Hallo liebes TrojanerBoard. Ich schreibe zum ersten mal einen solchen Text und bin auch nicht unbedingt ein Informatik Profi aber ich werde mein Bestes geben um die Anweisungen von euch zu 100% zu befolgen.

Nun seit 2 Tagen ist mein PC unglaublich langsam wenn es darum geht Ordner zu öffnen (1-2 minuten langes laden) oder gar irgendetwas laufen zu lassen. Spiele zu spielen ist vollkommen unmöglich da sich der PC dann nach dauerlagg irgendwann einfriert. Im normalen betrieb friert er auch frei nach lust und Laune ein. Ich denke ich habe mir etwas im Internet eingefangen, da ich vor 2 Tagen plötzlich eine Achterbahnfahrt in Chrome erlebt habe. Es wurden unglaublich viele Tabs geöffnet mit immer mehr Spam und Verkaufsangeboten oder anderen dubiosen Seiten.

Ich habe schon versucht mit Avira etwas zu reinigen aber ich denke Avira ist dam ganz und gar nicht gewachsen. Einen PC Cleaner habe ich auch schon ausprobiert welcher es mir jetzt immerhin ermöglich euch hier im Forum schreiben zu können. Die Probleme sind aber weiterhin sehr stark present.

Des weitern ist mir aufgefallen,dass sich im Hintergrund unglaublich viele Tabs öffnen wenn ich den PC ausschalten will. Teilweise Kann sich der PC nicht runterfahrel weil er auf die Beendigung von gefühlt undendlich sich neu öffnenden Tabs wartet.

Im Taskmanager befinden sich auch sau viele Kopien von den selben quellen und darunter auch eine die mir echt große Sorgen bereitet... nämlich die Notepad.exe von der ich gehört habe,dass das der sogenannte Sparkassen Trojaner sein soll.

Außerdem öffnet sich beim Starten von Windows auch immer eine Admin Abfrage ob ich einer unbekannten Datei erlaube Änderungen an meinem PC durchzuführen. Wenn ich diese Abfrage mit Nein beantworte erscheint sie immer wieder und wieder.

Ich denke dass diese gewaltige anzahl an Tabs welche sich geöffnet haben mit einem Werbebanner auf Nexusmods.com (eine Modding Seite für diverse Spiele wie Skyrim oder Fallout 4 welches ich gerade sehr gerne spiele) zusammenhängen auf das ich wohl mehr unbewusst als gewollt drauf geklickt habe.

Hoffentlich kann mir jemand helfen und sehr vielen dank an den oder die, der/die sich die Zeit nimmt mir behilflich zu sein

mfg Michael.B

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

• Starte jetzt FRST.
• Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
• Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
• Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Ich brauche die 64-Bit Version aber leider tauchen fehler auf.

Wenn ich FRST 64-Bit starten will erscheint eine Fehlermeldung: Nicht genügend Systemressourcen, um den angeforderten Dienst auszuführen.

Beim FRST 32-Bit erscheint die Meldung dass ich die Version 64-Bit benutzen soll allerdings startet es und ich erkenne das Fenster im Hintergrund im Gegensatz zur 64-Bit Version.

Edit1: Ich habe Windows im Abgesicherten Modus gestartet und konnte FRST 64-Bit durchlaufen lassen.

Hier die FRST Text Datei:

Code: Alles auswählenAufklappen

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:20-11-2015
durchgeführt von Michael (Administrator) auf BIER (22-11-2015 12:10:23)
Gestartet von C:\Users\Michael\Desktop
Geladene Profile: Michael (Verfügbare Profile: Michael & Administrator)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Safe Mode (minimal)
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [788176 2015-11-11] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [124720 2014-10-09] (Avira Operations GmbH & Co. KG)
HKLM Group Policy restriction on software: C:\Program Files (x86)\Avira\AntiVir Desktop\avnotify.exe <====== ACHTUNG
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ACHTUNG
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ACHTUNG
HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\Run: [Steam] => D:\Steam\steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [57987712 2015-09-28] (Skype Technologies S.A.)
HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\MountPoints2: H - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\MountPoints2: {421feb1a-3740-11e4-aa00-bc5ff421fcce} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-01-05] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2010-02-10] (Autodesk, Inc.)
GroupPolicyScripts: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

ProxyEnable: [.DEFAULT] => Proxy ist aktiviert.
ProxyServer: [.DEFAULT] => http=127.0.0.1:50037;https=127.0.0.1:50037
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7F227EA8-8829-474E-BC26-66CEE0093042}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9925A01F-E45F-4481-80DE-1FC8DD7FE68A}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-596445650-1249027007-2891129913-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.omiga-plus.com/?type=hp&ts=1403996671&from=vtt&uid=ST500DM002-1BD142_S2A47JQEXXXXS2A47JQE
HKU\S-1-5-21-596445650-1249027007-2891129913-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKU\S-1-5-21-596445650-1249027007-2891129913-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://isearch.omiga-plus.com/?type=hp&ts=1403996671&from=vtt&uid=ST500DM002-1BD142_S2A47JQEXXXXS2A47JQE
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKU\S-1-5-21-596445650-1249027007-2891129913-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1403996671&from=vtt&uid=ST500DM002-1BD142_S2A47JQEXXXXS2A47JQE&q={searchTerms}
BHO: Avira SearchFree Toolbar -> {41564952-412D-5637-4300-7A786E7484D7} -> C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll [2014-06-23] (APN LLC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll [2014-05-12] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll [2014-05-12] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-03-19] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-03-19] (Oracle Corporation)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll [2014-06-23] (APN LLC.)
Toolbar: HKU\S-1-5-21-596445650-1249027007-2891129913-1000 -> Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll [2014-06-23] (APN LLC.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\dijqlpac.default
FF Plugin: @java.com/DTPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll [2014-05-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.5.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll [2014-05-12] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-03-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-03-19] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-07-19] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-596445650-1249027007-2891129913-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Michael\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-05-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-596445650-1249027007-2891129913-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Keine Datei]
FF HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\Firefox\Extensions: [{67d5e887-f92d-4c57-8f2b-0165c0432c49}] - C:\Program Files (x86)\Show-Password\150.xpi => nicht gefunden

Chrome: 
=======
CHR Profile: C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-05]
CHR Extension: (Google Docs) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Google Drive) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-09-22]
CHR Extension: (Google-Suche) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Tabellen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-05]
CHR Extension: (Avira Browserschutz) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-10-20]
CHR Extension: (Google Docs Offline) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (agar.io server browser) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-07-04]
CHR Extension: (Agario Extended – Enhance Agar.io Gameplay) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflicjopopjcpojfoefhbpdncmjbcbin [2015-07-04]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-23]
CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcoohmdcpejoeggdnihdfhohjgdbllgm [2015-02-06]
CHR Extension: (Google Mail) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pcoohmdcpejoeggdnihdfhohjgdbllgm] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7C\CRX\ToolbarCR.crx [2014-06-26]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ACHTUNG: => Signaturenvergleich konnte nicht durchgeführt werden. Kryptografischer Dienst läuft nicht.

S2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-07-15] (Advanced Micro Devices, Inc.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [936544 2015-11-11] (Avira Operations GmbH & Co. KG)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466408 2015-11-11] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466408 2015-11-11] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1105952 2015-11-11] (Avira Operations GmbH & Co. KG)
S4 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [165784 2014-06-23] (APN LLC.)
S2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [162096 2014-10-09] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [448384 2014-12-03] ()
S2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
S2 MAGIX StartUp Analyze Service; C:\Program Files (x86)\MAGIX\PC_Check_Tuning_Free_2011\MXSAS.exe [186368 2010-11-04] (MAGIX AG)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2004488 2015-07-02] (Electronic Arts)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-06-06] ()
S2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2014-06-06] ()
S2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 Update NetTock; "C:\Program Files (x86)\NetTock\updateNetTock.exe" [X]
S4 Util NetTock; "C:\Program Files (x86)\NetTock\bin\utilNetTock.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [163544 2015-09-22] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-07-26] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
S2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [74952 2015-09-22] (Avira Operations GmbH & Co. KG)
S3 DFX11_1; C:\Windows\System32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-04-10] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 USBADVAU; C:\Windows\System32\drivers\cm11264.sys [1308160 2009-11-25] (C-Media Electronics Inc)
S3 VBAudioVACMME; C:\Windows\System32\DRIVERS\vbaudio_cable64_win7.sys [41192 2013-07-11] (Windows (R) Win 7 DDK provider)
S3 vhidmini; C:\Windows\System32\DRIVERS\vjoy.sys [15104 2012-10-15] (Headsoft)
S1 {0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw64; C:\Windows\System32\drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw64.sys [61112 2014-06-09] (StdLib)
S2 AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
S3 cpuz132; \??\C:\Users\Michael\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-22 12:10 - 2015-11-22 12:11 - 00016675 _____ C:\Users\Michael\Desktop\FRST.txt
2015-11-22 12:10 - 2015-11-22 12:10 - 00000000 ____D C:\FRST
2015-11-22 11:25 - 2015-11-22 11:21 - 02345984 _____ (Farbar) C:\Users\Michael\Desktop\FRST64.exe
2015-11-21 15:31 - 2015-11-21 15:31 - 00000000 ____D C:\Users\Michael\Documents\MAGIX_MxTray
2015-11-21 14:24 - 2015-11-21 14:24 - 00000000 ____D C:\Windows\pss
2015-11-21 14:01 - 2015-11-21 14:01 - 00000000 ____D C:\Users\Administrator.Bier\Documents\MAGIX_MxTray
2015-11-21 14:00 - 2015-11-21 16:26 - 00029470 _____ C:\Windows\PFRO.log
2015-11-21 13:43 - 2015-11-21 13:43 - 00000000 ____D C:\Users\Administrator.Bier\Tracing
2015-11-21 13:21 - 2015-11-21 14:01 - 00000000 ____D C:\Users\Administrator.Bier\Documents\OnDemandDump
2015-11-21 13:21 - 2015-11-21 14:01 - 00000000 ____D C:\Users\Administrator.Bier\Documents\CrashLog
2015-11-21 13:21 - 2015-11-21 13:21 - 00000000 ____D C:\Users\Administrator.Bier\AppData\Roaming\MAGIX
2015-11-21 13:18 - 2015-11-21 13:51 - 00000000 ____D C:\Users\Administrator.Bier\AppData\Roaming\Skype
2015-11-21 13:18 - 2015-11-21 13:18 - 00000000 ____D C:\Users\Administrator.Bier\AppData\Local\Skype
2015-11-21 12:39 - 2015-11-21 12:39 - 00000000 ____D C:\Users\Michael\AppData\Roaming\MAGIX
2015-11-21 12:36 - 2015-11-22 11:38 - 00000442 _____ C:\Windows\Tasks\PCCT - MAGIX AG.job
2015-11-21 12:36 - 2015-11-21 15:31 - 00002822 _____ C:\Windows\System32\Tasks\PCCT - MAGIX AG
2015-11-21 12:36 - 2015-11-21 12:39 - 00000000 ____D C:\ProgramData\MAGIX
2015-11-21 12:36 - 2015-11-21 12:36 - 00001065 _____ C:\Users\Public\Desktop\MAGIX PC Check & Tuning Free 2011.lnk
2015-11-21 12:36 - 2015-11-21 12:36 - 00000000 ____D C:\Users\Michael\Documents\OnDemandDump
2015-11-21 12:36 - 2015-11-21 12:36 - 00000000 ____D C:\Users\Michael\Documents\CrashLog
2015-11-21 12:36 - 2015-11-21 12:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2015-11-21 12:36 - 2015-11-21 12:36 - 00000000 ____D C:\Program Files (x86)\MAGIX
2015-11-21 11:52 - 2015-11-22 11:38 - 00000672 _____ C:\Windows\setupact.log
2015-11-21 11:52 - 2015-11-21 11:52 - 00000000 _____ C:\Windows\setuperr.log
2015-11-21 03:12 - 2015-11-21 03:12 - 00002786 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-11-21 03:12 - 2015-11-21 03:12 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-11-21 03:12 - 2015-11-21 03:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-21 03:12 - 2015-11-21 03:12 - 00000000 ____D C:\Program Files\CCleaner
2015-11-20 16:23 - 2015-11-20 16:23 - 00000000 ____D C:\Users\Administrator.Bier\AppData\Local\CrashDumps
2015-11-19 13:09 - 2015-11-19 13:10 - 00000000 ___HD C:\ProgramData\{9A88E103-A20A-4EA5-8636-C73B709A5BF8}
2015-11-17 23:56 - 2015-11-17 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-11-17 23:56 - 2015-11-17 23:56 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2015-11-17 12:31 - 2015-11-17 12:42 - 00000106 _____ C:\Users\Michael\Desktop\ROTES KREUZ.txt
2015-11-15 14:22 - 2015-11-15 14:22 - 00000832 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2015-11-15 14:22 - 2015-11-15 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2015-11-12 12:08 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-11 22:56 - 2015-11-11 22:56 - 00000000 ____D C:\Users\Michael\AppData\Local\Fallout4
2015-11-11 14:37 - 2015-11-11 14:37 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2015-11-11 13:23 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-11 13:23 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-11 13:23 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-11 13:23 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-11 13:23 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-11 13:23 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-11-11 13:23 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-11-11 13:23 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-11 13:23 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-11-11 13:23 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-11 13:23 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-11-11 13:23 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-11 13:23 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-11 13:23 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-11 13:23 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-11-11 13:23 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-11 13:22 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-11 13:22 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-11-11 13:22 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-11 13:22 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-11-11 13:22 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-11-11 13:22 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-11 13:22 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-11 13:22 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-11-11 13:22 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-11-11 13:22 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-11 13:22 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-11 13:22 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-11-11 13:22 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-11-11 13:22 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-11 13:22 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-11-11 13:22 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-11-11 13:22 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-11 13:22 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-11 13:22 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-11 13:22 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-11 13:22 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-11 13:22 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-11-11 13:22 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 13:22 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-11 13:22 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-11 13:22 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-11 13:22 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-11 13:22 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-11 13:22 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-11-11 13:22 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-11-11 13:22 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-11-11 13:22 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-11-11 13:22 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-11-11 13:22 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-11 13:22 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-11-11 13:22 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-11-11 13:22 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-11-11 13:22 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-11 13:22 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-11-11 13:22 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-11-11 13:22 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-11 13:22 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-11 13:22 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-11 13:22 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-11 13:22 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-11-11 13:22 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-11-11 13:22 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-11-11 13:22 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-11 13:22 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-11-11 13:22 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-11-11 13:22 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-11-11 13:22 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-11 13:22 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-11-11 13:22 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-11 13:22 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-11-11 13:22 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-11 13:22 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-11 13:22 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-11-11 13:22 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-11-11 13:22 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-11 13:22 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-11 13:22 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-11 13:22 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-11 13:22 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-11 13:21 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-11 13:21 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-11 13:21 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-11 13:21 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-11 13:21 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-11-11 13:21 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-11-11 13:21 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-11-11 13:21 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-11-11 13:21 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-11-11 13:21 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-11-11 13:21 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-11-11 13:21 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-11-11 13:21 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-11-11 13:21 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-11-11 13:21 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-11-11 13:21 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-11-11 13:21 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-11-11 13:21 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-11-11 13:21 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-11-11 13:21 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-11-11 13:21 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-11-11 13:21 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-11 13:21 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-11-11 13:21 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-11-11 13:21 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-11-11 13:21 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-11-11 13:21 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-11-11 13:21 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-11 13:21 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-11-11 13:21 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-11 13:21 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-11-11 13:21 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-11-11 13:21 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-11 13:21 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-11 13:21 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-11 13:21 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-11 13:21 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-11 13:20 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-11-11 13:20 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-11-11 13:20 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-11-11 13:20 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-11-11 13:20 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-11-11 13:20 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-11-11 13:20 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-11-11 13:20 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-11 13:20 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-11 13:20 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-11 13:20 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-11-11 13:20 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-11-11 13:20 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-11-09 16:58 - 2015-11-09 16:58 - 00000121 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2015-11-09 16:58 - 2015-11-09 16:58 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Fatshark
2015-11-08 18:08 - 2015-11-08 18:08 - 00000000 ____D C:\Users\Michael\AppData\LocalLow\Steel Crate Games
2015-11-06 20:24 - 2015-11-06 20:25 - 09146934 _____ C:\Users\Michael\Desktop\Neue Bitmap (4).bmp
2015-11-04 00:06 - 2015-11-04 00:06 - 00000000 _____ C:\Users\Michael\Desktop\Neue Bitmap (3).bmp
2015-11-01 14:15 - 2015-11-01 14:15 - 00000000 ____D C:\Users\Michael\Desktop\EternityKeeper
2015-11-01 14:15 - 2015-11-01 14:15 - 00000000 ____D C:\Users\Michael\.oracle_jre_usage
2015-10-30 16:10 - 2015-10-30 16:10 - 00000000 ____D C:\Users\Michael\AppData\LocalLow\Obsidian Entertainment
2015-10-30 15:20 - 2015-10-30 15:20 - 00001077 _____ C:\Users\Public\Desktop\Pillars of Eternity.lnk
2015-10-30 13:19 - 2014-09-05 15:46 - 00000318 _____ C:\Users\Michael\Desktop\Curse Client.appref-ms
2015-10-25 22:44 - 2015-10-25 22:44 - 00000702 _____ C:\Users\Public\Desktop\Warcraft III.lnk
2015-10-25 22:44 - 2015-10-25 22:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III
2015-10-25 22:25 - 2015-10-25 22:25 - 00000000 ____D C:\Users\Michael\Desktop\Neuer Ordner

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-11-22 11:39 - 2014-01-02 16:34 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-22 11:38 - 2014-01-13 00:17 - 00000408 _____ C:\Windows\Tasks\Show-Password Update.job
2015-11-22 11:29 - 2014-01-02 15:21 - 02039204 _____ C:\Windows\WindowsUpdate.log
2015-11-22 11:28 - 2015-09-01 16:28 - 00000000 ____D C:\Users\Michael\Downloads\Musik
2015-11-22 11:26 - 2014-01-02 16:34 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-22 11:22 - 2009-07-14 05:45 - 00027888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-22 11:22 - 2009-07-14 05:45 - 00027888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-22 11:13 - 2014-01-02 17:14 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Skype
2015-11-22 11:10 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-22 00:58 - 2014-01-04 04:03 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-22 00:35 - 2014-11-30 22:09 - 00000000 ____D C:\Users\Michael\AppData\Local\Battle.net
2015-11-21 22:11 - 2014-11-05 13:25 - 00000000 ____D C:\Users\Michael\AppData\Local\LogMeIn Hamachi
2015-11-21 15:34 - 2015-06-21 15:58 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVEC Complete
2015-11-21 15:06 - 2014-01-02 15:33 - 00000000 ____D C:\Users\Michael
2015-11-21 14:24 - 2015-01-24 05:52 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Raptr
2015-11-21 14:23 - 2014-09-05 15:45 - 00000000 ____D C:\Users\Michael\AppData\Local\Deployment
2015-11-21 14:04 - 2015-04-07 11:10 - 00000000 ____D C:\Users\Administrator.Bier\AppData\Roaming\Raptr
2015-11-21 14:02 - 2015-04-07 11:10 - 00000000 ____D C:\Users\Administrator.Bier\AppData\Local\LogMeIn Hamachi
2015-11-21 14:00 - 2015-04-07 11:09 - 00000000 ____D C:\Users\Administrator.Bier
2015-11-21 13:59 - 2009-07-14 03:34 - 01572864 _____ C:\Windows\system32\config\default.bak
2015-11-21 13:59 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\security.bak
2015-11-21 13:59 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\sam.bak
2015-11-21 13:47 - 2015-05-19 12:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Galactic Civilizations III
2015-11-21 13:47 - 2014-12-05 15:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyShot 5 64
2015-11-21 13:47 - 2014-12-01 17:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2015-11-21 13:47 - 2014-06-12 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ragnarok Battle Offline
2015-11-21 13:47 - 2014-06-12 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyProduct
2015-11-21 13:47 - 2014-04-20 10:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
2015-11-21 13:15 - 2015-04-07 11:09 - 00171208 _____ C:\Users\Administrator.Bier\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-21 03:42 - 2015-06-11 11:27 - 00007599 _____ C:\Users\Michael\AppData\Local\Resmon.ResmonCfg
2015-11-21 03:41 - 2015-09-01 17:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\TeamViewer
2015-11-21 03:41 - 2015-07-20 10:51 - 00000000 ____D C:\Users\Michael\AppData\Roaming\FileZilla
2015-11-21 03:41 - 2014-09-10 10:01 - 00000000 ____D C:\Users\Michael\AppData\Roaming\BitTorrent
2015-11-21 03:41 - 2014-06-11 09:45 - 00000000 ____D C:\Users\Michael\AppData\Roaming\uTorrent
2015-11-21 03:41 - 2014-04-10 15:14 - 00000000 ____D C:\Users\Michael\AppData\Roaming\DAEMON Tools Lite
2015-11-21 03:41 - 2014-01-08 19:33 - 00000000 ____D C:\Users\Michael\AppData\Roaming\TS3Client
2015-11-21 03:23 - 2014-01-02 16:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-11-21 03:19 - 2015-07-25 09:42 - 00000000 ____D C:\Users\Michael\AppData\Local\CrashDumps
2015-11-21 03:19 - 2014-05-14 17:17 - 00000000 ____D C:\Windows\Minidump
2015-11-21 03:19 - 2014-01-02 15:17 - 00000000 ____D C:\Windows\Panther
2015-11-21 02:34 - 2015-01-24 05:52 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-11-19 15:35 - 2014-02-22 13:56 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Winamp
2015-11-19 13:23 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system
2015-11-18 14:32 - 2014-01-26 13:03 - 00000000 ____D C:\Users\Michael\AppData\Roaming\UseNeXT
2015-11-18 14:31 - 2015-04-15 19:21 - 00000000 ____D C:\Users\Michael\Documents\UseNeXT
2015-11-14 13:11 - 2015-02-20 10:46 - 00000000 ____D C:\Users\Michael\AppData\Local\Steam
2015-11-13 19:11 - 2014-11-17 16:20 - 00000000 ____D C:\Windows\rescache
2015-11-12 19:12 - 2009-07-14 05:45 - 00550384 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-12 11:51 - 2014-12-02 12:41 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-11-11 22:56 - 2015-04-09 10:04 - 00000000 ____D C:\Users\Michael\Documents\my games
2015-11-11 22:46 - 2009-07-14 18:58 - 00703344 _____ C:\Windows\system32\perfh007.dat
2015-11-11 22:46 - 2009-07-14 18:58 - 00153292 _____ C:\Windows\system32\perfc007.dat
2015-11-11 22:46 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-11 20:07 - 2015-04-08 11:03 - 00000000 ____D C:\Windows\system32\MRT
2015-11-11 19:59 - 2015-04-08 11:03 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-11 19:59 - 2014-04-10 17:04 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-11 19:48 - 2014-01-02 16:29 - 01581880 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-11-11 19:45 - 2009-07-14 19:18 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-11 12:23 - 2014-01-02 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-10-31 22:49 - 2014-12-24 13:53 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-30 15:20 - 2015-08-12 15:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-10-30 15:20 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-10-25 22:45 - 2014-03-27 16:40 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-10-25 16:47 - 2014-01-02 17:14 - 00000000 ____D C:\ProgramData\Skype
2015-10-23 17:04 - 2015-04-29 00:50 - 00000000 ____D C:\Users\Michael\Documents\Diablo III
2015-10-23 13:33 - 2015-09-02 10:35 - 00000000 ____D C:\Users\Michael\Documents\From The Depths

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-06-11 11:27 - 2015-11-21 03:42 - 0007599 _____ () C:\Users\Michael\AppData\Local\Resmon.ResmonCfg
2015-07-02 12:27 - 2015-07-02 12:44 - 0000017 _____ () C:\Users\Michael\AppData\Local\si
2015-11-09 16:58 - 2015-11-09 16:58 - 0000121 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

Einige Dateien in TEMP:
====================
C:\Users\Administrator.Bier\AppData\Local\Temp\avgnt.exe
C:\Users\Michael\AppData\Local\Temp\avgnt.exe
C:\Users\Michael\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => MD5 ist legitim
C:\Windows\system32\wininit.exe => MD5 ist legitim
C:\Windows\SysWOW64\wininit.exe => MD5 ist legitim
C:\Windows\explorer.exe => MD5 ist legitim
C:\Windows\SysWOW64\explorer.exe => MD5 ist legitim
C:\Windows\system32\svchost.exe => MD5 ist legitim
C:\Windows\SysWOW64\svchost.exe => MD5 ist legitim
C:\Windows\system32\services.exe => MD5 ist legitim
C:\Windows\system32\User32.dll => MD5 ist legitim
C:\Windows\SysWOW64\User32.dll => MD5 ist legitim
C:\Windows\system32\userinit.exe => MD5 ist legitim
C:\Windows\SysWOW64\userinit.exe => MD5 ist legitim
C:\Windows\system32\rpcss.dll => MD5 ist legitim
C:\Windows\system32\dnsapi.dll => MD5 ist legitim
C:\Windows\SysWOW64\dnsapi.dll => MD5 ist legitim
C:\Windows\system32\Drivers\volsnap.sys => MD5 ist legitim


LastRegBack: 2015-11-10 15:36

==================== Ende von FRST.txt ============================
         

und hier die Addition :

Code: Alles auswählenAufklappen

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:20-11-2015
durchgeführt von Michael (2015-11-22 12:12:20)
Gestartet von C:\Users\Michael\Desktop
Windows 7 Professional Service Pack 1 (X64) (2014-01-02 14:33:35)
Start-Modus: Safe Mode (minimal)
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-596445650-1249027007-2891129913-500 - Administrator - Enabled) => C:\Users\Administrator.Bier
Gast (S-1-5-21-596445650-1249027007-2891129913-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-596445650-1249027007-2891129913-1007 - Limited - Enabled)
Michael (S-1-5-21-596445650-1249027007-2891129913-1000 - Administrator - Enabled) => C:\Users\Michael

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

µTorrent (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\uTorrent) (Version: 3.4.2.32343 - BitTorrent Inc.)
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Alien Swarm (HKLM-x32\...\Steam App 630) (Version:  - Valve)
AMD Catalyst Install Manager (HKLM\...\{8DF1EF50-AEB6-902C-F68C-4683C45784E6}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Any Game Starter 3 Version 2.0 (HKLM\...\{D858827F-DF38-4D1B-8D1A-C821C2A6C646}_is1) (Version: 1.2 - Jonathan Haas)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Audacity 2.0.2 (HKLM-x32\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)
Audiograbber 1.83 SE  (HKLM-x32\...\Audiograbber) (Version: 1.83 SE  - Audiograbber)
AutoCAD Mechanical 2011 (HKLM\...\AutoCAD Mechanical 2011) (Version: 15.0.46.0 - Autodesk)
AutoCAD Mechanical 2011 (Version: 15.0.46.0 - Autodesk) Hidden
AutoCAD Mechanical 2011 Language Pack - Deutsch (Version: 15.0.46.0 - Autodesk) Hidden
Autodesk Design Review 2011 (HKLM-x32\...\Autodesk Design Review 2011) (Version: 11.0.0.86 - Autodesk, Inc.)
Autodesk Design Review 2011 (x32 Version: 11.0.0.86 - Autodesk, Inc.) Hidden
Autodesk Inventor View 2011 (Version: 15.0.0000.23900 - Autodesk) Hidden
Autodesk Inventor View 2011 Deutsch (HKLM\...\Autodesk Inventor View 2011) (Version: 15.0.0000.23900 - Autodesk)
Autodesk Inventor View 2011 Language Pack - Deutsch (Version: 15.0.0000.23900 - Autodesk) Hidden
Autodesk Material Library 2011 (HKLM-x32\...\{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}) (Version: 2.0.0.49 - Autodesk)
Autodesk Material Library 2011 Base Image library (HKLM-x32\...\{CD1E078C-A6B9-47DA-B035-6365C85C7832}) (Version: 2.0.0.49 - Autodesk)
Autodesk Vault 2011 (Client) (HKLM-x32\...\Autodesk Vault 2011 (Client)) (Version: 15.0.58.0 - Autodesk, Inc.)
Autodesk Vault 2011 (Client) (Version: 15.0.58.0 - Autodesk, Inc.) Hidden
Autodesk Vault 2011 (Client) German Language Pack (Version: 15.0.58.0 - Autodesk) Hidden
AutoHotkey 1.1.13.01 (HKLM\...\AutoHotkey) (Version: 1.1.13.01 - Lexikos)
Avira (HKLM-x32\...\{905d3ded-fe60-432c-b56e-7cd19f2899ac}) (Version: 1.1.24.28609 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.24.28609 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.14.259 - Avira Operations GmbH & Co. KG)
Avira SearchFree Toolbar (HKLM-x32\...\{41564952-412D-5637-4300-A758B70C0F01}) (Version: 12.15.1.462 - APN, LLC)
Banished (HKLM-x32\...\Steam App 242920) (Version:  - Shining Rock Software LLC)
Besiege (HKLM-x32\...\Steam App 346010) (Version:  - Spiderling Studios)
BitLord 2.4 (HKLM-x32\...\BitLord) (Version: 2.4.1-292 - House of Life)
BitTorrent (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\BitTorrent) (Version: 7.9.2.33498 - BitTorrent Inc.)
BOSS (HKLM-x32\...\BOSS) (Version: 2.1.1 - BOSS Development Team)
Castle Story (HKLM-x32\...\Steam App 227860) (Version:  - Sauropod Studio)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version:  - )
CodeBlocks (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team)
Creation Kit (HKLM-x32\...\Steam App 202480) (Version:  - bgs.bethsoft.com)
Curse Client (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version:  - Red Hook Studios)
De Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.42.130 - Electronic Arts)
De Sims™ 3 Ambities (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
De Sims™ 3 Beestenbende (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
De Sims™ 3 Bovennatuurlijk (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
De Sims™ 3 Buitenleven Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
De Sims™ 3 Buurtleven Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
De Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
De Sims™ 3 Jaargetijden (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
De Sims™ 3 Katy Perry Pakt uit (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
De Sims™ 3 Levensweg (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
De Sims™ 3 Luxe Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
De Sims™ 3 Na Middernacht (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
De Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
De Sims™ 3 Slaap- en badkamer Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
De Sims™ 3 Supersnelle Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
De Sims™ 3 Wereldavonturen (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Defy Gravity (HKLM-x32\...\Steam App 96100) (Version:  - Fish Factory Games)
Divinity - Original Sin (HKLM-x32\...\1207664923_is1) (Version: 2.14.0.26 - GOG.com)
Divinity - Original Sin (HKLM-x32\...\Divinity - Original Sin_is1) (Version:  - )
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
DWG TrueView 2011 (HKLM\...\DWG TrueView 2011) (Version: 18.1.49.0 - Autodesk)
DWG TrueView 2011 (Version: 18.1.49.0 - Autodesk) Hidden
EVE Online (nur entfernen) (HKLM-x32\...\EVE) (Version:  - CCP Games Ltd.)
EVEMon (HKLM-x32\...\EVEMon) (Version: 1.8.5.4162 - battleclinic.com)
FaceTrackNoIR version 1.7 (HKLM-x32\...\FaceTrackNoIR_is1) (Version: 1.7 - FaceTrackNoIR Team)
Fallout 4 (HKLM-x32\...\Steam App 377160) (Version:  - Bethesda Game Studios)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FastCAD (HKLM-x32\...\FastCAD) (Version:  - )
File Type Assistant (HKLM-x32\...\Trusted Software Assistant_is1) (Version: 2014.3.4.0 - ) <==== ACHTUNG
FileZilla Client 3.12.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.12.0.2 - Tim Kosse)
FOMM 0.14.11.12 (HKLM-x32\...\{072C2AEF-16B2-46B7-BA7F-D0CAA7B4F89F}_is1) (Version:  - Prideslayer)
Free Video to MP3 Converter version 5.0.61.805 (HKLM-x32\...\Free Video to MP3 Converter_is1) (Version: 5.0.61.805 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.61.805 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.61.805 - DVDVideoSoft Ltd.)
From The Depths (HKLM-x32\...\Steam App 268650) (Version:  - Brilliant Skies Ltd.)
Galactic Civilizations III (HKLM-x32\...\Galactic Civilizations III_is1) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Happy Wars (HKLM-x32\...\Steam App 246280) (Version:  - Toylogic inc.)
HCS VoicePacks Astra version 1.6.4 (HKLM-x32\...\{D9D9BB49-4B17-4716-9FCC-EA0A2EFB7AF3}_is1) (Version: 1.6.4 - HCS VoicePacks Ltd)
Heroes of Might & Magic V: Hammers of Fate (HKLM-x32\...\{66FF4C48-0083-4E60-8556-B883AB200091}) (Version:  - )
Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\{66FF4C48-0083-4E60-8556-B883AB200092}) (Version:  - )
Heroes of Might and Magic V (HKLM-x32\...\{20071984-5EB1-4881-8EDB-082532ACEC6D}) (Version:  - )
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Ikaruga (HKLM-x32\...\Steam App 253750) (Version:  - Treasure)
InetStat (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\InetStat) (Version: 0.3 - InetStat) <==== ACHTUNG
Intel(R) IPP Run-Time Installer 5.3 Update 4 for Windows* on IA-32 (HKLM-x32\...\{754854DC-2E0A-49D8-A1A1-426C1F9B1459}) (Version: 5.3.4.087 - Intel Corporation)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java 8 Update 5 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418005FF}) (Version: 8.0.50 - Oracle Corporation)
Keep Talking and Nobody Explodes (HKLM-x32\...\Steam App 341800) (Version:  - Steel Crate Games)
KeyShot 5 64 bit (HKLM-x32\...\KeyShot 5_64) (Version: 5.0 64 bit - Luxion ApS)
Landmark Beta (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\SOE-Landmark Beta) (Version: 1.0.3.183 - Sony Online Entertainment)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Livestream Producer (HKLM-x32\...\{BF0B4D35-C3B5-42F5-9030-F2E7D9093986}) (Version: 1.0.6 - Livestream)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.410 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.410 - LogMeIn, Inc.) Hidden
LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.8.9.13 - www.leaguereplays.com)
LOOT (HKLM-x32\...\LOOT) (Version: 0.7.0 - LOOT Development Team)
Lumac (HKLM-x32\...\InstallShield_{5DE11949-2B11-4F13-BAD5-1C237122CFDB}) (Version: 1.1.92.0 - Firstload)
Lumac (x32 Version: 1.1.92.0 - Firstload) Hidden
MAGIX PC Check & Tuning Free 2011 (HKLM-x32\...\MAGIX_MSI_PC_Check_Tuning_Free_2011) (Version: 6.0.403.1050 - MAGIX AG)
MAGIX PC Check & Tuning Free 2011 (x32 Version: 6.0.403.1050 - MAGIX AG) Hidden
MAGIX Screenshare (HKLM-x32\...\{B63DFA23-5C10-44B4-881D-45EFBF4A4761}) (Version: 4.3.6.1987 - MAGIX AG)
MegaTrainer eXperience V1.2.7.1 (HKLM-x32\...\MegaTrainer eXperience_is1) (Version:  - )
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Mozilla Firefox 38.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.3.0 (x86 de)) (Version: 24.3.0 - Mozilla)
Mumble 1.2.8 (HKLM-x32\...\{1BC144A3-20EF-49DD-8EBB-E421E128E30F}) (Version: 1.2.8 - Thorvald Natvig)
New Vegas Enhanced Content Complete (HKLM-x32\...\NVEC Complete) (Version:  - )
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.55.6 - Black Tree Gaming)
Noct (HKLM-x32\...\Steam App 330570) (Version:  - C3SK)
Nom Nom Galaxy (HKLM-x32\...\Steam App 226100) (Version:  - Q-Games, Ltd.)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
One Way Heroics (HKLM-x32\...\Steam App 266210) (Version:  - Smoking WOLF)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Oracle VM VirtualBox 4.3.20 (HKLM\...\{DD8F7A7A-852F-4648-8A73-B8FC1DF5F082}) (Version: 4.3.20 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Pillars of Eternity - The White March - Part 1 (HKLM-x32\...\Pillars of Eternity: The White March - Part 1_is1) (Version: 2.1.0.11 - GOG.com)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.5.0.11 - GOG.com)
Pillars of Eternity Preorder Item and Pet (HKLM-x32\...\Pillars of Eternity Preorder Item and Pet_is1) (Version: 2.0.0.4 - GOG.com)
Pixel Piracy (HKLM-x32\...\Steam App 264140) (Version:  - Vitali Kirpu)
Pokémon Trading Card Game Online (HKLM-x32\...\{C42FFAB2-89E0-4BEE-B20B-917695F25450}) (Version: 2.31.0 - The Pokémon Company International)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Ragnarok Battle Offline (HKLM-x32\...\Ragnarok Battle Offline) (Version:  - )
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.0.2 r2161 - )
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.16.6.18562 - Razer Inc.)
RBO Extra Scenario Vol.1 (HKLM-x32\...\18_is1) (Version:  - Weiky)
RBO Extra Scenario Vol.2 (HKLM-x32\...\35_is1) (Version: 3.00 - Weiky)
RBO Extra Scenario Vol.3 (HKLM-x32\...\36_is1) (Version: 4.00 - Weiky)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6378 - Realtek Semiconductor Corp.)
Rocksmith 2014 (HKLM-x32\...\Steam App 221680) (Version:  - Ubisoft - San Francisco)
RPG Tycoon (HKLM-x32\...\Steam App 314240) (Version:  - Skatanic Studios)
RuneScape Launcher 1.2.6 (HKLM-x32\...\{B49A8622-40E7-4F77-827A-A43E250FADB1}) (Version: 1.2.6 - Jagex Ltd)
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Sennheiser 3D G4ME1 (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392DDDFB6}) (Version: 1.00.0001 - )
Show-Password (HKLM-x32\...\2660f388-de52-436b-ac90-01f4d6e517b6) (Version:  - Show-Password LTD) <==== ACHTUNG
Shutdown Timer (HKLM\...\{0B1BBEE3-C10D-44BE-A6BE-EEC867315F87}) (Version: 3.3.4 - Sinvise Systems)
Sims 3 (HKLM-x32\...\The Sims 3_is1) (Version:  - Maxis, a division of Electronic Arts Inc.)
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim NPC Editor (HKLM-x32\...\{5BA9357B-E876-4FB2-8F1B-C7E63AC90E6F}) (Version: 0.75.1 - foretrenty)
Slopeys ED BPC (HKLM-x32\...\Slopeys ED BPC) (Version: 4.4.0.0 - Slopey)
Solid Edge ST7 (HKLM\...\{AB0F3228-D90C-4574-8A28-589483A68C93}) (Version: 107.00.00104 - Siemens)
StarMade Demo (HKLM-x32\...\Steam App 335180) (Version:  - Schine, GmbH)
Steam Bandits: Outpost (HKLM-x32\...\Steam App 261350) (Version:  - Iocaine Studios)
Surgeon Simulator (HKLM-x32\...\Steam App 233720) (Version:  - Bossa Studios)
Sword of the Stars The Pit Gold Edition (HKLM-x32\...\U3dvcmRvZnRoZVN0YXJzVGhlUGl0R29sZEVkaXRpb24=_is1) (Version: 1 - )
System Requirements Lab Detection (HKLM-x32\...\{5C2655BB-DBF9-4D9D-B944-27E91A5EE1E3}) (Version: 6.1.6.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer)
TinyMiner Trial (Remove only) (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\TinyMinerTrial) (Version: 5.62 - VanGogh Gaming)
TinyMinerPlus (Remove only) (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\TinyMinerPlus) (Version: 5.62 - VanGogh Gaming)
Towns (HKLM-x32\...\Steam App 221020) (Version:  - Xavi Canal, Ben Palgi)
Trove (HKLM-x32\...\Steam App 304050) (Version:  - Trion Worlds)
Ultima 8 (HKLM-x32\...\{428C6B01-D292-46F9-9321-75668ED17DA2}) (Version: 1.0.0.1 - Electronic Arts)
Ultima Online Classic Client (HKLM-x32\...\Ultima Online Classic) (Version:  - Electronic Arts)
Ultima Online Enhanced Client (HKLM-x32\...\Ultima Online Enhanced) (Version:  - Electronic Arts)
Unity Web Player (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version:  - Tangysoft Ltd.)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version:  - VB-Audio Software)
VLC media player 2.0.3 (HKLM-x32\...\VLC media player) (Version: 2.0.3 - VideoLAN)
VoiceAttack (HKLM-x32\...\{FBABC026-02F7-46D5-A0F9-3D355D3C3133}) (Version: 1.5.7 - VoiceAttack.com)
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
Warhammer: End Times - Vermintide (HKLM-x32\...\Steam App 235540) (Version:  - Fatshark)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WindowsProtectManger20.0.0.401 (HKLM-x32\...\WindowsProtectManger) (Version: 20.0.0.401 - Fuyu LIMITED) <==== ACHTUNG
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warships (HKU\S-1-5-21-596445650-1249027007-2891129913-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)
Wrye Bash (HKLM-x32\...\Wrye Bash) (Version: 3.0.4.3 - Wrye & Wrye Bash Development Team)
XMedia Recode Version 3.1.9.7 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.9.7 - XMedia Recode)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-596445650-1249027007-2891129913-1000_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2011\DWGVIEWRficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-596445650-1249027007-2891129913-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\ACADM 2011\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-596445650-1249027007-2891129913-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\ACADM 2011\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-596445650-1249027007-2891129913-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\ACADM 2011\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-596445650-1249027007-2891129913-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\ACADM 2011\acadficn.dll (Autodesk, Inc.)

==================== Wiederherstellungspunkte =========================


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {02070511-1F82-46D7-BE4A-4545EC97AAFD} - System32\Tasks\{4754000A-9707-49C7-93CD-0D4EB781CF52} => pcalua.exe -a "C:\Users\Michael\Downloads\Setup (1).exe" -d C:\Users\Michael\Downloads
Task: {11B7FC08-E047-483F-BCA0-C90FA27EDDE0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {3F15032E-0A2E-4CFD-93D9-790F02C63B6B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {49EDBE6A-091F-4166-B31B-951507A475C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {530B24BD-B676-4AAC-A6DE-5AC304666EB9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {606F9CCF-8488-4875-997F-D59AF1D5065C} - System32\Tasks\PCCT - MAGIX AG => C:\Program Files (x86)\MAGIX\PC_Check_Tuning_Free_2011\MxTray.exe [2010-11-08] ()
Task: {663D9A3A-B55B-4D9E-B135-FE41181A773C} - \ProgramUpdateCheck -> Keine Datei <==== ACHTUNG
Task: {A2BFF5B2-AA9C-443B-A301-E7413A65E68B} - System32\Tasks\{54C75948-6F6C-488B-B424-75B928BBC7FA} => pcalua.exe -a C:\Users\Michael\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe -d C:\Windows\SysWOW64 -c /groupsextract:100;101;102;103; /out:"C:\Users\Michael\AppData\Roaming\Riot Games\League of Legends\prerequisites" /callbackid:3136
Task: {ABADF065-809B-4FB3-9D0A-FE877D460B4B} - System32\Tasks\Show-Password Update => C:\Program Files (x86)\Show-Password\Show_Password.exe <==== ACHTUNG
Task: {CA67136B-5FB5-4D50-882F-804A97A99894} - \ProgramRefresh-ATFST -> Keine Datei <==== ACHTUNG
Task: {D3EE68E0-F560-4DB2-8E49-93970EB829C5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PCCT - MAGIX AG.job => C:\Program Files (x86)\MAGIX\PC_Check_Tuning_Free_2011\MxTray.exe
Task: C:\Windows\Tasks\Show-Password Update.job => C:\Program Files (x86)\Show-Password\Show_Password.exe <==== ACHTUNG

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-07-09 18:32 - 2015-07-09 18:32 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-596445650-1249027007-2891129913-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: AMD FUEL Service => 2
MSCONFIG\Services: APNMCP => 2
MSCONFIG\Services: FLEXnet Licensing Service 64 => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: WindowsProtectManger => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk => C:\Windows\pss\LOLRecorder.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Michael^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip => C:\Windows\pss\CurseClientStartup.ccip.Startup
MSCONFIG\startupreg: 3DG4me => C:\Windows\System\3DG4me.exe
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: InetStat => "C:\Users\Michael\AppData\Roaming\InetStat\inetstat.exe" /c=5
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Raptr => "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
MSCONFIG\startupreg: Razer Synapse => "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: VNT => "C:\Program Files (x86)\VNT\vntldr.exe"
MSCONFIG\startupreg: WinampAgent => "C:\Program Files (x86)\Winamp\winampa.exe"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{B083C421-74B1-4795-ABD9-4D453B6543AE}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{239D6C1C-916C-4073-ABD9-CE275BCEE987}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{18093906-9397-42A5-94D8-C584C07CD8BC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{AB650E99-20E4-4525-A993-5F746FDB2D03}] => (Allow) D:\Steam\SteamApps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{ACC11628-28A1-47F9-B865-A62780AF2663}] => (Allow) D:\Steam\SteamApps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{FEC171B5-5A5F-4AB4-A38B-FFB9D5E64CAF}] => (Allow) D:\Steam\SteamApps\common\King Arthur's Gold\KAG.exe
FirewallRules: [{D9E013C4-A923-4A05-B125-0A8674E4F3AA}] => (Allow) D:\Steam\SteamApps\common\King Arthur's Gold\KAG.exe
FirewallRules: [{160473FA-40C5-4564-82E5-B48E2EFCFC76}] => (Allow) D:\Steam\SteamApps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{46D78DA7-F48C-4B35-9B7F-F63E93096092}] => (Allow) D:\Steam\SteamApps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{34A4FE0D-45F2-4AAF-B5E0-90C4949855A5}] => (Allow) D:\Steam\SteamApps\common\Star Ruler\StarRuler.exe
FirewallRules: [{E02FBB8D-C482-4502-BD51-C5AB2BF510EE}] => (Allow) D:\Steam\SteamApps\common\Star Ruler\StarRuler.exe
FirewallRules: [TCP Query User{8F0A7761-5368-4BCA-88F6-466B8E32FD37}D:\steam\steamapps\common\marchofwar\marchofwar.exe] => (Allow) D:\steam\steamapps\common\marchofwar\marchofwar.exe
FirewallRules: [UDP Query User{25CB0C23-ED9B-4CC7-9639-FC1722015F42}D:\steam\steamapps\common\marchofwar\marchofwar.exe] => (Allow) D:\steam\steamapps\common\marchofwar\marchofwar.exe
FirewallRules: [{616B499D-27F8-44AB-9E67-C06DA7B86E1C}] => (Allow) D:\Steam\SteamApps\common\RPGVXAce\RPGVXAce.exe
FirewallRules: [{B0446D87-57FC-4B91-ACD8-B89B3CDAB8F6}] => (Allow) D:\Steam\SteamApps\common\RPGVXAce\RPGVXAce.exe
FirewallRules: [{085D3B79-4C22-4E95-8676-5A6C500A473E}] => (Allow) C:\Program Files (x86)\File Type Assistant\TSAssist.exe
FirewallRules: [{28DCE963-D9ED-4BC4-8105-E70DD5770D93}] => (Allow) C:\Program Files (x86)\File Type Assistant\TSAssist.exe
FirewallRules: [{AF5B00FC-C028-4D66-BF4F-CA9B0F12833F}] => (Allow) D:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{E00EBEF3-5365-4639-B0E9-0BE8FE9FCFF5}] => (Allow) D:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{56949E01-966F-45FF-88A1-2327C0E3E735}] => (Allow) D:\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{B9678D6A-E926-4230-AC02-2CDD7192F1CD}] => (Allow) D:\Steam\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{C6EE00B5-38C6-4D30-A88D-C5FB14FF958E}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{5BF66E5B-1A7F-4422-A967-8EE06340531F}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [TCP Query User{2FD991E1-F872-4298-A756-7B0637C173A6}C:\program files (x86)\ccp\eve\bin\exefile.exe] => (Allow) C:\program files (x86)\ccp\eve\bin\exefile.exe
FirewallRules: [UDP Query User{641AFFE6-6C1F-4934-8971-1FCC57EACE53}C:\program files (x86)\ccp\eve\bin\exefile.exe] => (Allow) C:\program files (x86)\ccp\eve\bin\exefile.exe
FirewallRules: [{6653CF6A-CC8A-4BD5-BE8D-C751F0CE0690}] => (Allow) D:\Steam\SteamApps\common\One Way Heroics\Game.exe
FirewallRules: [{890816B9-24EC-404A-93E2-F16DC8BA2179}] => (Allow) D:\Steam\SteamApps\common\One Way Heroics\Game.exe
FirewallRules: [{58B7EB87-896E-4A5C-B3E6-D0A2D6593835}] => (Allow) D:\Steam\SteamApps\common\One Way Heroics\Config.exe
FirewallRules: [{055A8A49-3179-49D8-B213-47AD15C2F6CD}] => (Allow) D:\Steam\SteamApps\common\One Way Heroics\Config.exe
FirewallRules: [{2C6BCEE4-494D-42A4-8BC4-7282F830E427}] => (Allow) C:\Program Files (x86)\File Type Assistant\TSAssist.exe
FirewallRules: [{299B2B56-44CA-4D4C-8BEA-75C29406120E}] => (Allow) D:\Steam\SteamApps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [{067A37BF-636C-4557-92B0-573E2B7C0898}] => (Allow) D:\Steam\SteamApps\common\Pixel Piracy\PixelPiracy.exe
FirewallRules: [TCP Query User{83F91C19-0597-4A07-B28D-DC79CEC0FD86}D:\steam\steamapps\common\planet explorers\pe_client.exe] => (Allow) D:\steam\steamapps\common\planet explorers\pe_client.exe
FirewallRules: [UDP Query User{188F84A5-D5C8-4635-9DCC-0643CC3EC0B0}D:\steam\steamapps\common\planet explorers\pe_client.exe] => (Allow) D:\steam\steamapps\common\planet explorers\pe_client.exe
FirewallRules: [TCP Query User{CD623071-3A16-4224-8515-E53E4DC45D4F}D:\steam\steamapps\common\planet explorers\server\pe_server.exe] => (Allow) D:\steam\steamapps\common\planet explorers\server\pe_server.exe
FirewallRules: [UDP Query User{CFB07052-590A-4FC7-80DC-D00123AE3FAE}D:\steam\steamapps\common\planet explorers\server\pe_server.exe] => (Allow) D:\steam\steamapps\common\planet explorers\server\pe_server.exe
FirewallRules: [{76AC5AFC-22C7-4BD2-958F-268CC2551B01}] => (Allow) D:\Steam\SteamApps\common\towns\Towns.exe
FirewallRules: [{6B33020F-0738-4929-9ABC-2F8862A1A1F1}] => (Allow) D:\Steam\SteamApps\common\towns\Towns.exe
FirewallRules: [TCP Query User{8EFF5EF4-2009-4930-ADF1-CC1E45DF7737}C:\everquest next landmark\everquestnextlandmark64.exe] => (Allow) C:\everquest next landmark\everquestnextlandmark64.exe
FirewallRules: [UDP Query User{C3FC5346-07AB-4FD0-8A3C-4F3B1D00F4B5}C:\everquest next landmark\everquestnextlandmark64.exe] => (Allow) C:\everquest next landmark\everquestnextlandmark64.exe
FirewallRules: [TCP Query User{9D672472-B313-404E-8EF9-921338496650}C:\everquest next landmark\browsercontroller.exe] => (Allow) C:\everquest next landmark\browsercontroller.exe
FirewallRules: [UDP Query User{6DD92EA1-D51B-40B8-B09E-9BFBCC87A638}C:\everquest next landmark\browsercontroller.exe] => (Allow) C:\everquest next landmark\browsercontroller.exe
FirewallRules: [{D76E661D-EB36-4BEC-A80C-3B88A1BF1EFF}] => (Allow) LPort=41780
FirewallRules: [TCP Query User{3B2C7112-983D-4111-A1A7-E0EC5A40CFD0}C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe] => (Allow) C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe
FirewallRules: [UDP Query User{CBA1D283-4FAF-482A-9933-97C3E3806584}C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe] => (Allow) C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe
FirewallRules: [{04938D50-1DE8-41EB-BF60-5E37350710F4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{9A05E3A5-A89D-4E14-916D-0724D8B18D79}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{3F3F8D56-11A4-46E8-8736-3B7085C1D7C2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{573F114C-E833-47BF-B5B5-145A50F7B788}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{D01A8040-5FB9-4AA5-BEDE-A1FE1F357AD2}] => (Allow) D:\Steam\SteamApps\common\Cortex Command\Cortex Command.exe
FirewallRules: [{18834964-7573-45CD-8C35-6FE743C01B86}] => (Allow) D:\Steam\SteamApps\common\Cortex Command\Cortex Command.exe
FirewallRules: [{46D1F6AB-0751-4801-8E10-4D7725BEE3C8}] => (Allow) D:\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{3A70DECD-C3B4-41D7-9341-1D527CCCBCBC}] => (Allow) D:\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{EB839B94-9EA8-4676-97C4-E56714C6FBB3}] => (Allow) D:\Steam\SteamApps\common\skyrim\CreationKit.exe
FirewallRules: [{942B4C06-7B1F-43D1-AA42-0BEFD40D63F4}] => (Allow) D:\Steam\SteamApps\common\skyrim\CreationKit.exe
FirewallRules: [{051E9160-2940-4DBA-A23D-A68F23CBA0D4}] => (Allow) D:\Steam\SteamApps\common\Wanderlust Rebirth\Wanderlust.exe
FirewallRules: [{8ACD377A-ADBA-4EBF-9B34-B5D3C07CE691}] => (Allow) D:\Steam\SteamApps\common\Wanderlust Rebirth\Wanderlust.exe
FirewallRules: [{8673460F-63D9-4E91-8BC9-5A87F522D883}] => (Allow) D:\Steam\SteamApps\common\BattleNations\bin\battlenations.exe
FirewallRules: [{469DBEFF-2682-49C4-9845-0CCD43A3C678}] => (Allow) D:\Steam\SteamApps\common\BattleNations\bin\battlenations.exe
FirewallRules: [TCP Query User{C56F42A1-CD69-41D4-9F8F-6DC8DB39B2BB}D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
FirewallRules: [UDP Query User{8BDBA0E8-4351-4B29-B2CE-89CB821C30E7}D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) D:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
FirewallRules: [{015AA74A-1385-4402-965E-8247FC60009E}] => (Allow) D:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{AFFA8688-9AF8-4DED-A97F-0785BB2E55D5}] => (Allow) D:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{600579EE-DDD1-4391-98AA-1BBACA68D4F9}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D2B11CCD-3DCA-4831-BAF5-75AD604D3070}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B396639-A34E-45AC-9089-22846E175397}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{5945F6D8-5F26-47F7-8AE5-33D9E652A64F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{8A2F7F81-3AD4-49F1-950E-2DABF31E802D}D:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{386E719C-D60D-4595-ABB9-7E78A5A6A9F5}D:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [{B2B95A67-2FE8-426A-8237-996DE66A554B}] => (Allow) D:\Steam\SteamApps\common\Alien Swarm\swarm.exe
FirewallRules: [{0EBCD01C-29DF-469A-B88A-2612FFE0B219}] => (Allow) D:\Steam\SteamApps\common\Alien Swarm\swarm.exe
FirewallRules: [{8DF05FB4-25DD-4F60-ADA5-3BA560A05D8E}] => (Allow) C:\Users\Michael\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B9A04D9E-D200-4ED0-8D10-740D303453D1}] => (Allow) C:\Users\Michael\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{ADF42B1A-90D2-4949-AF46-15B1FC626A40}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{9635C097-F46A-4E64-8972-375D3465A73D}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{2DE0F8EA-F70A-4419-9974-545CD9AA0C8C}D:\steam\steamapps\common\deadhorde\deadhorde.exe] => (Allow) D:\steam\steamapps\common\deadhorde\deadhorde.exe
FirewallRules: [UDP Query User{5FA1991A-1439-4186-BBA0-86C0F17BD63A}D:\steam\steamapps\common\deadhorde\deadhorde.exe] => (Allow) D:\steam\steamapps\common\deadhorde\deadhorde.exe
FirewallRules: [TCP Query User{883F7332-059F-4B33-BB48-DA4A3A0B1DBE}D:\spiele\baldur's gate - enhanced edition\baldur.exe] => (Allow) D:\spiele\baldur's gate - enhanced edition\baldur.exe
FirewallRules: [UDP Query User{01340A19-0BC3-41AD-8D5F-B74EEC8EEA3F}D:\spiele\baldur's gate - enhanced edition\baldur.exe] => (Allow) D:\spiele\baldur's gate - enhanced edition\baldur.exe
FirewallRules: [TCP Query User{30BFA3D6-E8CA-444F-A6F1-79C816C58135}C:\program files\java\jre8\bin\javaw.exe] => (Allow) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [UDP Query User{37D7EAD9-A929-4D95-B45C-1304ACC59431}C:\program files\java\jre8\bin\javaw.exe] => (Allow) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [{F14D13BE-E8E1-4812-ABD2-32DB2AFC528D}] => (Allow) D:\Steam\SteamApps\common\Castle Story\Castle Story Prototype.exe
FirewallRules: [{C4CD86EC-2323-49CE-B6EC-79A0C4903AA5}] => (Allow) D:\Steam\SteamApps\common\Castle Story\Castle Story Prototype.exe
FirewallRules: [{72163846-6E9F-434E-81F4-7F1C8C79F8CC}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{67C8EA2B-D468-4E3A-84A5-FD74EA9415D0}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{7FE75FC1-63AF-47B3-908F-CDF0DC3E05FC}] => (Allow) D:\Steam\SteamApps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{2A7B15E6-C572-44DC-BDAD-97CFCE205651}] => (Allow) D:\Steam\SteamApps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{08E8A302-3F43-4147-BA36-3101D0859615}] => (Allow) C:\Users\Michael\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{0CBB0E0B-1CFA-4582-9EBB-1E7EAF5233A3}] => (Allow) C:\Users\Michael\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [TCP Query User{33CC8669-96AA-4E3E-AC5B-2CFD9D9605B9}D:\spiele\age of wonders iii\aow3.exe] => (Allow) D:\spiele\age of wonders iii\aow3.exe
FirewallRules: [UDP Query User{1FF82018-15B2-4B89-B4E1-A92AEBB5B965}D:\spiele\age of wonders iii\aow3.exe] => (Allow) D:\spiele\age of wonders iii\aow3.exe
FirewallRules: [TCP Query User{4D86A439-876C-41E5-8DAF-CBB28DA00ACF}C:\program files (x86)\kainy\kainy.exe] => (Allow) C:\program files (x86)\kainy\kainy.exe
FirewallRules: [UDP Query User{89F30B0A-6785-45B1-8C11-93332C78C502}C:\program files (x86)\kainy\kainy.exe] => (Allow) C:\program files (x86)\kainy\kainy.exe
FirewallRules: [{E4D31476-1173-41D9-916E-29DC842103B2}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{F5AF600F-19B0-4EA6-B4D0-70D623430ADA}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{D2A906C4-0155-4D19-8877-687BCD143D20}] => (Allow) C:\Users\Michael\AppData\Local\Apps\2.0\H8LX2XWY.3XM\PJR54ZBN.1QW\curs..tion_9e9e83ddf3ed3ead_0005.0001_36a9b62a0ea0a2ec\CurseClient.exe
FirewallRules: [{0D0E5A50-379C-4FF6-8135-2F27435D96B3}] => (Allow) C:\Users\Michael\AppData\Local\Apps\2.0\H8LX2XWY.3XM\PJR54ZBN.1QW\curs..tion_9e9e83ddf3ed3ead_0005.0001_36a9b62a0ea0a2ec\CurseClient.exe
FirewallRules: [{8D93EEE6-1AAF-4A67-B694-F74EBF03FC06}] => (Allow) D:\Steam\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [{A5646DFB-F918-4A7E-B892-03E4982FB183}] => (Allow) D:\Steam\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [TCP Query User{5FEF05B5-01BA-460C-AED2-63E95391CABC}D:\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [UDP Query User{88F2E92F-358B-4B8B-A3B4-48634C17AA1F}D:\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{93D79C9F-4ADC-40A7-AFE3-376A5A5C76F5}] => (Block) D:\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{909EA27A-B835-489F-B289-1019A276B5E6}] => (Block) D:\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{96B75086-FC44-48F8-9B29-C5668651B533}] => (Allow) D:\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{FF46ED34-E5C1-4279-9C16-C2787945DF31}] => (Allow) D:\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [TCP Query User{0C400D3F-96A6-48E8-856D-9AA19BC956EF}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{514AF1D5-2201-4CE4-AB19-C1A13F483450}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe
FirewallRules: [{4BF0039C-A023-422A-B29F-25CCA130544C}] => (Block) D:\hearthstone\hearthstone.exe
FirewallRules: [{C62C90AA-772D-4DF3-A0E9-753283953A83}] => (Block) D:\hearthstone\hearthstone.exe
FirewallRules: [{63149475-144C-44C2-8BFC-8C292A49AD3F}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{F0094732-6F82-4232-9565-09FAECA39B23}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{1B68C060-75D8-4C6B-BDEB-F7CE34B2B3D9}] => (Allow) C:\Program Files\KeyShot5\bin\keyshot5.exe
FirewallRules: [{0FF62C5E-1C6D-4965-A299-979E686825B8}] => (Allow) C:\Program Files\KeyShot5\bin\keyshot_daemon.exe
FirewallRules: [{6637092C-0E4A-47D3-95CD-924ED13AEC55}] => (Allow) D:\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{AD021EEA-9AE7-477F-90AF-479F805AFB67}] => (Allow) D:\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{E32E66FF-AFF5-4FE1-BA8B-B439EF3DE815}] => (Allow) D:\Steam\SteamApps\common\Castle Story\Castle Story.exe
FirewallRules: [{3C5ECF57-3CEB-4E91-9EA8-31733FB2CFDD}] => (Allow) D:\Steam\SteamApps\common\Castle Story\Castle Story.exe
FirewallRules: [{583D34C1-4AF8-41CE-A34A-6274CA7C9E58}] => (Allow) D:\Steam\SteamApps\common\StarMade\StarMade-starter.exe
FirewallRules: [{14F6FB75-0FE7-472B-9FB1-2216654DEBBB}] => (Allow) D:\Steam\SteamApps\common\StarMade\StarMade-starter.exe
FirewallRules: [{C81F5E99-C17A-4C04-8AE3-12FB6BB0784B}] => (Allow) D:\Steam\SteamApps\common\Surgeon Simulator 2013\ss2013.exe
FirewallRules: [{34BF690A-D9CB-45BB-B3F6-918415BDD897}] => (Allow) D:\Steam\SteamApps\common\Surgeon Simulator 2013\ss2013.exe
FirewallRules: [TCP Query User{0E2FA8D6-8B52-492D-8737-7246B2CC4584}D:\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) D:\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [UDP Query User{6881D29C-DEAD-4840-8306-A85C39E259FC}D:\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) D:\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{5586C41E-9C13-4095-9DD4-1EE49AEB06B4}] => (Block) D:\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{BB629DC7-B49C-4B7C-8FAF-51E72942F20B}] => (Block) D:\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{9FE9E9CC-149A-49CE-B72A-A6B937D7F4BD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{469AD264-0132-4BB6-8253-A1282FA947FF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [TCP Query User{C95F8146-C859-4FAD-8BCC-E186DB395829}D:\games\electronic arts\ultima online enhanced\uosa.exe] => (Allow) D:\games\electronic arts\ultima online enhanced\uosa.exe
FirewallRules: [UDP Query User{B16F75B1-655E-4570-907C-E514878C7F68}D:\games\electronic arts\ultima online enhanced\uosa.exe] => (Allow) D:\games\electronic arts\ultima online enhanced\uosa.exe
FirewallRules: [{84AE1008-255D-41D8-B860-73899BA043F1}] => (Block) D:\games\electronic arts\ultima online enhanced\uosa.exe
FirewallRules: [{9FEF3AD5-7B9F-4045-9D7E-6A181237AFDC}] => (Block) D:\games\electronic arts\ultima online enhanced\uosa.exe
FirewallRules: [{846E44C6-4FE7-449D-B964-0E6090BDDAB0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{A8B75699-F683-424E-A253-E21B9B20C779}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{54EC6D1A-75C6-49AD-BD47-BFB68FD1912A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{89711C05-EEAE-4E62-9736-44AED9E515B8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{47A4C5E7-70C3-43AB-9097-8A6F14062E98}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{1A3E1A61-27A6-4146-BB4A-C46AA7E6F92A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [TCP Query User{4B4CCC4E-95F8-4E79-805D-CF5F3706E46F}C:\electronic arts\ultima online classic\client.exe] => (Allow) C:\electronic arts\ultima online classic\client.exe
FirewallRules: [UDP Query User{8DEDDBF4-8E68-4F04-A612-48024B131515}C:\electronic arts\ultima online classic\client.exe] => (Allow) C:\electronic arts\ultima online classic\client.exe
FirewallRules: [{6A3FF253-1BBB-4469-A6AD-2C651604CA54}] => (Block) C:\electronic arts\ultima online classic\client.exe
FirewallRules: [{513480BF-47C2-4690-B271-0C5F71F4B0CC}] => (Block) C:\electronic arts\ultima online classic\client.exe
FirewallRules: [{D15306B3-8593-4354-8286-30484C172A94}] => (Allow) D:\Steam\SteamApps\common\Defy Gravity\DefyGravity.exe
FirewallRules: [{917BFA29-FBDE-4BD0-9DF7-656007D0E35C}] => (Allow) D:\Steam\SteamApps\common\Defy Gravity\DefyGravity.exe
FirewallRules: [{4AC241EA-C843-4B2B-AF48-786403B5248C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{66AFF746-3298-4604-9FF4-E53866FAECCA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [TCP Query User{8639ED43-E978-4B47-BFE5-05173687ADBA}C:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe] => (Block) C:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{32187D04-4966-490F-A5AA-C04105C49856}C:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe] => (Block) C:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [TCP Query User{D8842D31-65E7-4CF5-8E52-C84C54024A85}D:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{5C02F492-ACFA-49F4-BFFA-4CDF768BB968}D:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{01EE8897-C9EE-443F-8653-8118FF22EFE1}D:\wolfenstein the new order\wolfneworder_x64.exe] => (Block) D:\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{C90C0009-1180-479E-AACB-F8282B50C6D8}D:\wolfenstein the new order\wolfneworder_x64.exe] => (Block) D:\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [{64AB0128-DF61-4900-A1F5-B1D83693DD3B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{07DF8DA9-A2D9-4D80-8ED4-89424D09E452}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{C829BA97-950C-4162-AFE5-E4BDE6AF1C61}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{3ED98DDA-524A-40DB-9626-A6FDAF8DCAF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [TCP Query User{2D4F6525-116B-4C31-B059-B5A445E6E3AA}D:\hots\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F246B839-3850-415B-9B35-BEC48749C4AF}D:\hots\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base33684\heroesofthestorm_x64.exe
FirewallRules: [{95270A15-6FC6-466E-BE3B-C37200B0F2D7}] => (Allow) D:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{F9B725DA-322C-4606-A621-B2EEC66900E0}] => (Allow) D:\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{4DB6021C-2782-414A-B195-06A2EA165505}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{C49D6285-90AA-4D26-8887-0D69BCD5F24E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{DD5C556F-AD15-4F85-9955-341E1CE17D8A}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{0436821B-4EF2-448C-9CA5-9F4029398C08}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [TCP Query User{1F25BF97-457F-46D3-83C1-2DEDF6412412}D:\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe] => (Allow) D:\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe
FirewallRules: [UDP Query User{0D971BAE-5407-4C1B-B12E-E23B4797C86C}D:\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe] => (Allow) D:\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe
FirewallRules: [{81826399-EE5E-4960-820F-3C25B5FC4D15}] => (Block) D:\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe
FirewallRules: [{1B1F8F75-C4CA-462D-A92C-4472C03B49B8}] => (Block) D:\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe
FirewallRules: [TCP Query User{2A8A9663-22B0-4C45-8825-D28A98647FAE}D:\steam\steamapps\common\elite dangerous\products\combat_tutorial_demo\elitedangerous32.exe] => (Block) D:\steam\steamapps\common\elite dangerous\products\combat_tutorial_demo\elitedangerous32.exe
FirewallRules: [UDP Query User{10CD1900-D326-4EB8-945F-F320AACDBC0F}D:\steam\steamapps\common\elite dangerous\products\combat_tutorial_demo\elitedangerous32.exe] => (Block) D:\steam\steamapps\common\elite dangerous\products\combat_tutorial_demo\elitedangerous32.exe
FirewallRules: [TCP Query User{AB6142DF-EC98-47CC-AD5E-903BDA0721A5}D:\hots\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1AE731A9-3CD9-4B92-A4D9-E8D02956ECFD}D:\hots\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [{0BE9DC33-652A-4E5D-94EB-7671495A6DEE}] => (Block) D:\hots\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [{F3C24FF0-0404-429E-880F-AED5CD0B884F}] => (Block) D:\hots\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [{21E5536D-D75E-4BD1-983A-AEB6AA819BE6}] => (Allow) C:\Program Files (x86)\BitLord\BitLord.exe
FirewallRules: [{64530C6E-A5F2-485E-B50B-40DB9794E6F4}] => (Allow) C:\Program Files (x86)\BitLord\BitLord.exe
FirewallRules: [TCP Query User{8888DEC3-C999-45AF-ABFD-137165BEC3E8}D:\hots\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E1AB3CC9-9664-43A0-9429-0F556154D374}D:\hots\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [{0E75E510-76E1-4C8B-B4C1-439BAE681072}] => (Block) D:\hots\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [{0577997A-168C-4633-9A46-6EC6AE8B5F0A}] => (Block) D:\hots\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{C4912D98-87F6-48D4-9B53-D6F31A498427}D:\spiele\divinity original sin\shipping\eocapp.exe] => (Allow) D:\spiele\divinity original sin\shipping\eocapp.exe
FirewallRules: [UDP Query User{0D460B47-F0A6-4EB8-ABC5-E36D89CA3C85}D:\spiele\divinity original sin\shipping\eocapp.exe] => (Allow) D:\spiele\divinity original sin\shipping\eocapp.exe
FirewallRules: [{BE7A5C74-35BC-4A95-8618-F4C9D7C5B710}] => (Block) D:\spiele\divinity original sin\shipping\eocapp.exe
FirewallRules: [{751A8C16-0734-4D78-85C8-ADA62D4D0247}] => (Block) D:\spiele\divinity original sin\shipping\eocapp.exe
FirewallRules: [{863C8045-04B9-4E1E-B289-94976A1FEB2A}] => (Allow) D:\Steam\SteamApps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{D74343B3-7834-467F-8647-9C27DC6DDD0B}] => (Allow) D:\Steam\SteamApps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{189E24F1-62E5-4716-9492-1898EA07A9DB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A08E75C5-4B9C-432C-973A-1C7886D00BD8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{C5CF74A9-2DCD-4CD6-9F57-96B4914DB06F}D:\hots\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{16EA5571-3113-4B28-9C7C-237C038B2C68}D:\hots\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [{C55761D4-7347-4E62-B4FB-4AA513FBA7F1}] => (Block) D:\hots\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [{71863875-5EEE-4323-BA08-76D1404A7CEA}] => (Block) D:\hots\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{408E5CEF-42FB-44C0-83B8-F858CE24C1EC}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{287C7CC4-5D12-4E78-828D-C18EE38F5A43}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{5F16623C-F88C-4DFD-B263-F7576FF2F6AC}] => (Block) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{1BF9C02B-B284-4C26-B634-E8B45679FC6C}] => (Block) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [TCP Query User{58F76379-FF4F-40D2-9C63-8C0A4B456D1A}D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [UDP Query User{EDF3F922-AB4A-4653-A5CA-3461EEDAC6F4}D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [{28DEDEF8-CF21-42D3-9FD5-5AFDFA0D926F}] => (Block) D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [{F1903CF8-DBC5-4C0B-AF2E-4DA61BE6C7E5}] => (Block) D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [TCP Query User{5840D2E8-EE98-48BD-BA5A-240D31362479}D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergameserver.exe] => (Allow) D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [UDP Query User{31BDCA41-F5E5-4E88-8138-0C5C08B4BDFC}D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergameserver.exe] => (Allow) D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [{27B0F8E7-9006-4A88-B707-A40D55B6D073}] => (Block) D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [{E9143751-9FBB-4EC1-88F3-942E1D3AE1E2}] => (Block) D:\ark dinos\ark survival evolved\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [{E05274CF-3112-483C-82C5-730EEB39A55C}] => (Allow) C:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{50CC05DB-E81E-4171-9714-A630571A033A}] => (Allow) C:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [TCP Query User{40F54A5D-D4E5-4F8D-A0EF-FDC53FD646A1}C:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) C:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [UDP Query User{3FBF534F-EA04-4B4B-B923-F7495A4955EB}C:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) C:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [{6995CB4D-AB42-4996-BA30-53F0668E978B}] => (Block) C:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [{16457C8D-CD2E-45E5-AEEE-590C60FC78C6}] => (Block) C:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [{12D085F9-6A15-456A-8CA0-D612C8CCA184}] => (Allow) C:\Origin\Ultima 8\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{C39AF367-973E-4E48-8313-FD5B8537401D}] => (Allow) C:\Origin\Ultima 8\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{FD1712EE-7EBC-40FF-A49D-DE77D690CB3A}] => (Allow) C:\SteamLibrary\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{4411C537-2154-47E7-8880-EF031EA873F1}] => (Allow) C:\SteamLibrary\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{A76F8A15-ADFC-421E-B452-EB55361A2418}] => (Allow) D:\Steam\SteamApps\common\NomNomGalaxy\NomNomGalaxy.exe
FirewallRules: [{E5D5FC7E-BE47-48D7-863C-E5683EC665F2}] => (Allow) D:\Steam\SteamApps\common\NomNomGalaxy\NomNomGalaxy.exe
FirewallRules: [TCP Query User{B9E6050D-0722-4B9A-AD53-728CCDC08800}D:\hots\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{404BD470-D2B3-4E17-8AF6-23B78F87A7F6}D:\hots\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) D:\hots\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{79C5B44B-F76F-45B2-B33E-D5FFB9F22593}] => (Block) D:\hots\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{C08C8DBC-A83A-4540-AA2F-DBF17B9F2AB6}] => (Block) D:\hots\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{0BA0471B-DCE8-487C-8A2A-E94FBDEA6A64}D:\spiele\divinity - original sin\divinity - original sin\shipping\eocapp.exe] => (Allow) D:\spiele\divinity - original sin\divinity - original sin\shipping\eocapp.exe
FirewallRules: [UDP Query User{24DA45EA-C3B5-4D92-8A68-EB2393DE717A}D:\spiele\divinity - original sin\divinity - original sin\shipping\eocapp.exe] => (Allow) D:\spiele\divinity - original sin\divinity - original sin\shipping\eocapp.exe
FirewallRules: [{D44905B8-93A6-4006-AC88-FBF9237ECEC8}] => (Block) D:\spiele\divinity - original sin\divinity - original sin\shipping\eocapp.exe
FirewallRules: [{F851F34E-5D5B-4294-8770-ED1B98EDD505}] => (Block) D:\spiele\divinity - original sin\divinity - original sin\shipping\eocapp.exe
FirewallRules: [{B244D7A0-FD8B-49B1-BC56-FF782C90AAF1}] => (Allow) D:\Steam\SteamApps\common\Reus\Reus.exe
FirewallRules: [{6DB4AE7B-C0BC-4EA2-B312-54AACC7A0C11}] => (Allow) D:\Steam\SteamApps\common\Reus\Reus.exe
FirewallRules: [{49EFFCE9-D9D0-4515-BA3B-44BBBFBF8FE4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{7D5B1452-B166-4915-8722-BE2E37F97245}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8B6F2CB7-C206-4936-8153-46A0E6AC6258}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3C188432-9CAA-4CA6-B257-158F8CCF47A7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{7E527AA8-0E78-4E41-8C92-CBE6C40673A3}D:\hots\diablo iii\diablo iii.exe] => (Allow) D:\hots\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{3EA7DDBF-EB56-4CFF-8627-3C44EA9093D9}D:\hots\diablo iii\diablo iii.exe] => (Allow) D:\hots\diablo iii\diablo iii.exe
FirewallRules: [{A260A8FE-2F3F-4794-944D-4203C20BACF7}] => (Block) D:\hots\diablo iii\diablo iii.exe
FirewallRules: [{3BA18C1E-C973-41C7-986A-06DCEE0CAD2F}] => (Block) D:\hots\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{C8707906-B6D5-478F-B649-62C56346F569}D:\world_of_warships\wowslauncher.exe] => (Allow) D:\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{C7DDCA80-AE0D-4958-AD46-66BB4B555EBB}D:\world_of_warships\wowslauncher.exe] => (Allow) D:\world_of_warships\wowslauncher.exe
FirewallRules: [{88869FE0-4D3F-48DE-AEE9-6016F8021884}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{06A9C68C-0ED4-4754-B1AD-8EE085B8A61C}] => (Allow) D:\Steam\SteamApps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{95D7E531-2D2A-48B3-A9D3-C26883D94B22}] => (Allow) D:\Steam\SteamApps\common\Trove\GlyphClient.exe
FirewallRules: [{E5A1CE46-8A27-4F9B-ACAD-5841F37E7F9A}] => (Allow) D:\Steam\SteamApps\common\Trove\GlyphClient.exe
FirewallRules: [{968CEEA5-3630-4332-ADA1-DF329144294F}] => (Allow) D:\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{DADA4BF4-E8E4-4775-95DB-949500B4B5B2}] => (Allow) D:\Steam\SteamApps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{3802E2F7-52F0-45D9-AF32-25D62E93C5EC}] => (Allow) C:\SteamLibrary\steamapps\common\From The Depths\From_The_Depths.exe
FirewallRules: [{59C256A8-93C7-4A2E-8956-A0FC83775282}] => (Allow) C:\SteamLibrary\steamapps\common\From The Depths\From_The_Depths.exe
FirewallRules: [TCP Query User{E1CDB44B-AD9A-4500-8C09-E15C905C7934}C:\steamlibrary\steamapps\common\noct\noct.exe] => (Allow) C:\steamlibrary\steamapps\common\noct\noct.exe
FirewallRules: [UDP Query User{735D40D4-4125-41A7-90DD-6E5B4D504745}C:\steamlibrary\steamapps\common\noct\noct.exe] => (Allow) C:\steamlibrary\steamapps\common\noct\noct.exe
FirewallRules: [{6746C3EF-7F9D-483A-8F68-E68050F136C6}] => (Block) C:\steamlibrary\steamapps\common\noct\noct.exe
FirewallRules: [{DD88F0C9-069B-439B-BD83-5CA0FF8B825A}] => (Block) C:\steamlibrary\steamapps\common\noct\noct.exe
FirewallRules: [{236F0F3D-6EC8-4D75-9CC6-4205D2C4C707}] => (Allow) D:\Steam\SteamApps\common\RPG Tycoon\RPGTycoon\RPGTycoon.exe
FirewallRules: [{B18D63ED-FF28-4479-ACBB-F64E5A191070}] => (Allow) D:\Steam\SteamApps\common\RPG Tycoon\RPGTycoon\RPGTycoon.exe
FirewallRules: [{9B0B5DF2-E570-4CE4-A0D3-BCC279CE8337}] => (Allow) C:\SteamLibrary\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe
FirewallRules: [{2EE7BBF0-F926-44F9-8411-29CD0D2F6CFF}] => (Allow) C:\SteamLibrary\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe
FirewallRules: [{FBF42C9E-C400-49EC-801A-A098F924811F}] => (Allow) D:\Steam\SteamApps\common\Warhammer End Times Vermintide\launcher\launcher.exe
FirewallRules: [{2AA81261-C646-4010-8F63-5A8FA18DA801}] => (Allow) D:\Steam\SteamApps\common\Warhammer End Times Vermintide\launcher\launcher.exe
FirewallRules: [{65A5C51B-662E-40B5-8878-2303D2C83833}] => (Allow) D:\Steam\SteamApps\common\Warhammer End Times Vermintide\binaries\vermintide.exe
FirewallRules: [{B7012A42-650C-4F56-94D0-5C126181092E}] => (Allow) D:\Steam\SteamApps\common\Warhammer End Times Vermintide\binaries\vermintide.exe
FirewallRules: [{E5BF70CE-37CF-40F1-9596-03BCFFD16AF5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{583C4556-1160-43E2-BA21-F92A5CB39CD8}] => (Allow) D:\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{5147378C-BE99-45AB-BFCC-5AFD9588D3C2}] => (Allow) D:\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{91D80DF9-6A94-4DD9-B7E4-8E7F141E32B8}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{6C92A726-5D7D-45C8-BE4E-0416DC759BFB}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{10B7837E-3EC0-42F1-B5EE-B1F20363ADAA}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{88C163D6-0640-489E-8DEE-6B2725D26253}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{1BA1E868-60D2-4AFA-B9C6-6CAB55C5C172}] => (Allow) C:\Users\Michael\AppData\Local\Apps\2.0\H8LX2XWY.3XM\PJR54ZBN.1QW\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\CurseClient.exe
FirewallRules: [{323D3FFA-06B2-4DE0-A447-66A589DC0C5D}] => (Allow) C:\Users\Michael\AppData\Local\Apps\2.0\H8LX2XWY.3XM\PJR54ZBN.1QW\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\CurseClient.exe
FirewallRules: [{4C37F191-D5BB-43CC-A550-1CE3187669E7}] => (Allow) D:\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{3392DEF6-478C-407C-BCE7-80C7FFCF6295}] => (Allow) D:\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/21/2015 09:56:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Explorer.EXE, Version 6.1.7601.17567 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: e04

Startzeit: 01d1249d7c5d5650

Endzeit: 27

Anwendungspfad: C:\Windows\Explorer.EXE

Berichts-ID: 619cd9f4-9092-11e5-8731-bc5ff421fcce

Error: (11/21/2015 03:24:18 AM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhost (2604) WebCacheLocal: Fehler -1811 beim Öffnen von Protokolldatei C:\Users\Michael\AppData\Local\Microsoft\Windows\WebCache\V0103ACF.log.

Error: (11/21/2015 02:35:27 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Fehler bei der automatischen Aktualisierung des Drittanbieterstammzertifikats von <hxxp://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/AFE5D244A8D1194230FF479FE2F897BBCD7A8CB4.crt>. Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.

Error: (11/21/2015 02:35:12 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Fehler bei der automatischen Aktualisierung des Drittanbieterstammzertifikats von <hxxp://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/02FAF3E291435468607857694DF5E45B68851868.crt>. Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.

Error: (11/20/2015 04:22:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Avira.OE.Systray.exe, Version: 1.1.24.28621, Zeitstempel: 0x5436a18b
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.19045, Zeitstempel: 0x56258f05
Ausnahmecode: 0xe0434352
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x530
Startzeit der fehlerhaften Anwendung: 0xAvira.OE.Systray.exe0
Pfad der fehlerhaften Anwendung: Avira.OE.Systray.exe1
Pfad des fehlerhaften Moduls: Avira.OE.Systray.exe2
Berichtskennung: Avira.OE.Systray.exe3

Error: (11/20/2015 04:22:35 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Avira.OE.Systray.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.Net.Sockets.SocketException
Stapel:
   bei System.Net.SafeCloseSocketAndEvent.CreateWSASocketWithEvent(System.Net.Sockets.AddressFamily, System.Net.Sockets.SocketType, System.Net.Sockets.ProtocolType, Boolean, Boolean)
   bei System.Net.NetworkInformation.NetworkChange+AddressChangeListener.StartHelper(System.Net.NetworkInformation.NetworkAddressChangedEventHandler, Boolean, System.Net.NetworkInformation.StartIPOptions)
   bei Avira.OE.WinCore.NetworkStatusListener..ctor()
   bei Avira.OE.WinCore.InternetConnectionMonitor..ctor()
   bei Avira.OE.Systray.SystrayIcon..ctor(Avira.OE.WinCore.Interface.IServiceStatusMonitor, Avira.OE.Communicator.Interface.ICommunicatorClientProxy, Avira.OE.MiniGui.IMiniGuiWindow, Avira.OE.WinCore.Interface.IProcessController)
   bei Avira.OE.Systray.SystrayIcon..ctor()
   bei Avira.OE.Systray.Program.Main(System.String[])

Error: (11/20/2015 04:07:40 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Explorer.EXE, Version 6.1.7601.17567 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 9d4

Startzeit: 01d1239c365f8f4b

Endzeit: 87

Anwendungspfad: C:\Windows\Explorer.EXE

Berichts-ID: 6d5e218a-8f98-11e5-b459-bc5ff421fcce

Error: (11/19/2015 01:26:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18098 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: af8

Startzeit: 01d122c547d3f913

Endzeit: 28

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID: b1afbc3e-8eb8-11e5-9a29-bc5ff421fcce

Error: (11/14/2015 08:17:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18098 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1990

Startzeit: 01d11f0f3c3037a1

Endzeit: 131

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID: 57dd1e1e-8b04-11e5-ba70-bc5ff421fcce

Error: (11/14/2015 08:00:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm WinRAR.exe, Version 5.1.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1748

Startzeit: 01d11f0e9b028ca6

Endzeit: 10

Anwendungspfad: C:\Program Files\WinRAR\WinRAR.exe

Berichts-ID: f7af8cf5-8b01-11e5-ba70-bc5ff421fcce


Systemfehler:
=============
Error: (11/22/2015 00:07:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/22/2015 00:07:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/22/2015 00:07:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/22/2015 00:07:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/22/2015 00:07:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/22/2015 00:07:07 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/22/2015 00:07:04 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (11/22/2015 00:07:04 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (11/22/2015 00:07:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (11/22/2015 00:07:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068


==================== Speicherinformationen =========================== 

Prozessor: AMD FX(tm)-6100 Six-Core Processor 
Prozentuale Nutzung des RAM: 9%
Installierter physikalischer RAM: 8171.63 MB
Verfügbarer physikalischer RAM: 7371.6 MB
Summe virtueller Speicher: 16341.47 MB
Verfügbarer virtueller Speicher: 15585.68 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:172.69 GB) (Free:9.19 GB) NTFS
Drive d: (Volume) (Fixed) (Total:292.97 GB) (Free:12.5 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: CD1D27B6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=172.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=293 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

hi,

Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

• Starte bitte die mbar.exe.
• Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
• Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
• Klicke auf den CleanUp Button und erlaube den Neustart.
• Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
• Nach dem Neustart starte die mbar.exe erneut.
• Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop

• Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
• Drücke Start Scan
  
• Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
  TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
  Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Mein Avira interferiert irgendwie mit dem Scanner Program. Ich versuche das mal irgendwie zum laufen zu bringen und melde mich dann wieder.

Avira aus oder deinstallieren.

Also der Malwarebytes Anti-Rootkit hat einiges gefunden beim ersten Durchlauf. Der TDSSKiller findet allerdings nichts und erstellt auch keine Logfile :/

Bin jetzt erstmal ohne Antiviren Programm unterwegs damit ich diese Programme laufen lassen kann.

EDIT 1: Hab den Logfile doch noch finden können

Code: Alles auswählenAufklappen

ATTFilter

12:15:03.0273 0x0530  TDSS rootkit removing tool 3.1.0.7 Nov 29 2015 22:37:04
12:15:08.0396 0x0530  ============================================================
12:15:08.0397 0x0530  Current date / time: 2015/12/01 12:15:08.0396
12:15:08.0397 0x0530  SystemInfo:
12:15:08.0397 0x0530  
12:15:08.0397 0x0530  OS Version: 6.1.7601 ServicePack: 1.0
12:15:08.0397 0x0530  Product type: Workstation
12:15:08.0397 0x0530  ComputerName: BIER
12:15:08.0397 0x0530  UserName: Michael
12:15:08.0397 0x0530  Windows directory: C:\Windows
12:15:08.0397 0x0530  System windows directory: C:\Windows
12:15:08.0397 0x0530  Running under WOW64
12:15:08.0397 0x0530  Processor architecture: Intel x64
12:15:08.0397 0x0530  Number of processors: 6
12:15:08.0397 0x0530  Page size: 0x1000
12:15:08.0397 0x0530  Boot type: Normal boot
12:15:08.0399 0x0530  ============================================================
12:15:11.0982 0x0530  KLMD registered as C:\Windows\system32\drivers\44938132.sys
12:15:12.0724 0x0530  System UUID: {CFEB9C62-5652-B45D-08AD-7E563115A9A0}
12:15:13.0186 0x0530  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:15:13.0204 0x0530  ============================================================
12:15:13.0204 0x0530  \Device\Harddisk0\DR0:
12:15:13.0204 0x0530  MBR partitions:
12:15:13.0204 0x0530  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:15:13.0204 0x0530  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x15963000
12:15:13.0204 0x0530  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x15995800, BlocksNum 0x249EF800
12:15:13.0204 0x0530  ============================================================
12:15:13.0504 0x0530  C: <-> \Device\Harddisk0\DR0\Partition2
12:15:14.0109 0x0530  D: <-> \Device\Harddisk0\DR0\Partition3
12:15:14.0109 0x0530  ============================================================
12:15:14.0109 0x0530  Initialize success
12:15:14.0109 0x0530  ============================================================
12:15:18.0402 0x13a0  ============================================================
12:15:18.0402 0x13a0  Scan started
12:15:18.0402 0x13a0  Mode: Manual; 
12:15:18.0402 0x13a0  ============================================================
12:15:18.0402 0x13a0  KSN ping started
12:15:22.0262 0x13a0  KSN ping finished: true
12:15:32.0526 0x13a0  ================ Scan system memory ========================
12:15:32.0526 0x13a0  System memory - ok
12:15:32.0527 0x13a0  ================ Scan services =============================
12:15:36.0882 0x13a0  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
12:15:36.0980 0x13a0  1394ohci - ok
12:15:37.0075 0x13a0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:15:37.0099 0x13a0  ACPI - ok
12:15:37.0139 0x13a0  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:15:37.0141 0x13a0  AcpiPmi - ok
12:15:37.0320 0x13a0  [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:15:37.0326 0x13a0  AdobeARMservice - ok
12:15:39.0319 0x13a0  [ FBB312C9DA3863673EC18F4AE4101778, 4E9AAE7C700E485C17FDFCC9100A79784673B006D00D4D4CE8F1DB617D25C864 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:15:39.0326 0x13a0  AdobeFlashPlayerUpdateSvc - ok
12:15:39.0368 0x13a0  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
12:15:39.0381 0x13a0  adp94xx - ok
12:15:39.0398 0x13a0  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
12:15:39.0406 0x13a0  adpahci - ok
12:15:39.0423 0x13a0  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
12:15:39.0429 0x13a0  adpu320 - ok
12:15:39.0451 0x13a0  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:15:39.0454 0x13a0  AeLookupSvc - ok
12:15:39.0528 0x13a0  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
12:15:39.0541 0x13a0  AFD - ok
12:15:39.0598 0x13a0  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
12:15:39.0601 0x13a0  agp440 - ok
12:15:39.0623 0x13a0  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
12:15:39.0625 0x13a0  ALG - ok
12:15:39.0653 0x13a0  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:15:39.0654 0x13a0  aliide - ok
12:15:39.0740 0x13a0  [ 6BF0147A7A924E5A3AE049A95ECC9B34, 129F0E0FD165C66FEAAA9438F91001AD89AEF39CD655FE60973B7E97146A12C6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:15:39.0746 0x13a0  AMD External Events Utility - ok
12:15:39.0883 0x13a0  [ 82D9B39F69F577729829C94C93856928, C1328F7F7D3C916785201DDAC09E732151402CB31E82FB8144E83522A9D3F942 ] AMD FUEL Service C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
12:15:39.0891 0x13a0  AMD FUEL Service - ok
12:15:39.0976 0x13a0  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
12:15:40.0000 0x13a0  amdide - ok
12:15:40.0173 0x13a0  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
12:15:40.0181 0x13a0  AmdK8 - ok
12:15:40.0374 0x13a0  amdkmdag - ok
12:15:40.0468 0x13a0  [ 50228D17A34A1E5CF93084A6AE70870B, BF8967C3178F4BC2DF2DDAF272C9598B6E53E6C312B7304D44AC66E3592C63D1 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
12:15:40.0484 0x13a0  amdkmdap - ok
12:15:40.0569 0x13a0  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
12:15:40.0570 0x13a0  AmdPPM - ok
12:15:40.0648 0x13a0  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:15:40.0664 0x13a0  amdsata - ok
12:15:40.0688 0x13a0  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
12:15:40.0693 0x13a0  amdsbs - ok
12:15:40.0732 0x13a0  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:15:40.0732 0x13a0  amdxata - ok
12:15:40.0758 0x13a0  AODDriver4.2.0 - ok
12:15:40.0803 0x13a0  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.3    C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys
12:15:40.0804 0x13a0  AODDriver4.3 - ok
12:15:40.0873 0x13a0  [ E7F2414D8EBF7C269FC5FC878C1DD1E9, 1131F3134A8F9B899BDB6F3CAAC73AF31DE703DC922F4F24BC87994CB859F40D ] APNMCP          C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
12:15:40.0888 0x13a0  APNMCP - ok
12:15:40.0938 0x13a0  [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID           C:\Windows\system32\drivers\appid.sys
12:15:40.0942 0x13a0  AppID - ok
12:15:40.0967 0x13a0  [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:15:40.0969 0x13a0  AppIDSvc - ok
12:15:41.0027 0x13a0  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
12:15:41.0037 0x13a0  Appinfo - ok
12:15:41.0152 0x13a0  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
12:15:41.0162 0x13a0  AppMgmt - ok
12:15:41.0193 0x13a0  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
12:15:41.0199 0x13a0  arc - ok
12:15:41.0220 0x13a0  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
12:15:41.0227 0x13a0  arcsas - ok
12:15:41.0789 0x13a0  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:15:42.0075 0x13a0  aspnet_state - ok
12:15:42.0205 0x13a0  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:15:42.0213 0x13a0  AsyncMac - ok
12:15:42.0340 0x13a0  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:15:42.0342 0x13a0  atapi - ok
12:15:42.0865 0x13a0  [ 36322190763845975E0D001E90687BF2, EA3DB2D112015CA5C744C5A84CDEFF6D02CE7D0E7E6E141AE3E527C2FAB5600E ] athur           C:\Windows\system32\DRIVERS\athurx.sys
12:15:43.0072 0x13a0  athur - ok
12:15:43.0283 0x13a0  [ F270AFC3848C54C67E3BFB892CE9B9C6, BF5F087D2677E8D75DB34335B54496A3C3AFBCE5A019C52B9EB2B1D19A0803B1 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
12:15:43.0305 0x13a0  AtiHDAudioService - ok
12:15:43.0514 0x13a0  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:15:43.0549 0x13a0  AudioEndpointBuilder - ok
12:15:43.0588 0x13a0  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
12:15:43.0600 0x13a0  AudioSrv - ok
12:15:43.0692 0x13a0  [ 67955F48704C0551254E55025077DD55, 7276CDC98B5A7819733A1394AA0028C803F487CDE7710B3B716DB83EA15F6AE3 ] Avira.OE.ServiceHost C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
12:15:43.0699 0x13a0  Avira.OE.ServiceHost - ok
12:15:43.0773 0x13a0  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:15:43.0782 0x13a0  AxInstSV - ok
12:15:43.0877 0x13a0  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
12:15:43.0894 0x13a0  b06bdrv - ok
12:15:43.0927 0x13a0  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
12:15:43.0934 0x13a0  b57nd60a - ok
12:15:43.0965 0x13a0  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:15:43.0968 0x13a0  BDESVC - ok
12:15:43.0987 0x13a0  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:15:43.0988 0x13a0  Beep - ok
12:15:44.0144 0x13a0  [ BE43A13207D6428947248AF7EE05E772, 4118288ECD13B77738070DC298A64732693EEF9679CCFA59FD523CCAACF6335B ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
12:15:44.0199 0x13a0  BEService - ok
12:15:44.0523 0x13a0  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
12:15:44.0550 0x13a0  BFE - ok
12:15:44.0699 0x13a0  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
12:15:44.0729 0x13a0  BITS - ok
12:15:44.0744 0x13a0  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
12:15:44.0745 0x13a0  blbdrive - ok
12:15:44.0807 0x13a0  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:15:44.0813 0x13a0  bowser - ok
12:15:44.0848 0x13a0  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:15:44.0853 0x13a0  BrFiltLo - ok
12:15:44.0867 0x13a0  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:15:44.0869 0x13a0  BrFiltUp - ok
12:15:44.0904 0x13a0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
12:15:44.0924 0x13a0  Browser - ok
12:15:44.0952 0x13a0  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:15:44.0968 0x13a0  Brserid - ok
12:15:44.0979 0x13a0  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:15:44.0983 0x13a0  BrSerWdm - ok
12:15:45.0004 0x13a0  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:15:45.0007 0x13a0  BrUsbMdm - ok
12:15:45.0019 0x13a0  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:15:45.0020 0x13a0  BrUsbSer - ok
12:15:45.0045 0x13a0  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
12:15:45.0048 0x13a0  BTHMODEM - ok
12:15:45.0069 0x13a0  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
12:15:45.0072 0x13a0  bthserv - ok
12:15:45.0090 0x13a0  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:15:45.0095 0x13a0  cdfs - ok
12:15:45.0144 0x13a0  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:15:45.0152 0x13a0  cdrom - ok
12:15:45.0228 0x13a0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:15:45.0234 0x13a0  CertPropSvc - ok
12:15:45.0272 0x13a0  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
12:15:45.0278 0x13a0  circlass - ok
12:15:45.0337 0x13a0  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
12:15:45.0357 0x13a0  CLFS - ok
12:15:45.0515 0x13a0  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:15:45.0565 0x13a0  clr_optimization_v2.0.50727_32 - ok
12:15:45.0712 0x13a0  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:15:45.0760 0x13a0  clr_optimization_v2.0.50727_64 - ok
12:15:46.0292 0x13a0  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:15:47.0008 0x13a0  clr_optimization_v4.0.30319_32 - ok
12:15:47.0144 0x13a0  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:15:47.0539 0x13a0  clr_optimization_v4.0.30319_64 - ok
12:15:47.0565 0x13a0  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:15:47.0569 0x13a0  CmBatt - ok
12:15:47.0593 0x13a0  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:15:47.0595 0x13a0  cmdide - ok
12:15:47.0665 0x13a0  [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG             C:\Windows\system32\Drivers\cng.sys
12:15:47.0678 0x13a0  CNG - ok
12:15:47.0702 0x13a0  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:15:47.0704 0x13a0  Compbatt - ok
12:15:47.0744 0x13a0  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
12:15:47.0750 0x13a0  CompositeBus - ok
12:15:47.0763 0x13a0  COMSysApp - ok
12:15:48.0288 0x13a0  cpuz132 - ok
12:15:48.0355 0x13a0  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
12:15:48.0358 0x13a0  crcdisk - ok
12:15:48.0410 0x13a0  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:15:48.0417 0x13a0  CryptSvc - ok
12:15:48.0468 0x13a0  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
12:15:48.0482 0x13a0  CSC - ok
12:15:48.0532 0x13a0  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
12:15:48.0548 0x13a0  CscService - ok
12:15:48.0604 0x13a0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:15:48.0618 0x13a0  DcomLaunch - ok
12:15:48.0650 0x13a0  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
12:15:48.0658 0x13a0  defragsvc - ok
12:15:48.0704 0x13a0  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:15:48.0710 0x13a0  DfsC - ok
12:15:48.0754 0x13a0  [ 51D50A9A72C18E4629891BF381D123BA, 3C9156F4430A677ACF8F79A648E8FAA668F4A8B58E202B4898CE95396F5A5820 ] DFX11_1         C:\Windows\system32\drivers\dfx11_1x64.sys
12:15:48.0758 0x13a0  DFX11_1 - ok
12:15:48.0815 0x13a0  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:15:48.0824 0x13a0  dg_ssudbus - ok
12:15:48.0905 0x13a0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:15:48.0923 0x13a0  Dhcp - ok
12:15:49.0067 0x13a0  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
12:15:49.0109 0x13a0  DiagTrack - ok
12:15:49.0133 0x13a0  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
12:15:49.0155 0x13a0  discache - ok
12:15:49.0189 0x13a0  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
12:15:49.0192 0x13a0  Disk - ok
12:15:49.0247 0x13a0  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:15:49.0258 0x13a0  Dnscache - ok
12:15:49.0303 0x13a0  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:15:49.0310 0x13a0  dot3svc - ok
12:15:49.0360 0x13a0  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
12:15:49.0378 0x13a0  DPS - ok
12:15:49.0428 0x13a0  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:15:49.0430 0x13a0  drmkaud - ok
12:15:49.0505 0x13a0  [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
12:15:49.0519 0x13a0  dtsoftbus01 - ok
12:15:49.0595 0x13a0  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:15:49.0614 0x13a0  DXGKrnl - ok
12:15:49.0665 0x13a0  EagleX64 - ok
12:15:49.0692 0x13a0  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
12:15:49.0694 0x13a0  EapHost - ok
12:15:49.0832 0x13a0  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
12:15:49.0984 0x13a0  ebdrv - ok
12:15:50.0072 0x13a0  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] EFS             C:\Windows\System32\lsass.exe
12:15:50.0077 0x13a0  EFS - ok
12:15:50.0372 0x13a0  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:15:50.0402 0x13a0  ehRecvr - ok
12:15:50.0427 0x13a0  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
12:15:50.0433 0x13a0  ehSched - ok
12:15:50.0519 0x13a0  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
12:15:50.0783 0x13a0  elxstor - ok
12:15:50.0822 0x13a0  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:15:50.0829 0x13a0  ErrDev - ok
12:15:50.0900 0x13a0  esgiguard - ok
12:15:50.0989 0x13a0  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
12:15:51.0003 0x13a0  EventSystem - ok
12:15:51.0054 0x13a0  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:15:51.0068 0x13a0  exfat - ok
12:15:51.0080 0x13a0  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:15:51.0088 0x13a0  fastfat - ok
12:15:51.0190 0x13a0  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
12:15:51.0210 0x13a0  Fax - ok
12:15:51.0244 0x13a0  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:15:51.0245 0x13a0  fdc - ok
12:15:51.0344 0x13a0  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
12:15:51.0363 0x13a0  fdPHost - ok
12:15:51.0432 0x13a0  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:15:51.0452 0x13a0  FDResPub - ok
12:15:51.0479 0x13a0  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:15:51.0482 0x13a0  FileInfo - ok
12:15:51.0518 0x13a0  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:15:51.0519 0x13a0  Filetrace - ok
12:15:52.0213 0x13a0  [ A4297244D4F817278A6AE45B1899CA9C, F70146A3D78061F00549906355503EDB4402F0599D34CE3208B51562C44AB80A ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
12:15:52.0334 0x13a0  FLEXnet Licensing Service 64 - ok
12:15:52.0377 0x13a0  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:15:52.0395 0x13a0  flpydisk - ok
12:15:52.0554 0x13a0  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:15:52.0595 0x13a0  FltMgr - ok
12:15:52.0897 0x13a0  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
12:15:52.0964 0x13a0  FontCache - ok
12:15:53.0182 0x13a0  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:15:53.0220 0x13a0  FontCache3.0.0.0 - ok
12:15:53.0285 0x13a0  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:15:53.0299 0x13a0  FsDepends - ok
12:15:53.0355 0x13a0  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:15:53.0358 0x13a0  Fs_Rec - ok
12:15:53.0444 0x13a0  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:15:53.0460 0x13a0  fvevol - ok
12:15:53.0533 0x13a0  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
12:15:53.0552 0x13a0  gagp30kx - ok
12:15:53.0682 0x13a0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:15:53.0732 0x13a0  gpsvc - ok
12:15:54.0002 0x13a0  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:15:54.0017 0x13a0  gupdate - ok
12:15:54.0073 0x13a0  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:15:54.0075 0x13a0  gupdatem - ok
12:15:54.0275 0x13a0  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
12:15:54.0278 0x13a0  hamachi - ok
12:15:55.0630 0x13a0  [ C0EF69A59C13D9204D1D70434AA3D00C, 56BD4F7C74B2A36665677C32F30C4E1839DB9AAAC82FFA4A2622B4D261D865F2 ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
12:15:55.0717 0x13a0  Hamachi2Svc - ok
12:15:55.0972 0x13a0  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:15:55.0999 0x13a0  hcw85cir - ok
12:15:56.0189 0x13a0  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:15:56.0278 0x13a0  HdAudAddService - ok
12:15:56.0442 0x13a0  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
12:15:56.0468 0x13a0  HDAudBus - ok
12:15:56.0542 0x13a0  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
12:15:56.0572 0x13a0  HidBatt - ok
12:15:56.0641 0x13a0  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
12:15:56.0664 0x13a0  HidBth - ok
12:15:56.0711 0x13a0  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
12:15:56.0762 0x13a0  HidIr - ok
12:15:56.0844 0x13a0  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
12:15:56.0876 0x13a0  hidserv - ok
12:15:57.0056 0x13a0  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:15:57.0073 0x13a0  HidUsb - ok
12:15:57.0289 0x13a0  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:15:57.0333 0x13a0  hkmsvc - ok
12:15:57.0464 0x13a0  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:15:57.0506 0x13a0  HomeGroupListener - ok
12:15:57.0726 0x13a0  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:15:57.0749 0x13a0  HomeGroupProvider - ok
12:15:57.0838 0x13a0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:15:57.0889 0x13a0  HpSAMD - ok
12:15:58.0279 0x13a0  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:15:58.0398 0x13a0  HTTP - ok
12:15:58.0492 0x13a0  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:15:58.0493 0x13a0  hwpolicy - ok
12:15:58.0567 0x13a0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
12:15:58.0588 0x13a0  i8042prt - ok
12:15:58.0768 0x13a0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:15:58.0792 0x13a0  iaStorV - ok
12:15:58.0982 0x13a0  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:15:59.0123 0x13a0  idsvc - ok
12:15:59.0297 0x13a0  IEEtwCollectorService - ok
12:15:59.0376 0x13a0  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
12:15:59.0404 0x13a0  iirsp - ok
12:15:59.0567 0x13a0  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
12:15:59.0593 0x13a0  IKEEXT - ok
12:16:00.0093 0x13a0  [ C7124DA48E557D8F88D0D7F1254557F4, 300BC8ACB5CCB15F80ECAEAD27F12925EE94C84FE8110143A3E0F30E19DDA87B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:16:00.0148 0x13a0  IntcAzAudAddService - ok
12:16:00.0196 0x13a0  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:16:00.0197 0x13a0  intelide - ok
12:16:00.0309 0x13a0  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:16:00.0368 0x13a0  intelppm - ok
12:16:00.0483 0x13a0  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:16:00.0503 0x13a0  IPBusEnum - ok
12:16:00.0618 0x13a0  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:16:00.0661 0x13a0  IpFilterDriver - ok
12:16:01.0061 0x13a0  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:16:01.0137 0x13a0  iphlpsvc - ok
12:16:01.0168 0x13a0  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:16:01.0171 0x13a0  IPMIDRV - ok
12:16:01.0217 0x13a0  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:16:01.0221 0x13a0  IPNAT - ok
12:16:01.0237 0x13a0  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:16:01.0238 0x13a0  IRENUM - ok
12:16:01.0274 0x13a0  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:16:01.0277 0x13a0  isapnp - ok
12:16:01.0364 0x13a0  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:16:01.0382 0x13a0  iScsiPrt - ok
12:16:01.0476 0x13a0  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:16:01.0478 0x13a0  kbdclass - ok
12:16:01.0622 0x13a0  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:16:01.0659 0x13a0  kbdhid - ok
12:16:01.0703 0x13a0  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] KeyIso          C:\Windows\system32\lsass.exe
12:16:01.0706 0x13a0  KeyIso - ok
12:16:01.0809 0x13a0  [ BCC83F22805F560C8A487F2F296A78FE, B6729B9D85CC3B9377E3143FEF920EFAA82D152845A43074417E9266C9F5C1A8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:16:01.0839 0x13a0  KSecDD - ok
12:16:01.0932 0x13a0  [ 33D52A96BEEE8AFCE9E07EEC9FE0C9DB, 5367B46A43296792A0E6294906D40511079D5CAA23F08D5A7EDE02C06AD34484 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:16:01.0954 0x13a0  KSecPkg - ok
12:16:02.0246 0x13a0  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:16:02.0286 0x13a0  ksthunk - ok
12:16:02.0503 0x13a0  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:16:02.0574 0x13a0  KtmRm - ok
12:16:02.0667 0x13a0  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:16:02.0702 0x13a0  LanmanServer - ok
12:16:02.0889 0x13a0  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:16:02.0909 0x13a0  LanmanWorkstation - ok
12:16:03.0016 0x13a0  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:16:03.0032 0x13a0  lltdio - ok
12:16:03.0211 0x13a0  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:16:03.0266 0x13a0  lltdsvc - ok
12:16:03.0336 0x13a0  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:16:03.0397 0x13a0  lmhosts - ok
12:16:03.0677 0x13a0  [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
12:16:03.0709 0x13a0  LMIGuardianSvc - ok
12:16:03.0773 0x13a0  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
12:16:03.0809 0x13a0  LSI_FC - ok
12:16:03.0921 0x13a0  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
12:16:03.0942 0x13a0  LSI_SAS - ok
12:16:03.0998 0x13a0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:16:04.0014 0x13a0  LSI_SAS2 - ok
12:16:04.0256 0x13a0  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:16:04.0282 0x13a0  LSI_SCSI - ok
12:16:04.0356 0x13a0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:16:04.0389 0x13a0  luafv - ok
12:16:04.0797 0x13a0  [ 8665FA986641C854B1A05AD09CEF7372, 9A9FDE7D1F7F3A83B7C52DC0B6B3E0CA770667D1D90448F3C297A47C66C8C019 ] MAGIX StartUp Analyze Service C:\Program Files (x86)\MAGIX\PC_Check_Tuning_Free_2011\MXSAS.exe
12:16:04.0807 0x13a0  MAGIX StartUp Analyze Service - ok
12:16:04.0912 0x13a0  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
12:16:04.0914 0x13a0  MBfilt - ok
12:16:04.0954 0x13a0  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:16:04.0973 0x13a0  Mcx2Svc - ok
12:16:05.0017 0x13a0  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
12:16:05.0049 0x13a0  megasas - ok
12:16:05.0261 0x13a0  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
12:16:05.0346 0x13a0  MegaSR - ok
12:16:05.0903 0x13a0  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
12:16:05.0953 0x13a0  Microsoft Office Groove Audit Service - ok
12:16:06.0027 0x13a0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
12:16:06.0069 0x13a0  MMCSS - ok
12:16:06.0109 0x13a0  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
12:16:06.0133 0x13a0  Modem - ok
12:16:06.0239 0x13a0  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:16:06.0241 0x13a0  monitor - ok
12:16:06.0301 0x13a0  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:16:06.0303 0x13a0  mouclass - ok
12:16:06.0388 0x13a0  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:16:06.0401 0x13a0  mouhid - ok
12:16:06.0447 0x13a0  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:16:06.0451 0x13a0  mountmgr - ok
12:16:06.0701 0x13a0  [ DD370A8148862150BA81A3F5C56A1E40, F56B84297BDC32266CB69D10FB2D66B8B332D60CAB7E64E4E3AC2BB749BBD31B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:16:06.0723 0x13a0  MozillaMaintenance - ok
12:16:06.0769 0x13a0  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:16:06.0791 0x13a0  mpio - ok
12:16:06.0858 0x13a0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:16:06.0876 0x13a0  mpsdrv - ok
12:16:06.0996 0x13a0  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:16:07.0019 0x13a0  MpsSvc - ok
12:16:07.0073 0x13a0  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:16:07.0096 0x13a0  MRxDAV - ok
12:16:07.0169 0x13a0  [ 73ADDCC406B86E7DA4416691E8E74BDA, 4EC970B9095E6DAA79BF7EFB92DF3F2C0AB0C46739AA36C171A262E05B63CBB5 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:16:07.0203 0x13a0  mrxsmb - ok
12:16:07.0273 0x13a0  [ 7C81098FBAF2EAF5B54B939F832B0F61, 999435DF4638ECB136D5BF1B84305A84B215BAB542E4D5301E57D28D507E11B3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:16:07.0289 0x13a0  mrxsmb10 - ok
12:16:07.0328 0x13a0  [ ACB763673BCCE6C7B3B8F858C9FE4F1F, CCD49558F8A01A225AEAE60BF299BCA6E9399E39F4F553FABC36CADB164BBBC0 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:16:07.0347 0x13a0  mrxsmb20 - ok
12:16:07.0374 0x13a0  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:16:07.0403 0x13a0  msahci - ok
12:16:07.0456 0x13a0  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:16:07.0489 0x13a0  msdsm - ok
12:16:07.0551 0x13a0  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
12:16:07.0569 0x13a0  MSDTC - ok
12:16:07.0644 0x13a0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:16:07.0662 0x13a0  Msfs - ok
12:16:07.0722 0x13a0  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:16:07.0743 0x13a0  mshidkmdf - ok
12:16:07.0794 0x13a0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:16:07.0797 0x13a0  msisadrv - ok
12:16:07.0904 0x13a0  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:16:07.0916 0x13a0  MSiSCSI - ok
12:16:07.0921 0x13a0  msiserver - ok
12:16:07.0994 0x13a0  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:16:08.0009 0x13a0  MSKSSRV - ok
12:16:08.0276 0x13a0  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:16:08.0293 0x13a0  MSPCLOCK - ok
12:16:08.0386 0x13a0  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:16:08.0409 0x13a0  MSPQM - ok
12:16:08.0523 0x13a0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:16:08.0541 0x13a0  MsRPC - ok
12:16:08.0579 0x13a0  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
12:16:08.0581 0x13a0  mssmbios - ok
12:16:08.0697 0x13a0  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:16:08.0699 0x13a0  MSTEE - ok
12:16:08.0766 0x13a0  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
12:16:08.0769 0x13a0  MTConfig - ok
12:16:08.0821 0x13a0  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
12:16:08.0842 0x13a0  Mup - ok
12:16:08.0966 0x13a0  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
12:16:08.0989 0x13a0  napagent - ok
12:16:09.0093 0x13a0  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:16:09.0111 0x13a0  NativeWifiP - ok
12:16:09.0303 0x13a0  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:16:09.0331 0x13a0  NDIS - ok
12:16:09.0437 0x13a0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:16:09.0451 0x13a0  NdisCap - ok
12:16:09.0511 0x13a0  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:16:09.0527 0x13a0  NdisTapi - ok
12:16:09.0607 0x13a0  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:16:09.0613 0x13a0  Ndisuio - ok
12:16:09.0696 0x13a0  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:16:09.0729 0x13a0  NdisWan - ok
12:16:09.0799 0x13a0  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:16:09.0818 0x13a0  NDProxy - ok
12:16:09.0936 0x13a0  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:16:09.0946 0x13a0  NetBIOS - ok
12:16:10.0076 0x13a0  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:16:10.0124 0x13a0  NetBT - ok
12:16:10.0161 0x13a0  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] Netlogon        C:\Windows\system32\lsass.exe
12:16:10.0163 0x13a0  Netlogon - ok
12:16:10.0339 0x13a0  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
12:16:10.0362 0x13a0  Netman - ok
12:16:12.0309 0x13a0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:16:12.0531 0x13a0  NetMsmqActivator - ok
12:16:12.0551 0x13a0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:16:12.0553 0x13a0  NetPipeActivator - ok
12:16:12.0753 0x13a0  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
12:16:12.0806 0x13a0  netprofm - ok
12:16:12.0883 0x13a0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:16:12.0891 0x13a0  NetTcpActivator - ok
12:16:12.0936 0x13a0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:16:12.0942 0x13a0  NetTcpPortSharing - ok
12:16:13.0010 0x13a0  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
12:16:13.0040 0x13a0  nfrd960 - ok
12:16:13.0183 0x13a0  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:16:13.0210 0x13a0  NlaSvc - ok
12:16:13.0247 0x13a0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:16:13.0282 0x13a0  Npfs - ok
12:16:13.0321 0x13a0  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
12:16:13.0360 0x13a0  nsi - ok
12:16:13.0422 0x13a0  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:16:13.0448 0x13a0  nsiproxy - ok
12:16:13.0885 0x13a0  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:16:13.0937 0x13a0  Ntfs - ok
12:16:14.0012 0x13a0  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
12:16:14.0037 0x13a0  Null - ok
12:16:14.0181 0x13a0  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:16:14.0198 0x13a0  nvraid - ok
12:16:14.0390 0x13a0  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:16:14.0478 0x13a0  nvstor - ok
12:16:14.0596 0x13a0  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:16:14.0693 0x13a0  nv_agp - ok
12:16:15.0148 0x13a0  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:16:15.0271 0x13a0  odserv - ok
12:16:15.0347 0x13a0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:16:15.0395 0x13a0  ohci1394 - ok
12:16:15.0712 0x13a0  [ 880CD3C9ACE342F29AB2F90C751B91A4, 7882ED604EE443E182B323D9A38E35B49FD8C28EDC1196B65EDFABB22CBF6161 ] Origin Client Service D:\Origin\OriginClientService.exe
12:16:16.0063 0x13a0  Origin Client Service - ok
12:16:16.0236 0x13a0  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:16:16.0311 0x13a0  ose - ok
12:16:16.0536 0x13a0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:16:16.0677 0x13a0  p2pimsvc - ok
12:16:16.0858 0x13a0  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
12:16:16.0873 0x13a0  p2psvc - ok
12:16:16.0944 0x13a0  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
12:16:16.0987 0x13a0  Parport - ok
12:16:17.0082 0x13a0  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:16:17.0103 0x13a0  partmgr - ok
12:16:17.0213 0x13a0  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:16:17.0246 0x13a0  PcaSvc - ok
12:16:17.0343 0x13a0  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
12:16:17.0386 0x13a0  pci - ok
12:16:17.0431 0x13a0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:16:17.0432 0x13a0  pciide - ok
12:16:17.0536 0x13a0  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
12:16:17.0571 0x13a0  pcmcia - ok
12:16:17.0607 0x13a0  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:16:17.0629 0x13a0  pcw - ok
12:16:18.0083 0x13a0  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:16:18.0236 0x13a0  PEAUTH - ok
12:16:18.0759 0x13a0  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
12:16:18.0966 0x13a0  PeerDistSvc - ok
12:16:26.0978 0x13a0  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:16:27.0044 0x13a0  PerfHost - ok
12:16:27.0397 0x13a0  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
12:16:27.0553 0x13a0  pla - ok
12:16:27.0754 0x13a0  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:16:27.0779 0x13a0  PlugPlay - ok
12:16:28.0141 0x13a0  PnkBstrA - ok
12:16:28.0489 0x13a0  PnkBstrB - ok
12:16:28.0631 0x13a0  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:16:28.0687 0x13a0  PNRPAutoReg - ok
12:16:28.0916 0x13a0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:16:28.0934 0x13a0  PNRPsvc - ok
12:16:29.0286 0x13a0  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:16:29.0407 0x13a0  PolicyAgent - ok
12:16:29.0588 0x13a0  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
12:16:29.0658 0x13a0  Power - ok
12:16:29.0993 0x13a0  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:16:30.0061 0x13a0  PptpMiniport - ok
12:16:30.0178 0x13a0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
12:16:30.0261 0x13a0  Processor - ok
12:16:30.0358 0x13a0  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:16:30.0420 0x13a0  ProfSvc - ok
12:16:30.0475 0x13a0  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:16:30.0476 0x13a0  ProtectedStorage - ok
12:16:30.0757 0x13a0  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:16:30.0773 0x13a0  Psched - ok
12:16:31.0726 0x13a0  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
12:16:31.0824 0x13a0  ql2300 - ok
12:16:31.0947 0x13a0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
12:16:32.0069 0x13a0  ql40xx - ok
12:16:32.0220 0x13a0  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
12:16:32.0370 0x13a0  QWAVE - ok
12:16:32.0406 0x13a0  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:16:32.0421 0x13a0  QWAVEdrv - ok
12:16:32.0597 0x13a0  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:16:32.0706 0x13a0  RasAcd - ok
12:16:32.0986 0x13a0  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:16:33.0086 0x13a0  RasAgileVpn - ok
12:16:33.0322 0x13a0  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
12:16:33.0486 0x13a0  RasAuto - ok
12:16:33.0768 0x13a0  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:16:33.0805 0x13a0  Rasl2tp - ok
12:16:33.0987 0x13a0  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
12:16:34.0083 0x13a0  RasMan - ok
12:16:34.0256 0x13a0  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:16:34.0356 0x13a0  RasPppoe - ok
12:16:34.0461 0x13a0  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:16:34.0722 0x13a0  RasSstp - ok
12:16:34.0963 0x13a0  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:16:34.0998 0x13a0  rdbss - ok
12:16:35.0097 0x13a0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
12:16:35.0135 0x13a0  rdpbus - ok
12:16:35.0295 0x13a0  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:16:35.0487 0x13a0  RDPCDD - ok
12:16:35.0678 0x13a0  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:16:35.0726 0x13a0  RDPDR - ok
12:16:35.0885 0x13a0  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:16:36.0020 0x13a0  RDPENCDD - ok
12:16:36.0050 0x13a0  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:16:36.0131 0x13a0  RDPREFMP - ok
12:16:36.0303 0x13a0  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:16:36.0430 0x13a0  RDPWD - ok
12:16:36.0640 0x13a0  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:16:36.0712 0x13a0  rdyboost - ok
12:16:36.0933 0x13a0  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:16:36.0975 0x13a0  RemoteAccess - ok
12:16:37.0430 0x13a0  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:16:37.0456 0x13a0  RemoteRegistry - ok
12:16:37.0569 0x13a0  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:16:37.0626 0x13a0  RpcEptMapper - ok
12:16:37.0674 0x13a0  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
12:16:37.0724 0x13a0  RpcLocator - ok
12:16:38.0169 0x13a0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
12:16:38.0190 0x13a0  RpcSs - ok
12:16:38.0281 0x13a0  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:16:38.0321 0x13a0  rspndr - ok
12:16:38.0615 0x13a0  [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
12:16:38.0628 0x13a0  RTL8167 - ok
12:16:38.0803 0x13a0  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
12:16:38.0862 0x13a0  s3cap - ok
12:16:38.0967 0x13a0  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] SamSs           C:\Windows\system32\lsass.exe
12:16:38.0969 0x13a0  SamSs - ok
12:16:39.0221 0x13a0  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:16:39.0241 0x13a0  sbp2port - ok
12:16:39.0437 0x13a0  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:16:39.0503 0x13a0  SCardSvr - ok
12:16:39.0662 0x13a0  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:16:39.0683 0x13a0  scfilter - ok
12:16:41.0051 0x13a0  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
12:16:41.0443 0x13a0  Schedule - ok
12:16:41.0626 0x13a0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:16:41.0631 0x13a0  SCPolicySvc - ok
12:16:41.0809 0x13a0  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:16:41.0853 0x13a0  SDRSVC - ok
12:16:42.0152 0x13a0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:16:42.0218 0x13a0  secdrv - ok
12:16:42.0464 0x13a0  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
12:16:42.0517 0x13a0  seclogon - ok
12:16:42.0607 0x13a0  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
12:16:42.0664 0x13a0  SENS - ok
12:16:42.0836 0x13a0  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:16:43.0022 0x13a0  SensrSvc - ok
12:16:43.0241 0x13a0  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:16:43.0289 0x13a0  Serenum - ok
12:16:43.0389 0x13a0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:16:43.0518 0x13a0  Serial - ok
12:16:43.0701 0x13a0  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
12:16:43.0733 0x13a0  sermouse - ok
12:16:43.0930 0x13a0  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
12:16:43.0998 0x13a0  SessionEnv - ok
12:16:44.0375 0x13a0  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:16:44.0482 0x13a0  sffdisk - ok
12:16:44.0673 0x13a0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:16:44.0713 0x13a0  sffp_mmc - ok
12:16:44.0956 0x13a0  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:16:45.0240 0x13a0  sffp_sd - ok
12:16:45.0590 0x13a0  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:16:45.0652 0x13a0  sfloppy - ok
12:16:46.0150 0x13a0  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:16:46.0297 0x13a0  SharedAccess - ok
12:16:46.0710 0x13a0  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:16:46.0814 0x13a0  ShellHWDetection - ok
12:16:46.0920 0x13a0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:16:46.0944 0x13a0  SiSRaid2 - ok
12:16:47.0119 0x13a0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
12:16:47.0249 0x13a0  SiSRaid4 - ok
12:16:47.0934 0x13a0  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
12:16:48.0048 0x13a0  SkypeUpdate - ok
12:16:48.0441 0x13a0  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:16:48.0508 0x13a0  Smb - ok
12:16:48.0701 0x13a0  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:16:48.0785 0x13a0  SNMPTRAP - ok
12:16:48.0874 0x13a0  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:16:48.0875 0x13a0  spldr - ok
12:16:49.0319 0x13a0  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
12:16:49.0406 0x13a0  Spooler - ok
12:16:51.0857 0x13a0  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
12:16:52.0282 0x13a0  sppsvc - ok
12:16:52.0405 0x13a0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:16:52.0469 0x13a0  sppuinotify - ok
12:16:53.0033 0x13a0  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:16:53.0248 0x13a0  srv - ok
12:16:53.0488 0x13a0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:16:53.0615 0x13a0  srv2 - ok
12:16:53.0754 0x13a0  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:16:53.0772 0x13a0  srvnet - ok
12:16:53.0945 0x13a0  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:16:54.0045 0x13a0  SSDPSRV - ok
12:16:54.0290 0x13a0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:16:54.0313 0x13a0  SstpSvc - ok
12:16:54.0505 0x13a0  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
12:16:54.0698 0x13a0  ssudmdm - ok
12:16:55.0413 0x13a0  [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:16:55.0502 0x13a0  Steam Client Service - ok
12:16:55.0567 0x13a0  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
12:16:55.0627 0x13a0  stexstor - ok
12:16:55.0928 0x13a0  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
12:16:55.0957 0x13a0  stisvc - ok
12:16:56.0097 0x13a0  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
12:16:56.0163 0x13a0  storflt - ok
12:16:56.0263 0x13a0  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
12:16:56.0488 0x13a0  StorSvc - ok
12:16:56.0572 0x13a0  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:16:56.0619 0x13a0  storvsc - ok
12:16:56.0712 0x13a0  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
12:16:56.0712 0x13a0  swenum - ok
12:16:57.0187 0x13a0  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
12:16:57.0252 0x13a0  swprv - ok
12:16:58.0073 0x13a0  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
12:16:58.0219 0x13a0  SysMain - ok
12:16:58.0399 0x13a0  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:16:58.0449 0x13a0  TabletInputService - ok
12:16:58.0688 0x13a0  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:16:58.0757 0x13a0  TapiSrv - ok
12:16:58.0825 0x13a0  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
12:16:58.0830 0x13a0  TBS - ok
12:16:59.0505 0x13a0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:16:59.0668 0x13a0  Tcpip - ok
12:17:00.0599 0x13a0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:17:00.0637 0x13a0  TCPIP6 - ok
12:17:00.0823 0x13a0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:17:00.0847 0x13a0  tcpipreg - ok
12:17:01.0009 0x13a0  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:17:01.0082 0x13a0  TDPIPE - ok
12:17:01.0236 0x13a0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:17:01.0352 0x13a0  TDTCP - ok
12:17:01.0438 0x13a0  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:17:01.0476 0x13a0  tdx - ok
12:17:04.0167 0x13a0  [ CFC9B7B465283378D374D5E380D5D244, 5E66A62C6A6272B65181F116031AA80E8DCEDA3B7E2C1130DD631347DF644D79 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
12:17:04.0277 0x13a0  TeamViewer - ok
12:17:04.0418 0x13a0  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
12:17:04.0421 0x13a0  TermDD - ok
12:17:04.0888 0x13a0  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
12:17:05.0126 0x13a0  TermService - ok
12:17:05.0197 0x13a0  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
12:17:05.0261 0x13a0  Themes - ok
12:17:05.0397 0x13a0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
12:17:05.0403 0x13a0  THREADORDER - ok
12:17:05.0643 0x13a0  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
12:17:05.0763 0x13a0  TrkWks - ok
12:17:06.0011 0x13a0  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:17:06.0046 0x13a0  TrustedInstaller - ok
12:17:06.0137 0x13a0  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:17:06.0196 0x13a0  tssecsrv - ok
12:17:06.0793 0x13a0  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:17:06.0852 0x13a0  TsUsbFlt - ok
12:17:07.0289 0x13a0  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:17:07.0307 0x13a0  tunnel - ok
12:17:07.0361 0x13a0  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
12:17:07.0483 0x13a0  uagp35 - ok
12:17:07.0672 0x13a0  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:17:07.0847 0x13a0  udfs - ok
12:17:07.0941 0x13a0  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:17:07.0963 0x13a0  UI0Detect - ok
12:17:08.0118 0x13a0  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:17:08.0224 0x13a0  uliagpkx - ok
12:17:08.0308 0x13a0  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:17:08.0326 0x13a0  umbus - ok
12:17:08.0398 0x13a0  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
12:17:08.0422 0x13a0  UmPass - ok
12:17:08.0539 0x13a0  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:17:08.0597 0x13a0  UmRdpService - ok
12:17:08.0791 0x13a0  Update NetTock - ok
12:17:09.0089 0x13a0  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
12:17:09.0121 0x13a0  upnphost - ok
12:17:09.0691 0x13a0  [ 842B334B1F1FDF631F43AD70C3DB9401, CD2FD5B86417101C3C88B105D0F25FD517E22C4EE44EDE01E4E267842CCF8FF6 ] USBADVAU        C:\Windows\system32\drivers\cm11264.sys
12:17:09.0904 0x13a0  USBADVAU - ok
12:17:10.0061 0x13a0  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:17:10.0277 0x13a0  usbaudio - ok
12:17:10.0399 0x13a0  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:17:10.0484 0x13a0  usbccgp - ok
12:17:10.0726 0x13a0  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:17:10.0809 0x13a0  usbcir - ok
12:17:10.0932 0x13a0  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:17:10.0958 0x13a0  usbehci - ok
12:17:11.0232 0x13a0  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:17:11.0409 0x13a0  usbhub - ok
12:17:11.0556 0x13a0  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
12:17:11.0587 0x13a0  usbohci - ok
12:17:11.0686 0x13a0  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:17:11.0777 0x13a0  usbprint - ok
12:17:11.0923 0x13a0  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:17:11.0949 0x13a0  USBSTOR - ok
12:17:12.0111 0x13a0  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:17:12.0193 0x13a0  usbuhci - ok
12:17:12.0439 0x13a0  Util NetTock - ok
12:17:12.0499 0x13a0  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
12:17:12.0622 0x13a0  UxSms - ok
12:17:12.0669 0x13a0  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] VaultSvc        C:\Windows\system32\lsass.exe
12:17:12.0673 0x13a0  VaultSvc - ok
12:17:12.0874 0x13a0  [ 4006E66939B4D716C990256CF93D4BC1, 5E9366D8B684768B0188077C05B52B29D43B9A401A73D81045B9823458334223 ] VBAudioVACMME   C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys
12:17:12.0878 0x13a0  VBAudioVACMME - ok
12:17:13.0621 0x13a0  [ 2A801DFB1C278104D6AFB23C456C0E89, 47ECDA10F2D8D7A8C21D655A58FC957B0AF280FAC729B4E9F7AD9124822566B2 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
12:17:13.0639 0x13a0  VBoxDrv - ok
12:17:13.0744 0x13a0  [ 16F38B18F51DBD2D32A77B3649CFC55A, B91CC76CFC999B053658F746EA3F41F5D196E54821309F8C042BADC23D4D4D05 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
12:17:13.0752 0x13a0  VBoxNetAdp - ok
12:17:14.0027 0x13a0  [ AD45D3E222E66550B734725CCCCF0E1C, D74A4BC5B53A61CADD4AAA2A06956294C15FAE85B0B3CB07F1579259690D2B00 ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
12:17:14.0034 0x13a0  VBoxNetFlt - ok
12:17:14.0363 0x13a0  [ 46970F66C3F19421C37CCCDC7C2F176A, B5351B1F177106AB931A080DA8414B4AEF88CDA57EBA5AEFA8A5DF595D62ADE9 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
12:17:14.0371 0x13a0  VBoxUSBMon - ok
12:17:14.0516 0x13a0  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:17:14.0556 0x13a0  vdrvroot - ok
12:17:14.0818 0x13a0  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
12:17:14.0963 0x13a0  vds - ok
12:17:15.0199 0x13a0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:17:15.0238 0x13a0  vga - ok
12:17:15.0287 0x13a0  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:17:15.0302 0x13a0  VgaSave - ok
12:17:15.0548 0x13a0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:17:15.0578 0x13a0  vhdmp - ok
12:17:15.0734 0x13a0  [ A832C5104919194FEB9FF971574A2701, 841E058D691AB16632793E3811E6A317F2A1D73D70378C45FCB34306B4A323A0 ] vhidmini        C:\Windows\system32\DRIVERS\vjoy.sys
12:17:15.0877 0x13a0  vhidmini - ok
12:17:15.0976 0x13a0  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:17:16.0142 0x13a0  viaide - ok
12:17:16.0298 0x13a0  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:17:16.0328 0x13a0  vmbus - ok
12:17:16.0412 0x13a0  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
12:17:16.0620 0x13a0  VMBusHID - ok
12:17:16.0678 0x13a0  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:17:16.0716 0x13a0  volmgr - ok
12:17:16.0883 0x13a0  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:17:16.0911 0x13a0  volmgrx - ok
12:17:17.0131 0x13a0  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:17:17.0150 0x13a0  volsnap - ok
12:17:17.0362 0x13a0  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
12:17:17.0385 0x13a0  vsmraid - ok
12:17:17.0891 0x13a0  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
12:17:18.0102 0x13a0  VSS - ok
12:17:18.0137 0x13a0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:17:18.0201 0x13a0  vwifibus - ok
12:17:18.0311 0x13a0  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:17:18.0527 0x13a0  vwififlt - ok
12:17:18.0785 0x13a0  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
12:17:18.0946 0x13a0  W32Time - ok
12:17:19.0088 0x13a0  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
12:17:19.0213 0x13a0  WacomPen - ok
12:17:19.0460 0x13a0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:17:19.0476 0x13a0  WANARP - ok
12:17:19.0490 0x13a0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:17:19.0495 0x13a0  Wanarpv6 - ok
12:17:20.0003 0x13a0  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
12:17:20.0205 0x13a0  wbengine - ok
12:17:20.0475 0x13a0  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:17:20.0500 0x13a0  WbioSrvc - ok
12:17:20.0686 0x13a0  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:17:20.0810 0x13a0  wcncsvc - ok
12:17:20.0897 0x13a0  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:17:20.0905 0x13a0  WcsPlugInService - ok
12:17:21.0051 0x13a0  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
12:17:21.0057 0x13a0  Wd - ok
12:17:21.0442 0x13a0  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:17:21.0473 0x13a0  Wdf01000 - ok
12:17:21.0695 0x13a0  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:17:21.0726 0x13a0  WdiServiceHost - ok
12:17:21.0745 0x13a0  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:17:21.0751 0x13a0  WdiSystemHost - ok
12:17:21.0917 0x13a0  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
12:17:21.0957 0x13a0  WebClient - ok
12:17:22.0118 0x13a0  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:17:22.0137 0x13a0  Wecsvc - ok
12:17:22.0211 0x13a0  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:17:22.0351 0x13a0  wercplsupport - ok
12:17:22.0546 0x13a0  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:17:22.0668 0x13a0  WerSvc - ok
12:17:22.0728 0x13a0  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:17:22.0732 0x13a0  WfpLwf - ok
12:17:22.0882 0x13a0  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:17:23.0107 0x13a0  WIMMount - ok
12:17:23.0151 0x13a0  WinDefend - ok
12:17:23.0160 0x13a0  WinHttpAutoProxySvc - ok
12:17:23.0720 0x13a0  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:17:23.0736 0x13a0  Winmgmt - ok
12:17:24.0411 0x13a0  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
12:17:25.0250 0x13a0  WinRM - ok
12:17:25.0472 0x13a0  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
12:17:25.0481 0x13a0  WinUsb - ok
12:17:26.0030 0x13a0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:17:26.0190 0x13a0  Wlansvc - ok
12:17:26.0796 0x13a0  [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc         c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:17:26.0917 0x13a0  wlidsvc - ok
12:17:27.0112 0x13a0  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:17:27.0141 0x13a0  WmiAcpi - ok
12:17:27.0237 0x13a0  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:17:27.0250 0x13a0  wmiApSrv - ok
12:17:27.0407 0x13a0  WMPNetworkSvc - ok
12:17:27.0436 0x13a0  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:17:27.0566 0x13a0  WPCSvc - ok
12:17:27.0631 0x13a0  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:17:27.0638 0x13a0  WPDBusEnum - ok
12:17:27.0785 0x13a0  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:17:27.0788 0x13a0  ws2ifsl - ok
12:17:27.0823 0x13a0  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
12:17:27.0836 0x13a0  wscsvc - ok
12:17:27.0842 0x13a0  WSearch - ok
12:17:29.0096 0x13a0  [ 361845875ED8ED13086E7F37265C45DA, A0931DC1E35712036E93BBC3600530C0DA12E94E0D898787C818C526DFF240C2 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:17:29.0338 0x13a0  wuauserv - ok
12:17:29.0376 0x13a0  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:17:29.0422 0x13a0  WudfPf - ok
12:17:29.0902 0x13a0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:17:29.0928 0x13a0  WUDFRd - ok
12:17:30.0188 0x13a0  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:17:30.0210 0x13a0  wudfsvc - ok
12:17:30.0440 0x13a0  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:17:30.0565 0x13a0  WwanSvc - ok
12:17:30.0725 0x13a0  {0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw64 - ok
12:17:30.0732 0x13a0  ================ Scan global ===============================
12:17:30.0876 0x13a0  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
12:17:31.0032 0x13a0  [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
12:17:31.0103 0x13a0  [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
12:17:31.0229 0x13a0  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:17:31.0417 0x13a0  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
12:17:31.0517 0x13a0  [ Global ] - ok
12:17:31.0517 0x13a0  ================ Scan MBR ==================================
12:17:31.0574 0x13a0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:17:53.0711 0x13a0  \Device\Harddisk0\DR0 - ok
12:17:53.0713 0x13a0  ================ Scan VBR ==================================
12:17:53.0776 0x13a0  [ 7AAAF6F42A1E0731A217F70F09F4BD12 ] \Device\Harddisk0\DR0\Partition1
12:17:53.0935 0x13a0  \Device\Harddisk0\DR0\Partition1 - ok
12:17:53.0973 0x13a0  [ 6DD3E4526660CFBDDD1CC061FBD2431B ] \Device\Harddisk0\DR0\Partition2
12:17:54.0172 0x13a0  \Device\Harddisk0\DR0\Partition2 - ok
12:17:54.0281 0x13a0  [ 0278C4B950DA99B138B47AE5DC00437F ] \Device\Harddisk0\DR0\Partition3
12:17:54.0373 0x13a0  \Device\Harddisk0\DR0\Partition3 - ok
12:17:54.0374 0x13a0  ================ Scan generic autorun ======================
12:17:54.0821 0x13a0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:17:54.0923 0x13a0  Sidebar - ok
12:17:55.0041 0x13a0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:17:55.0129 0x13a0  mctadmin - ok
12:17:55.0677 0x13a0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:17:55.0699 0x13a0  Sidebar - ok
12:17:55.0721 0x13a0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:17:55.0724 0x13a0  mctadmin - ok
12:17:57.0774 0x13a0  [ 5353A34090BABE3CD48B70569AF0DD12, A211D0B06DC05BFCBD13EBC71275C644B7616E95485ED8336DEFF257B7AE7E80 ] D:\Steam\steam.exe
12:17:57.0834 0x13a0  Steam - ok
12:17:57.0974 0x13a0  Skype - ok
12:17:57.0979 0x13a0  Waiting for KSN requests completion. In queue: 5
12:17:58.0979 0x13a0  Waiting for KSN requests completion. In queue: 5
12:17:59.0979 0x13a0  Waiting for KSN requests completion. In queue: 5
12:18:00.0348 0x13f0  Object required for P2P: [ 5353A34090BABE3CD48B70569AF0DD12 ] D:\Steam\steam.exe
12:18:00.0979 0x13a0  Waiting for KSN requests completion. In queue: 1
12:18:01.0980 0x13a0  Waiting for KSN requests completion. In queue: 1
12:18:02.0804 0x13f0  Object send P2P result: true
12:18:03.0004 0x13a0  Win FW state via NFP2: enabled ( trusted )
12:18:05.0394 0x13a0  ============================================================
12:18:05.0394 0x13a0  Scan finished
12:18:05.0394 0x13a0  ============================================================
12:18:05.0406 0x0f64  Detected object count: 0
12:18:05.0406 0x0f64  Actual detected object count: 0
12:18:48.0867 0x0b78  Deinitialize success
         

EDIT 2: Ich hab falsch gescannt und scanne jetzt nochmal mit den richtigen Einstellungen.

Hier der neue richtige Scan:

Code: Alles auswählenAufklappen

ATTFilter

12:27:11.0754 0x0f40  TDSS rootkit removing tool 3.1.0.7 Nov 29 2015 22:37:04
12:27:16.0039 0x0f40  ============================================================
12:27:16.0039 0x0f40  Current date / time: 2015/12/01 12:27:16.0039
12:27:16.0039 0x0f40  SystemInfo:
12:27:16.0039 0x0f40  
12:27:16.0039 0x0f40  OS Version: 6.1.7601 ServicePack: 1.0
12:27:16.0039 0x0f40  Product type: Workstation
12:27:16.0039 0x0f40  ComputerName: BIER
12:27:16.0039 0x0f40  UserName: Michael
12:27:16.0039 0x0f40  Windows directory: C:\Windows
12:27:16.0039 0x0f40  System windows directory: C:\Windows
12:27:16.0039 0x0f40  Running under WOW64
12:27:16.0039 0x0f40  Processor architecture: Intel x64
12:27:16.0039 0x0f40  Number of processors: 6
12:27:16.0039 0x0f40  Page size: 0x1000
12:27:16.0039 0x0f40  Boot type: Normal boot
12:27:16.0039 0x0f40  ============================================================
12:27:17.0072 0x0f40  KLMD registered as C:\Windows\system32\drivers\46371139.sys
12:27:17.0374 0x0f40  System UUID: {CFEB9C62-5652-B45D-08AD-7E563115A9A0}
12:27:17.0694 0x0f40  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:27:17.0714 0x0f40  ============================================================
12:27:17.0714 0x0f40  \Device\Harddisk0\DR0:
12:27:17.0715 0x0f40  MBR partitions:
12:27:17.0715 0x0f40  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:27:17.0715 0x0f40  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x15963000
12:27:17.0715 0x0f40  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x15995800, BlocksNum 0x249EF800
12:27:17.0715 0x0f40  ============================================================
12:27:17.0770 0x0f40  C: <-> \Device\Harddisk0\DR0\Partition2
12:27:17.0800 0x0f40  D: <-> \Device\Harddisk0\DR0\Partition3
12:27:17.0802 0x0f40  ============================================================
12:27:17.0802 0x0f40  Initialize success
12:27:17.0802 0x0f40  ============================================================
12:27:48.0796 0x031c  ============================================================
12:27:48.0796 0x031c  Scan started
12:27:48.0796 0x031c  Mode: Manual; SigCheck; TDLFS; 
12:27:48.0796 0x031c  ============================================================
12:27:48.0796 0x031c  KSN ping started
12:28:02.0518 0x031c  KSN ping finished: true
12:28:03.0273 0x031c  ================ Scan system memory ========================
12:28:03.0273 0x031c  System memory - ok
12:28:03.0275 0x031c  ================ Scan services =============================
12:28:03.0427 0x031c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
12:28:03.0515 0x031c  1394ohci - ok
12:28:03.0568 0x031c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:28:03.0583 0x031c  ACPI - ok
12:28:03.0617 0x031c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:28:03.0691 0x031c  AcpiPmi - ok
12:28:03.0798 0x031c  [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:28:03.0823 0x031c  AdobeARMservice - ok
12:28:03.0931 0x031c  [ FBB312C9DA3863673EC18F4AE4101778, 4E9AAE7C700E485C17FDFCC9100A79784673B006D00D4D4CE8F1DB617D25C864 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:28:03.0961 0x031c  AdobeFlashPlayerUpdateSvc - ok
12:28:04.0011 0x031c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
12:28:04.0032 0x031c  adp94xx - ok
12:28:04.0045 0x031c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
12:28:04.0060 0x031c  adpahci - ok
12:28:04.0077 0x031c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
12:28:04.0088 0x031c  adpu320 - ok
12:28:04.0123 0x031c  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:28:04.0180 0x031c  AeLookupSvc - ok
12:28:04.0263 0x031c  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
12:28:04.0355 0x031c  AFD - ok
12:28:04.0397 0x031c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
12:28:04.0418 0x031c  agp440 - ok
12:28:04.0453 0x031c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
12:28:04.0501 0x031c  ALG - ok
12:28:04.0532 0x031c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:28:04.0548 0x031c  aliide - ok
12:28:04.0635 0x031c  [ 6BF0147A7A924E5A3AE049A95ECC9B34, 129F0E0FD165C66FEAAA9438F91001AD89AEF39CD655FE60973B7E97146A12C6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:28:04.0700 0x031c  AMD External Events Utility - ok
12:28:04.0813 0x031c  [ 82D9B39F69F577729829C94C93856928, C1328F7F7D3C916785201DDAC09E732151402CB31E82FB8144E83522A9D3F942 ] AMD FUEL Service C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
12:28:04.0851 0x031c  AMD FUEL Service - detected UnsignedFile.Multi.Generic ( 1 )
12:28:07.0776 0x031c  Detect skipped due to KSN trusted
12:28:07.0776 0x031c  AMD FUEL Service - ok
12:28:07.0821 0x031c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
12:28:07.0841 0x031c  amdide - ok
12:28:07.0876 0x031c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
12:28:07.0912 0x031c  AmdK8 - ok
12:28:07.0943 0x031c  amdkmdag - ok
12:28:08.0005 0x031c  [ 50228D17A34A1E5CF93084A6AE70870B, BF8967C3178F4BC2DF2DDAF272C9598B6E53E6C312B7304D44AC66E3592C63D1 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
12:28:08.0053 0x031c  amdkmdap - ok
12:28:08.0080 0x031c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
12:28:08.0103 0x031c  AmdPPM - ok
12:28:08.0150 0x031c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:28:08.0160 0x031c  amdsata - ok
12:28:08.0181 0x031c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
12:28:08.0193 0x031c  amdsbs - ok
12:28:08.0208 0x031c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:28:08.0216 0x031c  amdxata - ok
12:28:08.0243 0x031c  AODDriver4.2.0 - ok
12:28:08.0282 0x031c  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.3    C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys
12:28:08.0326 0x031c  AODDriver4.3 - ok
12:28:08.0383 0x031c  [ E7F2414D8EBF7C269FC5FC878C1DD1E9, 1131F3134A8F9B899BDB6F3CAAC73AF31DE703DC922F4F24BC87994CB859F40D ] APNMCP          C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
12:28:08.0402 0x031c  APNMCP - ok
12:28:08.0457 0x031c  [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID           C:\Windows\system32\drivers\appid.sys
12:28:08.0510 0x031c  AppID - ok
12:28:08.0517 0x031c  [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:28:08.0545 0x031c  AppIDSvc - ok
12:28:08.0578 0x031c  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
12:28:08.0633 0x031c  Appinfo - ok
12:28:08.0677 0x031c  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
12:28:08.0728 0x031c  AppMgmt - ok
12:28:08.0753 0x031c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
12:28:08.0767 0x031c  arc - ok
12:28:08.0788 0x031c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
12:28:08.0803 0x031c  arcsas - ok
12:28:08.0901 0x031c  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:28:08.0928 0x031c  aspnet_state - ok
12:28:08.0976 0x031c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:28:09.0067 0x031c  AsyncMac - ok
12:28:09.0092 0x031c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:28:09.0100 0x031c  atapi - ok
12:28:09.0175 0x031c  [ 36322190763845975E0D001E90687BF2, EA3DB2D112015CA5C744C5A84CDEFF6D02CE7D0E7E6E141AE3E527C2FAB5600E ] athur           C:\Windows\system32\DRIVERS\athurx.sys
12:28:09.0253 0x031c  athur - ok
12:28:09.0283 0x031c  [ F270AFC3848C54C67E3BFB892CE9B9C6, BF5F087D2677E8D75DB34335B54496A3C3AFBCE5A019C52B9EB2B1D19A0803B1 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
12:28:09.0322 0x031c  AtiHDAudioService - ok
12:28:09.0396 0x031c  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:28:09.0460 0x031c  AudioEndpointBuilder - ok
12:28:09.0490 0x031c  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
12:28:09.0516 0x031c  AudioSrv - ok
12:28:09.0578 0x031c  [ 67955F48704C0551254E55025077DD55, 7276CDC98B5A7819733A1394AA0028C803F487CDE7710B3B716DB83EA15F6AE3 ] Avira.OE.ServiceHost C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
12:28:09.0601 0x031c  Avira.OE.ServiceHost - ok
12:28:09.0656 0x031c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:28:09.0750 0x031c  AxInstSV - ok
12:28:09.0790 0x031c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
12:28:09.0821 0x031c  b06bdrv - ok
12:28:09.0856 0x031c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
12:28:09.0885 0x031c  b57nd60a - ok
12:28:09.0918 0x031c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:28:09.0960 0x031c  BDESVC - ok
12:28:09.0975 0x031c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:28:10.0026 0x031c  Beep - ok
12:28:10.0106 0x031c  [ BE43A13207D6428947248AF7EE05E772, 4118288ECD13B77738070DC298A64732693EEF9679CCFA59FD523CCAACF6335B ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
12:28:10.0125 0x031c  BEService - ok
12:28:10.0211 0x031c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
12:28:10.0286 0x031c  BFE - ok
12:28:10.0322 0x031c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
12:28:10.0462 0x031c  BITS - ok
12:28:10.0491 0x031c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
12:28:10.0518 0x031c  blbdrive - ok
12:28:10.0551 0x031c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:28:10.0594 0x031c  bowser - ok
12:28:10.0619 0x031c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:28:10.0680 0x031c  BrFiltLo - ok
12:28:10.0696 0x031c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:28:10.0723 0x031c  BrFiltUp - ok
12:28:10.0750 0x031c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
12:28:10.0794 0x031c  Browser - ok
12:28:10.0817 0x031c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:28:10.0867 0x031c  Brserid - ok
12:28:10.0884 0x031c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:28:10.0913 0x031c  BrSerWdm - ok
12:28:10.0933 0x031c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:28:10.0991 0x031c  BrUsbMdm - ok
12:28:11.0016 0x031c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:28:11.0040 0x031c  BrUsbSer - ok
12:28:11.0047 0x031c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
12:28:11.0077 0x031c  BTHMODEM - ok
12:28:11.0099 0x031c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
12:28:11.0141 0x031c  bthserv - ok
12:28:11.0170 0x031c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:28:11.0200 0x031c  cdfs - ok
12:28:11.0239 0x031c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:28:11.0265 0x031c  cdrom - ok
12:28:11.0313 0x031c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:28:11.0357 0x031c  CertPropSvc - ok
12:28:11.0375 0x031c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
12:28:11.0389 0x031c  circlass - ok
12:28:11.0431 0x031c  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
12:28:11.0448 0x031c  CLFS - ok
12:28:11.0509 0x031c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:28:11.0519 0x031c  clr_optimization_v2.0.50727_32 - ok
12:28:11.0565 0x031c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:28:11.0575 0x031c  clr_optimization_v2.0.50727_64 - ok
12:28:11.0647 0x031c  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:28:11.0672 0x031c  clr_optimization_v4.0.30319_32 - ok
12:28:11.0680 0x031c  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:28:11.0692 0x031c  clr_optimization_v4.0.30319_64 - ok
12:28:11.0713 0x031c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:28:11.0731 0x031c  CmBatt - ok
12:28:11.0756 0x031c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:28:11.0763 0x031c  cmdide - ok
12:28:11.0809 0x031c  [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG             C:\Windows\system32\Drivers\cng.sys
12:28:11.0836 0x031c  CNG - ok
12:28:11.0849 0x031c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:28:11.0858 0x031c  Compbatt - ok
12:28:11.0892 0x031c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
12:28:11.0933 0x031c  CompositeBus - ok
12:28:11.0952 0x031c  COMSysApp - ok
12:28:12.0029 0x031c  cpuz132 - ok
12:28:12.0045 0x031c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
12:28:12.0054 0x031c  crcdisk - ok
12:28:12.0100 0x031c  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:28:12.0145 0x031c  CryptSvc - ok
12:28:12.0191 0x031c  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
12:28:12.0218 0x031c  CSC - ok
12:28:12.0315 0x031c  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
12:28:12.0362 0x031c  CscService - ok
12:28:12.0411 0x031c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:28:12.0467 0x031c  DcomLaunch - ok
12:28:12.0498 0x031c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
12:28:12.0548 0x031c  defragsvc - ok
12:28:12.0582 0x031c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:28:12.0613 0x031c  DfsC - ok
12:28:12.0660 0x031c  [ 51D50A9A72C18E4629891BF381D123BA, 3C9156F4430A677ACF8F79A648E8FAA668F4A8B58E202B4898CE95396F5A5820 ] DFX11_1         C:\Windows\system32\drivers\dfx11_1x64.sys
12:28:12.0667 0x031c  DFX11_1 - ok
12:28:12.0710 0x031c  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:28:12.0720 0x031c  dg_ssudbus - ok
12:28:12.0777 0x031c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:28:12.0823 0x031c  Dhcp - ok
12:28:12.0922 0x031c  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
12:28:13.0001 0x031c  DiagTrack - ok
12:28:13.0022 0x031c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
12:28:13.0068 0x031c  discache - ok
12:28:13.0095 0x031c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
12:28:13.0104 0x031c  Disk - ok
12:28:13.0130 0x031c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:28:13.0184 0x031c  Dnscache - ok
12:28:13.0241 0x031c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:28:13.0321 0x031c  dot3svc - ok
12:28:13.0354 0x031c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
12:28:13.0399 0x031c  DPS - ok
12:28:13.0442 0x031c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:28:13.0470 0x031c  drmkaud - ok
12:28:13.0523 0x031c  [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
12:28:13.0543 0x031c  dtsoftbus01 - ok
12:28:13.0618 0x031c  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:28:13.0650 0x031c  DXGKrnl - ok
12:28:13.0675 0x031c  EagleX64 - ok
12:28:13.0698 0x031c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
12:28:13.0747 0x031c  EapHost - ok
12:28:13.0872 0x031c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
12:28:13.0978 0x031c  ebdrv - ok
12:28:14.0035 0x031c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] EFS             C:\Windows\System32\lsass.exe
12:28:14.0054 0x031c  EFS - ok
12:28:14.0122 0x031c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:28:14.0178 0x031c  ehRecvr - ok
12:28:14.0207 0x031c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
12:28:14.0245 0x031c  ehSched - ok
12:28:14.0290 0x031c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
12:28:14.0311 0x031c  elxstor - ok
12:28:14.0344 0x031c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:28:14.0363 0x031c  ErrDev - ok
12:28:14.0432 0x031c  esgiguard - ok
12:28:14.0481 0x031c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
12:28:14.0538 0x031c  EventSystem - ok
12:28:14.0557 0x031c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:28:14.0603 0x031c  exfat - ok
12:28:14.0629 0x031c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:28:14.0672 0x031c  fastfat - ok
12:28:14.0759 0x031c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
12:28:14.0823 0x031c  Fax - ok
12:28:14.0850 0x031c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:28:14.0876 0x031c  fdc - ok
12:28:14.0901 0x031c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
12:28:14.0942 0x031c  fdPHost - ok
12:28:14.0953 0x031c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:28:15.0001 0x031c  FDResPub - ok
12:28:15.0024 0x031c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:28:15.0034 0x031c  FileInfo - ok
12:28:15.0048 0x031c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:28:15.0089 0x031c  Filetrace - ok
12:28:15.0184 0x031c  [ A4297244D4F817278A6AE45B1899CA9C, F70146A3D78061F00549906355503EDB4402F0599D34CE3208B51562C44AB80A ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
12:28:15.0225 0x031c  FLEXnet Licensing Service 64 - ok
12:28:15.0242 0x031c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:28:15.0266 0x031c  flpydisk - ok
12:28:15.0305 0x031c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:28:15.0321 0x031c  FltMgr - ok
12:28:15.0405 0x031c  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
12:28:15.0469 0x031c  FontCache - ok
12:28:15.0523 0x031c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:28:15.0541 0x031c  FontCache3.0.0.0 - ok
12:28:15.0575 0x031c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:28:15.0588 0x031c  FsDepends - ok
12:28:15.0613 0x031c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:28:15.0623 0x031c  Fs_Rec - ok
12:28:15.0654 0x031c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:28:15.0671 0x031c  fvevol - ok
12:28:15.0681 0x031c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
12:28:15.0690 0x031c  gagp30kx - ok
12:28:15.0749 0x031c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:28:15.0805 0x031c  gpsvc - ok
12:28:15.0876 0x031c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:28:15.0900 0x031c  gupdate - ok
12:28:15.0910 0x031c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:28:15.0928 0x031c  gupdatem - ok
12:28:15.0965 0x031c  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
12:28:15.0973 0x031c  hamachi - ok
12:28:16.0231 0x031c  [ C0EF69A59C13D9204D1D70434AA3D00C, 56BD4F7C74B2A36665677C32F30C4E1839DB9AAAC82FFA4A2622B4D261D865F2 ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
12:28:16.0312 0x031c  Hamachi2Svc - ok
12:28:16.0338 0x031c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:28:16.0382 0x031c  hcw85cir - ok
12:28:16.0433 0x031c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:28:16.0465 0x031c  HdAudAddService - ok
12:28:16.0502 0x031c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
12:28:16.0532 0x031c  HDAudBus - ok
12:28:16.0559 0x031c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
12:28:16.0580 0x031c  HidBatt - ok
12:28:16.0598 0x031c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
12:28:16.0612 0x031c  HidBth - ok
12:28:16.0619 0x031c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
12:28:16.0643 0x031c  HidIr - ok
12:28:16.0670 0x031c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
12:28:16.0705 0x031c  hidserv - ok
12:28:16.0723 0x031c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:28:16.0744 0x031c  HidUsb - ok
12:28:16.0775 0x031c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:28:16.0824 0x031c  hkmsvc - ok
12:28:16.0864 0x031c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:28:16.0923 0x031c  HomeGroupListener - ok
12:28:16.0985 0x031c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:28:17.0012 0x031c  HomeGroupProvider - ok
12:28:17.0045 0x031c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:28:17.0055 0x031c  HpSAMD - ok
12:28:17.0120 0x031c  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:28:17.0153 0x031c  HTTP - ok
12:28:17.0170 0x031c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:28:17.0178 0x031c  hwpolicy - ok
12:28:17.0208 0x031c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
12:28:17.0219 0x031c  i8042prt - ok
12:28:17.0267 0x031c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:28:17.0285 0x031c  iaStorV - ok
12:28:17.0352 0x031c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:28:17.0380 0x031c  idsvc - ok
12:28:17.0415 0x031c  IEEtwCollectorService - ok
12:28:17.0435 0x031c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
12:28:17.0444 0x031c  iirsp - ok
12:28:17.0521 0x031c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
12:28:17.0561 0x031c  IKEEXT - ok
12:28:17.0665 0x031c  [ C7124DA48E557D8F88D0D7F1254557F4, 300BC8ACB5CCB15F80ECAEAD27F12925EE94C84FE8110143A3E0F30E19DDA87B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:28:17.0740 0x031c  IntcAzAudAddService - ok
12:28:17.0756 0x031c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:28:17.0765 0x031c  intelide - ok
12:28:17.0786 0x031c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:28:17.0795 0x031c  intelppm - ok
12:28:17.0816 0x031c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:28:17.0860 0x031c  IPBusEnum - ok
12:28:17.0895 0x031c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:28:17.0922 0x031c  IpFilterDriver - ok
12:28:17.0966 0x031c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:28:18.0012 0x031c  iphlpsvc - ok
12:28:18.0055 0x031c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:28:18.0090 0x031c  IPMIDRV - ok
12:28:18.0121 0x031c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:28:18.0165 0x031c  IPNAT - ok
12:28:18.0190 0x031c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:28:18.0226 0x031c  IRENUM - ok
12:28:18.0252 0x031c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:28:18.0261 0x031c  isapnp - ok
12:28:18.0291 0x031c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:28:18.0306 0x031c  iScsiPrt - ok
12:28:18.0320 0x031c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:28:18.0328 0x031c  kbdclass - ok
12:28:18.0358 0x031c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:28:18.0378 0x031c  kbdhid - ok
12:28:18.0397 0x031c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] KeyIso          C:\Windows\system32\lsass.exe
12:28:18.0406 0x031c  KeyIso - ok
12:28:18.0443 0x031c  [ BCC83F22805F560C8A487F2F296A78FE, B6729B9D85CC3B9377E3143FEF920EFAA82D152845A43074417E9266C9F5C1A8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:28:18.0453 0x031c  KSecDD - ok
12:28:18.0473 0x031c  [ 33D52A96BEEE8AFCE9E07EEC9FE0C9DB, 5367B46A43296792A0E6294906D40511079D5CAA23F08D5A7EDE02C06AD34484 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:28:18.0485 0x031c  KSecPkg - ok
12:28:18.0507 0x031c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:28:18.0550 0x031c  ksthunk - ok
12:28:18.0590 0x031c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:28:18.0640 0x031c  KtmRm - ok
12:28:18.0703 0x031c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:28:18.0762 0x031c  LanmanServer - ok
12:28:18.0800 0x031c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:28:18.0831 0x031c  LanmanWorkstation - ok
12:28:18.0860 0x031c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:28:18.0915 0x031c  lltdio - ok
12:28:18.0944 0x031c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:28:18.0994 0x031c  lltdsvc - ok
12:28:19.0016 0x031c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:28:19.0060 0x031c  lmhosts - ok
12:28:19.0132 0x031c  [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
12:28:19.0148 0x031c  LMIGuardianSvc - ok
12:28:19.0167 0x031c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
12:28:19.0178 0x031c  LSI_FC - ok
12:28:19.0192 0x031c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
12:28:19.0202 0x031c  LSI_SAS - ok
12:28:19.0210 0x031c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:28:19.0220 0x031c  LSI_SAS2 - ok
12:28:19.0233 0x031c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:28:19.0244 0x031c  LSI_SCSI - ok
12:28:19.0259 0x031c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:28:19.0305 0x031c  luafv - ok
12:28:19.0377 0x031c  [ 8665FA986641C854B1A05AD09CEF7372, 9A9FDE7D1F7F3A83B7C52DC0B6B3E0CA770667D1D90448F3C297A47C66C8C019 ] MAGIX StartUp Analyze Service C:\Program Files (x86)\MAGIX\PC_Check_Tuning_Free_2011\MXSAS.exe
12:28:19.0403 0x031c  MAGIX StartUp Analyze Service - detected UnsignedFile.Multi.Generic ( 1 )
12:28:21.0765 0x031c  Detect skipped due to KSN trusted
12:28:21.0765 0x031c  MAGIX StartUp Analyze Service - ok
12:28:21.0791 0x031c  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
12:28:21.0809 0x031c  MBfilt - ok
12:28:21.0850 0x031c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:28:21.0870 0x031c  Mcx2Svc - ok
12:28:21.0895 0x031c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
12:28:21.0905 0x031c  megasas - ok
12:28:21.0920 0x031c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
12:28:21.0935 0x031c  MegaSR - ok
12:28:21.0999 0x031c  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
12:28:22.0019 0x031c  Microsoft Office Groove Audit Service - ok
12:28:22.0039 0x031c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
12:28:22.0089 0x031c  MMCSS - ok
12:28:22.0113 0x031c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
12:28:22.0157 0x031c  Modem - ok
12:28:22.0193 0x031c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:28:22.0219 0x031c  monitor - ok
12:28:22.0238 0x031c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:28:22.0246 0x031c  mouclass - ok
12:28:22.0259 0x031c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:28:22.0268 0x031c  mouhid - ok
12:28:22.0299 0x031c  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:28:22.0308 0x031c  mountmgr - ok
12:28:22.0385 0x031c  [ DD370A8148862150BA81A3F5C56A1E40, F56B84297BDC32266CB69D10FB2D66B8B332D60CAB7E64E4E3AC2BB749BBD31B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:28:22.0409 0x031c  MozillaMaintenance - ok
12:28:22.0428 0x031c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:28:22.0440 0x031c  mpio - ok
12:28:22.0462 0x031c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:28:22.0507 0x031c  mpsdrv - ok
12:28:22.0596 0x031c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:28:22.0667 0x031c  MpsSvc - ok
12:28:22.0702 0x031c  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:28:22.0742 0x031c  MRxDAV - ok
12:28:22.0780 0x031c  [ 73ADDCC406B86E7DA4416691E8E74BDA, 4EC970B9095E6DAA79BF7EFB92DF3F2C0AB0C46739AA36C171A262E05B63CBB5 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:28:22.0803 0x031c  mrxsmb - ok
12:28:22.0827 0x031c  [ 7C81098FBAF2EAF5B54B939F832B0F61, 999435DF4638ECB136D5BF1B84305A84B215BAB542E4D5301E57D28D507E11B3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:28:22.0842 0x031c  mrxsmb10 - ok
12:28:22.0857 0x031c  [ ACB763673BCCE6C7B3B8F858C9FE4F1F, CCD49558F8A01A225AEAE60BF299BCA6E9399E39F4F553FABC36CADB164BBBC0 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:28:22.0880 0x031c  mrxsmb20 - ok
12:28:22.0905 0x031c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:28:22.0914 0x031c  msahci - ok
12:28:22.0957 0x031c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:28:22.0968 0x031c  msdsm - ok
12:28:22.0988 0x031c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
12:28:23.0002 0x031c  MSDTC - ok
12:28:23.0025 0x031c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:28:23.0087 0x031c  Msfs - ok
12:28:23.0102 0x031c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:28:23.0130 0x031c  mshidkmdf - ok
12:28:23.0141 0x031c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:28:23.0150 0x031c  msisadrv - ok
12:28:23.0183 0x031c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:28:23.0216 0x031c  MSiSCSI - ok
12:28:23.0220 0x031c  msiserver - ok
12:28:23.0241 0x031c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:28:23.0281 0x031c  MSKSSRV - ok
12:28:23.0315 0x031c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:28:23.0343 0x031c  MSPCLOCK - ok
12:28:23.0350 0x031c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:28:23.0390 0x031c  MSPQM - ok
12:28:23.0428 0x031c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:28:23.0445 0x031c  MsRPC - ok
12:28:23.0475 0x031c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
12:28:23.0484 0x031c  mssmbios - ok
12:28:23.0488 0x031c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:28:23.0517 0x031c  MSTEE - ok
12:28:23.0530 0x031c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
12:28:23.0551 0x031c  MTConfig - ok
12:28:23.0577 0x031c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
12:28:23.0586 0x031c  Mup - ok
12:28:23.0626 0x031c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
12:28:23.0678 0x031c  napagent - ok
12:28:23.0712 0x031c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:28:23.0746 0x031c  NativeWifiP - ok
12:28:23.0818 0x031c  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:28:23.0849 0x031c  NDIS - ok
12:28:23.0875 0x031c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:28:23.0905 0x031c  NdisCap - ok
12:28:23.0932 0x031c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:28:23.0961 0x031c  NdisTapi - ok
12:28:23.0995 0x031c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:28:24.0042 0x031c  Ndisuio - ok
12:28:24.0082 0x031c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:28:24.0124 0x031c  NdisWan - ok
12:28:24.0154 0x031c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:28:24.0198 0x031c  NDProxy - ok
12:28:24.0224 0x031c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:28:24.0255 0x031c  NetBIOS - ok
12:28:24.0297 0x031c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:28:24.0341 0x031c  NetBT - ok
12:28:24.0358 0x031c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] Netlogon        C:\Windows\system32\lsass.exe
12:28:24.0367 0x031c  Netlogon - ok
12:28:24.0403 0x031c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
12:28:24.0457 0x031c  Netman - ok
12:28:24.0520 0x031c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:28:24.0545 0x031c  NetMsmqActivator - ok
12:28:24.0551 0x031c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:28:24.0565 0x031c  NetPipeActivator - ok
12:28:24.0592 0x031c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
12:28:24.0647 0x031c  netprofm - ok
12:28:24.0653 0x031c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:28:24.0666 0x031c  NetTcpActivator - ok
12:28:24.0671 0x031c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:28:24.0686 0x031c  NetTcpPortSharing - ok
12:28:24.0727 0x031c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
12:28:24.0748 0x031c  nfrd960 - ok
12:28:24.0796 0x031c  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:28:24.0846 0x031c  NlaSvc - ok
12:28:24.0865 0x031c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:28:24.0904 0x031c  Npfs - ok
12:28:24.0929 0x031c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
12:28:24.0970 0x031c  nsi - ok
12:28:24.0998 0x031c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:28:25.0042 0x031c  nsiproxy - ok
12:28:25.0122 0x031c  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:28:25.0172 0x031c  Ntfs - ok
12:28:25.0187 0x031c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
12:28:25.0230 0x031c  Null - ok
12:28:25.0257 0x031c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:28:25.0269 0x031c  nvraid - ok
12:28:25.0287 0x031c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:28:25.0300 0x031c  nvstor - ok
12:28:25.0326 0x031c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:28:25.0336 0x031c  nv_agp - ok
12:28:25.0429 0x031c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:28:25.0447 0x031c  odserv - ok
12:28:25.0480 0x031c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:28:25.0491 0x031c  ohci1394 - ok
12:28:25.0613 0x031c  [ 880CD3C9ACE342F29AB2F90C751B91A4, 7882ED604EE443E182B323D9A38E35B49FD8C28EDC1196B65EDFABB22CBF6161 ] Origin Client Service D:\Origin\OriginClientService.exe
12:28:25.0669 0x031c  Origin Client Service - ok
12:28:25.0711 0x031c  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:28:25.0722 0x031c  ose - ok
12:28:25.0754 0x031c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:28:25.0798 0x031c  p2pimsvc - ok
12:28:25.0821 0x031c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
12:28:25.0856 0x031c  p2psvc - ok
12:28:25.0887 0x031c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
12:28:25.0920 0x031c  Parport - ok
12:28:25.0949 0x031c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:28:25.0959 0x031c  partmgr - ok
12:28:26.0003 0x031c  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:28:26.0027 0x031c  PcaSvc - ok
12:28:26.0065 0x031c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
12:28:26.0078 0x031c  pci - ok
12:28:26.0102 0x031c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:28:26.0109 0x031c  pciide - ok
12:28:26.0133 0x031c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
12:28:26.0145 0x031c  pcmcia - ok
12:28:26.0160 0x031c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:28:26.0168 0x031c  pcw - ok
12:28:26.0218 0x031c  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:28:26.0255 0x031c  PEAUTH - ok
12:28:26.0314 0x031c  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
12:28:26.0377 0x031c  PeerDistSvc - ok
12:28:26.0439 0x031c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:28:26.0477 0x031c  PerfHost - ok
12:28:26.0556 0x031c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
12:28:26.0634 0x031c  pla - ok
12:28:26.0695 0x031c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:28:26.0733 0x031c  PlugPlay - ok
12:28:26.0762 0x031c  PnkBstrA - ok
12:28:26.0765 0x031c  PnkBstrB - ok
12:28:26.0787 0x031c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:28:26.0798 0x031c  PNRPAutoReg - ok
12:28:26.0822 0x031c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:28:26.0840 0x031c  PNRPsvc - ok
12:28:26.0905 0x031c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:28:26.0959 0x031c  PolicyAgent - ok
12:28:26.0980 0x031c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
12:28:27.0015 0x031c  Power - ok
12:28:27.0040 0x031c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:28:27.0072 0x031c  PptpMiniport - ok
12:28:27.0099 0x031c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
12:28:27.0108 0x031c  Processor - ok
12:28:27.0159 0x031c  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:28:27.0211 0x031c  ProfSvc - ok
12:28:27.0223 0x031c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:28:27.0241 0x031c  ProtectedStorage - ok
12:28:27.0261 0x031c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:28:27.0291 0x031c  Psched - ok
12:28:27.0349 0x031c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
12:28:27.0394 0x031c  ql2300 - ok
12:28:27.0426 0x031c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
12:28:27.0438 0x031c  ql40xx - ok
12:28:27.0461 0x031c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
12:28:27.0478 0x031c  QWAVE - ok
12:28:27.0488 0x031c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:28:27.0513 0x031c  QWAVEdrv - ok
12:28:27.0529 0x031c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:28:27.0562 0x031c  RasAcd - ok
12:28:27.0592 0x031c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:28:27.0662 0x031c  RasAgileVpn - ok
12:28:27.0677 0x031c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
12:28:27.0710 0x031c  RasAuto - ok
12:28:27.0740 0x031c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:28:27.0769 0x031c  Rasl2tp - ok
12:28:27.0817 0x031c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
12:28:27.0870 0x031c  RasMan - ok
12:28:27.0895 0x031c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:28:27.0943 0x031c  RasPppoe - ok
12:28:27.0962 0x031c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:28:28.0003 0x031c  RasSstp - ok
12:28:28.0039 0x031c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:28:28.0075 0x031c  rdbss - ok
12:28:28.0090 0x031c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
12:28:28.0113 0x031c  rdpbus - ok
12:28:28.0138 0x031c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:28:28.0188 0x031c  RDPCDD - ok
12:28:28.0224 0x031c  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:28:28.0248 0x031c  RDPDR - ok
12:28:28.0252 0x031c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:28:28.0297 0x031c  RDPENCDD - ok
12:28:28.0318 0x031c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:28:28.0361 0x031c  RDPREFMP - ok
12:28:28.0400 0x031c  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:28:28.0443 0x031c  RDPWD - ok
12:28:28.0501 0x031c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:28:28.0514 0x031c  rdyboost - ok
12:28:28.0535 0x031c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:28:28.0580 0x031c  RemoteAccess - ok
12:28:28.0614 0x031c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:28:28.0649 0x031c  RemoteRegistry - ok
12:28:28.0664 0x031c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:28:28.0697 0x031c  RpcEptMapper - ok
12:28:28.0718 0x031c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
12:28:28.0740 0x031c  RpcLocator - ok
12:28:28.0799 0x031c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
12:28:28.0839 0x031c  RpcSs - ok
12:28:28.0868 0x031c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:28:28.0932 0x031c  rspndr - ok
12:28:28.0977 0x031c  [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
12:28:28.0993 0x031c  RTL8167 - ok
12:28:29.0024 0x031c  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
12:28:29.0070 0x031c  s3cap - ok
12:28:29.0088 0x031c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] SamSs           C:\Windows\system32\lsass.exe
12:28:29.0102 0x031c  SamSs - ok
12:28:29.0123 0x031c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:28:29.0138 0x031c  sbp2port - ok
12:28:29.0161 0x031c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:28:29.0211 0x031c  SCardSvr - ok
12:28:29.0242 0x031c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:28:29.0299 0x031c  scfilter - ok
12:28:29.0380 0x031c  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
12:28:29.0449 0x031c  Schedule - ok
12:28:29.0488 0x031c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:28:29.0534 0x031c  SCPolicySvc - ok
12:28:29.0574 0x031c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:28:29.0600 0x031c  SDRSVC - ok
12:28:29.0633 0x031c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:28:29.0652 0x031c  secdrv - ok
12:28:29.0679 0x031c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
12:28:29.0710 0x031c  seclogon - ok
12:28:29.0730 0x031c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
12:28:29.0761 0x031c  SENS - ok
12:28:29.0767 0x031c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:28:29.0809 0x031c  SensrSvc - ok
12:28:29.0831 0x031c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:28:29.0856 0x031c  Serenum - ok
12:28:29.0881 0x031c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:28:29.0906 0x031c  Serial - ok
12:28:29.0942 0x031c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
12:28:29.0963 0x031c  sermouse - ok
12:28:30.0012 0x031c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
12:28:30.0071 0x031c  SessionEnv - ok
12:28:30.0098 0x031c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:28:30.0111 0x031c  sffdisk - ok
12:28:30.0123 0x031c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:28:30.0133 0x031c  sffp_mmc - ok
12:28:30.0147 0x031c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:28:30.0158 0x031c  sffp_sd - ok
12:28:30.0181 0x031c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:28:30.0206 0x031c  sfloppy - ok
12:28:30.0240 0x031c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:28:30.0279 0x031c  SharedAccess - ok
12:28:30.0326 0x031c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:28:30.0365 0x031c  ShellHWDetection - ok
12:28:30.0388 0x031c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:28:30.0398 0x031c  SiSRaid2 - ok
12:28:30.0410 0x031c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
12:28:30.0420 0x031c  SiSRaid4 - ok
12:28:30.0481 0x031c  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
12:28:30.0499 0x031c  SkypeUpdate - ok
12:28:30.0525 0x031c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:28:30.0569 0x031c  Smb - ok
12:28:30.0604 0x031c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:28:30.0615 0x031c  SNMPTRAP - ok
12:28:30.0627 0x031c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:28:30.0636 0x031c  spldr - ok
12:28:30.0684 0x031c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
12:28:30.0717 0x031c  Spooler - ok
12:28:30.0861 0x031c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
12:28:30.0979 0x031c  sppsvc - ok
12:28:31.0009 0x031c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:28:31.0058 0x031c  sppuinotify - ok
12:28:31.0091 0x031c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:28:31.0137 0x031c  srv - ok
12:28:31.0163 0x031c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:28:31.0194 0x031c  srv2 - ok
12:28:31.0215 0x031c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:28:31.0237 0x031c  srvnet - ok
12:28:31.0271 0x031c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:28:31.0317 0x031c  SSDPSRV - ok
12:28:31.0337 0x031c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:28:31.0367 0x031c  SstpSvc - ok
12:28:31.0421 0x031c  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
12:28:31.0443 0x031c  ssudmdm - ok
12:28:31.0483 0x031c  [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:28:36.0178 0x031c  Steam Client Service - ok
12:28:36.0212 0x031c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
12:28:36.0222 0x031c  stexstor - ok
12:28:36.0281 0x031c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
12:28:36.0311 0x031c  stisvc - ok
12:28:36.0351 0x031c  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
12:28:36.0361 0x031c  storflt - ok
12:28:36.0376 0x031c  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
12:28:36.0415 0x031c  StorSvc - ok
12:28:36.0433 0x031c  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:28:36.0442 0x031c  storvsc - ok
12:28:36.0458 0x031c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
12:28:36.0467 0x031c  swenum - ok
12:28:36.0498 0x031c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
12:28:36.0542 0x031c  swprv - ok
12:28:36.0624 0x031c  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
12:28:36.0702 0x031c  SysMain - ok
12:28:36.0744 0x031c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:28:36.0770 0x031c  TabletInputService - ok
12:28:36.0792 0x031c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:28:36.0844 0x031c  TapiSrv - ok
12:28:36.0874 0x031c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
12:28:36.0911 0x031c  TBS - ok
12:28:36.0989 0x031c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:28:37.0047 0x031c  Tcpip - ok
12:28:37.0122 0x031c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:28:37.0177 0x031c  TCPIP6 - ok
12:28:37.0221 0x031c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:28:37.0231 0x031c  tcpipreg - ok
12:28:37.0250 0x031c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:28:37.0269 0x031c  TDPIPE - ok
12:28:37.0294 0x031c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:28:37.0319 0x031c  TDTCP - ok
12:28:37.0371 0x031c  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:28:37.0399 0x031c  tdx - ok
12:28:37.0644 0x031c  [ CFC9B7B465283378D374D5E380D5D244, 5E66A62C6A6272B65181F116031AA80E8DCEDA3B7E2C1130DD631347DF644D79 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
12:28:37.0795 0x031c  TeamViewer - ok
12:28:37.0835 0x031c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
12:28:37.0845 0x031c  TermDD - ok
12:28:37.0893 0x031c  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
12:28:37.0950 0x031c  TermService - ok
12:28:37.0974 0x031c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
12:28:38.0004 0x031c  Themes - ok
12:28:38.0032 0x031c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
12:28:38.0062 0x031c  THREADORDER - ok
12:28:38.0084 0x031c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
12:28:38.0129 0x031c  TrkWks - ok
12:28:38.0198 0x031c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:28:38.0273 0x031c  TrustedInstaller - ok
12:28:38.0306 0x031c  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:28:38.0341 0x031c  tssecsrv - ok
12:28:38.0406 0x031c  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:28:38.0458 0x031c  TsUsbFlt - ok
12:28:38.0522 0x031c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:28:38.0565 0x031c  tunnel - ok
12:28:38.0582 0x031c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
12:28:38.0590 0x031c  uagp35 - ok
12:28:38.0629 0x031c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:28:38.0672 0x031c  udfs - ok
12:28:38.0703 0x031c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:28:38.0713 0x031c  UI0Detect - ok
12:28:38.0740 0x031c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:28:38.0749 0x031c  uliagpkx - ok
12:28:38.0798 0x031c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:28:38.0834 0x031c  umbus - ok
12:28:38.0870 0x031c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
12:28:38.0905 0x031c  UmPass - ok
12:28:38.0940 0x031c  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:28:38.0978 0x031c  UmRdpService - ok
12:28:39.0022 0x031c  Update NetTock - ok
12:28:39.0071 0x031c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
12:28:39.0119 0x031c  upnphost - ok
12:28:39.0219 0x031c  [ 842B334B1F1FDF631F43AD70C3DB9401, CD2FD5B86417101C3C88B105D0F25FD517E22C4EE44EDE01E4E267842CCF8FF6 ] USBADVAU        C:\Windows\system32\drivers\cm11264.sys
12:28:39.0268 0x031c  USBADVAU - ok
12:28:39.0298 0x031c  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:28:39.0338 0x031c  usbaudio - ok
12:28:39.0354 0x031c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:28:39.0386 0x031c  usbccgp - ok
12:28:39.0414 0x031c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:28:39.0447 0x031c  usbcir - ok
12:28:39.0470 0x031c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:28:39.0489 0x031c  usbehci - ok
12:28:39.0531 0x031c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:28:39.0563 0x031c  usbhub - ok
12:28:39.0588 0x031c  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
12:28:39.0597 0x031c  usbohci - ok
12:28:39.0617 0x031c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:28:39.0643 0x031c  usbprint - ok
12:28:39.0671 0x031c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:28:39.0719 0x031c  USBSTOR - ok
12:28:39.0742 0x031c  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:28:39.0767 0x031c  usbuhci - ok
12:28:39.0782 0x031c  Util NetTock - ok
12:28:39.0798 0x031c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
12:28:39.0829 0x031c  UxSms - ok
12:28:39.0844 0x031c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] VaultSvc        C:\Windows\system32\lsass.exe
12:28:39.0854 0x031c  VaultSvc - ok
12:28:39.0885 0x031c  [ 4006E66939B4D716C990256CF93D4BC1, 5E9366D8B684768B0188077C05B52B29D43B9A401A73D81045B9823458334223 ] VBAudioVACMME   C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys
12:28:39.0893 0x031c  VBAudioVACMME - ok
12:28:39.0959 0x031c  [ 2A801DFB1C278104D6AFB23C456C0E89, 47ECDA10F2D8D7A8C21D655A58FC957B0AF280FAC729B4E9F7AD9124822566B2 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
12:28:39.0991 0x031c  VBoxDrv - ok
12:28:40.0010 0x031c  [ 16F38B18F51DBD2D32A77B3649CFC55A, B91CC76CFC999B053658F746EA3F41F5D196E54821309F8C042BADC23D4D4D05 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
12:28:40.0022 0x031c  VBoxNetAdp - ok
12:28:40.0035 0x031c  [ AD45D3E222E66550B734725CCCCF0E1C, D74A4BC5B53A61CADD4AAA2A06956294C15FAE85B0B3CB07F1579259690D2B00 ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
12:28:40.0047 0x031c  VBoxNetFlt - ok
12:28:40.0070 0x031c  [ 46970F66C3F19421C37CCCDC7C2F176A, B5351B1F177106AB931A080DA8414B4AEF88CDA57EBA5AEFA8A5DF595D62ADE9 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
12:28:40.0080 0x031c  VBoxUSBMon - ok
12:28:40.0117 0x031c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:28:40.0126 0x031c  vdrvroot - ok
12:28:40.0187 0x031c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
12:28:40.0233 0x031c  vds - ok
12:28:40.0301 0x031c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:28:40.0313 0x031c  vga - ok
12:28:40.0329 0x031c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:28:40.0358 0x031c  VgaSave - ok
12:28:40.0396 0x031c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:28:40.0408 0x031c  vhdmp - ok
12:28:40.0445 0x031c  [ A832C5104919194FEB9FF971574A2701, 841E058D691AB16632793E3811E6A317F2A1D73D70378C45FCB34306B4A323A0 ] vhidmini        C:\Windows\system32\DRIVERS\vjoy.sys
12:28:40.0453 0x031c  vhidmini - ok
12:28:40.0469 0x031c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:28:40.0478 0x031c  viaide - ok
12:28:40.0500 0x031c  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:28:40.0512 0x031c  vmbus - ok
12:28:40.0531 0x031c  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
12:28:40.0552 0x031c  VMBusHID - ok
12:28:40.0573 0x031c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:28:40.0583 0x031c  volmgr - ok
12:28:40.0620 0x031c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:28:40.0636 0x031c  volmgrx - ok
12:28:40.0657 0x031c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:28:40.0672 0x031c  volsnap - ok
12:28:40.0699 0x031c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
12:28:40.0711 0x031c  vsmraid - ok
12:28:40.0784 0x031c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
12:28:40.0863 0x031c  VSS - ok
12:28:40.0884 0x031c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:28:40.0896 0x031c  vwifibus - ok
12:28:40.0905 0x031c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:28:40.0919 0x031c  vwififlt - ok
12:28:40.0948 0x031c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
12:28:40.0986 0x031c  W32Time - ok
12:28:41.0001 0x031c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
12:28:41.0011 0x031c  WacomPen - ok
12:28:41.0056 0x031c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:28:41.0136 0x031c  WANARP - ok
12:28:41.0141 0x031c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:28:41.0175 0x031c  Wanarpv6 - ok
12:28:41.0348 0x031c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
12:28:41.0426 0x031c  wbengine - ok
12:28:41.0464 0x031c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:28:41.0499 0x031c  WbioSrvc - ok
12:28:41.0538 0x031c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:28:41.0559 0x031c  wcncsvc - ok
12:28:41.0568 0x031c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:28:41.0586 0x031c  WcsPlugInService - ok
12:28:41.0606 0x031c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
12:28:41.0614 0x031c  Wd - ok
12:28:41.0667 0x031c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:28:41.0693 0x031c  Wdf01000 - ok
12:28:41.0734 0x031c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:28:41.0783 0x031c  WdiServiceHost - ok
12:28:41.0792 0x031c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:28:41.0819 0x031c  WdiSystemHost - ok
12:28:41.0861 0x031c  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
12:28:41.0903 0x031c  WebClient - ok
12:28:41.0925 0x031c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:28:41.0974 0x031c  Wecsvc - ok
12:28:41.0993 0x031c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:28:42.0043 0x031c  wercplsupport - ok
12:28:42.0170 0x031c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:28:42.0200 0x031c  WerSvc - ok
12:28:42.0261 0x031c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:28:42.0302 0x031c  WfpLwf - ok
12:28:42.0322 0x031c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:28:42.0331 0x031c  WIMMount - ok
12:28:42.0350 0x031c  WinDefend - ok
12:28:42.0356 0x031c  WinHttpAutoProxySvc - ok
12:28:42.0398 0x031c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:28:42.0435 0x031c  Winmgmt - ok
12:28:42.0517 0x031c  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
12:28:42.0607 0x031c  WinRM - ok
12:28:42.0665 0x031c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
12:28:42.0676 0x031c  WinUsb - ok
12:28:42.0717 0x031c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:28:42.0755 0x031c  Wlansvc - ok
12:28:42.0901 0x031c  [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc         c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:28:42.0968 0x031c  wlidsvc - ok
12:28:43.0007 0x031c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:28:43.0041 0x031c  WmiAcpi - ok
12:28:43.0078 0x031c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:28:43.0093 0x031c  wmiApSrv - ok
12:28:43.0126 0x031c  WMPNetworkSvc - ok
12:28:43.0146 0x031c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:28:43.0191 0x031c  WPCSvc - ok
12:28:43.0225 0x031c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:28:43.0260 0x031c  WPDBusEnum - ok
12:28:43.0279 0x031c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:28:43.0319 0x031c  ws2ifsl - ok
12:28:43.0339 0x031c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
12:28:43.0356 0x031c  wscsvc - ok
12:28:43.0359 0x031c  WSearch - ok
12:28:43.0549 0x031c  [ 361845875ED8ED13086E7F37265C45DA, A0931DC1E35712036E93BBC3600530C0DA12E94E0D898787C818C526DFF240C2 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:28:43.0651 0x031c  wuauserv - ok
12:28:43.0680 0x031c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:28:43.0722 0x031c  WudfPf - ok
12:28:43.0765 0x031c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:28:43.0779 0x031c  WUDFRd - ok
12:28:43.0792 0x031c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:28:43.0816 0x031c  wudfsvc - ok
12:28:43.0852 0x031c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:28:43.0889 0x031c  WwanSvc - ok
12:28:43.0907 0x031c  {0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw64 - ok
12:28:43.0915 0x031c  ================ Scan global ===============================
12:28:43.0957 0x031c  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
12:28:44.0006 0x031c  [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
12:28:44.0033 0x031c  [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
12:28:44.0059 0x031c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:28:44.0105 0x031c  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
12:28:44.0113 0x031c  [ Global ] - ok
12:28:44.0113 0x031c  ================ Scan MBR ==================================
12:28:44.0121 0x031c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:28:44.0421 0x031c  \Device\Harddisk0\DR0 - ok
12:28:44.0422 0x031c  ================ Scan VBR ==================================
12:28:44.0424 0x031c  [ 7AAAF6F42A1E0731A217F70F09F4BD12 ] \Device\Harddisk0\DR0\Partition1
12:28:44.0426 0x031c  \Device\Harddisk0\DR0\Partition1 - ok
12:28:44.0428 0x031c  [ 6DD3E4526660CFBDDD1CC061FBD2431B ] \Device\Harddisk0\DR0\Partition2
12:28:44.0430 0x031c  \Device\Harddisk0\DR0\Partition2 - ok
12:28:44.0433 0x031c  [ 0278C4B950DA99B138B47AE5DC00437F ] \Device\Harddisk0\DR0\Partition3
12:28:44.0434 0x031c  \Device\Harddisk0\DR0\Partition3 - ok
12:28:44.0435 0x031c  ================ Scan generic autorun ======================
12:28:44.0514 0x031c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:28:44.0607 0x031c  Sidebar - ok
12:28:44.0632 0x031c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:28:44.0648 0x031c  mctadmin - ok
12:28:44.0698 0x031c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:28:44.0735 0x031c  Sidebar - ok
12:28:44.0741 0x031c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:28:44.0756 0x031c  mctadmin - ok
12:28:44.0882 0x031c  [ 5353A34090BABE3CD48B70569AF0DD12, A211D0B06DC05BFCBD13EBC71275C644B7616E95485ED8336DEFF257B7AE7E80 ] D:\Steam\steam.exe
12:28:44.0958 0x031c  Steam - ok
12:28:45.0003 0x031c  Skype - ok
12:28:45.0005 0x031c  Waiting for KSN requests completion. In queue: 106
12:28:46.0005 0x031c  Waiting for KSN requests completion. In queue: 106
12:28:47.0006 0x031c  Waiting for KSN requests completion. In queue: 106
12:28:47.0384 0x1048  Object required for P2P: [ 5353A34090BABE3CD48B70569AF0DD12 ] D:\Steam\steam.exe
12:28:48.0006 0x031c  Waiting for KSN requests completion. In queue: 1
12:28:49.0007 0x031c  Waiting for KSN requests completion. In queue: 1
12:28:49.0821 0x1048  Object send P2P result: true
12:28:50.0019 0x031c  Win FW state via NFP2: enabled ( trusted )
12:28:52.0403 0x031c  ============================================================
12:28:52.0403 0x031c  Scan finished
12:28:52.0403 0x031c  ============================================================
12:28:52.0420 0x0ce4  Detected object count: 0
12:28:52.0420 0x0ce4  Actual detected object count: 0
12:29:13.0718 0x1090  Deinitialize success
         

Das Log von MBAR?

Oh hatte ich vergessen. Sorry!!!

Code: Alles auswählenAufklappen

ATTFilter

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.3.1001

(c) Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 11.0.9600.18097

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 3.292000 GHz
Memory total: 8568578048, free: 3332390912

Downloaded database version: v2015.11.24.02
Downloaded database version: v2015.11.23.01
Downloaded database version: v2015.11.22.02
=======================================
Initializing...
Driver version: 0.3.0.4
------------ Kernel report ------------
     11/24/2015 11:15:07
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_AuthenticAMD.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\vmbus.sys
\SystemRoot\system32\drivers\winhv.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\DRIVERS\disk.sys
\SystemRoot\system32\DRIVERS\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\dtsoftbus01.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
         

Code: Alles auswählenAufklappen

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2015.11.29.02
  rootkit: v2015.11.26.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18097
Michael :: BIER [administrator]

29.11.2015 13:08:55
mbar-log-2015-11-29 (13-08-55).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 441075
Time elapsed: 28 minute(s), 48 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         

Lade Dir bitte von hier Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.

• Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
• Klicke auf Optionen und wähle als Sprache Deutsch.
• Suche im Uninstallerfeld nach den Programmen:
  
  File Type Assistant
  
  InetStat
  
  Show-Password
  
  WindowsProtectManger20.0.0.401 (HKLM-x32\...\WindowsProtectManger) (Version: 20.0.0.401 - Fuyu LIMITED) <==== ACHTUNG
  
  
  
• Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
• Wähle anschließend den Modus "Moderat" aus.
  
• Reste löschen:
  Klicke auf dann auf und dann auf .

 

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

• WICHTIG: Speichere Combofix auf deinem Desktop.
• Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
• Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
• Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
• Wenn Combofix fertig ist, wird es ein Logfile erstellen.
• Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

starte den Rechner einfach neu. Dies sollte das Problem beheben.

Okay ich habe mit dem Revo Uninstaller nur das Programm Show-Password finden können. Dieses habe ich dann entfernt und Combofix laufen lassen.

Hier der Log:

Code: Alles auswählenAufklappen

ATTFilter

ComboFix 15-12-03.01 - Michael 04.12.2015  13:33:53.1.6 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.44.1031.18.8172.5172 [GMT 1:00]
Running from: c:\users\Michael\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
D:\install.exe
.
.
(((((((((((((((((((((((((   Files Created from 2015-11-04 to 2015-12-04  )))))))))))))))))))))))))))))))
.
.
2015-12-04 12:41 . 2015-12-04 12:41	--------	d-----w-	c:\users\Default\AppData\Local\temp
2015-12-04 12:41 . 2015-12-04 12:41	--------	d-----w-	c:\users\Administrator.Bier\AppData\Local\temp
2015-12-04 12:11 . 2015-12-04 12:11	--------	d-----w-	c:\program files (x86)\VS Revo Group
2015-12-04 12:06 . 2015-11-17 06:43	11138400	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{E4D487CB-4424-442E-8193-AB5B69026EAD}\mpengine.dll
2015-11-24 10:16 . 2015-11-24 10:16	--------	d-----w-	c:\programdata\Malwarebytes
2015-11-24 10:15 . 2015-11-29 13:09	--------	d-----w-	c:\programdata\Malwarebytes' Anti-Malware (portable)
2015-11-24 10:15 . 2015-11-29 12:08	192216	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-11-24 10:14 . 2015-11-29 12:08	109272	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2015-11-22 23:22 . 2015-11-22 23:22	--------	d-----w-	c:\program files (x86)\MSXML 4.0
2015-11-22 11:10 . 2015-11-22 11:12	--------	d-----w-	C:\FRST
2015-11-21 12:43 . 2015-11-21 12:43	--------	d-----w-	c:\users\Administrator.Bier\Tracing
2015-11-21 12:21 . 2015-11-21 12:21	--------	d-----w-	c:\users\Administrator.Bier\AppData\Roaming\MAGIX
2015-11-21 12:18 . 2015-11-21 12:18	--------	d-----w-	c:\users\Administrator.Bier\AppData\Local\Skype
2015-11-21 12:18 . 2015-11-21 12:51	--------	d-----w-	c:\users\Administrator.Bier\AppData\Roaming\Skype
2015-11-21 11:39 . 2015-11-21 11:39	--------	d-----w-	c:\users\Michael\AppData\Roaming\MAGIX
2015-11-21 11:36 . 2015-11-21 11:36	--------	d-----w-	c:\program files (x86)\MAGIX
2015-11-21 11:36 . 2015-11-21 11:39	--------	d-----w-	c:\programdata\MAGIX
2015-11-21 02:12 . 2015-11-21 02:12	--------	d-----w-	c:\program files\CCleaner
2015-11-20 15:23 . 2015-11-20 15:23	--------	d-----w-	c:\users\Administrator.Bier\AppData\Local\CrashDumps
2015-11-17 22:56 . 2015-11-17 22:56	--------	d-----w-	c:\program files (x86)\LogMeIn Hamachi
2015-11-12 11:08 . 2015-11-03 17:55	3211264	----a-w-	c:\windows\system32\win32k.sys
2015-11-11 21:56 . 2015-11-22 15:15	--------	d-----w-	c:\users\Michael\AppData\Local\Fallout4
2015-11-11 13:37 . 2015-11-11 13:37	--------	d-----w-	c:\program files (x86)\SystemRequirementsLab
2015-11-11 12:22 . 2015-10-30 23:12	114688	----a-w-	c:\windows\system32\ieetwcollector.exe
2015-11-11 12:21 . 2015-10-20 01:12	5570496	----a-w-	c:\windows\system32\ntoskrnl.exe
2015-11-11 12:20 . 2015-10-13 16:41	497664	----a-w-	c:\windows\system32\drivers\afd.sys
2015-11-09 15:58 . 2015-11-09 15:58	--------	d-----w-	c:\users\Michael\AppData\Roaming\Fatshark
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-11-12 10:51 . 2014-12-02 11:41	34720	---ha-w-	c:\windows\system32\hamachi.sys
2015-11-11 18:59 . 2015-04-08 10:03	145617392	----a-w-	c:\windows\system32\MRT.exe
2015-10-29 17:50 . 2015-11-11 12:20	350208	----a-w-	c:\windows\apppatch\AppPatch64\AcLayers.dll
2015-10-29 17:50 . 2015-11-11 12:20	309248	----a-w-	c:\windows\apppatch\AppPatch64\AcGenral.dll
2015-10-29 17:50 . 2015-11-11 12:20	135168	----a-w-	c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2015-10-29 17:50 . 2015-11-11 12:20	103424	----a-w-	c:\windows\apppatch\AppPatch64\acspecfc.dll
2015-10-29 17:49 . 2015-11-11 12:20	562176	----a-w-	c:\windows\apppatch\AcLayers.dll
2015-10-29 17:49 . 2015-11-11 12:20	2178560	----a-w-	c:\windows\apppatch\AcGenral.dll
2015-10-29 17:49 . 2015-11-11 12:20	470528	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2015-10-29 17:49 . 2015-11-11 12:20	211968	----a-w-	c:\windows\apppatch\AcXtrnal.dll
2015-10-29 17:39 . 2015-11-11 12:20	2560	----a-w-	c:\windows\apppatch\AcRes.dll
2015-10-20 00:45 . 2015-11-11 12:21	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2015-10-13 00:29 . 2015-10-13 00:29	875720	----a-w-	c:\windows\SysWow64\msvcr120_clr0400.dll
2015-10-13 00:22 . 2015-10-13 00:22	869568	----a-w-	c:\windows\system32\msvcr120_clr0400.dll
2015-10-01 18:06 . 2015-10-14 12:40	692672	----a-w-	c:\windows\system32\winload.efi
2015-10-01 18:04 . 2015-10-14 12:41	616360	----a-w-	c:\windows\system32\winresume.efi
2015-10-01 18:00 . 2015-10-14 12:40	63488	----a-w-	c:\windows\system32\setbcdlocale.dll
2015-10-01 18:00 . 2015-10-14 12:40	59392	----a-w-	c:\windows\system32\appidapi.dll
2015-10-01 18:00 . 2015-10-14 12:40	32768	----a-w-	c:\windows\system32\appidsvc.dll
2015-10-01 18:00 . 2015-10-14 12:40	147456	----a-w-	c:\windows\system32\appidpolicyconverter.exe
2015-10-01 18:00 . 2015-10-14 12:40	17920	----a-w-	c:\windows\system32\appidcertstorecheck.exe
2015-10-01 17:50 . 2015-10-14 12:40	50688	----a-w-	c:\windows\SysWow64\appidapi.dll
2015-10-01 17:00 . 2015-10-14 12:40	61440	----a-w-	c:\windows\system32\drivers\appid.sys
2015-09-18 19:22 . 2015-10-15 08:37	25432	----a-w-	c:\windows\system32\CompatTelRunner.exe
2015-09-18 19:19 . 2015-10-15 08:37	700416	----a-w-	c:\windows\system32\invagent.dll
2015-09-18 19:19 . 2015-10-15 08:37	766464	----a-w-	c:\windows\system32\generaltel.dll
2015-09-18 19:19 . 2015-10-15 08:37	503808	----a-w-	c:\windows\system32\devinv.dll
2015-09-18 19:19 . 2015-10-15 08:37	1291264	----a-w-	c:\windows\system32\appraiser.dll
2015-09-18 19:19 . 2015-10-15 08:37	73216	----a-w-	c:\windows\system32\acmigration.dll
2015-09-18 19:09 . 2015-10-15 08:37	1163776	----a-w-	c:\windows\system32\aeinv.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="d:\steam\steam.exe" [2015-11-10 3011152]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-09-27 57987712]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Avira Systray"="c:\program files (x86)\Avira\My Avira\Avira.OE.Systray.exe" [2014-10-09 124720]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R1 {0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw64;{0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw64;c:\windows\system32\drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw64.sys;c:\windows\SYSNATIVE\drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw64.sys [x]
R2 AODDriver4.2.0;AODDriver4.2.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MAGIX StartUp Analyze Service;MAGIX StartUp Analyze Service;c:\program files (x86)\MAGIX\PC_Check_Tuning_Free_2011\MXSAS.exe;c:\program files (x86)\MAGIX\PC_Check_Tuning_Free_2011\MXSAS.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys;c:\windows\SYSNATIVE\DRIVERS\athurx.sys [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 DFX11_1;DFX Audio Enhancer 11.1;c:\windows\system32\drivers\dfx11_1x64.sys;c:\windows\SYSNATIVE\drivers\dfx11_1x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Origin Client Service;Origin Client Service;d:\origin\OriginClientService.exe;d:\origin\OriginClientService.exe [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R4 APNMCP;Ask Aktualisierungsdienst;c:\program files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe;c:\program files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [x]
R4 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R4 Update NetTock;Update NetTock;c:\program files (x86)\NetTock\updateNetTock.exe;c:\program files (x86)\NetTock\updateNetTock.exe [x]
R4 Util NetTock;Util NetTock;c:\program files (x86)\NetTock\bin\utilNetTock.exe;c:\program files (x86)\NetTock\bin\utilNetTock.exe [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\AMD\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.3;AODDriver4.3;c:\program files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 Avira.OE.ServiceHost;Avira Service Host;c:\program files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe;c:\program files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 USBADVAU;Sennheiser 3D G4ME1 Interface;c:\windows\system32\drivers\cm11264.sys;c:\windows\SYSNATIVE\drivers\cm11264.sys [x]
S3 VBAudioVACMME;VB-Audio Virtual Cable (WDM);c:\windows\system32\DRIVERS\vbaudio_cable64_win7.sys;c:\windows\SYSNATIVE\DRIVERS\vbaudio_cable64_win7.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-12-02 18:32	1000264	----a-w-	c:\program files (x86)\Google\Chrome\Application\47.0.2526.73\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2015-12-03 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-04 22:58]
.
2015-12-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-02 16:15]
.
2015-12-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-02 16:15]
.
2015-12-04 c:\windows\Tasks\PCCT - MAGIX AG.job
- c:\program files (x86)\MAGIX\PC_Check_Tuning_Free_2011\MxTray.exe [2010-11-08 17:08]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41564952-412D-5637-4300-7A786E7484D7}]
2014-06-23 18:37	13720	----a-w-	c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{41564952-412D-5637-4300-7A786E7484D7}"= "c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll" [2014-06-23 13720]
.
[HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-4300-7A786E7484D7}]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://isearch.omiga-plus.com/?type=hp&ts=1403996671&from=vtt&uid=ST500DM002-1BD142_S2A47JQEXXXXS2A47JQE
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\dijqlpac.default\
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-EVE - c:\program files (x86)\CCP\EVE\Uninstall.exe
AddRemove-PunkBusterSvc - d:\program files (x86)\Origin Games\Battlefield 3\pbsvc.exe
AddRemove-Trusted Software Assistant_is1 - c:\program files (x86)\File Type Assistant\unins000.exe
AddRemove-Uplay - c:\program files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-596445650-1249027007-2891129913-1000_Classes\Drive\ShellEx\FolderExtensions\{F6BF8414-962C-40FE-90F1-B80A7E72DB9A}]
@Denied: (C D 2 3 6) (CreatorAuthority-4)
@Denied: (C D 2 3 6) (Everyone)
@Allowed: (Read) (S-1-5-21-596445650-1249027007-2891129913-1000)
@SACL=(02 0001)
@Ace=(0x11) (1 3) (S-1-16-12288)
"DriveMask"=dword:ffffffff
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_152_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_152_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Drive\shellex\FolderExtensions\{F6BF8414-962C-40FE-90F1-B80A7E72DB9A}]
@Denied: (C D 2 3 6) (CreatorAuthority-4)
@Denied: (C D 2 3 6) (Everyone)
@SACL=(02 0001)
@Ace=(0x11) (1 3) (S-1-16-12288)
"DriveMask"=dword:ffffffff
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_152_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_152_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_152.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\PnkBstrB.exe
c:\program files (x86)\TeamViewer\TeamViewer_Service.exe
c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
.
**************************************************************************
.
Completion time: 2015-12-04  13:49:28 - machine was rebooted
ComboFix-quarantined-files.txt  2015-12-04 12:49
.
Pre-Run: 3.478.663.168 Bytes frei
Post-Run: 2.998.972.416 Bytes frei
.
- - End Of File - - E9F0AADB1A4254C4AE29F067EF6CFE25
A36C5E4F47E84449FF07ED3517B43A31
         

Downloade Dir bitte Malwarebytes Anti-Malware

• Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
• Starte Malwarebytes' Anti-Malware (MBAM).
• Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
• Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
• Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
• Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
• Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
• Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte AdwCleaner auf deinen Desktop.

• Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
• Starte die AdwCleaner.exe mit einem Doppelklick.
• Stimme den Nutzungsbedingungen zu.
• Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
  • "Tracing" Schlüssel löschen
  • Winsock Einstellungen zurücksetzen
  • Proxy Einstellungen zurücksetzen
  • Internet Explorer Richtlinien zurücksetzen
  • Chrome Richtlinien zurücksetzen
  • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
• Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
• Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
• Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
• Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

• Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
• Drücke eine beliebige Taste, um das Tool zu starten.
• Je nach System kann der Scan eine Weile dauern.
• Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
• Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Okay. Hier sind die 3 Logs :

mbamlog:

Code: Alles auswählenAufklappen

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 12.12.2015
Suchlaufzeit: 14:49
Protokolldatei: mbamlog.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2015.12.12.03
Rootkit-Datenbank: v2015.12.07.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Michael

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 479925
Abgelaufene Zeit: 22 Min., 8 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         

AdwCleaner:

Code: Alles auswählenAufklappen

ATTFilter

# AdwCleaner v5.024 - Bericht erstellt am 12/12/2015 um 15:17:34
# Aktualisiert am 07/12/2015 von Xplode
# Datenbank : 2015-12-12.1 [Server]
# Betriebssystem : Windows 7 Professional Service Pack 1 (x64)
# Benutzername : Michael - BIER
# Gestartet von : C:\Users\Michael\Downloads\Musik\AdwCleaner_5.024.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****

[-] Dienst Gelöscht : APNMCP

***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files (x86)\VNT
[-] Ordner Gelöscht : C:\Program Files (x86)\BitLord
[-] Ordner Gelöscht : C:\ProgramData\apn
[-] Ordner Gelöscht : C:\Users\Michael\AppData\Local\VNT
[-] Ordner Gelöscht : C:\Users\Michael\AppData\Local\StormFall
[-] Ordner Gelöscht : C:\Users\Michael\AppData\Local\BitLord
[-] Ordner Gelöscht : C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcoohmdcpejoeggdnihdfhohjgdbllgm
[-] Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\RPEng
[-] Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\BitLord
[-] Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
[-] Ordner Gelöscht : C:\Users\Michael\Documents\BitLord
[-] Ordner Gelöscht : C:\Windows\SysWOW64\config\systemprofile\AppData\Local\FileTypeAssistant

***** [ Dateien ] *****


***** [ DLLs ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****

[-] Geplante Aufgabe Gelöscht : ProgramRefresh-ATFST
[-] Geplante Aufgabe Gelöscht : ProgramUpdateCheck

***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Wpm
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{884189CF-7C10-41E8-A014-F7B2BE40AADB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{45cafa0d-48f3-44e1-95e3-69935604d9b4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9ea3f99c-1648-442a-929e-16b13808fd4a}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
[-] Schlüssel Gelöscht : HKCU\Software\Bitberry Software
[-] Schlüssel Gelöscht : HKCU\Software\FileTypeAssistant
[-] Schlüssel Gelöscht : HKCU\Software\InetStat
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Softonic
[-] Schlüssel Gelöscht : HKCU\Software\VNT
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\InetStat
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Trusted Software Assistant_is1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D9D9BB49-4B17-4716-9FCC-EA0A2EFB7AF3}_is1
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\VNT
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89EA4F1B8FBCDEF47AE328E455E28AA0
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97ECFF59EE08D4F47BB1464DEC37DA87
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A8CB937199A57E748B6AC433DA453EE2
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4E78E12704AFCE408C7FBE501F1AA0A
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C6A54B56C58C82a4688AFB93F42EA17B
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F0390A76D28822743A68D7F1AB22E6D0
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0A5AC497E6BBC8D45BE8AD6619DA8217
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

***** [ Internetbrowser ] *****

[-] [C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Gelöscht : pcoohmdcpejoeggdnihdfhohjgdbllgm

*************************

:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [8915 Bytes] ##########
         

JRT:

Code: Alles auswählenAufklappen

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 7 Professional x64 
Ran by Michael (Administrator) on 12.12.2015 at 15:28:06,27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2 

Successfully deleted: C:\Users\Michael\AppData\Local\crashrpt (Folder) 
Successfully deleted: C:\Users\Michael\AppData\Roaming\wyupdate au (Folder) 



Registry: 1 

Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 12.12.2015 at 15:35:02,31
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~