12:55:47.0434 0x0664 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
12:55:47.0449 0x0664 VMBusHID - ok
12:55:47.0449 0x0664 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:55:47.0465 0x0664 volmgr - ok
12:55:47.0465 0x0664 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:55:47.0481 0x0664 volmgrx - ok
12:55:47.0496 0x0664 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:55:47.0512 0x0664 volsnap - ok
12:55:47.0512 0x0664 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:55:47.0527 0x0664 vsmraid - ok
12:55:47.0559 0x0664 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
12:55:47.0605 0x0664 VSS - ok
12:55:47.0605 0x0664 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
12:55:47.0621 0x0664 vwifibus - ok
12:55:47.0637 0x0664 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
12:55:47.0668 0x0664 W32Time - ok
12:55:47.0668 0x0664 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:55:47.0683 0x0664 WacomPen - ok
12:55:47.0683 0x0664 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:55:47.0715 0x0664 WANARP - ok
12:55:47.0715 0x0664 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:55:47.0730 0x0664 Wanarpv6 - ok
12:55:47.0761 0x0664 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
12:55:47.0808 0x0664 wbengine - ok
12:55:47.0808 0x0664 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:55:47.0839 0x0664 WbioSrvc - ok
12:55:47.0855 0x0664 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:55:47.0871 0x0664 wcncsvc - ok
12:55:47.0871 0x0664 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:55:47.0886 0x0664 WcsPlugInService - ok
12:55:47.0902 0x0664 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
12:55:47.0902 0x0664 Wd - ok
12:55:47.0917 0x0664 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:55:47.0949 0x0664 Wdf01000 - ok
12:55:47.0949 0x0664 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:55:47.0964 0x0664 WdiServiceHost - ok
12:55:47.0964 0x0664 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:55:47.0980 0x0664 WdiSystemHost - ok
12:55:47.0980 0x0664 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
12:55:47.0995 0x0664 WebClient - ok
12:55:48.0011 0x0664 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:55:48.0042 0x0664 Wecsvc - ok
12:55:48.0042 0x0664 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:55:48.0058 0x0664 wercplsupport - ok
12:55:48.0073 0x0664 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
12:55:48.0105 0x0664 WerSvc - ok
12:55:48.0105 0x0664 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:55:48.0120 0x0664 WfpLwf - ok
12:55:48.0136 0x0664 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:55:48.0136 0x0664 WIMMount - ok
12:55:48.0136 0x0664 WinDefend - ok
12:55:48.0151 0x0664 WinHttpAutoProxySvc - ok
12:55:48.0167 0x0664 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:55:48.0198 0x0664 Winmgmt - ok
12:55:48.0229 0x0664 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
12:55:48.0276 0x0664 WinRM - ok
12:55:48.0292 0x0664 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:55:48.0307 0x0664 WinUsb - ok
12:55:48.0323 0x0664 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:55:48.0339 0x0664 Wlansvc - ok
12:55:48.0417 0x0664 [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:55:48.0448 0x0664 wlidsvc - ok
12:55:48.0448 0x0664 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:55:48.0463 0x0664 WmiAcpi - ok
12:55:48.0479 0x0664 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:55:48.0510 0x0664 wmiApSrv - ok
12:55:48.0526 0x0664 WMPNetworkSvc - ok
12:55:48.0526 0x0664 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:55:48.0541 0x0664 WPCSvc - ok
12:55:48.0541 0x0664 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:55:48.0557 0x0664 WPDBusEnum - ok
12:55:48.0557 0x0664 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:55:48.0588 0x0664 ws2ifsl - ok
12:55:48.0588 0x0664 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
12:55:48.0604 0x0664 wscsvc - ok
12:55:48.0604 0x0664 WSearch - ok
12:55:48.0697 0x0664 [ AA3E844A2595B1AA5825C70CA50D963E, F9C7D64D9563CA5167EC9B0D957473B55C02E9456E041AE2CDA6ABFA9641D176 ] wuauserv C:\Windows\system32\wuaueng.dll
12:55:48.0760 0x0664 wuauserv - ok
12:55:48.0760 0x0664 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:55:48.0775 0x0664 WudfPf - ok
12:55:48.0775 0x0664 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:55:48.0791 0x0664 WUDFRd - ok
12:55:48.0807 0x0664 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:55:48.0807 0x0664 wudfsvc - ok
12:55:48.0822 0x0664 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
12:55:48.0838 0x0664 WwanSvc - ok
12:55:48.0838 0x0664 xhunter1 - ok
12:55:48.0853 0x0664 ================ Scan global ===============================
12:55:48.0853 0x0664 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
12:55:48.0869 0x0664 [ 2313AF8D5A9CEB4A55400A01DD311A95, A5779FE967EA2703E86BEDC32CD736617AF278C72048228F038DFC628E1E0AA2 ] C:\Windows\system32\winsrv.dll
12:55:48.0869 0x0664 [ 2313AF8D5A9CEB4A55400A01DD311A95, A5779FE967EA2703E86BEDC32CD736617AF278C72048228F038DFC628E1E0AA2 ] C:\Windows\system32\winsrv.dll
12:55:48.0869 0x0664 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:55:48.0885 0x0664 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
12:55:48.0885 0x0664 [ Global ] - ok
12:55:48.0885 0x0664 ================ Scan MBR ==================================
12:55:48.0885 0x0664 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:55:49.0135 0x0664 \Device\Harddisk0\DR0 - ok
12:55:49.0135 0x0664 ================ Scan VBR ==================================
12:55:49.0135 0x0664 [ B1F3ECFAA5C82FBAF4BD335F492E4E22 ] \Device\Harddisk0\DR0\Partition1
12:55:49.0151 0x0664 \Device\Harddisk0\DR0\Partition1 - ok
12:55:49.0151 0x0664 ================ Scan generic autorun ======================
12:55:49.0244 0x0664 [ 8000585FDD9943673CDB53EAF5A56D8E, CC8CA3397D57E835A0785D6819F00E17025132BE8241F7F2CE2E7FDFA369B055 ] c:\program files (x86)\emsisoft internet security\a2guard.exe
12:55:49.0322 0x0664 emsisoft anti-malware - ok
12:55:49.0354 0x0664 [ 4F9DD96AECDC12373D4203253D665C6D, 871FF2367ACD5F9A378FED53574BF28A8129224C4B7C4AF074809ED7CF870904 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
12:55:49.0354 0x0664 SunJavaUpdateSched - ok
12:55:49.0369 0x0664 [ 299EDE8BBC229B7FA0BC0369BAE8CA2E, 788C06C7EDDDC0687A4137BDA00D320146425768960066FCBE0391BE7DBC2280 ] C:\Program Files (x86)\Raptr\raptrstub.exe
12:55:49.0369 0x0664 Raptr - ok
12:55:49.0400 0x0664 [ DF7E805A93829EC42A16F203B8AD8B9F, BE1A311B9C63B3D32E40D3F01716D3CCA2C84004755EF7834671046648894D29 ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
12:55:49.0432 0x0664 StartCCC - ok
12:55:49.0447 0x0664 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:55:49.0478 0x0664 Sidebar - ok
12:55:49.0494 0x0664 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:55:49.0510 0x0664 mctadmin - ok
12:55:49.0525 0x0664 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:55:49.0541 0x0664 Sidebar - ok
12:55:49.0556 0x0664 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:55:49.0556 0x0664 mctadmin - ok
12:55:49.0666 0x0664 [ C76FD76E54B41B4BC33CB320D2594B57, 9EBDBB933ACA8AE14D97EE81A479085D489DA3F078137A66B070DF8E49EF158C ] C:\Users\Lars\AppData\Roaming\Spotify\SpotifyWebHelper.exe
12:55:49.0697 0x0664 Spotify Web Helper - ok
12:55:49.0931 0x0664 [ 55A226BAB08DF9A47DF6C96848D51C16, C50FCD2F9AA4D3C49AE7D9D0E9D4145ABF61F84A627A78B1A0E66BF0731CCBFC ] C:\Users\Lars\AppData\Roaming\Spotify\Spotify.exe
12:55:50.0040 0x0664 Spotify - ok
12:55:50.0040 0x0664 Skype - ok
12:55:50.0212 0x0664 [ 47DBCC66CF9A3DCEF2D42051431160D3, 5E99CB8333471E80590AED8CA139EF859AD617D1C7BD9406913A86016DCA08F6 ] C:\Program Files\CCleaner\CCleaner64.exe
12:55:50.0336 0x0664 CCleaner Monitoring - ok
12:55:50.0336 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:51.0350 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:52.0364 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:53.0378 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:54.0392 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:55.0406 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:56.0420 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:57.0434 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:58.0448 0x0664 Waiting for KSN requests completion. In queue: 407
12:55:59.0462 0x0664 Waiting for KSN requests completion. In queue: 407
12:56:00.0467 0x0664 Waiting for KSN requests completion. In queue: 407
12:56:01.0481 0x0664 Waiting for KSN requests completion. In queue: 407
12:56:02.0495 0x0664 Waiting for KSN requests completion. In queue: 407
12:56:03.0509 0x0664 Waiting for KSN requests completion. In queue: 407
12:56:04.0523 0x0664 Waiting for KSN requests completion. In queue: 407
12:56:05.0537 0x0664 Waiting for KSN requests completion. In queue: 407
12:56:06.0551 0x0664 Waiting for KSN requests completion. In queue: 95
12:56:07.0565 0x0664 Waiting for KSN requests completion. In queue: 95
12:56:08.0579 0x0664 Waiting for KSN requests completion. In queue: 95
12:56:09.0593 0x0664 Waiting for KSN requests completion. In queue: 95
12:56:10.0607 0x0664 Waiting for KSN requests completion. In queue: 95
12:56:11.0621 0x0664 Waiting for KSN requests completion. In queue: 95
12:56:12.0775 0x0664 AV detected via SS2: Emsisoft Internet Security, C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\a2start.exe ( 10.0.0.5561 ), 0x40000 ( disabled : updated )
12:56:12.0775 0x0664 FW detected via SS2: Emsisoft Internet Security, C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\a2start.exe ( 10.0.0.5561 ), 0x40010 ( disabled )
12:56:12.0775 0x0664 Win FW state via NFP2: disabled ( trusted )
12:56:15.0287 0x0664 ============================================================
12:56:15.0287 0x0664 Scan finished
12:56:15.0287 0x0664 ============================================================
12:56:15.0302 0x0a14 Detected object count: 0
12:56:15.0302 0x0a14 Actual detected object count: 0
12:56:50.0432 0x0d18 Deinitialize success
|
|
01.08.2015, 10:43
| #5 |
| /// the machine /// TB-Ausbilder | Systemunterbrechungen sehr hohe CPU Last Windows Repair Tool laufen lassen: Windows reparieren - so geht's - Anleitungen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.08.2015, 12:33
| #6 |
| | Systemunterbrechungen sehr hohe CPU Last Habe ich durchgeführt soll ich jetzt auch noch einmal einen Log posten ? |
|
02.08.2015, 11:13
| #7 |
| /// the machine /// TB-Ausbilder | Systemunterbrechungen sehr hohe CPU Last FRST bitte, und wenn die Last noch hoch ist dann: ProcessExplorer als Ersatz für den Windows Taskmanager installieren Lade Dir den Process Explorer als Ersatz für den Taskmanager herunter und installiere ihn, hier findest Du eine Anleitung. Das ist ein wesentlich leistungsfähigerer Ersatz für den Windows-Taskmanager. Im Menü unter "Options" kannst Du den ProcessExplorer dauerhaft als Ersatz für den Taskmanager einrichten (Replace Taskmanager). Das ist sehr empfehlenswert, weil der ProcessExplorer erheblich mehr Funktionen als der Taskmanager hat. Wenn Du diese Einstellung gemacht hast, öffnet sich mit der Tastenkombination STRG + ALT + Entf. nicht mehr der Taskmanager, sondern der ProcessExplorer. Das kann jederzeit durch Abhaken dieser Einstellung wieder rückgängig gemacht werden. Was wir jetzt konkret brauchen: In jeder Zeile steht ein Prozess, ein paar der Zeilen sind keine richtigen Prozesse, sondern nur Pseudoprozesse für die Tätigkeit des Windos-Kernels. Im Menü View => Select Columns wird ein Dialog geöffnet, in dem Du auswählen kannst, welche Spalten mit Informationen zu den Prozessen angezeigt werden sollen. In dem gehe in das Register "Process Performance" und stelle sicher, dass dort "CPU Usage" angehakt ist, "CPU History" wäre ebenfalls sinnvoll. Unter "CPU Usage" wird der aktuelle Wert der Prozessorauslastung für jeden Prozess angezeigt (im Tabellentitel steht nur kurz "CPU"), "CPU History" blendet für jeden Prozess ein Diagramm ein, das eine Kurve mit der Prozessorauslastung für die letzte Zeit anzeigt. Damit sollte es Dir möglich sein, zu identifizieren, welcher Prozess Deine CPU in Trab hält. Mache einen Doppelklick auf den Prozess. Du kannst von dem ganzen auch einen Screenshot machen und ihn als Anhang mit Deiner Antwort hochladen (auf "Erweitert" unter dem Textfeld klicken und über "Anhänge verwalten" auf Deinem Rechner suchen lassen und über "Hochladen" anhängen).
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.08.2015, 21:16
| #8 |
| | Systemunterbrechungen sehr hohe CPU Last Hallo, mein Computer hat sich jetzt auch zwei mal gefreezt so ca. 5min nach dem starten beim surfen musste ihn dann komplett neu starten. FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:30-07-2015
durchgeführt von Lars (Administrator) auf LARS-PC (02-08-2015 22:06:28)
Gestartet von C:\Users\Lars\Downloads
Geladene Profile: Lars (Verfügbare Profile: Lars)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Safe Mode (minimal)
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Microsoft Corporation) C:\Windows\System32\userinit.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM-x32\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft internet security\a2guard.exe [4939288 2015-07-27] (Emsisoft Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-07-27] (Raptr, Inc)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [896632 2015-07-22] (BlueStack Systems, Inc.)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Run: [Spotify Web Helper] => C:\Users\Lars\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-07-31] (Spotify Ltd)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Run: [Spotify] => C:\Users\Lars\AppData\Roaming\Spotify\Spotify.exe [7675448 2015-07-31] (Spotify Ltd)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Richtlinienbeschränkung <======= ACHTUNG
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Richtlinienbeschränkung <======= ACHTUNG
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Richtlinienbeschränkung <======= ACHTUNG
HKU\S-1-5-21-3765219005-2896119444-2935634367-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-21] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-21] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-21] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-21] (Oracle Corporation)
Tcpip\..\Interfaces\{5702E92A-F6CA-4CF4-B600-A9F672948569}: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-21] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-21] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-20] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-31]
CHR Extension: (BetterTTV) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-07-06]
CHR Extension: (Google Docs) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-31]
CHR Extension: (Google Drive) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-31]
CHR Extension: (YouTube) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-31]
CHR Extension: (Adblock Plus) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-05-31]
CHR Extension: (Google Search) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-31]
CHR Extension: (PanicButton) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2015-05-31]
CHR Extension: (Google Sheets) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-31]
CHR Extension: (Adblock Plus) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdbbfekflnbhfbejkkhfoplikipmfei [2015-05-31]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-31]
CHR Extension: (Gmail) - C:\Users\Lars\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-31]
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Internet Security\a2service.exe [5525328 2015-07-27] (Emsisoft Ltd)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-07-23] ()
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433784 2015-06-16] (BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-06-16] (BlueStack Systems, Inc.)
S2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096 2015-07-21] (BlueStack Systems, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272560 2015-05-21] (Disc Soft Ltd)
S2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-07-14] (LogMeIn, Inc.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1001200 2015-07-19] (Overwolf LTD)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [294600 2015-06-20] (Advanced Micro Devices)
S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-06-16] (BlueStack Systems)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-13] (Disc Soft Ltd)
S3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [494864 2013-08-29] (Intel Corporation)
S1 epp64; C:\PROGRAM FILES (X86)\EMSISOFT INTERNET SECURITY\epp64.sys [137992 2015-07-27] (Emsisoft GmbH)
S3 fwndis; C:\Windows\System32\DRIVERS\fwndis64.sys [494856 2015-07-08] ()
S1 fwwfp; C:\Program Files (x86)\Emsisoft Internet Security\fwwfp764.sys [523208 2015-07-08] ()
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
S1 networx; C:\Windows\System32\drivers\networx.sys [60736 2015-03-17] (NetFilterSDK.com)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-08-02 22:02 - 2015-08-02 22:02 - 02169856 _____ (Farbar) C:\Users\Lars\Downloads\FRST64 (1).exe
2015-08-01 20:56 - 2015-08-02 21:44 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2015-08-01 20:56 - 2015-08-01 20:56 - 00001815 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2015-08-01 20:56 - 2015-08-01 20:56 - 00001788 _____ C:\Users\Public\Desktop\Apps.lnk
2015-08-01 20:56 - 2015-08-01 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2015-08-01 20:56 - 2015-08-01 20:56 - 00000000 ____D C:\ProgramData\BlueStacks
2015-08-01 20:55 - 2015-08-02 21:49 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2015-08-01 20:55 - 2015-08-01 20:55 - 00000000 ____D C:\Users\Lars\AppData\Local\Bluestacks
2015-08-01 20:54 - 2015-08-01 20:55 - 14246072 _____ (BlueStack Systems Inc.) C:\Users\Lars\Downloads\BlueStacks-ThinInstaller-fe30f1d0fbc7aa935272b0edbe782524.exe
2015-08-01 13:29 - 2015-08-01 13:29 - 00000600 _____ C:\Windows\PFRO.log
2015-08-01 11:59 - 2015-08-01 11:59 - 00000000 ____D C:\Users\Lars\Desktop\Tweaking.com - Windows Repair
2015-08-01 11:58 - 2015-08-01 11:59 - 15730031 _____ C:\Users\Lars\Downloads\tweaking.com_windows_repair_aio (1).zip
2015-08-01 11:57 - 2015-08-01 11:57 - 10708345 _____ C:\Users\Lars\Downloads\tweaking.com_windows_repair_aio.zip
2015-07-31 12:45 - 2015-07-31 12:45 - 00000000 ____D C:\TDSSKiller_Quarantine
2015-07-31 12:42 - 2015-07-31 12:42 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Lars\Downloads\tdsskiller.exe
2015-07-31 12:42 - 2015-07-31 12:42 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Lars\Desktop\tdsskiller.exe
2015-07-31 12:23 - 2015-07-31 13:18 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-07-31 12:23 - 2015-07-31 13:01 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-31 12:23 - 2015-07-31 12:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-07-31 12:22 - 2015-07-31 13:18 - 00000000 ____D C:\Users\Lars\Desktop\mbar
2015-07-31 12:22 - 2015-07-31 13:01 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-07-31 12:21 - 2015-07-31 12:21 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Lars\Desktop\mbar-1.09.1.1004.exe
2015-07-31 12:20 - 2015-07-31 12:21 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Lars\Downloads\mbar-1.09.1.1004.exe
2015-07-31 03:39 - 2015-07-31 03:39 - 00038046 _____ C:\Users\Lars\Downloads\Addition.txt
2015-07-31 03:38 - 2015-08-02 22:06 - 00000000 ____D C:\FRST
2015-07-31 03:38 - 2015-08-02 22:06 - 00000000 _____ C:\Users\Lars\Downloads\FRST.txt
2015-07-31 03:37 - 2015-07-31 03:37 - 02168832 _____ (Farbar) C:\Users\Lars\Downloads\FRST64.exe
2015-07-31 03:35 - 2015-07-31 03:35 - 00000000 ____D C:\Users\Lars\Desktop\Neuer Ordner (3)
2015-07-31 03:32 - 2015-07-31 03:32 - 00000000 ____D C:\Users\Lars\Documents\WPA Files
2015-07-31 03:32 - 2015-07-31 03:32 - 00000000 ____D C:\ProgramData\WindowsPerformanceRecorder
2015-07-31 03:30 - 2015-07-31 03:30 - 01186640 _____ C:\Users\Lars\Downloads\ProcessExplorer.zip
2015-07-31 03:26 - 2015-07-31 03:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2015-07-31 03:26 - 2015-07-31 03:26 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-07-30 15:49 - 2015-07-30 15:53 - 116511944 _____ (Oracle Corporation) C:\Users\Lars\Downloads\VirtualBox-5.0.0-101573-Win.exe
2015-07-30 01:54 - 2015-07-30 02:03 - 300766360 _____ (AMD Inc.) C:\Users\Lars\Downloads\amd-catalyst-15.7.1-with-dotnet45-win7-64bit.exe
2015-07-30 01:52 - 2015-07-30 01:52 - 00991536 _____ (Microsoft Corporation) C:\Users\Lars\Downloads\sdksetup.exe
2015-07-30 01:51 - 2015-07-30 01:51 - 00000000 ____D C:\Users\Lars\AppData\Roaming\ATI
2015-07-30 01:51 - 2015-07-30 01:51 - 00000000 ____D C:\Users\Lars\AppData\Local\ATI
2015-07-30 01:51 - 2015-07-30 01:51 - 00000000 ____D C:\ProgramData\ATI
2015-07-30 01:51 - 2015-07-30 01:51 - 00000000 _____ C:\Windows\ativpsrm.bin
2015-07-30 01:50 - 2015-07-30 01:50 - 00053736 _____ C:\Windows\SysWOW64\CCCInstall_201507300150188871.log
2015-07-30 01:50 - 2015-07-30 01:50 - 00000000 ____D C:\ProgramData\AMD
2015-07-30 01:50 - 2015-07-30 01:50 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-07-30 01:49 - 2015-07-30 01:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-07-30 01:49 - 2015-07-30 01:49 - 00000000 ____D C:\Program Files (x86)\AMD
2015-07-30 01:47 - 2015-07-30 01:47 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-07-30 01:39 - 2015-07-30 01:42 - 00207872 _____ (Power Admin LLC) C:\Windows\PAExec.exe
2015-07-30 01:39 - 2015-07-30 01:39 - 00000000 ____D C:\Users\Lars\Downloads\x64
2015-07-30 01:37 - 2015-07-30 01:39 - 00000000 ____D C:\Users\Lars\Downloads\settings
2015-07-30 01:37 - 2015-07-10 19:22 - 01822720 _____ C:\Users\Lars\Downloads\Display Driver Uninstaller.exe
2015-07-30 01:37 - 2015-07-10 19:22 - 00228864 _____ C:\Users\Lars\Downloads\Display Driver Uninstaller.pdb
2015-07-30 01:36 - 2015-07-30 01:36 - 01206060 _____ (Igor Pavlov) C:\Users\Lars\Downloads\DDU_v15.3.1.0.exe
2015-07-29 21:48 - 2015-07-29 21:48 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zero-One-Launcher
2015-07-29 12:02 - 2015-07-29 12:02 - 07678021 _____ C:\Users\Lars\Downloads\Metro5.1.zip
2015-07-28 11:56 - 2015-07-25 20:07 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-28 11:56 - 2015-07-25 20:04 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-28 11:56 - 2015-07-25 20:04 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-28 11:56 - 2015-07-25 20:03 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-28 11:56 - 2015-07-25 20:03 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-28 11:56 - 2015-07-25 20:03 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-28 11:56 - 2015-07-25 20:03 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-28 11:56 - 2015-07-25 19:55 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-27 09:51 - 2015-08-02 21:59 - 00003600 _____ C:\Windows\setupact.log
2015-07-27 09:51 - 2015-07-27 09:51 - 00000000 _____ C:\Windows\setuperr.log
2015-07-26 23:44 - 2015-07-26 23:44 - 00005510 _____ C:\Users\Lars\Documents\cc_20150726_234412.reg
2015-07-26 23:41 - 2015-07-26 23:42 - 06609608 _____ (Piriform Ltd) C:\Users\Lars\Downloads\ccsetup508.exe
2015-07-26 23:38 - 2015-07-31 14:39 - 00000000 ____D C:\Users\Lars\Desktop\Neuer Ordner (2)
2015-07-26 23:35 - 2015-07-26 23:35 - 00000526 _____ C:\blitzblank.log
2015-07-26 23:18 - 2015-07-26 23:18 - 01125888 _____ C:\Users\Lars\Downloads\BEService_x64.exe
2015-07-26 23:03 - 2015-07-26 23:03 - 02869078 _____ C:\Users\Lars\Downloads\AutoHotkey112203_Install.exe
2015-07-26 12:09 - 2015-07-26 12:09 - 00000025 _____ C:\Users\Lars\Downloads\donations.csv
2015-07-24 00:42 - 2015-07-24 01:42 - 00000000 ____D C:\Users\Lars\AppData\Roaming\SleepTimerUltimate
2015-07-24 00:42 - 2015-07-24 00:42 - 00001146 _____ C:\Users\Public\Desktop\SleepTimer Ultimate.lnk
2015-07-24 00:42 - 2015-07-24 00:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SleepTimer Ultimate
2015-07-24 00:42 - 2015-07-24 00:42 - 00000000 ____D C:\Program Files (x86)\SleepTimer Ultimate
2015-07-24 00:35 - 2015-07-24 00:36 - 01533271 _____ (Christian Handorf ) C:\Users\Lars\Downloads\setup_sleeptimer_13.exe
2015-07-23 09:46 - 2015-07-23 09:46 - 00000000 ____D C:\ProgramData\Steam
2015-07-23 09:43 - 2015-08-02 00:18 - 00000000 ____D C:\Users\Lars\AppData\Local\Arma 3
2015-07-23 09:43 - 2015-07-23 09:45 - 00000000 ____D C:\Users\Lars\Documents\Arma 3
2015-07-23 09:43 - 2015-07-23 09:43 - 00000000 ____D C:\ProgramData\Bohemia Interactive
2015-07-23 09:32 - 2015-07-23 09:32 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Saints Row IV
2015-07-23 09:32 - 2015-07-23 09:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-07-23 09:12 - 2015-07-23 09:12 - 00000000 ____D C:\Program Files (x86)\R.G. Mechanics
2015-07-23 09:10 - 2015-07-29 21:48 - 00001127 _____ C:\Users\Lars\Desktop\Zero-One-Launcher.lnk
2015-07-23 09:10 - 2015-07-29 21:48 - 00000000 ____D C:\Program Files (x86)\Zero-One-Launcher
2015-07-23 09:10 - 2015-07-23 09:10 - 00721825 _____ C:\Users\Lars\Downloads\zero-one-installer.exe
2015-07-23 09:10 - 2015-07-23 09:10 - 00000000 ____D C:\Users\Lars\AppData\Local\Zero-One-Launcher
2015-07-23 09:10 - 2015-07-23 09:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zero-One-Launcher
2015-07-23 01:57 - 2015-07-23 01:57 - 00186368 _____ C:\Users\Lars\Downloads\PlayTV v3 (Normal).exe
2015-07-23 01:34 - 2015-07-23 01:34 - 00000000 ____D C:\Users\Lars\AppData\Local\CEF
2015-07-22 02:22 - 2015-07-22 02:30 - 296078544 _____ (AMD Inc.) C:\Users\Lars\Downloads\amd-catalyst-15.6-beta-software-suite-win7-64bit-june22.exe
2015-07-21 05:37 - 2015-07-21 05:37 - 00000000 _____ C:\Windows\SysWOW64\RENF5B3.tmp
2015-07-21 05:36 - 2015-07-21 05:36 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-20 23:28 - 2015-07-15 05:19 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-07-20 23:28 - 2015-07-15 05:19 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-20 23:28 - 2015-07-15 05:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-07-20 23:28 - 2015-07-15 05:19 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-07-20 23:28 - 2015-07-15 04:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-07-20 23:28 - 2015-07-15 04:55 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-07-20 23:28 - 2015-07-15 04:55 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-07-20 23:28 - 2015-07-15 04:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-07-20 23:28 - 2015-07-15 03:59 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-20 23:28 - 2015-07-15 03:52 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 02603008 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-20 23:28 - 2015-07-09 19:58 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-20 23:28 - 2015-07-09 19:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-20 23:28 - 2015-07-09 19:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-20 23:28 - 2015-07-09 19:43 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-20 23:28 - 2015-07-09 19:43 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-20 23:28 - 2015-07-09 19:43 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-20 23:28 - 2015-07-09 19:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-20 23:28 - 2015-07-09 19:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-20 23:28 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-07-20 23:28 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2015-07-20 23:26 - 2015-06-25 10:57 - 03207168 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-20 23:26 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-20 23:26 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-07-20 23:25 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-07-20 23:25 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-07-20 23:25 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-07-20 23:25 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-20 23:25 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-07-20 23:25 - 2015-07-02 22:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-07-20 23:25 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-20 23:25 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-07-20 23:25 - 2015-07-02 22:12 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-20 23:25 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-07-20 23:25 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-20 23:25 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-20 23:25 - 2015-06-27 04:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-07-20 23:25 - 2015-06-27 04:43 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-20 23:25 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-07-20 23:25 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-07-20 23:22 - 2015-06-25 20:09 - 00389832 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-07-20 23:22 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-07-20 23:22 - 2015-06-20 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-07-20 23:22 - 2015-06-20 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-07-20 23:22 - 2015-06-20 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-20 23:22 - 2015-06-20 21:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-20 23:22 - 2015-06-20 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-07-20 23:22 - 2015-06-20 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-20 23:22 - 2015-06-20 21:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-07-20 23:22 - 2015-06-20 21:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-07-20 23:22 - 2015-06-20 21:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-20 23:22 - 2015-06-20 21:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-07-20 23:22 - 2015-06-20 21:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-07-20 23:22 - 2015-06-20 21:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-20 23:22 - 2015-06-20 21:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-07-20 23:22 - 2015-06-20 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-20 23:22 - 2015-06-20 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-07-20 23:22 - 2015-06-20 21:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-20 23:22 - 2015-06-20 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-20 23:22 - 2015-06-20 20:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-20 23:22 - 2015-06-20 20:48 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-07-20 23:22 - 2015-06-20 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-20 23:22 - 2015-06-20 20:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-07-20 23:22 - 2015-06-20 20:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-20 23:22 - 2015-06-20 20:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-20 23:22 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-07-20 23:22 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-07-20 23:22 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-07-20 23:22 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-07-20 23:22 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-20 23:22 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-07-20 23:22 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-07-20 23:22 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-07-20 23:22 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-07-20 23:22 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-07-20 23:22 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-07-20 23:22 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-07-20 23:22 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-07-20 23:22 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-07-20 23:22 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-07-20 23:22 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-07-20 23:22 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-07-20 23:22 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-07-20 23:22 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-07-20 23:21 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-20 23:21 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-07-20 23:20 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-20 23:20 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-20 23:20 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-20 23:20 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-20 23:20 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-07-20 23:20 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-07-20 23:20 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-07-20 23:20 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-07-20 23:19 - 2015-07-01 22:56 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-20 23:19 - 2015-07-01 22:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-07-20 23:19 - 2015-07-01 22:49 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-07-20 23:19 - 2015-07-01 22:49 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-07-20 23:19 - 2015-07-01 22:48 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-07-20 23:19 - 2015-07-01 22:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-07-20 23:19 - 2015-07-01 22:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-07-20 23:19 - 2015-07-01 22:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-07-20 23:19 - 2015-07-01 22:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-07-20 23:19 - 2015-07-01 22:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-07-20 23:19 - 2015-07-01 22:39 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-07-20 23:19 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-07-20 23:19 - 2015-07-01 22:29 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-07-20 23:19 - 2015-07-01 22:29 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-07-20 23:19 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-07-20 23:19 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-07-20 23:19 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-07-20 23:19 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-07-20 23:19 - 2015-07-01 21:27 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-20 23:19 - 2015-07-01 21:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-20 23:19 - 2015-07-01 21:26 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-20 23:18 - 2015-06-15 23:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-07-20 23:18 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-20 23:18 - 2015-06-15 23:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-20 23:18 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-07-20 23:18 - 2015-06-15 23:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-07-20 23:18 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-20 23:18 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-07-20 23:18 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-07-20 23:18 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-07-20 23:18 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-07-20 23:18 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2015-07-20 23:18 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2015-07-20 22:56 - 2015-07-20 22:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-07-20 22:56 - 2015-07-20 22:56 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-07-20 22:56 - 2015-07-14 11:44 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-07-10 19:29 - 2015-07-28 16:09 - 00000000 ___HD C:\$Windows.~BT
2015-07-06 11:10 - 2015-07-08 17:58 - 00000000 ____D C:\Program Files (x86)\ArmA3Sync
2015-07-06 11:10 - 2015-07-06 11:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArmA3Sync
2015-07-06 11:09 - 2015-07-06 11:09 - 03505181 _____ (The [S.o.E] team ) C:\Users\Lars\Downloads\arma3sync-installer-1-4-63.exe
2015-07-06 01:44 - 2015-07-06 01:53 - 00000024 _____ C:\Users\Lars\random.dat
2015-07-06 01:44 - 2015-07-06 01:48 - 00000023 _____ C:\Users\Lars\jagexappletviewer.preferences
2015-07-06 01:44 - 2015-07-06 01:44 - 00002080 _____ C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape.lnk
2015-07-06 01:44 - 2015-07-06 01:44 - 00000043 _____ C:\Users\Lars\jagex_cl_runescape_LIVE.dat
2015-07-06 01:44 - 2015-07-06 01:44 - 00000000 ____D C:\Users\Lars\jagexcache
2015-07-06 01:44 - 2015-07-06 01:44 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2015-07-06 01:44 - 2015-07-06 01:44 - 00000000 ____D C:\.jagex_cache_32
2015-07-06 01:40 - 2015-07-06 01:41 - 24219648 _____ C:\Users\Lars\Downloads\RuneScape.msi
2015-07-04 23:19 - 2015-08-02 22:00 - 00000000 ____D C:\Users\Lars\AppData\Local\LogMeIn Hamachi
2015-07-04 23:19 - 2015-07-04 23:19 - 00000000 ____D C:\Users\Lars\AppData\Local\LogMeIn
2015-07-04 23:19 - 2015-07-04 23:19 - 00000000 ____D C:\ProgramData\LogMeIn
2015-07-04 23:17 - 2015-07-04 23:18 - 10375504 _____ C:\Users\Lars\Downloads\minecraft_server.1.8.jar
2015-07-04 23:16 - 2015-07-04 23:16 - 08552448 _____ C:\Users\Lars\Downloads\hamachi_2.2.0.328.msi
2015-07-04 20:52 - 2015-07-04 20:57 - 158004709 _____ C:\Users\Lars\Downloads\bitdebrid.com_DEF.rar
2015-07-04 10:38 - 2015-07-04 10:39 - 10430924 _____ C:\Users\Lars\Downloads\ets2mp_19200.zip
2015-07-04 10:13 - 2015-07-24 00:29 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-07-04 10:13 - 2015-07-04 10:13 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2015-07-04 10:13 - 2015-07-04 10:13 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-07-04 10:12 - 2015-07-04 10:12 - 02218504 _____ C:\Users\Lars\Downloads\instspeedfan451.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-08-02 22:04 - 2015-05-31 20:07 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Spotify
2015-08-02 22:03 - 2011-04-12 09:43 - 00650578 _____ C:\Windows\system32\perfh007.dat
2015-08-02 22:03 - 2011-04-12 09:43 - 00131762 _____ C:\Windows\system32\perfc007.dat
2015-08-02 22:03 - 2009-07-14 07:13 - 01529032 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-02 22:02 - 2015-05-31 20:02 - 00000000 ____D C:\Program Files (x86)\Emsisoft Internet Security
2015-08-02 22:00 - 2015-05-31 20:18 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Skype
2015-08-02 21:59 - 2015-05-31 20:08 - 00000000 ____D C:\Users\Lars\AppData\Local\Spotify
2015-08-02 21:59 - 2015-05-31 19:29 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-02 21:59 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-02 21:53 - 2009-07-14 06:45 - 00031280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-02 21:53 - 2009-07-14 06:45 - 00031280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-02 21:48 - 2015-05-31 18:12 - 01238549 _____ C:\Windows\WindowsUpdate.log
2015-08-02 21:46 - 2015-05-31 19:29 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-02 17:00 - 2015-05-31 19:57 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2015-08-02 16:59 - 2015-06-03 14:42 - 00000000 ____D C:\Users\Lars\AppData\Roaming\TS3Client
2015-08-02 16:59 - 2015-01-22 14:22 - 00000000 ____D C:\Steam
2015-08-02 16:58 - 2015-05-31 20:51 - 00000000 ____D C:\Users\Lars\AppData\Local\Battle.net
2015-08-02 16:18 - 2015-06-23 14:32 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-02 02:00 - 2015-06-06 10:33 - 00000000 ____D C:\Users\Lars\AppData\Local\Adobe
2015-08-02 01:57 - 2015-06-23 14:32 - 00000946 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-08-01 21:30 - 2015-06-16 21:36 - 00007599 _____ C:\Users\Lars\AppData\Local\Resmon.ResmonCfg
2015-08-01 20:56 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-01 13:31 - 2015-05-31 19:49 - 00000000 ____D C:\Users\Lars\AppData\Roaming\Raptr
2015-08-01 13:30 - 2015-05-31 19:29 - 00064416 _____ C:\Users\Lars\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-01 13:30 - 2011-04-12 09:54 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-08-01 13:30 - 2009-07-14 06:45 - 00295392 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-01 13:29 - 2011-04-12 09:55 - 00000000 ____D C:\Windows\CSC
2015-08-01 12:28 - 2009-07-14 04:34 - 00000439 _____ C:\Windows\win.ini
2015-07-31 12:53 - 2015-06-16 17:42 - 00000000 ____D C:\Program Files (x86)\Drakonia Configurator
2015-07-31 03:26 - 2015-05-31 19:45 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-31 01:14 - 2015-05-31 20:14 - 00000000 ____D C:\Users\Lars\AppData\Roaming\.minecraft
2015-07-30 02:04 - 2015-05-31 19:45 - 00000000 ____D C:\AMD
2015-07-30 01:48 - 2015-05-31 19:45 - 00000000 ____D C:\Program Files\AMD
2015-07-29 21:47 - 2015-05-31 19:31 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-29 08:27 - 2015-05-31 19:49 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-07-29 03:00 - 2015-06-04 03:52 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-28 16:12 - 2015-05-31 19:05 - 00000000 ____D C:\Windows\Panther
2015-07-26 23:43 - 2015-06-11 22:13 - 00000000 ____D C:\Users\Lars\AppData\Local\CrashDumps
2015-07-26 23:43 - 2015-06-02 23:07 - 00000000 ____D C:\Users\Lars\AppData\Roaming\TeamViewer
2015-07-26 23:42 - 2015-06-17 11:16 - 00000830 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-07-26 23:42 - 2015-06-17 11:16 - 00000000 ____D C:\Program Files\CCleaner
2015-07-26 23:38 - 2015-06-03 23:37 - 00000000 ____D C:\Program Files (x86)\Overwolf
2015-07-26 23:14 - 2011-04-12 09:55 - 00000000 ____D C:\Windows\ShellNew
2015-07-26 20:19 - 2015-06-07 23:35 - 00000000 ____D C:\Users\Lars\AppData\Roaming\vlc
2015-07-25 10:03 - 2015-06-04 09:37 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-24 08:35 - 2015-06-06 10:40 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-07-24 08:35 - 2015-06-06 10:39 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-07-23 22:27 - 2015-02-07 11:59 - 00000000 ____D C:\Riot Games
2015-07-23 22:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-07-23 09:16 - 2015-06-12 14:46 - 00000000 ____D C:\Users\Lars\AppData\Local\JDownloader 2.0
2015-07-22 01:29 - 2015-06-13 14:37 - 00000000 ____D C:\Users\Lars\Desktop\Neuer Ordner
2015-07-22 01:24 - 2015-06-18 17:19 - 00000000 ____D C:\Users\Lars\Documents\Euro Truck Simulator 2
2015-07-22 01:19 - 2015-06-24 13:35 - 00000000 ____D C:\Users\Lars\Documents\SCANIA Truck Driving Simulator
2015-07-22 00:18 - 2015-05-31 20:56 - 00000000 ____D C:\ProgramData\Riot Games
2015-07-21 05:37 - 2015-05-31 20:06 - 00000000 ____D C:\ProgramData\Oracle
2015-07-21 05:37 - 2015-05-31 20:06 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-21 05:36 - 2015-06-01 21:52 - 00000000 ____D C:\Program Files\Java
2015-07-21 05:17 - 2015-06-04 09:37 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-21 05:17 - 2015-06-04 03:52 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-21 05:17 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-07-21 01:24 - 2015-06-02 00:56 - 00000000 ____D C:\Windows\system32\MRT
2015-07-20 23:41 - 2015-05-31 19:29 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-20 23:41 - 2015-05-31 19:29 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-20 23:21 - 2015-06-23 14:32 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-20 23:21 - 2015-06-23 14:32 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-20 23:21 - 2015-06-23 14:32 - 00003936 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-07-20 23:21 - 2015-06-23 14:32 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-07-08 21:10 - 2015-05-31 20:02 - 00494856 _____ C:\Windows\system32\Drivers\fwndis64.sys
2015-07-06 01:44 - 2015-05-31 18:12 - 00000000 ____D C:\Users\Lars
2015-07-04 20:06 - 2015-06-05 20:36 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-07-04 20:06 - 2015-05-31 20:18 - 00000000 ____D C:\ProgramData\Skype
2015-07-04 10:39 - 2015-06-26 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 Multiplayer
2015-07-04 10:39 - 2015-06-26 21:03 - 00000000 ____D C:\Program Files (x86)\Euro Truck Simulator 2 Multiplayer
2015-07-04 06:52 - 2015-06-23 18:41 - 00012778 _____ C:\Windows\system32\lvcoinst.log
2015-07-03 08:43 - 2015-06-02 00:56 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-06-16 21:36 - 2015-08-01 21:30 - 0007599 _____ () C:\Users\Lars\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap Check =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\System32\winlogon.exe => Datei ist digital signiert
C:\Windows\System32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\System32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\System32\services.exe => Datei ist digital signiert
C:\Windows\System32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\System32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\System32\rpcss.dll => Datei ist digital signiert
C:\Windows\System32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-07-23 22:05
==================== Ende von log ============================
|
|
03.08.2015, 12:53
| #9 |
| /// the machine /// TB-Ausbilder | Systemunterbrechungen sehr hohe CPU Last Konntest du bei dem Freeze noch irgendwas machen? Maus bewegen?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.08.2015, 12:54
| #10 |
| | Systemunterbrechungen sehr hohe CPU Last Ja, ich konnte noch ca. 30-60Sekunden die Maus bewegen danach komplett gefreezt |
|
03.08.2015, 16:22
| #11 |
| /// the machine /// TB-Ausbilder | Systemunterbrechungen sehr hohe CPU Last Mach bitte mal folgendes: Zustand der Festplatte herausfinden - so gehts - Anleitungen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.08.2015, 21:04
| #12 |
| | Systemunterbrechungen sehr hohe CPU Last Habe das herausbekommen Code:
ATTFilter ----------------------------------------------------------------------------
CrystalDiskInfo 6.5.2 (C) 2008-2015 hiyohiyo
Crystal Dew World : hxxp://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2015/08/03 22:03:27
-- Controller Map ----------------------------------------------------------
+ Standard AHCI 1.0 Serieller-ATA-Controller [ATA]
+ ATA Channel 4 (4)
- ST1000DX001-1CM162 ATA Device
+ DAEMON Tools Lite Virtual SCSI Bus [SCSI]
- CD-ROM-Laufwerk
-- Disk List ---------------------------------------------------------------
(1) ST1000DX001-1CM162 : 1000,2 GB [0/0/0, pd1] - st
----------------------------------------------------------------------------
(1) ST1000DX001-1CM162
----------------------------------------------------------------------------
Model : ST1000DX001-1CM162
Firmware : CC43
Serial Number : Z1DD9VJG
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Unbekannt
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 1612 Std.
Power On Count : 284 mal
Temperature : 29 C (84 F)
Health Status : Gut
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 119 _99 __6 00000D58BD60 Lesefehlerrate
03 _97 _97 __0 000000000000 Mittlere Anlaufzeit
04 100 100 _20 000000000051 Start/Stopp-Zyklen der Spindel
05 100 100 _10 000000000000 Wiederzugewiesene Sektoren
07 _74 _60 _30 000001BAA9B2 Suchfehler
09 _99 _99 __0 00000000064C Betriebsstunden
0A 100 100 _97 000000000000 Misslungene Spindelanläufe
0C 100 100 _20 00000000011C Geräte-Einschaltvorgänge
B7 100 100 __0 000000000000 Herstellerspezifisch
B8 100 100 _99 000000000000 Ende-zu-Ende-Fehler
BB 100 100 __0 000000000000 Gemeldete unkorrigierbare Fehler
BC 100 100 __0 000000000001 Befehlszeitüberschreitung
BD 100 100 __0 000000000000 Übergeordnete Schreibvorgänge
BE _71 _47 _45 00001D18001D Luftstromtemperatur
BF 100 100 __0 000000000000 Beschleunigungssensor-Fehlerrate
C0 100 100 __0 000000000063 Ausschaltungsabbrüche
C1 _99 _99 __0 000000000C7C Laden/Entladen-Zyklen
C2 _29 _53 __0 000C0000001D Temperatur
C5 100 100 __0 000000000000 Aktuell ausstehende Sektoren
C6 100 100 __0 000000000000 Nicht korrigierbare Sektoren
C7 200 200 __0 000000000000 UltraDMA-CRC-Fehler
F0 100 253 __0 7DF00000045F Kopfpositionierungszeit
F1 100 253 __0 0001BA080BB1 LBA geschrieben (gesamt)
F2 100 253 __0 0001CCF73F1B LBA gelesen (gesamt)
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5A31 4444 3956 4A47
020: 0000 0000 0004 4343 3433 2020 2020 5354 3130 3030
030: 4458 3030 312D 3143 4D31 3632 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0004 004C 0040
080: 03F0 001F 346B 7D09 4163 3469 BC09 4163 007F 0033
090: 0033 8080 FFFE 0000 D0D0 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5000 C500
110: 7981 CD70 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0001 0000 0000 5800 8806
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 1081 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0003 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 92A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 77 63 60 BD 58 0D 00 00 00 03 03
010: 00 61 61 00 00 00 00 00 00 00 04 32 00 64 64 51
020: 00 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 4A 3C B2 A9 BA 01 00 00 00 09 32
040: 00 63 63 4C 06 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 64 64 1C 01 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 64 01 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 47 2F 1D 00 18 1D 00 00 00 BF 32 00 64 64 00
0B0: 00 00 00 00 00 00 C0 32 00 64 64 63 00 00 00 00
0C0: 00 00 C1 32 00 63 63 7C 0C 00 00 00 00 00 C2 22
0D0: 00 1D 35 1D 00 00 00 0C 00 00 C5 12 00 64 64 00
0E0: 00 00 00 00 00 00 C6 10 00 64 64 00 00 00 00 00
0F0: 00 00 C7 3E 00 C8 C8 00 00 00 00 00 00 00 F0 00
100: 00 64 FD 5F 04 00 00 F0 7D 24 F1 00 00 64 FD B1
110: 0B 08 BA 01 00 00 F2 00 00 64 FD 1B 3F F7 CC 01
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 48 02 00 73
170: 03 00 01 00 01 6A 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 02 03 03 03 03 03 03 03
190: 03 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 D3 E5 76 B9 47 05 00 00
1B0: 00 00 00 00 01 00 CB 01 B1 0B 08 BA 01 00 00 00
1C0: 1B 3F F7 CC 01 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 79 17 00 00 01 00 00 00
1E0: 00 00 00 00 28 06 01 00 00 00 00 00 00 00 00 01
1F0: 00 00 00 00 00 00 00 00 00 00 14 18 00 00 00 8E
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
0B0: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
0C0: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0E0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0F0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 F0 00
100: 00 00 00 00 00 00 00 00 00 00 F1 00 00 00 00 00
110: 00 00 00 00 00 00 F2 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 FD
|
|
04.08.2015, 12:16
| #13 |
| /// the machine /// TB-Ausbilder | Systemunterbrechungen sehr hohe CPU Last Nicht kaputt, aber auch nicht richtig schön. Als nächstes mal den RAM testen mit Memtest86+.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
06.08.2015, 20:51
| #14 |
| | Systemunterbrechungen sehr hohe CPU Last Werde ich sofort machen. Gibt es dafür auch eine Anleitung ? Noch ein paar Infos: Wenn ich meinem PC starte und mich nicht einlogge freezt er dann auch nach paar Minuten. Und nach dem einloggen habe ich kein Internet da steht dann Kabel getrennt und erst nach ca. 5min ist er dann verbunden ohne das ich irgendein Kabel bewegt habe. So habe MEMTEST durchlaufen lassen keine Errors hier ein Bild:  Kann mein Computer seit gestern garnicht mehr benutzt freezt jetzt ständig ein. |
|
07.08.2015, 14:57
| #15 |
| /// the machine /// TB-Ausbilder | Systemunterbrechungen sehr hohe CPU Last Hardware. Musste richtig im Laden testen lassen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Systemunterbrechungen sehr hohe CPU Last |
| adobe, bonjour, ccsetup, computer, cpu, defender, desktop, euro, explorer, flash player, google, hohe cpu, installation, monitor, mozilla, photoshop, prozesse, registry, ressourcenmonitor, scan, security, services.exe, software, super, svchost.exe, systemunterbrechungen, teamspeak, updates, usb, warnung, windows 10, windows 7 |
Linear-Darstellung
