| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: .scr Datei ausversehen heruntergeladen.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
24.11.2015, 03:35
| #1 |
 |  .scr Datei ausversehen heruntergeladen. Hallo Zusammen, Ich hab ausversehen eine Datei heruntergeladen, welche auf den Namen "img-1624.png.scr" hört. Ich die Datei nicht geöffnet, sondern gleich gelöscht. Ich weiss nur nicht wie gefährlich so eine Datei sein kann. In einem älteren Forumbeitrag wurde der Betroffene angewiesen, einen FRST-Scan und TDSSKiller-Scan durchzuführen. Nachfolgend werde ich die Ergebnisse dieser Scans posten, was könnt ihr daraus lesen? Ist mein Computer von einem Virus befallen? Falls ich bei der Ersellung dieses Beitrages was Falsch gemacht habe - Entschuldigung. Vielen Dank für euren Rat! FRST.txt: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-11-2015
Ran by Nerdy By Nerds (administrator) on MATRIX (24-11-2015 02:38:08)
Running from C:\Users\Nerdy By Nerds\Desktop
Loaded Profiles: Nerdy By Nerds (Available Profiles: Jeremy J. Erb & Nerdy By Nerds)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\lpksetup.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Tanuki Software, Ltd.) C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Oracle Corporation) C:\Program Files (x86)\PS3 Media Server\jre64\bin\java.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-06] (Apple Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-07-08] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [uTorrent] => C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Voobly] => C:\Program Files (x86)\Voobly\voobly.exe [159744 2015-01-19] (Voobly)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\MountPoints2: {5d4390e4-1303-11e1-8728-806e6f6e6963} - D:\setup\rsrc\Autorun.exe
AppInit_DLLs: C:\PROGRA~3\WinSpeed\WINSPE~1.DLL => C:\ProgramData\WinSpeed\WinSpeed_x64.dll [4513280 2013-12-26] ()
AppInit_DLLs-x32: c:\progra~2\contin~1\sprote~1.dll => No File
AppInit_DLLs-x32: c:\progra~3\winspeed\winspeed.dll => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
Startup: C:\Users\Jeremy J. Erb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-05-08]
ShortcutTarget: Curse.lnk -> C:\Users\Nerdy By Nerds\AppData\Roaming\Curse Client\Bin\Curse.exe (No File)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{20C2A4C4-DFF1-4232-9CFC-010DD5A40F60}: [DhcpNameServer] 91.138.126.128 91.138.1.128
Tcpip\..\Interfaces\{6E745053-D0A6-4597-BEDD-2F3537336362}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BA8B5644-3D53-487C-A063-F6BA6AAC75B7}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.simplespeedy.info/?l=1&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-04-13] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-13] (Oracle Corporation)
BHO-x32: Avira Savings Advisor BHO -> {A18A516C-AA41-46A9-92DB-60208917E442} -> C:\Program Files (x86)\avira\Internet Explorer\avira32.dll [2013-12-11] ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll [No File]
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [No File]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Extension: Greasemonkey - C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]
Chrome:
=======
CHR Profile: C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-29]
CHR Extension: (Google Drive) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Avira Sparberater) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojnmaaohncijldefpkpkkakjonfmgeb [2015-04-29] [UpdateUrl: hxxp://ciuvo.com/ciuvo/update?tag=avira&campaign=] <==== ATTENTION
CHR Extension: (Google-Suche) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Docs Offline) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-04-29]
CHR Extension: (Google Mail) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-29]
CHR HKLM-x32\...\Chrome\Extension: [cojnmaaohncijldefpkpkkakjonfmgeb] - C:\Program Files (x86)\avira\Chrome\avira-1.5.14.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [45056 2013-01-31] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3645432 2014-07-18] (devolo AG)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2010-11-22] (Nalpeiron Ltd.) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PaceLicenseDServices; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2932224 2011-07-09] (PACE Anti-Piracy, Inc.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-31] ()
R2 PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [384280 2012-11-27] (Tanuki Software, Ltd.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2014-11-04] (Tunngle.net GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R1 archlp; C:\Windows\SysWow64\drivers\archlp.sys [161792 2009-02-06] ()
S1 Aspi32; no ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-02-19] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ElgatoGC656Y; C:\Windows\System32\Drivers\ElgatoGC656.sys [94440 2014-07-07] (UB658)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-10-13] ()
S3 hcwhdpvr; C:\Windows\System32\DRIVERS\hcwhdpvr.sys [189952 2010-06-23] (Hauppauge, Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-02] (Logitech Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [52320 2013-08-07] (hxxp://libusb-win32.sourceforge.net)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [27816 2014-12-30] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [33448 2014-08-21] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [29952 2009-10-16] (Razer (Asia-Pacific) Pte Ltd)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-24 02:38 - 2015-11-24 02:39 - 00027949 _____ C:\Users\Nerdy By Nerds\Desktop\FRST.txt
2015-11-24 02:37 - 2015-11-24 02:38 - 00000000 ____D C:\FRST
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Downloads\FRST64.exe
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Desktop\FRST64.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Downloads\tdsskiller.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
2015-11-23 22:43 - 2015-11-23 22:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\LocalLow\uTorrent
2015-11-18 19:22 - 2015-11-18 19:22 - 01107319 _____ C:\Users\Nerdy By Nerds\Downloads\ER Dokumente.zip
2015-11-18 02:02 - 2015-11-18 02:02 - 00135972 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e07.720p.hdtv.x264.killers.rartv.torrent
2015-11-17 19:09 - 2015-11-17 19:09 - 00046320 _____ C:\Users\Nerdy By Nerds\Desktop\test.mmmacro
2015-11-17 18:44 - 2015-11-17 18:44 - 00757560 _____ (Jitbit Software ) C:\Users\Nerdy By Nerds\Downloads\MacroRecorderSetup.exe
2015-11-17 18:44 - 2015-11-17 18:44 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macro Recorder
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\Program Files (x86)\MacroRecorder
2015-11-17 17:58 - 2015-11-17 17:58 - 00844200 _____ (MurGee Softwares ) C:\Users\Nerdy By Nerds\Downloads\setup.exe
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Auto-Mouse-Clicker
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Mouse Clicker v4.0
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Program Files (x86)\Auto Mouse Clicker v4.0
2015-11-15 18:52 - 2015-11-15 18:52 - 00004544 _____ C:\Users\Nerdy By Nerds\Desktop\New Journal Document.jnt
2015-11-15 18:52 - 2015-11-15 18:52 - 00000000 _____ C:\Users\Nerdy By Nerds\Desktop\New Text Document.txt
2015-11-13 20:34 - 2015-11-13 20:34 - 00011237 _____ C:\Users\Nerdy By Nerds\Downloads\helsinki.zip
2015-11-12 22:56 - 2015-11-12 22:56 - 29302298 _____ C:\Users\Nerdy By Nerds\Downloads\KiesMac_2.0.0.13023_10_1.dmg
2015-11-10 23:40 - 2015-11-10 23:40 - 05286088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-11-09 17:10 - 2015-11-09 17:10 - 00133972 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e06.720p.hdtv.x264.killers.rartv.torrent
2015-11-09 17:09 - 2015-11-09 17:09 - 00133813 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.walking.dead.s06e05.720p.hdtv.x264.fleet.rartv.torrent
2015-11-08 20:27 - 2015-11-12 18:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 19:12 - 2015-11-08 19:12 - 00929872 _____ (Google Inc.) C:\Users\Nerdy By Nerds\Downloads\ChromeSetup.exe
2015-11-08 16:00 - 2015-11-08 16:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Flavio Fotos
2015-11-07 19:11 - 2015-11-07 19:11 - 00153765 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e05.720p.hdtv.x264.killers.rartv.torrent
2015-11-07 19:11 - 2015-11-07 19:11 - 00124773 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e04.720p.hdtv.x264.0sec.rartv.torrent
2015-11-07 19:10 - 2015-11-07 19:10 - 00141034 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e03.720p.hdtv.x264.fleet.rartv.torrent
2015-11-07 19:07 - 2015-11-07 19:07 - 00007277 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e01.hdtv.x264.killers.ettv (1).torrent
2015-11-07 19:03 - 2015-11-07 19:03 - 00007277 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e01.hdtv.x264.killers.ettv.torrent
2015-11-07 00:45 - 2015-11-07 00:45 - 00007201 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising (2).xml
2015-11-06 21:33 - 2015-11-06 21:33 - 00001832 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising (1).xml
2015-11-06 19:02 - 2015-11-06 19:02 - 00001692 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising.xml
2015-11-06 18:51 - 2015-11-22 18:33 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Empire Rising
2015-11-06 18:01 - 2015-11-06 19:10 - 352186801 ____N C:\Users\Nerdy By Nerds\Desktop\MVI_1036.MOV
2015-11-05 00:10 - 2015-11-05 00:10 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-05 00:09 - 2015-11-05 00:09 - 28849904 _____ C:\Users\Nerdy By Nerds\Downloads\vlc-2.2.1-win32.exe
2015-11-05 00:09 - 2015-11-05 00:09 - 00000000 ____D C:\Program Files (x86)\New folder
2015-10-30 22:09 - 2015-10-30 22:09 - 00737117 _____ C:\Users\Nerdy By Nerds\Downloads\DarkCode_final.ts3_style
2015-10-29 08:01 - 2015-10-29 08:01 - 00143180 _____ C:\Users\Nerdy By Nerds\Downloads\The.Walking.Dead.S06E03.1080p.WEB-DL.Dual.Audio.Dublado.torrent
2015-10-28 23:39 - 2015-10-28 23:39 - 00141811 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.walking.dead.season.5.complete.1080p.web.dl.dd5.1.h.264.cyphanix.nl.en.subs.torrent
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-24 02:38 - 2014-11-08 17:23 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Skype
2015-11-24 02:37 - 2015-01-05 00:33 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent
2015-11-24 02:25 - 2014-11-06 23:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\TS3Client
2015-11-24 02:25 - 2011-03-26 02:54 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-24 02:18 - 2011-05-23 00:15 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-24 02:12 - 2014-02-14 16:12 - 00000322 _____ C:\Windows\Tasks\Funmoods.job
2015-11-24 01:40 - 2013-03-10 23:43 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-24 01:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2015-11-23 22:55 - 2011-02-13 00:09 - 01266005 ____N C:\Windows\WindowsUpdate.log
2015-11-23 22:53 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-23 22:53 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-23 22:43 - 2011-11-20 00:24 - 00000144 _____ C:\service.log
2015-11-23 22:42 - 2014-04-07 19:33 - 00000000 ____D C:\ProgramData\PMS
2015-11-23 22:42 - 2011-05-23 00:15 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-23 22:41 - 2013-02-12 20:10 - 00000444 ____H C:\Windows\Tasks\schedule!1143840799.job
2015-11-23 22:41 - 2011-11-20 00:55 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2015-11-23 22:41 - 2011-02-13 13:06 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-11-23 22:41 - 2011-02-13 12:11 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-23 22:41 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-20 20:40 - 2015-09-26 22:14 - 00157696 _____ C:\Windows\ERUNT.exe
2015-11-19 17:07 - 2013-08-10 12:16 - 00737390 _____ C:\Windows\system32\perfh00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00735432 _____ C:\Windows\system32\perfh013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00675688 _____ C:\Windows\system32\perfh00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00473428 _____ C:\Windows\system32\perfh00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00384278 _____ C:\Windows\system32\perfh00D.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00171272 _____ C:\Windows\system32\perfc00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00158472 _____ C:\Windows\system32\perfc00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00153100 _____ C:\Windows\system32\perfc013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00101518 _____ C:\Windows\system32\perfc00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00084756 _____ C:\Windows\system32\perfc00D.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00731980 _____ C:\Windows\system32\perfh010.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00146844 _____ C:\Windows\system32\perfc010.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00737650 _____ C:\Windows\system32\perfh00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00470948 _____ C:\Windows\system32\perfh001.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00149578 _____ C:\Windows\system32\perfc00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00094770 _____ C:\Windows\system32\perfc001.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00697272 _____ C:\Windows\system32\perfh007.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00149240 _____ C:\Windows\system32\perfc007.dat
2015-11-19 17:07 - 2009-07-14 06:13 - 07620544 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-19 02:13 - 2014-11-06 19:19 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\vlc
2015-11-19 00:12 - 2014-11-07 21:22 - 00001456 _____ C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-11-17 19:19 - 2015-03-12 00:51 - 00000000 ____D C:\temp
2015-11-14 14:11 - 2009-07-14 05:45 - 05215112 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-14 02:03 - 2014-11-06 20:08 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe
2015-11-13 23:17 - 2014-11-08 15:29 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Battle.net
2015-11-13 20:43 - 2014-11-08 22:03 - 00000132 _____ C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-11-13 20:34 - 2014-11-06 17:55 - 00165760 _____ C:\Users\Nerdy By Nerds\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-13 15:34 - 2014-01-24 15:17 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-11-13 15:27 - 2014-01-24 15:11 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-11-12 17:52 - 2015-05-16 01:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-10 23:40 - 2013-03-10 23:43 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 23:40 - 2013-03-10 23:43 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 23:40 - 2011-06-14 23:21 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-08 19:13 - 2011-05-23 00:15 - 00004122 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-08 19:13 - 2011-05-23 00:15 - 00003870 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-06 21:20 - 2015-09-10 12:32 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Foto Familien Album
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieUserList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieSiteList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieBrowserModeList
2015-11-05 00:10 - 2011-02-13 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-30 12:58 - 2011-02-13 16:37 - 00000000 ____D C:\ProgramData\Skype
2015-10-29 21:06 - 2014-11-07 13:54 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Audacity
2015-10-26 00:51 - 2014-11-06 17:54 - 00000000 ____D C:\Users\Nerdy By Nerds
==================== Files in the root of some directories =======
2014-11-08 22:03 - 2015-11-13 20:43 - 0000132 _____ () C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-11-07 21:22 - 2015-11-19 00:12 - 0001456 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2014-12-17 05:48 - 2015-10-11 10:13 - 0007168 _____ () C:\Users\Nerdy By Nerds\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-10 21:44 - 2014-11-10 21:44 - 0007605 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Resmon.ResmonCfg
2013-08-25 21:49 - 2013-08-25 21:49 - 0000057 _____ () C:\ProgramData\Ament.ini
2011-02-13 16:38 - 2011-02-13 16:38 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-08-17 17:30 - 2011-08-17 17:31 - 0000000 _____ () C:\ProgramData\Yes
Some files in TEMP:
====================
C:\Users\Jeremy J. Erb\AppData\Local\Temp\AdobeApplicationManager.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\avgnt.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmptjafqk.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2250463518738937912.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2379732162636497944.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna3653581951061083711.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\swt-win32-3349.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-20 15:56
==================== End of FRST.txt ============================
--- --- --- |
|
24.11.2015, 03:37
| #2 |
| | .scr Datei ausversehen heruntergeladen. Addition.txt:
__________________Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version:23-11-2015
Ran by Nerdy By Nerds (2015-11-24 02:40:16)
Running from C:\Users\Nerdy By Nerds\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2011-02-12 23:09:27)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
7E281115A23343249B54 (S-1-5-21-1020473624-1478330774-1937670132-1004 - Limited - Enabled)
Administrator (S-1-5-21-1020473624-1478330774-1937670132-500 - Administrator - Disabled)
BE38876218914F369445 (S-1-5-21-1020473624-1478330774-1937670132-1005 - Limited - Enabled)
Guest (S-1-5-21-1020473624-1478330774-1937670132-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1020473624-1478330774-1937670132-1008 - Limited - Enabled)
Jeremy J. Erb (S-1-5-21-1020473624-1478330774-1937670132-1000 - Administrator - Enabled) => C:\Users\Jeremy J. Erb
Nerdy By Nerds (S-1-5-21-1020473624-1478330774-1937670132-1009 - Administrator - Enabled) => C:\Users\Nerdy By Nerds
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
µTorrent (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
AC3Filter 1.63b (HKLM-x32\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12 - Adobe Systems Incorporated)
Adobe After Effects CS5 Third Party Content (HKLM-x32\...\{C0AA232E-BD1B-40B5-A176-A2BEB67FFAE1}) (Version: 10 - Adobe Systems Incorporated)
Adobe After Effects CS5 Third Party Royalty Content (HKLM-x32\...\{CD29B5CA-4727-4114-9AD9-25CCCE6E4014}) (Version: 10 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.)
Adobe Audition CC 2014 (HKLM-x32\...\{F3388E10-EFA9-4A80-B28E-2E647F8D00C4}) (Version: 7.0.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{288DB08D-0708-4A94-B055-55B99E39EB62}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Encore CS5 Third Party Royalty Content (HKLM-x32\...\{0E3C6C75-872D-4B0D-B0B2-31C717250691}) (Version: 5.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Media Encoder CS5 Dolby X64 (HKLM-x32\...\{5DDABB74-A879-4BE7-A4C6-FD41793942DB}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Media Encoder CS5 PCI X64 (HKLM-x32\...\{F9C71630-0EE3-475C-9E2B-ED95AE197DBD}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Premiere Pro CS5 Third Party Royalty Content (HKLM-x32\...\{565DE707-5798-4FC3-8DF6-0F58A348A9B0}) (Version: 5.0.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.02) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
Adobe Soundbooth CS5 Codecs (HKLM-x32\...\{DE5DE662-2ECB-4D93-967B-221FBCC8A736}) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Soundbooth CS5 Royalty Codecs (HKLM-x32\...\{F319804F-E3A4-4C02-8AEC-CB39A4F6447E}) (Version: 3.0 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
Aimersoft DVD Ripper(Build 2.7.2.0) (HKLM-x32\...\Aimersoft DVD Ripper_is1) (Version: - Aimersoft Software)
Amnesia - The Dark Descent (HKLM-x32\...\{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1) (Version: 1.0.0 - Frictional Games)
ANNO 1404 - Königsedition (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 3.10.0000 - Ubisoft)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft TotalMedia Extreme (HKLM-x32\...\{88B05038-C890-468B-A563-0015FD53CDC3}) (Version: 1.0.9.9 - ArcSoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ARMA 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
ARMA 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
ARMA 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version: - )
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Auto Mouse Clicker v4.0 (HKLM-x32\...\{C83F056D-E3D5-4308-B3ED-9FAFA8ACF821}_is1) (Version: - MurGee Softwares)
Avid EDL Manager (HKLM-x32\...\{830A8D89-D744-449C-ACE1-0A1A345D9B02}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid FilmScribe (HKLM-x32\...\{ED85F920-DC3C-44FD-80F3-93FA4C484039}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid License Control (HKLM-x32\...\{89A9B9EE-839E-4820-9450-2912C82F46AF}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid Log Exchange (HKLM-x32\...\{B0AA273D-06D3-46F2-8E21-E395A7BFC731}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid Media Composer (HKLM\...\{06928D63-80CF-4563-9E36-0BA52FAD7A1F}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid MediaLog (HKLM-x32\...\{B204C364-9D67-4F5A-A54C-56ED809BF76F}) (Version: 28.0.1 - Avid Technology, Inc.)
Avira Savings Advisor (HKLM-x32\...\{A18A516C-AA41-46A9-92DB-60208917E442}) (Version: 1.5.14 - Avira)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield 3™ Open Beta (HKLM-x32\...\{45C8D17D-B5E0-4e93-8370-4329AB16D2A0}) (Version: 1.0.0.0 - Electronic Arts)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blur Busters Strobe Util (HKLM-x32\...\{57BDAE81-2BE7-4ABA-8B03-1520FBF41AF9}) (Version: 1.0.0 - Blur Busters)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadband Internet Router (HKLM-x32\...\Template One Sample App) (Version: - )
Brorsoft Video Converter Ver 1.1.1.3688 (HKLM-x32\...\{3231B80A-455C-497a-8425-3E44C006D76C}_is1) (Version: - )
CamStudio (HKLM-x32\...\CamStudio) (Version: - )
Camtasia Studio 7 (HKLM-x32\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.7.0.4 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.4.0.15 - Canon Inc.)
Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.2.0.10 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.3.0.15 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.3.0.4 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.7 (HKLM-x32\...\DPP) (Version: 3.7.1.1 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.7.0.2 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.6.0.0 - Canon Inc.)
Canon Utilities WFT-E1/E2/E3/E4/E5 Utility (HKLM-x32\...\WFTK) (Version: 3.4.0.2 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.4.1.11 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.2.2.11 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Click Bot (HKLM-x32\...\Click Bot) (Version: - )
ContinueToSave (HKLM\...\{CFD13E7B-203C-2497-C67C-681E14321C8D}) (Version: 1.0 - ) <==== ATTENTION
ContinueToSave (HKLM\...\ContinueToSave) (Version: 1.0 - BetterSoft) <==== ATTENTION
continuetosave (HKLM-x32\...\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}) (Version: - continue to save) <==== ATTENTION
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
DAEMON Tools Toolbar (HKLM-x32\...\DAEMON Tools Toolbar) (Version: 1.1.4.0024 - DT Soft Ltd) <==== ATTENTION
DayZ Commander (HKLM-x32\...\{BAD8395E-CE31-44AA-B9FE-A14FCD0ABE4A}) (Version: 0.9.110 - Dotjosh Studios)
DeialExpresss (HKLM-x32\...\{25F259ED-12F6-429F-5783-527C3E2F8586}) (Version: - DeaLLExpress) <==== ATTENTION
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.2.3.0 - devolo AG)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Katy Perry Süße Welt (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.22 - DivX, LLC)
DVDFab 9.0.1.5 (08/12/2012) Qt (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Easy Video to Gif Converter V3.0 (HKLM-x32\...\Easy Video to Gif Converter_is1) (Version: - corksot.com)
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
EasyTax 2012 AG 1.04 (HKLM-x32\...\3785-6780-1293-3574) (Version: 1.04 - HWI Solutions AG)
Elgato Game Capture HD (HKLM-x32\...\{A04501E6-ED4D-43C9-9D69-9C78224B5BDC}) (Version: 2.01.49.776 - Elgato Systems GmbH)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.0) (Version: 0.70.0 - ESN Social Software AB)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
ffdshow v1.3.4500 [2013-01-06] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4500.0 - )
ffdshow x64 v1.1.4284 [2012-01-28] (HKLM\...\ffdshow64_is1) (Version: 1.1.4284.0 - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 3.16.2.1 - Futuremark Corporation)
Game Capture HD v2.3.3.38 (HKLM-x32\...\Software_Elgato_Game Capture HD) (Version: 2.3.3.38 - Elgato Systems)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hauppauge HDPVR Scheduler (HKLM-x32\...\Hauppauge HDPVR Scheduler) (Version: - Hauppauge Computer Works)
Hauppauge WinTV Scheduler (HKLM-x32\...\Hauppauge WinTV Scheduler) (Version: - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HP Officejet Pro 8600 Basic Device Software (HKLM\...\{791A06E2-340F-43B0-8FAB-62D151339362}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Help (HKLM-x32\...\{46235FF7-2CBE-4A84-BEDA-87348D1F7850}) (Version: 28.0.0 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
iPhone Backup Extractor (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\iPhone Backup Extractor) (Version: 5.7.2.322 - Reincubate Ltd)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
JDownloader (HKLM-x32\...\JDownloader) (Version: - AppWork UG (haftungsbeschränkt))
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version: - Tripwire Interactive)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
License Support (HKLM-x32\...\InstallShield_{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
License Support (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.) Hidden
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version: - DONTNOD Entertainment)
Lime OCR 2.4.1 (HKLM-x32\...\Lime OCR) (Version: 2.4.1 - Lime Consultants)
Logitech Gaming Software 8.40 (HKLM\...\Logitech Gaming Software) (Version: 8.40.83 - Logitech Inc.)
Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Macro Recorder 5.7.8 (HKLM-x32\...\Macro Recorder_is1) (Version: 5.7.8 - Jitbit Software)
Magic Bullet Looks (HKLM-x32\...\InstallShield_{AEC9311A-90AC-4083-B3CD-428C3BB3891C}) (Version: 1.4.0 - Red Giant Software)
Magic Bullet Looks (Version: 1.4.0 - Red Giant Software) Hidden
Magic Bullet LooksBuilder (HKLM-x32\...\Magic Bullet LooksBuilder) (Version: - )
MAGIX Screenshare (HKLM-x32\...\{B1FEBE01-42BB-4D05-8180-6C5ABD91E97E}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\{6FC5FA2A-1D40-41B9-920B-0F2A758E24A6}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_premium) (Version: 10.0.0.32 - MAGIX AG)
MAGIX Video deluxe 17 Premium (x32 Version: 10.0.0.32 - MAGIX AG) Hidden
ManyCam 3.1.58 (HKLM-x32\...\ManyCam) (Version: 3.1.58 - ManyCam LLC)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft IntelliType Pro 8.0 (HKLM\...\{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}) (Version: 8.0.225.0 - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
mkv2vob (HKLM-x32\...\{21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}) (Version: 2.4.9 - 3r1c)
MKVToolNix 6.1.0 (HKLM-x32\...\MKVToolNix) (Version: 6.1.0 - Moritz Bunkus)
MotioninJoy DS3 driver version 0.6.0005 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.0005 - www.motioninjoy.com)
Mozilla Firefox 41.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 de)) (Version: 41.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Neat Video v2.0 Demo plug-in for Virtual Dub (HKLM-x32\...\Neat Video for VirtualDub_is1) (Version: - Neat Video team, ABSoft)
Neat Video v3.0 Demo plug-in for VirtualDub (32-bit) (HKLM-x32\...\Neat Video for VirtualDub (32-bit)_is1) (Version: - Neat Video team, ABSoft)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 1.4 - NewBlue)
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 1.4 - NewBlue)
NewBlueFX Premium Effects (HKLM-x32\...\NewBlueFX Premium Effects) (Version: 1.4 - NewBlue)
NVIDIA 3D Vision Controller Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenSubtitlesPlayer V4.X (HKLM-x32\...\OpenSubtitlesPlayer_is1) (Version: - ALLCinema Ltd.)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version: - )
PDF OCR X Community Edition (HKLM-x32\...\ca.weblite.pdfocrx.CommunityEdition_is1) (Version: 2.0.8 - Web Lite Solutions Corp.)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDFMate Free PDF Merger 1.0.6 (HKLM-x32\...\PDFMate Free PDF Merger_is1) (Version: - pdfmate.com)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PluralEyes® 2.0.4 for Premiere® Pro (HKLM-x32\...\{CE9ACBCA-B429-4DA7-9728-2A621C6479FA}_is1) (Version: 1.0 - Singular Software Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
Project 64 version 2.1.0.1 (HKLM-x32\...\Project 64_is1) (Version: 2.1.0.1 - )
PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
Python 2.7.10 (Anaconda 2.3.0 64-bit) (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Python 2.7.10 (Anaconda 2.3.0 64-bit)) (Version: 2.3.0 - Continuum Analytics, Inc.)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Razer Lachesis (HKLM-x32\...\{CB4532F7-A1BD-46D2-9938-3E7D4656FB18}) (Version: 1.10.0000 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26914 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Roll (HKLM-x32\...\RollerCoaster Tycoon Setup) (Version: - )
Scan Tailor (HKLM-x32\...\Scan Tailor) (Version: - )
Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
SixaxisPairTool 0.2.3 (HKLM-x32\...\SixaxisPairTool_is1) (Version: 0.2.3 - Dancing Pixel Studios)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Sniper Elite: Nazi Zombie Army 2 (HKLM-x32\...\Steam App 247910) (Version: - )
Sony RAW Driver (HKLM-x32\...\{166FCF01-AC98-4288-A01C-90BEB808C059}) (Version: 2.0.00.08130 - Sony Corporation)
SparkoCam (HKLM-x32\...\SparkoCam) (Version: 2.2.7 - Sparkosoft)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Steam App 232890) (Version: - FireFly Studios)
Stronghold Crusader Extreme HD (HKLM-x32\...\Steam App 16700) (Version: - Firefly Studios)
Stronghold Crusader HD (HKLM-x32\...\Steam App 40970) (Version: - FireFly Studios)
Stronghold Kingdoms (HKLM-x32\...\Steam App 47410) (Version: - FireFly Studios)
SunnyPage 2,1 (HKLM-x32\...\SunnyPage 2,1 2.1) (Version: 2.1 - Daylight)
SunnyPage 2,1 (x32 Version: 2.1 - Daylight) Hidden
Sweet Home 3D version 4.4 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
The Movies(TM) (HKLM-x32\...\InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1}) (Version: 1.0 - Activision)
The Movies(TM) (x32 Version: 1.0 - Activision) Hidden
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.0.3 - Electronic Arts)
Tunngle version Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
TwitchAlerts (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\fb3f6ca9b67f53a3) (Version: 1.0.0.8 - TwitchAlerts)
UnderCoverXP 1.23 (HKLM-x32\...\UnderCoverXP_is1) (Version: - Wicked & Wild Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 64-bit Redistributables (HKLM-x32\...\InstallShield_{5B0E60DB-7741-412F-88B3-E6975D30D019}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Visual C++ Redistributables (HKLM-x32\...\InstallShield_{C2AF7B2D-7018-414B-9B8B-D3C9F3BED04F}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voobly Game Data (HKLM-x32\...\Voobly_is1) (Version: Voobly Game Datas - Voobly)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.1.7-3 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.12 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.10 - Wacom Technology Corp.)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Win7codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 2.7.8 - Shark007)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
WinSpeed (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{f1f78e38}) (Version: - Jingo Ltd) <==== ATTENTION
XMind 6 (v3.5.1) (HKLM-x32\...\XMind_is1) (Version: 3.5.1.201411201906 - XMind Ltd.)
XviD v1.3.0 CVS (HKLM\...\XviD MPEG-4 Video Codec_is1) (Version: - Celtic Druid)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
15-11-2015 19:00:05 Windows Backup
22-11-2015 19:00:05 Windows Backup
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2011-03-22 17:10 - 00004232 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 pagead2.googlesyndication.com
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 192.168.112.207
127.0.0.1 192.168.112.2o7.net
127.0.0.1 194.224.66.48
127.0.0.1 199.7.52.190
127.0.0.1 199.7.52.190:80
127.0.0.1 199.7.54.72
127.0.0.1 209.34.83.73
127.0.0.1 209.34.83.73:43
127.0.0.1 209.34.83.73:443
There are 80 more lines.
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {030BA824-1EBF-4741-BB03-AC0F8C9C29AC} - System32\Tasks\schedule!1143840799 => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exe <==== ATTENTION
Task: {03C829C4-EDE1-458E-8F84-72CEC5E1E1ED} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.)
Task: {15621ED5-31F4-4D4E-A807-6E295BF15837} - System32\Tasks\{FB5116E4-4389-41E1-9A09-780C90D44DEA} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.0.102/de/abandoninstall?page=tsProgressBar
Task: {1EDD8CF6-4990-4EE8-9807-64A85F05AB8A} - System32\Tasks\Funmoods => C:\Users\Jeremy J. Erb\AppData\Roaming\Funmoods\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {272575DA-5C7A-4A65-ABE2-F486D293560F} - System32\Tasks\{7F832122-3F8F-4D25-9882-326F0B4C3165} => C:\Users\Jeremy J. Erb\Desktop\Downloads\qc1150_x64.exe
Task: {2A2FA555-C451-4521-9A5D-DD13F0986D94} - System32\Tasks\{95760577-A417-454F-946F-F273DEF6AEF9} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II"
Task: {2F63A731-0606-4930-A601-2327BF3A8620} - System32\Tasks\Google Updater and Installer => C:\Users\Jeremy J. Erb\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {3647D943-139B-4687-839E-25826213499F} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => c:\Program Files\Microsoft IntelliType Pro\IType.exe [2010-07-21] (Microsoft Corporation)
Task: {5349671D-0EC9-4118-A29D-0923FA4ED050} - System32\Tasks\{910FE053-B1B9-4E3E-8194-E339FB2E55B1} => pcalua.exe -a "C:\Program Files (x86)\QuickTime Alternative\QTSystem\quicktime.cpl"
Task: {5CF9750A-6450-4EFD-9927-DC778DEDCA1F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {60BCEAB1-F0F3-4806-BC13-A5FE6AC06B32} - System32\Tasks\{BF4F3FA7-43C4-4E38-B12C-4D20E90DB4B5} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-10-14] (Skype Technologies S.A.)
Task: {68E90B7B-4B83-4297-85D3-D6458DF10048} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {71D1DF21-A84B-4D78-BA3B-615E0F1C6D57} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-18] (Adobe Systems Incorporated)
Task: {77CD2ACA-8A4C-404B-BC8B-BB5F0A37B2B9} - System32\Tasks\ALL Update => C:\Program Files (x86)\OpenSubtitlesPlayer\ALLUpdate.exe [2011-08-17] ()
Task: {78D29609-E3A5-4F52-BFB5-7F07A1F03B74} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {86276313-9C3C-48E4-B04A-A577D228FBE2} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {8749126C-4094-40D6-B31E-4895C6EBF6B6} - System32\Tasks\{C685A2F9-46D7-40D3-96D8-7441DA20A811} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings"
Task: {9558289A-AB6B-4D56-A301-8FF5147534CB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9855C353-7204-49C4-8577-9EE90EB63E90} - System32\Tasks\DivX online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2012-11-30] ()
Task: {A07A5FC7-47C3-4F0F-B511-10ED1F8BBF3F} - System32\Tasks\{472589C8-95B4-4B3D-89C8-F8B42E801DD2} => pcalua.exe -a D:\aocsetup.exe -d D:\ -c /autorun
Task: {A9FA069D-926D-4804-95D4-E41F29C8F627} - System32\Tasks\{4D2B59AF-6764-4EEA-9C74-43C49BE71FC3} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\quicktime\QuickTimeInstaller.exe" -d "C:\Users\Jeremy J. Erb\Desktop\quicktime"
Task: {C2BECC7A-CF6D-4BA9-B822-744AD1B542DF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {C6B49042-7A95-4284-A5D6-F9385029CC05} - System32\Tasks\{83CE1FA0-67E1-46C6-9DC4-286B3FA41D9E} => pcalua.exe -a "C:\Users\Jeremy J. Erb\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCG7T566\ChromeSetup[1].exe" -d "C:\Users\Jeremy J. Erb\Desktop"
Task: {D2F2CD1A-7ABE-4378-B597-F4DF9E36BCED} - System32\Tasks\{04DE06AE-4EA6-4876-9BC2-D7357D945528} => C:\Program Files (x86)\Lime OCR\lime-ocr.exe [2009-12-14] (Lime Consultants)
Task: {D51A8F7F-5346-4104-AF50-E70883CB02A7} - System32\Tasks\{1F59B7F6-019B-43CA-85E9-7654146C0CE6} => pcalua.exe -a D:\Setup\Setup.exe -d D:\Setup
Task: {D7BC1633-093D-4305-864E-34609FB0E643} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {F09A251D-75C2-4E59-B680-390D878D5896} - System32\Tasks\aviraSWU => Cscript.exe "C:\Program Files (x86)\avira\Internet Explorer\swu.vbs"
Task: {F2C0F94D-473F-4834-BE74-9B57677BACCB} - System32\Tasks\{A98696DE-F69D-43AC-849F-62CF462DA4A1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.5.0.114.259/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;ienotdefaultbrowser2
Task: {FBAD0F83-4AD2-4905-AEFC-07D438571815} - System32\Tasks\{6E5B4A10-2158-4ACD-9074-4242EDA117A2} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Downloads\vcredist_x86.exe" -d "C:\Users\Jeremy J. Erb\Desktop\Downloads"
Task: {FD3504AA-601B-48FE-A2E5-E34BD1EEDE39} - System32\Tasks\AdobeAAMUpdater-1.0-MATRIX-Jeremy J. Erb => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {FDAF9943-EAF8-4716-8677-23E57E4E0EC7} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Funmoods.job => C:\Users\JEREMY~1.ERB\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\schedule!1143840799.job => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exeM/schedule /profile c:\programdata\bettersoft\continuetosave\1143840799.ini <==== ATTENTION
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda (64-bit)\Anaconda Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Users\Nerdy By Nerds\Anaconda\Scripts\anaconda.bat" <==== ATTENTION
ShortcutWithArgument: C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda (64-bit)\Wakari (in the cloud).lnk -> C:\Users\Nerdy By Nerds\Anaconda\pythonw.exe () -> -m webbrowser -t "hxxps://www.wakari.io/" <==== ATTENTION
==================== Loaded Modules (Whitelisted) ==============
2011-10-03 14:31 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-11-20 00:24 - 2009-08-24 14:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2011-10-02 16:52 - 2013-10-31 15:04 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-06-23 20:11 - 2015-06-23 20:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2011-02-13 13:50 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2011-10-14 17:20 - 2011-06-06 13:23 - 01183096 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2009-10-14 12:34 - 2009-10-14 12:34 - 00560472 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2015-03-14 06:49 - 2015-03-14 06:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2011-11-20 00:24 - 2009-03-13 11:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-04-18 12:59 - 2014-10-31 15:37 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-04-18 12:59 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 02140944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtCore4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 07704336 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtGui4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00968976 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtNetwork4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00475408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtOpenGL4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00363792 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtXml4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00199952 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtSql4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00027408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\SDL.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 11311888 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtWebKit4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00291600 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\phonon4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00028944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qgif4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00035088 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qico4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00138000 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qjpeg4.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 00181592 _____ () C:\Program Files (x86)\Common Files\LogiShrd\LvApi11\LvApi11.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 01241088 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 02010624 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 00126464 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamFilter.dll
2014-04-02 14:57 - 2014-04-02 14:57 - 00014336 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamServer.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 11632640 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamLib.dll
2015-05-20 03:29 - 2015-05-20 03:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-01-11 23:45 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\Nerdy By Nerds\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 16496456 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll
2012-09-23 20:43 - 2012-09-23 20:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll
2012-12-18 20:08 - 2012-12-18 20:08 - 14588632 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\NPSWF32.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:DWq8NyBLbUmrYhkdKsN
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:WAD8mEFaKluOpOHzime
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:CCQZHaNqy9CftkQxXk97VvK
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temporary Internet Files:fHhhMOyoB8Xe79tna24YLG
AlternateDataStreams: C:\Users\Nerdy By Nerds\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\Control Panel\Desktop\\Wallpaper -> C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Jeremy J. Erb^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Produktregistrierung.lnk => C:\Windows\pss\Logitech . Produktregistrierung.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Aimersoft Helper Compact.exe => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: DS3 Tool => C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe -mini
MSCONFIG\startupreg: Facebook Update => "C:\Users\Jeremy J. Erb\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: facemoods => "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodssrv.exe" /md I
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: itype => "c:\Program Files\Microsoft IntelliType Pro\itype.exe"
MSCONFIG\startupreg: Lachesis => C:\Program Files (x86)\Razer\Lachesis\razerhid.exe
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: Logitech Vid => "C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe" -bootmode
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVCpl => RAVCpl64.exe
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TrayServer => C:\Program Files (x86)\MAGIX\Video_deluxe_17_Premium\TrayServer.exe
MSCONFIG\startupreg: uTorrent => "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B3089B53-A18E-4423-83E4-E2548BB4FB3A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2D904C0F-5692-4943-8F3C-308E83E4D84C}] => (Allow) LPort=2869
FirewallRules: [{E3F8EBB6-E140-4760-A57B-C762C512431F}] => (Allow) LPort=1900
FirewallRules: [{C13ECE6C-DA99-442A-8605-B5024E3F0A6E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{35E6B91E-A266-41D7-8B48-5FAA7474EE37}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{3230E683-D14B-4C9E-9DAE-D5BAA114D5A8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BAFA3D1E-3BB4-42AF-B20F-10494F59496A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A08C6421-CBFA-4102-9412-9B69F11C439E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2849588F-C80E-418B-B547-8BFE21093330}] => (Allow) LPort=443
FirewallRules: [{46661EA1-5DCE-4640-B86C-851D5B35D24C}] => (Allow) LPort=443
FirewallRules: [{8D0F4AE5-1103-4E6F-A7B5-B6D92B0DCCF8}] => (Allow) LPort=37674
FirewallRules: [{FE7E891E-A49F-48D4-A706-2F1E24BBA7E0}] => (Allow) LPort=37674
FirewallRules: [{A1F2BD87-36B1-4FFE-B8C5-B86E1307AC76}] => (Allow) LPort=37675
FirewallRules: [{7A5CF0EC-6C92-4905-B53B-A65FEFE14542}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{E6655D3D-E4B9-4C36-80DD-361861D06D1D}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{DD6DEC08-1F91-45B0-8627-CF66CDE67920}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{F9F8D5A2-0602-4D18-9FA4-25D22CB411F2}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{10C827B3-9E49-408E-8DBB-FCFC3E097254}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{46763EE7-65D0-486B-A95F-4ED62BEC9DAE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{0CC6DD64-524C-41CD-B9C6-037013484FAB}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{16C78BD6-573E-48FB-A5E7-149DC022CAC9}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{8BDE7445-4064-448C-90A8-C79DAEB81A81}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{A0DDD748-F67F-4E08-8702-9E204771CD52}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{B56AA11F-94C5-43AB-85DC-EC65A292A32D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{E2851692-182C-4D46-9399-1ED26334DBBE}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{558CE498-087D-4834-BCDA-AC92FE1B9A8D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{E05D69B4-5B46-46F9-BF6E-F90879B469C0}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{0D867BC3-352B-42B5-998F-914CA8358F47}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{FA588CB5-D82C-4283-9727-7E754618F4E5}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{7A085870-5072-4966-A9F2-9A53C59BAEF4}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{139682CD-AE8C-43C5-825D-8F7FFF6C1544}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{6482A75B-C655-436E-8CB8-714F8F49E583}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{3DDE1B71-821B-42EC-8D38-12FACFD5F0FA}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{509842BD-C49F-4ED4-9E23-40316B5D2505}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5032B6EC-EB39-48CC-A349-013A0269064E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E6327220-3954-4078-B800-D2002E6C8967}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B7341029-635E-4D5A-86FF-7B08B1AD2275}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E067F01F-214A-4A88-9465-C87D6CA5355A}] => (Allow) LPort=1542
FirewallRules: [{0672198B-A6C6-4866-BCBD-0F660326EF58}] => (Allow) LPort=1542
FirewallRules: [{F832F4C4-7E03-43DF-AADF-1F07BC0E99BB}] => (Allow) LPort=53
FirewallRules: [{D4ED452C-8340-411B-9919-1254187078C4}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{5F623167-EAF0-4CE2-A1A0-91ACAE68A30E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{50AB2368-7A48-4233-BC5B-A30007C01AA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A6F86BBB-AFAA-47B0-A1D9-FF8CCBD5843A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B3C1F393-6978-4258-9F48-EE735A4571DB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{78380C2C-D685-4316-84E3-E5828A5E00DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FC91A540-2416-4EDE-A070-A9A41A8A6571}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{889E6F14-57C7-4708-BCC7-FD61F4AAD7C5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{CF5ABD4F-11D6-46C2-A56B-FF14D105CB29}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{320DD975-38FF-403B-A3C7-11BD40E835EF}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{921C7B44-3BE2-4131-94BD-66DD3D5057E7}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{EF2D6E1F-8AFD-4095-B53F-3E0A739BD9BE}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{857A5521-2C35-4540-A2A9-31F8A3015D62}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{AD220482-DEE5-4658-B2D8-076937135A9D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [TCP Query User{268D900A-062B-45AF-9290-DA73D8A93F34}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [UDP Query User{A3ED1398-191F-444F-AAEB-7BDDBAF3D41B}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [{5DE3A298-10DF-48CA-8DF7-48975AE72916}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{B3B83EC8-9825-432B-BFF8-E401D2E7BD50}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{2CC8427D-0D11-4CEC-890A-4D78C51F68EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{7EEA9D61-1060-444E-8E51-46BE4D847A34}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [TCP Query User{33A59297-AAFD-47B7-8F7E-2E5B64EEB830}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{C8C65F90-6D28-4A9A-BCA6-3EE8B75528AF}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{53623AFE-2E23-45A7-BD98-AF3702E7193E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [UDP Query User{F8F088A7-9ECB-45FE-9F8D-023B649088B3}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [TCP Query User{6F272D99-A5BC-4EA5-A435-365C3396B27E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [UDP Query User{3898B6F0-D702-483F-8D81-EBAB50E1C10D}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [TCP Query User{CD49B4D6-6CA6-4EA7-8388-D4556D18D5F4}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [UDP Query User{F60A2571-7427-44A7-A6A1-861184CB2F75}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [TCP Query User{490A7CC4-C50A-4150-BEA4-7D74D376515F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{45F48BBB-7111-4818-8172-C2DB431C9287}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{308C6B17-DAA3-494C-B667-F580F309FD58}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{C477CCFA-35F3-49D5-B21E-3280270F9BA4}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{7C587571-A3EA-4D36-816B-00CC0E873E18}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{B0D33493-F397-4A7C-8DB1-168CE9BE2068}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{8D309D6F-3B1E-4F3C-9D8F-F9E3D755911E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{33D88020-980C-48F3-A984-DE4F2118B8CE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{CFAA433F-C550-476E-83B8-B4EEA81B2D9E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe
FirewallRules: [{A5812739-171F-4670-99BD-115B41973A72}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe
FirewallRules: [{A559722E-5EDF-4645-BFA7-80ABEC58E616}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe
FirewallRules: [{DF905607-22CE-4A99-B825-7E7AA930DC19}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [{F33ECC4C-2B38-43B8-B79B-EB196316A26E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{6400F51C-0AAB-44CE-BBBD-96F50F89D618}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{1A8CBDC6-3352-48DC-8F35-4751B55DC78F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F7CE9C11-4B36-4E7C-9478-6A9962CE73F5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B7CA082-31A9-4280-A4E0-9FA986E8EB39}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{86B1782C-D965-4E6A-9507-2218D5F8E002}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{01E68ACC-9405-4076-869D-1F8B12B6EE69}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{213C180E-0C7F-46A3-A1EF-FC3D6451726A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A9D2B053-42CC-446F-8497-ECA45ED6677E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{0067E024-6C09-4645-9FBB-28D7FC8F8AFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{B07D1D8D-507C-4853-879A-E5AB7C11D441}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1FAC999B-3895-4C49-BF04-C8A07BA31E6C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{817CFB99-FC3C-4B67-8C34-A4ED21FD2522}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [UDP Query User{F24096C2-395A-44C6-8735-0C086989479A}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [{A374E69E-E34B-4CA4-8AEF-CDCC5EED7531}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{570E5612-75E4-44E9-A29E-9BC79D5D6008}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{6C3FEF28-30B1-424A-A38D-19966FFBD843}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{72270E0E-7AA7-4C3E-906F-2370041855E5}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{60393738-78EF-4929-BA5B-164294E01C36}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{B171A631-B783-4E4D-999F-F452B98B3431}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{8AF5319D-70EA-4257-B8BA-E830F4F60818}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{D25A3A56-32C1-4C00-A044-15DD19D3CC70}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [TCP Query User{4DFB828C-533E-4E75-9591-FB6DE29BFAFC}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [UDP Query User{70915809-3C26-4448-B5C5-928E914444E8}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [TCP Query User{612A565C-0DAD-4BDE-B291-679E062E835C}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [UDP Query User{D066544D-E8EC-4AA3-8B5F-A0993A772D64}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [{91DE01F1-5D35-425D-A3A5-02B84BCEBBF8}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{834EA968-90AC-474C-A55F-7C2DFD793FCF}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{26A8DCE8-1F8E-4057-ADED-46063E29E46E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{61EAE32D-A30F-49CB-9A74-F987499D65B5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{8B54B150-2580-439A-94C9-EE29932615B1}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{140FB3D5-989F-44F7-A496-B4C3D88ADC5A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{D70E7A5C-C964-4E52-9F27-EFAC27D2BDE0}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{CE6B7F3C-4745-4135-B63F-C70AD81E5C1B}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{7E517574-BF1A-4F8A-A45B-57102F53C094}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{33EF6873-EF32-4378-8524-2593FB62D7B2}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{0AA28FA5-90DA-48FC-8176-F583B92551BE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{C167C2E4-E3D3-4BF8-A5DB-5EB666F19D5E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{7545ED54-35F4-4C9E-B411-97A081BBA2CA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{07BA8574-3EC9-4912-A3F8-A3D41B080007}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{942E330D-3678-40E4-9BF8-BA625830E639}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{A5B5245F-1EAE-4D36-BC01-98442D1AE5DA}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{708E1B13-703A-4450-9BE9-67950874C758}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{3FC0CBC2-70B1-4EF8-9906-D24CF2334EF4}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{D5F51D91-8A76-474E-9FC1-9103DE29D51E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{E5A3D1EF-2042-4A07-8B29-D88D38D96B0A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{898B97AB-7D6E-416C-B194-C0179BBF9F69}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{C7818B31-D93E-4C21-B661-039568AB34C5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{37666EE0-052A-43F4-B000-4626C71FE8EF}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{CFB49C33-DABC-4923-A619-01EB6361AADE}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{56C078AA-9E52-4DA5-AFB5-231C285325F1}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{0AF347F8-3417-480C-A523-359F337CB9E5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{14D7CAB3-ED49-473D-B758-74AD2D235F5B}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{241AA8F9-366F-49CA-A9D7-EE64E7E3208D}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{133AC2D7-1DCD-478B-BAFB-33CAB293E6CD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6675A05A-5F86-4BDC-B36E-21D47F3DA3CA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4568144A-F313-420D-9783-83FD94F1701D}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{64FCD208-E752-4E2F-A14B-0C8168611060}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{4503E5D3-48FB-491E-902D-6C52383B21C1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{EA131BF6-F6EA-439C-858B-52FB2C05859E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{3D1F4E66-B650-4B06-8C35-5D4EFB2F28F2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{B0A9CC4C-B368-4058-81C9-6C06E3E46309}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [TCP Query User{61839F24-6C8E-4390-9103-B4E00D392893}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{2F7C1461-B677-492E-982D-1E50C743CB8A}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{D50B9E70-35C6-4D68-B130-524BE2E7C832}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{92929856-8DD7-49E8-BCCE-FB341943C55A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [TCP Query User{AA4BCFBD-99F5-4F61-8DCB-6A475F69D846}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{2B5EF94F-3A91-4278-9CAE-7388545B9E9D}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{EA73ABF4-BE8B-43FC-9B45-965F793CB45B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{D6BCD7A3-6759-49ED-8D43-70B174B052F9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{9A811C76-3ECC-4556-B3C7-E0BD13CB043A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C9D33F34-8363-4FA7-8895-7A529AA32590}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{C82CF0EC-BA56-439E-A88E-380DEC6F84D8}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CFD504F0-E120-496D-B6EB-0BA17BBB979B}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [{F56AA18C-8E42-4AD6-ACF4-141A3A1779B8}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{75D8EF84-478B-4BD0-8B79-A2250DFADF5B}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [TCP Query User{35C610BD-4772-4FC3-BB1D-5BE439559B28}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{30B9A0ED-72B4-4957-92DF-1EC959D2913D}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{714CBFCA-8A91-42AF-A7F1-72AC0E143F03}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CDBF40EC-26B7-4B28-A231-D5A68F106425}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [{A930F9BC-EE63-4D3D-9A31-7F5AF164B1F3}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{769D782C-743E-4466-8210-C39597B86982}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{0AC09FDD-F6E9-48B7-B345-55635E6ED446}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{615EFD5A-3553-4428-9F6E-534433654BE6}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{9DA4E55A-4B01-42FD-BBEE-D24F524D2BAB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{2BEB840B-1B88-40DB-BB64-6AF73A8F2A14}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{C4374BC2-E39C-4EF1-AABC-AF0CD94DE1EB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{6C58B778-C50F-4C03-9020-4153EEDD0E40}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{3E19199C-A6CE-493A-A5F6-93CFB382ED56}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8CB7949C-B8BC-4F23-A915-1C049BA634C3}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6DC8547C-7C40-4336-9747-0C8362ACEA88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{C95AF62A-F728-473F-AB7D-292292C32FAE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [TCP Query User{F96D0567-41A0-427C-A121-0E7EBC92888F}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [UDP Query User{FE16D034-8D76-4283-A933-878885CFD05E}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{7D4F5D8B-3F24-42ED-9A37-542017DCDE84}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{35B082F1-FAFC-42C2-9DB5-DC3FD961672D}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{935C2433-8086-4728-8930-9704C543300D}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{14A7A8D0-0BD1-4665-A424-4CFA3288B397}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [TCP Query User{3AC9BFE3-6A72-46C7-B079-20B4C8BE9A76}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{1CBCA031-1D3D-45F0-9844-142EF4CBE220}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{6139767E-D08E-4345-A3AF-BEC5206405EC}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{7E5AD342-B1A2-437C-BB0F-E2FEAFB15619}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{4A91C949-A6E3-4FB3-8E65-9429F220F0ED}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{E279F273-BCF3-4363-8677-0BAAD1E58BAF}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{04818325-9BA0-4230-99BF-704A03D5A91C}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{ACF1BE82-F196-4FF4-8A94-17C816FCA113}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{AAEAF55C-F675-4F1C-9B78-7360FFF10B6E}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{29AF9C9A-4025-4267-83F7-1836DE46F489}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{2B80A7F5-9D0C-4684-BD0D-A16483101C5A}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{1098A087-9F4A-4A7C-807C-309DCB1400C0}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{DDF28D39-8364-4F49-9B30-DEE4C01D7BE7}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{4C767AFA-D976-4A2E-B34B-CAA85B865EC9}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{600BD4D4-7789-4971-808A-9177412E7066}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{4587B165-D351-40AF-8A29-207EFBBB93A9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C0FD4A12-2BC8-48C7-A292-166D1E218DBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BD5F8C6B-D73A-4E00-A7E4-59ACE92C4270}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [UDP Query User{F3018188-720E-49C7-BF48-6634E366FFBA}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [{105654C7-8991-4FBE-8007-F3D1FFE252DA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{1FE79A1B-A207-4B01-9CFC-6DB75229337F}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{4727EFDF-9EFC-4B00-B244-FF5804B0BBEB}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{18DB1C7D-E0E6-43E7-98B5-0FFC6BCDF9FA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [TCP Query User{FE2DB56E-A1A4-4F7C-B46C-3FD52FCE9C8B}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9933450E-9580-4658-9BD4-3B45609020D1}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{562B43D0-3D99-4A53-BD9F-E3C2ADB787AA}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{354359F5-607D-44D5-88B9-CAFB845DB3DB}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{8978604F-5CCA-4731-B39F-085C58CD20BE}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{CBD07C30-193D-4F81-A499-F296AD7ECC7E}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{BC1D5345-4089-4CB4-993A-47FFA6A7327B}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{18A2105B-F91A-4A04-9E1C-27D44A702B6E}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{EF8AF549-382B-4390-BD4E-231F42EAAC8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/20/2015 08:08:08 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/17/2015 08:24:48 PM) (Source: MsiInstaller) (EventID: 1024) (User: MATRIX)
Description: Product: Adobe Reader XI - Deutsch - Update '{AC76BA86-7AD7-0000-2550-7A8C40011013}' could not be installed. Error code 1625. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (11/15/2015 07:26:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xae0
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/14/2015 02:47:33 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/13/2015 05:28:52 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/13/2015 05:28:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x898
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/11/2015 03:48:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xb78
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/10/2015 01:18:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xa8c
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/09/2015 05:21:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xad4
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/06/2015 01:22:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x8f4
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
System errors:
=============
Error: (11/23/2015 10:43:00 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Aspi32
Error: (11/23/2015 10:42:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
Error: (11/23/2015 03:03:46 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The PS3 Media Server service terminated with service-specific error %%143.
Error: (11/23/2015 00:43:21 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/23/2015 00:43:21 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/23/2015 00:38:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/23/2015 00:38:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/22/2015 03:32:50 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
Error: (11/22/2015 03:32:00 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Aspi32
Error: (11/22/2015 01:22:14 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The PS3 Media Server service terminated with service-specific error %%143.
CodeIntegrity:
===================================
Date: 2011-02-13 18:09:10.937
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 17:34:39.964
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 17:00:03.729
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 14:28:49.982
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD Phenom(tm) II X6 1090T Processor
Percentage of memory in use: 58%
Total physical RAM: 8189.55 MB
Available physical RAM: 3416.83 MB
Total Virtual: 16377.31 MB
Available Virtual: 10547.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:596.07 GB) (Free:25.16 GB) NTFS
Drive d: (MOVIES) (CDROM) (Total:1.89 GB) (Free:0 GB) UDF
Drive j: (2TerraDrive) (Fixed) (Total:1863.01 GB) (Free:1509.1 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 3AE3C223)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 11821181)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
|
|
24.11.2015, 03:50
| #3 |
| | .scr Datei ausversehen heruntergeladen. TDSSKiller.txt Teil 1:
__________________Code:
ATTFilter 02:30:41.0373 0x234c TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
02:30:46.0118 0x234c ============================================================
02:30:46.0118 0x234c Current date / time: 2015/11/24 02:30:46.0118
02:30:46.0118 0x234c SystemInfo:
02:30:46.0118 0x234c
02:30:46.0118 0x234c OS Version: 6.1.7601 ServicePack: 1.0
02:30:46.0118 0x234c Product type: Workstation
02:30:46.0118 0x234c ComputerName: MATRIX
02:30:46.0118 0x234c UserName: Nerdy By Nerds
02:30:46.0118 0x234c Windows directory: C:\Windows
02:30:46.0118 0x234c System windows directory: C:\Windows
02:30:46.0118 0x234c Running under WOW64
02:30:46.0118 0x234c Processor architecture: Intel x64
02:30:46.0118 0x234c Number of processors: 6
02:30:46.0118 0x234c Page size: 0x1000
02:30:46.0118 0x234c Boot type: Normal boot
02:30:46.0118 0x234c ============================================================
02:30:48.0045 0x234c KLMD registered as C:\Windows\system32\drivers\47763919.sys
02:30:48.0316 0x234c System UUID: {AFAD6365-08C2-010F-2D4A-5B2154B481AD}
02:30:48.0690 0x234c Drive \Device\Harddisk1\DR1 - Size: 0x950AF4DE00 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
02:30:48.0690 0x234c Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
02:30:48.0694 0x234c ============================================================
02:30:48.0694 0x234c \Device\Harddisk1\DR1:
02:30:48.0694 0x234c MBR partitions:
02:30:48.0694 0x234c \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
02:30:48.0694 0x234c \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4A824800
02:30:48.0694 0x234c \Device\Harddisk0\DR0:
02:30:48.0694 0x234c MBR partitions:
02:30:48.0694 0x234c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
02:30:48.0694 0x234c ============================================================
02:30:48.0720 0x234c C: <-> \Device\Harddisk1\DR1\Partition2
02:30:48.0740 0x234c J: <-> \Device\Harddisk0\DR0\Partition1
02:30:48.0740 0x234c ============================================================
02:30:48.0740 0x234c Initialize success
02:30:48.0740 0x234c ============================================================
02:31:40.0184 0x2098 ============================================================
02:31:40.0184 0x2098 Scan started
02:31:40.0184 0x2098 Mode: Manual; SigCheck; TDLFS;
02:31:40.0184 0x2098 ============================================================
02:31:40.0184 0x2098 KSN ping started
02:31:40.0422 0x2098 KSN ping finished: true
02:31:42.0161 0x2098 ================ Scan system memory ========================
02:31:42.0161 0x2098 System memory - ok
02:31:42.0161 0x2098 ================ Scan services =============================
02:31:42.0300 0x2098 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
02:31:42.0357 0x2098 1394ohci - ok
02:31:42.0466 0x2098 [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
02:31:42.0480 0x2098 ACDaemon - ok
02:31:42.0532 0x2098 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
02:31:42.0557 0x2098 ACPI - ok
02:31:42.0589 0x2098 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
02:31:42.0650 0x2098 AcpiPmi - ok
02:31:42.0738 0x2098 [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
02:31:42.0746 0x2098 AdobeARMservice - ok
02:31:42.0877 0x2098 [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:31:42.0890 0x2098 AdobeFlashPlayerUpdateSvc - ok
02:31:42.0935 0x2098 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
02:31:42.0961 0x2098 adp94xx - ok
02:31:42.0983 0x2098 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
02:31:42.0998 0x2098 adpahci - ok
02:31:43.0009 0x2098 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
02:31:43.0021 0x2098 adpu320 - ok
02:31:43.0060 0x2098 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:31:43.0098 0x2098 AeLookupSvc - ok
02:31:43.0146 0x2098 [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc C:\Windows\syswow64\drivers\Afc.sys
02:31:43.0153 0x2098 Afc - ok
02:31:43.0222 0x2098 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
02:31:43.0291 0x2098 AFD - ok
02:31:43.0330 0x2098 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
02:31:43.0339 0x2098 agp440 - ok
02:31:43.0359 0x2098 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
02:31:43.0412 0x2098 ALG - ok
02:31:43.0452 0x2098 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
02:31:43.0460 0x2098 aliide - ok
02:31:43.0491 0x2098 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
02:31:43.0499 0x2098 amdide - ok
02:31:43.0520 0x2098 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
02:31:43.0558 0x2098 AmdK8 - ok
02:31:43.0574 0x2098 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
02:31:43.0598 0x2098 AmdPPM - ok
02:31:43.0645 0x2098 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
02:31:43.0655 0x2098 amdsata - ok
02:31:43.0688 0x2098 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
02:31:43.0700 0x2098 amdsbs - ok
02:31:43.0741 0x2098 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
02:31:43.0749 0x2098 amdxata - ok
02:31:43.0834 0x2098 [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID C:\Windows\system32\drivers\appid.sys
02:31:43.0930 0x2098 AppID - ok
02:31:43.0985 0x2098 [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
02:31:44.0017 0x2098 AppIDSvc - ok
02:31:44.0052 0x2098 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
02:31:44.0100 0x2098 Appinfo - ok
02:31:44.0201 0x2098 [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:31:44.0209 0x2098 Apple Mobile Device Service - ok
02:31:44.0255 0x2098 [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
02:31:44.0261 0x2098 AppleCharger - ok
02:31:44.0296 0x2098 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
02:31:44.0303 0x2098 AppleChargerSrv - ok
02:31:44.0336 0x2098 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
02:31:44.0385 0x2098 AppMgmt - ok
02:31:44.0406 0x2098 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
02:31:44.0416 0x2098 arc - ok
02:31:44.0457 0x2098 [ 29E7252FA743B15BCE1A2245C5643A02, 7008FA6004AB9E4FBC410EAD8929F97056386DD65045F05059ADF436FB655FAD ] archlp C:\Windows\syswow64\drivers\archlp.sys
02:31:44.0467 0x2098 archlp - ok
02:31:44.0488 0x2098 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
02:31:44.0497 0x2098 arcsas - ok
02:31:44.0535 0x2098 Aspi32 - ok
02:31:44.0623 0x2098 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
02:31:44.0634 0x2098 aspnet_state - ok
02:31:44.0645 0x2098 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:31:44.0749 0x2098 AsyncMac - ok
02:31:44.0787 0x2098 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
02:31:44.0794 0x2098 atapi - ok
02:31:44.0850 0x2098 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:31:44.0925 0x2098 AudioEndpointBuilder - ok
02:31:44.0942 0x2098 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
02:31:44.0962 0x2098 AudioSrv - ok
02:31:45.0004 0x2098 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
02:31:45.0094 0x2098 AxInstSV - ok
02:31:45.0127 0x2098 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
02:31:45.0186 0x2098 b06bdrv - ok
02:31:45.0209 0x2098 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
02:31:45.0239 0x2098 b57nd60a - ok
02:31:45.0277 0x2098 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
02:31:45.0316 0x2098 BDESVC - ok
02:31:45.0339 0x2098 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
02:31:45.0392 0x2098 Beep - ok
02:31:45.0445 0x2098 [ C895B9AA6EE9DBDE5D98684425A14647, FB9C906D3EAEEC6F46B1862D2348B1FB501C49D78F4CC4A7DE060BAF413EB782 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
02:31:45.0467 0x2098 BEService - detected UnsignedFile.Multi.Generic ( 1 )
02:31:45.0659 0x2098 BEService ( UnsignedFile.Multi.Generic ) - warning
02:31:45.0941 0x2098 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
02:31:46.0001 0x2098 BFE - ok
02:31:46.0058 0x2098 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
02:31:46.0222 0x2098 BITS - ok
02:31:46.0231 0x2098 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
02:31:46.0255 0x2098 blbdrive - ok
02:31:46.0315 0x2098 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:31:46.0347 0x2098 Bonjour Service - ok
02:31:46.0384 0x2098 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:31:46.0428 0x2098 bowser - ok
02:31:46.0456 0x2098 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
02:31:46.0550 0x2098 BrFiltLo - ok
02:31:46.0565 0x2098 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
02:31:46.0602 0x2098 BrFiltUp - ok
02:31:46.0641 0x2098 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
02:31:46.0679 0x2098 Browser - ok
02:31:46.0704 0x2098 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
02:31:46.0752 0x2098 Brserid - ok
02:31:46.0771 0x2098 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
02:31:46.0823 0x2098 BrSerWdm - ok
02:31:46.0845 0x2098 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
02:31:46.0879 0x2098 BrUsbMdm - ok
02:31:46.0892 0x2098 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
02:31:46.0921 0x2098 BrUsbSer - ok
02:31:46.0943 0x2098 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
02:31:46.0964 0x2098 BTHMODEM - ok
02:31:46.0990 0x2098 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
02:31:47.0027 0x2098 bthserv - ok
02:31:47.0185 0x2098 [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
02:31:47.0238 0x2098 c2cautoupdatesvc - ok
02:31:47.0311 0x2098 [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
02:31:47.0375 0x2098 c2cpnrsvc - ok
02:31:47.0396 0x2098 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:31:47.0433 0x2098 cdfs - ok
02:31:47.0491 0x2098 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
02:31:47.0529 0x2098 cdrom - ok
02:31:47.0577 0x2098 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
02:31:47.0613 0x2098 CertPropSvc - ok
02:31:47.0631 0x2098 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
02:31:47.0666 0x2098 circlass - ok
02:31:47.0723 0x2098 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
02:31:47.0748 0x2098 CLFS - ok
02:31:47.0808 0x2098 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:31:47.0817 0x2098 clr_optimization_v2.0.50727_32 - ok
02:31:47.0873 0x2098 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
02:31:47.0882 0x2098 clr_optimization_v2.0.50727_64 - ok
02:31:47.0961 0x2098 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:31:47.0972 0x2098 clr_optimization_v4.0.30319_32 - ok
02:31:48.0011 0x2098 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
02:31:48.0023 0x2098 clr_optimization_v4.0.30319_64 - ok
02:31:48.0047 0x2098 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
02:31:48.0082 0x2098 CmBatt - ok
02:31:48.0113 0x2098 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
02:31:48.0120 0x2098 cmdide - ok
02:31:48.0183 0x2098 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
02:31:48.0213 0x2098 CNG - ok
02:31:48.0224 0x2098 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
02:31:48.0232 0x2098 Compbatt - ok
02:31:48.0285 0x2098 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
02:31:48.0317 0x2098 CompositeBus - ok
02:31:48.0330 0x2098 COMSysApp - ok
02:31:48.0343 0x2098 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
02:31:48.0351 0x2098 crcdisk - ok
02:31:48.0396 0x2098 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:31:48.0429 0x2098 CryptSvc - ok
02:31:48.0482 0x2098 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
02:31:48.0537 0x2098 CSC - ok
02:31:48.0587 0x2098 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
02:31:48.0649 0x2098 CscService - ok
02:31:48.0698 0x2098 [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
02:31:48.0706 0x2098 dc3d - ok
02:31:48.0756 0x2098 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
02:31:48.0807 0x2098 DcomLaunch - ok
02:31:48.0862 0x2098 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
02:31:48.0934 0x2098 defragsvc - ok
02:31:49.0322 0x2098 [ 541C3C58BAB622549E8F96E7E88F71AA, 79D6710673B4F205B3918A14DF58B0933E2A631D5FF8C10D06C91ABD2D50BC7B ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
02:31:49.0432 0x2098 DevoloNetworkService - ok
02:31:49.0478 0x2098 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
02:31:49.0515 0x2098 DfsC - ok
02:31:49.0578 0x2098 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
02:31:49.0588 0x2098 dg_ssudbus - ok
02:31:49.0641 0x2098 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
02:31:49.0712 0x2098 Dhcp - ok
02:31:49.0843 0x2098 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
02:31:49.0934 0x2098 DiagTrack - ok
02:31:49.0957 0x2098 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
02:31:50.0003 0x2098 discache - ok
02:31:50.0041 0x2098 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
02:31:50.0051 0x2098 Disk - ok
02:31:50.0088 0x2098 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:31:50.0152 0x2098 Dnscache - ok
02:31:50.0204 0x2098 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
02:31:50.0243 0x2098 dot3svc - ok
02:31:50.0281 0x2098 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
02:31:50.0318 0x2098 DPS - ok
02:31:50.0364 0x2098 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:31:50.0399 0x2098 drmkaud - ok
02:31:50.0450 0x2098 [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
02:31:50.0461 0x2098 dtsoftbus01 - ok
02:31:50.0519 0x2098 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:31:50.0554 0x2098 DXGKrnl - ok
02:31:50.0578 0x2098 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
02:31:50.0617 0x2098 EapHost - ok
02:31:50.0718 0x2098 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
02:31:50.0861 0x2098 ebdrv - ok
02:31:50.0916 0x2098 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] EFS C:\Windows\System32\lsass.exe
02:31:50.0954 0x2098 EFS - ok
02:31:50.0993 0x2098 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
02:31:51.0054 0x2098 ehRecvr - ok
02:31:51.0075 0x2098 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
02:31:51.0120 0x2098 ehSched - ok
02:31:51.0161 0x2098 [ 2E6CE12D16B40DD96B4EBAFFAE79742D, E279713284279459671AEE7B86120BFA4C285A1ED721CFAEE2D6B8579518EA49 ] ElgatoGC656Y C:\Windows\system32\Drivers\ElgatoGC656.sys
02:31:51.0169 0x2098 ElgatoGC656Y - ok
02:31:51.0220 0x2098 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
02:31:51.0245 0x2098 elxstor - ok
02:31:51.0285 0x2098 [ 12C061D9F9621BE916D58191872EC281, 5285C5AF9ECDAF9CBB7A5D0FC97D882EC06778CF5688E86890A617E2670C413B ] ENTECH64 C:\Windows\system32\DRIVERS\ENTECH64.sys
02:31:51.0293 0x2098 ENTECH64 - ok
02:31:51.0332 0x2098 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
02:31:51.0353 0x2098 ErrDev - ok
02:31:51.0442 0x2098 [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
02:31:51.0449 0x2098 ES lite Service - ok
02:31:51.0502 0x2098 [ 84486624268E078255BC7AA47F0960BC, EC2540698B974572F0AC4A93D57C63295BAF66BF50F7416B9DFF5DE790EBDBE7 ] etdrv C:\Windows\etdrv.sys
02:31:51.0508 0x2098 etdrv - ok
02:31:51.0548 0x2098 [ 6C17A702399B0205AB7836C2B45CD806, 54BACC652D905A31959031DE1F6116187D6E7961D05DBC2211904CB7EE7E9CFC ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
02:31:51.0580 0x2098 EtronHub3 - ok
02:31:51.0618 0x2098 [ B5348A55CC9541FFA930E30BB0CC8EF6, D20DC1B5BD6DB6AF621611ADE9CDA413587C58515B84814423339AC7BD89F775 ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
02:31:51.0648 0x2098 EtronXHCI - ok
02:31:51.0693 0x2098 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
02:31:51.0746 0x2098 EventSystem - ok
02:31:51.0791 0x2098 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
02:31:51.0831 0x2098 exfat - ok
02:31:51.0861 0x2098 Fabs - ok
02:31:51.0892 0x2098 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:31:51.0936 0x2098 fastfat - ok
02:31:52.0005 0x2098 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
02:31:52.0061 0x2098 Fax - ok
02:31:52.0066 0x2098 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
02:31:52.0091 0x2098 fdc - ok
02:31:52.0116 0x2098 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
02:31:52.0167 0x2098 fdPHost - ok
02:31:52.0182 0x2098 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
02:31:52.0224 0x2098 FDResPub - ok
02:31:52.0229 0x2098 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:31:52.0237 0x2098 FileInfo - ok
02:31:52.0249 0x2098 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:31:52.0290 0x2098 Filetrace - ok
02:31:52.0387 0x2098 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC, 159EAA1893D871C309A063829CB3BC51A019FBCA1E07530B5CA1A382B2CCAF61 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
02:31:52.0499 0x2098 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic ( 1 )
02:31:52.0611 0x2098 Detect skipped due to KSN trusted
02:31:52.0612 0x2098 FirebirdServerMAGIXInstance - ok
02:31:52.0628 0x2098 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
02:31:52.0663 0x2098 flpydisk - ok
02:31:52.0702 0x2098 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:31:52.0718 0x2098 FltMgr - ok
02:31:52.0787 0x2098 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
02:31:52.0861 0x2098 FontCache - ok
02:31:52.0924 0x2098 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:31:52.0932 0x2098 FontCache3.0.0.0 - ok
02:31:52.0946 0x2098 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
02:31:52.0955 0x2098 FsDepends - ok
02:31:52.0989 0x2098 [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
02:31:52.0996 0x2098 fssfltr - ok
02:31:53.0088 0x2098 [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
02:31:53.0141 0x2098 fsssvc - ok
02:31:53.0179 0x2098 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:31:53.0187 0x2098 Fs_Rec - ok
02:31:53.0232 0x2098 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
02:31:53.0246 0x2098 fvevol - ok
02:31:53.0268 0x2098 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
02:31:53.0278 0x2098 gagp30kx - ok
02:31:53.0330 0x2098 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
02:31:53.0336 0x2098 gdrv - ok
02:31:53.0382 0x2098 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:31:53.0388 0x2098 GEARAspiWDM - ok
02:31:53.0443 0x2098 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
02:31:53.0501 0x2098 gpsvc - ok
02:31:53.0588 0x2098 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:31:53.0597 0x2098 gupdate - ok
02:31:53.0630 0x2098 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:31:53.0638 0x2098 gupdatem - ok
02:31:53.0686 0x2098 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
02:31:53.0693 0x2098 GVTDrv64 - ok
02:31:53.0707 0x2098 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
02:31:53.0738 0x2098 hcw85cir - ok
02:31:53.0776 0x2098 [ 8D7F985CE023640B8D24EAC045D7BABE, 8B3A2CBDA0D48D74519CB3B5928F77D65730D38E50D59995F2167C741F42FEC0 ] hcwhdpvr C:\Windows\system32\DRIVERS\hcwhdpvr.sys
02:31:53.0822 0x2098 hcwhdpvr - ok
02:31:53.0874 0x2098 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:31:53.0915 0x2098 HdAudAddService - ok
02:31:53.0963 0x2098 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
02:31:53.0987 0x2098 HDAudBus - ok
02:31:54.0002 0x2098 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
02:31:54.0018 0x2098 HidBatt - ok
02:31:54.0024 0x2098 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
02:31:54.0049 0x2098 HidBth - ok
02:31:54.0053 0x2098 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
02:31:54.0064 0x2098 HidIr - ok
02:31:54.0094 0x2098 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
02:31:54.0134 0x2098 hidserv - ok
02:31:54.0180 0x2098 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
02:31:54.0208 0x2098 HidUsb - ok
02:31:54.0254 0x2098 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:31:54.0329 0x2098 hkmsvc - ok
02:31:54.0378 0x2098 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:31:54.0448 0x2098 HomeGroupListener - ok
02:31:54.0491 0x2098 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:31:54.0515 0x2098 HomeGroupProvider - ok
02:31:54.0546 0x2098 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
02:31:54.0556 0x2098 HpSAMD - ok
02:31:54.0614 0x2098 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:31:54.0674 0x2098 HTTP - ok
02:31:54.0720 0x2098 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
02:31:54.0727 0x2098 hwpolicy - ok
02:31:54.0765 0x2098 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
02:31:54.0775 0x2098 i8042prt - ok
02:31:54.0823 0x2098 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
02:31:54.0848 0x2098 iaStorV - ok
02:31:54.0963 0x2098 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
02:31:54.0987 0x2098 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
02:31:55.0090 0x2098 Detect skipped due to KSN trusted
02:31:55.0090 0x2098 IDriverT - ok
02:31:55.0159 0x2098 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
02:31:55.0195 0x2098 idsvc - ok
02:31:55.0218 0x2098 IEEtwCollectorService - ok
02:31:55.0241 0x2098 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
02:31:55.0249 0x2098 iirsp - ok
02:31:55.0321 0x2098 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
02:31:55.0369 0x2098 IKEEXT - ok
02:31:55.0507 0x2098 [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
02:31:55.0627 0x2098 IntcAzAudAddService - ok
02:31:55.0668 0x2098 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
02:31:55.0676 0x2098 intelide - ok
02:31:55.0703 0x2098 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
02:31:55.0712 0x2098 intelppm - ok
02:31:55.0735 0x2098 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
02:31:55.0780 0x2098 IPBusEnum - ok
02:31:55.0819 0x2098 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:31:55.0854 0x2098 IpFilterDriver - ok
02:31:55.0903 0x2098 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
02:31:55.0951 0x2098 iphlpsvc - ok
02:31:55.0988 0x2098 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
02:31:56.0005 0x2098 IPMIDRV - ok
02:31:56.0022 0x2098 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
02:31:56.0062 0x2098 IPNAT - ok
02:31:56.0131 0x2098 [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
02:31:56.0155 0x2098 iPod Service - ok
02:31:56.0172 0x2098 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:31:56.0236 0x2098 IRENUM - ok
02:31:56.0267 0x2098 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
02:31:56.0275 0x2098 isapnp - ok
02:31:56.0318 0x2098 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
02:31:56.0334 0x2098 iScsiPrt - ok
02:31:56.0372 0x2098 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
02:31:56.0380 0x2098 kbdclass - ok
02:31:56.0430 0x2098 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
02:31:56.0449 0x2098 kbdhid - ok
02:31:56.0474 0x2098 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] KeyIso C:\Windows\system32\lsass.exe
02:31:56.0482 0x2098 KeyIso - ok
02:31:56.0519 0x2098 [ A405647429DE231CD954D93F792CFBA2, EDE6095A20FE10EB26B3018457A44807A120508E6C514F2EAC12F5BA1F74841E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:31:56.0529 0x2098 KSecDD - ok
02:31:56.0568 0x2098 [ E4DC0909B5EACB5BF50F6252095BCFF2, 18779648B7FD9D3DFFD8F314E2197962DF98884CC9F025BC5D884984C1C0759D ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
02:31:56.0578 0x2098 KSecPkg - ok
02:31:56.0589 0x2098 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
02:31:56.0630 0x2098 ksthunk - ok
02:31:56.0670 0x2098 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
02:31:56.0711 0x2098 KtmRm - ok
02:31:56.0749 0x2098 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
02:31:56.0806 0x2098 LanmanServer - ok
02:31:56.0841 0x2098 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:31:56.0898 0x2098 LanmanWorkstation - ok
02:31:56.0958 0x2098 [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
02:31:56.0964 0x2098 LGBusEnum - ok
02:31:57.0022 0x2098 [ F7205E939F50B1C8D16F895916BE6756, 914326BAF54691AE880F6A3817B277F027F32AD7EF507A83F9A60DCA02901EDA ] LGSHidFilt C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
02:31:57.0030 0x2098 LGSHidFilt - ok
02:31:57.0071 0x2098 [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
02:31:57.0077 0x2098 LGVirHid - ok
02:31:57.0139 0x2098 [ C7D21310EA0A644AA6394DE1E46E3D31, 597F27A2696F945FD6388CA62D5EE98E44694F477F57EF8A68C2151B2276E838 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
02:31:57.0148 0x2098 libusb0 - ok
02:31:57.0191 0x2098 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:31:57.0249 0x2098 lltdio - ok
02:31:57.0281 0x2098 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:31:57.0338 0x2098 lltdsvc - ok
02:31:57.0355 0x2098 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
02:31:57.0434 0x2098 lmhosts - ok
02:31:57.0490 0x2098 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
02:31:57.0500 0x2098 LSI_FC - ok
02:31:57.0505 0x2098 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
02:31:57.0515 0x2098 LSI_SAS - ok
02:31:57.0524 0x2098 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
02:31:57.0534 0x2098 LSI_SAS2 - ok
02:31:57.0539 0x2098 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
02:31:57.0549 0x2098 LSI_SCSI - ok
02:31:57.0565 0x2098 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
02:31:57.0606 0x2098 luafv - ok
02:31:57.0634 0x2098 [ 4A503882318BB2F59218D401614E6AF6, 678FDE29EAE20353E780F53CFB9E79EA8B43E1E8BAC77890C178918DC5CCBA0E ] lvpepf64 C:\Windows\system32\DRIVERS\lv302a64.sys
02:31:57.0640 0x2098 lvpepf64 - ok
02:31:57.0677 0x2098 [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
02:31:57.0684 0x2098 LVPr2M64 - ok
02:31:57.0700 0x2098 [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
02:31:57.0706 0x2098 LVPr2Mon - ok
02:31:57.0755 0x2098 [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
02:31:57.0765 0x2098 LVPrcS64 - ok
02:31:57.0799 0x2098 [ 125AE13C293889001B8456CF3EB04A40, EB4B7135691935A9AC515099ED8C2767BC02308068AB9BEB2869B6E841268848 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
02:31:57.0822 0x2098 LVRS64 - ok
02:31:57.0846 0x2098 [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
02:31:57.0853 0x2098 LVUSBS64 - ok
02:31:58.0023 0x2098 [ 644E919936A8017B5F205E7FE7EDD19F, AE0BE09DF7192B2E8504DA8D65928C59C62635E0C8D08C6A4EB2A15D512E3E52 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
02:31:58.0174 0x2098 LVUVC64 - ok
02:31:58.0223 0x2098 [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
02:31:58.0256 0x2098 ManyCam - ok
02:31:58.0291 0x2098 [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
02:31:58.0315 0x2098 mcaudrv_simple - ok
02:31:58.0420 0x2098 [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
02:31:58.0433 0x2098 McComponentHostService - ok
02:31:58.0469 0x2098 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
02:31:58.0480 0x2098 Mcx2Svc - ok
02:31:58.0492 0x2098 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
02:31:58.0500 0x2098 megasas - ok
02:31:58.0526 0x2098 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
02:31:58.0550 0x2098 MegaSR - ok
02:31:58.0621 0x2098 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
02:31:58.0649 0x2098 Microsoft Office Groove Audit Service - ok
02:31:58.0681 0x2098 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
02:31:58.0714 0x2098 MMCSS - ok
02:31:58.0726 0x2098 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
02:31:58.0762 0x2098 Modem - ok
02:31:58.0784 0x2098 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
02:31:58.0803 0x2098 monitor - ok
02:31:58.0823 0x2098 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
02:31:58.0832 0x2098 mouclass - ok
02:31:58.0863 0x2098 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
02:31:58.0883 0x2098 mouhid - ok
02:31:58.0935 0x2098 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
02:31:58.0944 0x2098 mountmgr - ok
02:31:59.0014 0x2098 [ 6215DA3AD492CFBEBEE2ADBED0A6CC22, 07B290B58EF722825D50AF97E10B7098A2118B3F335E1FFF8F9E5E9AF7A0A6CE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
02:31:59.0025 0x2098 MozillaMaintenance - ok
02:31:59.0067 0x2098 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
02:31:59.0078 0x2098 mpio - ok
02:31:59.0091 0x2098 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:31:59.0128 0x2098 mpsdrv - ok
02:31:59.0185 0x2098 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
02:31:59.0241 0x2098 MpsSvc - ok
02:31:59.0283 0x2098 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:31:59.0323 0x2098 MRxDAV - ok
02:31:59.0378 0x2098 [ 43E1F4B0EFDC244D2A83995CCD7846F7, B8FB3CB6C736E20399AF3164197B14E977DDEC8FD164564501A328A8A3A30267 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:31:59.0496 0x2098 mrxsmb - ok
02:31:59.0581 0x2098 [ 62CEA59FF56B66154E08BD51D87392C2, 5DC63583E417659139FACD2365C2F8F3C9867E331F7374BD4F6C6E2386B5F746 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:31:59.0619 0x2098 mrxsmb10 - ok
02:31:59.0643 0x2098 [ 7D65B5E9573A26C204AA547457DBF544, CE88A733D031DEDBA6ADADB7D9911B3D151A2DDB566A65E0C9E1F07B1A4364AF ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:31:59.0675 0x2098 mrxsmb20 - ok
02:31:59.0709 0x2098 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
02:31:59.0717 0x2098 msahci - ok
02:31:59.0729 0x2098 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
02:31:59.0739 0x2098 msdsm - ok
02:31:59.0759 0x2098 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
02:31:59.0780 0x2098 MSDTC - ok
02:31:59.0812 0x2098 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:31:59.0849 0x2098 Msfs - ok
02:31:59.0875 0x2098 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
02:31:59.0909 0x2098 mshidkmdf - ok
02:31:59.0942 0x2098 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
02:31:59.0950 0x2098 msisadrv - ok
02:31:59.0976 0x2098 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:32:00.0036 0x2098 MSiSCSI - ok
02:32:00.0040 0x2098 msiserver - ok
02:32:00.0066 0x2098 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:32:00.0112 0x2098 MSKSSRV - ok
02:32:00.0125 0x2098 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:32:00.0164 0x2098 MSPCLOCK - ok
02:32:00.0180 0x2098 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:32:00.0213 0x2098 MSPQM - ok
02:32:00.0257 0x2098 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:32:00.0282 0x2098 MsRPC - ok
02:32:00.0291 0x2098 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
02:32:00.0299 0x2098 mssmbios - ok
02:32:00.0303 0x2098 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:32:00.0341 0x2098 MSTEE - ok
02:32:00.0358 0x2098 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
02:32:00.0366 0x2098 MTConfig - ok
02:32:00.0378 0x2098 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
02:32:00.0387 0x2098 Mup - ok
02:32:00.0434 0x2098 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
02:32:00.0486 0x2098 napagent - ok
02:32:00.0528 0x2098 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:32:00.0556 0x2098 NativeWifiP - ok
02:32:00.0611 0x2098 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
02:32:00.0646 0x2098 NDIS - ok
02:32:00.0665 0x2098 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
02:32:00.0708 0x2098 NdisCap - ok
02:32:00.0733 0x2098 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:32:00.0765 0x2098 NdisTapi - ok
02:32:00.0806 0x2098 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:32:00.0845 0x2098 Ndisuio - ok
02:32:00.0888 0x2098 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:32:00.0915 0x2098 NdisWan - ok
02:32:00.0953 0x2098 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:32:00.0994 0x2098 NDProxy - ok
02:32:01.0055 0x2098 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
02:32:01.0064 0x2098 Netaapl - ok
02:32:01.0079 0x2098 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:32:01.0111 0x2098 NetBIOS - ok
02:32:01.0151 0x2098 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
02:32:01.0192 0x2098 NetBT - ok
02:32:01.0216 0x2098 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] Netlogon C:\Windows\system32\lsass.exe
02:32:01.0224 0x2098 Netlogon - ok
02:32:01.0254 0x2098 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
02:32:01.0306 0x2098 Netman - ok
02:32:01.0361 0x2098 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:01.0374 0x2098 NetMsmqActivator - ok
02:32:01.0403 0x2098 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:01.0414 0x2098 NetPipeActivator - ok
02:32:01.0441 0x2098 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
02:32:01.0505 0x2098 netprofm - ok
02:32:01.0561 0x2098 [ B72BB9496A126FCFC7FC5945DED9B411, FA5CC4E93761FB2B59B9B34C699B1486560BDB39280AB1125DE42DB7C4BE303A ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
02:32:01.0610 0x2098 netr28x - ok
02:32:01.0635 0x2098 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:01.0647 0x2098 NetTcpActivator - ok
02:32:01.0652 0x2098 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:01.0663 0x2098 NetTcpPortSharing - ok
02:32:01.0688 0x2098 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
02:32:01.0697 0x2098 nfrd960 - ok
02:32:01.0739 0x2098 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
02:32:01.0782 0x2098 NlaSvc - ok
02:32:01.0800 0x2098 nlsX86cc - ok
02:32:01.0813 0x2098 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:32:01.0838 0x2098 Npfs - ok
02:32:01.0924 0x2098 [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo C:\Windows\sysWOW64\drivers\npf_devolo.sys
02:32:01.0931 0x2098 NPF_devolo - ok
02:32:01.0952 0x2098 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
02:32:02.0003 0x2098 nsi - ok
02:32:02.0016 0x2098 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:32:02.0054 0x2098 nsiproxy - ok
02:32:02.0134 0x2098 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:32:02.0189 0x2098 Ntfs - ok
02:32:02.0203 0x2098 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
02:32:02.0239 0x2098 Null - ok
02:32:02.0627 0x2098 [ E71E299FF15390E585BACF2C18F55078, 7A51D989DA55349B1761839DEAFD593B6E6F88C433B132E7B027467E050FBA67 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
02:32:03.0015 0x2098 nvlddmkm - ok
02:32:03.0111 0x2098 [ C50CD479FD1BB886244E2663DFFBCF6A, CCFB60425E56A12C097EC05A9E5549B4F4A10379818ABC64945487C16F882E3D ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
02:32:03.0162 0x2098 NvNetworkService - ok
02:32:03.0202 0x2098 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:32:03.0213 0x2098 nvraid - ok
02:32:03.0232 0x2098 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:32:03.0243 0x2098 nvstor - ok
02:32:03.0346 0x2098 [ AD7A2F3AF147B2CF302EBF7C1E01E027, B8DAAE7FE4B13C9CA3F1DEE7C98F5CA49D4D1678C82C51D6801210838319BAE5 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
02:32:03.0353 0x2098 NvStreamKms - ok
02:32:03.0378 0x2098 NvStreamSvc - ok
02:32:03.0456 0x2098 [ 415695F5A54E91E869EEBFEA261361A6, 1829C15E07D902686171C8A66EB03040A037CAC1E00E24BF598030D9DA795CEC ] nvsvc C:\Windows\system32\nvvsvc.exe
02:32:03.0491 0x2098 nvsvc - ok
02:32:03.0513 0x2098 [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
02:32:03.0521 0x2098 nvvad_WaveExtensible - ok
02:32:03.0563 0x2098 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
02:32:03.0573 0x2098 nv_agp - ok
02:32:03.0650 0x2098 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
02:32:03.0673 0x2098 odserv - ok
02:32:03.0712 0x2098 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
02:32:03.0734 0x2098 ohci1394 - ok
02:32:03.0774 0x2098 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:32:03.0784 0x2098 ose - ok
02:32:03.0816 0x2098 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
02:32:03.0877 0x2098 p2pimsvc - ok
02:32:03.0912 0x2098 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
02:32:03.0951 0x2098 p2psvc - ok
02:32:04.0068 0x2098 [ F7BAC457D6AE2F7E18FA69C8180A7843, 19C1B162FD17A0D5441183C331BF3020D6EF00DAFFBF0464C317BA208BFD2B2A ] PaceLicenseDServices C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
02:32:04.0174 0x2098 PaceLicenseDServices - detected UnsignedFile.Multi.Generic ( 1 )
02:32:04.0252 0x2098 Detect skipped due to KSN trusted
02:32:04.0253 0x2098 PaceLicenseDServices - ok
|
|
24.11.2015, 03:51
| #4 |
| | .scr Datei ausversehen heruntergeladen. TDSSKiller.txt Teil 2: Code:
ATTFilter 02:32:04.0290 0x2098 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
02:32:04.0300 0x2098 Parport - ok
02:32:04.0338 0x2098 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:32:04.0346 0x2098 partmgr - ok
02:32:04.0395 0x2098 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
02:32:04.0429 0x2098 PcaSvc - ok
02:32:04.0465 0x2098 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
02:32:04.0476 0x2098 pci - ok
02:32:04.0515 0x2098 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
02:32:04.0523 0x2098 pciide - ok
02:32:04.0541 0x2098 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
02:32:04.0554 0x2098 pcmcia - ok
02:32:04.0609 0x2098 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
02:32:04.0617 0x2098 pcw - ok
02:32:04.0732 0x2098 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:32:04.0826 0x2098 PEAUTH - ok
02:32:04.0884 0x2098 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
02:32:04.0970 0x2098 PeerDistSvc - ok
02:32:04.0993 0x2098 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
02:32:05.0018 0x2098 PerfHost - ok
02:32:05.0127 0x2098 [ AE0B94363DA0F60D42B9D05B352F61ED, 284EA0123798BDBBAA93F912AD45B3D3F1F662FDDA5C73C0AC0D76AC2F9033C0 ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
02:32:05.0219 0x2098 PID_PEPI - ok
02:32:05.0294 0x2098 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
02:32:05.0377 0x2098 pla - ok
02:32:05.0433 0x2098 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:32:05.0465 0x2098 PlugPlay - ok
02:32:05.0494 0x2098 PnkBstrA - ok
02:32:05.0509 0x2098 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
02:32:05.0528 0x2098 PNRPAutoReg - ok
02:32:05.0550 0x2098 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
02:32:05.0563 0x2098 PNRPsvc - ok
02:32:05.0612 0x2098 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:32:05.0667 0x2098 PolicyAgent - ok
02:32:05.0691 0x2098 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
02:32:05.0730 0x2098 Power - ok
02:32:05.0763 0x2098 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:32:05.0801 0x2098 PptpMiniport - ok
02:32:05.0832 0x2098 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
02:32:05.0852 0x2098 Processor - ok
02:32:05.0891 0x2098 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
02:32:05.0933 0x2098 ProfSvc - ok
02:32:05.0941 0x2098 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] ProtectedStorage C:\Windows\system32\lsass.exe
02:32:05.0949 0x2098 ProtectedStorage - ok
02:32:06.0073 0x2098 [ 77D05941A147C152CA088D7364D8944B, 1296DF0BAA4228C437C2691B1C5E533921A4A97305179D0E0CE1CA4CE1A318D3 ] PS3 Media Server C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
02:32:06.0085 0x2098 PS3 Media Server - ok
02:32:06.0129 0x2098 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
02:32:06.0164 0x2098 Psched - ok
02:32:06.0216 0x2098 [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
02:32:06.0223 0x2098 PxHlpa64 - ok
02:32:06.0278 0x2098 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
02:32:06.0333 0x2098 ql2300 - ok
02:32:06.0348 0x2098 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
02:32:06.0358 0x2098 ql40xx - ok
02:32:06.0386 0x2098 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
02:32:06.0403 0x2098 QWAVE - ok
02:32:06.0412 0x2098 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:32:06.0440 0x2098 QWAVEdrv - ok
02:32:06.0532 0x2098 [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
02:32:06.0547 0x2098 RapiMgr - ok
02:32:06.0557 0x2098 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:32:06.0618 0x2098 RasAcd - ok
02:32:06.0649 0x2098 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
02:32:06.0698 0x2098 RasAgileVpn - ok
02:32:06.0718 0x2098 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
02:32:06.0753 0x2098 RasAuto - ok
02:32:06.0793 0x2098 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:32:06.0850 0x2098 Rasl2tp - ok
02:32:06.0911 0x2098 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
02:32:06.0974 0x2098 RasMan - ok
02:32:07.0017 0x2098 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:32:07.0057 0x2098 RasPppoe - ok
02:32:07.0073 0x2098 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:32:07.0114 0x2098 RasSstp - ok
02:32:07.0234 0x2098 [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
02:32:07.0244 0x2098 Razer Game Scanner Service - ok
02:32:07.0286 0x2098 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:32:07.0349 0x2098 rdbss - ok
02:32:07.0370 0x2098 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
02:32:07.0398 0x2098 rdpbus - ok
02:32:07.0415 0x2098 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
02:32:07.0451 0x2098 RDPCDD - ok
02:32:07.0488 0x2098 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
02:32:07.0527 0x2098 RDPDR - ok
02:32:07.0536 0x2098 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
02:32:07.0580 0x2098 RDPENCDD - ok
02:32:07.0597 0x2098 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
02:32:07.0631 0x2098 RDPREFMP - ok
02:32:07.0677 0x2098 [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
02:32:07.0708 0x2098 RdpVideoMiniport - ok
02:32:07.0749 0x2098 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
02:32:07.0776 0x2098 RDPWD - ok
02:32:07.0825 0x2098 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
02:32:07.0836 0x2098 rdyboost - ok
02:32:07.0853 0x2098 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
02:32:07.0891 0x2098 RemoteAccess - ok
02:32:07.0917 0x2098 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:32:07.0960 0x2098 RemoteRegistry - ok
02:32:07.0982 0x2098 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
02:32:08.0006 0x2098 RpcEptMapper - ok
02:32:08.0017 0x2098 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
02:32:08.0025 0x2098 RpcLocator - ok
02:32:08.0090 0x2098 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
02:32:08.0122 0x2098 RpcSs - ok
02:32:08.0133 0x2098 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:32:08.0177 0x2098 rspndr - ok
02:32:08.0215 0x2098 [ 60EB8A87357CA5B088B422D1E55A2405, A4E8ACACB9EFB094D05EC24DFB65D969DBA14634EEB6B4DBEF500BDEA8D78DB5 ] rt61x64 C:\Windows\system32\DRIVERS\netr6164.sys
02:32:08.0238 0x2098 rt61x64 - ok
02:32:08.0294 0x2098 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
02:32:08.0317 0x2098 RTL8167 - ok
02:32:08.0386 0x2098 [ B3F36B4B3F192EA87DDC119F3A0B3E45, DE80502994ED9977AD64483385A0BC0C6060EA9E9C08645E72FBBCFE8B2358C7 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
02:32:08.0419 0x2098 RTL8192su - ok
02:32:08.0471 0x2098 [ 5FA5ED95D2B02E92B9BC269A6B0B5039, 9C7CAB795658EC965B350318A9F5FC4EEFD2086C0BD71BAC7DD8B4A4863F6AE7 ] rzjstk C:\Windows\system32\DRIVERS\rzjstk.sys
02:32:08.0478 0x2098 rzjstk - ok
02:32:08.0527 0x2098 [ D76C183CC06A1AF1F25377DA2C2FB324, 00188E5965764036A388CDD28A2A4F49B0EECFF8A4FE08E43E63F9D35801FF0B ] rzkeypadendpt C:\Windows\system32\DRIVERS\rzkeypadendpt.sys
02:32:08.0534 0x2098 rzkeypadendpt - ok
02:32:08.0589 0x2098 [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk C:\Windows\system32\drivers\rzpmgrk.sys
02:32:08.0595 0x2098 rzpmgrk - ok
02:32:08.0657 0x2098 [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk C:\Windows\system32\drivers\rzpnk.sys
02:32:08.0666 0x2098 rzpnk - ok
02:32:08.0706 0x2098 [ 77C5AB228FE307C55FEF0C575E218771, 73C9D4593DA694B2D52817F608E749296D9CC1C44906C97204595476B68AD50F ] rzudd C:\Windows\system32\DRIVERS\rzudd.sys
02:32:08.0716 0x2098 rzudd - ok
02:32:08.0754 0x2098 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
02:32:08.0794 0x2098 s3cap - ok
02:32:08.0808 0x2098 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] SamSs C:\Windows\system32\lsass.exe
02:32:08.0816 0x2098 SamSs - ok
02:32:08.0852 0x2098 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
02:32:08.0861 0x2098 sbp2port - ok
02:32:08.0892 0x2098 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:32:08.0935 0x2098 SCardSvr - ok
02:32:08.0983 0x2098 [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D, 64A07303E538A1EE439D4AAD0DEBBD6037219D37B884026701A06E59A729E9C9 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
02:32:08.0992 0x2098 SCDEmu - ok
02:32:09.0030 0x2098 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
02:32:09.0053 0x2098 scfilter - ok
02:32:09.0110 0x2098 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
02:32:09.0172 0x2098 Schedule - ok
02:32:09.0210 0x2098 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
02:32:09.0234 0x2098 SCPolicySvc - ok
02:32:09.0277 0x2098 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
02:32:09.0316 0x2098 SDRSVC - ok
02:32:09.0342 0x2098 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:32:09.0376 0x2098 secdrv - ok
02:32:09.0418 0x2098 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
02:32:09.0453 0x2098 seclogon - ok
02:32:09.0468 0x2098 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
02:32:09.0503 0x2098 SENS - ok
02:32:09.0521 0x2098 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
02:32:09.0553 0x2098 SensrSvc - ok
02:32:09.0599 0x2098 [ 84AC127242DD3CCDE02F9A4673214B1F, 87E229138AAF10951C153F0BEC9B46CB459FE80074E02DE1DA0BC0FA5A11F237 ] Sentinel64 C:\Windows\System32\Drivers\Sentinel64.sys
02:32:09.0609 0x2098 Sentinel64 - ok
02:32:09.0616 0x2098 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
02:32:09.0634 0x2098 Serenum - ok
02:32:09.0656 0x2098 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
02:32:09.0682 0x2098 Serial - ok
02:32:09.0718 0x2098 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
02:32:09.0726 0x2098 sermouse - ok
02:32:09.0769 0x2098 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
02:32:09.0817 0x2098 SessionEnv - ok
02:32:09.0912 0x2098 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
02:32:09.0935 0x2098 sffdisk - ok
02:32:09.0952 0x2098 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
02:32:09.0962 0x2098 sffp_mmc - ok
02:32:09.0968 0x2098 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
02:32:09.0993 0x2098 sffp_sd - ok
02:32:10.0005 0x2098 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
02:32:10.0014 0x2098 sfloppy - ok
02:32:10.0055 0x2098 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
02:32:10.0112 0x2098 SharedAccess - ok
02:32:10.0157 0x2098 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:32:10.0211 0x2098 ShellHWDetection - ok
02:32:10.0231 0x2098 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
02:32:10.0239 0x2098 SiSRaid2 - ok
02:32:10.0256 0x2098 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
02:32:10.0265 0x2098 SiSRaid4 - ok
02:32:10.0362 0x2098 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
02:32:10.0380 0x2098 SkypeUpdate - ok
02:32:10.0397 0x2098 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
02:32:10.0436 0x2098 Smb - ok
02:32:10.0465 0x2098 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:32:10.0491 0x2098 SNMPTRAP - ok
02:32:10.0509 0x2098 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
02:32:10.0517 0x2098 spldr - ok
02:32:10.0567 0x2098 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
02:32:10.0620 0x2098 Spooler - ok
02:32:10.0745 0x2098 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
02:32:10.0883 0x2098 sppsvc - ok
02:32:10.0908 0x2098 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
02:32:10.0948 0x2098 sppuinotify - ok
02:32:10.0998 0x2098 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:32:11.0039 0x2098 srv - ok
02:32:11.0087 0x2098 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:32:11.0153 0x2098 srv2 - ok
02:32:11.0177 0x2098 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:32:11.0196 0x2098 srvnet - ok
02:32:11.0217 0x2098 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:32:11.0252 0x2098 SSDPSRV - ok
02:32:11.0262 0x2098 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:32:11.0311 0x2098 SstpSvc - ok
02:32:11.0357 0x2098 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
02:32:11.0369 0x2098 ssudmdm - ok
02:32:11.0450 0x2098 [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
02:32:11.0602 0x2098 Steam Client Service - ok
02:32:11.0661 0x2098 [ A9D26626BEADF5A0641BF6B5095EF309, EABC711466FECA20058D7E24CA2593059E1F113B38A2E7574822E48BFBBF4146 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
02:32:11.0694 0x2098 Stereo Service - ok
02:32:11.0722 0x2098 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
02:32:11.0731 0x2098 stexstor - ok
02:32:11.0782 0x2098 [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\drivers\serscan.sys
02:32:11.0826 0x2098 StillCam - ok
02:32:11.0885 0x2098 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
02:32:11.0929 0x2098 stisvc - ok
02:32:11.0983 0x2098 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
02:32:11.0992 0x2098 storflt - ok
02:32:12.0010 0x2098 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
02:32:12.0018 0x2098 storvsc - ok
02:32:12.0058 0x2098 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
02:32:12.0067 0x2098 swenum - ok
02:32:12.0185 0x2098 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
02:32:12.0217 0x2098 SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
02:32:12.0310 0x2098 Detect skipped due to KSN trusted
02:32:12.0310 0x2098 SwitchBoard - ok
02:32:12.0349 0x2098 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
02:32:12.0392 0x2098 swprv - ok
02:32:12.0405 0x2098 Synth3dVsc - ok
02:32:12.0487 0x2098 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
02:32:12.0575 0x2098 SysMain - ok
02:32:12.0613 0x2098 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:32:12.0646 0x2098 TabletInputService - ok
02:32:12.0894 0x2098 [ 34D92E8CB04DCAEEAE054FEDE7526282, 73F38FAB499EBA5344251F9A4B1883D326AB7F55022B81C596EAA664906482F1 ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
02:32:13.0080 0x2098 TabletServiceWacom - ok
02:32:13.0133 0x2098 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
02:32:13.0161 0x2098 tap0901t - ok
02:32:13.0204 0x2098 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
02:32:13.0249 0x2098 TapiSrv - ok
02:32:13.0270 0x2098 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
02:32:13.0310 0x2098 TBS - ok
02:32:13.0384 0x2098 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:32:13.0448 0x2098 Tcpip - ok
02:32:13.0508 0x2098 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
02:32:13.0550 0x2098 TCPIP6 - ok
02:32:13.0587 0x2098 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:32:13.0596 0x2098 tcpipreg - ok
02:32:13.0619 0x2098 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
02:32:13.0652 0x2098 TDPIPE - ok
02:32:13.0691 0x2098 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
02:32:13.0713 0x2098 TDTCP - ok
02:32:13.0771 0x2098 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:32:13.0787 0x2098 tdx - ok
02:32:13.0996 0x2098 [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9 C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
02:32:14.0093 0x2098 TeamViewer9 - ok
02:32:14.0137 0x2098 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
02:32:14.0145 0x2098 TermDD - ok
02:32:14.0199 0x2098 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
02:32:14.0238 0x2098 TermService - ok
02:32:14.0257 0x2098 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
02:32:14.0279 0x2098 Themes - ok
02:32:14.0305 0x2098 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
02:32:14.0330 0x2098 THREADORDER - ok
02:32:14.0360 0x2098 [ 8DD33A57339ADAE34CDB12994ACBC50F, 58FD3AC48E3EE6BECCED4E0227C73D6783BF552A3A0B5FD43F091580108E1A0D ] Tpkd C:\Windows\system32\drivers\Tpkd.sys
02:32:14.0368 0x2098 Tpkd - ok
02:32:14.0383 0x2098 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
02:32:14.0427 0x2098 TrkWks - ok
02:32:14.0490 0x2098 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:32:14.0536 0x2098 TrustedInstaller - ok
02:32:14.0571 0x2098 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
02:32:14.0591 0x2098 tssecsrv - ok
02:32:14.0627 0x2098 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
02:32:14.0659 0x2098 TsUsbFlt - ok
02:32:14.0672 0x2098 tsusbhub - ok
02:32:14.0712 0x2098 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:32:14.0758 0x2098 tunnel - ok
02:32:14.0862 0x2098 [ A96BE6F92EDE53BA5997B2AE7367EACD, D2CE331F0BBA15C19A66BEF91FBDA96536F656C89DC9FE1A2F88D0C368986BB2 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
02:32:14.0894 0x2098 TunngleService - ok
02:32:14.0947 0x2098 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
02:32:14.0973 0x2098 uagp35 - ok
02:32:15.0045 0x2098 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:32:15.0134 0x2098 udfs - ok
02:32:15.0154 0x2098 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:32:15.0183 0x2098 UI0Detect - ok
02:32:15.0205 0x2098 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
02:32:15.0214 0x2098 uliagpkx - ok
02:32:15.0252 0x2098 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
02:32:15.0269 0x2098 umbus - ok
02:32:15.0284 0x2098 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
02:32:15.0292 0x2098 UmPass - ok
02:32:15.0328 0x2098 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
02:32:15.0352 0x2098 UmRdpService - ok
02:32:15.0444 0x2098 [ AEBE8F338432F9DE5AE0CAE4D4BAED76, A11DE1BAEF6E0D30B8801C0AEC589F0DA6FEC5E010BD6A18584D96E0AF9243B8 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
02:32:15.0468 0x2098 UMVPFSrv - ok
02:32:15.0493 0x2098 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
02:32:15.0534 0x2098 upnphost - ok
02:32:15.0599 0x2098 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
02:32:15.0640 0x2098 USBAAPL64 - ok
02:32:15.0692 0x2098 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
02:32:15.0722 0x2098 usbaudio - ok
02:32:15.0761 0x2098 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
02:32:15.0794 0x2098 usbccgp - ok
02:32:15.0845 0x2098 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
02:32:15.0888 0x2098 usbcir - ok
02:32:15.0928 0x2098 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
02:32:15.0950 0x2098 usbehci - ok
02:32:15.0978 0x2098 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
02:32:15.0992 0x2098 usbhub - ok
02:32:15.0999 0x2098 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
02:32:16.0019 0x2098 usbohci - ok
02:32:16.0046 0x2098 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
02:32:16.0075 0x2098 usbprint - ok
02:32:16.0116 0x2098 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:32:16.0149 0x2098 USBSTOR - ok
02:32:16.0164 0x2098 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
02:32:16.0182 0x2098 usbuhci - ok
02:32:16.0240 0x2098 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
02:32:16.0251 0x2098 usbvideo - ok
02:32:16.0275 0x2098 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
02:32:16.0320 0x2098 UxSms - ok
02:32:16.0354 0x2098 [ 18436F7006443FB76145B3D35162A810, 1670A711D808AEA66A63443CE752EB771D4BF34CA838B0040849A436FFF77E69 ] VaneFltr C:\Windows\system32\drivers\Lachesis.sys
02:32:16.0377 0x2098 VaneFltr - ok
02:32:16.0383 0x2098 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] VaultSvc C:\Windows\system32\lsass.exe
02:32:16.0392 0x2098 VaultSvc - ok
02:32:16.0427 0x2098 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
02:32:16.0435 0x2098 vdrvroot - ok
02:32:16.0493 0x2098 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
02:32:16.0548 0x2098 vds - ok
02:32:16.0572 0x2098 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
02:32:16.0598 0x2098 vga - ok
02:32:16.0614 0x2098 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
02:32:16.0653 0x2098 VgaSave - ok
02:32:16.0656 0x2098 VGPU - ok
02:32:16.0690 0x2098 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
02:32:16.0702 0x2098 vhdmp - ok
02:32:16.0738 0x2098 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
02:32:16.0746 0x2098 viaide - ok
02:32:16.0781 0x2098 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
02:32:16.0793 0x2098 vmbus - ok
02:32:16.0810 0x2098 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
02:32:16.0827 0x2098 VMBusHID - ok
02:32:16.0865 0x2098 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
02:32:16.0874 0x2098 volmgr - ok
02:32:16.0937 0x2098 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:32:16.0961 0x2098 volmgrx - ok
02:32:16.0974 0x2098 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
02:32:16.0999 0x2098 volsnap - ok
02:32:17.0020 0x2098 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
02:32:17.0031 0x2098 vsmraid - ok
02:32:17.0117 0x2098 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
02:32:17.0186 0x2098 VSS - ok
02:32:17.0203 0x2098 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
02:32:17.0223 0x2098 vwifibus - ok
02:32:17.0241 0x2098 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
02:32:17.0262 0x2098 vwififlt - ok
02:32:17.0294 0x2098 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
02:32:17.0349 0x2098 W32Time - ok
02:32:17.0402 0x2098 [ FE75777289278A4941FE6139E82B3BD9, 4B0F3117C7D905240DB54EEE376404757258051CC5F8F312CAF748E1811368C6 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
02:32:17.0432 0x2098 wacmoumonitor - ok
02:32:17.0466 0x2098 [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
02:32:17.0472 0x2098 wacommousefilter - ok
02:32:17.0482 0x2098 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
02:32:17.0503 0x2098 WacomPen - ok
02:32:17.0538 0x2098 [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys
02:32:17.0544 0x2098 wacomvhid - ok
02:32:17.0674 0x2098 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
02:32:17.0750 0x2098 WANARP - ok
02:32:17.0766 0x2098 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:32:17.0790 0x2098 Wanarpv6 - ok
02:32:17.0859 0x2098 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
02:32:17.0940 0x2098 wbengine - ok
02:32:17.0961 0x2098 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
02:32:17.0998 0x2098 WbioSrvc - ok
02:32:18.0071 0x2098 [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
02:32:18.0097 0x2098 WcesComm - ok
02:32:18.0157 0x2098 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:32:18.0206 0x2098 wcncsvc - ok
02:32:18.0222 0x2098 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:32:18.0261 0x2098 WcsPlugInService - ok
02:32:18.0278 0x2098 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
02:32:18.0286 0x2098 Wd - ok
02:32:18.0343 0x2098 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:32:18.0379 0x2098 Wdf01000 - ok
02:32:18.0394 0x2098 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:32:18.0467 0x2098 WdiServiceHost - ok
02:32:18.0471 0x2098 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:32:18.0485 0x2098 WdiSystemHost - ok
02:32:18.0528 0x2098 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
02:32:18.0572 0x2098 WebClient - ok
02:32:18.0586 0x2098 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:32:18.0631 0x2098 Wecsvc - ok
02:32:18.0653 0x2098 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:32:18.0695 0x2098 wercplsupport - ok
02:32:18.0722 0x2098 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
02:32:18.0765 0x2098 WerSvc - ok
02:32:18.0794 0x2098 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
02:32:18.0819 0x2098 WfpLwf - ok
02:32:18.0835 0x2098 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
02:32:18.0843 0x2098 WIMMount - ok
02:32:18.0870 0x2098 WinDefend - ok
02:32:18.0884 0x2098 WinHttpAutoProxySvc - ok
02:32:18.0929 0x2098 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:32:18.0995 0x2098 Winmgmt - ok
02:32:19.0076 0x2098 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
02:32:19.0177 0x2098 WinRM - ok
02:32:19.0233 0x2098 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
02:32:19.0258 0x2098 WinUsb - ok
02:32:19.0295 0x2098 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
02:32:19.0352 0x2098 Wlansvc - ok
02:32:19.0384 0x2098 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
02:32:19.0392 0x2098 wlcrasvc - ok
02:32:19.0543 0x2098 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
02:32:19.0616 0x2098 wlidsvc - ok
02:32:19.0656 0x2098 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
02:32:19.0679 0x2098 WmiAcpi - ok
02:32:19.0709 0x2098 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:32:19.0736 0x2098 wmiApSrv - ok
02:32:19.0770 0x2098 WMPNetworkSvc - ok
02:32:19.0781 0x2098 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
02:32:19.0815 0x2098 WPCSvc - ok
02:32:19.0849 0x2098 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:32:19.0873 0x2098 WPDBusEnum - ok
02:32:19.0888 0x2098 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:32:19.0911 0x2098 ws2ifsl - ok
02:32:19.0925 0x2098 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
02:32:19.0953 0x2098 wscsvc - ok
02:32:20.0002 0x2098 [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
02:32:20.0027 0x2098 WSDPrintDevice - ok
02:32:20.0030 0x2098 WSearch - ok
02:32:20.0132 0x2098 [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv C:\Windows\system32\wuaueng.dll
02:32:20.0255 0x2098 wuauserv - ok
02:32:20.0297 0x2098 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
02:32:20.0400 0x2098 WudfPf - ok
02:32:20.0440 0x2098 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
02:32:20.0465 0x2098 WUDFRd - ok
02:32:20.0497 0x2098 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:32:20.0507 0x2098 wudfsvc - ok
02:32:20.0554 0x2098 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
02:32:20.0590 0x2098 WwanSvc - ok
02:32:20.0637 0x2098 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
02:32:20.0676 0x2098 xusb21 - ok
02:32:20.0705 0x2098 ================ Scan global ===============================
02:32:20.0743 0x2098 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
02:32:20.0785 0x2098 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
02:32:20.0802 0x2098 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
02:32:20.0823 0x2098 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
02:32:20.0877 0x2098 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
02:32:20.0893 0x2098 [ Global ] - ok
02:32:20.0893 0x2098 ================ Scan MBR ==================================
02:32:20.0915 0x2098 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
02:32:21.0103 0x2098 \Device\Harddisk1\DR1 - ok
02:32:21.0142 0x2098 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
02:32:21.0210 0x2098 \Device\Harddisk0\DR0 - ok
02:32:21.0210 0x2098 ================ Scan VBR ==================================
02:32:21.0212 0x2098 [ CDB057F2BB39ED9D067F761AEC114D0F ] \Device\Harddisk1\DR1\Partition1
02:32:21.0214 0x2098 \Device\Harddisk1\DR1\Partition1 - ok
02:32:21.0216 0x2098 [ 1932210E82096A1056F7A312EBF08D66 ] \Device\Harddisk1\DR1\Partition2
02:32:21.0217 0x2098 \Device\Harddisk1\DR1\Partition2 - ok
02:32:21.0219 0x2098 [ A087C0120C9361BE942045AE6FAFCA2A ] \Device\Harddisk0\DR0\Partition1
02:32:21.0273 0x2098 \Device\Harddisk0\DR0\Partition1 - ok
02:32:21.0274 0x2098 ================ Scan generic autorun ======================
02:32:21.0637 0x2098 [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
02:32:22.0000 0x2098 RtHDVCpl - ok
02:32:22.0095 0x2098 [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
02:32:22.0118 0x2098 AdobeAAMUpdater-1.0 - ok
02:32:22.0248 0x2098 [ 5EA707336336DDFADE5FD3726CEA1523, 6136D88012140B3A43C7DC6CD0CBDB867BC6BA62D718269B73ED9F1B340F6768 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
02:32:22.0317 0x2098 NvBackend - ok
02:32:22.0357 0x2098 [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
02:32:22.0367 0x2098 iTunesHelper - ok
02:32:22.0424 0x2098 [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdcBase.exe
02:32:22.0457 0x2098 Windows Mobile-based device management - ok
02:32:22.0558 0x2098 [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
02:32:22.0565 0x2098 HP Software Update - ok
02:32:22.0643 0x2098 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:32:22.0716 0x2098 Sidebar - ok
02:32:22.0736 0x2098 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:32:22.0759 0x2098 mctadmin - ok
02:32:22.0799 0x2098 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:32:22.0828 0x2098 Sidebar - ok
02:32:22.0835 0x2098 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:32:22.0848 0x2098 mctadmin - ok
02:32:22.0970 0x2098 [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
02:32:23.0050 0x2098 HP Officejet Pro 8600 (NET) - ok
02:32:23.0181 0x2098 [ C10E5EF1B85DE5B79AC2815C9A677D1F, 33162556A7F41CF107480A788104DD28A0C73C4AFFB224124A6C474D9B47A4DD ] C:\Users\Jeremy J. Erb\AppData\Roaming\uTorrent\uTorrent.exe
02:32:24.0243 0x2098 uTorrent - ok
02:32:24.0323 0x2098 [ 7A2870C2A8283B3630BF7670D0362B94, A36AA6F2A78DF3E66ACA484E9E33D0CB01207FF52A0A8C006424493A5C489C48 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
02:32:24.0355 0x2098 GoogleChromeAutoLaunch_90C1996279C19B2AA865F0F198BD9F08 - ok
02:32:24.0499 0x2098 [ E17E53F297560C31631C4AC549385AE3, 7A5A6895D7DEF32B4CC7EF037E15CF5C4B01E28A3903F30686910C4AA89835A5 ] C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
02:32:24.0560 0x2098 uTorrent - ok
02:32:24.0629 0x2098 [ 8D80BFF016E907AAE76E5667E0A8F1E0, 63728CD5E6EEBCC90B5FF854B6ACB565B194E46B71CAF89FB992E65433DD20E0 ] C:\Program Files (x86)\Voobly\voobly.exe
02:32:24.0635 0x2098 Voobly - detected UnsignedFile.Multi.Generic ( 1 )
02:32:24.0735 0x2098 Voobly ( UnsignedFile.Multi.Generic ) - warning
02:32:24.0735 0x2098 Force sending object to P2P due to detect: C:\Program Files (x86)\Voobly\voobly.exe
02:32:24.0968 0x2098 Object send P2P result: true
02:32:25.0357 0x2098 [ D192592FD0A99D9F360906D3F6DFBFF1, E0ED95A8AB4D26A40BF95B8DB2D968AD1FDB36B8C4DF2990185E0458B3948CA3 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
02:32:25.0399 0x2098 WSHelperSetup.exe - ok
02:32:25.0569 0x2098 [ E1473471169EC64C57B49F9C984DFB1A, 3E05B4AD77F5CE13B01B7E1FD460F9779FF9E7C9E6DEBD5225EC840D96D12AA1 ] C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe
02:32:25.0725 0x2098 Logitech Vid - ok
02:32:25.0734 0x2098 Waiting for KSN requests completion. In queue: 152
02:32:26.0744 0x2098 Win FW state via NFP2: enabled ( trusted )
02:32:26.0953 0x2098 ============================================================
02:32:26.0953 0x2098 Scan finished
02:32:26.0953 0x2098 ============================================================
02:32:26.0961 0x22f8 Detected object count: 2
02:32:26.0961 0x22f8 Actual detected object count: 2
02:33:59.0708 0x22f8 BEService ( UnsignedFile.Multi.Generic ) - skipped by user
02:33:59.0708 0x22f8 BEService ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:33:59.0708 0x22f8 Voobly ( UnsignedFile.Multi.Generic ) - skipped by user
02:33:59.0708 0x22f8 Voobly ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:34:45.0903 0x23f0 ============================================================
02:34:45.0903 0x23f0 Scan started
02:34:45.0903 0x23f0 Mode: Manual; SigCheck; TDLFS;
02:34:45.0903 0x23f0 ============================================================
02:34:45.0903 0x23f0 KSN ping started
02:34:46.0013 0x23f0 KSN ping finished: true
02:34:46.0664 0x23f0 ================ Scan system memory ========================
02:34:46.0664 0x23f0 System memory - ok
02:34:46.0665 0x23f0 ================ Scan services =============================
02:34:46.0775 0x23f0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
02:34:46.0792 0x23f0 1394ohci - ok
02:34:46.0858 0x23f0 [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
02:34:46.0869 0x23f0 ACDaemon - ok
02:34:46.0932 0x23f0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
02:34:46.0946 0x23f0 ACPI - ok
02:34:46.0981 0x23f0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
02:34:46.0990 0x23f0 AcpiPmi - ok
02:34:47.0063 0x23f0 [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
02:34:47.0071 0x23f0 AdobeARMservice - ok
02:34:47.0169 0x23f0 [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:34:47.0180 0x23f0 AdobeFlashPlayerUpdateSvc - ok
02:34:47.0211 0x23f0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
02:34:47.0226 0x23f0 adp94xx - ok
02:34:47.0238 0x23f0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
02:34:47.0251 0x23f0 adpahci - ok
02:34:47.0258 0x23f0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
02:34:47.0268 0x23f0 adpu320 - ok
02:34:47.0302 0x23f0 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:34:47.0311 0x23f0 AeLookupSvc - ok
02:34:47.0354 0x23f0 [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc C:\Windows\syswow64\drivers\Afc.sys
02:34:47.0361 0x23f0 Afc - ok
02:34:47.0414 0x23f0 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
02:34:47.0431 0x23f0 AFD - ok
02:34:47.0472 0x23f0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
02:34:47.0480 0x23f0 agp440 - ok
02:34:47.0501 0x23f0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
02:34:47.0510 0x23f0 ALG - ok
02:34:47.0544 0x23f0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
02:34:47.0551 0x23f0 aliide - ok
02:34:47.0583 0x23f0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
02:34:47.0590 0x23f0 amdide - ok
02:34:47.0604 0x23f0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
02:34:47.0612 0x23f0 AmdK8 - ok
02:34:47.0625 0x23f0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
02:34:47.0633 0x23f0 AmdPPM - ok
02:34:47.0670 0x23f0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
02:34:47.0679 0x23f0 amdsata - ok
02:34:47.0687 0x23f0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
02:34:47.0697 0x23f0 amdsbs - ok
02:34:47.0708 0x23f0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
02:34:47.0715 0x23f0 amdxata - ok
02:34:47.0751 0x23f0 [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID C:\Windows\system32\drivers\appid.sys
02:34:47.0759 0x23f0 AppID - ok
02:34:47.0794 0x23f0 [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
02:34:47.0801 0x23f0 AppIDSvc - ok
02:34:47.0836 0x23f0 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
02:34:47.0844 0x23f0 Appinfo - ok
02:34:47.0935 0x23f0 [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:34:47.0942 0x23f0 Apple Mobile Device Service - ok
02:34:47.0972 0x23f0 [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
02:34:47.0978 0x23f0 AppleCharger - ok
02:34:48.0013 0x23f0 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
02:34:48.0019 0x23f0 AppleChargerSrv - ok
02:34:48.0037 0x23f0 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
02:34:48.0047 0x23f0 AppMgmt - ok
02:34:48.0065 0x23f0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
02:34:48.0073 0x23f0 arc - ok
02:34:48.0108 0x23f0 [ 29E7252FA743B15BCE1A2245C5643A02, 7008FA6004AB9E4FBC410EAD8929F97056386DD65045F05059ADF436FB655FAD ] archlp C:\Windows\syswow64\drivers\archlp.sys
02:34:48.0116 0x23f0 archlp - ok
02:34:48.0130 0x23f0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
02:34:48.0138 0x23f0 arcsas - ok
02:34:48.0145 0x23f0 Aspi32 - ok
02:34:48.0223 0x23f0 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
02:34:48.0233 0x23f0 aspnet_state - ok
02:34:48.0262 0x23f0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:34:48.0285 0x23f0 AsyncMac - ok
02:34:48.0321 0x23f0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
02:34:48.0328 0x23f0 atapi - ok
02:34:48.0383 0x23f0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:34:48.0403 0x23f0 AudioEndpointBuilder - ok
02:34:48.0425 0x23f0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
02:34:48.0444 0x23f0 AudioSrv - ok
02:34:48.0488 0x23f0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
02:34:48.0501 0x23f0 AxInstSV - ok
02:34:48.0528 0x23f0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
02:34:48.0543 0x23f0 b06bdrv - ok
02:34:48.0554 0x23f0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
02:34:48.0566 0x23f0 b57nd60a - ok
02:34:48.0586 0x23f0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
02:34:48.0595 0x23f0 BDESVC - ok
02:34:48.0598 0x23f0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
02:34:48.0622 0x23f0 Beep - ok
02:34:48.0662 0x23f0 [ C895B9AA6EE9DBDE5D98684425A14647, FB9C906D3EAEEC6F46B1862D2348B1FB501C49D78F4CC4A7DE060BAF413EB782 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
02:34:48.0665 0x23f0 BEService - detected UnsignedFile.Multi.Generic ( 1 )
02:34:48.0665 0x23f0 BEService ( UnsignedFile.Multi.Generic ) - warning
02:34:48.0966 0x23f0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
02:34:48.0986 0x23f0 BFE - ok
02:34:49.0042 0x23f0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
02:34:49.0081 0x23f0 BITS - ok
02:34:49.0091 0x23f0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
02:34:49.0099 0x23f0 blbdrive - ok
02:34:49.0149 0x23f0 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:34:49.0163 0x23f0 Bonjour Service - ok
02:34:49.0201 0x23f0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:34:49.0209 0x23f0 bowser - ok
02:34:49.0223 0x23f0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
02:34:49.0232 0x23f0 BrFiltLo - ok
02:34:49.0241 0x23f0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
02:34:49.0250 0x23f0 BrFiltUp - ok
02:34:49.0292 0x23f0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
02:34:49.0302 0x23f0 Browser - ok
02:34:49.0321 0x23f0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
02:34:49.0334 0x23f0 Brserid - ok
02:34:49.0346 0x23f0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
02:34:49.0356 0x23f0 BrSerWdm - ok
02:34:49.0371 0x23f0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
02:34:49.0379 0x23f0 BrUsbMdm - ok
02:34:49.0393 0x23f0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
02:34:49.0400 0x23f0 BrUsbSer - ok
02:34:49.0418 0x23f0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
02:34:49.0428 0x23f0 BTHMODEM - ok
02:34:49.0441 0x23f0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
02:34:49.0466 0x23f0 bthserv - ok
02:34:49.0611 0x23f0 [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
02:34:49.0646 0x23f0 c2cautoupdatesvc - ok
02:34:49.0702 0x23f0 [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
02:34:49.0743 0x23f0 c2cpnrsvc - ok
02:34:49.0763 0x23f0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:34:49.0787 0x23f0 cdfs - ok
02:34:49.0833 0x23f0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
02:34:49.0843 0x23f0 cdrom - ok
02:34:49.0878 0x23f0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
02:34:49.0901 0x23f0 CertPropSvc - ok
02:34:49.0905 0x23f0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
02:34:49.0915 0x23f0 circlass - ok
02:34:49.0957 0x23f0 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
02:34:49.0971 0x23f0 CLFS - ok
02:34:50.0026 0x23f0 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:34:50.0034 0x23f0 clr_optimization_v2.0.50727_32 - ok
02:34:50.0090 0x23f0 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
02:34:50.0098 0x23f0 clr_optimization_v2.0.50727_64 - ok
02:34:50.0161 0x23f0 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:34:50.0172 0x23f0 clr_optimization_v4.0.30319_32 - ok
02:34:50.0187 0x23f0 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
02:34:50.0198 0x23f0 clr_optimization_v4.0.30319_64 - ok
02:34:50.0214 0x23f0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
02:34:50.0222 0x23f0 CmBatt - ok
02:34:50.0255 0x23f0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
02:34:50.0262 0x23f0 cmdide - ok
02:34:50.0317 0x23f0 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
02:34:50.0336 0x23f0 CNG - ok
02:34:50.0350 0x23f0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
02:34:50.0357 0x23f0 Compbatt - ok
02:34:50.0394 0x23f0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
02:34:50.0404 0x23f0 CompositeBus - ok
02:34:50.0408 0x23f0 COMSysApp - ok
02:34:50.0419 0x23f0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
02:34:50.0426 0x23f0 crcdisk - ok
02:34:50.0463 0x23f0 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:34:50.0474 0x23f0 CryptSvc - ok
02:34:50.0524 0x23f0 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
02:34:50.0540 0x23f0 CSC - ok
02:34:50.0588 0x23f0 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
02:34:50.0608 0x23f0 CscService - ok
02:34:50.0648 0x23f0 [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
02:34:50.0656 0x23f0 dc3d - ok
02:34:50.0707 0x23f0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
02:34:50.0739 0x23f0 DcomLaunch - ok
02:34:50.0762 0x23f0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
02:34:50.0791 0x23f0 defragsvc - ok
02:34:50.0948 0x23f0 [ 541C3C58BAB622549E8F96E7E88F71AA, 79D6710673B4F205B3918A14DF58B0933E2A631D5FF8C10D06C91ABD2D50BC7B ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
02:34:51.0020 0x23f0 DevoloNetworkService - ok
02:34:51.0062 0x23f0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
02:34:51.0085 0x23f0 DfsC - ok
02:34:51.0129 0x23f0 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
02:34:51.0137 0x23f0 dg_ssudbus - ok
02:34:51.0175 0x23f0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
02:34:51.0188 0x23f0 Dhcp - ok
02:34:51.0275 0x23f0 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
02:34:51.0308 0x23f0 DiagTrack - ok
02:34:51.0324 0x23f0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
02:34:51.0348 0x23f0 discache - ok
02:34:51.0358 0x23f0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
02:34:51.0366 0x23f0 Disk - ok
02:34:51.0405 0x23f0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:34:51.0415 0x23f0 Dnscache - ok
02:34:51.0471 0x23f0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
02:34:51.0497 0x23f0 dot3svc - ok
02:34:51.0540 0x23f0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
02:34:51.0565 0x23f0 DPS - ok
02:34:51.0598 0x23f0 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:34:51.0605 0x23f0 drmkaud - ok
02:34:51.0650 0x23f0 [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
02:34:51.0661 0x23f0 dtsoftbus01 - ok
02:34:51.0719 0x23f0 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:34:51.0744 0x23f0 DXGKrnl - ok
02:34:51.0762 0x23f0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
02:34:51.0787 0x23f0 EapHost - ok
02:34:51.0891 0x23f0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
02:34:51.0960 0x23f0 ebdrv - ok
02:34:52.0000 0x23f0 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] EFS C:\Windows\System32\lsass.exe
02:34:52.0008 0x23f0 EFS - ok
02:34:52.0044 0x23f0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
02:34:52.0064 0x23f0 ehRecvr - ok
02:34:52.0084 0x23f0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
02:34:52.0094 0x23f0 ehSched - ok
02:34:52.0128 0x23f0 [ 2E6CE12D16B40DD96B4EBAFFAE79742D, E279713284279459671AEE7B86120BFA4C285A1ED721CFAEE2D6B8579518EA49 ] ElgatoGC656Y C:\Windows\system32\Drivers\ElgatoGC656.sys
02:34:52.0136 0x23f0 ElgatoGC656Y - ok
02:34:52.0162 0x23f0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
02:34:52.0179 0x23f0 elxstor - ok
02:34:52.0202 0x23f0 [ 12C061D9F9621BE916D58191872EC281, 5285C5AF9ECDAF9CBB7A5D0FC97D882EC06778CF5688E86890A617E2670C413B ] ENTECH64 C:\Windows\system32\DRIVERS\ENTECH64.sys
02:34:52.0209 0x23f0 ENTECH64 - ok
02:34:52.0249 0x23f0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
02:34:52.0257 0x23f0 ErrDev - ok
02:34:52.0301 0x23f0 [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
02:34:52.0308 0x23f0 ES lite Service - ok
02:34:52.0344 0x23f0 [ 84486624268E078255BC7AA47F0960BC, EC2540698B974572F0AC4A93D57C63295BAF66BF50F7416B9DFF5DE790EBDBE7 ] etdrv C:\Windows\etdrv.sys
02:34:52.0350 0x23f0 etdrv - ok
02:34:52.0390 0x23f0 [ 6C17A702399B0205AB7836C2B45CD806, 54BACC652D905A31959031DE1F6116187D6E7961D05DBC2211904CB7EE7E9CFC ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
02:34:52.0396 0x23f0 EtronHub3 - ok
02:34:52.0435 0x23f0 [ B5348A55CC9541FFA930E30BB0CC8EF6, D20DC1B5BD6DB6AF621611ADE9CDA413587C58515B84814423339AC7BD89F775 ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
02:34:52.0441 0x23f0 EtronXHCI - ok
02:34:52.0460 0x23f0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
02:34:52.0491 0x23f0 EventSystem - ok
02:34:52.0508 0x23f0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
02:34:52.0535 0x23f0 exfat - ok
02:34:52.0553 0x23f0 Fabs - ok
02:34:52.0567 0x23f0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:34:52.0594 0x23f0 fastfat - ok
02:34:52.0646 0x23f0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
02:34:52.0666 0x23f0 Fax - ok
02:34:52.0671 0x23f0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
02:34:52.0678 0x23f0 fdc - ok
02:34:52.0692 0x23f0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
02:34:52.0715 0x23f0 fdPHost - ok
02:34:52.0724 0x23f0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
02:34:52.0748 0x23f0 FDResPub - ok
02:34:52.0752 0x23f0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:34:52.0760 0x23f0 FileInfo - ok
02:34:52.0766 0x23f0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:34:52.0790 0x23f0 Filetrace - ok
02:34:52.0888 0x23f0 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC, 159EAA1893D871C309A063829CB3BC51A019FBCA1E07530B5CA1A382B2CCAF61 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
02:34:52.0955 0x23f0 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic ( 1 )
02:34:52.0955 0x23f0 Detect skipped due to KSN trusted
02:34:52.0956 0x23f0 FirebirdServerMAGIXInstance - ok
02:34:52.0980 0x23f0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
02:34:52.0987 0x23f0 flpydisk - ok
02:34:53.0028 0x23f0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:34:53.0041 0x23f0 FltMgr - ok
02:34:53.0106 0x23f0 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
02:34:53.0135 0x23f0 FontCache - ok
02:34:53.0193 0x23f0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:34:53.0200 0x23f0 FontCache3.0.0.0 - ok
02:34:53.0215 0x23f0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
02:34:53.0223 0x23f0 FsDepends - ok
02:34:53.0257 0x23f0 [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
02:34:53.0264 0x23f0 fssfltr - ok
02:34:53.0448 0x23f0 [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
02:34:53.0482 0x23f0 fsssvc - ok
02:34:53.0539 0x23f0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:34:53.0546 0x23f0 Fs_Rec - ok
02:34:53.0592 0x23f0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
02:34:53.0605 0x23f0 fvevol - ok
02:34:53.0628 0x23f0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
02:34:53.0636 0x23f0 gagp30kx - ok
02:34:53.0664 0x23f0 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
02:34:53.0670 0x23f0 gdrv - ok
02:34:53.0701 0x23f0 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:34:53.0706 0x23f0 GEARAspiWDM - ok
02:34:53.0761 0x23f0 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
02:34:53.0798 0x23f0 gpsvc - ok
02:34:53.0873 0x23f0 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:34:53.0881 0x23f0 gupdate - ok
02:34:53.0888 0x23f0 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:34:53.0896 0x23f0 gupdatem - ok
02:34:53.0937 0x23f0 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
02:34:53.0944 0x23f0 GVTDrv64 - ok
02:34:53.0958 0x23f0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
02:34:53.0966 0x23f0 hcw85cir - ok
02:34:54.0003 0x23f0 [ 8D7F985CE023640B8D24EAC045D7BABE, 8B3A2CBDA0D48D74519CB3B5928F77D65730D38E50D59995F2167C741F42FEC0 ] hcwhdpvr C:\Windows\system32\DRIVERS\hcwhdpvr.sys
02:34:54.0012 0x23f0 hcwhdpvr - ok
|
|
24.11.2015, 03:53
| #5 |
| | .scr Datei ausversehen heruntergeladen. TDSSKiller.txt Teil 3: Code:
ATTFilter 02:34:54.0051 0x23f0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:34:54.0066 0x23f0 HdAudAddService - ok
02:34:54.0106 0x23f0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
02:34:54.0118 0x23f0 HDAudBus - ok
02:34:54.0128 0x23f0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
02:34:54.0136 0x23f0 HidBatt - ok
02:34:54.0141 0x23f0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
02:34:54.0152 0x23f0 HidBth - ok
02:34:54.0157 0x23f0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
02:34:54.0168 0x23f0 HidIr - ok
02:34:54.0195 0x23f0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
02:34:54.0220 0x23f0 hidserv - ok
02:34:54.0256 0x23f0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
02:34:54.0264 0x23f0 HidUsb - ok
02:34:54.0305 0x23f0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:34:54.0330 0x23f0 hkmsvc - ok
02:34:54.0380 0x23f0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:34:54.0392 0x23f0 HomeGroupListener - ok
02:34:54.0434 0x23f0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:34:54.0446 0x23f0 HomeGroupProvider - ok
02:34:54.0464 0x23f0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
02:34:54.0473 0x23f0 HpSAMD - ok
02:34:54.0525 0x23f0 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:34:54.0547 0x23f0 HTTP - ok
02:34:54.0588 0x23f0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
02:34:54.0595 0x23f0 hwpolicy - ok
02:34:54.0633 0x23f0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
02:34:54.0642 0x23f0 i8042prt - ok
02:34:54.0683 0x23f0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
02:34:54.0697 0x23f0 iaStorV - ok
02:34:54.0798 0x23f0 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
02:34:54.0802 0x23f0 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
02:34:54.0802 0x23f0 Detect skipped due to KSN trusted
02:34:54.0802 0x23f0 IDriverT - ok
02:34:54.0887 0x23f0 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
02:34:54.0911 0x23f0 idsvc - ok
02:34:54.0916 0x23f0 IEEtwCollectorService - ok
02:34:54.0959 0x23f0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
02:34:54.0966 0x23f0 iirsp - ok
02:34:55.0056 0x23f0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
02:34:55.0080 0x23f0 IKEEXT - ok
02:34:55.0218 0x23f0 [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
02:34:55.0306 0x23f0 IntcAzAudAddService - ok
02:34:55.0345 0x23f0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
02:34:55.0352 0x23f0 intelide - ok
02:34:55.0363 0x23f0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
02:34:55.0372 0x23f0 intelppm - ok
02:34:55.0395 0x23f0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
02:34:55.0422 0x23f0 IPBusEnum - ok
02:34:55.0462 0x23f0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:34:55.0485 0x23f0 IpFilterDriver - ok
02:34:55.0529 0x23f0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
02:34:55.0547 0x23f0 iphlpsvc - ok
02:34:55.0589 0x23f0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
02:34:55.0598 0x23f0 IPMIDRV - ok
02:34:55.0616 0x23f0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
02:34:55.0641 0x23f0 IPNAT - ok
02:34:55.0699 0x23f0 [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
02:34:55.0716 0x23f0 iPod Service - ok
02:34:55.0732 0x23f0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:34:55.0742 0x23f0 IRENUM - ok
02:34:55.0777 0x23f0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
02:34:55.0785 0x23f0 isapnp - ok
02:34:55.0853 0x23f0 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
02:34:55.0865 0x23f0 iScsiPrt - ok
02:34:55.0899 0x23f0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
02:34:55.0908 0x23f0 kbdclass - ok
02:34:55.0948 0x23f0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
02:34:55.0956 0x23f0 kbdhid - ok
02:34:55.0967 0x23f0 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] KeyIso C:\Windows\system32\lsass.exe
02:34:55.0975 0x23f0 KeyIso - ok
02:34:56.0013 0x23f0 [ A405647429DE231CD954D93F792CFBA2, EDE6095A20FE10EB26B3018457A44807A120508E6C514F2EAC12F5BA1F74841E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:34:56.0021 0x23f0 KSecDD - ok
02:34:56.0061 0x23f0 [ E4DC0909B5EACB5BF50F6252095BCFF2, 18779648B7FD9D3DFFD8F314E2197962DF98884CC9F025BC5D884984C1C0759D ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
02:34:56.0071 0x23f0 KSecPkg - ok
02:34:56.0083 0x23f0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
02:34:56.0107 0x23f0 ksthunk - ok
02:34:56.0138 0x23f0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
02:34:56.0171 0x23f0 KtmRm - ok
02:34:56.0209 0x23f0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
02:34:56.0237 0x23f0 LanmanServer - ok
02:34:56.0276 0x23f0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:34:56.0302 0x23f0 LanmanWorkstation - ok
02:34:56.0334 0x23f0 [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
02:34:56.0340 0x23f0 LGBusEnum - ok
02:34:56.0374 0x23f0 [ F7205E939F50B1C8D16F895916BE6756, 914326BAF54691AE880F6A3817B277F027F32AD7EF507A83F9A60DCA02901EDA ] LGSHidFilt C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
02:34:56.0381 0x23f0 LGSHidFilt - ok
02:34:56.0414 0x23f0 [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
02:34:56.0420 0x23f0 LGVirHid - ok
02:34:56.0457 0x23f0 [ C7D21310EA0A644AA6394DE1E46E3D31, 597F27A2696F945FD6388CA62D5EE98E44694F477F57EF8A68C2151B2276E838 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
02:34:56.0465 0x23f0 libusb0 - ok
02:34:56.0484 0x23f0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:34:56.0510 0x23f0 lltdio - ok
02:34:56.0541 0x23f0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:34:56.0572 0x23f0 lltdsvc - ok
02:34:56.0590 0x23f0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
02:34:56.0615 0x23f0 lmhosts - ok
02:34:56.0641 0x23f0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
02:34:56.0651 0x23f0 LSI_FC - ok
02:34:56.0657 0x23f0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
02:34:56.0666 0x23f0 LSI_SAS - ok
02:34:56.0676 0x23f0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
02:34:56.0685 0x23f0 LSI_SAS2 - ok
02:34:56.0690 0x23f0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
02:34:56.0700 0x23f0 LSI_SCSI - ok
02:34:56.0717 0x23f0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
02:34:56.0742 0x23f0 luafv - ok
02:34:56.0752 0x23f0 [ 4A503882318BB2F59218D401614E6AF6, 678FDE29EAE20353E780F53CFB9E79EA8B43E1E8BAC77890C178918DC5CCBA0E ] lvpepf64 C:\Windows\system32\DRIVERS\lv302a64.sys
02:34:56.0758 0x23f0 lvpepf64 - ok
02:34:56.0779 0x23f0 [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
02:34:56.0786 0x23f0 LVPr2M64 - ok
02:34:56.0789 0x23f0 [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
02:34:56.0795 0x23f0 LVPr2Mon - ok
02:34:56.0840 0x23f0 [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
02:34:56.0849 0x23f0 LVPrcS64 - ok
02:34:56.0919 0x23f0 [ 125AE13C293889001B8456CF3EB04A40, EB4B7135691935A9AC515099ED8C2767BC02308068AB9BEB2869B6E841268848 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
02:34:56.0931 0x23f0 LVRS64 - ok
02:34:56.0940 0x23f0 [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
02:34:56.0946 0x23f0 LVUSBS64 - ok
02:34:57.0108 0x23f0 [ 644E919936A8017B5F205E7FE7EDD19F, AE0BE09DF7192B2E8504DA8D65928C59C62635E0C8D08C6A4EB2A15D512E3E52 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
02:34:57.0205 0x23f0 LVUVC64 - ok
02:34:57.0240 0x23f0 [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
02:34:57.0248 0x23f0 ManyCam - ok
02:34:57.0283 0x23f0 [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
02:34:57.0291 0x23f0 mcaudrv_simple - ok
02:34:57.0371 0x23f0 [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
02:34:57.0382 0x23f0 McComponentHostService - ok
02:34:57.0419 0x23f0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
02:34:57.0429 0x23f0 Mcx2Svc - ok
02:34:57.0442 0x23f0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
02:34:57.0450 0x23f0 megasas - ok
02:34:57.0468 0x23f0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
02:34:57.0480 0x23f0 MegaSR - ok
02:34:57.0547 0x23f0 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
02:34:57.0554 0x23f0 Microsoft Office Groove Audit Service - ok
02:34:57.0582 0x23f0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
02:34:57.0606 0x23f0 MMCSS - ok
02:34:57.0618 0x23f0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
02:34:57.0641 0x23f0 Modem - ok
02:34:57.0652 0x23f0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
02:34:57.0661 0x23f0 monitor - ok
02:34:57.0674 0x23f0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
02:34:57.0682 0x23f0 mouclass - ok
02:34:57.0686 0x23f0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
02:34:57.0695 0x23f0 mouhid - ok
02:34:57.0736 0x23f0 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
02:34:57.0746 0x23f0 mountmgr - ok
02:34:57.0798 0x23f0 [ 6215DA3AD492CFBEBEE2ADBED0A6CC22, 07B290B58EF722825D50AF97E10B7098A2118B3F335E1FFF8F9E5E9AF7A0A6CE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
02:34:57.0808 0x23f0 MozillaMaintenance - ok
02:34:57.0843 0x23f0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
02:34:57.0853 0x23f0 mpio - ok
02:34:57.0867 0x23f0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:34:57.0891 0x23f0 mpsdrv - ok
02:34:57.0952 0x23f0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
02:34:57.0990 0x23f0 MpsSvc - ok
02:34:58.0034 0x23f0 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:34:58.0043 0x23f0 MRxDAV - ok
02:34:58.0078 0x23f0 [ 43E1F4B0EFDC244D2A83995CCD7846F7, B8FB3CB6C736E20399AF3164197B14E977DDEC8FD164564501A328A8A3A30267 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:34:58.0088 0x23f0 mrxsmb - ok
02:34:58.0165 0x23f0 [ 62CEA59FF56B66154E08BD51D87392C2, 5DC63583E417659139FACD2365C2F8F3C9867E331F7374BD4F6C6E2386B5F746 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:34:58.0178 0x23f0 mrxsmb10 - ok
02:34:58.0194 0x23f0 [ 7D65B5E9573A26C204AA547457DBF544, CE88A733D031DEDBA6ADADB7D9911B3D151A2DDB566A65E0C9E1F07B1A4364AF ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:34:58.0204 0x23f0 mrxsmb20 - ok
02:34:58.0243 0x23f0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
02:34:58.0251 0x23f0 msahci - ok
02:34:58.0263 0x23f0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
02:34:58.0273 0x23f0 msdsm - ok
02:34:58.0293 0x23f0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
02:34:58.0304 0x23f0 MSDTC - ok
02:34:58.0321 0x23f0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:34:58.0344 0x23f0 Msfs - ok
02:34:58.0350 0x23f0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
02:34:58.0373 0x23f0 mshidkmdf - ok
02:34:58.0401 0x23f0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
02:34:58.0409 0x23f0 msisadrv - ok
02:34:58.0435 0x23f0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:34:58.0461 0x23f0 MSiSCSI - ok
02:34:58.0465 0x23f0 msiserver - ok
02:34:58.0475 0x23f0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:34:58.0498 0x23f0 MSKSSRV - ok
02:34:58.0501 0x23f0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:34:58.0524 0x23f0 MSPCLOCK - ok
02:34:58.0572 0x23f0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:34:58.0595 0x23f0 MSPQM - ok
02:34:58.0658 0x23f0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:34:58.0672 0x23f0 MsRPC - ok
02:34:58.0708 0x23f0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
02:34:58.0716 0x23f0 mssmbios - ok
02:34:58.0745 0x23f0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:34:58.0771 0x23f0 MSTEE - ok
02:34:58.0784 0x23f0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
02:34:58.0793 0x23f0 MTConfig - ok
02:34:58.0804 0x23f0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
02:34:58.0812 0x23f0 Mup - ok
02:34:58.0868 0x23f0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
02:34:58.0899 0x23f0 napagent - ok
02:34:58.0929 0x23f0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:34:58.0945 0x23f0 NativeWifiP - ok
02:34:59.0003 0x23f0 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
02:34:59.0028 0x23f0 NDIS - ok
02:34:59.0041 0x23f0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
02:34:59.0065 0x23f0 NdisCap - ok
02:34:59.0075 0x23f0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:34:59.0099 0x23f0 NdisTapi - ok
02:34:59.0140 0x23f0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:34:59.0163 0x23f0 Ndisuio - ok
02:34:59.0206 0x23f0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:34:59.0232 0x23f0 NdisWan - ok
02:34:59.0270 0x23f0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:34:59.0294 0x23f0 NDProxy - ok
02:34:59.0331 0x23f0 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
02:34:59.0339 0x23f0 Netaapl - ok
02:34:59.0344 0x23f0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:34:59.0368 0x23f0 NetBIOS - ok
02:34:59.0410 0x23f0 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
02:34:59.0437 0x23f0 NetBT - ok
02:34:59.0450 0x23f0 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] Netlogon C:\Windows\system32\lsass.exe
02:34:59.0459 0x23f0 Netlogon - ok
02:34:59.0480 0x23f0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
02:34:59.0510 0x23f0 Netman - ok
02:34:59.0545 0x23f0 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:34:59.0558 0x23f0 NetMsmqActivator - ok
02:34:59.0571 0x23f0 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:34:59.0583 0x23f0 NetPipeActivator - ok
02:34:59.0608 0x23f0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
02:34:59.0641 0x23f0 netprofm - ok
02:34:59.0678 0x23f0 [ B72BB9496A126FCFC7FC5945DED9B411, FA5CC4E93761FB2B59B9B34C699B1486560BDB39280AB1125DE42DB7C4BE303A ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
02:34:59.0699 0x23f0 netr28x - ok
02:34:59.0706 0x23f0 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:34:59.0718 0x23f0 NetTcpActivator - ok
02:34:59.0723 0x23f0 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:34:59.0735 0x23f0 NetTcpPortSharing - ok
02:34:59.0747 0x23f0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
02:34:59.0755 0x23f0 nfrd960 - ok
02:34:59.0798 0x23f0 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
02:34:59.0811 0x23f0 NlaSvc - ok
02:34:59.0816 0x23f0 nlsX86cc - ok
02:34:59.0820 0x23f0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:34:59.0845 0x23f0 Npfs - ok
02:34:59.0933 0x23f0 [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo C:\Windows\sysWOW64\drivers\npf_devolo.sys
02:34:59.0939 0x23f0 NPF_devolo - ok
02:34:59.0961 0x23f0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
02:34:59.0985 0x23f0 nsi - ok
02:34:59.0991 0x23f0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:35:00.0015 0x23f0 nsiproxy - ok
02:35:00.0093 0x23f0 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:35:00.0131 0x23f0 Ntfs - ok
02:35:00.0146 0x23f0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
02:35:00.0169 0x23f0 Null - ok
02:35:00.0543 0x23f0 [ E71E299FF15390E585BACF2C18F55078, 7A51D989DA55349B1761839DEAFD593B6E6F88C433B132E7B027467E050FBA67 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
02:35:00.0786 0x23f0 nvlddmkm - ok
02:35:00.0904 0x23f0 [ C50CD479FD1BB886244E2663DFFBCF6A, CCFB60425E56A12C097EC05A9E5549B4F4A10379818ABC64945487C16F882E3D ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
02:35:00.0941 0x23f0 NvNetworkService - ok
02:35:00.0978 0x23f0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:35:00.0987 0x23f0 nvraid - ok
02:35:01.0008 0x23f0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:35:01.0018 0x23f0 nvstor - ok
02:35:01.0072 0x23f0 [ AD7A2F3AF147B2CF302EBF7C1E01E027, B8DAAE7FE4B13C9CA3F1DEE7C98F5CA49D4D1678C82C51D6801210838319BAE5 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
02:35:01.0079 0x23f0 NvStreamKms - ok
02:35:01.0095 0x23f0 NvStreamSvc - ok
02:35:01.0140 0x23f0 [ 415695F5A54E91E869EEBFEA261361A6, 1829C15E07D902686171C8A66EB03040A037CAC1E00E24BF598030D9DA795CEC ] nvsvc C:\Windows\system32\nvvsvc.exe
02:35:01.0165 0x23f0 nvsvc - ok
02:35:01.0172 0x23f0 [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
02:35:01.0180 0x23f0 nvvad_WaveExtensible - ok
02:35:01.0214 0x23f0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
02:35:01.0223 0x23f0 nv_agp - ok
02:35:01.0300 0x23f0 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
02:35:01.0314 0x23f0 odserv - ok
02:35:01.0354 0x23f0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
02:35:01.0362 0x23f0 ohci1394 - ok
02:35:01.0392 0x23f0 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:35:01.0400 0x23f0 ose - ok
02:35:01.0434 0x23f0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
02:35:01.0449 0x23f0 p2pimsvc - ok
02:35:01.0480 0x23f0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
02:35:01.0496 0x23f0 p2psvc - ok
02:35:01.0602 0x23f0 [ F7BAC457D6AE2F7E18FA69C8180A7843, 19C1B162FD17A0D5441183C331BF3020D6EF00DAFFBF0464C317BA208BFD2B2A ] PaceLicenseDServices C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
02:35:01.0663 0x23f0 PaceLicenseDServices - detected UnsignedFile.Multi.Generic ( 1 )
02:35:01.0663 0x23f0 Detect skipped due to KSN trusted
02:35:01.0664 0x23f0 PaceLicenseDServices - ok
02:35:01.0690 0x23f0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
02:35:01.0699 0x23f0 Parport - ok
02:35:01.0738 0x23f0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:35:01.0747 0x23f0 partmgr - ok
02:35:01.0787 0x23f0 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
02:35:01.0798 0x23f0 PcaSvc - ok
02:35:01.0841 0x23f0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
02:35:01.0851 0x23f0 pci - ok
02:35:01.0890 0x23f0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
02:35:01.0898 0x23f0 pciide - ok
02:35:01.0917 0x23f0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
02:35:01.0928 0x23f0 pcmcia - ok
02:35:01.0943 0x23f0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
02:35:01.0950 0x23f0 pcw - ok
02:35:02.0002 0x23f0 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:35:02.0022 0x23f0 PEAUTH - ok
02:35:02.0068 0x23f0 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
02:35:02.0101 0x23f0 PeerDistSvc - ok
02:35:02.0127 0x23f0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
02:35:02.0136 0x23f0 PerfHost - ok
02:35:02.0228 0x23f0 [ AE0B94363DA0F60D42B9D05B352F61ED, 284EA0123798BDBBAA93F912AD45B3D3F1F662FDDA5C73C0AC0D76AC2F9033C0 ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
02:35:02.0286 0x23f0 PID_PEPI - ok
02:35:02.0362 0x23f0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
02:35:02.0411 0x23f0 pla - ok
02:35:02.0459 0x23f0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:35:02.0474 0x23f0 PlugPlay - ok
02:35:02.0479 0x23f0 PnkBstrA - ok
02:35:02.0485 0x23f0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
02:35:02.0493 0x23f0 PNRPAutoReg - ok
02:35:02.0509 0x23f0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
02:35:02.0523 0x23f0 PNRPsvc - ok
02:35:02.0579 0x23f0 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:35:02.0611 0x23f0 PolicyAgent - ok
02:35:02.0634 0x23f0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
02:35:02.0662 0x23f0 Power - ok
02:35:02.0697 0x23f0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:35:02.0721 0x23f0 PptpMiniport - ok
02:35:02.0741 0x23f0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
02:35:02.0749 0x23f0 Processor - ok
02:35:02.0791 0x23f0 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
02:35:02.0803 0x23f0 ProfSvc - ok
02:35:02.0817 0x23f0 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] ProtectedStorage C:\Windows\system32\lsass.exe
02:35:02.0825 0x23f0 ProtectedStorage - ok
02:35:02.0941 0x23f0 [ 77D05941A147C152CA088D7364D8944B, 1296DF0BAA4228C437C2691B1C5E533921A4A97305179D0E0CE1CA4CE1A318D3 ] PS3 Media Server C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
02:35:02.0953 0x23f0 PS3 Media Server - ok
02:35:02.0997 0x23f0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
02:35:03.0021 0x23f0 Psched - ok
02:35:03.0058 0x23f0 [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
02:35:03.0065 0x23f0 PxHlpa64 - ok
02:35:03.0120 0x23f0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
02:35:03.0155 0x23f0 ql2300 - ok
02:35:03.0173 0x23f0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
02:35:03.0183 0x23f0 ql40xx - ok
02:35:03.0204 0x23f0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
02:35:03.0219 0x23f0 QWAVE - ok
02:35:03.0229 0x23f0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:35:03.0240 0x23f0 QWAVEdrv - ok
02:35:03.0316 0x23f0 [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
02:35:03.0326 0x23f0 RapiMgr - ok
02:35:03.0341 0x23f0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:35:03.0364 0x23f0 RasAcd - ok
02:35:03.0392 0x23f0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
02:35:03.0416 0x23f0 RasAgileVpn - ok
02:35:03.0427 0x23f0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
02:35:03.0452 0x23f0 RasAuto - ok
02:35:03.0485 0x23f0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:35:03.0509 0x23f0 Rasl2tp - ok
02:35:03.0562 0x23f0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
02:35:03.0591 0x23f0 RasMan - ok
02:35:03.0601 0x23f0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:35:03.0626 0x23f0 RasPppoe - ok
02:35:03.0640 0x23f0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:35:03.0665 0x23f0 RasSstp - ok
02:35:03.0753 0x23f0 [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
02:35:03.0762 0x23f0 Razer Game Scanner Service - ok
02:35:03.0837 0x23f0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:35:03.0864 0x23f0 rdbss - ok
02:35:03.0879 0x23f0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
02:35:03.0888 0x23f0 rdpbus - ok
02:35:03.0891 0x23f0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
02:35:03.0915 0x23f0 RDPCDD - ok
02:35:03.0955 0x23f0 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
02:35:03.0965 0x23f0 RDPDR - ok
02:35:03.0969 0x23f0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
02:35:03.0992 0x23f0 RDPENCDD - ok
02:35:04.0006 0x23f0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
02:35:04.0029 0x23f0 RDPREFMP - ok
02:35:04.0069 0x23f0 [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
02:35:04.0076 0x23f0 RdpVideoMiniport - ok
02:35:04.0116 0x23f0 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
02:35:04.0127 0x23f0 RDPWD - ok
02:35:04.0167 0x23f0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
02:35:04.0178 0x23f0 rdyboost - ok
02:35:04.0195 0x23f0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
02:35:04.0220 0x23f0 RemoteAccess - ok
02:35:04.0235 0x23f0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:35:04.0262 0x23f0 RemoteRegistry - ok
02:35:04.0282 0x23f0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
02:35:04.0307 0x23f0 RpcEptMapper - ok
02:35:04.0317 0x23f0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
02:35:04.0326 0x23f0 RpcLocator - ok
02:35:04.0374 0x23f0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
02:35:04.0406 0x23f0 RpcSs - ok
02:35:04.0417 0x23f0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:35:04.0442 0x23f0 rspndr - ok
02:35:04.0474 0x23f0 [ 60EB8A87357CA5B088B422D1E55A2405, A4E8ACACB9EFB094D05EC24DFB65D969DBA14634EEB6B4DBEF500BDEA8D78DB5 ] rt61x64 C:\Windows\system32\DRIVERS\netr6164.sys
02:35:04.0488 0x23f0 rt61x64 - ok
02:35:04.0536 0x23f0 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
02:35:04.0550 0x23f0 RTL8167 - ok
02:35:04.0603 0x23f0 [ B3F36B4B3F192EA87DDC119F3A0B3E45, DE80502994ED9977AD64483385A0BC0C6060EA9E9C08645E72FBBCFE8B2358C7 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
02:35:04.0622 0x23f0 RTL8192su - ok
02:35:04.0656 0x23f0 [ 5FA5ED95D2B02E92B9BC269A6B0B5039, 9C7CAB795658EC965B350318A9F5FC4EEFD2086C0BD71BAC7DD8B4A4863F6AE7 ] rzjstk C:\Windows\system32\DRIVERS\rzjstk.sys
02:35:04.0662 0x23f0 rzjstk - ok
02:35:04.0703 0x23f0 [ D76C183CC06A1AF1F25377DA2C2FB324, 00188E5965764036A388CDD28A2A4F49B0EECFF8A4FE08E43E63F9D35801FF0B ] rzkeypadendpt C:\Windows\system32\DRIVERS\rzkeypadendpt.sys
02:35:04.0709 0x23f0 rzkeypadendpt - ok
02:35:04.0748 0x23f0 [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk C:\Windows\system32\drivers\rzpmgrk.sys
02:35:04.0754 0x23f0 rzpmgrk - ok
02:35:04.0791 0x23f0 [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk C:\Windows\system32\drivers\rzpnk.sys
02:35:04.0799 0x23f0 rzpnk - ok
02:35:04.0852 0x23f0 [ 77C5AB228FE307C55FEF0C575E218771, 73C9D4593DA694B2D52817F608E749296D9CC1C44906C97204595476B68AD50F ] rzudd C:\Windows\system32\DRIVERS\rzudd.sys
02:35:04.0861 0x23f0 rzudd - ok
02:35:04.0905 0x23f0 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
02:35:04.0912 0x23f0 s3cap - ok
02:35:04.0934 0x23f0 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] SamSs C:\Windows\system32\lsass.exe
02:35:04.0941 0x23f0 SamSs - ok
02:35:05.0003 0x23f0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
02:35:05.0012 0x23f0 sbp2port - ok
02:35:05.0067 0x23f0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:35:05.0094 0x23f0 SCardSvr - ok
02:35:05.0126 0x23f0 [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D, 64A07303E538A1EE439D4AAD0DEBBD6037219D37B884026701A06E59A729E9C9 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
02:35:05.0134 0x23f0 SCDEmu - ok
02:35:05.0173 0x23f0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
02:35:05.0195 0x23f0 scfilter - ok
02:35:05.0252 0x23f0 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
02:35:05.0280 0x23f0 Schedule - ok
02:35:05.0319 0x23f0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
02:35:05.0343 0x23f0 SCPolicySvc - ok
02:35:05.0378 0x23f0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
02:35:05.0389 0x23f0 SDRSVC - ok
02:35:05.0401 0x23f0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:35:05.0409 0x23f0 secdrv - ok
02:35:05.0452 0x23f0 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
02:35:05.0475 0x23f0 seclogon - ok
02:35:05.0494 0x23f0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
02:35:05.0519 0x23f0 SENS - ok
02:35:05.0530 0x23f0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
02:35:05.0538 0x23f0 SensrSvc - ok
02:35:05.0583 0x23f0 [ 84AC127242DD3CCDE02F9A4673214B1F, 87E229138AAF10951C153F0BEC9B46CB459FE80074E02DE1DA0BC0FA5A11F237 ] Sentinel64 C:\Windows\System32\Drivers\Sentinel64.sys
02:35:05.0591 0x23f0 Sentinel64 - ok
02:35:05.0600 0x23f0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
02:35:05.0608 0x23f0 Serenum - ok
02:35:05.0623 0x23f0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
02:35:05.0632 0x23f0 Serial - ok
02:35:05.0668 0x23f0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
02:35:05.0676 0x23f0 sermouse - ok
02:35:05.0720 0x23f0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
02:35:05.0745 0x23f0 SessionEnv - ok
02:35:05.0788 0x23f0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
02:35:05.0797 0x23f0 sffdisk - ok
02:35:05.0803 0x23f0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
02:35:05.0812 0x23f0 sffp_mmc - ok
02:35:05.0819 0x23f0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
02:35:05.0828 0x23f0 sffp_sd - ok
02:35:05.0848 0x23f0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
02:35:05.0855 0x23f0 sfloppy - ok
02:35:05.0881 0x23f0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
02:35:05.0911 0x23f0 SharedAccess - ok
02:35:05.0958 0x23f0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:35:05.0988 0x23f0 ShellHWDetection - ok
02:35:06.0006 0x23f0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
02:35:06.0014 0x23f0 SiSRaid2 - ok
02:35:06.0032 0x23f0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
02:35:06.0040 0x23f0 SiSRaid4 - ok
02:35:06.0113 0x23f0 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
02:35:06.0128 0x23f0 SkypeUpdate - ok
02:35:06.0148 0x23f0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
02:35:06.0172 0x23f0 Smb - ok
02:35:06.0191 0x23f0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:35:06.0200 0x23f0 SNMPTRAP - ok
02:35:06.0209 0x23f0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
02:35:06.0217 0x23f0 spldr - ok
02:35:06.0268 0x23f0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
02:35:06.0286 0x23f0 Spooler - ok
02:35:06.0410 0x23f0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
02:35:06.0498 0x23f0 sppsvc - ok
02:35:06.0526 0x23f0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
02:35:06.0551 0x23f0 sppuinotify - ok
02:35:06.0599 0x23f0 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:35:06.0614 0x23f0 srv - ok
02:35:06.0663 0x23f0 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:35:06.0677 0x23f0 srv2 - ok
02:35:06.0694 0x23f0 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:35:06.0704 0x23f0 srvnet - ok
02:35:06.0718 0x23f0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:35:06.0745 0x23f0 SSDPSRV - ok
02:35:06.0755 0x23f0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:35:06.0780 0x23f0 SstpSvc - ok
02:35:06.0816 0x23f0 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
02:35:06.0826 0x23f0 ssudmdm - ok
02:35:06.0876 0x23f0 [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
02:35:06.0897 0x23f0 Steam Client Service - ok
02:35:06.0945 0x23f0 [ A9D26626BEADF5A0641BF6B5095EF309, EABC711466FECA20058D7E24CA2593059E1F113B38A2E7574822E48BFBBF4146 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
02:35:06.0959 0x23f0 Stereo Service - ok
02:35:06.0973 0x23f0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
02:35:06.0981 0x23f0 stexstor - ok
02:35:07.0016 0x23f0 [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\drivers\serscan.sys
02:35:07.0024 0x23f0 StillCam - ok
02:35:07.0078 0x23f0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
02:35:07.0100 0x23f0 stisvc - ok
02:35:07.0134 0x23f0 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
02:35:07.0142 0x23f0 storflt - ok
02:35:07.0152 0x23f0 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
02:35:07.0160 0x23f0 storvsc - ok
02:35:07.0201 0x23f0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
02:35:07.0208 0x23f0 swenum - ok
02:35:07.0319 0x23f0 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
02:35:07.0335 0x23f0 SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
02:35:07.0335 0x23f0 Detect skipped due to KSN trusted
02:35:07.0335 0x23f0 SwitchBoard - ok
02:35:07.0358 0x23f0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
02:35:07.0392 0x23f0 swprv - ok
02:35:07.0396 0x23f0 Synth3dVsc - ok
02:35:07.0479 0x23f0 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
02:35:07.0519 0x23f0 SysMain - ok
02:35:07.0556 0x23f0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:35:07.0569 0x23f0 TabletInputService - ok
02:35:07.0776 0x23f0 [ 34D92E8CB04DCAEEAE054FEDE7526282, 73F38FAB499EBA5344251F9A4B1883D326AB7F55022B81C596EAA664906482F1 ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
02:35:07.0903 0x23f0 TabletServiceWacom - ok
02:35:07.0950 0x23f0 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
02:35:07.0959 0x23f0 tap0901t - ok
02:35:08.0005 0x23f0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
02:35:08.0034 0x23f0 TapiSrv - ok
02:35:08.0045 0x23f0 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
02:35:08.0071 0x23f0 TBS - ok
02:35:08.0151 0x23f0 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:35:08.0193 0x23f0 Tcpip - ok
02:35:08.0251 0x23f0 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
02:35:08.0293 0x23f0 TCPIP6 - ok
02:35:08.0337 0x23f0 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:35:08.0345 0x23f0 tcpipreg - ok
02:35:08.0361 0x23f0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
02:35:08.0369 0x23f0 TDPIPE - ok
02:35:08.0405 0x23f0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
02:35:08.0412 0x23f0 TDTCP - ok
02:35:08.0455 0x23f0 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:35:08.0464 0x23f0 tdx - ok
02:35:08.0655 0x23f0 [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9 C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
02:35:08.0751 0x23f0 TeamViewer9 - ok
02:35:08.0771 0x23f0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
02:35:08.0779 0x23f0 TermDD - ok
02:35:08.0844 0x23f0 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
02:35:08.0865 0x23f0 TermService - ok
02:35:08.0900 0x23f0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
02:35:08.0912 0x23f0 Themes - ok
02:35:08.0965 0x23f0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
02:35:08.0990 0x23f0 THREADORDER - ok
02:35:09.0019 0x23f0 [ 8DD33A57339ADAE34CDB12994ACBC50F, 58FD3AC48E3EE6BECCED4E0227C73D6783BF552A3A0B5FD43F091580108E1A0D ] Tpkd C:\Windows\system32\drivers\Tpkd.sys
02:35:09.0027 0x23f0 Tpkd - ok
02:35:09.0076 0x23f0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
02:35:09.0102 0x23f0 TrkWks - ok
02:35:09.0157 0x23f0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:35:09.0183 0x23f0 TrustedInstaller - ok
02:35:09.0222 0x23f0 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
02:35:09.0230 0x23f0 tssecsrv - ok
02:35:09.0270 0x23f0 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
02:35:09.0278 0x23f0 TsUsbFlt - ok
02:35:09.0281 0x23f0 tsusbhub - ok
02:35:09.0321 0x23f0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:35:09.0346 0x23f0 tunnel - ok
02:35:09.0413 0x23f0 [ A96BE6F92EDE53BA5997B2AE7367EACD, D2CE331F0BBA15C19A66BEF91FBDA96536F656C89DC9FE1A2F88D0C368986BB2 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
02:35:09.0431 0x23f0 TunngleService - ok
02:35:09.0448 0x23f0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
02:35:09.0456 0x23f0 uagp35 - ok
02:35:09.0512 0x23f0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:35:09.0540 0x23f0 udfs - ok
02:35:09.0555 0x23f0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:35:09.0565 0x23f0 UI0Detect - ok
02:35:09.0573 0x23f0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
02:35:09.0581 0x23f0 uliagpkx - ok
02:35:09.0620 0x23f0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
02:35:09.0628 0x23f0 umbus - ok
02:35:09.0643 0x23f0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
02:35:09.0651 0x23f0 UmPass - ok
02:35:09.0687 0x23f0 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
02:35:09.0699 0x23f0 UmRdpService - ok
02:35:09.0761 0x23f0 [ AEBE8F338432F9DE5AE0CAE4D4BAED76, A11DE1BAEF6E0D30B8801C0AEC589F0DA6FEC5E010BD6A18584D96E0AF9243B8 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
02:35:09.0775 0x23f0 UMVPFSrv - ok
02:35:09.0802 0x23f0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
02:35:09.0833 0x23f0 upnphost - ok
02:35:09.0875 0x23f0 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
02:35:09.0883 0x23f0 USBAAPL64 - ok
02:35:09.0925 0x23f0 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
02:35:09.0934 0x23f0 usbaudio - ok
02:35:09.0970 0x23f0 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
02:35:09.0978 0x23f0 usbccgp - ok
02:35:10.0020 0x23f0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
02:35:10.0029 0x23f0 usbcir - ok
02:35:10.0061 0x23f0 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
02:35:10.0069 0x23f0 usbehci - ok
02:35:10.0086 0x23f0 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
02:35:10.0099 0x23f0 usbhub - ok
02:35:10.0107 0x23f0 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
02:35:10.0115 0x23f0 usbohci - ok
02:35:10.0129 0x23f0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
02:35:10.0138 0x23f0 usbprint - ok
02:35:10.0174 0x23f0 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:35:10.0182 0x23f0 USBSTOR - ok
02:35:10.0197 0x23f0 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
02:35:10.0204 0x23f0 usbuhci - ok
02:35:10.0240 0x23f0 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
02:35:10.0250 0x23f0 usbvideo - ok
02:35:10.0266 0x23f0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
02:35:10.0291 0x23f0 UxSms - ok
02:35:10.0312 0x23f0 [ 18436F7006443FB76145B3D35162A810, 1670A711D808AEA66A63443CE752EB771D4BF34CA838B0040849A436FFF77E69 ] VaneFltr C:\Windows\system32\drivers\Lachesis.sys
02:35:10.0318 0x23f0 VaneFltr - ok
02:35:10.0333 0x23f0 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] VaultSvc C:\Windows\system32\lsass.exe
02:35:10.0341 0x23f0 VaultSvc - ok
02:35:10.0377 0x23f0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
02:35:10.0385 0x23f0 vdrvroot - ok
02:35:10.0434 0x23f0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
02:35:10.0468 0x23f0 vds - ok
02:35:10.0481 0x23f0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
02:35:10.0490 0x23f0 vga - ok
02:35:10.0507 0x23f0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
02:35:10.0531 0x23f0 VgaSave - ok
02:35:10.0535 0x23f0 VGPU - ok
02:35:10.0574 0x23f0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
02:35:10.0586 0x23f0 vhdmp - ok
02:35:10.0622 0x23f0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
02:35:10.0630 0x23f0 viaide - ok
02:35:10.0665 0x23f0 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
02:35:10.0677 0x23f0 vmbus - ok
02:35:10.0694 0x23f0 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
02:35:10.0701 0x23f0 VMBusHID - ok
02:35:10.0740 0x23f0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
02:35:10.0749 0x23f0 volmgr - ok
02:35:10.0796 0x23f0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:35:10.0810 0x23f0 volmgrx - ok
02:35:10.0825 0x23f0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
02:35:10.0838 0x23f0 volsnap - ok
02:35:10.0863 0x23f0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
02:35:10.0873 0x23f0 vsmraid - ok
02:35:10.0943 0x23f0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
02:35:10.0995 0x23f0 VSS - ok
02:35:11.0012 0x23f0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
02:35:11.0021 0x23f0 vwifibus - ok
02:35:11.0034 0x23f0 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
02:35:11.0045 0x23f0 vwififlt - ok
02:35:11.0061 0x23f0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
02:35:11.0092 0x23f0 W32Time - ok
02:35:11.0136 0x23f0 [ FE75777289278A4941FE6139E82B3BD9, 4B0F3117C7D905240DB54EEE376404757258051CC5F8F312CAF748E1811368C6 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
02:35:11.0142 0x23f0 wacmoumonitor - ok
02:35:11.0175 0x23f0 [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
02:35:11.0181 0x23f0 wacommousefilter - ok
02:35:11.0191 0x23f0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
02:35:11.0199 0x23f0 WacomPen - ok
02:35:11.0231 0x23f0 [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys
02:35:11.0236 0x23f0 wacomvhid - ok
02:35:11.0249 0x23f0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
02:35:11.0273 0x23f0 WANARP - ok
02:35:11.0277 0x23f0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:35:11.0300 0x23f0 Wanarpv6 - ok
02:35:11.0377 0x23f0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
02:35:11.0413 0x23f0 wbengine - ok
02:35:11.0429 0x23f0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
02:35:11.0444 0x23f0 WbioSrvc - ok
02:35:11.0489 0x23f0 [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
02:35:11.0504 0x23f0 WcesComm - ok
02:35:11.0566 0x23f0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:35:11.0584 0x23f0 wcncsvc - ok
02:35:11.0598 0x23f0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:35:11.0607 0x23f0 WcsPlugInService - ok
02:35:11.0621 0x23f0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
02:35:11.0628 0x23f0 Wd - ok
02:35:11.0686 0x23f0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:35:11.0709 0x23f0 Wdf01000 - ok
02:35:11.0720 0x23f0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:35:11.0733 0x23f0 WdiServiceHost - ok
02:35:11.0737 0x23f0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:35:11.0750 0x23f0 WdiSystemHost - ok
02:35:11.0788 0x23f0 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
02:35:11.0800 0x23f0 WebClient - ok
02:35:11.0812 0x23f0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:35:11.0841 0x23f0 Wecsvc - ok
02:35:11.0854 0x23f0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:35:11.0880 0x23f0 wercplsupport - ok
02:35:11.0890 0x23f0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
02:35:11.0915 0x23f0 WerSvc - ok
02:35:11.0928 0x23f0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
02:35:11.0951 0x23f0 WfpLwf - ok
02:35:11.0961 0x23f0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
02:35:11.0968 0x23f0 WIMMount - ok
02:35:11.0987 0x23f0 WinDefend - ok
02:35:11.0992 0x23f0 WinHttpAutoProxySvc - ok
02:35:12.0029 0x23f0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:35:12.0057 0x23f0 Winmgmt - ok
02:35:12.0145 0x23f0 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
02:35:12.0191 0x23f0 WinRM - ok
02:35:12.0234 0x23f0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
02:35:12.0244 0x23f0 WinUsb - ok
02:35:12.0279 0x23f0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
02:35:12.0307 0x23f0 Wlansvc - ok
02:35:12.0335 0x23f0 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
02:35:12.0341 0x23f0 wlcrasvc - ok
02:35:12.0461 0x23f0 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
02:35:12.0510 0x23f0 wlidsvc - ok
02:35:12.0557 0x23f0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
02:35:12.0566 0x23f0 WmiAcpi - ok
02:35:12.0585 0x23f0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:35:12.0597 0x23f0 wmiApSrv - ok
02:35:12.0600 0x23f0 WMPNetworkSvc - ok
02:35:12.0615 0x23f0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
02:35:12.0623 0x23f0 WPCSvc - ok
02:35:12.0659 0x23f0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:35:12.0670 0x23f0 WPDBusEnum - ok
02:35:12.0674 0x23f0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:35:12.0697 0x23f0 ws2ifsl - ok
02:35:12.0709 0x23f0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
02:35:12.0722 0x23f0 wscsvc - ok
02:35:12.0753 0x23f0 [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
02:35:12.0762 0x23f0 WSDPrintDevice - ok
02:35:12.0766 0x23f0 WSearch - ok
02:35:12.0868 0x23f0 [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv C:\Windows\system32\wuaueng.dll
02:35:12.0927 0x23f0 wuauserv - ok
02:35:12.0964 0x23f0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
02:35:12.0973 0x23f0 WudfPf - ok
02:35:12.0990 0x23f0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
02:35:13.0001 0x23f0 WUDFRd - ok
02:35:13.0040 0x23f0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:35:13.0049 0x23f0 wudfsvc - ok
02:35:13.0088 0x23f0 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
02:35:13.0101 0x23f0 WwanSvc - ok
02:35:13.0138 0x23f0 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
02:35:13.0146 0x23f0 xusb21 - ok
02:35:13.0165 0x23f0 ================ Scan global ===============================
02:35:13.0202 0x23f0 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
02:35:13.0236 0x23f0 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
02:35:13.0253 0x23f0 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
02:35:13.0274 0x23f0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
02:35:13.0310 0x23f0 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
02:35:13.0316 0x23f0 [ Global ] - ok
02:35:13.0317 0x23f0 ================ Scan MBR ==================================
02:35:13.0324 0x23f0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
02:35:13.0487 0x23f0 \Device\Harddisk1\DR1 - ok
02:35:13.0490 0x23f0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
02:35:13.0508 0x23f0 \Device\Harddisk0\DR0 - ok
02:35:13.0508 0x23f0 ================ Scan VBR ==================================
02:35:13.0510 0x23f0 [ CDB057F2BB39ED9D067F761AEC114D0F ] \Device\Harddisk1\DR1\Partition1
02:35:13.0512 0x23f0 \Device\Harddisk1\DR1\Partition1 - ok
02:35:13.0515 0x23f0 [ 1932210E82096A1056F7A312EBF08D66 ] \Device\Harddisk1\DR1\Partition2
02:35:13.0517 0x23f0 \Device\Harddisk1\DR1\Partition2 - ok
02:35:13.0520 0x23f0 [ A087C0120C9361BE942045AE6FAFCA2A ] \Device\Harddisk0\DR0\Partition1
02:35:13.0522 0x23f0 \Device\Harddisk0\DR0\Partition1 - ok
02:35:13.0522 0x23f0 ================ Scan generic autorun ======================
02:35:13.0866 0x23f0 [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
02:35:14.0098 0x23f0 RtHDVCpl - ok
02:35:14.0329 0x23f0 [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
02:35:14.0346 0x23f0 AdobeAAMUpdater-1.0 - ok
02:35:14.0466 0x23f0 [ 5EA707336336DDFADE5FD3726CEA1523, 6136D88012140B3A43C7DC6CD0CBDB867BC6BA62D718269B73ED9F1B340F6768 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
02:35:14.0512 0x23f0 NvBackend - ok
02:35:14.0558 0x23f0 [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
02:35:14.0567 0x23f0 iTunesHelper - ok
02:35:14.0617 0x23f0 [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdcBase.exe
02:35:14.0635 0x23f0 Windows Mobile-based device management - ok
02:35:14.0742 0x23f0 [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
02:35:14.0748 0x23f0 HP Software Update - ok
02:35:14.0827 0x23f0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:35:14.0857 0x23f0 Sidebar - ok
02:35:14.0887 0x23f0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:35:14.0900 0x23f0 mctadmin - ok
02:35:14.0944 0x23f0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:35:14.0973 0x23f0 Sidebar - ok
02:35:14.0979 0x23f0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:35:14.0992 0x23f0 mctadmin - ok
02:35:15.0112 0x23f0 [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
02:35:15.0166 0x23f0 HP Officejet Pro 8600 (NET) - ok
02:35:15.0300 0x23f0 [ C10E5EF1B85DE5B79AC2815C9A677D1F, 33162556A7F41CF107480A788104DD28A0C73C4AFFB224124A6C474D9B47A4DD ] C:\Users\Jeremy J. Erb\AppData\Roaming\uTorrent\uTorrent.exe
02:35:15.0333 0x23f0 uTorrent - ok
02:35:15.0532 0x23f0 [ 7A2870C2A8283B3630BF7670D0362B94, A36AA6F2A78DF3E66ACA484E9E33D0CB01207FF52A0A8C006424493A5C489C48 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
02:35:15.0551 0x23f0 GoogleChromeAutoLaunch_90C1996279C19B2AA865F0F198BD9F08 - ok
02:35:15.0692 0x23f0 [ E17E53F297560C31631C4AC549385AE3, 7A5A6895D7DEF32B4CC7EF037E15CF5C4B01E28A3903F30686910C4AA89835A5 ] C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
02:35:15.0729 0x23f0 uTorrent - ok
02:35:15.0805 0x23f0 [ 8D80BFF016E907AAE76E5667E0A8F1E0, 63728CD5E6EEBCC90B5FF854B6ACB565B194E46B71CAF89FB992E65433DD20E0 ] C:\Program Files (x86)\Voobly\voobly.exe
02:35:15.0810 0x23f0 Voobly - detected UnsignedFile.Multi.Generic ( 1 )
02:35:15.0810 0x23f0 Voobly ( UnsignedFile.Multi.Generic ) - warning
02:35:16.0049 0x23f0 [ D192592FD0A99D9F360906D3F6DFBFF1, E0ED95A8AB4D26A40BF95B8DB2D968AD1FDB36B8C4DF2990185E0458B3948CA3 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
02:35:16.0091 0x23f0 WSHelperSetup.exe - ok
02:35:16.0245 0x23f0 [ E1473471169EC64C57B49F9C984DFB1A, 3E05B4AD77F5CE13B01B7E1FD460F9779FF9E7C9E6DEBD5225EC840D96D12AA1 ] C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe
02:35:16.0348 0x23f0 Logitech Vid - ok
02:35:16.0362 0x23f0 Win FW state via NFP2: enabled ( trusted )
02:35:16.0557 0x23f0 ============================================================
02:35:16.0557 0x23f0 Scan finished
02:35:16.0557 0x23f0 ============================================================
02:35:16.0564 0x2104 Detected object count: 2
02:35:16.0564 0x2104 Actual detected object count: 2
02:43:21.0605 0x2104 BEService ( UnsignedFile.Multi.Generic ) - skipped by user
02:43:21.0605 0x2104 BEService ( UnsignedFile.Multi.Generic ) - User select action: Skip
02:43:21.0606 0x2104 Voobly ( UnsignedFile.Multi.Generic ) - skipped by user
02:43:21.0606 0x2104 Voobly ( UnsignedFile.Multi.Generic ) - User select action: Skip
dann hab ich diese Softwares einst heruntergeladen um "Age of Empires II" online zu spielen. Vielen Dank für eure Hilfe ! |
|
24.11.2015, 10:30
| #6 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | .scr Datei ausversehen heruntergeladen. Hi, Zitat:
Das und alles andere etwaig vorhandene Crackzeugs muss verschwinden, bevor es hier weitergehen kann.  Lesestoff:Illegale Software: Cracks, Keygens und Co Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html Es geht weiter wenn du alles Illegale entfernt hast. Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________ --> .scr Datei ausversehen heruntergeladen. |
|
24.11.2015, 17:29
| #7 |
| | .scr Datei ausversehen heruntergeladen. Soll ich also die gesamte Creative Suite deinstallieren und die ursprüngliche Datei, welche den Crack durchführt (Keygen) löschen? Also ich hab auf vielerlei Seiten nachgelesen, dass wenn man die Datei nicht ausführt, keine Bedrohung bestehen sollte. Ich hab die Datei wirklich nicht geöffnet, sondern gleich aus dem Chrome-Download-Ordner gelöscht. Gibt es hier eine Sicherheitslücke? |
|
24.11.2015, 21:08
| #8 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™ | .scr Datei ausversehen heruntergeladen.Zitat:
Zitat:
Warum fragst du nach Sicherheitslücke? Begründung? Den anderen Schrott im FRST-Log hast du gesehen? (schau mal nach Zeilen mit ATTENTION am Ende)
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
25.11.2015, 01:45
| #9 |
| | .scr Datei ausversehen heruntergeladen. Ich hab die besagte Software deinstalliert und einen neuen Scan durchgeführt. FRST.txt: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-11-2015
Ran by Nerdy By Nerds (administrator) on MATRIX (25-11-2015 01:50:38)
Running from C:\Users\Nerdy By Nerds\Desktop
Loaded Profiles: Nerdy By Nerds (Available Profiles: Jeremy J. Erb & Nerdy By Nerds)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Tanuki Software, Ltd.) C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Oracle Corporation) C:\Program Files (x86)\PS3 Media Server\jre64\bin\java.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\calc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-06] (Apple Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-07-08] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [uTorrent] => C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Voobly] => C:\Program Files (x86)\Voobly\voobly.exe [159744 2015-01-19] (Voobly)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\MountPoints2: {5d4390e4-1303-11e1-8728-806e6f6e6963} - D:\setup\rsrc\Autorun.exe
AppInit_DLLs: C:\PROGRA~3\WinSpeed\WINSPE~1.DLL => C:\ProgramData\WinSpeed\WinSpeed_x64.dll [4513280 2013-12-26] ()
AppInit_DLLs-x32: c:\progra~2\contin~1\sprote~1.dll => No File
AppInit_DLLs-x32: c:\progra~3\winspeed\winspeed.dll => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
Startup: C:\Users\Jeremy J. Erb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-05-08]
ShortcutTarget: Curse.lnk -> C:\Users\Nerdy By Nerds\AppData\Roaming\Curse Client\Bin\Curse.exe (No File)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{20C2A4C4-DFF1-4232-9CFC-010DD5A40F60}: [DhcpNameServer] 91.138.126.128 91.138.1.128
Tcpip\..\Interfaces\{6E745053-D0A6-4597-BEDD-2F3537336362}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BA8B5644-3D53-487C-A063-F6BA6AAC75B7}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.simplespeedy.info/?l=1&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-04-13] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-13] (Oracle Corporation)
BHO-x32: Avira Savings Advisor BHO -> {A18A516C-AA41-46A9-92DB-60208917E442} -> C:\Program Files (x86)\avira\Internet Explorer\avira32.dll [2013-12-11] ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll [No File]
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [No File]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Extension: Greasemonkey - C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]
Chrome:
=======
CHR Profile: C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-29]
CHR Extension: (Google Drive) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Avira Sparberater) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojnmaaohncijldefpkpkkakjonfmgeb [2015-04-29] [UpdateUrl: hxxp://ciuvo.com/ciuvo/update?tag=avira&campaign=] <==== ATTENTION
CHR Extension: (Google-Suche) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Docs Offline) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-04-29]
CHR Extension: (Google Mail) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-29]
CHR HKLM-x32\...\Chrome\Extension: [cojnmaaohncijldefpkpkkakjonfmgeb] - C:\Program Files (x86)\avira\Chrome\avira-1.5.14.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [45056 2013-01-31] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3645432 2014-07-18] (devolo AG)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2010-11-22] (Nalpeiron Ltd.) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PaceLicenseDServices; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2932224 2011-07-09] (PACE Anti-Piracy, Inc.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-31] ()
R2 PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [384280 2012-11-27] (Tanuki Software, Ltd.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2014-11-04] (Tunngle.net GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R1 archlp; C:\Windows\SysWow64\drivers\archlp.sys [161792 2009-02-06] ()
S1 Aspi32; no ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-02-19] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ElgatoGC656Y; C:\Windows\System32\Drivers\ElgatoGC656.sys [94440 2014-07-07] (UB658)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-10-13] ()
S3 hcwhdpvr; C:\Windows\System32\DRIVERS\hcwhdpvr.sys [189952 2010-06-23] (Hauppauge, Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-02] (Logitech Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [52320 2013-08-07] (hxxp://libusb-win32.sourceforge.net)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [27816 2014-12-30] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [33448 2014-08-21] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [29952 2009-10-16] (Razer (Asia-Pacific) Pte Ltd)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-25 01:50 - 2015-11-25 01:50 - 00025690 _____ C:\Users\Nerdy By Nerds\Desktop\FRST.txt
2015-11-25 01:03 - 2015-11-25 01:03 - 00000588 _____ C:\Users\Nerdy By Nerds\Desktop\Attention einträge.txt
2015-11-25 00:55 - 2015-11-25 01:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\New folder (2)
2015-11-24 16:53 - 2015-11-24 16:53 - 00000302 _____ C:\Windows\PFRO.log
2015-11-24 16:53 - 2015-11-24 16:53 - 00000168 _____ C:\Windows\setupact.log
2015-11-24 16:53 - 2015-11-24 16:53 - 00000000 _____ C:\Windows\setuperr.log
2015-11-24 03:48 - 2015-11-24 03:48 - 00083577 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller 3.txt
2015-11-24 03:47 - 2015-11-24 03:48 - 00083625 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller 2.txt
2015-11-24 03:46 - 2015-11-24 03:48 - 00063335 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller.txt
2015-11-24 02:37 - 2015-11-25 01:50 - 00000000 ____D C:\FRST
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Desktop\FRST64.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
2015-11-23 22:43 - 2015-11-24 16:55 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\LocalLow\uTorrent
2015-11-17 19:09 - 2015-11-17 19:09 - 00046320 _____ C:\Users\Nerdy By Nerds\Desktop\test.mmmacro
2015-11-17 18:44 - 2015-11-17 18:44 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macro Recorder
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\Program Files (x86)\MacroRecorder
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Auto-Mouse-Clicker
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Mouse Clicker v4.0
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Program Files (x86)\Auto Mouse Clicker v4.0
2015-11-15 18:52 - 2015-11-15 18:52 - 00004544 _____ C:\Users\Nerdy By Nerds\Desktop\New Journal Document.jnt
2015-11-15 18:52 - 2015-11-15 18:52 - 00000000 _____ C:\Users\Nerdy By Nerds\Desktop\New Text Document.txt
2015-11-10 23:40 - 2015-11-10 23:40 - 05286088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-11-08 20:27 - 2015-11-12 18:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 16:00 - 2015-11-08 16:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Flavio Fotos
2015-11-06 18:51 - 2015-11-22 18:33 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Empire Rising
2015-11-06 18:01 - 2015-11-06 19:10 - 352186801 ____N C:\Users\Nerdy By Nerds\Desktop\MVI_1036.MOV
2015-11-05 00:10 - 2015-11-05 00:10 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-05 00:09 - 2015-11-05 00:09 - 00000000 ____D C:\Program Files (x86)\New folder
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-25 01:49 - 2015-01-05 00:33 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent
2015-11-25 01:49 - 2011-04-16 09:48 - 00000000 ____D C:\Program Files\Adobe
2015-11-25 01:49 - 2011-03-14 19:37 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-11-25 01:49 - 2011-03-14 19:28 - 00000000 ____D C:\ProgramData\Adobe
2015-11-25 01:40 - 2013-03-10 23:43 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-25 01:37 - 2014-11-06 19:19 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\vlc
2015-11-25 01:21 - 2014-11-06 17:54 - 00000000 ____D C:\Users\Nerdy By Nerds
2015-11-25 01:18 - 2011-05-23 00:15 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-25 01:16 - 2014-11-06 18:07 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Games
2015-11-25 01:14 - 2011-03-14 19:36 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-11-25 01:12 - 2014-02-14 16:12 - 00000322 _____ C:\Windows\Tasks\Funmoods.job
2015-11-25 01:10 - 2011-03-14 20:17 - 00000000 ____D C:\Users\Jeremy J. Erb\Adobe Flash Builder 4
2015-11-25 01:08 - 2011-02-13 12:20 - 00000000 ____D C:\Users\Jeremy J. Erb\AppData\Roaming\Adobe
2015-11-25 01:07 - 2014-11-08 17:23 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Skype
2015-11-25 00:54 - 2014-11-06 23:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\TS3Client
2015-11-24 23:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2015-11-24 23:27 - 2011-02-13 00:09 - 01339443 _____ C:\Windows\WindowsUpdate.log
2015-11-24 19:18 - 2011-05-23 00:15 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-24 17:10 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-24 17:10 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-24 16:54 - 2011-11-20 00:24 - 00000144 _____ C:\service.log
2015-11-24 16:53 - 2014-04-07 19:33 - 00000000 ____D C:\ProgramData\PMS
2015-11-24 16:53 - 2013-02-12 20:10 - 00000444 ____H C:\Windows\Tasks\schedule!1143840799.job
2015-11-24 16:53 - 2011-11-20 00:55 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2015-11-24 16:53 - 2011-02-13 13:06 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-11-24 16:53 - 2011-02-13 12:11 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-24 16:53 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-24 02:25 - 2011-03-26 02:54 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-20 20:40 - 2015-09-26 22:14 - 00157696 _____ C:\Windows\ERUNT.exe
2015-11-19 17:07 - 2013-08-10 12:16 - 00737390 _____ C:\Windows\system32\perfh00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00735432 _____ C:\Windows\system32\perfh013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00675688 _____ C:\Windows\system32\perfh00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00473428 _____ C:\Windows\system32\perfh00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00384278 _____ C:\Windows\system32\perfh00D.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00171272 _____ C:\Windows\system32\perfc00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00158472 _____ C:\Windows\system32\perfc00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00153100 _____ C:\Windows\system32\perfc013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00101518 _____ C:\Windows\system32\perfc00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00084756 _____ C:\Windows\system32\perfc00D.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00731980 _____ C:\Windows\system32\perfh010.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00146844 _____ C:\Windows\system32\perfc010.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00737650 _____ C:\Windows\system32\perfh00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00470948 _____ C:\Windows\system32\perfh001.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00149578 _____ C:\Windows\system32\perfc00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00094770 _____ C:\Windows\system32\perfc001.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00697272 _____ C:\Windows\system32\perfh007.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00149240 _____ C:\Windows\system32\perfc007.dat
2015-11-19 17:07 - 2009-07-14 06:13 - 07620544 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-19 00:12 - 2014-11-07 21:22 - 00001456 _____ C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-11-17 19:19 - 2015-03-12 00:51 - 00000000 ____D C:\temp
2015-11-14 14:11 - 2009-07-14 05:45 - 05215112 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-14 02:03 - 2014-11-06 20:08 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe
2015-11-13 23:17 - 2014-11-08 15:29 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Battle.net
2015-11-13 20:43 - 2014-11-08 22:03 - 00000132 _____ C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-11-13 20:34 - 2014-11-06 17:55 - 00165760 _____ C:\Users\Nerdy By Nerds\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-13 15:34 - 2014-01-24 15:17 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-11-13 15:27 - 2014-01-24 15:11 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-11-12 17:52 - 2015-05-16 01:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-10 23:40 - 2013-03-10 23:43 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 23:40 - 2013-03-10 23:43 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 23:40 - 2011-06-14 23:21 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-08 19:13 - 2011-05-23 00:15 - 00004122 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-08 19:13 - 2011-05-23 00:15 - 00003870 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-06 21:20 - 2015-09-10 12:32 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Foto Familien Album
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieUserList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieSiteList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieBrowserModeList
2015-11-05 00:10 - 2011-02-13 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-30 12:58 - 2011-02-13 16:37 - 00000000 ____D C:\ProgramData\Skype
2015-10-29 21:06 - 2014-11-07 13:54 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Audacity
==================== Files in the root of some directories =======
2014-11-08 22:03 - 2015-11-13 20:43 - 0000132 _____ () C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-11-07 21:22 - 2015-11-19 00:12 - 0001456 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2014-12-17 05:48 - 2015-10-11 10:13 - 0007168 _____ () C:\Users\Nerdy By Nerds\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-10 21:44 - 2014-11-10 21:44 - 0007605 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Resmon.ResmonCfg
2013-08-25 21:49 - 2013-08-25 21:49 - 0000057 _____ () C:\ProgramData\Ament.ini
2011-02-13 16:38 - 2011-02-13 16:38 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-08-17 17:30 - 2011-08-17 17:31 - 0000000 _____ () C:\ProgramData\Yes
Some files in TEMP:
====================
C:\Users\Jeremy J. Erb\AppData\Local\Temp\AdobeApplicationManager.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\avgnt.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmptjafqk.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2250463518738937912.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2379732162636497944.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna3653581951061083711.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\swt-win32-3349.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-20 15:56
==================== End of FRST.txt ============================
--- --- --- Geändert von MrButsch (25.11.2015 um 01:52 Uhr) |
|
25.11.2015, 01:47
| #10 |
| | .scr Datei ausversehen heruntergeladen. Addition.txt: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version:23-11-2015
Ran by Nerdy By Nerds (2015-11-25 01:51:03)
Running from C:\Users\Nerdy By Nerds\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2011-02-12 23:09:27)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
7E281115A23343249B54 (S-1-5-21-1020473624-1478330774-1937670132-1004 - Limited - Enabled)
Administrator (S-1-5-21-1020473624-1478330774-1937670132-500 - Administrator - Disabled)
BE38876218914F369445 (S-1-5-21-1020473624-1478330774-1937670132-1005 - Limited - Enabled)
Guest (S-1-5-21-1020473624-1478330774-1937670132-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1020473624-1478330774-1937670132-1008 - Limited - Enabled)
Jeremy J. Erb (S-1-5-21-1020473624-1478330774-1937670132-1000 - Administrator - Enabled) => C:\Users\Jeremy J. Erb
Nerdy By Nerds (S-1-5-21-1020473624-1478330774-1937670132-1009 - Administrator - Enabled) => C:\Users\Nerdy By Nerds
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
µTorrent (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
AC3Filter 1.63b (HKLM-x32\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.02) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
Aimersoft DVD Ripper(Build 2.7.2.0) (HKLM-x32\...\Aimersoft DVD Ripper_is1) (Version: - Aimersoft Software)
Amnesia - The Dark Descent (HKLM-x32\...\{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1) (Version: 1.0.0 - Frictional Games)
ANNO 1404 - Königsedition (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 3.10.0000 - Ubisoft)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft TotalMedia Extreme (HKLM-x32\...\{88B05038-C890-468B-A563-0015FD53CDC3}) (Version: 1.0.9.9 - ArcSoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ARMA 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
ARMA 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
ARMA 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version: - )
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Auto Mouse Clicker v4.0 (HKLM-x32\...\{C83F056D-E3D5-4308-B3ED-9FAFA8ACF821}_is1) (Version: - MurGee Softwares)
Avid EDL Manager (HKLM-x32\...\{830A8D89-D744-449C-ACE1-0A1A345D9B02}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid FilmScribe (HKLM-x32\...\{ED85F920-DC3C-44FD-80F3-93FA4C484039}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid License Control (HKLM-x32\...\{89A9B9EE-839E-4820-9450-2912C82F46AF}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid Log Exchange (HKLM-x32\...\{B0AA273D-06D3-46F2-8E21-E395A7BFC731}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid Media Composer (HKLM\...\{06928D63-80CF-4563-9E36-0BA52FAD7A1F}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid MediaLog (HKLM-x32\...\{B204C364-9D67-4F5A-A54C-56ED809BF76F}) (Version: 28.0.1 - Avid Technology, Inc.)
Avira Savings Advisor (HKLM-x32\...\{A18A516C-AA41-46A9-92DB-60208917E442}) (Version: 1.5.14 - Avira)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield 3™ Open Beta (HKLM-x32\...\{45C8D17D-B5E0-4e93-8370-4329AB16D2A0}) (Version: 1.0.0.0 - Electronic Arts)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blur Busters Strobe Util (HKLM-x32\...\{57BDAE81-2BE7-4ABA-8B03-1520FBF41AF9}) (Version: 1.0.0 - Blur Busters)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadband Internet Router (HKLM-x32\...\Template One Sample App) (Version: - )
Brorsoft Video Converter Ver 1.1.1.3688 (HKLM-x32\...\{3231B80A-455C-497a-8425-3E44C006D76C}_is1) (Version: - )
CamStudio (HKLM-x32\...\CamStudio) (Version: - )
Camtasia Studio 7 (HKLM-x32\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.7.0.4 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.4.0.15 - Canon Inc.)
Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.2.0.10 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.3.0.15 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.3.0.4 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.7 (HKLM-x32\...\DPP) (Version: 3.7.1.1 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.7.0.2 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.6.0.0 - Canon Inc.)
Canon Utilities WFT-E1/E2/E3/E4/E5 Utility (HKLM-x32\...\WFTK) (Version: 3.4.0.2 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.4.1.11 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.2.2.11 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Click Bot (HKLM-x32\...\Click Bot) (Version: - )
ContinueToSave (HKLM\...\{CFD13E7B-203C-2497-C67C-681E14321C8D}) (Version: 1.0 - ) <==== ATTENTION
ContinueToSave (HKLM\...\ContinueToSave) (Version: 1.0 - BetterSoft) <==== ATTENTION
continuetosave (HKLM-x32\...\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}) (Version: - continue to save) <==== ATTENTION
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
DAEMON Tools Toolbar (HKLM-x32\...\DAEMON Tools Toolbar) (Version: 1.1.4.0024 - DT Soft Ltd) <==== ATTENTION
DayZ Commander (HKLM-x32\...\{BAD8395E-CE31-44AA-B9FE-A14FCD0ABE4A}) (Version: 0.9.110 - Dotjosh Studios)
DeialExpresss (HKLM-x32\...\{25F259ED-12F6-429F-5783-527C3E2F8586}) (Version: - DeaLLExpress) <==== ATTENTION
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.2.3.0 - devolo AG)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Katy Perry Süße Welt (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.22 - DivX, LLC)
DVDFab 9.0.1.5 (08/12/2012) Qt (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Easy Video to Gif Converter V3.0 (HKLM-x32\...\Easy Video to Gif Converter_is1) (Version: - corksot.com)
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
EasyTax 2012 AG 1.04 (HKLM-x32\...\3785-6780-1293-3574) (Version: 1.04 - HWI Solutions AG)
Elgato Game Capture HD (HKLM-x32\...\{A04501E6-ED4D-43C9-9D69-9C78224B5BDC}) (Version: 2.01.49.776 - Elgato Systems GmbH)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.0) (Version: 0.70.0 - ESN Social Software AB)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
ffdshow v1.3.4500 [2013-01-06] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4500.0 - )
ffdshow x64 v1.1.4284 [2012-01-28] (HKLM\...\ffdshow64_is1) (Version: 1.1.4284.0 - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 3.16.2.1 - Futuremark Corporation)
Game Capture HD v2.3.3.38 (HKLM-x32\...\Software_Elgato_Game Capture HD) (Version: 2.3.3.38 - Elgato Systems)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hauppauge HDPVR Scheduler (HKLM-x32\...\Hauppauge HDPVR Scheduler) (Version: - Hauppauge Computer Works)
Hauppauge WinTV Scheduler (HKLM-x32\...\Hauppauge WinTV Scheduler) (Version: - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HP Officejet Pro 8600 Basic Device Software (HKLM\...\{791A06E2-340F-43B0-8FAB-62D151339362}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Help (HKLM-x32\...\{46235FF7-2CBE-4A84-BEDA-87348D1F7850}) (Version: 28.0.0 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
iPhone Backup Extractor (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\iPhone Backup Extractor) (Version: 5.7.2.322 - Reincubate Ltd)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
JDownloader (HKLM-x32\...\JDownloader) (Version: - AppWork UG (haftungsbeschränkt))
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version: - Tripwire Interactive)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
License Support (HKLM-x32\...\InstallShield_{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
License Support (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.) Hidden
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version: - DONTNOD Entertainment)
Lime OCR 2.4.1 (HKLM-x32\...\Lime OCR) (Version: 2.4.1 - Lime Consultants)
Logitech Gaming Software 8.40 (HKLM\...\Logitech Gaming Software) (Version: 8.40.83 - Logitech Inc.)
Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Macro Recorder 5.7.8 (HKLM-x32\...\Macro Recorder_is1) (Version: 5.7.8 - Jitbit Software)
Magic Bullet Looks (HKLM-x32\...\InstallShield_{AEC9311A-90AC-4083-B3CD-428C3BB3891C}) (Version: 1.4.0 - Red Giant Software)
Magic Bullet Looks (Version: 1.4.0 - Red Giant Software) Hidden
Magic Bullet LooksBuilder (HKLM-x32\...\Magic Bullet LooksBuilder) (Version: - )
MAGIX Screenshare (HKLM-x32\...\{B1FEBE01-42BB-4D05-8180-6C5ABD91E97E}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\{6FC5FA2A-1D40-41B9-920B-0F2A758E24A6}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_premium) (Version: 10.0.0.32 - MAGIX AG)
MAGIX Video deluxe 17 Premium (x32 Version: 10.0.0.32 - MAGIX AG) Hidden
ManyCam 3.1.58 (HKLM-x32\...\ManyCam) (Version: 3.1.58 - ManyCam LLC)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft IntelliType Pro 8.0 (HKLM\...\{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}) (Version: 8.0.225.0 - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
mkv2vob (HKLM-x32\...\{21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}) (Version: 2.4.9 - 3r1c)
MKVToolNix 6.1.0 (HKLM-x32\...\MKVToolNix) (Version: 6.1.0 - Moritz Bunkus)
MotioninJoy DS3 driver version 0.6.0005 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.0005 - www.motioninjoy.com)
Mozilla Firefox 41.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 de)) (Version: 41.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Neat Video v2.0 Demo plug-in for Virtual Dub (HKLM-x32\...\Neat Video for VirtualDub_is1) (Version: - Neat Video team, ABSoft)
Neat Video v3.0 Demo plug-in for VirtualDub (32-bit) (HKLM-x32\...\Neat Video for VirtualDub (32-bit)_is1) (Version: - Neat Video team, ABSoft)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 1.4 - NewBlue)
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 1.4 - NewBlue)
NewBlueFX Premium Effects (HKLM-x32\...\NewBlueFX Premium Effects) (Version: 1.4 - NewBlue)
NVIDIA 3D Vision Controller Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenSubtitlesPlayer V4.X (HKLM-x32\...\OpenSubtitlesPlayer_is1) (Version: - ALLCinema Ltd.)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version: - )
PDF OCR X Community Edition (HKLM-x32\...\ca.weblite.pdfocrx.CommunityEdition_is1) (Version: 2.0.8 - Web Lite Solutions Corp.)
PDFMate Free PDF Merger 1.0.6 (HKLM-x32\...\PDFMate Free PDF Merger_is1) (Version: - pdfmate.com)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PluralEyes® 2.0.4 for Premiere® Pro (HKLM-x32\...\{CE9ACBCA-B429-4DA7-9728-2A621C6479FA}_is1) (Version: 1.0 - Singular Software Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
Project 64 version 2.1.0.1 (HKLM-x32\...\Project 64_is1) (Version: 2.1.0.1 - )
PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
Python 2.7.10 (Anaconda 2.3.0 64-bit) (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Python 2.7.10 (Anaconda 2.3.0 64-bit)) (Version: 2.3.0 - Continuum Analytics, Inc.)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Razer Lachesis (HKLM-x32\...\{CB4532F7-A1BD-46D2-9938-3E7D4656FB18}) (Version: 1.10.0000 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26914 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Roll (HKLM-x32\...\RollerCoaster Tycoon Setup) (Version: - )
Scan Tailor (HKLM-x32\...\Scan Tailor) (Version: - )
Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
SixaxisPairTool 0.2.3 (HKLM-x32\...\SixaxisPairTool_is1) (Version: 0.2.3 - Dancing Pixel Studios)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Sniper Elite: Nazi Zombie Army 2 (HKLM-x32\...\Steam App 247910) (Version: - )
Sony RAW Driver (HKLM-x32\...\{166FCF01-AC98-4288-A01C-90BEB808C059}) (Version: 2.0.00.08130 - Sony Corporation)
SparkoCam (HKLM-x32\...\SparkoCam) (Version: 2.2.7 - Sparkosoft)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Steam App 232890) (Version: - FireFly Studios)
Stronghold Crusader Extreme HD (HKLM-x32\...\Steam App 16700) (Version: - Firefly Studios)
Stronghold Crusader HD (HKLM-x32\...\Steam App 40970) (Version: - FireFly Studios)
Stronghold Kingdoms (HKLM-x32\...\Steam App 47410) (Version: - FireFly Studios)
SunnyPage 2,1 (HKLM-x32\...\SunnyPage 2,1 2.1) (Version: 2.1 - Daylight)
SunnyPage 2,1 (x32 Version: 2.1 - Daylight) Hidden
Sweet Home 3D version 4.4 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
The Movies(TM) (HKLM-x32\...\InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1}) (Version: 1.0 - Activision)
The Movies(TM) (x32 Version: 1.0 - Activision) Hidden
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.0.3 - Electronic Arts)
Tunngle version Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
TwitchAlerts (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\fb3f6ca9b67f53a3) (Version: 1.0.0.8 - TwitchAlerts)
UnderCoverXP 1.23 (HKLM-x32\...\UnderCoverXP_is1) (Version: - Wicked & Wild Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 64-bit Redistributables (HKLM-x32\...\InstallShield_{5B0E60DB-7741-412F-88B3-E6975D30D019}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Visual C++ Redistributables (HKLM-x32\...\InstallShield_{C2AF7B2D-7018-414B-9B8B-D3C9F3BED04F}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voobly Game Data (HKLM-x32\...\Voobly_is1) (Version: Voobly Game Datas - Voobly)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.1.7-3 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.12 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.10 - Wacom Technology Corp.)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Win7codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 2.7.8 - Shark007)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
WinSpeed (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{f1f78e38}) (Version: - Jingo Ltd) <==== ATTENTION
XMind 6 (v3.5.1) (HKLM-x32\...\XMind_is1) (Version: 3.5.1.201411201906 - XMind Ltd.)
XviD v1.3.0 CVS (HKLM\...\XviD MPEG-4 Video Codec_is1) (Version: - Celtic Druid)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
15-11-2015 19:00:05 Windows Backup
22-11-2015 19:00:05 Windows Backup
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2011-03-22 17:10 - 00004232 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 pagead2.googlesyndication.com
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 192.168.112.207
127.0.0.1 192.168.112.2o7.net
127.0.0.1 194.224.66.48
127.0.0.1 199.7.52.190
127.0.0.1 199.7.52.190:80
127.0.0.1 199.7.54.72
127.0.0.1 209.34.83.73
127.0.0.1 209.34.83.73:43
127.0.0.1 209.34.83.73:443
There are 80 more lines.
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {030BA824-1EBF-4741-BB03-AC0F8C9C29AC} - System32\Tasks\schedule!1143840799 => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exe <==== ATTENTION
Task: {03C829C4-EDE1-458E-8F84-72CEC5E1E1ED} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.)
Task: {15621ED5-31F4-4D4E-A807-6E295BF15837} - System32\Tasks\{FB5116E4-4389-41E1-9A09-780C90D44DEA} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.0.102/de/abandoninstall?page=tsProgressBar
Task: {1EDD8CF6-4990-4EE8-9807-64A85F05AB8A} - System32\Tasks\Funmoods => C:\Users\Jeremy J. Erb\AppData\Roaming\Funmoods\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {272575DA-5C7A-4A65-ABE2-F486D293560F} - System32\Tasks\{7F832122-3F8F-4D25-9882-326F0B4C3165} => C:\Users\Jeremy J. Erb\Desktop\Downloads\qc1150_x64.exe
Task: {2A2FA555-C451-4521-9A5D-DD13F0986D94} - System32\Tasks\{95760577-A417-454F-946F-F273DEF6AEF9} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II"
Task: {2F63A731-0606-4930-A601-2327BF3A8620} - System32\Tasks\Google Updater and Installer => C:\Users\Jeremy J. Erb\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {3647D943-139B-4687-839E-25826213499F} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => c:\Program Files\Microsoft IntelliType Pro\IType.exe [2010-07-21] (Microsoft Corporation)
Task: {5349671D-0EC9-4118-A29D-0923FA4ED050} - System32\Tasks\{910FE053-B1B9-4E3E-8194-E339FB2E55B1} => pcalua.exe -a "C:\Program Files (x86)\QuickTime Alternative\QTSystem\quicktime.cpl"
Task: {5CF9750A-6450-4EFD-9927-DC778DEDCA1F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {60BCEAB1-F0F3-4806-BC13-A5FE6AC06B32} - System32\Tasks\{BF4F3FA7-43C4-4E38-B12C-4D20E90DB4B5} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-10-14] (Skype Technologies S.A.)
Task: {68E90B7B-4B83-4297-85D3-D6458DF10048} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {71D1DF21-A84B-4D78-BA3B-615E0F1C6D57} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-18] (Adobe Systems Incorporated)
Task: {77CD2ACA-8A4C-404B-BC8B-BB5F0A37B2B9} - System32\Tasks\ALL Update => C:\Program Files (x86)\OpenSubtitlesPlayer\ALLUpdate.exe [2011-08-17] ()
Task: {78D29609-E3A5-4F52-BFB5-7F07A1F03B74} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {86276313-9C3C-48E4-B04A-A577D228FBE2} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {8749126C-4094-40D6-B31E-4895C6EBF6B6} - System32\Tasks\{C685A2F9-46D7-40D3-96D8-7441DA20A811} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings"
Task: {9558289A-AB6B-4D56-A301-8FF5147534CB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9855C353-7204-49C4-8577-9EE90EB63E90} - System32\Tasks\DivX online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2012-11-30] ()
Task: {A07A5FC7-47C3-4F0F-B511-10ED1F8BBF3F} - System32\Tasks\{472589C8-95B4-4B3D-89C8-F8B42E801DD2} => pcalua.exe -a D:\aocsetup.exe -d D:\ -c /autorun
Task: {A9FA069D-926D-4804-95D4-E41F29C8F627} - System32\Tasks\{4D2B59AF-6764-4EEA-9C74-43C49BE71FC3} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\quicktime\QuickTimeInstaller.exe" -d "C:\Users\Jeremy J. Erb\Desktop\quicktime"
Task: {C2BECC7A-CF6D-4BA9-B822-744AD1B542DF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {C6B49042-7A95-4284-A5D6-F9385029CC05} - System32\Tasks\{83CE1FA0-67E1-46C6-9DC4-286B3FA41D9E} => pcalua.exe -a "C:\Users\Jeremy J. Erb\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCG7T566\ChromeSetup[1].exe" -d "C:\Users\Jeremy J. Erb\Desktop"
Task: {D2F2CD1A-7ABE-4378-B597-F4DF9E36BCED} - System32\Tasks\{04DE06AE-4EA6-4876-9BC2-D7357D945528} => C:\Program Files (x86)\Lime OCR\lime-ocr.exe [2009-12-14] (Lime Consultants)
Task: {D51A8F7F-5346-4104-AF50-E70883CB02A7} - System32\Tasks\{1F59B7F6-019B-43CA-85E9-7654146C0CE6} => pcalua.exe -a D:\Setup\Setup.exe -d D:\Setup
Task: {D7BC1633-093D-4305-864E-34609FB0E643} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {F09A251D-75C2-4E59-B680-390D878D5896} - System32\Tasks\aviraSWU => Cscript.exe "C:\Program Files (x86)\avira\Internet Explorer\swu.vbs"
Task: {F2C0F94D-473F-4834-BE74-9B57677BACCB} - System32\Tasks\{A98696DE-F69D-43AC-849F-62CF462DA4A1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.5.0.114.259/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;ienotdefaultbrowser2
Task: {FBAD0F83-4AD2-4905-AEFC-07D438571815} - System32\Tasks\{6E5B4A10-2158-4ACD-9074-4242EDA117A2} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Downloads\vcredist_x86.exe" -d "C:\Users\Jeremy J. Erb\Desktop\Downloads"
Task: {FDAF9943-EAF8-4716-8677-23E57E4E0EC7} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Funmoods.job => C:\Users\JEREMY~1.ERB\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\schedule!1143840799.job => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exeM/schedule /profile c:\programdata\bettersoft\continuetosave\1143840799.ini <==== ATTENTION
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda (64-bit)\Anaconda Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Users\Nerdy By Nerds\Anaconda\Scripts\anaconda.bat" <==== ATTENTION
==================== Loaded Modules (Whitelisted) ==============
2011-10-03 14:31 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-11-20 00:24 - 2009-08-24 14:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2011-10-02 16:52 - 2013-10-31 15:04 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-06-23 20:11 - 2015-06-23 20:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2011-02-13 13:50 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2009-10-14 12:34 - 2009-10-14 12:34 - 00560472 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2015-03-14 06:49 - 2015-03-14 06:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2011-11-20 00:24 - 2009-03-13 11:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-04-18 12:59 - 2014-10-31 15:37 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-04-18 12:59 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 02140944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtCore4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 07704336 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtGui4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00968976 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtNetwork4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00475408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtOpenGL4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00363792 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtXml4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00199952 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtSql4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00027408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\SDL.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 11311888 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtWebKit4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00291600 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\phonon4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00028944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qgif4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00035088 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qico4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00138000 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qjpeg4.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 00181592 _____ () C:\Program Files (x86)\Common Files\LogiShrd\LvApi11\LvApi11.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 01241088 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 02010624 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 00126464 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamFilter.dll
2014-04-02 14:57 - 2014-04-02 14:57 - 00014336 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamServer.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 11632640 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamLib.dll
2015-05-20 03:29 - 2015-05-20 03:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-01-11 23:45 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\Nerdy By Nerds\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:DWq8NyBLbUmrYhkdKsN
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:WAD8mEFaKluOpOHzime
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:CCQZHaNqy9CftkQxXk97VvK
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temporary Internet Files:fHhhMOyoB8Xe79tna24YLG
AlternateDataStreams: C:\Users\Nerdy By Nerds\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\Control Panel\Desktop\\Wallpaper -> C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Jeremy J. Erb^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Produktregistrierung.lnk => C:\Windows\pss\Logitech . Produktregistrierung.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Aimersoft Helper Compact.exe => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: DS3 Tool => C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe -mini
MSCONFIG\startupreg: Facebook Update => "C:\Users\Jeremy J. Erb\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: facemoods => "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodssrv.exe" /md I
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: itype => "c:\Program Files\Microsoft IntelliType Pro\itype.exe"
MSCONFIG\startupreg: Lachesis => C:\Program Files (x86)\Razer\Lachesis\razerhid.exe
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: Logitech Vid => "C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe" -bootmode
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVCpl => RAVCpl64.exe
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TrayServer => C:\Program Files (x86)\MAGIX\Video_deluxe_17_Premium\TrayServer.exe
MSCONFIG\startupreg: uTorrent => "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B3089B53-A18E-4423-83E4-E2548BB4FB3A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2D904C0F-5692-4943-8F3C-308E83E4D84C}] => (Allow) LPort=2869
FirewallRules: [{E3F8EBB6-E140-4760-A57B-C762C512431F}] => (Allow) LPort=1900
FirewallRules: [{C13ECE6C-DA99-442A-8605-B5024E3F0A6E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{35E6B91E-A266-41D7-8B48-5FAA7474EE37}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{3230E683-D14B-4C9E-9DAE-D5BAA114D5A8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BAFA3D1E-3BB4-42AF-B20F-10494F59496A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A08C6421-CBFA-4102-9412-9B69F11C439E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2849588F-C80E-418B-B547-8BFE21093330}] => (Allow) LPort=443
FirewallRules: [{46661EA1-5DCE-4640-B86C-851D5B35D24C}] => (Allow) LPort=443
FirewallRules: [{8D0F4AE5-1103-4E6F-A7B5-B6D92B0DCCF8}] => (Allow) LPort=37674
FirewallRules: [{FE7E891E-A49F-48D4-A706-2F1E24BBA7E0}] => (Allow) LPort=37674
FirewallRules: [{A1F2BD87-36B1-4FFE-B8C5-B86E1307AC76}] => (Allow) LPort=37675
FirewallRules: [{7A5CF0EC-6C92-4905-B53B-A65FEFE14542}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{E6655D3D-E4B9-4C36-80DD-361861D06D1D}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{DD6DEC08-1F91-45B0-8627-CF66CDE67920}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{F9F8D5A2-0602-4D18-9FA4-25D22CB411F2}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{10C827B3-9E49-408E-8DBB-FCFC3E097254}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{46763EE7-65D0-486B-A95F-4ED62BEC9DAE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{0CC6DD64-524C-41CD-B9C6-037013484FAB}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{16C78BD6-573E-48FB-A5E7-149DC022CAC9}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{8BDE7445-4064-448C-90A8-C79DAEB81A81}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{A0DDD748-F67F-4E08-8702-9E204771CD52}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{B56AA11F-94C5-43AB-85DC-EC65A292A32D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{E2851692-182C-4D46-9399-1ED26334DBBE}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{558CE498-087D-4834-BCDA-AC92FE1B9A8D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{E05D69B4-5B46-46F9-BF6E-F90879B469C0}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{0D867BC3-352B-42B5-998F-914CA8358F47}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{FA588CB5-D82C-4283-9727-7E754618F4E5}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{7A085870-5072-4966-A9F2-9A53C59BAEF4}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{139682CD-AE8C-43C5-825D-8F7FFF6C1544}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{6482A75B-C655-436E-8CB8-714F8F49E583}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{3DDE1B71-821B-42EC-8D38-12FACFD5F0FA}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{509842BD-C49F-4ED4-9E23-40316B5D2505}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5032B6EC-EB39-48CC-A349-013A0269064E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E6327220-3954-4078-B800-D2002E6C8967}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B7341029-635E-4D5A-86FF-7B08B1AD2275}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E067F01F-214A-4A88-9465-C87D6CA5355A}] => (Allow) LPort=1542
FirewallRules: [{0672198B-A6C6-4866-BCBD-0F660326EF58}] => (Allow) LPort=1542
FirewallRules: [{F832F4C4-7E03-43DF-AADF-1F07BC0E99BB}] => (Allow) LPort=53
FirewallRules: [{D4ED452C-8340-411B-9919-1254187078C4}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{5F623167-EAF0-4CE2-A1A0-91ACAE68A30E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{50AB2368-7A48-4233-BC5B-A30007C01AA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A6F86BBB-AFAA-47B0-A1D9-FF8CCBD5843A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B3C1F393-6978-4258-9F48-EE735A4571DB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{78380C2C-D685-4316-84E3-E5828A5E00DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FC91A540-2416-4EDE-A070-A9A41A8A6571}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{889E6F14-57C7-4708-BCC7-FD61F4AAD7C5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{CF5ABD4F-11D6-46C2-A56B-FF14D105CB29}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{320DD975-38FF-403B-A3C7-11BD40E835EF}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{921C7B44-3BE2-4131-94BD-66DD3D5057E7}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{EF2D6E1F-8AFD-4095-B53F-3E0A739BD9BE}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{857A5521-2C35-4540-A2A9-31F8A3015D62}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{AD220482-DEE5-4658-B2D8-076937135A9D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [TCP Query User{268D900A-062B-45AF-9290-DA73D8A93F34}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [UDP Query User{A3ED1398-191F-444F-AAEB-7BDDBAF3D41B}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [{5DE3A298-10DF-48CA-8DF7-48975AE72916}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{B3B83EC8-9825-432B-BFF8-E401D2E7BD50}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{2CC8427D-0D11-4CEC-890A-4D78C51F68EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{7EEA9D61-1060-444E-8E51-46BE4D847A34}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [TCP Query User{33A59297-AAFD-47B7-8F7E-2E5B64EEB830}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{C8C65F90-6D28-4A9A-BCA6-3EE8B75528AF}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{53623AFE-2E23-45A7-BD98-AF3702E7193E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [UDP Query User{F8F088A7-9ECB-45FE-9F8D-023B649088B3}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [TCP Query User{6F272D99-A5BC-4EA5-A435-365C3396B27E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [UDP Query User{3898B6F0-D702-483F-8D81-EBAB50E1C10D}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [TCP Query User{CD49B4D6-6CA6-4EA7-8388-D4556D18D5F4}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [UDP Query User{F60A2571-7427-44A7-A6A1-861184CB2F75}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [TCP Query User{490A7CC4-C50A-4150-BEA4-7D74D376515F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{45F48BBB-7111-4818-8172-C2DB431C9287}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{308C6B17-DAA3-494C-B667-F580F309FD58}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{C477CCFA-35F3-49D5-B21E-3280270F9BA4}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{7C587571-A3EA-4D36-816B-00CC0E873E18}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{B0D33493-F397-4A7C-8DB1-168CE9BE2068}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{8D309D6F-3B1E-4F3C-9D8F-F9E3D755911E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{33D88020-980C-48F3-A984-DE4F2118B8CE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{CFAA433F-C550-476E-83B8-B4EEA81B2D9E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe
FirewallRules: [{A5812739-171F-4670-99BD-115B41973A72}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe
FirewallRules: [{A559722E-5EDF-4645-BFA7-80ABEC58E616}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe
FirewallRules: [{DF905607-22CE-4A99-B825-7E7AA930DC19}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [{F33ECC4C-2B38-43B8-B79B-EB196316A26E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{6400F51C-0AAB-44CE-BBBD-96F50F89D618}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{1A8CBDC6-3352-48DC-8F35-4751B55DC78F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F7CE9C11-4B36-4E7C-9478-6A9962CE73F5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B7CA082-31A9-4280-A4E0-9FA986E8EB39}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{86B1782C-D965-4E6A-9507-2218D5F8E002}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{01E68ACC-9405-4076-869D-1F8B12B6EE69}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{213C180E-0C7F-46A3-A1EF-FC3D6451726A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A9D2B053-42CC-446F-8497-ECA45ED6677E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{0067E024-6C09-4645-9FBB-28D7FC8F8AFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{B07D1D8D-507C-4853-879A-E5AB7C11D441}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1FAC999B-3895-4C49-BF04-C8A07BA31E6C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{817CFB99-FC3C-4B67-8C34-A4ED21FD2522}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [UDP Query User{F24096C2-395A-44C6-8735-0C086989479A}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [{A374E69E-E34B-4CA4-8AEF-CDCC5EED7531}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{570E5612-75E4-44E9-A29E-9BC79D5D6008}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{6C3FEF28-30B1-424A-A38D-19966FFBD843}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{72270E0E-7AA7-4C3E-906F-2370041855E5}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{60393738-78EF-4929-BA5B-164294E01C36}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{B171A631-B783-4E4D-999F-F452B98B3431}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{8AF5319D-70EA-4257-B8BA-E830F4F60818}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{D25A3A56-32C1-4C00-A044-15DD19D3CC70}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [TCP Query User{4DFB828C-533E-4E75-9591-FB6DE29BFAFC}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [UDP Query User{70915809-3C26-4448-B5C5-928E914444E8}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [TCP Query User{612A565C-0DAD-4BDE-B291-679E062E835C}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [UDP Query User{D066544D-E8EC-4AA3-8B5F-A0993A772D64}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [{91DE01F1-5D35-425D-A3A5-02B84BCEBBF8}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{834EA968-90AC-474C-A55F-7C2DFD793FCF}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{26A8DCE8-1F8E-4057-ADED-46063E29E46E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{61EAE32D-A30F-49CB-9A74-F987499D65B5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{8B54B150-2580-439A-94C9-EE29932615B1}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{140FB3D5-989F-44F7-A496-B4C3D88ADC5A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{D70E7A5C-C964-4E52-9F27-EFAC27D2BDE0}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{CE6B7F3C-4745-4135-B63F-C70AD81E5C1B}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{7E517574-BF1A-4F8A-A45B-57102F53C094}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{33EF6873-EF32-4378-8524-2593FB62D7B2}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{0AA28FA5-90DA-48FC-8176-F583B92551BE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{C167C2E4-E3D3-4BF8-A5DB-5EB666F19D5E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{7545ED54-35F4-4C9E-B411-97A081BBA2CA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{07BA8574-3EC9-4912-A3F8-A3D41B080007}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{942E330D-3678-40E4-9BF8-BA625830E639}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{A5B5245F-1EAE-4D36-BC01-98442D1AE5DA}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{708E1B13-703A-4450-9BE9-67950874C758}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{3FC0CBC2-70B1-4EF8-9906-D24CF2334EF4}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{D5F51D91-8A76-474E-9FC1-9103DE29D51E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{E5A3D1EF-2042-4A07-8B29-D88D38D96B0A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{898B97AB-7D6E-416C-B194-C0179BBF9F69}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{C7818B31-D93E-4C21-B661-039568AB34C5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{37666EE0-052A-43F4-B000-4626C71FE8EF}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{CFB49C33-DABC-4923-A619-01EB6361AADE}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{56C078AA-9E52-4DA5-AFB5-231C285325F1}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{0AF347F8-3417-480C-A523-359F337CB9E5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{14D7CAB3-ED49-473D-B758-74AD2D235F5B}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{241AA8F9-366F-49CA-A9D7-EE64E7E3208D}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{133AC2D7-1DCD-478B-BAFB-33CAB293E6CD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6675A05A-5F86-4BDC-B36E-21D47F3DA3CA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4568144A-F313-420D-9783-83FD94F1701D}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{64FCD208-E752-4E2F-A14B-0C8168611060}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{4503E5D3-48FB-491E-902D-6C52383B21C1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{EA131BF6-F6EA-439C-858B-52FB2C05859E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{3D1F4E66-B650-4B06-8C35-5D4EFB2F28F2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{B0A9CC4C-B368-4058-81C9-6C06E3E46309}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [TCP Query User{61839F24-6C8E-4390-9103-B4E00D392893}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{2F7C1461-B677-492E-982D-1E50C743CB8A}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{D50B9E70-35C6-4D68-B130-524BE2E7C832}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{92929856-8DD7-49E8-BCCE-FB341943C55A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [TCP Query User{AA4BCFBD-99F5-4F61-8DCB-6A475F69D846}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{2B5EF94F-3A91-4278-9CAE-7388545B9E9D}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{EA73ABF4-BE8B-43FC-9B45-965F793CB45B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{D6BCD7A3-6759-49ED-8D43-70B174B052F9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{9A811C76-3ECC-4556-B3C7-E0BD13CB043A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C9D33F34-8363-4FA7-8895-7A529AA32590}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{C82CF0EC-BA56-439E-A88E-380DEC6F84D8}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CFD504F0-E120-496D-B6EB-0BA17BBB979B}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [{F56AA18C-8E42-4AD6-ACF4-141A3A1779B8}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{75D8EF84-478B-4BD0-8B79-A2250DFADF5B}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [TCP Query User{35C610BD-4772-4FC3-BB1D-5BE439559B28}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{30B9A0ED-72B4-4957-92DF-1EC959D2913D}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{714CBFCA-8A91-42AF-A7F1-72AC0E143F03}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CDBF40EC-26B7-4B28-A231-D5A68F106425}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [{A930F9BC-EE63-4D3D-9A31-7F5AF164B1F3}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{769D782C-743E-4466-8210-C39597B86982}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{0AC09FDD-F6E9-48B7-B345-55635E6ED446}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{615EFD5A-3553-4428-9F6E-534433654BE6}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{9DA4E55A-4B01-42FD-BBEE-D24F524D2BAB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{2BEB840B-1B88-40DB-BB64-6AF73A8F2A14}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{C4374BC2-E39C-4EF1-AABC-AF0CD94DE1EB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{6C58B778-C50F-4C03-9020-4153EEDD0E40}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{3E19199C-A6CE-493A-A5F6-93CFB382ED56}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8CB7949C-B8BC-4F23-A915-1C049BA634C3}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6DC8547C-7C40-4336-9747-0C8362ACEA88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{C95AF62A-F728-473F-AB7D-292292C32FAE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [TCP Query User{F96D0567-41A0-427C-A121-0E7EBC92888F}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [UDP Query User{FE16D034-8D76-4283-A933-878885CFD05E}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{7D4F5D8B-3F24-42ED-9A37-542017DCDE84}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{35B082F1-FAFC-42C2-9DB5-DC3FD961672D}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{935C2433-8086-4728-8930-9704C543300D}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{14A7A8D0-0BD1-4665-A424-4CFA3288B397}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [TCP Query User{3AC9BFE3-6A72-46C7-B079-20B4C8BE9A76}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{1CBCA031-1D3D-45F0-9844-142EF4CBE220}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{6139767E-D08E-4345-A3AF-BEC5206405EC}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{7E5AD342-B1A2-437C-BB0F-E2FEAFB15619}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{4A91C949-A6E3-4FB3-8E65-9429F220F0ED}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{E279F273-BCF3-4363-8677-0BAAD1E58BAF}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{04818325-9BA0-4230-99BF-704A03D5A91C}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{ACF1BE82-F196-4FF4-8A94-17C816FCA113}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{AAEAF55C-F675-4F1C-9B78-7360FFF10B6E}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{29AF9C9A-4025-4267-83F7-1836DE46F489}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{2B80A7F5-9D0C-4684-BD0D-A16483101C5A}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{1098A087-9F4A-4A7C-807C-309DCB1400C0}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{DDF28D39-8364-4F49-9B30-DEE4C01D7BE7}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{4C767AFA-D976-4A2E-B34B-CAA85B865EC9}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{600BD4D4-7789-4971-808A-9177412E7066}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{4587B165-D351-40AF-8A29-207EFBBB93A9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C0FD4A12-2BC8-48C7-A292-166D1E218DBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BD5F8C6B-D73A-4E00-A7E4-59ACE92C4270}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [UDP Query User{F3018188-720E-49C7-BF48-6634E366FFBA}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [{105654C7-8991-4FBE-8007-F3D1FFE252DA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{1FE79A1B-A207-4B01-9CFC-6DB75229337F}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{4727EFDF-9EFC-4B00-B244-FF5804B0BBEB}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{18DB1C7D-E0E6-43E7-98B5-0FFC6BCDF9FA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [TCP Query User{FE2DB56E-A1A4-4F7C-B46C-3FD52FCE9C8B}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9933450E-9580-4658-9BD4-3B45609020D1}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{562B43D0-3D99-4A53-BD9F-E3C2ADB787AA}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{354359F5-607D-44D5-88B9-CAFB845DB3DB}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{8978604F-5CCA-4731-B39F-085C58CD20BE}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{CBD07C30-193D-4F81-A499-F296AD7ECC7E}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{BC1D5345-4089-4CB4-993A-47FFA6A7327B}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{18A2105B-F91A-4A04-9E1C-27D44A702B6E}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{EF8AF549-382B-4390-BD4E-231F42EAAC8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/25/2015 01:28:49 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 23.11.2015.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1848
Start Time: 01d127180d7f5dcb
Termination Time: 2
Application Path: C:\Users\Nerdy By Nerds\Desktop\FRST64.exe
Report Id: 5a89e92f-930b-11e5-beea-50e5493c3802
Error: (11/24/2015 06:06:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x858
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/20/2015 08:08:08 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/17/2015 08:24:48 PM) (Source: MsiInstaller) (EventID: 1024) (User: MATRIX)
Description: Product: Adobe Reader XI - Deutsch - Update '{AC76BA86-7AD7-0000-2550-7A8C40011013}' could not be installed. Error code 1625. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (11/15/2015 07:26:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xae0
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/14/2015 02:47:33 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/13/2015 05:28:52 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
Error: (11/13/2015 05:28:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x898
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/11/2015 03:48:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xb78
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
Error: (11/10/2015 01:18:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xa8c
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3
System errors:
=============
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:40:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:28:10 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
Error: (11/25/2015 01:28:10 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.
CodeIntegrity:
===================================
Date: 2011-02-13 18:09:10.937
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 17:34:39.964
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 17:00:03.729
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2011-02-13 14:28:49.982
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD Phenom(tm) II X6 1090T Processor
Percentage of memory in use: 51%
Total physical RAM: 8189.55 MB
Available physical RAM: 3960.12 MB
Total Virtual: 16377.31 MB
Available Virtual: 12164.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:596.07 GB) (Free:61.81 GB) NTFS
Drive d: (MOVIES) (CDROM) (Total:1.89 GB) (Free:0 GB) UDF
Drive j: (2TerraDrive) (Fixed) (Total:1863.01 GB) (Free:1587.85 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 3AE3C223)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 11821181)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
|
|
25.11.2015, 02:11
| #11 |
| | .scr Datei ausversehen heruntergeladen. TDSSKiller-Report Teil 1: Code:
ATTFilter 01:53:34.0711 0x36d4 TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
01:53:38.0391 0x36d4 ============================================================
01:53:38.0391 0x36d4 Current date / time: 2015/11/25 01:53:38.0391
01:53:38.0391 0x36d4 SystemInfo:
01:53:38.0391 0x36d4
01:53:38.0391 0x36d4 OS Version: 6.1.7601 ServicePack: 1.0
01:53:38.0391 0x36d4 Product type: Workstation
01:53:38.0391 0x36d4 ComputerName: MATRIX
01:53:38.0391 0x36d4 UserName: Nerdy By Nerds
01:53:38.0391 0x36d4 Windows directory: C:\Windows
01:53:38.0391 0x36d4 System windows directory: C:\Windows
01:53:38.0391 0x36d4 Running under WOW64
01:53:38.0391 0x36d4 Processor architecture: Intel x64
01:53:38.0391 0x36d4 Number of processors: 6
01:53:38.0391 0x36d4 Page size: 0x1000
01:53:38.0391 0x36d4 Boot type: Normal boot
01:53:38.0391 0x36d4 ============================================================
01:53:40.0257 0x36d4 KLMD registered as C:\Windows\system32\drivers\72557972.sys
01:53:40.0565 0x36d4 System UUID: {AFAD6365-08C2-010F-2D4A-5B2154B481AD}
01:53:40.0976 0x36d4 Drive \Device\Harddisk1\DR1 - Size: 0x950AF4DE00 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
01:53:40.0976 0x36d4 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:53:40.0980 0x36d4 ============================================================
01:53:40.0980 0x36d4 \Device\Harddisk1\DR1:
01:53:40.0980 0x36d4 MBR partitions:
01:53:40.0980 0x36d4 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
01:53:40.0980 0x36d4 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4A824800
01:53:40.0980 0x36d4 \Device\Harddisk0\DR0:
01:53:40.0980 0x36d4 MBR partitions:
01:53:40.0980 0x36d4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
01:53:40.0980 0x36d4 ============================================================
01:53:40.0998 0x36d4 C: <-> \Device\Harddisk1\DR1\Partition2
01:53:41.0046 0x36d4 J: <-> \Device\Harddisk0\DR0\Partition1
01:53:41.0046 0x36d4 ============================================================
01:53:41.0046 0x36d4 Initialize success
01:53:41.0046 0x36d4 ============================================================
01:54:54.0551 0x1960 ============================================================
01:54:54.0551 0x1960 Scan started
01:54:54.0551 0x1960 Mode: Manual; SigCheck; TDLFS;
01:54:54.0551 0x1960 ============================================================
01:54:54.0551 0x1960 KSN ping started
01:54:54.0774 0x1960 KSN ping finished: true
01:54:58.0005 0x1960 ================ Scan system memory ========================
01:54:58.0005 0x1960 System memory - ok
01:54:58.0005 0x1960 ================ Scan services =============================
01:54:58.0137 0x1960 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
01:54:58.0169 0x1960 1394ohci - ok
01:54:58.0286 0x1960 [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:54:58.0300 0x1960 ACDaemon - ok
01:54:58.0353 0x1960 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
01:54:58.0366 0x1960 ACPI - ok
01:54:58.0401 0x1960 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
01:54:58.0410 0x1960 AcpiPmi - ok
01:54:58.0500 0x1960 [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:54:58.0507 0x1960 AdobeARMservice - ok
01:54:58.0639 0x1960 [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
01:54:58.0650 0x1960 AdobeFlashPlayerUpdateSvc - ok
01:54:58.0689 0x1960 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
01:54:58.0705 0x1960 adp94xx - ok
01:54:58.0728 0x1960 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
01:54:58.0740 0x1960 adpahci - ok
01:54:58.0748 0x1960 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
01:54:58.0758 0x1960 adpu320 - ok
01:54:58.0797 0x1960 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
01:54:58.0806 0x1960 AeLookupSvc - ok
01:54:58.0866 0x1960 [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc C:\Windows\syswow64\drivers\Afc.sys
01:54:58.0873 0x1960 Afc - ok
01:54:58.0943 0x1960 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
01:54:58.0958 0x1960 AFD - ok
01:54:59.0000 0x1960 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
01:54:59.0008 0x1960 agp440 - ok
01:54:59.0029 0x1960 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
01:54:59.0038 0x1960 ALG - ok
01:54:59.0073 0x1960 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
01:54:59.0080 0x1960 aliide - ok
01:54:59.0111 0x1960 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
01:54:59.0118 0x1960 amdide - ok
01:54:59.0132 0x1960 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
01:54:59.0140 0x1960 AmdK8 - ok
01:54:59.0161 0x1960 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
01:54:59.0169 0x1960 AmdPPM - ok
01:54:59.0207 0x1960 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
01:54:59.0216 0x1960 amdsata - ok
01:54:59.0223 0x1960 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
01:54:59.0233 0x1960 amdsbs - ok
01:54:59.0286 0x1960 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
01:54:59.0294 0x1960 amdxata - ok
01:54:59.0329 0x1960 [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID C:\Windows\system32\drivers\appid.sys
01:54:59.0337 0x1960 AppID - ok
01:54:59.0372 0x1960 [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
01:54:59.0379 0x1960 AppIDSvc - ok
01:54:59.0414 0x1960 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
01:54:59.0422 0x1960 Appinfo - ok
01:54:59.0522 0x1960 [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:54:59.0528 0x1960 Apple Mobile Device Service - ok
01:54:59.0575 0x1960 [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
01:54:59.0582 0x1960 AppleCharger - ok
01:54:59.0625 0x1960 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
01:54:59.0632 0x1960 AppleChargerSrv - ok
01:54:59.0665 0x1960 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
01:54:59.0676 0x1960 AppMgmt - ok
01:54:59.0701 0x1960 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
01:54:59.0710 0x1960 arc - ok
01:54:59.0744 0x1960 [ 29E7252FA743B15BCE1A2245C5643A02, 7008FA6004AB9E4FBC410EAD8929F97056386DD65045F05059ADF436FB655FAD ] archlp C:\Windows\syswow64\drivers\archlp.sys
01:54:59.0753 0x1960 archlp - ok
01:54:59.0766 0x1960 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
01:54:59.0775 0x1960 arcsas - ok
01:54:59.0814 0x1960 Aspi32 - ok
01:54:59.0902 0x1960 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
01:54:59.0942 0x1960 aspnet_state - ok
01:54:59.0965 0x1960 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
01:54:59.0988 0x1960 AsyncMac - ok
01:55:00.0024 0x1960 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
01:55:00.0031 0x1960 atapi - ok
01:55:00.0087 0x1960 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:55:00.0106 0x1960 AudioEndpointBuilder - ok
01:55:00.0128 0x1960 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
01:55:00.0148 0x1960 AudioSrv - ok
01:55:00.0191 0x1960 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
01:55:00.0204 0x1960 AxInstSV - ok
01:55:00.0231 0x1960 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
01:55:00.0246 0x1960 b06bdrv - ok
01:55:00.0269 0x1960 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
01:55:00.0281 0x1960 b57nd60a - ok
01:55:00.0306 0x1960 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
01:55:00.0315 0x1960 BDESVC - ok
01:55:00.0323 0x1960 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
01:55:00.0362 0x1960 Beep - ok
01:55:00.0416 0x1960 [ C895B9AA6EE9DBDE5D98684425A14647, FB9C906D3EAEEC6F46B1862D2348B1FB501C49D78F4CC4A7DE060BAF413EB782 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
01:55:00.0419 0x1960 BEService - detected UnsignedFile.Multi.Generic ( 1 )
01:55:00.0590 0x1960 BEService ( UnsignedFile.Multi.Generic ) - warning
01:55:00.0590 0x1960 Force sending object to P2P due to detect: BEService
01:55:00.0820 0x1960 Object send P2P result: true
01:55:01.0071 0x1960 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
01:55:01.0093 0x1960 BFE - ok
01:55:01.0153 0x1960 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
01:55:01.0192 0x1960 BITS - ok
01:55:01.0203 0x1960 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
01:55:01.0211 0x1960 blbdrive - ok
01:55:01.0260 0x1960 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
01:55:01.0274 0x1960 Bonjour Service - ok
01:55:01.0312 0x1960 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
01:55:01.0320 0x1960 bowser - ok
01:55:01.0335 0x1960 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:55:01.0344 0x1960 BrFiltLo - ok
01:55:01.0352 0x1960 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:55:01.0361 0x1960 BrFiltUp - ok
01:55:01.0403 0x1960 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
01:55:01.0413 0x1960 Browser - ok
01:55:01.0433 0x1960 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
01:55:01.0445 0x1960 Brserid - ok
01:55:01.0458 0x1960 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
01:55:01.0468 0x1960 BrSerWdm - ok
01:55:01.0482 0x1960 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
01:55:01.0491 0x1960 BrUsbMdm - ok
01:55:01.0504 0x1960 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
01:55:01.0512 0x1960 BrUsbSer - ok
01:55:01.0530 0x1960 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
01:55:01.0540 0x1960 BTHMODEM - ok
01:55:01.0561 0x1960 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
01:55:01.0585 0x1960 bthserv - ok
01:55:01.0739 0x1960 [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
01:55:01.0775 0x1960 c2cautoupdatesvc - ok
01:55:01.0847 0x1960 [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
01:55:01.0889 0x1960 c2cpnrsvc - ok
01:55:01.0917 0x1960 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
01:55:01.0940 0x1960 cdfs - ok
01:55:01.0986 0x1960 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
01:55:01.0996 0x1960 cdrom - ok
01:55:02.0048 0x1960 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
01:55:02.0071 0x1960 CertPropSvc - ok
01:55:02.0075 0x1960 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
01:55:02.0085 0x1960 circlass - ok
01:55:02.0127 0x1960 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
01:55:02.0141 0x1960 CLFS - ok
01:55:02.0196 0x1960 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:55:02.0204 0x1960 clr_optimization_v2.0.50727_32 - ok
01:55:02.0260 0x1960 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:55:02.0269 0x1960 clr_optimization_v2.0.50727_64 - ok
01:55:02.0348 0x1960 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:55:02.0419 0x1960 clr_optimization_v4.0.30319_32 - ok
01:55:02.0457 0x1960 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:55:02.0487 0x1960 clr_optimization_v4.0.30319_64 - ok
01:55:02.0510 0x1960 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
01:55:02.0518 0x1960 CmBatt - ok
01:55:02.0533 0x1960 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
01:55:02.0540 0x1960 cmdide - ok
01:55:02.0587 0x1960 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
01:55:02.0617 0x1960 CNG - ok
01:55:02.0637 0x1960 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
01:55:02.0644 0x1960 Compbatt - ok
01:55:02.0689 0x1960 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
01:55:02.0699 0x1960 CompositeBus - ok
01:55:02.0709 0x1960 COMSysApp - ok
01:55:02.0722 0x1960 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
01:55:02.0729 0x1960 crcdisk - ok
01:55:02.0775 0x1960 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
01:55:02.0785 0x1960 CryptSvc - ok
01:55:02.0836 0x1960 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
01:55:02.0852 0x1960 CSC - ok
01:55:02.0908 0x1960 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
01:55:02.0927 0x1960 CscService - ok
01:55:02.0985 0x1960 [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
01:55:02.0993 0x1960 dc3d - ok
01:55:03.0052 0x1960 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
01:55:03.0084 0x1960 DcomLaunch - ok
01:55:03.0116 0x1960 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
01:55:03.0144 0x1960 defragsvc - ok
01:55:03.0320 0x1960 [ 541C3C58BAB622549E8F96E7E88F71AA, 79D6710673B4F205B3918A14DF58B0933E2A631D5FF8C10D06C91ABD2D50BC7B ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
01:55:03.0401 0x1960 DevoloNetworkService - ok
01:55:03.0448 0x1960 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
01:55:03.0472 0x1960 DfsC - ok
01:55:03.0524 0x1960 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
01:55:03.0532 0x1960 dg_ssudbus - ok
01:55:03.0586 0x1960 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
01:55:03.0600 0x1960 Dhcp - ok
01:55:03.0729 0x1960 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
01:55:03.0763 0x1960 DiagTrack - ok
01:55:03.0786 0x1960 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
01:55:03.0810 0x1960 discache - ok
01:55:03.0828 0x1960 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
01:55:03.0836 0x1960 Disk - ok
01:55:03.0875 0x1960 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
01:55:03.0885 0x1960 Dnscache - ok
01:55:03.0932 0x1960 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
01:55:03.0959 0x1960 dot3svc - ok
01:55:04.0002 0x1960 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
01:55:04.0026 0x1960 DPS - ok
01:55:04.0076 0x1960 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
01:55:04.0083 0x1960 drmkaud - ok
01:55:04.0137 0x1960 [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
01:55:04.0147 0x1960 dtsoftbus01 - ok
01:55:04.0206 0x1960 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
01:55:04.0232 0x1960 DXGKrnl - ok
01:55:04.0257 0x1960 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
01:55:04.0282 0x1960 EapHost - ok
01:55:04.0680 0x1960 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
01:55:04.0748 0x1960 ebdrv - ok
01:55:04.0795 0x1960 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] EFS C:\Windows\System32\lsass.exe
01:55:04.0802 0x1960 EFS - ok
01:55:04.0839 0x1960 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
01:55:04.0860 0x1960 ehRecvr - ok
01:55:04.0879 0x1960 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
01:55:04.0889 0x1960 ehSched - ok
01:55:04.0923 0x1960 [ 2E6CE12D16B40DD96B4EBAFFAE79742D, E279713284279459671AEE7B86120BFA4C285A1ED721CFAEE2D6B8579518EA49 ] ElgatoGC656Y C:\Windows\system32\Drivers\ElgatoGC656.sys
01:55:04.0931 0x1960 ElgatoGC656Y - ok
01:55:04.0965 0x1960 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
01:55:04.0990 0x1960 elxstor - ok
01:55:05.0031 0x1960 [ 12C061D9F9621BE916D58191872EC281, 5285C5AF9ECDAF9CBB7A5D0FC97D882EC06778CF5688E86890A617E2670C413B ] ENTECH64 C:\Windows\system32\DRIVERS\ENTECH64.sys
01:55:05.0037 0x1960 ENTECH64 - ok
01:55:05.0078 0x1960 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
01:55:05.0085 0x1960 ErrDev - ok
01:55:05.0171 0x1960 [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
01:55:05.0179 0x1960 ES lite Service - ok
01:55:05.0231 0x1960 [ 84486624268E078255BC7AA47F0960BC, EC2540698B974572F0AC4A93D57C63295BAF66BF50F7416B9DFF5DE790EBDBE7 ] etdrv C:\Windows\etdrv.sys
01:55:05.0237 0x1960 etdrv - ok
01:55:05.0285 0x1960 [ 6C17A702399B0205AB7836C2B45CD806, 54BACC652D905A31959031DE1F6116187D6E7961D05DBC2211904CB7EE7E9CFC ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
01:55:05.0291 0x1960 EtronHub3 - ok
01:55:05.0330 0x1960 [ B5348A55CC9541FFA930E30BB0CC8EF6, D20DC1B5BD6DB6AF621611ADE9CDA413587C58515B84814423339AC7BD89F775 ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
01:55:05.0337 0x1960 EtronXHCI - ok
01:55:05.0364 0x1960 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
01:55:05.0394 0x1960 EventSystem - ok
01:55:05.0412 0x1960 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
01:55:05.0438 0x1960 exfat - ok
01:55:05.0465 0x1960 Fabs - ok
01:55:05.0487 0x1960 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
01:55:05.0513 0x1960 fastfat - ok
01:55:05.0574 0x1960 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
01:55:05.0594 0x1960 Fax - ok
01:55:05.0599 0x1960 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
01:55:05.0606 0x1960 fdc - ok
01:55:05.0620 0x1960 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
01:55:05.0643 0x1960 fdPHost - ok
01:55:05.0652 0x1960 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
01:55:05.0676 0x1960 FDResPub - ok
01:55:05.0681 0x1960 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
01:55:05.0689 0x1960 FileInfo - ok
01:55:05.0695 0x1960 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
01:55:05.0718 0x1960 Filetrace - ok
01:55:05.0808 0x1960 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC, 159EAA1893D871C309A063829CB3BC51A019FBCA1E07530B5CA1A382B2CCAF61 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
01:55:05.0877 0x1960 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic ( 1 )
01:55:06.0051 0x1960 Detect skipped due to KSN trusted
01:55:06.0051 0x1960 FirebirdServerMAGIXInstance - ok
01:55:06.0074 0x1960 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
01:55:06.0081 0x1960 flpydisk - ok
01:55:06.0175 0x1960 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
01:55:06.0187 0x1960 FltMgr - ok
01:55:06.0334 0x1960 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
01:55:06.0367 0x1960 FontCache - ok
01:55:06.0428 0x1960 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:55:06.0435 0x1960 FontCache3.0.0.0 - ok
01:55:06.0467 0x1960 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
01:55:06.0476 0x1960 FsDepends - ok
01:55:06.0535 0x1960 [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
01:55:06.0542 0x1960 fssfltr - ok
01:55:06.0717 0x1960 [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
01:55:06.0751 0x1960 fsssvc - ok
01:55:06.0808 0x1960 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
01:55:06.0816 0x1960 Fs_Rec - ok
01:55:06.0912 0x1960 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
01:55:06.0926 0x1960 fvevol - ok
01:55:07.0064 0x1960 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
01:55:07.0072 0x1960 gagp30kx - ok
01:55:07.0164 0x1960 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
01:55:07.0170 0x1960 gdrv - ok
01:55:07.0236 0x1960 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:55:07.0280 0x1960 GEARAspiWDM - ok
01:55:07.0355 0x1960 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
01:55:07.0391 0x1960 gpsvc - ok
01:55:07.0475 0x1960 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:55:07.0483 0x1960 gupdate - ok
01:55:07.0516 0x1960 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:55:07.0524 0x1960 gupdatem - ok
01:55:07.0565 0x1960 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
01:55:07.0571 0x1960 GVTDrv64 - ok
01:55:07.0585 0x1960 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
01:55:07.0593 0x1960 hcw85cir - ok
01:55:07.0630 0x1960 [ 8D7F985CE023640B8D24EAC045D7BABE, 8B3A2CBDA0D48D74519CB3B5928F77D65730D38E50D59995F2167C741F42FEC0 ] hcwhdpvr C:\Windows\system32\DRIVERS\hcwhdpvr.sys
01:55:07.0639 0x1960 hcwhdpvr - ok
01:55:07.0695 0x1960 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:55:07.0710 0x1960 HdAudAddService - ok
Code:
ATTFilter 01:55:07.0759 0x1960 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
01:55:07.0769 0x1960 HDAudBus - ok
01:55:07.0781 0x1960 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
01:55:07.0788 0x1960 HidBatt - ok
01:55:07.0793 0x1960 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
01:55:07.0803 0x1960 HidBth - ok
01:55:07.0807 0x1960 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
01:55:07.0817 0x1960 HidIr - ok
01:55:07.0839 0x1960 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
01:55:07.0863 0x1960 hidserv - ok
01:55:07.0900 0x1960 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
01:55:07.0907 0x1960 HidUsb - ok
01:55:07.0949 0x1960 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
01:55:07.0973 0x1960 hkmsvc - ok
01:55:08.0024 0x1960 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
01:55:08.0035 0x1960 HomeGroupListener - ok
01:55:08.0078 0x1960 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
01:55:08.0089 0x1960 HomeGroupProvider - ok
01:55:08.0116 0x1960 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
01:55:08.0124 0x1960 HpSAMD - ok
01:55:08.0185 0x1960 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
01:55:08.0205 0x1960 HTTP - ok
01:55:08.0249 0x1960 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
01:55:08.0255 0x1960 hwpolicy - ok
01:55:08.0302 0x1960 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
01:55:08.0311 0x1960 i8042prt - ok
01:55:08.0360 0x1960 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
01:55:08.0375 0x1960 iaStorV - ok
01:55:08.0501 0x1960 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
01:55:08.0504 0x1960 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
01:55:08.0593 0x1960 Detect skipped due to KSN trusted
01:55:08.0593 0x1960 IDriverT - ok
01:55:08.0647 0x1960 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:55:08.0669 0x1960 idsvc - ok
01:55:08.0696 0x1960 IEEtwCollectorService - ok
01:55:08.0720 0x1960 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
01:55:08.0727 0x1960 iirsp - ok
01:55:08.0791 0x1960 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
01:55:08.0815 0x1960 IKEEXT - ok
01:55:08.0951 0x1960 [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
01:55:09.0044 0x1960 IntcAzAudAddService - ok
01:55:09.0080 0x1960 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
01:55:09.0087 0x1960 intelide - ok
01:55:09.0116 0x1960 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
01:55:09.0124 0x1960 intelppm - ok
01:55:09.0147 0x1960 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
01:55:09.0172 0x1960 IPBusEnum - ok
01:55:09.0214 0x1960 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:55:09.0237 0x1960 IpFilterDriver - ok
01:55:09.0281 0x1960 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
01:55:09.0299 0x1960 iphlpsvc - ok
01:55:09.0342 0x1960 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
01:55:09.0350 0x1960 IPMIDRV - ok
01:55:09.0368 0x1960 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
01:55:09.0392 0x1960 IPNAT - ok
01:55:09.0460 0x1960 [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
01:55:09.0477 0x1960 iPod Service - ok
01:55:09.0484 0x1960 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
01:55:09.0495 0x1960 IRENUM - ok
01:55:09.0530 0x1960 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
01:55:09.0537 0x1960 isapnp - ok
01:55:09.0580 0x1960 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
01:55:09.0592 0x1960 iScsiPrt - ok
01:55:09.0610 0x1960 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
01:55:09.0617 0x1960 kbdclass - ok
01:55:09.0692 0x1960 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
01:55:09.0700 0x1960 kbdhid - ok
01:55:09.0720 0x1960 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] KeyIso C:\Windows\system32\lsass.exe
01:55:09.0727 0x1960 KeyIso - ok
01:55:09.0773 0x1960 [ A405647429DE231CD954D93F792CFBA2, EDE6095A20FE10EB26B3018457A44807A120508E6C514F2EAC12F5BA1F74841E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
01:55:09.0781 0x1960 KSecDD - ok
01:55:09.0847 0x1960 [ E4DC0909B5EACB5BF50F6252095BCFF2, 18779648B7FD9D3DFFD8F314E2197962DF98884CC9F025BC5D884984C1C0759D ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
01:55:09.0856 0x1960 KSecPkg - ok
01:55:09.0935 0x1960 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
01:55:09.0957 0x1960 ksthunk - ok
01:55:09.0990 0x1960 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
01:55:10.0020 0x1960 KtmRm - ok
01:55:10.0061 0x1960 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
01:55:10.0088 0x1960 LanmanServer - ok
01:55:10.0128 0x1960 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:55:10.0153 0x1960 LanmanWorkstation - ok
01:55:10.0195 0x1960 [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
01:55:10.0201 0x1960 LGBusEnum - ok
01:55:10.0234 0x1960 [ F7205E939F50B1C8D16F895916BE6756, 914326BAF54691AE880F6A3817B277F027F32AD7EF507A83F9A60DCA02901EDA ] LGSHidFilt C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
01:55:10.0242 0x1960 LGSHidFilt - ok
01:55:10.0283 0x1960 [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
01:55:10.0288 0x1960 LGVirHid - ok
01:55:10.0343 0x1960 [ C7D21310EA0A644AA6394DE1E46E3D31, 597F27A2696F945FD6388CA62D5EE98E44694F477F57EF8A68C2151B2276E838 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
01:55:10.0351 0x1960 libusb0 - ok
01:55:10.0370 0x1960 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
01:55:10.0393 0x1960 lltdio - ok
01:55:10.0418 0x1960 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
01:55:10.0446 0x1960 lltdsvc - ok
01:55:10.0459 0x1960 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
01:55:10.0482 0x1960 lmhosts - ok
01:55:10.0502 0x1960 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
01:55:10.0511 0x1960 LSI_FC - ok
01:55:10.0516 0x1960 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
01:55:10.0525 0x1960 LSI_SAS - ok
01:55:10.0536 0x1960 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:55:10.0545 0x1960 LSI_SAS2 - ok
01:55:10.0550 0x1960 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:55:10.0559 0x1960 LSI_SCSI - ok
01:55:10.0577 0x1960 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
01:55:10.0601 0x1960 luafv - ok
01:55:10.0621 0x1960 [ 4A503882318BB2F59218D401614E6AF6, 678FDE29EAE20353E780F53CFB9E79EA8B43E1E8BAC77890C178918DC5CCBA0E ] lvpepf64 C:\Windows\system32\DRIVERS\lv302a64.sys
01:55:10.0627 0x1960 lvpepf64 - ok
01:55:10.0665 0x1960 [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:55:10.0670 0x1960 LVPr2M64 - ok
01:55:10.0687 0x1960 [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:55:10.0692 0x1960 LVPr2Mon - ok
01:55:10.0734 0x1960 [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
01:55:10.0743 0x1960 LVPrcS64 - ok
01:55:10.0778 0x1960 [ 125AE13C293889001B8456CF3EB04A40, EB4B7135691935A9AC515099ED8C2767BC02308068AB9BEB2869B6E841268848 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
01:55:10.0789 0x1960 LVRS64 - ok
01:55:10.0809 0x1960 [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
01:55:10.0815 0x1960 LVUSBS64 - ok
01:55:10.0977 0x1960 [ 644E919936A8017B5F205E7FE7EDD19F, AE0BE09DF7192B2E8504DA8D65928C59C62635E0C8D08C6A4EB2A15D512E3E52 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
01:55:11.0075 0x1960 LVUVC64 - ok
01:55:11.0126 0x1960 [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
01:55:11.0133 0x1960 ManyCam - ok
01:55:11.0169 0x1960 [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
01:55:11.0176 0x1960 mcaudrv_simple - ok
01:55:11.0264 0x1960 [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
01:55:11.0275 0x1960 McComponentHostService - ok
01:55:11.0305 0x1960 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
01:55:11.0314 0x1960 Mcx2Svc - ok
01:55:11.0328 0x1960 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
01:55:11.0336 0x1960 megasas - ok
01:55:11.0362 0x1960 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
01:55:11.0373 0x1960 MegaSR - ok
01:55:11.0441 0x1960 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:55:11.0448 0x1960 Microsoft Office Groove Audit Service - ok
01:55:11.0484 0x1960 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
01:55:11.0508 0x1960 MMCSS - ok
01:55:11.0520 0x1960 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
01:55:11.0543 0x1960 Modem - ok
01:55:11.0562 0x1960 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
01:55:11.0572 0x1960 monitor - ok
01:55:11.0643 0x1960 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
01:55:11.0650 0x1960 mouclass - ok
01:55:11.0691 0x1960 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
01:55:11.0698 0x1960 mouhid - ok
01:55:11.0738 0x1960 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
01:55:11.0746 0x1960 mountmgr - ok
01:55:11.0809 0x1960 [ 6215DA3AD492CFBEBEE2ADBED0A6CC22, 07B290B58EF722825D50AF97E10B7098A2118B3F335E1FFF8F9E5E9AF7A0A6CE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:55:11.0818 0x1960 MozillaMaintenance - ok
01:55:11.0853 0x1960 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
01:55:11.0862 0x1960 mpio - ok
01:55:11.0877 0x1960 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
01:55:11.0900 0x1960 mpsdrv - ok
01:55:11.0962 0x1960 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
01:55:11.0999 0x1960 MpsSvc - ok
01:55:12.0044 0x1960 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
01:55:12.0053 0x1960 MRxDAV - ok
01:55:12.0089 0x1960 [ 43E1F4B0EFDC244D2A83995CCD7846F7, B8FB3CB6C736E20399AF3164197B14E977DDEC8FD164564501A328A8A3A30267 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
01:55:12.0098 0x1960 mrxsmb - ok
01:55:12.0176 0x1960 [ 62CEA59FF56B66154E08BD51D87392C2, 5DC63583E417659139FACD2365C2F8F3C9867E331F7374BD4F6C6E2386B5F746 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:55:12.0188 0x1960 mrxsmb10 - ok
01:55:12.0204 0x1960 [ 7D65B5E9573A26C204AA547457DBF544, CE88A733D031DEDBA6ADADB7D9911B3D151A2DDB566A65E0C9E1F07B1A4364AF ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:55:12.0213 0x1960 mrxsmb20 - ok
01:55:12.0246 0x1960 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
01:55:12.0253 0x1960 msahci - ok
01:55:12.0265 0x1960 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
01:55:12.0274 0x1960 msdsm - ok
01:55:12.0295 0x1960 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
01:55:12.0305 0x1960 MSDTC - ok
01:55:12.0331 0x1960 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
01:55:12.0368 0x1960 Msfs - ok
01:55:12.0394 0x1960 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
01:55:12.0416 0x1960 mshidkmdf - ok
01:55:12.0445 0x1960 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
01:55:12.0452 0x1960 msisadrv - ok
01:55:12.0479 0x1960 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
01:55:12.0504 0x1960 MSiSCSI - ok
01:55:12.0507 0x1960 msiserver - ok
01:55:12.0527 0x1960 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
01:55:12.0550 0x1960 MSKSSRV - ok
01:55:12.0562 0x1960 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
01:55:12.0584 0x1960 MSPCLOCK - ok
01:55:12.0591 0x1960 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
01:55:12.0613 0x1960 MSPQM - ok
01:55:12.0660 0x1960 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
01:55:12.0684 0x1960 MsRPC - ok
01:55:12.0694 0x1960 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
01:55:12.0701 0x1960 mssmbios - ok
01:55:12.0705 0x1960 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
01:55:12.0728 0x1960 MSTEE - ok
01:55:12.0736 0x1960 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
01:55:12.0743 0x1960 MTConfig - ok
01:55:12.0756 0x1960 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
01:55:12.0764 0x1960 Mup - ok
01:55:12.0812 0x1960 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
01:55:12.0842 0x1960 napagent - ok
01:55:12.0873 0x1960 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
01:55:12.0888 0x1960 NativeWifiP - ok
01:55:12.0997 0x1960 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
01:55:13.0021 0x1960 NDIS - ok
01:55:13.0043 0x1960 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
01:55:13.0066 0x1960 NdisCap - ok
01:55:13.0086 0x1960 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
01:55:13.0108 0x1960 NdisTapi - ok
01:55:13.0151 0x1960 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
01:55:13.0173 0x1960 Ndisuio - ok
01:55:13.0216 0x1960 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
01:55:13.0240 0x1960 NdisWan - ok
01:55:13.0281 0x1960 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
01:55:13.0322 0x1960 NDProxy - ok
01:55:13.0383 0x1960 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
01:55:13.0390 0x1960 Netaapl - ok
01:55:13.0407 0x1960 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
01:55:13.0430 0x1960 NetBIOS - ok
01:55:13.0479 0x1960 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
01:55:13.0505 0x1960 NetBT - ok
01:55:13.0511 0x1960 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] Netlogon C:\Windows\system32\lsass.exe
01:55:13.0518 0x1960 Netlogon - ok
01:55:13.0540 0x1960 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
01:55:13.0570 0x1960 Netman - ok
01:55:13.0622 0x1960 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:55:13.0634 0x1960 NetMsmqActivator - ok
01:55:13.0664 0x1960 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:55:13.0675 0x1960 NetPipeActivator - ok
01:55:13.0701 0x1960 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
01:55:13.0732 0x1960 netprofm - ok
01:55:13.0780 0x1960 [ B72BB9496A126FCFC7FC5945DED9B411, FA5CC4E93761FB2B59B9B34C699B1486560BDB39280AB1125DE42DB7C4BE303A ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
01:55:13.0800 0x1960 netr28x - ok
01:55:13.0821 0x1960 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:55:13.0833 0x1960 NetTcpActivator - ok
01:55:13.0838 0x1960 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:55:13.0849 0x1960 NetTcpPortSharing - ok
01:55:13.0875 0x1960 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
01:55:13.0883 0x1960 nfrd960 - ok
01:55:13.0926 0x1960 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
01:55:13.0939 0x1960 NlaSvc - ok
01:55:13.0954 0x1960 nlsX86cc - ok
01:55:13.0959 0x1960 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
01:55:13.0981 0x1960 Npfs - ok
01:55:14.0061 0x1960 [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo C:\Windows\sysWOW64\drivers\npf_devolo.sys
01:55:14.0067 0x1960 NPF_devolo - ok
01:55:14.0081 0x1960 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
01:55:14.0104 0x1960 nsi - ok
01:55:14.0111 0x1960 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
01:55:14.0133 0x1960 nsiproxy - ok
01:55:14.0212 0x1960 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
01:55:14.0267 0x1960 Ntfs - ok
01:55:14.0282 0x1960 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
01:55:14.0304 0x1960 Null - ok
01:55:14.0672 0x1960 [ E71E299FF15390E585BACF2C18F55078, 7A51D989DA55349B1761839DEAFD593B6E6F88C433B132E7B027467E050FBA67 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
01:55:14.0922 0x1960 nvlddmkm - ok
01:55:15.0050 0x1960 [ C50CD479FD1BB886244E2663DFFBCF6A, CCFB60425E56A12C097EC05A9E5549B4F4A10379818ABC64945487C16F882E3D ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
01:55:15.0087 0x1960 NvNetworkService - ok
01:55:15.0225 0x1960 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
01:55:15.0235 0x1960 nvraid - ok
01:55:15.0427 0x1960 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
01:55:15.0438 0x1960 nvstor - ok
01:55:15.0542 0x1960 [ AD7A2F3AF147B2CF302EBF7C1E01E027, B8DAAE7FE4B13C9CA3F1DEE7C98F5CA49D4D1678C82C51D6801210838319BAE5 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
01:55:15.0549 0x1960 NvStreamKms - ok
01:55:15.0573 0x1960 NvStreamSvc - ok
01:55:15.0652 0x1960 [ 415695F5A54E91E869EEBFEA261361A6, 1829C15E07D902686171C8A66EB03040A037CAC1E00E24BF598030D9DA795CEC ] nvsvc C:\Windows\system32\nvvsvc.exe
01:55:15.0676 0x1960 nvsvc - ok
01:55:15.0701 0x1960 [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
01:55:15.0708 0x1960 nvvad_WaveExtensible - ok
01:55:15.0742 0x1960 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
01:55:15.0751 0x1960 nv_agp - ok
01:55:15.0829 0x1960 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:55:15.0843 0x1960 odserv - ok
01:55:15.0882 0x1960 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
01:55:15.0890 0x1960 ohci1394 - ok
01:55:15.0928 0x1960 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:55:15.0936 0x1960 ose - ok
01:55:15.0970 0x1960 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
01:55:15.0983 0x1960 p2pimsvc - ok
01:55:15.0999 0x1960 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
01:55:16.0015 0x1960 p2psvc - ok
01:55:16.0122 0x1960 [ F7BAC457D6AE2F7E18FA69C8180A7843, 19C1B162FD17A0D5441183C331BF3020D6EF00DAFFBF0464C317BA208BFD2B2A ] PaceLicenseDServices C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
01:55:16.0183 0x1960 PaceLicenseDServices - detected UnsignedFile.Multi.Generic ( 1 )
01:55:16.0270 0x1960 Detect skipped due to KSN trusted
01:55:16.0271 0x1960 PaceLicenseDServices - ok
01:55:16.0327 0x1960 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
01:55:16.0336 0x1960 Parport - ok
01:55:16.0375 0x1960 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
01:55:16.0383 0x1960 partmgr - ok
01:55:16.0424 0x1960 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
01:55:16.0435 0x1960 PcaSvc - ok
01:55:16.0477 0x1960 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
01:55:16.0487 0x1960 pci - ok
01:55:16.0527 0x1960 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
01:55:16.0534 0x1960 pciide - ok
01:55:16.0554 0x1960 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
01:55:16.0565 0x1960 pcmcia - ok
01:55:16.0579 0x1960 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
01:55:16.0587 0x1960 pcw - ok
01:55:16.0639 0x1960 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
01:55:16.0658 0x1960 PEAUTH - ok
01:55:16.0705 0x1960 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
01:55:16.0737 0x1960 PeerDistSvc - ok
01:55:16.0764 0x1960 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
01:55:16.0773 0x1960 PerfHost - ok
01:55:16.0865 0x1960 [ AE0B94363DA0F60D42B9D05B352F61ED, 284EA0123798BDBBAA93F912AD45B3D3F1F662FDDA5C73C0AC0D76AC2F9033C0 ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
01:55:16.0945 0x1960 PID_PEPI - ok
01:55:17.0032 0x1960 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
01:55:17.0080 0x1960 pla - ok
01:55:17.0121 0x1960 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
01:55:17.0137 0x1960 PlugPlay - ok
01:55:17.0175 0x1960 PnkBstrA - ok
01:55:17.0221 0x1960 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
01:55:17.0230 0x1960 PNRPAutoReg - ok
01:55:17.0262 0x1960 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
01:55:17.0276 0x1960 PNRPsvc - ok
01:55:17.0332 0x1960 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
01:55:17.0363 0x1960 PolicyAgent - ok
01:55:17.0387 0x1960 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
01:55:17.0412 0x1960 Power - ok
01:55:17.0450 0x1960 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
01:55:17.0474 0x1960 PptpMiniport - ok
01:55:17.0502 0x1960 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
01:55:17.0511 0x1960 Processor - ok
01:55:17.0561 0x1960 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
01:55:17.0573 0x1960 ProfSvc - ok
01:55:17.0587 0x1960 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] ProtectedStorage C:\Windows\system32\lsass.exe
01:55:17.0594 0x1960 ProtectedStorage - ok
01:55:17.0719 0x1960 [ 77D05941A147C152CA088D7364D8944B, 1296DF0BAA4228C437C2691B1C5E533921A4A97305179D0E0CE1CA4CE1A318D3 ] PS3 Media Server C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
01:55:17.0732 0x1960 PS3 Media Server - ok
01:55:17.0775 0x1960 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
01:55:17.0799 0x1960 Psched - ok
01:55:17.0836 0x1960 [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
01:55:17.0843 0x1960 PxHlpa64 - ok
01:55:17.0899 0x1960 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
01:55:17.0934 0x1960 ql2300 - ok
01:55:17.0951 0x1960 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
01:55:17.0960 0x1960 ql40xx - ok
01:55:17.0982 0x1960 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
01:55:17.0997 0x1960 QWAVE - ok
01:55:18.0007 0x1960 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
01:55:18.0017 0x1960 QWAVEdrv - ok
01:55:18.0111 0x1960 [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
01:55:18.0121 0x1960 RapiMgr - ok
01:55:18.0136 0x1960 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
01:55:18.0158 0x1960 RasAcd - ok
01:55:18.0186 0x1960 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
01:55:18.0209 0x1960 RasAgileVpn - ok
01:55:18.0221 0x1960 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
01:55:18.0246 0x1960 RasAuto - ok
01:55:18.0280 0x1960 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
01:55:18.0304 0x1960 Rasl2tp - ok
01:55:18.0348 0x1960 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
01:55:18.0376 0x1960 RasMan - ok
01:55:18.0388 0x1960 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
01:55:18.0411 0x1960 RasPppoe - ok
01:55:18.0427 0x1960 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
01:55:18.0450 0x1960 RasSstp - ok
01:55:18.0563 0x1960 [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
01:55:18.0573 0x1960 Razer Game Scanner Service - ok
01:55:18.0644 0x1960 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
01:55:18.0671 0x1960 rdbss - ok
01:55:18.0682 0x1960 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
01:55:18.0691 0x1960 rdpbus - ok
01:55:18.0703 0x1960 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
01:55:18.0725 0x1960 RDPCDD - ok
01:55:18.0767 0x1960 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
01:55:18.0777 0x1960 RDPDR - ok
01:55:18.0790 0x1960 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
01:55:18.0812 0x1960 RDPENCDD - ok
01:55:18.0826 0x1960 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
01:55:18.0850 0x1960 RDPREFMP - ok
01:55:18.0906 0x1960 [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
01:55:18.0912 0x1960 RdpVideoMiniport - ok
01:55:18.0944 0x1960 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
01:55:18.0956 0x1960 RDPWD - ok
01:55:18.0995 0x1960 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
01:55:19.0006 0x1960 rdyboost - ok
01:55:19.0023 0x1960 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
01:55:19.0048 0x1960 RemoteAccess - ok
01:55:19.0071 0x1960 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
01:55:19.0098 0x1960 RemoteRegistry - ok
01:55:19.0111 0x1960 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
01:55:19.0135 0x1960 RpcEptMapper - ok
Code:
ATTFilter 01:55:19.0146 0x1960 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
01:55:19.0154 0x1960 RpcLocator - ok
01:55:19.0202 0x1960 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
01:55:19.0234 0x1960 RpcSs - ok
01:55:19.0245 0x1960 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
01:55:19.0269 0x1960 rspndr - ok
01:55:19.0303 0x1960 [ 60EB8A87357CA5B088B422D1E55A2405, A4E8ACACB9EFB094D05EC24DFB65D969DBA14634EEB6B4DBEF500BDEA8D78DB5 ] rt61x64 C:\Windows\system32\DRIVERS\netr6164.sys
01:55:19.0316 0x1960 rt61x64 - ok
01:55:19.0373 0x1960 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
01:55:19.0386 0x1960 RTL8167 - ok
01:55:19.0457 0x1960 [ B3F36B4B3F192EA87DDC119F3A0B3E45, DE80502994ED9977AD64483385A0BC0C6060EA9E9C08645E72FBBCFE8B2358C7 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
01:55:19.0481 0x1960 RTL8192su - ok
01:55:19.0534 0x1960 [ 5FA5ED95D2B02E92B9BC269A6B0B5039, 9C7CAB795658EC965B350318A9F5FC4EEFD2086C0BD71BAC7DD8B4A4863F6AE7 ] rzjstk C:\Windows\system32\DRIVERS\rzjstk.sys
01:55:19.0540 0x1960 rzjstk - ok
01:55:19.0589 0x1960 [ D76C183CC06A1AF1F25377DA2C2FB324, 00188E5965764036A388CDD28A2A4F49B0EECFF8A4FE08E43E63F9D35801FF0B ] rzkeypadendpt C:\Windows\system32\DRIVERS\rzkeypadendpt.sys
01:55:19.0596 0x1960 rzkeypadendpt - ok
01:55:19.0651 0x1960 [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk C:\Windows\system32\drivers\rzpmgrk.sys
01:55:19.0657 0x1960 rzpmgrk - ok
01:55:19.0719 0x1960 [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk C:\Windows\system32\drivers\rzpnk.sys
01:55:19.0727 0x1960 rzpnk - ok
01:55:19.0768 0x1960 [ 77C5AB228FE307C55FEF0C575E218771, 73C9D4593DA694B2D52817F608E749296D9CC1C44906C97204595476B68AD50F ] rzudd C:\Windows\system32\DRIVERS\rzudd.sys
01:55:19.0777 0x1960 rzudd - ok
01:55:19.0816 0x1960 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
01:55:19.0823 0x1960 s3cap - ok
01:55:19.0837 0x1960 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] SamSs C:\Windows\system32\lsass.exe
01:55:19.0844 0x1960 SamSs - ok
01:55:19.0881 0x1960 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
01:55:19.0890 0x1960 sbp2port - ok
01:55:19.0912 0x1960 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
01:55:19.0939 0x1960 SCardSvr - ok
01:55:19.0979 0x1960 [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D, 64A07303E538A1EE439D4AAD0DEBBD6037219D37B884026701A06E59A729E9C9 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
01:55:19.0987 0x1960 SCDEmu - ok
01:55:20.0026 0x1960 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
01:55:20.0048 0x1960 scfilter - ok
01:55:20.0105 0x1960 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
01:55:20.0133 0x1960 Schedule - ok
01:55:20.0181 0x1960 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
01:55:20.0203 0x1960 SCPolicySvc - ok
01:55:20.0248 0x1960 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
01:55:20.0258 0x1960 SDRSVC - ok
01:55:20.0280 0x1960 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
01:55:20.0305 0x1960 secdrv - ok
01:55:20.0339 0x1960 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
01:55:20.0361 0x1960 seclogon - ok
01:55:20.0372 0x1960 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
01:55:20.0396 0x1960 SENS - ok
01:55:20.0408 0x1960 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
01:55:20.0416 0x1960 SensrSvc - ok
01:55:20.0478 0x1960 [ 84AC127242DD3CCDE02F9A4673214B1F, 87E229138AAF10951C153F0BEC9B46CB459FE80074E02DE1DA0BC0FA5A11F237 ] Sentinel64 C:\Windows\System32\Drivers\Sentinel64.sys
01:55:20.0486 0x1960 Sentinel64 - ok
01:55:20.0503 0x1960 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
01:55:20.0510 0x1960 Serenum - ok
01:55:20.0576 0x1960 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
01:55:20.0585 0x1960 Serial - ok
01:55:20.0713 0x1960 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
01:55:20.0722 0x1960 sermouse - ok
01:55:20.0765 0x1960 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
01:55:20.0789 0x1960 SessionEnv - ok
01:55:20.0833 0x1960 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
01:55:20.0842 0x1960 sffdisk - ok
01:55:20.0873 0x1960 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
01:55:20.0881 0x1960 sffp_mmc - ok
01:55:20.0905 0x1960 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
01:55:20.0914 0x1960 sffp_sd - ok
01:55:20.0926 0x1960 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
01:55:20.0933 0x1960 sfloppy - ok
01:55:20.0959 0x1960 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
01:55:20.0989 0x1960 SharedAccess - ok
01:55:21.0036 0x1960 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:55:21.0065 0x1960 ShellHWDetection - ok
01:55:21.0085 0x1960 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:55:21.0092 0x1960 SiSRaid2 - ok
01:55:21.0110 0x1960 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
01:55:21.0118 0x1960 SiSRaid4 - ok
01:55:21.0216 0x1960 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
01:55:21.0231 0x1960 SkypeUpdate - ok
01:55:21.0259 0x1960 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
01:55:21.0284 0x1960 Smb - ok
01:55:21.0311 0x1960 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
01:55:21.0319 0x1960 SNMPTRAP - ok
01:55:21.0329 0x1960 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
01:55:21.0337 0x1960 spldr - ok
01:55:21.0388 0x1960 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
01:55:21.0406 0x1960 Spooler - ok
01:55:21.0530 0x1960 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
01:55:21.0620 0x1960 sppsvc - ok
01:55:21.0637 0x1960 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
01:55:21.0662 0x1960 sppuinotify - ok
01:55:21.0710 0x1960 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
01:55:21.0725 0x1960 srv - ok
01:55:21.0774 0x1960 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
01:55:21.0788 0x1960 srv2 - ok
01:55:21.0797 0x1960 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
01:55:21.0807 0x1960 srvnet - ok
01:55:21.0821 0x1960 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
01:55:21.0848 0x1960 SSDPSRV - ok
01:55:21.0858 0x1960 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
01:55:21.0882 0x1960 SstpSvc - ok
01:55:21.0928 0x1960 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
01:55:21.0938 0x1960 ssudmdm - ok
01:55:22.0020 0x1960 [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
01:55:22.0041 0x1960 Steam Client Service - ok
01:55:22.0106 0x1960 [ A9D26626BEADF5A0641BF6B5095EF309, EABC711466FECA20058D7E24CA2593059E1F113B38A2E7574822E48BFBBF4146 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
01:55:22.0120 0x1960 Stereo Service - ok
01:55:22.0135 0x1960 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
01:55:22.0142 0x1960 stexstor - ok
01:55:22.0195 0x1960 [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\drivers\serscan.sys
01:55:22.0201 0x1960 StillCam - ok
01:55:22.0264 0x1960 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
01:55:22.0286 0x1960 stisvc - ok
01:55:22.0329 0x1960 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
01:55:22.0337 0x1960 storflt - ok
01:55:22.0347 0x1960 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
01:55:22.0354 0x1960 storvsc - ok
01:55:22.0396 0x1960 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
01:55:22.0402 0x1960 swenum - ok
01:55:22.0428 0x1960 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
01:55:22.0461 0x1960 swprv - ok
01:55:22.0476 0x1960 Synth3dVsc - ok
01:55:22.0557 0x1960 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
01:55:22.0598 0x1960 SysMain - ok
01:55:22.0634 0x1960 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:55:22.0647 0x1960 TabletInputService - ok
01:55:22.0896 0x1960 [ 34D92E8CB04DCAEEAE054FEDE7526282, 73F38FAB499EBA5344251F9A4B1883D326AB7F55022B81C596EAA664906482F1 ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
01:55:23.0023 0x1960 TabletServiceWacom - ok
01:55:23.0078 0x1960 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
01:55:23.0093 0x1960 tap0901t - ok
01:55:23.0133 0x1960 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
01:55:23.0161 0x1960 TapiSrv - ok
01:55:23.0174 0x1960 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
01:55:23.0198 0x1960 TBS - ok
01:55:23.0271 0x1960 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
01:55:23.0317 0x1960 Tcpip - ok
01:55:23.0379 0x1960 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
01:55:23.0421 0x1960 TCPIP6 - ok
01:55:23.0457 0x1960 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
01:55:23.0465 0x1960 tcpipreg - ok
01:55:23.0481 0x1960 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
01:55:23.0488 0x1960 TDPIPE - ok
01:55:23.0516 0x1960 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
01:55:23.0523 0x1960 TDTCP - ok
01:55:23.0575 0x1960 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
01:55:23.0584 0x1960 tdx - ok
01:55:23.0783 0x1960 [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9 C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
01:55:23.0885 0x1960 TeamViewer9 - ok
01:55:23.0924 0x1960 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
01:55:23.0932 0x1960 TermDD - ok
01:55:23.0986 0x1960 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
01:55:24.0005 0x1960 TermService - ok
01:55:24.0020 0x1960 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
01:55:24.0031 0x1960 Themes - ok
01:55:24.0051 0x1960 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
01:55:24.0075 0x1960 THREADORDER - ok
01:55:24.0105 0x1960 [ 8DD33A57339ADAE34CDB12994ACBC50F, 58FD3AC48E3EE6BECCED4E0227C73D6783BF552A3A0B5FD43F091580108E1A0D ] Tpkd C:\Windows\system32\drivers\Tpkd.sys
01:55:24.0114 0x1960 Tpkd - ok
01:55:24.0121 0x1960 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
01:55:24.0147 0x1960 TrkWks - ok
01:55:24.0202 0x1960 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:55:24.0227 0x1960 TrustedInstaller - ok
01:55:24.0267 0x1960 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
01:55:24.0274 0x1960 tssecsrv - ok
01:55:24.0315 0x1960 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
01:55:24.0322 0x1960 TsUsbFlt - ok
01:55:24.0328 0x1960 tsusbhub - ok
01:55:24.0374 0x1960 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
01:55:24.0398 0x1960 tunnel - ok
01:55:24.0491 0x1960 [ A96BE6F92EDE53BA5997B2AE7367EACD, D2CE331F0BBA15C19A66BEF91FBDA96536F656C89DC9FE1A2F88D0C368986BB2 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
01:55:24.0509 0x1960 TunngleService - ok
01:55:24.0534 0x1960 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
01:55:24.0542 0x1960 uagp35 - ok
01:55:24.0591 0x1960 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
01:55:24.0619 0x1960 udfs - ok
01:55:24.0634 0x1960 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
01:55:24.0643 0x1960 UI0Detect - ok
01:55:24.0659 0x1960 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
01:55:24.0667 0x1960 uliagpkx - ok
01:55:24.0706 0x1960 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
01:55:24.0714 0x1960 umbus - ok
01:55:24.0730 0x1960 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
01:55:24.0737 0x1960 UmPass - ok
01:55:24.0774 0x1960 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
01:55:24.0785 0x1960 UmRdpService - ok
01:55:24.0875 0x1960 [ AEBE8F338432F9DE5AE0CAE4D4BAED76, A11DE1BAEF6E0D30B8801C0AEC589F0DA6FEC5E010BD6A18584D96E0AF9243B8 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
01:55:24.0889 0x1960 UMVPFSrv - ok
01:55:24.0914 0x1960 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
01:55:24.0944 0x1960 upnphost - ok
01:55:25.0012 0x1960 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
01:55:25.0020 0x1960 USBAAPL64 - ok
01:55:25.0087 0x1960 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
01:55:25.0095 0x1960 usbaudio - ok
01:55:25.0148 0x1960 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
01:55:25.0156 0x1960 usbccgp - ok
01:55:25.0232 0x1960 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
01:55:25.0240 0x1960 usbcir - ok
01:55:25.0273 0x1960 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
01:55:25.0280 0x1960 usbehci - ok
01:55:25.0306 0x1960 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
01:55:25.0318 0x1960 usbhub - ok
01:55:25.0327 0x1960 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
01:55:25.0334 0x1960 usbohci - ok
01:55:25.0349 0x1960 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
01:55:25.0357 0x1960 usbprint - ok
01:55:25.0394 0x1960 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:55:25.0401 0x1960 USBSTOR - ok
01:55:25.0417 0x1960 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
01:55:25.0424 0x1960 usbuhci - ok
01:55:25.0484 0x1960 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
01:55:25.0494 0x1960 usbvideo - ok
01:55:25.0511 0x1960 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
01:55:25.0535 0x1960 UxSms - ok
01:55:25.0566 0x1960 [ 18436F7006443FB76145B3D35162A810, 1670A711D808AEA66A63443CE752EB771D4BF34CA838B0040849A436FFF77E69 ] VaneFltr C:\Windows\system32\drivers\Lachesis.sys
01:55:25.0572 0x1960 VaneFltr - ok
01:55:25.0586 0x1960 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] VaultSvc C:\Windows\system32\lsass.exe
01:55:25.0594 0x1960 VaultSvc - ok
01:55:25.0630 0x1960 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
01:55:25.0638 0x1960 vdrvroot - ok
01:55:25.0688 0x1960 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
01:55:25.0721 0x1960 vds - ok
01:55:25.0783 0x1960 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
01:55:25.0793 0x1960 vga - ok
01:55:25.0859 0x1960 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
01:55:25.0882 0x1960 VgaSave - ok
01:55:25.0886 0x1960 VGPU - ok
01:55:25.0926 0x1960 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
01:55:25.0937 0x1960 vhdmp - ok
01:55:25.0974 0x1960 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
01:55:25.0982 0x1960 viaide - ok
01:55:26.0018 0x1960 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
01:55:26.0028 0x1960 vmbus - ok
01:55:26.0046 0x1960 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
01:55:26.0054 0x1960 VMBusHID - ok
01:55:26.0118 0x1960 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
01:55:26.0126 0x1960 volmgr - ok
01:55:26.0173 0x1960 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
01:55:26.0186 0x1960 volmgrx - ok
01:55:26.0202 0x1960 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
01:55:26.0215 0x1960 volsnap - ok
01:55:26.0248 0x1960 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
01:55:26.0258 0x1960 vsmraid - ok
01:55:26.0329 0x1960 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
01:55:26.0381 0x1960 VSS - ok
01:55:26.0397 0x1960 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
01:55:26.0406 0x1960 vwifibus - ok
01:55:26.0428 0x1960 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
01:55:26.0439 0x1960 vwififlt - ok
01:55:26.0463 0x1960 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
01:55:26.0494 0x1960 W32Time - ok
01:55:26.0538 0x1960 [ FE75777289278A4941FE6139E82B3BD9, 4B0F3117C7D905240DB54EEE376404757258051CC5F8F312CAF748E1811368C6 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
01:55:26.0544 0x1960 wacmoumonitor - ok
01:55:26.0586 0x1960 [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
01:55:26.0591 0x1960 wacommousefilter - ok
01:55:26.0602 0x1960 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
01:55:26.0609 0x1960 WacomPen - ok
01:55:26.0641 0x1960 [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys
01:55:26.0647 0x1960 wacomvhid - ok
01:55:26.0668 0x1960 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
01:55:26.0691 0x1960 WANARP - ok
01:55:26.0703 0x1960 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
01:55:26.0726 0x1960 Wanarpv6 - ok
01:55:26.0796 0x1960 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
01:55:26.0831 0x1960 wbengine - ok
01:55:26.0856 0x1960 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
01:55:26.0871 0x1960 WbioSrvc - ok
01:55:26.0925 0x1960 [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
01:55:26.0939 0x1960 WcesComm - ok
01:55:27.0002 0x1960 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
01:55:27.0020 0x1960 wcncsvc - ok
01:55:27.0034 0x1960 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:55:27.0042 0x1960 WcsPlugInService - ok
01:55:27.0056 0x1960 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
01:55:27.0064 0x1960 Wd - ok
01:55:27.0121 0x1960 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
01:55:27.0144 0x1960 Wdf01000 - ok
01:55:27.0155 0x1960 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
01:55:27.0168 0x1960 WdiServiceHost - ok
01:55:27.0172 0x1960 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
01:55:27.0184 0x1960 WdiSystemHost - ok
01:55:27.0223 0x1960 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
01:55:27.0235 0x1960 WebClient - ok
01:55:27.0248 0x1960 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
01:55:27.0276 0x1960 Wecsvc - ok
01:55:27.0290 0x1960 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
01:55:27.0315 0x1960 wercplsupport - ok
01:55:27.0334 0x1960 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
01:55:27.0358 0x1960 WerSvc - ok
01:55:27.0364 0x1960 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
01:55:27.0386 0x1960 WfpLwf - ok
01:55:27.0396 0x1960 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
01:55:27.0403 0x1960 WIMMount - ok
01:55:27.0423 0x1960 WinDefend - ok
01:55:27.0436 0x1960 WinHttpAutoProxySvc - ok
01:55:27.0473 0x1960 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
01:55:27.0500 0x1960 Winmgmt - ok
01:55:27.0588 0x1960 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
01:55:27.0634 0x1960 WinRM - ok
01:55:27.0686 0x1960 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
01:55:27.0695 0x1960 WinUsb - ok
01:55:27.0732 0x1960 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
01:55:27.0759 0x1960 Wlansvc - ok
01:55:27.0787 0x1960 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:55:27.0794 0x1960 wlcrasvc - ok
01:55:27.0913 0x1960 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:55:27.0962 0x1960 wlidsvc - ok
01:55:28.0001 0x1960 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
01:55:28.0008 0x1960 WmiAcpi - ok
01:55:28.0029 0x1960 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
01:55:28.0041 0x1960 wmiApSrv - ok
01:55:28.0048 0x1960 WMPNetworkSvc - ok
01:55:28.0059 0x1960 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
01:55:28.0068 0x1960 WPCSvc - ok
01:55:28.0111 0x1960 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
01:55:28.0123 0x1960 WPDBusEnum - ok
01:55:28.0133 0x1960 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
01:55:28.0158 0x1960 ws2ifsl - ok
01:55:28.0170 0x1960 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
01:55:28.0182 0x1960 wscsvc - ok
01:55:28.0222 0x1960 [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
01:55:28.0231 0x1960 WSDPrintDevice - ok
01:55:28.0234 0x1960 WSearch - ok
01:55:28.0336 0x1960 [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv C:\Windows\system32\wuaueng.dll
01:55:28.0393 0x1960 wuauserv - ok
01:55:28.0433 0x1960 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
01:55:28.0442 0x1960 WudfPf - ok
01:55:28.0459 0x1960 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
01:55:28.0469 0x1960 WUDFRd - ok
01:55:28.0508 0x1960 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
01:55:28.0517 0x1960 wudfsvc - ok
01:55:28.0557 0x1960 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
01:55:28.0569 0x1960 WwanSvc - ok
01:55:28.0615 0x1960 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
01:55:28.0622 0x1960 xusb21 - ok
01:55:28.0657 0x1960 ================ Scan global ===============================
01:55:28.0696 0x1960 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
01:55:28.0739 0x1960 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
01:55:28.0755 0x1960 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
01:55:28.0776 0x1960 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
01:55:28.0813 0x1960 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
01:55:28.0819 0x1960 [ Global ] - ok
01:55:28.0819 0x1960 ================ Scan MBR ==================================
01:55:28.0827 0x1960 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
01:55:28.0998 0x1960 \Device\Harddisk1\DR1 - ok
01:55:29.0045 0x1960 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
01:55:29.0113 0x1960 \Device\Harddisk0\DR0 - ok
01:55:29.0114 0x1960 ================ Scan VBR ==================================
01:55:29.0115 0x1960 [ CDB057F2BB39ED9D067F761AEC114D0F ] \Device\Harddisk1\DR1\Partition1
01:55:29.0116 0x1960 \Device\Harddisk1\DR1\Partition1 - ok
01:55:29.0118 0x1960 [ 1932210E82096A1056F7A312EBF08D66 ] \Device\Harddisk1\DR1\Partition2
01:55:29.0120 0x1960 \Device\Harddisk1\DR1\Partition2 - ok
01:55:29.0121 0x1960 [ A087C0120C9361BE942045AE6FAFCA2A ] \Device\Harddisk0\DR0\Partition1
01:55:29.0177 0x1960 \Device\Harddisk0\DR0\Partition1 - ok
01:55:29.0177 0x1960 ================ Scan generic autorun ======================
01:55:29.0541 0x1960 [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
01:55:29.0892 0x1960 RtHDVCpl - ok
01:55:30.0642 0x1960 [ 5EA707336336DDFADE5FD3726CEA1523, 6136D88012140B3A43C7DC6CD0CBDB867BC6BA62D718269B73ED9F1B340F6768 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
01:55:30.0731 0x1960 NvBackend - ok
01:55:30.0928 0x1960 [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
01:55:31.0108 0x1960 iTunesHelper - ok
01:55:31.0317 0x1960 [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdcBase.exe
01:55:31.0354 0x1960 Windows Mobile-based device management - ok
01:55:31.0537 0x1960 [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
01:55:31.0564 0x1960 HP Software Update - ok
01:55:31.0723 0x1960 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
01:55:31.0802 0x1960 Sidebar - ok
01:55:31.0849 0x1960 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
01:55:31.0871 0x1960 mctadmin - ok
01:55:31.0914 0x1960 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
01:55:31.0942 0x1960 Sidebar - ok
01:55:31.0968 0x1960 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
01:55:31.0979 0x1960 mctadmin - ok
01:55:32.0100 0x1960 [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
01:55:32.0177 0x1960 HP Officejet Pro 8600 (NET) - ok
01:55:32.0560 0x1960 [ C10E5EF1B85DE5B79AC2815C9A677D1F, 33162556A7F41CF107480A788104DD28A0C73C4AFFB224124A6C474D9B47A4DD ] C:\Users\Jeremy J. Erb\AppData\Roaming\uTorrent\uTorrent.exe
01:55:33.0611 0x1960 uTorrent - ok
01:55:33.0946 0x1960 [ 7A2870C2A8283B3630BF7670D0362B94, A36AA6F2A78DF3E66ACA484E9E33D0CB01207FF52A0A8C006424493A5C489C48 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
01:55:33.0971 0x1960 GoogleChromeAutoLaunch_90C1996279C19B2AA865F0F198BD9F08 - ok
01:55:34.0362 0x1960 [ E17E53F297560C31631C4AC549385AE3, 7A5A6895D7DEF32B4CC7EF037E15CF5C4B01E28A3903F30686910C4AA89835A5 ] C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
01:55:34.0419 0x1960 uTorrent - ok
01:55:34.0516 0x1960 [ 8D80BFF016E907AAE76E5667E0A8F1E0, 63728CD5E6EEBCC90B5FF854B6ACB565B194E46B71CAF89FB992E65433DD20E0 ] C:\Program Files (x86)\Voobly\voobly.exe
01:55:34.0522 0x1960 Voobly - detected UnsignedFile.Multi.Generic ( 1 )
01:55:34.0665 0x1960 Voobly ( UnsignedFile.Multi.Generic ) - warning
01:55:34.0920 0x1960 [ D192592FD0A99D9F360906D3F6DFBFF1, E0ED95A8AB4D26A40BF95B8DB2D968AD1FDB36B8C4DF2990185E0458B3948CA3 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
01:55:34.0989 0x1960 WSHelperSetup.exe - ok
01:55:35.0151 0x1960 [ E1473471169EC64C57B49F9C984DFB1A, 3E05B4AD77F5CE13B01B7E1FD460F9779FF9E7C9E6DEBD5225EC840D96D12AA1 ] C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe
01:55:35.0306 0x1960 Logitech Vid - ok
01:55:35.0315 0x1960 Waiting for KSN requests completion. In queue: 151
01:55:36.0333 0x1960 Win FW state via NFP2: enabled ( trusted )
01:55:36.0609 0x1960 ============================================================
01:55:36.0609 0x1960 Scan finished
01:55:36.0609 0x1960 ============================================================
01:55:36.0617 0x34fc Detected object count: 2
01:55:36.0617 0x34fc Actual detected object count: 2
01:56:00.0259 0x34fc BEService ( UnsignedFile.Multi.Generic ) - skipped by user
01:56:00.0259 0x34fc BEService ( UnsignedFile.Multi.Generic ) - User select action: Skip
01:56:00.0260 0x34fc Voobly ( UnsignedFile.Multi.Generic ) - skipped by user
01:56:00.0260 0x34fc Voobly ( UnsignedFile.Multi.Generic ) - User select action: Skip
Im FRST-Logfile wird viermal etwas mit dem Wort "ATTENTION" gekennzeichnet, ist das bedenklich? Was soll ich als nächstes tun? Mit ATTENTION gekenntzeichnete Einträge: Code:
ATTFilter ==================== Registry (Whitelisted) ===========================
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
Chrome:
=======
CHR Extension: (Avira Sparberater) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojnmaaohncijldefpkpkkakjonfmgeb [2015-04-29] [UpdateUrl: hxxp://ciuvo.com/ciuvo/update?tag=avira&campaign=] <==== ATTENTION
|
|
25.11.2015, 09:13
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | .scr Datei ausversehen heruntergeladen. Eine Hintertür ist nicht dafür da, um irgendwelche Dateien, die der Anwender versehentlich runtergeladen hat, automatisch auszuführen. Hättest du eine Hintertür (backdoor) im System wär es dann ja schon kompromittiert. (durch die Cracks/Keygens (für Adobe) hast du jedenfalls fahrlässig eine Infektion in Kauf genommen) Bitte mit MBAR fortfahren: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.11.2015, 13:03
| #13 | |
| | .scr Datei ausversehen heruntergeladen. Beim start der Software Malwarebytes Anti-Rootkit Beta kommt diese Meldung: Zitat:
Log-File 1. Scan: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.11.26.04
rootkit: v2015.11.23.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18015
Nerdy By Nerds :: MATRIX [administrator]
26.11.2015 18:48:41
mbar-log-2015-11-26 (18-48-41).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 461240
Time elapsed: 48 minute(s), 2 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\Users\Nerdy By Nerds\Desktop\Games\Die Sims\The.Sims.3.Generic.NoDVD.Patcher.exe (HackTool.Agent) -> Delete on reboot. [e8b47012d2b96acc5805c3434db3b24e]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Log-File 2. Scan: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.11.26.04
rootkit: v2015.11.23.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18015
Nerdy By Nerds :: MATRIX [administrator]
26.11.2015 20:15:10
mbar-log-2015-11-26 (20-15-10).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 461498
Time elapsed: 57 minute(s), 57 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
27.11.2015, 13:24
| #14 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | .scr Datei ausversehen heruntergeladen.Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.11.2015, 13:36
| #15 |
| | .scr Datei ausversehen heruntergeladen. Ja hab was übersehen sorry, die Datei ist jetzt ja weg. |
|
| Themen zu .scr Datei ausversehen heruntergeladen. |
| .scr datei, .scr trojaner, befallen, compu, computer, daraus, datei, dnsapi.dll, ergebnisse, euren, falsch, gefährlich, hallo zusammen, launch, namen, nicht, poste, posten, scans, virus, zusammen, ältere |
Linear-Darstellung
