| |
| |||||||
Log-Analyse und Auswertung: Win7: Win Firewall Fehlercode 0x8007042cWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
12.01.2016, 19:41
| #1 |
| |  Win7: Win Firewall Fehlercode 0x8007042c Hallo, Seit einigen Tagen habe ich das Problem dass meine Win Firewall ca. jeden zweiten PC Neustart deaktiviert ist, und sich nicht aktivieren lässt. Beim versuch der Aktivierung kommt der Fehlercode 0x8007041. Wenn dies der Fall ist ist auch Win. Aero Glas deaktiviert. Mein Avast hatte vor kurzem ein paar PUP gefunden, habe ich direkt gelöscht und mir nichts weiter dabei gedacht.  Handelt es sich um eine Infektion oder ein WIndows Problem? FRST LOG: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:10-01-2015 01
durchgeführt von Martin (Administrator) auf MARTIN-PC (12-01-2016 19:16:59)
Gestartet von C:\Users\Martin\Downloads
Geladene Profile: Martin (Verfügbare Profile: Martin)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(AVAST Software) F:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(iRacing.com Motorsport Simulations, LLC
Bedford, MA 01730) F:\Program Files (x86)\iRacing\iRacingService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avast Software) F:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(hxxp://tortoisesvn.net) F:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIEFE.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(AVAST Software) F:\Program Files\AVAST Software\Avast\AvastUI.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Creative Technology Ltd.) C:\Windows\V0790Mon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Valve Corporation) F:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Almico Software (www.almico.com)) C:\Program Files (x86)\SpeedFan\speedfan.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) F:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => f:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2016-01-04] (AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => F:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707496 2014-08-15] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-12-11] (Raptr, Inc)
HKLM-x32\...\Run: [V0790Mon.exe] => C:\Windows\V0790Mon.exe
HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Run: [Steam] => F:\Program Files (x86)\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation)
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Run: [DAEMON Tools Lite] => F:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Run: [ASRockXTU] => [X]
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Run: [EPSON Stylus SX200 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEFE.EXE [221696 2007-12-13] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [741704 2015-12-11] (Google Inc.)
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Run: [Dropbox Update] => C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-20] (Dropbox, Inc.)
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50385536 2015-12-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\MountPoints2: {8cd5cde2-5d31-11e4-b483-8ce165f469df} - I:\Autorun.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => f:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-01-04] (AVAST Software)
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-01-07]
ShortcutTarget: Dropbox.lnk -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SpeedFan.lnk [2016-01-07]
ShortcutTarget: SpeedFan.lnk -> C:\Program Files (x86)\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{029080C6-E80E-4C60-9447-9F9D140EA221}: [NameServer] 192.168.0.1,8.8.8.8
Tcpip\..\Interfaces\{36F857EA-94B2-4869-82B8-8F6F9C2C9D7D}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A9744013-24AD-4622-9348-F5E7B9EF95EB}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.giga.de/?utm_source=SDA&utm_medium=plugin&utm_campaign=april2015
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> {89B821F7-B3F9-4AA8-A4E5-C4CBE2A1BD8A} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000 -> {89B821F7-B3F9-4AA8-A4E5-C4CBE2A1BD8A} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> f:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-01-04] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> F:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> f:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-01-04] (AVAST Software)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> F:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> F:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> F:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> f:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - f:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - f:\Program Files\AVAST Software\Avast\WebRep\FF [2016-01-05]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - f:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - f:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-01-04]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.de/"
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Docs) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-11-01]
CHR Extension: (Google Tabellen) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Trillian) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggmpcjeojalofoofdhnblpcalbhlkdjg [2014-10-26]
CHR Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-08]
CHR Extension: (Avast Online Security) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-02]
CHR Extension: (Skype) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-18]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-22]
CHR Extension: (Citavi Picker) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgndokldibnndfnjnagojmheejlengn [2015-10-27]
CHR Extension: (Google Mail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - f:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2016-01-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - f:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-01-04]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-07-15] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S2 AODService; F:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-01-08] ()
R2 avast! Antivirus; f:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2016-01-04] (AVAST Software)
R3 AvastVBoxSvc; f:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5561368 2016-01-04] (Avast Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-08-26] (EasyAntiCheat Ltd)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2014-12-02] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
R2 iRacingService; F:\Program Files (x86)\iRacing\iRacingService.exe [809248 2015-10-21] (iRacing.com Motorsport Simulations, LLC
Bedford, MA 01730)
S3 Microsoft Office Groove Audit Service; F:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R2 AODDriver4.3.0; F:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [59624 2014-01-08] (Advanced Micro Devices)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2016-01-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2016-01-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2016-01-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2016-01-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2016-01-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2016-01-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2016-01-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2016-01-04] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 LUMDriver; C:\Windows\system32\drivers\LUMDriver.sys [24848 2010-02-08] (IBM)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [147088 2016-01-04] (AVAST Software)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [926824 2012-10-25] (Realtek Semiconductor Corporation )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-11-02] (Duplex Secure Ltd.)
R3 V0790Vid; C:\Windows\System32\DRIVERS\V0790Vid.sys [380416 2013-07-09] (Creative Technology Ltd.)
R2 VBoxAswDrv; f:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [310904 2016-01-04] (Avast Software)
R3 vhidmini; C:\Windows\System32\DRIVERS\vjoy.sys [15104 2012-10-15] (Headsoft)
S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52592 2014-08-15] (Cisco Systems, Inc.)
U3 ail09pj7; C:\Windows\System32\Drivers\ail09pj7.sys [0 ] (Advanced Micro Devices) <==== ACHTUNG (Null Byte Datei/Ordner)
S3 CtClsFlt; system32\DRIVERS\CtClsFlt.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-12 19:16 - 2016-01-12 19:17 - 00025715 _____ C:\Users\Martin\Downloads\FRST.txt
2016-01-12 19:16 - 2016-01-12 19:16 - 00000000 ____D C:\FRST
2016-01-12 19:11 - 2016-01-12 19:11 - 02370560 _____ (Farbar) C:\Users\Martin\Downloads\FRST64.exe
2016-01-11 19:46 - 2016-01-11 19:49 - 00000000 ____D C:\Users\Martin\Documents\opentrack-2.3
2016-01-11 19:45 - 2016-01-11 19:45 - 14796889 _____ C:\Users\Martin\Downloads\opentrack-2.3-rc21p7.zip
2016-01-11 19:45 - 2016-01-11 19:45 - 00000000 ____D C:\Users\Martin\Downloads\opentrack-2.3-rc21p7
2016-01-11 19:35 - 2016-01-11 19:35 - 00000000 ____D C:\Users\Martin\Downloads\opentrack-stable-2.2
2016-01-11 19:34 - 2016-01-11 19:34 - 21148596 _____ C:\Users\Martin\Downloads\opentrack-stable-2.2.zip
2016-01-11 18:39 - 2016-01-11 18:39 - 00000000 ____D C:\Users\Martin\Documents\TrinusVR
2016-01-11 18:12 - 2016-01-11 18:12 - 00001014 _____ C:\Users\Public\Desktop\TrinusVR.lnk
2016-01-11 18:12 - 2016-01-11 18:12 - 00000000 ____D C:\Users\Martin\AppData\Local\Odd_Sheep_Ltd
2016-01-11 18:12 - 2016-01-11 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrinusVR
2016-01-11 18:12 - 2016-01-11 18:12 - 00000000 ____D C:\Program Files (x86)\TrinusVR
2016-01-11 18:10 - 2016-01-11 18:11 - 14045248 _____ (Odd Sheep Ltd. ) C:\Users\Martin\Downloads\TGsetup.exe
2016-01-10 17:12 - 2016-01-10 17:12 - 00021363 _____ C:\Users\Martin\Downloads\Your Electronic Ticket Receipt.pdf
2016-01-10 17:11 - 2016-01-10 17:11 - 00510267 _____ C:\Users\Martin\Downloads\blbticket_4312943_4198.pdf
2016-01-09 20:34 - 2016-01-09 20:34 - 00012915 _____ C:\Users\Martin\Downloads\TXcaseRev.stl
2016-01-09 19:51 - 2016-01-09 19:51 - 00383020 _____ C:\Users\Martin\Downloads\QP060_KK2__VTx_holder.stl
2016-01-09 18:19 - 2016-01-09 18:19 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Slic3r
2016-01-07 22:32 - 2016-01-08 00:33 - 00000000 ____D C:\AdwCleaner
2016-01-07 22:32 - 2016-01-07 22:32 - 01749504 _____ C:\Users\Martin\Downloads\adwcleaner_5.028.exe
2016-01-07 19:53 - 2016-01-07 19:53 - 06373033 _____ C:\Users\Martin\Desktop\Analog Engineers Pocket Reference.pdf
2016-01-07 19:51 - 2016-01-07 19:51 - 02870984 _____ (ESET) C:\Users\Martin\Downloads\esetsmartinstaller_deu.exe
2016-01-07 11:09 - 2016-01-07 11:09 - 22908888 _____ (Malwarebytes ) C:\Users\Martin\Downloads\mbam-setup-org-2.2.0.1024.exe
2016-01-04 18:04 - 2016-01-04 18:10 - 00000000 ____D C:\Users\Martin\Downloads\powder-90.2-win32
2016-01-04 18:04 - 2016-01-04 18:04 - 03980734 _____ C:\Users\Martin\Downloads\powder-90.2-win32.zip
2016-01-04 16:51 - 2016-01-07 20:00 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-04 16:51 - 2016-01-07 11:22 - 00002044 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-01-04 16:39 - 2016-01-04 16:38 - 00147088 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys
2016-01-04 16:38 - 2016-01-04 16:38 - 00386096 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-01-04 16:38 - 2016-01-04 16:38 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-01-02 22:31 - 2016-01-04 18:57 - 00000000 ____D C:\Users\Martin\Documents\Algodoo
2016-01-02 22:23 - 2016-01-07 11:22 - 00000740 _____ C:\Users\Public\Desktop\Algodoo.lnk
2016-01-02 22:23 - 2016-01-02 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Algodoo
2015-12-28 10:15 - 2015-12-28 10:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-16 17:34 - 2016-01-07 11:22 - 00000845 _____ C:\Users\Public\Desktop\yEd Graph Editor.lnk
2015-12-16 17:34 - 2015-12-16 17:34 - 00000000 ____D C:\Users\Martin\AppData\Roaming\yWorks
2015-12-16 17:34 - 2015-12-16 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\yEd Graph Editor
2015-12-13 21:10 - 2015-12-13 21:10 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-12 19:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-12 19:15 - 2014-10-28 19:44 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Skype
2016-01-12 18:54 - 2015-06-20 11:44 - 00001228 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2076237263-2216352483-3710528959-1000UA.job
2016-01-12 18:42 - 2014-10-26 20:56 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-12 18:17 - 2009-07-14 05:45 - 00031808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-12 18:17 - 2009-07-14 05:45 - 00031808 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-12 18:08 - 2011-04-12 08:43 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-01-12 18:08 - 2011-04-12 08:43 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-01-12 18:08 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-12 18:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-12 18:05 - 2014-10-26 22:11 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-01-12 18:04 - 2014-10-27 08:20 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Dropbox
2016-01-12 18:04 - 2014-10-27 08:06 - 00000000 ____D C:\Windows\SysWOW64\vbox
2016-01-12 18:04 - 2014-10-27 08:06 - 00000000 ____D C:\Windows\system32\vbox
2016-01-12 18:03 - 2014-11-29 09:46 - 00000000 ____D C:\Users\Martin\AppData\Local\TSVNCache
2016-01-12 18:03 - 2014-10-26 20:56 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-12 18:02 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-11 17:51 - 2014-10-28 18:12 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{9D27E460-22D8-4839-B575-FD47067D7269}
2016-01-11 17:48 - 2015-08-04 17:41 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Raptr
2016-01-11 17:48 - 2014-10-27 08:06 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-01-09 15:24 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-01-07 11:23 - 2015-02-02 18:45 - 00001365 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-01-07 11:23 - 2015-02-02 18:45 - 00001296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-01-07 11:23 - 2014-12-02 19:06 - 00000866 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk
2016-01-07 11:23 - 2014-12-02 19:05 - 00000920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk
2016-01-07 11:23 - 2014-12-02 19:04 - 00001394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk
2016-01-07 11:23 - 2014-12-02 19:04 - 00000903 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk
2016-01-07 11:23 - 2014-12-02 19:03 - 00000840 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk
2016-01-07 11:23 - 2014-10-26 22:32 - 00000943 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-01-07 11:23 - 2009-07-14 05:57 - 00001511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-01-07 11:23 - 2009-07-14 05:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-01-07 11:23 - 2009-07-14 05:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-01-07 11:22 - 2015-10-05 16:32 - 00000895 _____ C:\Users\Public\Desktop\MATLAB R2008b.lnk
2016-01-07 11:22 - 2015-10-05 16:30 - 00002623 _____ C:\Users\Martin\Desktop\µTorrent.lnk
2016-01-07 11:22 - 2015-10-05 16:30 - 00002603 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-01-07 11:22 - 2015-09-27 08:37 - 00001757 _____ C:\Users\Public\Desktop\Joe.lnk
2016-01-07 11:22 - 2015-09-10 18:19 - 00000870 _____ C:\Users\Martin\Desktop\Uplay.lnk
2016-01-07 11:22 - 2015-08-09 20:24 - 00002263 _____ C:\Users\Public\Desktop\Creative-Produktregistrierung.lnk
2016-01-07 11:22 - 2015-06-18 17:25 - 00001055 _____ C:\Users\Public\Desktop\Grand Theft Auto IV.lnk
2016-01-07 11:22 - 2015-04-26 17:35 - 00001734 _____ C:\Users\Public\Desktop\Citavi 5.lnk
2016-01-07 11:22 - 2015-04-02 18:38 - 00002102 _____ C:\Users\Public\Desktop\Darksiders Comic.lnk
2016-01-07 11:22 - 2015-04-02 18:38 - 00001954 _____ C:\Users\Public\Desktop\Darksiders SoundTrack.lnk
2016-01-07 11:22 - 2015-01-19 20:11 - 00000872 _____ C:\Users\Martin\Desktop\LTspice IV.lnk
2016-01-07 11:22 - 2015-01-19 20:11 - 00000872 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\LTspice IV.lnk
2016-01-07 11:22 - 2015-01-16 17:38 - 00000306 __RSH C:\ProgramData\ntuser.pol
2016-01-07 11:22 - 2015-01-10 11:10 - 00000731 _____ C:\Users\Public\Desktop\REFLEX Modellflugsimulator.lnk
2016-01-07 11:22 - 2014-12-14 20:11 - 00001136 _____ C:\Users\Public\Desktop\CATIA P3 V5R19.lnk
2016-01-07 11:22 - 2014-12-03 19:33 - 00000773 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-01-07 11:22 - 2014-11-25 19:02 - 00000750 _____ C:\Users\Martin\Desktop\TeXnicCenter.lnk
2016-01-07 11:22 - 2014-10-31 10:23 - 00000770 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Altium Designer.lnk
2016-01-07 11:22 - 2014-10-26 22:11 - 00001014 _____ C:\Users\Martin\Desktop\SpeedFan.lnk
2016-01-07 11:22 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-07 11:22 - 2009-07-14 06:01 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-01-07 11:22 - 2009-07-14 05:49 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-01-07 11:20 - 2014-11-18 20:17 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-01-07 11:00 - 2014-11-18 19:52 - 00000000 ____D C:\Users\Martin\AppData\Local\ElevatedDiagnostics
2016-01-05 12:05 - 2014-10-26 21:00 - 00000000 ____D C:\Users\Martin\AppData\Local\Adobe
2016-01-04 18:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-04 17:06 - 2015-08-16 09:13 - 00035306 _____ C:\Users\Martin\Desktop\Einahmen_Ausgaben.xlsx
2016-01-04 16:52 - 2014-12-28 16:17 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-01-04 16:51 - 2014-10-26 22:32 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-01-04 16:51 - 2014-10-26 21:03 - 00000000 ____D C:\ProgramData\Adobe
2016-01-04 16:39 - 2014-10-27 08:05 - 00451040 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-01-04 16:39 - 2014-10-27 08:05 - 00097648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-01-04 16:38 - 2014-10-27 08:05 - 01055560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-01-04 16:38 - 2014-10-27 08:05 - 00273784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-01-04 16:38 - 2014-10-27 08:05 - 00155304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-01-04 16:38 - 2014-10-27 08:05 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-01-04 16:38 - 2014-10-27 08:05 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-01-04 16:38 - 2014-10-27 08:05 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-01-02 13:44 - 2015-08-09 20:05 - 00000000 ____D C:\Program Files (x86)\Abbequerque Inc
2016-01-02 13:24 - 2015-08-09 20:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VJoy Virtual Joystick Driver
2016-01-02 13:24 - 2015-08-09 20:06 - 00000000 ____D C:\Program Files (x86)\VJoy Virtual Joystick Driver
2015-12-31 17:45 - 2014-12-21 13:58 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-12-31 15:35 - 2015-01-19 20:18 - 00004435 _____ C:\Users\Martin\AppData\Roaming\LTspiceIV.ini
2015-12-28 10:15 - 2014-10-28 19:45 - 00000000 ____D C:\Users\Martin\AppData\Local\Skype
2015-12-28 10:15 - 2014-10-28 19:44 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-28 10:15 - 2014-10-28 19:44 - 00000000 ____D C:\ProgramData\Skype
2015-12-22 10:35 - 2015-11-26 20:38 - 00004230 _____ C:\Windows\System32\Tasks\AMD Updater
2015-12-22 10:35 - 2014-10-26 22:22 - 00000000 ____D C:\Program Files\AMD
2015-12-22 10:34 - 2015-07-21 22:12 - 00000000 ____D C:\AMD
2015-12-17 23:20 - 2015-04-06 13:45 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-12-17 23:20 - 2015-04-06 13:45 - 00000000 ___SD C:\Windows\system32\GWX
2015-12-17 16:10 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-01-19 20:18 - 2015-12-31 15:35 - 0004435 _____ () C:\Users\Martin\AppData\Roaming\LTspiceIV.ini
2014-12-16 17:38 - 2015-04-25 18:31 - 0000600 _____ () C:\Users\Martin\AppData\Local\PUTTY.RND
2014-11-02 22:55 - 2014-11-25 20:58 - 0007597 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
Einige Dateien in TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\amazonicon_v10.exe
C:\Users\Martin\AppData\Local\Temp\amazoninstallernircmdc.exe
C:\Users\Martin\AppData\Local\Temp\amd-catalyst-14-9-win7-win8.1-64bit-dd-ccc-whql.exe
C:\Users\Martin\AppData\Local\Temp\amd-catalyst-15.7.1-without-dotnet45-win7-64bit.exe
C:\Users\Martin\AppData\Local\Temp\amd-catalyst-omega-14.12-without-dotnet45-win7-64bit.exe
C:\Users\Martin\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\Martin\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Martin\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Martin\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp6c9i_h.dll
C:\Users\Martin\AppData\Local\Temp\FFSetup3.6.0.0.exe
C:\Users\Martin\AppData\Local\Temp\gfwlivesetup.exe
C:\Users\Martin\AppData\Local\Temp\i4jdel0.exe
C:\Users\Martin\AppData\Local\Temp\install_reader11_de_mssd_aaa_aih.exe
C:\Users\Martin\AppData\Local\Temp\MouseKeyboardCenterx64_1031.exe
C:\Users\Martin\AppData\Local\Temp\ose00000.exe
C:\Users\Martin\AppData\Local\Temp\raptrpatch.exe
C:\Users\Martin\AppData\Local\Temp\raptr_stub.exe
C:\Users\Martin\AppData\Local\Temp\sdan.exe
C:\Users\Martin\AppData\Local\Temp\sdapk.exe
C:\Users\Martin\AppData\Local\Temp\sdaspwn.exe
C:\Users\Martin\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Martin\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Martin\AppData\Local\Temp\sfareca00001.dll
C:\Users\Martin\AppData\Local\Temp\sfextra.dll
C:\Users\Martin\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Martin\AppData\Local\Temp\sqlite3.dll
C:\Users\Martin\AppData\Local\Temp\tmp6AC3.exe
C:\Users\Martin\AppData\Local\Temp\tmpC3AC.exe
C:\Users\Martin\AppData\Local\Temp\usbitcmd.exe
C:\Users\Martin\AppData\Local\Temp\{429F2410-9E94-4B19-835C-5F07ED9986B8}-45.0.2454.85_44.0.2403.157_chrome_updater.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-09 18:04
==================== Ende von FRST.txt ============================
|
|
12.01.2016, 19:42
| #2 |
| | Win7: Win Firewall Fehlercode 0x8007042c Addition TXT
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:10-01-2015 01
durchgeführt von Martin (2016-01-12 19:17:28)
Gestartet von C:\Users\Martin\Downloads
Windows 7 Professional Service Pack 1 (X64) (2014-10-26 17:01:55)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2076237263-2216352483-3710528959-500 - Administrator - Disabled)
Gast (S-1-5-21-2076237263-2216352483-3710528959-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2076237263-2216352483-3710528959-1002 - Limited - Enabled)
Martin (S-1-5-21-2076237263-2216352483-3710528959-1000 - Administrator - Enabled) => C:\Users\Martin
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: avast! Antivirus (Enabled - Out of date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Out of date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\uTorrent) (Version: 3.4.5.41162 - BitTorrent Inc.)
ACE COMBAT™ ASSAULT HORIZON Enhanced Edition (HKLM-x32\...\Steam App 228400) (Version: - NAMCO)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_5f143314a5d434c8511097393d17397) (Version: 10.0 - Adobe Systems Incorporated)
Algodoo v2.1.0 (HKLM-x32\...\Algodoo_is1) (Version: - Algoryx)
Altium Designer 14 (HKLM-x32\...\Altium Designer {17A8E27B-7A18-4CD1-B1A4-97F4412A8E2F}) (Version: 14.3.15.35511 - Altium Limited)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 5.00 - Advanced Micro Devices, Inc.)
AMD OverDrive (HKLM-x32\...\{34D5220A-58D0-473C-90E4-15136C3FB0E3}) (Version: 4.3.1.0690 - Advanced Micro Devices, Inc.)
ASRock eXtreme Tuner v0.1.122 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version: - )
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
Awesomenauts (HKLM-x32\...\Steam App 204300) (Version: - Ronimo Games)
BeamNG.drive (HKLM-x32\...\Steam App 284160) (Version: - BeamNG)
Besiege (HKLM-x32\...\Steam App 346010) (Version: - Spiderling Studios)
Bridge Project (HKLM-x32\...\Steam App 232950) (Version: - Halycon Media GmbH & Co. KG)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.05182 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.05182 - Cisco Systems, Inc.) Hidden
Citavi 5 (HKLM-x32\...\{7EB278FB-0C3C-445E-8665-4A6CDD9B794E}) (Version: 5.0.0.11 - Swiss Academic Software)
Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6) (Version: - )
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware)
Darksiders (HKLM-x32\...\Steam App 50620) (Version: - Vigil Games)
Darksiders II (HKLM-x32\...\Steam App 50650) (Version: - Vigil Games)
DarksidersInstaller (HKLM-x32\...\{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}) (Version: 1.00.1000 - Nombre de su organización)
Dassault Systemes Software B19 (HKLM\...\Dassault Systemes B19_0) (Version: - )
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
DiRT 3 (HKLM-x32\...\Steam App 44320) (Version: - Codemasters Racing Studio)
DiRT Showdown (HKLM-x32\...\Steam App 201700) (Version: - Codemasters Racing Studio)
Dropbox (HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
EPSON Stylus SX200 Series Printer Uninstall (HKLM\...\EPSON Stylus SX200 Series) (Version: - SEIKO EPSON Corporation)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.118 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.118 - Etron Technology) Hidden
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
Euro Truck Simulator 2 Multiplayer 0.1.0.9 Alpha R3 (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.1.0.9 Alpha R3 - ETS2MP Team)
FINAL FANTASY VIII (HKLM-x32\...\Steam App 39150) (Version: - SQUARE ENIX)
Flockers (HKLM-x32\...\Steam App 260330) (Version: - Team17 Digital Ltd)
FormatFactory 3.5.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.5.1.0 - Format Factory)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Gang Beasts (HKLM-x32\...\Steam App 285900) (Version: - Boneloaf)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version: - Coffee Stain Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
GRID 2 (HKLM-x32\...\Steam App 44350) (Version: - Codemasters Racing)
Gunpoint (HKLM-x32\...\Steam App 206190) (Version: - Suspicious Developments)
Intel(R) IPP Run-Time Installer 5.3 Update 4 for Windows* on IA-32 (HKLM-x32\...\{754854DC-2E0A-49D8-A1A1-426C1F9B1459}) (Version: 5.3.4.087 - Intel Corporation)
INTELLINET Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.5.0 - INTELLINET)
iRacing.com Race Simulation (HKLM-x32\...\{CBBB3C80-76F5-42B5-92A6-C4BF84796DCB}) (Version: 1.01.0594 - iRacing.com Motorsport Simulations)
Joe (HKLM-x32\...\{F8C986EA-13F8-4B39-91C3-A6B9A851CD34}) (Version: 4.01.0000 - Wirth IT Design)
Joe Danger 2: The Movie (HKLM-x32\...\Steam App 242110) (Version: - Hello Games)
Kodi (HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Kodi) (Version: - XBMC-Foundation)
Live! Cam Chat HD VF0790 Driver (1.00.01.00) (HKLM\...\Creative VF0790) (Version: - Creative Technology Ltd.)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
LTspice IV (HKLM-x32\...\LTspice IV) (Version: - )
MATLAB R2008b (HKLM-x32\...\MatlabR2008b) (Version: 7.7 - The MathWorks, Inc.)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visio Professional 2010 (HKLM-x32\...\Office14.VISIOR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
MiKTeX 2.9 (HKLM-x32\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version: - DICE)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.2.0 - Mozilla)
Mozilla Thunderbird 31.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.2.0 (x86 de)) (Version: 31.2.0 - Mozilla)
Mozilla Thunderbird 38.5.1 (x86 de) (HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\...\Mozilla Thunderbird 38.5.1 (x86 de)) (Version: 38.5.1 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
MySQL Connector/ODBC 5.1 (HKLM-x32\...\{EDB9F166-FA9B-4F71-B2C8-BECD561BD77F}) (Version: 5.1.13 - Oracle Corporation)
Oddworld: Abe's Exoddus (HKLM-x32\...\Steam App 15710) (Version: - Oddworld Inhabitants)
Oddworld: Abe's Oddysee (HKLM-x32\...\Steam App 15700) (Version: - Oddworld Inhabitants)
Oddworld: Munch's Oddysee (HKLM-x32\...\Steam App 15740) (Version: - Oddworld Inhabitants)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Overlord II (HKLM-x32\...\Steam App 12810) (Version: - Triumph Studios)
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Planetary Annihilation (HKLM-x32\...\Steam App 233250) (Version: - Uber Entertainment)
Project CARS (HKLM-x32\...\Steam App 234630) (Version: - Slightly Mad Studios)
RAGE (HKLM-x32\...\Steam App 9200) (Version: - id Software)
Ralink RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0E}) (Version: 3.1.4.0 - Ralink)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Real World Racing (HKLM-x32\...\Steam App 253470) (Version: - Playstos Entertainment)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek)
REFLEX Modellflugsimulator (HKLM-x32\...\REFLEX XTR) (Version: - Dipl.-Ing. Stefan Kunde)
Ridge Racer™ Unbounded (HKLM-x32\...\Steam App 202310) (Version: - BUGBEAR)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.1500.0 - SAMSUNG Electronics Co., Ltd.)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version: - Microsoft)
Shank (HKLM-x32\...\Steam App 6120) (Version: - Klei Entertainment)
Shank 2 (HKLM-x32\...\Steam App 102840) (Version: - Klei Entertainment)
SkyDrift (HKLM-x32\...\Steam App 91100) (Version: - Digital Reality)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Speed-Link SL-6535 USB Pad (HKLM-x32\...\{B0DC2DA9-2AF9-422A-88E0-1B84E0F65DB5}) (Version: 1.00.0000 - GASIA)
Spintires (HKLM-x32\...\Steam App 263280) (Version: - Oovee® Game Studios)
Splinter Cell Blacklist (HKLM-x32\...\Uplay Install 91) (Version: - Ubisoft)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeighaX 3.09 (HKLM-x32\...\{3D63579F-2398-418B-9227-A852FB201D2D}) (Version: 3.9.0 - Open Design Alliance)
TeXnicCenter Version 2.02 Stable (HKLM-x32\...\TeXnicCenter_is1) (Version: 2.02 Stable - The TeXnicCenter Team)
Thief (HKLM-x32\...\Steam App 239160) (Version: - Eidos-Montréal)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version: - 11 bit studios)
Thrustmaster Force Feedback Driver (HKLM-x32\...\{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}) (Version: 2.FFD.2009 - Thrustmaster)
TmNationsForever (HKLM-x32\...\TmNationsForever_is1) (Version: - Nadeo)
TortoiseSVN 1.8.8.25755 (64 bit) (HKLM\...\{7DAA9D5A-ED99-40D2-AA9D-386722FE105A}) (Version: 1.8.25755 - TortoiseSVN)
TP-LINK 300Mbps Wireless USB Adapter Treiber (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK)
TrackMania² Canyon (HKLM-x32\...\Steam App 228760) (Version: - Nadeo)
TreeSize Free V3.3 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.3 - JAM Software)
TrinusVR version 2.0.5 (HKLM-x32\...\{A66AD08F-FC5B-4583-9A7D-4636F5637B2C}_is1) (Version: 2.0.5 - Odd Sheep Ltd.)
Turbo Dismount (HKLM-x32\...\Steam App 263760) (Version: - Secret Exit Ltd.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 4.4 - Ubisoft)
Urban Trial Freestyle (HKLM-x32\...\Steam App 243450) (Version: - Tate Multimedia)
VBA (3821b) (x32 Version: 6.01.00.1234 - Microsoft Corporation) Hidden
VJoy Virtual Joystick Driver 1.2 (HKLM-x32\...\VJoy Virtual Joystick Driver_is1) (Version: - Headsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Worms Armageddon (HKLM-x32\...\Steam App 217200) (Version: - Team17 Digital Ltd.)
Worms Blast (HKLM-x32\...\Steam App 70650) (Version: - Team17 Software Ltd.)
Worms Clan Wars (HKLM-x32\...\Steam App 233840) (Version: - Team17 Digital Ltd)
Worms Crazy Golf (HKLM-x32\...\Steam App 70620) (Version: - Team17 Software Ltd.)
Worms Pinball (HKLM-x32\...\Steam App 70660) (Version: - Team17 Software Ltd.)
Worms Reloaded (HKLM-x32\...\Steam App 22600) (Version: - Team17 Software Ltd.)
Worms Revolution (HKLM-x32\...\Steam App 200170) (Version: - Team17 Digital Ltd.)
Worms Ultimate Mayhem (HKLM-x32\...\Steam App 70600) (Version: - Team17 Software Ltd.)
WRC Powerslide (HKLM-x32\...\Steam App 256350) (Version: - Milestone S.r.l.)
yEd Graph Editor 3.14.2 (HKLM-x32\...\3309-7404-0599-8908) (Version: 3.14.2 - yWorks GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2076237263-2216352483-3710528959-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Martin\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {087F33D9-AFD1-4284-88A6-90A8502EEE67} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {0E3BC595-96CF-4FBA-9855-1B35E62E5C9A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {156ED569-CD68-481E-885E-E19E73A4D3D7} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {1A2311AB-9F2B-4514-A1C1-0DBAA34657E3} - System32\Tasks\avast! Emergency Update => f:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-01-04] (AVAST Software)
Task: {3242AA49-FA50-4BA4-87AA-5CA9F4BDFC63} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {69E7C685-5412-4EC2-886D-B31999425702} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {7054A02F-6584-4774-8B04-81698BFC9D4E} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2015-12-04] (Advanced Micro Devices, Inc.)
Task: {77BEEF30-8377-4BDF-B295-C85663143412} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {7E47A9C2-DF87-41B1-B1E4-DF6CC86005B3} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {809AAB92-E581-4CA5-A4DD-85C53F81FBA8} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2076237263-2216352483-3710528959-1000UA => C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-20] (Dropbox, Inc.)
Task: {AA11657E-95AC-498A-A1C9-FFF0F8A3EEA8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-16] (AVAST Software)
Task: {B7E33775-408C-43AF-AB11-9C60188364E5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {D49B76AE-E44C-4714-9625-5DBBEB4BA934} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2076237263-2216352483-3710528959-1000Core => C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-20] (Dropbox, Inc.)
Task: {D81187B1-47F7-48DC-A117-EBD0F3F72446} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {E2570879-7BFA-46C7-BD62-65788DDDE951} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {EDB0D84F-4D1D-4E83-8189-8085121828E8} - System32\Tasks\avastBCLRestartS-1-5-21-2076237263-2216352483-3710528959-1000 => Chrome.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2076237263-2216352483-3710528959-1000Core.job => C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2076237263-2216352483-3710528959-1000UA.job => C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-07-15 20:39 - 2015-07-15 20:39 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2015-07-15 20:38 - 2015-07-15 20:38 - 00127488 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-08-10 16:10 - 2014-08-10 16:10 - 00076032 _____ () F:\Program Files\TortoiseSVN\bin\TortoiseStub.dll
2014-08-10 16:10 - 2014-08-10 16:10 - 00088832 _____ () F:\Program Files\TortoiseSVN\bin\libsasl.dll
2015-07-15 20:38 - 2015-07-15 20:38 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-08-15 14:25 - 2014-08-15 14:25 - 00063400 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2016-01-04 16:38 - 2016-01-04 16:38 - 00103888 _____ () f:\Program Files\AVAST Software\Avast\log.dll
2016-01-04 16:38 - 2016-01-04 16:38 - 00125512 _____ () f:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-11 17:48 - 2016-01-11 17:48 - 02821120 _____ () f:\Program Files\AVAST Software\Avast\defs\16011100\algo.dll
2016-01-04 16:38 - 2016-01-04 16:38 - 00469008 _____ () f:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-12 18:04 - 2016-01-12 18:04 - 02822144 _____ () f:\Program Files\AVAST Software\Avast\defs\16011200\algo.dll
2014-08-10 15:40 - 2014-08-10 15:40 - 00065792 _____ () F:\Program Files\TortoiseSVN\bin\TortoiseStub32.dll
2014-08-10 15:40 - 2014-08-10 15:40 - 00071936 _____ () F:\Program Files\TortoiseSVN\bin\libsasl32.dll
2015-12-05 10:21 - 2015-12-05 10:21 - 00933056 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-12-13 21:10 - 2015-10-31 01:59 - 00034768 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00019408 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00022848 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00023352 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\Crypto.Util._counter.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00042296 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\Crypto.Cipher._AES.pyd
2015-12-13 21:10 - 2015-10-31 01:59 - 00116688 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2015-12-13 21:10 - 2015-10-31 01:59 - 00093640 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2015-12-13 21:10 - 2015-10-31 01:59 - 00018376 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\select.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00019760 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00105928 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32api.pyd
2015-12-13 21:10 - 2015-10-31 01:59 - 00392144 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2015-12-13 21:10 - 2015-12-08 22:36 - 00381752 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2015-12-13 21:10 - 2015-10-31 01:59 - 00692688 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00020816 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00109520 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 01737032 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00020808 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00020800 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00021840 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00038696 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\fastpath.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00024528 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32event.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00020936 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00114640 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32security.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00021320 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00124880 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32file.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00030160 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00043472 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32process.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00175560 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32gui.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00028616 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32ts.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00024016 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00048592 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32service.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00024392 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00036296 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\librsync.dll
2015-12-13 21:10 - 2015-10-31 02:00 - 00024016 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\win32profile.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00117056 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00023376 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 21:10 - 2015-10-31 01:59 - 00134608 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\_elementtree.pyd
2015-12-13 21:10 - 2015-10-31 01:59 - 00134088 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00240584 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\jpegtran.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00020280 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00052024 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00021304 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\Crypto.Util.strxor.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00350152 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00084792 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2015-12-13 21:10 - 2015-12-08 22:36 - 01826608 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2015-12-13 21:10 - 2015-10-31 02:00 - 00083912 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\sip.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 03891504 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 01950000 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00519984 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00133936 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00225080 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00207672 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00024904 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00486704 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2015-12-13 21:10 - 2015-12-08 22:36 - 00357680 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2015-03-04 22:45 - 2015-10-31 02:01 - 00019920 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 22:45 - 2015-10-31 02:00 - 00786904 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-30 16:57 - 2015-10-31 02:00 - 00063448 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-03-04 22:45 - 2015-10-31 02:00 - 00019408 _____ () C:\Users\Martin\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2016-01-04 16:38 - 2016-01-04 16:38 - 40539648 _____ () F:\Program Files\AVAST Software\Avast\libcef.dll
2016-01-04 16:38 - 2016-01-04 16:38 - 00103888 _____ () F:\Program Files\AVAST Software\Avast\log.dll
2016-01-04 16:38 - 2016-01-04 16:38 - 00125512 _____ () F:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-04 16:38 - 2016-01-04 16:38 - 00469008 _____ () F:\Program Files\AVAST Software\Avast\ffl2.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2015-10-21 21:29 - 2015-10-21 21:29 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll
2015-10-21 21:29 - 2015-10-21 21:29 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2014-06-18 01:56 - 2014-06-18 01:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 00:06 - 2010-11-23 00:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2014-10-26 22:16 - 2015-11-10 20:55 - 00778752 _____ () F:\Program Files (x86)\Steam\SDL2.dll
2015-01-20 19:34 - 2015-07-03 17:12 - 04962816 _____ () F:\Program Files (x86)\Steam\v8.dll
2015-01-20 19:34 - 2015-07-03 17:12 - 01556992 _____ () F:\Program Files (x86)\Steam\icui18n.dll
2015-01-20 19:34 - 2015-07-03 17:12 - 01187840 _____ () F:\Program Files (x86)\Steam\icuuc.dll
2014-10-26 22:16 - 2015-12-14 21:01 - 02547280 _____ () F:\Program Files (x86)\Steam\video.dll
2014-10-26 22:16 - 2015-09-24 01:33 - 02549248 _____ () F:\Program Files (x86)\Steam\libavcodec-56.dll
2014-10-26 22:16 - 2015-09-24 01:33 - 00442880 _____ () F:\Program Files (x86)\Steam\libavutil-54.dll
2014-10-26 22:16 - 2015-09-24 01:33 - 00491008 _____ () F:\Program Files (x86)\Steam\libavformat-56.dll
2014-10-26 22:16 - 2015-09-24 01:33 - 00332800 _____ () F:\Program Files (x86)\Steam\libavresample-2.dll
2014-10-26 22:16 - 2015-09-24 01:33 - 00485888 _____ () F:\Program Files (x86)\Steam\libswscale-3.dll
2014-10-26 22:16 - 2015-12-14 21:01 - 00804432 _____ () F:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-07-22 21:10 - 2015-11-03 23:00 - 00201728 _____ () F:\Program Files (x86)\Steam\bin\openvr_api.dll
2014-10-26 22:16 - 2015-11-17 01:31 - 47846176 _____ () F:\Program Files (x86)\Steam\bin\libcef.dll
2015-01-20 19:34 - 2015-09-25 00:56 - 00119208 _____ () F:\Program Files (x86)\Steam\winh264.dll
2016-01-10 17:02 - 2016-01-12 18:05 - 00158720 _____ () C:\Users\Martin\AppData\Local\Temp\sfareca00001.dll
2014-10-26 22:11 - 2016-01-12 18:05 - 00192512 _____ () C:\Users\Martin\AppData\Local\Temp\sfamcc00001.dll
2015-12-17 16:44 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 16:44 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
2015-12-27 19:50 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll
2016-01-10 19:19 - 2016-01-10 19:19 - 00153032 _____ () F:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2016-01-10 19:19 - 2016-01-10 19:19 - 00022472 _____ () F:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2076237263-2216352483-3710528959-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
MpsSvc => Firewall Dienst läuft nicht.
bfe => Firewall Dienst läuft nicht.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{91A8B4B5-CD54-4CAB-89C6-C285406ACB9F}] => (Allow) F:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{737A46B8-A5B9-4FE4-8F4C-E7F93CB313B8}] => (Allow) F:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DE22BD3E-8735-42D8-9BAE-35E3928CE273}] => (Allow) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{52517544-94A2-4EF2-9145-C3BF874395F7}] => (Allow) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{69F0EE88-A8A5-4A6D-BFD2-259372F8F3BC}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Shank 2\bin\shank2.exe
FirewallRules: [{2C375FB6-90E7-4A81-BC32-053D50A3E975}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Shank 2\bin\shank2.exe
FirewallRules: [{AD7834C7-216A-47CD-A102-138861A1D175}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\ManiaPlanet_TMCanyon\ManiaPlanetLauncher.exe
FirewallRules: [{5D9C9A3D-8C55-4935-94DC-132072F52FBB}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\ManiaPlanet_TMCanyon\ManiaPlanetLauncher.exe
FirewallRules: [{D80A1138-B7B6-4ABD-91E9-4649BE8CDE2B}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{63398860-B5BE-4952-ADA3-5F72970FB26F}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{2CFC724C-6655-45FF-8E62-D084B024589C}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Awesomenauts\AwesomenautsLauncher.exe
FirewallRules: [{A534FCD0-BA56-40C0-A9AC-76B9DF5A507A}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Awesomenauts\AwesomenautsLauncher.exe
FirewallRules: [{562F556E-8391-4560-8A63-B0C923660D60}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Shank\bin\Shank.exe
FirewallRules: [{2DDA488D-667A-44E1-9128-FF1FCD63D3EA}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Shank\bin\Shank.exe
FirewallRules: [{F09CB777-3FC6-4696-AFAD-849A3692FC86}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{F0C3BED2-23E2-46CB-BE46-725DC1AF308E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\BeamNG.drive\BeamNG.drive.exe
FirewallRules: [{8E0DBAF5-A600-4FAE-84F8-A436F8B0E1C6}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\BeamNG.drive\BeamNG.drive.exe
FirewallRules: [{0AFCFD5C-FABF-445E-9CED-A0E700548E4D}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\BridgeProject\Bridge.exe
FirewallRules: [{11583EFE-CD88-42A9-BB07-9FC66DC2F92E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\BridgeProject\Bridge.exe
FirewallRules: [{41BDA0CF-CCAA-43C6-8E6C-4D167CCFE0F3}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Joe Danger 2 The Movie\Bin\JD2Launcher.exe
FirewallRules: [{897CD7C9-3091-4DFF-ADEB-FF93C8F8136D}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Joe Danger 2 The Movie\Bin\JD2Launcher.exe
FirewallRules: [{7D1A3418-07D4-4CA8-9FC3-6CEBECAB7639}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\RWR\RWR.exe
FirewallRules: [{DE40BC98-F6EB-4109-85EB-F8A97AD41639}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\RWR\RWR.exe
FirewallRules: [{A18D558C-E2D1-4B14-AF47-42B9FCC300BA}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\DiRT Showdown\showdown.exe
FirewallRules: [{4C6880BF-F906-4534-A8C1-3E5C6B198DFA}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\DiRT Showdown\showdown.exe
FirewallRules: [{B7963E48-4463-47F6-8EF2-F7EE91E8ECFC}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\DiRT 3\dirt3.exe
FirewallRules: [{20C095D3-741D-4A44-A45A-8F801918E4A9}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\DiRT 3\dirt3.exe
FirewallRules: [{E46AFACE-44AB-4B48-BD83-0B78CDAF1F54}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Urban Trial Freestyle\UrbanTrialFreestyle.exe
FirewallRules: [{0DAE2FCD-03FF-4797-9C1A-0AE82AAA71E6}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Urban Trial Freestyle\UrbanTrialFreestyle.exe
FirewallRules: [{C2885246-9C1A-44D1-AAA1-66D4BE30B859}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\grid 2\grid2.exe
FirewallRules: [{51AF94E6-EF26-433F-864F-CBB3FC52C59B}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\grid 2\grid2.exe
FirewallRules: [{857F2BB4-C1A7-4561-84B3-C3665BE44FD6}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\WRC Powerslide\WRCPowerslide.exe
FirewallRules: [{E32D0371-C798-403B-BC03-E5465D3FEF46}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\WRC Powerslide\WRCPowerslide.exe
FirewallRules: [TCP Query User{4FBD58CA-E015-4034-9ED6-1C011DAB89A2}F:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe
FirewallRules: [UDP Query User{C953378F-663F-4AAC-B63B-D994AE2E955F}F:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe
FirewallRules: [{25396090-1C0A-4CA3-BD91-9306923629C2}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{5F3F7953-8524-42D8-ABE4-806609ABDAF7}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{D7509ACD-FA48-4400-8CB9-5799E1F07F47}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Blast\main.exe
FirewallRules: [{2232BCD8-43A4-416B-813A-FB4B4BB78FAC}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Blast\main.exe
FirewallRules: [{BDD6C53D-E8B9-4E17-B436-D90178764DF2}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\WormsGolf2010\WormsCrazyGolf.exe
FirewallRules: [{1C6DECF9-35D6-44E2-9F48-78E97710237E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\WormsGolf2010\WormsCrazyGolf.exe
FirewallRules: [{05278F41-2113-4370-B2E8-B66DFAF59618}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Pinball\mmlauncher.exe
FirewallRules: [{32A98763-AEC1-4B02-87E6-200A8D94EC8C}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Pinball\mmlauncher.exe
FirewallRules: [{C3EA89A9-D25A-46F5-855D-6D0702AA191C}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Reloaded\WormsReloaded.exe
FirewallRules: [{55960613-7BD2-49DB-967B-35D5A869FC14}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Reloaded\WormsReloaded.exe
FirewallRules: [{5F03272D-050C-483E-8E12-A80E15D9FD82}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\WormsXHD\Launcher.exe
FirewallRules: [{DECA6A99-D4DE-4AE3-8FD8-AF849D0DE2EE}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\WormsXHD\Launcher.exe
FirewallRules: [{998D222A-FC77-4F22-9B6E-8CB3779BBBFD}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Flockers\Flockers.exe
FirewallRules: [{8B26D390-9F78-4A43-AFF4-1ABA0BDFB598}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Flockers\Flockers.exe
FirewallRules: [{D8F18E4D-879C-4864-BFDB-C97ABF5690FF}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\WormsRevolution\WormsRevolution.exe
FirewallRules: [{D4359BBB-1560-4482-A220-FFDE63C9E49F}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\WormsRevolution\WormsRevolution.exe
FirewallRules: [{28E74BFA-AC25-4903-97D2-9462936704F3}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Armageddon\WA.exe
FirewallRules: [{89A6369D-3BC9-42F8-85EB-CA170087110D}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Worms Armageddon\WA.exe
FirewallRules: [TCP Query User{192EC8DA-1AC6-4CB5-9BDE-8A6448DCC529}F:\program files (x86)\xbmc\xbmc.exe] => (Allow) F:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [UDP Query User{6BBCEF77-123B-4737-9885-FCC1EDE2774E}F:\program files (x86)\xbmc\xbmc.exe] => (Allow) F:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [{213C88AE-3A71-463B-A8C9-3032838F90DC}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
FirewallRules: [{824D687B-8ED8-4E49-98DF-9E293258127C}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
FirewallRules: [TCP Query User{2F659943-D44A-4D1C-94C0-949E174CE5F3}F:\program files (x86)\altium\ad14\dxp.exe] => (Allow) F:\program files (x86)\altium\ad14\dxp.exe
FirewallRules: [UDP Query User{5BA61872-34C8-46CB-A43B-FECE77030614}F:\program files (x86)\altium\ad14\dxp.exe] => (Allow) F:\program files (x86)\altium\ad14\dxp.exe
FirewallRules: [TCP Query User{0277C003-4BFD-44DB-B357-C2A0E36704A4}F:\program files (x86)\dassault systemes\b19\intel_a\code\bin\orbixd.exe] => (Block) F:\program files (x86)\dassault systemes\b19\intel_a\code\bin\orbixd.exe
FirewallRules: [UDP Query User{995BF013-10F3-4CC2-B42E-527368FCAA8C}F:\program files (x86)\dassault systemes\b19\intel_a\code\bin\orbixd.exe] => (Block) F:\program files (x86)\dassault systemes\b19\intel_a\code\bin\orbixd.exe
FirewallRules: [TCP Query User{68989049-EDB1-4BDC-8404-4C2F69DF9E3D}F:\program files (x86)\dassault systemes\b19\intel_a\code\bin\cnext.exe] => (Block) F:\program files (x86)\dassault systemes\b19\intel_a\code\bin\cnext.exe
FirewallRules: [UDP Query User{D8C06DEF-37D3-4D72-87E7-CFC7D03FC55B}F:\program files (x86)\dassault systemes\b19\intel_a\code\bin\cnext.exe] => (Block) F:\program files (x86)\dassault systemes\b19\intel_a\code\bin\cnext.exe
FirewallRules: [{BF1CB4DE-1A14-4F66-B2EE-BFE770383919}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Darksiders\DarksidersPC.exe
FirewallRules: [{ABD7BE84-5336-44B7-A652-35F390F7258A}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Darksiders\DarksidersPC.exe
FirewallRules: [TCP Query User{313A7013-37DD-48BC-A6FB-C970C2FA6442}F:\lfs\lfs\lfs.exe] => (Allow) F:\lfs\lfs\lfs.exe
FirewallRules: [UDP Query User{F060631D-B646-4B8D-A236-6EBDCE293C7D}F:\lfs\lfs\lfs.exe] => (Allow) F:\lfs\lfs\lfs.exe
FirewallRules: [{C71FFCC4-AB30-44FC-A6AA-9F4D0D4282EE}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{D1655F8F-D785-4CC3-9542-48C2E9345420}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{62347547-D262-41DE-A9CF-0BDE3E4B1716}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\SkyDrift\SkyDrift.exe
FirewallRules: [{DE95DF33-85F8-418F-9215-F1317455B915}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\SkyDrift\SkyDrift.exe
FirewallRules: [{4E99EB38-B1ED-4A10-959E-A1CC0A2B33A1}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\TurboDismount\TurboDismount.exe
FirewallRules: [{C5165946-3793-49D9-9CB5-D5F55B143756}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\TurboDismount\TurboDismount.exe
FirewallRules: [{9BA5272C-B531-4C76-9F8C-90AF76BF0BBD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{E3B001C7-09C5-4BA0-BE0C-DE51EFC5C948}] => (Allow) LPort=2869
FirewallRules: [{67CF21FB-6D57-4A43-8E7D-5AB4DCEA9009}] => (Allow) LPort=1900
FirewallRules: [{6F9243AB-7C7C-491C-8A7F-EA5B63D12137}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Oddworld Abes Exoddus\Exoddus.exe
FirewallRules: [{04C15430-6C45-4D10-99E3-A2A20D557BD9}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Oddworld Abes Exoddus\Exoddus.exe
FirewallRules: [{E782D320-6FDE-40F2-8A72-E537D1958765}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Oddworld Abes Oddysee\AbeWin.exe
FirewallRules: [{39B076B5-994E-4B5D-B708-D41D1C846709}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Oddworld Abes Oddysee\AbeWin.exe
FirewallRules: [{DEAED0A8-DCF1-4706-A9F7-3F874F5DF038}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Oddworld Munchs Oddysee\bin\launcher.exe
FirewallRules: [{6ED5C4F3-6CF4-46B1-8974-523FBEFBA4F8}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Oddworld Munchs Oddysee\bin\launcher.exe
FirewallRules: [TCP Query User{EA850A5B-B998-436A-B57F-56198BC35F5F}C:\users\martin\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\martin\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{73F57822-6BBC-491A-88E7-1CAD3837B623}C:\users\martin\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\martin\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{0F19E895-6A67-446D-A7F8-FED29FCE019B}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{DC4D9648-E3F3-4E91-8223-9D400E31F3C3}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{FFC4DC25-9AA3-4634-AC07-738EFD509980}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Spintires\SpinTires.exe
FirewallRules: [{7C4C99A1-1E72-4A0C-A2F7-09B3154BEEAF}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Spintires\SpinTires.exe
FirewallRules: [TCP Query User{E31B1166-4301-4905-BF70-EF24FB3DEA41}C:\users\martin\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\martin\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{1A5E4E97-E2F7-4A4E-BCB9-8C27750BC5D3}C:\users\martin\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\martin\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{E258721B-E68F-4251-9D7E-59E92D644B41}F:\program files (x86)\steam\steamapps\common\beamng.drive\bin32\beamng.drive.x86.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\beamng.drive\bin32\beamng.drive.x86.exe
FirewallRules: [UDP Query User{B6771606-3FCC-44A4-8B4E-7B72A3ECEF41}F:\program files (x86)\steam\steamapps\common\beamng.drive\bin32\beamng.drive.x86.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\beamng.drive\bin32\beamng.drive.x86.exe
FirewallRules: [TCP Query User{9B9A2470-F15A-494E-BFFC-CE7129DD9CFD}F:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) F:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [UDP Query User{9132D842-4C96-498D-95D5-11DBF7C4D272}F:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) F:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [TCP Query User{60530BAA-D3BB-452C-A224-D336B3F1AF88}F:\program files (x86)\kodi\kodi.exe] => (Allow) F:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{0081EA8C-513F-479E-BBAD-11728A41851D}F:\program files (x86)\kodi\kodi.exe] => (Allow) F:\program files (x86)\kodi\kodi.exe
FirewallRules: [{8E124E8F-CE21-4834-B800-E109C796D917}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{9E52E39F-90B8-441D-ACB6-7BB92EDC01BC}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{DDDEEAB9-B333-47CA-B0B2-129342EED9DD}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\RAGE\Rage.exe
FirewallRules: [{83CFB7D4-B7EA-4D05-A2E9-24F433054B16}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\RAGE\Rage.exe
FirewallRules: [{FCBC1C8A-80C7-46FA-9663-A97C8DDDDD84}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\RAGE\Rage64.exe
FirewallRules: [{E5257E5E-BAF5-48C2-B049-992881D651F0}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\RAGE\Rage64.exe
FirewallRules: [TCP Query User{CB4F91C0-8E7D-4FBF-ACBD-A4E0F112F923}F:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe
FirewallRules: [UDP Query User{A7FFC238-F3F8-419C-A7BB-EC6714FC37A1}F:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\beamng.drive\bin64\beamng.drive.x64.exe
FirewallRules: [{F97936E4-EA94-40A8-A74E-3B6189FB814A}] => (Allow) F:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{7BC13B59-E339-4743-8044-24D0528A3A16}] => (Allow) F:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [TCP Query User{C7B59F6E-BEAA-438C-A711-B1260F1B41CB}F:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe] => (Allow) F:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe
FirewallRules: [UDP Query User{617CDD2E-FCC4-41DC-A109-0BD93DEB94BA}F:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe] => (Allow) F:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe
FirewallRules: [{E81262EB-E824-4DF7-9277-8737B53E39B5}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{4FC1DF30-54D3-48B9-A960-4E992EDEB983}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [TCP Query User{3C299223-0BC4-4189-8287-BB8CC20D8850}C:\program files (x86)\abbequerque inc\facetracknoir\facetracknoir.exe] => (Allow) C:\program files (x86)\abbequerque inc\facetracknoir\facetracknoir.exe
FirewallRules: [UDP Query User{1E4AE3E5-3D0A-48D5-A100-944EC50F0874}C:\program files (x86)\abbequerque inc\facetracknoir\facetracknoir.exe] => (Allow) C:\program files (x86)\abbequerque inc\facetracknoir\facetracknoir.exe
FirewallRules: [{FB84C3F8-B62C-470C-B380-AAA18BF492CD}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{85200966-961E-4E02-8409-71F885F8A5CB}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{E08A520D-3F89-490F-944D-878178A5839D}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Ace Combat Assault Horizon\Ace Combat_AH.exe
FirewallRules: [{62E87DC3-E892-4AE7-8371-29694F18C0D8}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Ace Combat Assault Horizon\Ace Combat_AH.exe
FirewallRules: [{CFAF44AF-B416-4FFD-9454-3E6CD8309570}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Ridge Racer Unbounded\RRU.exe
FirewallRules: [{EB32E298-DC1E-4F3D-9D4F-E1AA62384EC9}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Ridge Racer Unbounded\RRU.exe
FirewallRules: [{A3FCA665-233F-444B-B478-EB6485840960}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Overlord II\Overlord2.exe
FirewallRules: [{DF0DC226-5C89-4AA9-8CA9-238F121393E1}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Overlord II\Overlord2.exe
FirewallRules: [{7F2A567B-D0F1-4468-80FD-25AEF9285537}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Overlord II\Config.exe
FirewallRules: [{2B4E10F4-0246-4263-9775-302766A9D516}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Overlord II\Config.exe
FirewallRules: [{D1EF9C4B-E0D2-4D15-8EBD-BA03B953309A}] => (Allow) F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{05A92F49-6D30-498E-B854-0EB798B56857}] => (Allow) F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{F8214B16-F1AB-4D4F-8AEB-A0156109273E}] => (Allow) F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{A872B563-0E80-41CA-94D8-33F370C729D0}] => (Allow) F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{A98CFFFA-CE1C-4A15-9AA4-D4C28BFBEA7A}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Gang Beasts\Gang Beasts.exe
FirewallRules: [{BDA1B8A0-3639-4A6E-BB44-5FDEAAC572C2}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Gang Beasts\Gang Beasts.exe
FirewallRules: [{56C987EC-5D19-4BEF-A8E3-692999AE8A29}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x64\PA.exe
FirewallRules: [{48459116-01B1-468D-90F1-6A0CE1E237C1}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x64\PA.exe
FirewallRules: [{DDD64B62-AD93-42EF-A48D-207A8870FD34}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x86\PA.exe
FirewallRules: [{13809CC9-D1C6-4FE6-8E3D-01E6C6F46891}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x86\PA.exe
FirewallRules: [{19BC4078-3F35-4A47-B433-DB8CF5E469D5}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x86\crashupload.exe
FirewallRules: [{68B40E65-CE1A-4F0C-869E-27A8F2867037}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x86\crashupload.exe
FirewallRules: [{B9D1C03D-C8B7-4C5C-AFD3-2EBD182CBAA3}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x86\host\CoherentUI_Host.exe
FirewallRules: [{9BC78D4D-EFAB-482C-81D8-F57D4AE46C97}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x86\host\CoherentUI_Host.exe
FirewallRules: [{444B69B6-20BB-4478-96EA-B9BF4238EA9E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x64\crashupload.exe
FirewallRules: [{18C27CC2-D0EF-47FE-94EE-95CD3BFA3078}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x64\crashupload.exe
FirewallRules: [{DA9F1FA5-DC2F-4EC4-9F54-9EF26A0DE281}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x64\host\CoherentUI_Host.exe
FirewallRules: [{C5441507-28D2-47EF-9CD6-155B752ABC61}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x64\host\CoherentUI_Host.exe
FirewallRules: [{E8D69C43-9149-4A28-8B1A-212FB6454755}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x64\server.exe
FirewallRules: [{8157B32C-0B90-4F0A-93A0-244D3E271A2C}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Planetary Annihilation\bin_x64\server.exe
FirewallRules: [{9101D545-96E9-4B2B-A9DD-0945E6E453EB}] => (Allow) C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{56D10F52-91D0-4902-9DF0-72946BD4F54B}] => (Allow) C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{18D32736-96AE-461A-A243-BEDFB82A5028}] => (Allow) C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5B40F501-785E-4FAA-9F54-B764F4F15B08}] => (Allow) C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A7F0CDA6-7CDB-47EB-8607-87A710D39BC1}] => (Allow) C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9A8FD2E9-50C1-413D-85DE-AC4A1A6FF0E1}] => (Allow) C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{07D2A182-A7F2-47BC-BD01-9B6EF930A391}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\pCars\pCARS64.exe
FirewallRules: [{BD1DD734-1A51-4029-B23C-EF541480808B}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\pCars\pCARS64.exe
FirewallRules: [{68F8E0E9-14D9-43E9-9372-AC52E8BFD66A}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\This War of Mine\Storyteller.exe
FirewallRules: [{1418871B-583A-4C51-A900-4E0198A94EF8}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\This War of Mine\Storyteller.exe
FirewallRules: [{8364B395-3BD6-462E-AD04-784DAACD7350}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C6AB8930-88E1-4523-835C-1F18D45800E5}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{D42E0C49-6978-4079-B735-E396342CBDFA}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{6044C86A-4B42-4396-9793-470ABBED420F}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{513C5E6C-35A9-4957-8BA7-772EC131C7AB}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{C47501ED-9E89-49DB-AF13-30C3AAC34A70}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\FINAL FANTASY VIII\FF8_Launcher.exe
FirewallRules: [{B19A8CB2-B36E-40E2-BAE7-B3F332C2C35C}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\FINAL FANTASY VIII\FF8_Launcher.exe
FirewallRules: [{970445CF-9EAA-40EF-8CCF-E82A0485DC20}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{775964F9-C4F1-4375-9C67-263919101A24}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{53F77332-842B-44D3-AA6D-A5325090FF0C}] => (Allow) F:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{86E7ADC7-91AB-4E9C-BBC7-11325C1C5A13}] => (Allow) F:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{713D891F-8401-4A8B-BB0F-DB2A60D8C021}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{85D5282D-2A12-46E3-86FB-A5557C1532C1}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{3F9BD18C-73C9-4542-8B49-7DBD76AECFBF}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{9F48E5C4-4F38-40F3-A235-07DA2CC875C7}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [TCP Query User{B689A2FE-C72F-40E9-A303-79EE51C4276D}C:\program files (x86)\trinusvr\tgserver.exe] => (Allow) C:\program files (x86)\trinusvr\tgserver.exe
FirewallRules: [UDP Query User{8C577398-DA40-4789-986C-5F6FA8E3690B}C:\program files (x86)\trinusvr\tgserver.exe] => (Allow) C:\program files (x86)\trinusvr\tgserver.exe
FirewallRules: [{152B5F86-A476-4712-B615-AD84AACE021D}] => (Block) C:\program files (x86)\trinusvr\tgserver.exe
FirewallRules: [{37A2764A-C998-45C1-849B-31672C32352D}] => (Block) C:\program files (x86)\trinusvr\tgserver.exe
FirewallRules: [TCP Query User{CA3F6F4E-AEB7-4056-A7A2-3FEFF7872701}C:\users\martin\downloads\opentrack-stable-2.2\install\opentrack.exe] => (Allow) C:\users\martin\downloads\opentrack-stable-2.2\install\opentrack.exe
FirewallRules: [UDP Query User{C91C46AD-F47B-456E-B7C3-331986A5970D}C:\users\martin\downloads\opentrack-stable-2.2\install\opentrack.exe] => (Allow) C:\users\martin\downloads\opentrack-stable-2.2\install\opentrack.exe
FirewallRules: [TCP Query User{C2E753BA-8493-4A97-ADAD-AACD1B7A3919}C:\users\martin\downloads\opentrack-2.3-rc21p7\install\opentrack.exe] => (Allow) C:\users\martin\downloads\opentrack-2.3-rc21p7\install\opentrack.exe
FirewallRules: [UDP Query User{029374BA-2797-4831-A9EC-C0EB042AE996}C:\users\martin\downloads\opentrack-2.3-rc21p7\install\opentrack.exe] => (Allow) C:\users\martin\downloads\opentrack-2.3-rc21p7\install\opentrack.exe
==================== Wiederherstellungspunkte =========================
20-11-2015 21:49:26 Windows Update
24-11-2015 21:57:49 Windows Update
01-12-2015 17:42:17 Windows Update
06-12-2015 20:54:14 Windows Update
08-12-2015 23:57:18 Windows Update
15-12-2015 16:45:05 Windows Update
17-12-2015 23:20:10 Windows Update
22-12-2015 20:52:52 Windows Update
27-12-2015 18:45:53 Windows Update
01-01-2016 19:37:28 Windows Update
02-01-2016 13:24:47 Gerätetreiber-Paketinstallation: Headsoft Eingabegeräte (Human Interface Devices)
05-01-2016 15:23:18 Windows Update
12-01-2016 18:07:48 Windows Update
Überprüfen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: QoS-Paketplaner
Description: QoS-Paketplaner
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Psched
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/12/2016 07:06:11 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Fehler beim Aufzählen von Benutzersitzungen zum Generieren von Filterpools.
Details:
Es sind keine Daten mehr verfügbar. (HRESULT : 0x80070103) (0x80070103)
Error: (01/12/2016 06:25:39 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005
Error: (01/12/2016 06:06:11 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Fehler beim Aufzählen von Benutzersitzungen zum Generieren von Filterpools.
Details:
Es sind keine Daten mehr verfügbar. (HRESULT : 0x80070103) (0x80070103)
Error: (01/12/2016 06:04:21 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
Error: (01/12/2016 06:04:21 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for F:\Program Files (x86)\Steam\steam.exe
Error: (01/12/2016 06:03:31 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
Error: (01/12/2016 06:03:31 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for F:\Program Files (x86)\Steam\steam.exe
Error: (01/12/2016 06:02:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/11/2016 05:47:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/10/2016 07:19:07 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005
Systemfehler:
=============
Error: (01/12/2016 06:42:18 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Windows-Firewall" ist vom Dienst "Basisfiltermodul" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%6
Error: (01/12/2016 06:42:18 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Basisfiltermodul" wurde mit folgendem Fehler beendet:
%%6
Error: (01/12/2016 06:42:14 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Basisfiltermodul" wurde mit folgendem Fehler beendet:
%%6
Error: (01/12/2016 06:42:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Windows-Firewall" ist vom Dienst "Basisfiltermodul" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%6
Error: (01/12/2016 06:03:57 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%-2147024890
Error: (01/12/2016 06:03:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Funktionssuche-Ressourcenveröffentlichung" wurde mit folgendem Fehler beendet:
%%-2147024890
Error: (01/12/2016 06:03:58 PM) (Source: WMPNetworkSvc) (EventID: 14348) (User: )
Description: 0x80070057
Error: (01/12/2016 06:03:58 PM) (Source: WMPNetworkSvc) (EventID: 14323) (User: )
Description: WMPNetworkSvc0x80070006
Error: (01/12/2016 06:03:58 PM) (Source: WMPNetworkSvc) (EventID: 14356) (User: )
Description: 0x80070057
Error: (01/12/2016 06:03:58 PM) (Source: WMPNetworkSvc) (EventID: 14323) (User: )
Description: WMPNetworkSvc0x80070006
==================== Speicherinformationen ===========================
Prozessor: AMD FX(tm)-8120 Eight-Core Processor
Prozentuale Nutzung des RAM: 47%
Installierter physikalischer RAM: 8171.57 MB
Verfügbarer physikalischer RAM: 4264.96 MB
Summe virtueller Speicher: 16341.35 MB
Verfügbarer virtueller Speicher: 11740.98 MB
==================== Laufwerke ================================
Drive c: (SSD) (Fixed) (Total:104.49 GB) (Free:17.09 GB) NTFS
Drive d: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0 GB) NTFS
Drive e: () (Fixed) (Total:97.56 GB) (Free:10.35 GB) NTFS
Drive f: () (Fixed) (Total:488.28 GB) (Free:129.85 GB) NTFS
Drive g: () (Fixed) (Total:345.57 GB) (Free:312 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: ECBE8781)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=488.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=345.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 33347695)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=104.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
13.01.2016, 14:54
| #3 |
| /// Malwareteam  | Win7: Win Firewall Fehlercode 0x8007042c Mein Name ist Dennis und ich werde dir bei der Bereinigung helfen. Bitte beachte, dass es ein paar Regeln gibt:
Sollte ich nicht innerhalb von 48h antworten, schreibe mir eine PM! Schritt # 1: TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Schritt # 2: FSS Downloade dir bitte  Farbar Service Scanner
Poste bitte den Inhalt hier. Schritt # 3: Bitte Posten
__________________ |
|
13.01.2016, 17:38
| #4 |
| | TDSS Killer LogCode:
ATTFilter 17:30:10.0611 0x0d88 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
17:30:16.0140 0x0d88 ============================================================
17:30:16.0140 0x0d88 Current date / time: 2016/01/13 17:30:16.0140
17:30:16.0140 0x0d88 SystemInfo:
17:30:16.0140 0x0d88
17:30:16.0140 0x0d88 OS Version: 6.1.7601 ServicePack: 1.0
17:30:16.0140 0x0d88 Product type: Workstation
17:30:16.0140 0x0d88 ComputerName: MARTIN-PC
17:30:16.0140 0x0d88 UserName: Martin
17:30:16.0140 0x0d88 Windows directory: C:\Windows
17:30:16.0140 0x0d88 System windows directory: C:\Windows
17:30:16.0140 0x0d88 Running under WOW64
17:30:16.0140 0x0d88 Processor architecture: Intel x64
17:30:16.0140 0x0d88 Number of processors: 8
17:30:16.0140 0x0d88 Page size: 0x1000
17:30:16.0140 0x0d88 Boot type: Normal boot
17:30:16.0140 0x0d88 ============================================================
17:30:16.0827 0x0d88 KLMD registered as C:\Windows\system32\drivers\20740974.sys
17:30:16.0945 0x0d88 System UUID: {F3A95204-0A6D-ADED-6213-C35B3E8A2FCF}
17:30:17.0785 0x0d88 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:30:17.0787 0x0d88 Drive \Device\Harddisk1\DR1 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:30:17.0800 0x0d88 ============================================================
17:30:17.0800 0x0d88 \Device\Harddisk0\DR0:
17:30:17.0800 0x0d88 MBR partitions:
17:30:17.0800 0x0d88 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:30:17.0800 0x0d88 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31D800
17:30:17.0800 0x0d88 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC350000, BlocksNum 0x3D090000
17:30:17.0800 0x0d88 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x493E0000, BlocksNum 0x2B326000
17:30:17.0800 0x0d88 \Device\Harddisk1\DR1:
17:30:17.0800 0x0d88 MBR partitions:
17:30:17.0800 0x0d88 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
17:30:17.0800 0x0d88 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0xD0FD2B0
17:30:17.0800 0x0d88 ============================================================
17:30:17.0802 0x0d88 C: <-> \Device\Harddisk1\DR1\Partition2
17:30:17.0812 0x0d88 D: <-> \Device\Harddisk0\DR0\Partition1
17:30:17.0835 0x0d88 E: <-> \Device\Harddisk0\DR0\Partition2
17:30:17.0870 0x0d88 F: <-> \Device\Harddisk0\DR0\Partition3
17:30:17.0912 0x0d88 G: <-> \Device\Harddisk0\DR0\Partition4
17:30:17.0912 0x0d88 ============================================================
17:30:17.0912 0x0d88 Initialize success
17:30:17.0912 0x0d88 ============================================================
17:30:52.0737 0x19cc ============================================================
17:30:52.0737 0x19cc Scan started
17:30:52.0737 0x19cc Mode: Manual; SigCheck; TDLFS;
17:30:52.0737 0x19cc ============================================================
17:30:52.0737 0x19cc KSN ping started
17:31:06.0195 0x19cc KSN ping finished: true
17:31:06.0915 0x19cc ================ Scan system memory ========================
17:31:06.0915 0x19cc System memory - ok
17:31:06.0915 0x19cc ================ Scan services =============================
17:31:07.0005 0x19cc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:31:07.0105 0x19cc 1394ohci - ok
17:31:07.0125 0x19cc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:31:07.0165 0x19cc ACPI - ok
17:31:07.0175 0x19cc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:31:07.0205 0x19cc AcpiPmi - ok
17:31:07.0215 0x19cc [ D0B11E40EA74A98A5E133DF1F5276240, BAD5885CD8CC271D59DFA95159EFC3AC36D2BA11B6DA593AAED0C45F1C2F280F ] acsock C:\Windows\system32\DRIVERS\acsock64.sys
17:31:07.0245 0x19cc acsock - ok
17:31:07.0265 0x19cc [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:31:07.0275 0x19cc AdobeARMservice - ok
17:31:07.0295 0x19cc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:31:07.0345 0x19cc adp94xx - ok
17:31:07.0365 0x19cc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:31:07.0405 0x19cc adpahci - ok
17:31:07.0415 0x19cc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:31:07.0445 0x19cc adpu320 - ok
17:31:07.0455 0x19cc [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:31:07.0475 0x19cc AeLookupSvc - ok
17:31:07.0495 0x19cc [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
17:31:07.0545 0x19cc AFD - ok
17:31:07.0555 0x19cc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
17:31:07.0575 0x19cc agp440 - ok
17:31:07.0585 0x19cc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
17:31:07.0605 0x19cc ALG - ok
17:31:07.0615 0x19cc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
17:31:07.0635 0x19cc aliide - ok
17:31:07.0655 0x19cc [ 6BF0147A7A924E5A3AE049A95ECC9B34, 129F0E0FD165C66FEAAA9438F91001AD89AEF39CD655FE60973B7E97146A12C6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:31:07.0685 0x19cc AMD External Events Utility - ok
17:31:07.0695 0x19cc [ 82D9B39F69F577729829C94C93856928, C1328F7F7D3C916785201DDAC09E732151402CB31E82FB8144E83522A9D3F942 ] AMD FUEL Service C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
17:31:07.0715 0x19cc AMD FUEL Service - detected UnsignedFile.Multi.Generic ( 1 )
17:31:10.0122 0x19cc Detect skipped due to KSN trusted
17:31:10.0122 0x19cc AMD FUEL Service - ok
17:31:10.0122 0x19cc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
17:31:10.0142 0x19cc amdide - ok
17:31:10.0152 0x19cc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:31:10.0182 0x19cc AmdK8 - ok
17:31:10.0192 0x19cc amdkmdag - ok
17:31:10.0212 0x19cc [ 50228D17A34A1E5CF93084A6AE70870B, BF8967C3178F4BC2DF2DDAF272C9598B6E53E6C312B7304D44AC66E3592C63D1 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:31:10.0252 0x19cc amdkmdap - ok
17:31:10.0262 0x19cc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:31:10.0282 0x19cc AmdPPM - ok
17:31:10.0292 0x19cc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:31:10.0322 0x19cc amdsata - ok
17:31:10.0332 0x19cc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:31:10.0362 0x19cc amdsbs - ok
17:31:10.0362 0x19cc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:31:10.0392 0x19cc amdxata - ok
17:31:10.0392 0x19cc [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.3 C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys
17:31:10.0412 0x19cc AODDriver4.3 - ok
17:31:10.0462 0x19cc [ 1FDE3302A17928B999E6BBA6D346F7DB, 186029C1C62842F1FE21AAD445134A3DEDB978D2E27169D5016C3149FCC42E5C ] AODDriver4.3.0 F:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys
17:31:10.0492 0x19cc AODDriver4.3.0 - ok
17:31:10.0502 0x19cc [ 24D5D2C9F24B9B7AF63182F5A444C3F9, 02D781C0FFADD355851D37B5401EFD8798F113BB5BC17A994AC5CF548360C3D2 ] AODService F:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
17:31:10.0522 0x19cc AODService - ok
17:31:10.0522 0x19cc [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
17:31:10.0552 0x19cc AppID - ok
17:31:10.0562 0x19cc [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:31:10.0572 0x19cc AppIDSvc - ok
17:31:10.0582 0x19cc [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
17:31:10.0602 0x19cc Appinfo - ok
17:31:10.0612 0x19cc [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
17:31:10.0632 0x19cc AppMgmt - ok
17:31:10.0642 0x19cc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
17:31:10.0662 0x19cc arc - ok
17:31:10.0672 0x19cc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:31:10.0702 0x19cc arcsas - ok
17:31:10.0722 0x19cc [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:31:10.0742 0x19cc aspnet_state - ok
17:31:10.0742 0x19cc [ 7BC1F2FC2A9D79E1EBBBF6D69AC3BA1F, 236265BE3F1B2130025A3A10152893BD0D18AD8965732361058B775F010539A2 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
17:31:10.0762 0x19cc aswHwid - ok
17:31:10.0772 0x19cc [ 68E76C1675AC171A84F5B7230652E19D, A707A4E51110B15FF7D73C95D4D9C1E457FC9D93E1479BDB67EBDDDD6AC28D8E ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
17:31:10.0802 0x19cc aswMonFlt - ok
17:31:10.0812 0x19cc [ 2D6B49A071216796106E7804AB2BA7DC, 6A58A3B36EA05A24333482F87CFD315F73E56A64E46493E82E0FE9115E284168 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
17:31:10.0832 0x19cc aswRdr - ok
17:31:10.0842 0x19cc [ E46B51C99BB750A81AC6A68362475A5C, 2A61C09902B39696D151B9D5E6A60FFC3CF3EA02613EC64BBAB4DEE3C78838E2 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
17:31:10.0862 0x19cc aswRvrt - ok
17:31:10.0892 0x19cc [ A428CC308673A5E74F91D92E4A2B205D, 0A768AA4BD1CD22B5181EDA692F7CB9A43F627BB4FFEEFBB8CBC77A45107A443 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
17:31:10.0972 0x19cc aswSnx - ok
17:31:10.0992 0x19cc [ C24A42A7689DB63EEF157797AA7012B5, AC25AFAD13E59DFBF68B9F9B9527F266F4671A5E0A1F04D9EA71D36C00AC21E9 ] aswSP C:\Windows\system32\drivers\aswSP.sys
17:31:11.0032 0x19cc aswSP - ok
17:31:11.0042 0x19cc [ D9079E1A1C2A1F8ED5F37AF8E6CD3161, 629E3A642C5E3BEA65CDD2E08CAD69F9649A98BDA906678B51D3D2C9DB5BB253 ] aswStm C:\Windows\system32\drivers\aswStm.sys
17:31:11.0062 0x19cc aswStm - ok
17:31:11.0072 0x19cc [ 3BEC32A0B646D914921FD56AA39998C1, 8DB7CBF3DEF8EAE1D7D28C38B3A0FCD5C2A04D772078B907F35C66451355A04A ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
17:31:11.0112 0x19cc aswVmm - ok
17:31:11.0112 0x19cc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:31:11.0162 0x19cc AsyncMac - ok
17:31:11.0172 0x19cc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
17:31:11.0192 0x19cc atapi - ok
17:31:11.0202 0x19cc [ 80AA9265E820A8667EDEF731E31335B6, 549DC0BCF988F25CF3F89A784DC9B97C6D4DF697302F5CF467EFA2B816991A52 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:31:11.0222 0x19cc AtiHDAudioService - ok
17:31:11.0252 0x19cc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:31:11.0292 0x19cc AudioEndpointBuilder - ok
17:31:11.0312 0x19cc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:31:11.0342 0x19cc AudioSrv - ok
17:31:11.0412 0x19cc [ F5CB8703A4F51EE30E5C090C78073AA4, 90683F39E9AA315FFB66A9F014AD1BEBF19EA62908247C133455815F6632E578 ] avast! Antivirus f:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:31:11.0432 0x19cc avast! Antivirus - ok
17:31:11.0672 0x19cc [ 074E25153CC60B082462E762CB3CEF67, 7840039523680AF8FEED018F6AE7B393832FD834D4F41D6112BA3DBA491D5A76 ] AvastVBoxSvc f:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
17:31:11.0902 0x19cc AvastVBoxSvc - ok
17:31:11.0922 0x19cc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:31:11.0942 0x19cc AxInstSV - ok
17:31:11.0962 0x19cc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:31:12.0012 0x19cc b06bdrv - ok
17:31:12.0022 0x19cc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:31:12.0062 0x19cc b57nd60a - ok
17:31:12.0072 0x19cc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
17:31:12.0092 0x19cc BDESVC - ok
17:31:12.0092 0x19cc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
17:31:12.0142 0x19cc Beep - ok
17:31:12.0162 0x19cc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
17:31:12.0202 0x19cc BFE - ok
17:31:12.0232 0x19cc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
17:31:12.0302 0x19cc BITS - ok
17:31:12.0312 0x19cc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:31:12.0342 0x19cc blbdrive - ok
17:31:12.0342 0x19cc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:31:12.0372 0x19cc bowser - ok
17:31:12.0382 0x19cc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:31:12.0412 0x19cc BrFiltLo - ok
17:31:12.0412 0x19cc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:31:12.0442 0x19cc BrFiltUp - ok
17:31:12.0452 0x19cc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
17:31:12.0472 0x19cc Browser - ok
17:31:12.0482 0x19cc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:31:12.0532 0x19cc Brserid - ok
17:31:12.0532 0x19cc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:31:12.0562 0x19cc BrSerWdm - ok
17:31:12.0572 0x19cc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:31:12.0602 0x19cc BrUsbMdm - ok
17:31:12.0602 0x19cc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:31:12.0632 0x19cc BrUsbSer - ok
17:31:12.0632 0x19cc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:31:12.0662 0x19cc BTHMODEM - ok
17:31:12.0672 0x19cc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
17:31:12.0712 0x19cc bthserv - ok
17:31:12.0762 0x19cc [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
17:31:12.0822 0x19cc c2cautoupdatesvc - ok
17:31:12.0872 0x19cc [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
17:31:12.0942 0x19cc c2cpnrsvc - ok
17:31:12.0952 0x19cc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:31:13.0012 0x19cc cdfs - ok
17:31:13.0022 0x19cc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:31:13.0052 0x19cc cdrom - ok
17:31:13.0062 0x19cc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
17:31:13.0102 0x19cc CertPropSvc - ok
17:31:13.0102 0x19cc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
17:31:13.0132 0x19cc circlass - ok
17:31:13.0152 0x19cc [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
17:31:13.0182 0x19cc CLFS - ok
17:31:13.0202 0x19cc [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:31:13.0212 0x19cc clr_optimization_v2.0.50727_32 - ok
17:31:13.0222 0x19cc [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:31:13.0242 0x19cc clr_optimization_v2.0.50727_64 - ok
17:31:13.0262 0x19cc [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:31:13.0282 0x19cc clr_optimization_v4.0.30319_32 - ok
17:31:13.0292 0x19cc [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:31:13.0312 0x19cc clr_optimization_v4.0.30319_64 - ok
17:31:13.0322 0x19cc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
17:31:13.0342 0x19cc CmBatt - ok
17:31:13.0352 0x19cc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:31:13.0372 0x19cc cmdide - ok
17:31:13.0382 0x19cc [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\Windows\system32\Drivers\cng.sys
17:31:13.0432 0x19cc CNG - ok
17:31:13.0442 0x19cc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
17:31:13.0462 0x19cc Compbatt - ok
17:31:13.0472 0x19cc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:31:13.0502 0x19cc CompositeBus - ok
17:31:13.0502 0x19cc COMSysApp - ok
17:31:13.0512 0x19cc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:31:13.0532 0x19cc crcdisk - ok
17:31:13.0542 0x19cc [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:31:13.0562 0x19cc CryptSvc - ok
17:31:13.0592 0x19cc [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
17:31:13.0642 0x19cc CSC - ok
17:31:13.0672 0x19cc [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
17:31:13.0712 0x19cc CscService - ok
17:31:13.0722 0x19cc CtClsFlt - ok
17:31:13.0862 0x19cc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:31:13.0922 0x19cc DcomLaunch - ok
17:31:13.0942 0x19cc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
17:31:13.0992 0x19cc defragsvc - ok
17:31:13.0992 0x19cc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:31:14.0042 0x19cc DfsC - ok
17:31:14.0052 0x19cc [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
17:31:14.0082 0x19cc dg_ssudbus - ok
17:31:14.0102 0x19cc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
17:31:14.0122 0x19cc Dhcp - ok
17:31:14.0197 0x19cc [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
17:31:14.0257 0x19cc DiagTrack - ok
17:31:14.0267 0x19cc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
17:31:14.0317 0x19cc discache - ok
17:31:14.0327 0x19cc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
17:31:14.0347 0x19cc Disk - ok
17:31:14.0357 0x19cc [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
17:31:14.0387 0x19cc dmvsc - ok
17:31:14.0397 0x19cc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:31:14.0417 0x19cc Dnscache - ok
17:31:14.0427 0x19cc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
17:31:14.0477 0x19cc dot3svc - ok
17:31:14.0487 0x19cc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
17:31:14.0527 0x19cc DPS - ok
17:31:14.0537 0x19cc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:31:14.0557 0x19cc drmkaud - ok
17:31:14.0597 0x19cc [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:31:14.0657 0x19cc DXGKrnl - ok
17:31:14.0667 0x19cc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
17:31:14.0717 0x19cc EapHost - ok
17:31:14.0717 0x19cc EasyAntiCheat - ok
17:31:14.0817 0x19cc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:31:14.0947 0x19cc ebdrv - ok
17:31:14.0957 0x19cc [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] EFS C:\Windows\System32\lsass.exe
17:31:14.0977 0x19cc EFS - ok
17:31:14.0997 0x19cc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:31:15.0037 0x19cc elxstor - ok
17:31:15.0047 0x19cc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:31:15.0067 0x19cc ErrDev - ok
17:31:15.0077 0x19cc [ FD291A75ECAF197F07BD2040C2A7322A, B4DE1B8A75928C8E6DF870A7B6F286EAA0B9A5D9443E99B66633F8B60013AC67 ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
17:31:15.0107 0x19cc EtronHub3 - ok
17:31:15.0117 0x19cc [ DDE9068F9BAC0210195F217AA39B9276, 3AE8CE03B0F93EF6006B46F8DFD5523F6C1951D98FB9A411EA90261C368A453F ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
17:31:15.0137 0x19cc EtronXHCI - ok
17:31:15.0157 0x19cc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
17:31:15.0207 0x19cc EventSystem - ok
17:31:15.0217 0x19cc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
17:31:15.0277 0x19cc exfat - ok
17:31:15.0287 0x19cc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:31:15.0347 0x19cc fastfat - ok
17:31:15.0377 0x19cc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
17:31:15.0407 0x19cc Fax - ok
17:31:15.0417 0x19cc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
17:31:15.0447 0x19cc fdc - ok
17:31:15.0447 0x19cc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
17:31:15.0487 0x19cc fdPHost - ok
17:31:15.0497 0x19cc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
17:31:15.0542 0x19cc FDResPub - ok
17:31:15.0548 0x19cc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:31:15.0572 0x19cc FileInfo - ok
17:31:15.0578 0x19cc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:31:15.0624 0x19cc Filetrace - ok
17:31:15.0644 0x19cc [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:31:15.0674 0x19cc FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
17:31:18.0055 0x19cc Detect skipped due to KSN trusted
17:31:18.0055 0x19cc FLEXnet Licensing Service - ok
17:31:18.0065 0x19cc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:31:18.0085 0x19cc flpydisk - ok
17:31:18.0105 0x19cc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:31:18.0135 0x19cc FltMgr - ok
17:31:18.0175 0x19cc [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
17:31:18.0227 0x19cc FontCache - ok
17:31:18.0237 0x19cc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:31:18.0257 0x19cc FontCache3.0.0.0 - ok
17:31:18.0257 0x19cc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:31:18.0287 0x19cc FsDepends - ok
17:31:18.0287 0x19cc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:31:18.0307 0x19cc Fs_Rec - ok
17:31:18.0327 0x19cc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:31:18.0357 0x19cc fvevol - ok
17:31:18.0367 0x19cc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:31:18.0387 0x19cc gagp30kx - ok
17:31:18.0417 0x19cc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
17:31:18.0477 0x19cc gpsvc - ok
17:31:18.0487 0x19cc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:31:18.0507 0x19cc gupdate - ok
17:31:18.0517 0x19cc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:31:18.0527 0x19cc gupdatem - ok
17:31:18.0537 0x19cc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:31:18.0557 0x19cc hcw85cir - ok
17:31:18.0577 0x19cc [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:31:18.0617 0x19cc HdAudAddService - ok
17:31:18.0617 0x19cc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:31:18.0647 0x19cc HDAudBus - ok
17:31:18.0657 0x19cc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:31:18.0687 0x19cc HidBatt - ok
17:31:18.0687 0x19cc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:31:18.0717 0x19cc HidBth - ok
17:31:18.0727 0x19cc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
17:31:18.0757 0x19cc HidIr - ok
17:31:18.0767 0x19cc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
17:31:18.0807 0x19cc hidserv - ok
17:31:18.0807 0x19cc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:31:18.0837 0x19cc HidUsb - ok
17:31:18.0837 0x19cc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:31:18.0877 0x19cc hkmsvc - ok
17:31:18.0897 0x19cc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:31:18.0917 0x19cc HomeGroupListener - ok
17:31:18.0927 0x19cc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:31:18.0947 0x19cc HomeGroupProvider - ok
17:31:18.0957 0x19cc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:31:18.0987 0x19cc HpSAMD - ok
17:31:19.0007 0x19cc [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:31:19.0067 0x19cc HTTP - ok
17:31:19.0077 0x19cc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:31:19.0097 0x19cc hwpolicy - ok
17:31:19.0107 0x19cc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:31:19.0137 0x19cc i8042prt - ok
17:31:19.0147 0x19cc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:31:19.0187 0x19cc iaStorV - ok
17:31:19.0217 0x19cc [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:31:19.0257 0x19cc idsvc - ok
17:31:19.0267 0x19cc IEEtwCollectorService - ok
17:31:19.0277 0x19cc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:31:19.0297 0x19cc iirsp - ok
17:31:19.0327 0x19cc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
17:31:19.0367 0x19cc IKEEXT - ok
17:31:19.0377 0x19cc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
17:31:19.0397 0x19cc intelide - ok
17:31:19.0407 0x19cc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
17:31:19.0437 0x19cc intelppm - ok
17:31:19.0437 0x19cc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:31:19.0487 0x19cc IPBusEnum - ok
17:31:19.0487 0x19cc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:31:19.0537 0x19cc IpFilterDriver - ok
17:31:19.0557 0x19cc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:31:19.0597 0x19cc iphlpsvc - ok
17:31:19.0607 0x19cc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:31:19.0637 0x19cc IPMIDRV - ok
17:31:19.0637 0x19cc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:31:19.0697 0x19cc IPNAT - ok
17:31:19.0757 0x19cc [ 6212B1D43C387AB2AD64585FEC5CFBBC, 6AFE883EAC9B6C71878DD7D51C6AB3BBE4036BCE01F8EAAB1865D5EC2F1B3A9F ] iRacingService F:\Program Files (x86)\iRacing\iRacingService.exe
17:31:19.0787 0x19cc iRacingService - ok
17:31:19.0797 0x19cc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:31:19.0827 0x19cc IRENUM - ok
17:31:19.0837 0x19cc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:31:19.0857 0x19cc isapnp - ok
17:31:19.0867 0x19cc [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:31:19.0897 0x19cc iScsiPrt - ok
17:31:19.0907 0x19cc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:31:19.0927 0x19cc kbdclass - ok
17:31:19.0937 0x19cc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:31:19.0957 0x19cc kbdhid - ok
17:31:19.0967 0x19cc [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] KeyIso C:\Windows\system32\lsass.exe
17:31:19.0990 0x19cc KeyIso - ok
17:31:19.0997 0x19cc [ BCC83F22805F560C8A487F2F296A78FE, B6729B9D85CC3B9377E3143FEF920EFAA82D152845A43074417E9266C9F5C1A8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:31:20.0024 0x19cc KSecDD - ok
17:31:20.0032 0x19cc [ 33D52A96BEEE8AFCE9E07EEC9FE0C9DB, 5367B46A43296792A0E6294906D40511079D5CAA23F08D5A7EDE02C06AD34484 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:31:20.0062 0x19cc KSecPkg - ok
17:31:20.0067 0x19cc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:31:20.0127 0x19cc ksthunk - ok
17:31:20.0137 0x19cc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
17:31:20.0197 0x19cc KtmRm - ok
17:31:20.0207 0x19cc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:31:20.0257 0x19cc LanmanServer - ok
17:31:20.0267 0x19cc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:31:20.0307 0x19cc LanmanWorkstation - ok
17:31:20.0320 0x19cc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:31:20.0368 0x19cc lltdio - ok
17:31:20.0378 0x19cc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:31:20.0428 0x19cc lltdsvc - ok
17:31:20.0438 0x19cc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:31:20.0478 0x19cc lmhosts - ok
17:31:20.0488 0x19cc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:31:20.0508 0x19cc LSI_FC - ok
17:31:20.0524 0x19cc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:31:20.0552 0x19cc LSI_SAS - ok
17:31:20.0558 0x19cc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:31:20.0576 0x19cc LSI_SAS2 - ok
17:31:20.0586 0x19cc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:31:20.0616 0x19cc LSI_SCSI - ok
17:31:20.0616 0x19cc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
17:31:20.0676 0x19cc luafv - ok
17:31:20.0676 0x19cc [ 701223C663019B62029FAB1A2385EE81, 5CD7559A61954BDABE988FD316E06C4AEB24716C685E0C910B8AB03A1339EFEF ] LUMDriver C:\Windows\system32\drivers\LUMDriver.sys
17:31:20.0706 0x19cc LUMDriver - ok
17:31:20.0706 0x19cc [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:31:20.0726 0x19cc MBAMProtector - ok
17:31:20.0766 0x19cc [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
17:31:20.0812 0x19cc MBAMService - ok
17:31:20.0822 0x19cc [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
17:31:20.0842 0x19cc MBAMWebAccessControl - ok
17:31:20.0852 0x19cc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
17:31:20.0872 0x19cc megasas - ok
17:31:20.0882 0x19cc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:31:20.0922 0x19cc MegaSR - ok
17:31:21.0012 0x19cc [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service F:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:31:21.0022 0x19cc Microsoft Office Groove Audit Service - ok
17:31:21.0032 0x19cc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
17:31:21.0072 0x19cc MMCSS - ok
17:31:21.0082 0x19cc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
17:31:21.0122 0x19cc Modem - ok
17:31:21.0132 0x19cc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:31:21.0162 0x19cc monitor - ok
17:31:21.0162 0x19cc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:31:21.0192 0x19cc mouclass - ok
17:31:21.0192 0x19cc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:31:21.0222 0x19cc mouhid - ok
17:31:21.0222 0x19cc [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:31:21.0252 0x19cc mountmgr - ok
17:31:21.0262 0x19cc [ 10A5A4421AFE28A9567CA192FEBE54AC, AE547A469364D118CD81AE1E37907F6AC04B9B49B5D01EE76647BB0957D8A6E8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:31:21.0272 0x19cc MozillaMaintenance - ok
17:31:21.0282 0x19cc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
17:31:21.0312 0x19cc mpio - ok
17:31:21.0322 0x19cc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:31:21.0372 0x19cc mpsdrv - ok
17:31:21.0402 0x19cc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:31:21.0462 0x19cc MpsSvc - ok
17:31:21.0472 0x19cc [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:31:21.0512 0x19cc MRxDAV - ok
17:31:21.0512 0x19cc [ 73ADDCC406B86E7DA4416691E8E74BDA, 4EC970B9095E6DAA79BF7EFB92DF3F2C0AB0C46739AA36C171A262E05B63CBB5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:31:21.0552 0x19cc mrxsmb - ok
17:31:21.0562 0x19cc [ 7C81098FBAF2EAF5B54B939F832B0F61, 999435DF4638ECB136D5BF1B84305A84B215BAB542E4D5301E57D28D507E11B3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:31:21.0605 0x19cc mrxsmb10 - ok
17:31:21.0613 0x19cc [ ACB763673BCCE6C7B3B8F858C9FE4F1F, CCD49558F8A01A225AEAE60BF299BCA6E9399E39F4F553FABC36CADB164BBBC0 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:31:21.0634 0x19cc mrxsmb20 - ok
17:31:21.0644 0x19cc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
17:31:21.0664 0x19cc msahci - ok
17:31:21.0674 0x19cc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:31:21.0704 0x19cc msdsm - ok
17:31:21.0714 0x19cc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
17:31:21.0734 0x19cc MSDTC - ok
17:31:21.0744 0x19cc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:31:21.0794 0x19cc Msfs - ok
17:31:21.0794 0x19cc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:31:21.0841 0x19cc mshidkmdf - ok
17:31:21.0851 0x19cc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:31:21.0871 0x19cc msisadrv - ok
17:31:21.0881 0x19cc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:31:21.0921 0x19cc MSiSCSI - ok
17:31:21.0931 0x19cc msiserver - ok
17:31:21.0931 0x19cc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:31:21.0981 0x19cc MSKSSRV - ok
17:31:21.0981 0x19cc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:31:22.0031 0x19cc MSPCLOCK - ok
17:31:22.0041 0x19cc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:31:22.0081 0x19cc MSPQM - ok
17:31:22.0101 0x19cc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:31:22.0141 0x19cc MsRPC - ok
17:31:22.0141 0x19cc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:31:22.0171 0x19cc mssmbios - ok
17:31:22.0171 0x19cc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:31:22.0221 0x19cc MSTEE - ok
17:31:22.0221 0x19cc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:31:22.0251 0x19cc MTConfig - ok
17:31:22.0251 0x19cc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
17:31:22.0281 0x19cc Mup - ok
17:31:22.0291 0x19cc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
17:31:22.0351 0x19cc napagent - ok
17:31:22.0361 0x19cc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:31:22.0411 0x19cc NativeWifiP - ok
17:31:22.0441 0x19cc [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:31:22.0511 0x19cc NDIS - ok
17:31:22.0521 0x19cc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:31:22.0571 0x19cc NdisCap - ok
17:31:22.0571 0x19cc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:31:22.0621 0x19cc NdisTapi - ok
17:31:22.0621 0x19cc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:31:22.0671 0x19cc Ndisuio - ok
17:31:22.0681 0x19cc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:31:22.0741 0x19cc NdisWan - ok
17:31:22.0741 0x19cc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:31:22.0791 0x19cc NDProxy - ok
17:31:22.0801 0x19cc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:31:22.0851 0x19cc NetBIOS - ok
17:31:22.0861 0x19cc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:31:22.0911 0x19cc NetBT - ok
17:31:22.0921 0x19cc [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] Netlogon C:\Windows\system32\lsass.exe
17:31:22.0941 0x19cc Netlogon - ok
17:31:22.0951 0x19cc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
17:31:23.0001 0x19cc Netman - ok
17:31:23.0011 0x19cc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:23.0031 0x19cc NetMsmqActivator - ok
17:31:23.0041 0x19cc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:23.0061 0x19cc NetPipeActivator - ok
17:31:23.0081 0x19cc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
17:31:23.0131 0x19cc netprofm - ok
17:31:23.0161 0x19cc [ D9A089E17112F04F452D22254B959D87, DE6DD970B224A8A59402793C65E6839F88B0206D13CBB20B4E43AF4743DA64C4 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
17:31:23.0221 0x19cc netr28x - ok
17:31:23.0221 0x19cc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:23.0241 0x19cc NetTcpActivator - ok
17:31:23.0251 0x19cc [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:23.0271 0x19cc NetTcpPortSharing - ok
17:31:23.0281 0x19cc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:31:23.0301 0x19cc nfrd960 - ok
17:31:23.0311 0x19cc [ 106C6E31F54E7C973E903508A27F26FC, A39CE7057E92BCC7ECECD86B0EE956CA5C275FFC5CB04FA181D6995894EF9FBD ] ngvss C:\Windows\system32\drivers\ngvss.sys
17:31:23.0341 0x19cc ngvss - ok
17:31:23.0361 0x19cc [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
17:31:23.0381 0x19cc NlaSvc - ok
17:31:23.0391 0x19cc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:31:23.0441 0x19cc Npfs - ok
17:31:23.0441 0x19cc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
17:31:23.0481 0x19cc nsi - ok
17:31:23.0491 0x19cc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:31:23.0541 0x19cc nsiproxy - ok
17:31:23.0611 0x19cc [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:31:23.0721 0x19cc Ntfs - ok
17:31:23.0731 0x19cc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
17:31:23.0781 0x19cc Null - ok
17:31:23.0921 0x19cc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:31:23.0951 0x19cc nvraid - ok
17:31:23.0961 0x19cc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:31:23.0991 0x19cc nvstor - ok
17:31:24.0008 0x19cc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:31:24.0031 0x19cc nv_agp - ok
17:31:24.0051 0x19cc [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:31:24.0081 0x19cc odserv - ok
17:31:24.0081 0x19cc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:31:24.0111 0x19cc ohci1394 - ok
17:31:24.0121 0x19cc [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:31:24.0141 0x19cc ose - ok
17:31:24.0291 0x19cc [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:31:24.0461 0x19cc osppsvc - ok
17:31:24.0491 0x19cc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:31:24.0521 0x19cc p2pimsvc - ok
17:31:24.0531 0x19cc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
17:31:24.0571 0x19cc p2psvc - ok
17:31:24.0571 0x19cc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
17:31:24.0601 0x19cc Parport - ok
17:31:24.0611 0x19cc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:31:24.0631 0x19cc partmgr - ok
17:31:24.0641 0x19cc [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:31:24.0671 0x19cc PcaSvc - ok
17:31:24.0681 0x19cc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
17:31:24.0711 0x19cc pci - ok
17:31:24.0711 0x19cc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
17:31:24.0731 0x19cc pciide - ok
17:31:24.0751 0x19cc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:31:24.0781 0x19cc pcmcia - ok
17:31:24.0781 0x19cc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
17:31:24.0811 0x19cc pcw - ok
17:31:24.0831 0x19cc [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:31:24.0871 0x19cc PEAUTH - ok
17:31:24.0911 0x19cc [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
17:31:24.0971 0x19cc PeerDistSvc - ok
17:31:25.0011 0x19cc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:31:25.0031 0x19cc PerfHost - ok
17:31:25.0081 0x19cc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
17:31:25.0161 0x19cc pla - ok
17:31:25.0181 0x19cc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:31:25.0211 0x19cc PlugPlay - ok
17:31:25.0221 0x19cc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:31:25.0241 0x19cc PNRPAutoReg - ok
17:31:25.0251 0x19cc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:31:25.0281 0x19cc PNRPsvc - ok
17:31:25.0291 0x19cc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:31:25.0351 0x19cc PolicyAgent - ok
17:31:25.0361 0x19cc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
17:31:25.0411 0x19cc Power - ok
17:31:25.0411 0x19cc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:31:25.0461 0x19cc PptpMiniport - ok
17:31:25.0471 0x19cc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
17:31:25.0501 0x19cc Processor - ok
17:31:25.0511 0x19cc [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
17:31:25.0531 0x19cc ProfSvc - ok
17:31:25.0541 0x19cc [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:31:25.0561 0x19cc ProtectedStorage - ok
17:31:25.0571 0x19cc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:31:25.0621 0x19cc Psched - ok
17:31:25.0661 0x19cc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:31:25.0761 0x19cc ql2300 - ok
17:31:25.0771 0x19cc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:31:25.0801 0x19cc ql40xx - ok
17:31:25.0811 0x19cc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
17:31:25.0841 0x19cc QWAVE - ok
17:31:25.0851 0x19cc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:31:25.0881 0x19cc QWAVEdrv - ok
17:31:25.0881 0x19cc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:31:25.0931 0x19cc RasAcd - ok
17:31:25.0941 0x19cc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:31:25.0981 0x19cc RasAgileVpn - ok
17:31:25.0991 0x19cc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
17:31:26.0041 0x19cc RasAuto - ok
17:31:26.0041 0x19cc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:31:26.0101 0x19cc Rasl2tp - ok
17:31:26.0111 0x19cc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
17:31:26.0161 0x19cc RasMan - ok
17:31:26.0171 0x19cc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:31:26.0221 0x19cc RasPppoe - ok
17:31:26.0231 0x19cc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:31:26.0281 0x19cc RasSstp - ok
17:31:26.0291 0x19cc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:31:26.0351 0x19cc rdbss - ok
17:31:26.0361 0x19cc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:31:26.0391 0x19cc rdpbus - ok
17:31:26.0391 0x19cc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:31:26.0441 0x19cc RDPCDD - ok
17:31:26.0451 0x19cc [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
17:31:26.0481 0x19cc RDPDR - ok
17:31:26.0491 0x19cc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:31:26.0531 0x19cc RDPENCDD - ok
17:31:26.0541 0x19cc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:31:26.0591 0x19cc RDPREFMP - ok
17:31:26.0601 0x19cc [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:31:26.0621 0x19cc RdpVideoMiniport - ok
17:31:26.0631 0x19cc [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:31:26.0671 0x19cc RDPWD - ok
17:31:26.0681 0x19cc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:31:26.0711 0x19cc rdyboost - ok
17:31:26.0721 0x19cc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:31:26.0761 0x19cc RemoteAccess - ok
17:31:26.0771 0x19cc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:31:26.0821 0x19cc RemoteRegistry - ok
17:31:26.0831 0x19cc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:31:26.0871 0x19cc RpcEptMapper - ok
17:31:26.0871 0x19cc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
17:31:26.0891 0x19cc RpcLocator - ok
17:31:26.0911 0x19cc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
17:31:26.0961 0x19cc RpcSs - ok
17:31:26.0976 0x19cc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:31:27.0029 0x19cc rspndr - ok
17:31:27.0047 0x19cc [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:31:27.0086 0x19cc RTL8167 - ok
17:31:27.0116 0x19cc [ 7461D3DA1AABB5F703504E958455A900, B77D36E095A476A8191C1771539F20529F82CACF3C945BF55D64C39EEF09D0EA ] RTL8192cu C:\Windows\system32\DRIVERS\RTL8192cu.sys
17:31:27.0176 0x19cc RTL8192cu - ok
17:31:27.0186 0x19cc [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
17:31:27.0206 0x19cc s3cap - ok
17:31:27.0216 0x19cc [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] SamSs C:\Windows\system32\lsass.exe
17:31:27.0226 0x19cc SamSs - ok
17:31:27.0236 0x19cc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:31:27.0266 0x19cc sbp2port - ok
17:31:27.0276 0x19cc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:31:27.0317 0x19cc SCardSvr - ok
17:31:27.0327 0x19cc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:31:27.0377 0x19cc scfilter - ok
17:31:27.0407 0x19cc [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
17:31:27.0457 0x19cc Schedule - ok
17:31:27.0467 0x19cc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:31:27.0507 0x19cc SCPolicySvc - ok
17:31:27.0517 0x19cc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:31:27.0547 0x19cc SDRSVC - ok
17:31:27.0547 0x19cc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:31:27.0577 0x19cc secdrv - ok
17:31:27.0577 0x19cc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
17:31:27.0627 0x19cc seclogon - ok
17:31:27.0627 0x19cc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
17:31:27.0677 0x19cc SENS - ok
17:31:27.0677 0x19cc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:31:27.0697 0x19cc SensrSvc - ok
17:31:27.0707 0x19cc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:31:27.0737 0x19cc Serenum - ok
17:31:27.0744 0x19cc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:31:27.0773 0x19cc Serial - ok
17:31:27.0778 0x19cc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:31:27.0800 0x19cc sermouse - ok
17:31:27.0810 0x19cc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
17:31:27.0860 0x19cc SessionEnv - ok
17:31:27.0860 0x19cc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:31:27.0890 0x19cc sffdisk - ok
17:31:27.0900 0x19cc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:31:27.0920 0x19cc sffp_mmc - ok
17:31:27.0930 0x19cc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:31:27.0960 0x19cc sffp_sd - ok
17:31:27.0960 0x19cc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:31:27.0993 0x19cc sfloppy - ok
17:31:28.0007 0x19cc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:31:28.0059 0x19cc SharedAccess - ok
17:31:28.0069 0x19cc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:31:28.0119 0x19cc ShellHWDetection - ok
17:31:28.0129 0x19cc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:31:28.0149 0x19cc SiSRaid2 - ok
17:31:28.0159 0x19cc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:31:28.0189 0x19cc SiSRaid4 - ok
17:31:28.0199 0x19cc [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:31:28.0219 0x19cc SkypeUpdate - ok
17:31:28.0229 0x19cc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:31:28.0279 0x19cc Smb - ok
17:31:28.0289 0x19cc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:31:28.0319 0x19cc SNMPTRAP - ok
17:31:28.0329 0x19cc [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\syswow64\speedfan.sys
17:31:28.0349 0x19cc speedfan - ok
17:31:28.0359 0x19cc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
17:31:28.0379 0x19cc spldr - ok
17:31:28.0419 0x19cc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
17:31:28.0449 0x19cc Spooler - ok
17:31:28.0589 0x19cc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
17:31:28.0749 0x19cc sppsvc - ok
17:31:28.0769 0x19cc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:31:28.0809 0x19cc sppuinotify - ok
17:31:28.0829 0x19cc [ 74D30C2EF66C2EB19F17ED5423AA8038, F79AB2B2B60620565FB2169255F95F4B37F6113F0AF776D1BAD02681EBE0DB54 ] sptd C:\Windows\System32\Drivers\sptd.sys
17:31:28.0869 0x19cc sptd - ok
17:31:28.0879 0x19cc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:31:28.0929 0x19cc srv - ok
17:31:28.0949 0x19cc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:31:28.0989 0x19cc srv2 - ok
17:31:28.0999 0x19cc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:31:29.0039 0x19cc srvnet - ok
17:31:29.0049 0x19cc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:31:29.0099 0x19cc SSDPSRV - ok
17:31:29.0099 0x19cc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:31:29.0149 0x19cc SstpSvc - ok
17:31:29.0159 0x19cc [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
17:31:29.0179 0x19cc ssudmdm - ok
17:31:29.0199 0x19cc [ A831D5A4D2F5138E332AC1B98315EBB1, 2FF5C256A83ACFB5CEC17B9FA7875048F770B793C37657D6D4E37C70B2F857A8 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
17:31:29.0239 0x19cc Steam Client Service - ok
17:31:29.0239 0x19cc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:31:29.0269 0x19cc stexstor - ok
17:31:29.0289 0x19cc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
17:31:29.0329 0x19cc stisvc - ok
17:31:29.0339 0x19cc [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
17:31:29.0359 0x19cc storflt - ok
17:31:29.0369 0x19cc [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
17:31:29.0389 0x19cc StorSvc - ok
17:31:29.0389 0x19cc [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
17:31:29.0419 0x19cc storvsc - ok
17:31:29.0419 0x19cc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:31:29.0439 0x19cc swenum - ok
17:31:29.0459 0x19cc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
17:31:29.0519 0x19cc swprv - ok
17:31:29.0579 0x19cc [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
17:31:29.0659 0x19cc SysMain - ok
17:31:29.0669 0x19cc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:31:29.0689 0x19cc TabletInputService - ok
17:31:29.0709 0x19cc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
17:31:29.0759 0x19cc TapiSrv - ok
17:31:29.0769 0x19cc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
17:31:29.0809 0x19cc TBS - ok
17:31:29.0869 0x19cc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:31:29.0979 0x19cc Tcpip - ok
17:31:30.0039 0x19cc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:31:30.0139 0x19cc TCPIP6 - ok
17:31:30.0149 0x19cc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:31:30.0179 0x19cc tcpipreg - ok
17:31:30.0179 0x19cc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:31:30.0209 0x19cc TDPIPE - ok
17:31:30.0209 0x19cc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:31:30.0239 0x19cc TDTCP - ok
17:31:30.0253 0x19cc [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:31:30.0282 0x19cc tdx - ok
17:31:30.0289 0x19cc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:31:30.0313 0x19cc TermDD - ok
17:31:30.0338 0x19cc [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
17:31:30.0380 0x19cc TermService - ok
17:31:30.0388 0x19cc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
17:31:30.0407 0x19cc Themes - ok
17:31:30.0417 0x19cc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
17:31:30.0457 0x19cc THREADORDER - ok
17:31:30.0467 0x19cc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
17:31:30.0507 0x19cc TrkWks - ok
17:31:30.0517 0x19cc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:31:30.0557 0x13c4 Object required for P2P: [ 6212B1D43C387AB2AD64585FEC5CFBBC ] iRacingService
17:31:30.0577 0x19cc TrustedInstaller - ok
17:31:30.0587 0x19cc [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:31:30.0619 0x19cc tssecsrv - ok
17:31:30.0624 0x19cc [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:31:30.0644 0x19cc TsUsbFlt - ok
17:31:30.0654 0x19cc [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:31:30.0674 0x19cc TsUsbGD - ok
17:31:30.0684 0x19cc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:31:30.0744 0x19cc tunnel - ok
17:31:30.0744 0x19cc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:31:30.0774 0x19cc uagp35 - ok
17:31:30.0784 0x19cc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:31:30.0844 0x19cc udfs - ok
17:31:30.0864 0x19cc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:31:30.0884 0x19cc UI0Detect - ok
17:31:30.0884 0x19cc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:31:30.0914 0x19cc uliagpkx - ok
17:31:30.0914 0x19cc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:31:30.0944 0x19cc umbus - ok
17:31:30.0954 0x19cc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
17:31:30.0974 0x19cc UmPass - ok
17:31:30.0984 0x19cc [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
17:31:31.0014 0x19cc UmRdpService - ok
17:31:31.0024 0x19cc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
17:31:31.0074 0x19cc upnphost - ok
17:31:31.0084 0x19cc [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:31:31.0114 0x19cc usbaudio - ok
17:31:31.0124 0x19cc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:31:31.0154 0x19cc usbccgp - ok
17:31:31.0164 0x19cc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:31:31.0184 0x19cc usbcir - ok
17:31:31.0194 0x19cc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:31:31.0224 0x19cc usbehci - ok
17:31:31.0224 0x19cc [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
17:31:31.0254 0x19cc usbfilter - ok
17:31:31.0264 0x19cc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:31:31.0304 0x19cc usbhub - ok
17:31:31.0314 0x19cc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:31:31.0334 0x19cc usbohci - ok
17:31:31.0344 0x19cc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:31:31.0374 0x19cc usbprint - ok
17:31:31.0374 0x19cc [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:31:31.0404 0x19cc usbscan - ok
17:31:31.0414 0x19cc [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:31:31.0444 0x19cc USBSTOR - ok
17:31:31.0444 0x19cc [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:31:31.0474 0x19cc usbuhci - ok
17:31:31.0484 0x19cc [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:31:31.0514 0x19cc usbvideo - ok
17:31:31.0524 0x19cc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
17:31:31.0564 0x19cc UxSms - ok
17:31:31.0584 0x19cc [ 40856E9B66125FAEB707BCBD50FCF057, 3E7490F5C2BFFD4C41048099BB98D515CAE98EC600E792E5B53D62AE3AED198E ] V0790Vid C:\Windows\system32\DRIVERS\V0790Vid.sys
17:31:31.0624 0x19cc V0790Vid - ok
17:31:31.0634 0x19cc [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] VaultSvc C:\Windows\system32\lsass.exe
17:31:31.0654 0x19cc VaultSvc - ok
17:31:32.0074 0x19cc [ E64B68D03B521987B867F481BD82B8E5, 06995F004141DCEB7125660B7F09792FEB647EFD12DD99B7BB2767A3D28700E6 ] VBoxAswDrv f:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
17:31:32.0114 0x19cc VBoxAswDrv - ok
17:31:32.0114 0x19cc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:31:32.0144 0x19cc vdrvroot - ok
17:31:32.0154 0x19cc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
17:31:32.0214 0x19cc vds - ok
17:31:32.0224 0x19cc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:31:32.0254 0x19cc vga - ok
17:31:32.0254 0x19cc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
17:31:32.0304 0x19cc VgaSave - ok
17:31:32.0314 0x19cc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:31:32.0344 0x19cc vhdmp - ok
17:31:32.0354 0x19cc [ A832C5104919194FEB9FF971574A2701, 841E058D691AB16632793E3811E6A317F2A1D73D70378C45FCB34306B4A323A0 ] vhidmini C:\Windows\system32\DRIVERS\vjoy.sys
17:31:32.0374 0x19cc vhidmini - ok
17:31:32.0384 0x19cc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
17:31:32.0404 0x19cc viaide - ok
17:31:32.0414 0x19cc [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
17:31:32.0444 0x19cc vmbus - ok
17:31:32.0454 0x19cc [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
17:31:32.0474 0x19cc VMBusHID - ok
17:31:32.0484 0x19cc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:31:32.0504 0x19cc volmgr - ok
17:31:32.0524 0x19cc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:31:32.0564 0x19cc volmgrx - ok
17:31:32.0574 0x19cc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:31:32.0614 0x19cc volsnap - ok
17:31:32.0634 0x19cc [ D9ED5BF4CEDDD0D029A71E615A65D4EF, 3710A1C644AF8503B4194D556ED788E767EC08032E71F6B82BE8AB28C007A377 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
17:31:32.0664 0x19cc vpnagent - ok
17:31:32.0674 0x19cc [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva C:\Windows\system32\DRIVERS\vpnva64-6.sys
17:31:32.0694 0x19cc vpnva - ok
17:31:32.0704 0x19cc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:31:32.0734 0x19cc vsmraid - ok
17:31:32.0784 0x19cc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
17:31:32.0874 0x19cc VSS - ok
17:31:32.0884 0x19cc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:31:32.0914 0x19cc vwifibus - ok
17:31:32.0924 0x19cc [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:31:32.0954 0x19cc vwififlt - ok
17:31:32.0964 0x19cc [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:31:32.0994 0x19cc vwifimp - ok
17:31:33.0004 0x19cc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
17:31:33.0054 0x19cc W32Time - ok
17:31:33.0064 0x19cc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:31:33.0094 0x19cc WacomPen - ok
17:31:33.0104 0x19cc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:31:33.0104 0x13c4 Object send P2P result: true
17:31:33.0164 0x19cc WANARP - ok
17:31:33.0174 0x19cc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:31:33.0224 0x19cc Wanarpv6 - ok
17:31:33.0274 0x19cc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
17:31:33.0344 0x19cc wbengine - ok
17:31:33.0364 0x19cc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:31:33.0404 0x19cc WbioSrvc - ok
17:31:33.0424 0x19cc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:31:33.0464 0x19cc wcncsvc - ok
17:31:33.0474 0x19cc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:31:33.0494 0x19cc WcsPlugInService - ok
17:31:33.0504 0x19cc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
17:31:33.0524 0x19cc Wd - ok
17:31:33.0554 0x19cc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:31:33.0614 0x19cc Wdf01000 - ok
17:31:33.0634 0x19cc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:31:33.0654 0x19cc WdiServiceHost - ok
17:31:33.0664 0x19cc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:31:33.0684 0x19cc WdiSystemHost - ok
17:31:33.0694 0x19cc [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
17:31:33.0724 0x19cc WebClient - ok
17:31:33.0734 0x19cc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:31:33.0796 0x19cc Wecsvc - ok
17:31:33.0805 0x19cc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:31:33.0851 0x19cc wercplsupport - ok
17:31:33.0858 0x19cc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
17:31:33.0894 0x19cc WerSvc - ok
17:31:33.0904 0x19cc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:31:33.0954 0x19cc WfpLwf - ok
17:31:33.0954 0x19cc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:31:33.0984 0x19cc WIMMount - ok
17:31:33.0984 0x19cc WinDefend - ok
17:31:33.0994 0x19cc WinHttpAutoProxySvc - ok
17:31:34.0014 0x19cc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:31:34.0064 0x19cc Winmgmt - ok
17:31:34.0130 0x19cc [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
17:31:34.0220 0x19cc WinRM - ok
17:31:34.0240 0x19cc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:31:34.0270 0x19cc WinUsb - ok
17:31:34.0300 0x19cc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:31:34.0350 0x19cc Wlansvc - ok
17:31:34.0420 0x19cc [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:31:34.0510 0x19cc wlidsvc - ok
17:31:34.0520 0x19cc [ 680A7846370000D20D7E74917D5B7936, 55B77B358039672845D361CA4205F3482D1F30A4654B610FD785A1337EFDC316 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
17:31:34.0540 0x19cc WmBEnum - ok
17:31:34.0550 0x19cc [ 14C35BA8189C6F65D839163AA285E954, 8981AA488320C75E26E1ABDF884B721A4065F5D28F54782598B03F21B8CDC020 ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
17:31:34.0570 0x19cc WmFilter - ok
17:31:34.0570 0x19cc [ AC4331AF118A720F13C9C5CABBFE27BD, 2C5F453996B00078F3E8E731F6B3DD4529831BDA2146EAFC66727C9460E85112 ] WmHidLo C:\Windows\system32\drivers\WmHidLo.sys
17:31:34.0590 0x19cc WmHidLo - ok
17:31:34.0600 0x19cc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:31:34.0630 0x19cc WmiAcpi - ok
17:31:34.0640 0x19cc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:31:34.0660 0x19cc wmiApSrv - ok
17:31:34.0670 0x19cc WMPNetworkSvc - ok
17:31:34.0670 0x19cc [ 8488DD91A3EE54A8E29F02AD7BB8201E, D428ED991D9E4A8765C240B21884A262854278698D60862117AC5949713231F9 ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
17:31:34.0690 0x19cc WmVirHid - ok
17:31:34.0700 0x19cc [ 14802B3A30AA849C97CB968CCC813BF3, 330AD828ABD040ECDBF58F7162978CD61BFC093CAD404FD2BCAC74E3F2EC542A ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
17:31:34.0720 0x19cc WmXlCore - ok
17:31:34.0730 0x19cc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:31:34.0750 0x19cc WPCSvc - ok
17:31:34.0760 0x19cc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:31:34.0780 0x19cc WPDBusEnum - ok
17:31:34.0790 0x19cc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:31:34.0840 0x19cc ws2ifsl - ok
17:31:34.0850 0x19cc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
17:31:34.0870 0x19cc wscsvc - ok
17:31:34.0880 0x19cc WSearch - ok
17:31:34.0950 0x19cc [ 6075791ED85E47A2A2916B1F34582944, 25B5FAD161711875B38BDD014A26FA527C8EE4854D485989D19A72D5EBBA4054 ] wuauserv C:\Windows\system32\wuaueng.dll
17:31:35.0060 0x19cc wuauserv - ok
17:31:35.0070 0x19cc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:31:35.0100 0x19cc WudfPf - ok
17:31:35.0110 0x19cc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:31:35.0140 0x19cc WUDFRd - ok
17:31:35.0150 0x19cc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:31:35.0179 0x19cc wudfsvc - ok
17:31:35.0191 0x19cc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
17:31:35.0219 0x19cc WwanSvc - ok
17:31:35.0230 0x19cc [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
17:31:35.0247 0x19cc xusb21 - ok
17:31:35.0263 0x19cc ================ Scan global ===============================
17:31:35.0268 0x19cc [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
17:31:35.0279 0x19cc [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
17:31:35.0298 0x19cc [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
17:31:35.0307 0x19cc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:31:35.0317 0x19cc [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
17:31:35.0337 0x19cc [ Global ] - ok
17:31:35.0337 0x19cc ================ Scan MBR ==================================
17:31:35.0337 0x19cc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:31:35.0407 0x19cc \Device\Harddisk0\DR0 - ok
17:31:35.0407 0x19cc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:31:35.0557 0x19cc \Device\Harddisk1\DR1 - ok
17:31:35.0557 0x19cc ================ Scan VBR ==================================
17:31:35.0557 0x19cc [ 534CD6FD1CF274B54B5863D6A549BA86 ] \Device\Harddisk0\DR0\Partition1
17:31:35.0597 0x19cc \Device\Harddisk0\DR0\Partition1 - ok
17:31:35.0597 0x19cc [ 5C4BDA21A58C850CF970D415F10ED103 ] \Device\Harddisk0\DR0\Partition2
17:31:35.0627 0x19cc \Device\Harddisk0\DR0\Partition2 - ok
17:31:35.0637 0x19cc [ 2DB69E7E78EFEB2F94D3C0AA0B6CE071 ] \Device\Harddisk0\DR0\Partition3
17:31:35.0677 0x19cc \Device\Harddisk0\DR0\Partition3 - ok
17:31:35.0677 0x19cc [ BE780190BD97B47BB60A02D0C0C78A41 ] \Device\Harddisk0\DR0\Partition4
17:31:35.0677 0x19cc \Device\Harddisk0\DR0\Partition4 - ok
17:31:35.0687 0x19cc [ DE4CFC9A6BCEAC4DB23F9F39B2598578 ] \Device\Harddisk1\DR1\Partition1
17:31:35.0687 0x19cc \Device\Harddisk1\DR1\Partition1 - ok
17:31:35.0687 0x19cc [ 00473A46F9FAF4A10A74C63033C20ABE ] \Device\Harddisk1\DR1\Partition2
17:31:35.0687 0x19cc \Device\Harddisk1\DR1\Partition2 - ok
17:31:35.0687 0x19cc ================ Scan generic autorun ======================
17:31:35.0697 0x19cc [ 0104F4CA73154C23FFB449501F6D2D53, 0610AC01C06CC15D67F11C0EE00097A4D0A56B9EED16489FD3306EC2E1E6F301 ] C:\Program Files\Logitech\Gaming Software\LWEMon.exe
17:31:35.0717 0x19cc Start WingMan Profiler - ok
17:31:35.0967 0x19cc [ 8A312D5764B4FC4C55CEDDEED4652CF1, C4E726C9C77614CD32D5B76DA2E9A049EC490C2392D9A94B84712BCBF47BA7C6 ] f:\Program Files\AVAST Software\Avast\AvastUI.exe
17:31:36.0177 0x19cc AvastUI.exe - ok
17:31:36.0217 0x19cc [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] F:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:31:36.0227 0x19cc GrooveMonitor - ok
17:31:36.0257 0x19cc [ EE1604406DB5531B685DD2172169225A, 300FA4712DA27260AC4393AA381C1A55FBBB130798512752B0E66A23A74D3A6E ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
17:31:36.0287 0x19cc Cisco AnyConnect Secure Mobility Agent for Windows - ok
17:31:36.0317 0x19cc [ 51B70CE8B46FB074154F2C144919E633, 498E5585814924778358A5D4BEA1936D2CB4D1A15FD900AE017C63D6F1A9F52B ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
17:31:36.0357 0x19cc StartCCC - ok
17:31:36.0367 0x19cc [ C3C11B38503519BE925A3221EAD703F1, 9904973C0BD57F1B561FAAEAF0DB2203D91D5DFC17BD9F9C417FE48A78DE0619 ] C:\Program Files (x86)\Raptr\raptrstub.exe
17:31:36.0387 0x19cc Raptr - ok
17:31:36.0387 0x19cc [ 1BA306FFB44CA78DFCD6CC93CFBAE3E0, 3893B1757B34909CC288C9CB9F88AEBE1AFF19E76C716F5721EA16C380CF65AD ] C:\Windows\V0790Mon.exe
17:31:36.0407 0x19cc V0790Mon.exe - ok
17:31:36.0407 0x19cc Sidebar - ok
17:31:36.0407 0x19cc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:31:36.0437 0x19cc mctadmin - ok
17:31:36.0437 0x19cc Sidebar - ok
17:31:36.0437 0x19cc [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:31:36.0467 0x19cc mctadmin - ok
17:31:36.0597 0x19cc [ 7AB06BB56EA5AAB7340CDCED56A0486F, 2992F9DD854ADE90EA734F01B41FEE12C4080A82B564BF3D20B08ED54380AFB9 ] F:\Program Files (x86)\Steam\steam.exe
17:31:36.0687 0x19cc Steam - ok
17:31:36.0857 0x19cc [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] F:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
17:31:36.0967 0x19cc DAEMON Tools Lite - ok
17:31:36.0997 0x19cc [ 0A7E2E2B10CE1F3530148E6824E79C53, CA1C3395046B7AEE4731A5D94B7BF55417B82255860ECD7FBB21788FE4ADE5B4 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEFE.EXE
17:31:37.0007 0x19cc EPSON Stylus SX200 Series - ok
17:31:37.0037 0x19cc [ 1E827B1C08007E18424315DDA4756279, ED151A4C669E2F240D2E15DC70F49BCE2A244A4E8060B9E0869E15C15CFC04C6 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
17:31:37.0067 0x19cc GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6 - ok
17:31:37.0077 0x19cc [ 7C6D524C78A1722AD987B9E47AC1FEE2, FFDC6C92ABB547D0DCD2621EC423C755A78079B061A41FA1751A56799D1A79A5 ] C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe
17:31:37.0097 0x19cc Dropbox Update - ok
17:31:37.0097 0x19cc Skype - ok
17:31:37.0097 0x19cc Waiting for KSN requests completion. In queue: 144
17:31:38.0097 0x19cc Waiting for KSN requests completion. In queue: 144
17:31:39.0097 0x19cc Waiting for KSN requests completion. In queue: 144
17:31:39.0510 0x1074 Object required for P2P: [ E64B68D03B521987B867F481BD82B8E5 ] VBoxAswDrv
17:31:40.0100 0x19cc Waiting for KSN requests completion. In queue: 74
17:31:41.0100 0x19cc Waiting for KSN requests completion. In queue: 74
17:31:42.0000 0x1074 Object send P2P result: true
17:31:42.0010 0x1074 Object required for P2P: [ 8A312D5764B4FC4C55CEDDEED4652CF1 ] f:\Program Files\AVAST Software\Avast\AvastUI.exe
17:31:42.0100 0x19cc Waiting for KSN requests completion. In queue: 13
17:31:43.0100 0x19cc Waiting for KSN requests completion. In queue: 13
17:31:44.0100 0x19cc Waiting for KSN requests completion. In queue: 13
17:31:44.0513 0x1074 Object send P2P result: true
17:31:44.0514 0x1074 Object required for P2P: [ 7AB06BB56EA5AAB7340CDCED56A0486F ] F:\Program Files (x86)\Steam\steam.exe
17:31:45.0100 0x19cc Waiting for KSN requests completion. In queue: 5
17:31:46.0100 0x19cc Waiting for KSN requests completion. In queue: 5
17:31:47.0004 0x1074 Object send P2P result: true
17:31:47.0530 0x19cc AV detected via SS2: avast! Antivirus, f:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2245.1540 ), 0x41000 ( enabled : updated )
17:31:47.0540 0x19cc Win FW state via NFP2: enabled ( trusted )
17:31:49.0968 0x19cc ============================================================
17:31:49.0968 0x19cc Scan finished
17:31:49.0968 0x19cc ============================================================
17:31:49.0975 0x1590 Detected object count: 0
17:31:49.0975 0x1590 Actual detected object count: 0
Code:
ATTFilter Farbar Service Scanner Version: 03-01-2016
Ran by Martin (administrator) on 13-01-2016 at 17:36:24
Running from "C:\Users\Martin\Downloads"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Action Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
|
|
13.01.2016, 17:47
| #5 |
| /// Malwareteam | Win7: Win Firewall Fehlercode 0x8007042c |
|
16.02.2016, 19:13
| #6 |
| | Win7: Win Firewall Fehlercode 0x8007042c Hi, Muss mich an dieser Stelle erst entschuldigen, dann bedanken. Entschuldigen muss ich mich, weil ich mich so lange nicht hierdrauf gemeldet habe. Hatte ich im Arbeitsstress völlig vergessen! Schande über mich. Bedanken muss ich mich, weil die Lösungsansätze unter dem Link gefruchtet haben. Vielen Dank für die schnelle und kompetente Hilfe!!! |
|
16.02.2016, 20:06
| #7 |
| /// Malwareteam | Win7: Win Firewall Fehlercode 0x8007042c Gerne  |
|
| Themen zu Win7: Win Firewall Fehlercode 0x8007042c |
| .dll, adobe, antivirus, avast, defender, desktop, dnsapi.dll, explorer, google, homepage, mozilla, neustart, photoshop, problem, prozesse, realtek, registry, scan, security, services.exe, software, svchost.exe, system, temp, windows, winlogon.exe |
Linear-Darstellung
