| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: PUA.SpeedUpMyPC.GEN - in Quarantäne?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
04.02.2017, 21:48
| #1 |
 |  PUA.SpeedUpMyPC.GEN - in Quarantäne? Mein Antivir hat nachdem ich es heute mal neu geladen hab, weil es kein Schirmchen in der Taskleiste zeigt - etwas angezeigt und in Quarantäne verschoben - ein PUA.SpeedUpMyPc.GEN und irgend ne Warnung vor ner Datei! Hab dann mal nen Suchlauf mit Malewarebytes gemacht - fand nix und dann nochmal das Antivir laufen Lassen - fand außer ner Warnung auch nix. Sollte ich trotzdem noch was tun? Oder ist es so erledigt? Bitte um Hilfe und Rat! Hier mal Antivir Log Code:
ATTFilter Antivirus Pro
Erstellungsdatum der Reportdatei: Samstag, 4. Februar 2017 19:00
Das Programm läuft als uneingeschränkte Vollversion.
Online-Dienste stehen zur Verfügung.
Lizenznehmer : denise klinger
Seriennummer : 2215462531-PEPWE-0000001
Plattform : Windows 7 Home Premium
Windowsversion : (Service Pack 1) [6.1.7601]
Boot Modus : Normal gebootet
Benutzername : Denise
Computername : DENISE-PC
Versionsinformationen:
build.dat : 15.0.24.146 92768 Bytes 06.12.2016 16:01:00
AVSCAN.EXE : 15.0.24.145 1483568 Bytes 06.12.2016 15:01:18
AVSCANRC.DLL : 15.0.24.119 65232 Bytes 06.12.2016 15:01:19
LUKE.DLL : 15.0.24.145 80208 Bytes 06.12.2016 15:01:24
AVSCPLR.DLL : 15.0.24.145 143032 Bytes 06.12.2016 15:01:19
REPAIR.DLL : 15.0.24.143 689952 Bytes 06.12.2016 15:01:18
repair.rdf : 1.0.24.58 1889737 Bytes 04.02.2017 16:32:31
AVREG.DLL : 15.0.24.143 427848 Bytes 06.12.2016 15:01:18
avlode.dll : 15.0.24.146 804792 Bytes 06.12.2016 15:01:17
avlode.rdf : 14.0.5.76 143349 Bytes 06.12.2016 15:01:17
XBV00011.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00012.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00013.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00014.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00015.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00016.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00017.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00018.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00019.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00020.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00021.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00022.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00023.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00024.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00025.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00026.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00027.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00028.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00029.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00030.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00031.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00032.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00033.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00034.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00035.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00036.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00037.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00038.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00039.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00040.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00041.VDF : 8.12.107.34 2048 Bytes 27.07.2016 15:01:28
XBV00157.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00158.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00159.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00160.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00161.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00162.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00163.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00164.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00165.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00166.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00167.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00168.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00169.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00170.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00171.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00172.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00173.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:23
XBV00174.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00175.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00176.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00177.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00178.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00179.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00180.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00181.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00182.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00183.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00184.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00185.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00186.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00187.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00188.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00189.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00190.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00191.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00192.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00193.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00194.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00195.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00196.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00197.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00198.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00199.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00200.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00201.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00202.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00203.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:24
XBV00204.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00205.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00206.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00207.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00208.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00209.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00210.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00211.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00212.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00213.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00214.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00215.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00216.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00217.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00218.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00219.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00220.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00221.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00222.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00223.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00224.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00225.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00226.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00227.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00228.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00229.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00230.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00231.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00232.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:25
XBV00233.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00234.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00235.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00236.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00237.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00238.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00239.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00240.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00241.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00242.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00243.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00244.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00245.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00246.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00247.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00248.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00249.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00250.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00251.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00252.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00253.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00254.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00255.VDF : 8.12.149.62 2048 Bytes 21.01.2017 16:32:26
XBV00000.VDF : 7.11.70.0 66736640 Bytes 04.04.2013 15:01:27
XBV00001.VDF : 7.11.237.0 48041984 Bytes 02.06.2015 15:01:28
XBV00002.VDF : 7.12.106.228 44941312 Bytes 27.07.2016 15:01:28
XBV00003.VDF : 8.12.113.174 5299200 Bytes 22.08.2016 15:01:28
XBV00004.VDF : 8.12.118.140 3998720 Bytes 15.09.2016 15:01:28
XBV00005.VDF : 8.12.125.14 6024704 Bytes 11.10.2016 15:01:28
XBV00006.VDF : 8.12.132.226 5180928 Bytes 09.11.2016 15:01:28
XBV00007.VDF : 8.12.133.244 1884672 Bytes 16.11.2016 15:01:28
XBV00008.VDF : 8.12.137.174 2475008 Bytes 26.11.2016 15:01:28
XBV00009.VDF : 8.12.143.24 5520384 Bytes 25.12.2016 16:32:12
XBV00010.VDF : 8.12.149.62 6635008 Bytes 21.01.2017 16:32:16
XBV00042.VDF : 8.12.149.64 15872 Bytes 21.01.2017 16:32:17
XBV00043.VDF : 8.12.149.66 158208 Bytes 22.01.2017 16:32:17
XBV00044.VDF : 8.12.149.80 11264 Bytes 22.01.2017 16:32:17
XBV00045.VDF : 8.12.149.92 6144 Bytes 22.01.2017 16:32:17
XBV00046.VDF : 8.12.149.104 29696 Bytes 22.01.2017 16:32:17
XBV00047.VDF : 8.12.149.116 22016 Bytes 22.01.2017 16:32:17
XBV00048.VDF : 8.12.149.128 29184 Bytes 22.01.2017 16:32:17
XBV00049.VDF : 8.12.149.130 116736 Bytes 23.01.2017 16:32:17
XBV00050.VDF : 8.12.149.132 16384 Bytes 23.01.2017 16:32:17
XBV00051.VDF : 8.12.149.134 13824 Bytes 23.01.2017 16:32:17
XBV00052.VDF : 8.12.149.136 8704 Bytes 23.01.2017 16:32:17
XBV00053.VDF : 8.12.149.138 23040 Bytes 23.01.2017 16:32:17
XBV00054.VDF : 8.12.149.140 21504 Bytes 23.01.2017 16:32:17
XBV00055.VDF : 8.12.149.142 25088 Bytes 23.01.2017 16:32:17
XBV00056.VDF : 8.12.149.154 14336 Bytes 23.01.2017 16:32:17
XBV00057.VDF : 8.12.149.166 17408 Bytes 23.01.2017 16:32:17
XBV00058.VDF : 8.12.149.178 15360 Bytes 23.01.2017 16:32:17
XBV00059.VDF : 8.12.149.190 14336 Bytes 23.01.2017 16:32:18
XBV00060.VDF : 8.12.149.202 14336 Bytes 23.01.2017 16:32:18
XBV00061.VDF : 8.12.149.214 3584 Bytes 23.01.2017 16:32:18
XBV00062.VDF : 8.12.149.218 136192 Bytes 24.01.2017 16:32:18
XBV00063.VDF : 8.12.149.220 22528 Bytes 24.01.2017 16:32:18
XBV00064.VDF : 8.12.149.222 2048 Bytes 24.01.2017 16:32:18
XBV00065.VDF : 8.12.149.224 49664 Bytes 24.01.2017 16:32:18
XBV00066.VDF : 8.12.149.226 2048 Bytes 24.01.2017 16:32:18
XBV00067.VDF : 8.12.149.228 33280 Bytes 24.01.2017 16:32:18
XBV00068.VDF : 8.12.149.232 13824 Bytes 24.01.2017 16:32:18
XBV00069.VDF : 8.12.149.244 128512 Bytes 25.01.2017 16:32:18
XBV00070.VDF : 8.12.149.254 37376 Bytes 25.01.2017 16:32:18
XBV00071.VDF : 8.12.150.8 88576 Bytes 25.01.2017 16:32:18
XBV00072.VDF : 8.12.150.18 16896 Bytes 25.01.2017 16:32:18
XBV00073.VDF : 8.12.150.20 14848 Bytes 25.01.2017 16:32:18
XBV00074.VDF : 8.12.150.22 15872 Bytes 25.01.2017 16:32:18
XBV00075.VDF : 8.12.150.26 114176 Bytes 26.01.2017 16:32:19
XBV00076.VDF : 8.12.150.28 32768 Bytes 26.01.2017 16:32:19
XBV00077.VDF : 8.12.150.30 43008 Bytes 26.01.2017 16:32:19
XBV00078.VDF : 8.12.150.34 13312 Bytes 26.01.2017 16:32:19
XBV00079.VDF : 8.12.150.44 17408 Bytes 26.01.2017 16:32:19
XBV00080.VDF : 8.12.150.54 23552 Bytes 26.01.2017 16:32:19
XBV00081.VDF : 8.12.150.64 33280 Bytes 26.01.2017 16:32:19
XBV00082.VDF : 8.12.150.74 31232 Bytes 26.01.2017 16:32:19
XBV00083.VDF : 8.12.150.78 109568 Bytes 27.01.2017 16:32:19
XBV00084.VDF : 8.12.150.80 41472 Bytes 27.01.2017 16:32:19
XBV00085.VDF : 8.12.150.82 25088 Bytes 27.01.2017 16:32:19
XBV00086.VDF : 8.12.150.84 28160 Bytes 27.01.2017 16:32:19
XBV00087.VDF : 8.12.150.94 19456 Bytes 27.01.2017 16:32:19
XBV00088.VDF : 8.12.150.102 24064 Bytes 27.01.2017 16:32:19
XBV00089.VDF : 8.12.150.110 23040 Bytes 27.01.2017 16:32:19
XBV00090.VDF : 8.12.150.120 126464 Bytes 28.01.2017 16:32:19
XBV00091.VDF : 8.12.150.122 29184 Bytes 28.01.2017 16:32:19
XBV00092.VDF : 8.12.150.124 25088 Bytes 28.01.2017 16:32:20
XBV00093.VDF : 8.12.150.126 23040 Bytes 28.01.2017 16:32:20
XBV00094.VDF : 8.12.150.128 21504 Bytes 28.01.2017 16:32:20
XBV00095.VDF : 8.12.150.130 130048 Bytes 29.01.2017 16:32:20
XBV00096.VDF : 8.12.150.132 28160 Bytes 29.01.2017 16:32:20
XBV00097.VDF : 8.12.150.134 11264 Bytes 29.01.2017 16:32:20
XBV00098.VDF : 8.12.150.142 7680 Bytes 29.01.2017 16:32:20
XBV00099.VDF : 8.12.150.150 44544 Bytes 30.01.2017 16:32:20
XBV00100.VDF : 8.12.150.158 4608 Bytes 30.01.2017 16:32:20
XBV00101.VDF : 8.12.150.166 5120 Bytes 30.01.2017 16:32:20
XBV00102.VDF : 8.12.150.174 5120 Bytes 30.01.2017 16:32:20
XBV00103.VDF : 8.12.150.176 8704 Bytes 30.01.2017 16:32:20
XBV00104.VDF : 8.12.150.178 5120 Bytes 30.01.2017 16:32:20
XBV00105.VDF : 8.12.150.180 10752 Bytes 30.01.2017 16:32:20
XBV00106.VDF : 8.12.150.184 6656 Bytes 30.01.2017 16:32:20
XBV00107.VDF : 8.12.150.186 17920 Bytes 30.01.2017 16:32:20
XBV00108.VDF : 8.12.150.188 62976 Bytes 30.01.2017 16:32:20
XBV00109.VDF : 8.12.150.192 137216 Bytes 31.01.2017 16:32:21
XBV00110.VDF : 8.12.150.198 2048 Bytes 31.01.2017 16:32:21
XBV00111.VDF : 8.12.150.204 17408 Bytes 31.01.2017 16:32:21
XBV00112.VDF : 8.12.150.210 14336 Bytes 31.01.2017 16:32:21
XBV00113.VDF : 8.12.150.216 18944 Bytes 31.01.2017 16:32:21
XBV00114.VDF : 8.12.150.218 7168 Bytes 31.01.2017 16:32:21
XBV00115.VDF : 8.12.150.220 23552 Bytes 31.01.2017 16:32:21
XBV00116.VDF : 8.12.150.222 13824 Bytes 31.01.2017 16:32:21
XBV00117.VDF : 8.12.150.224 10752 Bytes 31.01.2017 16:32:21
XBV00118.VDF : 8.12.150.226 17920 Bytes 31.01.2017 16:32:21
XBV00119.VDF : 8.12.150.228 37888 Bytes 31.01.2017 16:32:21
XBV00120.VDF : 8.12.150.232 98304 Bytes 01.02.2017 16:32:21
XBV00121.VDF : 8.12.150.238 19968 Bytes 01.02.2017 16:32:21
XBV00122.VDF : 8.12.150.244 23552 Bytes 01.02.2017 16:32:21
XBV00123.VDF : 8.12.150.250 13312 Bytes 01.02.2017 16:32:21
XBV00124.VDF : 8.12.151.0 20992 Bytes 01.02.2017 16:32:21
XBV00125.VDF : 8.12.151.2 13312 Bytes 01.02.2017 16:32:21
XBV00126.VDF : 8.12.151.4 6656 Bytes 01.02.2017 16:32:21
XBV00127.VDF : 8.12.151.6 2048 Bytes 01.02.2017 16:32:21
XBV00128.VDF : 8.12.151.8 122880 Bytes 02.02.2017 16:32:22
XBV00129.VDF : 8.12.151.10 2048 Bytes 02.02.2017 16:32:22
XBV00130.VDF : 8.12.151.12 18432 Bytes 02.02.2017 16:32:22
XBV00131.VDF : 8.12.151.14 15360 Bytes 02.02.2017 16:32:22
XBV00132.VDF : 8.12.151.16 15360 Bytes 02.02.2017 16:32:22
XBV00133.VDF : 8.12.151.22 9728 Bytes 02.02.2017 16:32:22
XBV00134.VDF : 8.12.151.26 18432 Bytes 02.02.2017 16:32:22
XBV00135.VDF : 8.12.151.30 16896 Bytes 02.02.2017 16:32:22
XBV00136.VDF : 8.12.151.34 11264 Bytes 02.02.2017 16:32:22
XBV00137.VDF : 8.12.151.38 14336 Bytes 02.02.2017 16:32:22
XBV00138.VDF : 8.12.151.42 102912 Bytes 03.02.2017 16:32:22
XBV00139.VDF : 8.12.151.44 6656 Bytes 03.02.2017 16:32:22
XBV00140.VDF : 8.12.151.46 8704 Bytes 03.02.2017 16:32:22
XBV00141.VDF : 8.12.151.48 10240 Bytes 03.02.2017 16:32:22
XBV00142.VDF : 8.12.151.50 12288 Bytes 03.02.2017 16:32:22
XBV00143.VDF : 8.12.151.52 12288 Bytes 03.02.2017 16:32:22
XBV00144.VDF : 8.12.151.54 30208 Bytes 03.02.2017 16:32:22
XBV00145.VDF : 8.12.151.56 10240 Bytes 03.02.2017 16:32:22
XBV00146.VDF : 8.12.151.58 9728 Bytes 03.02.2017 16:32:22
XBV00147.VDF : 8.12.151.60 16896 Bytes 03.02.2017 16:32:22
XBV00148.VDF : 8.12.151.64 12800 Bytes 03.02.2017 16:32:22
XBV00149.VDF : 8.12.151.68 10752 Bytes 03.02.2017 16:32:23
XBV00150.VDF : 8.12.151.72 11776 Bytes 03.02.2017 16:32:23
XBV00151.VDF : 8.12.151.76 29184 Bytes 03.02.2017 16:32:23
XBV00152.VDF : 8.12.151.80 88064 Bytes 04.02.2017 16:32:23
XBV00153.VDF : 8.12.151.82 2048 Bytes 04.02.2017 16:32:23
XBV00154.VDF : 8.12.151.84 26624 Bytes 04.02.2017 16:32:23
XBV00155.VDF : 8.12.151.86 16896 Bytes 04.02.2017 16:32:23
XBV00156.VDF : 8.12.151.88 19456 Bytes 04.02.2017 16:32:23
LOCAL000.VDF : 8.12.151.88 203328000 Bytes 04.02.2017 16:33:33
Engineversion : 8.3.42.162
AEBB.DLL : 8.1.3.0 59296 Bytes 06.12.2016 15:01:15
AECORE.DLL : 8.3.12.4 247720 Bytes 06.12.2016 15:01:15
AECRYPTO.DLL : 8.2.1.0 129904 Bytes 06.12.2016 15:01:15
AEDROID.DLL : 8.4.3.392 2746280 Bytes 06.12.2016 15:01:15
AEEMU.DLL : 8.1.3.8 404328 Bytes 06.12.2016 15:01:15
AEEXP.DLL : 8.4.4.4 333728 Bytes 04.02.2017 16:32:30
AEGEN.DLL : 8.1.8.320 674552 Bytes 04.02.2017 16:32:26
AEHELP.DLL : 8.3.2.12 284584 Bytes 04.02.2017 16:32:27
AEHEUR.DLL : 8.1.4.2684 10709752 Bytes 04.02.2017 16:32:29
AELIBINF.DLL : 8.2.1.4 68464 Bytes 06.12.2016 15:01:15
AEMOBILE.DLL : 8.1.18.2 346992 Bytes 04.02.2017 16:32:31
AEOFFICE.DLL : 8.3.6.138 592632 Bytes 04.02.2017 16:32:29
AEPACK.DLL : 8.4.2.44 809720 Bytes 04.02.2017 16:32:29
AERDL.DLL : 8.2.1.52 813928 Bytes 04.02.2017 16:32:30
AESBX.DLL : 8.2.22.6 1632160 Bytes 04.02.2017 16:32:30
AESCN.DLL : 8.3.4.6 141216 Bytes 06.12.2016 15:01:15
AESCRIPT.DLL : 8.3.2.62 813816 Bytes 04.02.2017 16:32:30
AEVDF.DLL : 8.3.3.4 142184 Bytes 06.12.2016 15:01:15
AVWINLL.DLL : 15.0.24.119 29200 Bytes 06.12.2016 15:01:20
AVPREF.DLL : 15.0.24.119 53944 Bytes 06.12.2016 15:01:18
AVREP.DLL : 15.0.24.119 223400 Bytes 06.12.2016 15:01:18
AVARKT.DLL : 15.0.24.119 230544 Bytes 06.12.2016 15:01:16
SQLITE3.DLL : 15.0.24.119 459752 Bytes 06.12.2016 15:01:27
AVSMTP.DLL : 15.0.24.119 80200 Bytes 06.12.2016 15:01:19
NETNT.DLL : 15.0.24.119 16880 Bytes 06.12.2016 15:01:25
CommonImageRc.dll: 15.0.24.143 3836560 Bytes 06.12.2016 15:01:26
CommonTextRc.dll: 15.0.24.119 70936 Bytes 06.12.2016 15:01:26
Konfiguration für den aktuellen Suchlauf:
Job Name..............................: Vollständige Prüfung
Konfigurationsdatei...................: C:\Program Files (x86)\Avira\Antivirus\sysscan.avp
Protokollierung.......................: standard
Primäre Aktion........................: Interaktiv
Sekundäre Aktion......................: Ignorieren
Durchsuche Masterbootsektoren.........: ein
Durchsuche Bootsektoren...............: ein
Bootsektoren..........................: C:, D:,
Durchsuche aktive Programme...........: ein
Laufende Programme erweitert..........: ein
Durchsuche Registrierung..............: ein
Suche nach Rootkits...................: ein
Integritätsprüfung von Systemdateien..: aus
Prüfe alle Dateien....................: Alle Dateien
Durchsuche Archive....................: ein
Rekursionstiefe einschränken..........: 20
Archiv Smart Extensions...............: ein
Makrovirenheuristik...................: ein
Dateiheuristik........................: erweitert
Auszulassende Dateien.................:
Beginn des Suchlaufs: Samstag, 4. Februar 2017 19:00
Der Suchlauf über die Bootsektoren wird begonnen:
Bootsektor 'HDD0(C:, D:)'
[INFO] Es wurde kein Virus gefunden!
Der Suchlauf nach versteckten Objekten wird begonnen.
Eine Instanz der ARK Library läuft bereits.
Der Suchlauf über gestartete Prozesse wird begonnen:
Durchsuche Prozess 'svchost.exe' - '52' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'atiesrxx.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '92' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '109' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '87' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '166' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '86' Modul(e) wurden durchsucht
Durchsuche Prozess 'FBAgent.exe' - '41' Modul(e) wurden durchsucht
Durchsuche Prozess 'ASLDRSrv.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'spoolsv.exe' - '84' Modul(e) wurden durchsucht
Durchsuche Prozess 'sched.exe' - '70' Modul(e) wurden durchsucht
Durchsuche Prozess 'atieclxx.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '60' Modul(e) wurden durchsucht
Durchsuche Prozess 'avguard.exe' - '137' Modul(e) wurden durchsucht
Durchsuche Prozess 'InsOnSrv.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'chip 1-click installer.exe' - '51' Modul(e) wurden durchsucht
Durchsuche Prozess 'DbxSvc.exe' - '22' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '57' Modul(e) wurden durchsucht
Durchsuche Prozess 'fsssvc.exe' - '101' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'WLIDSVC.EXE' - '75' Modul(e) wurden durchsucht
Durchsuche Prozess 'WLIDSvcM.exe' - '17' Modul(e) wurden durchsucht
Durchsuche Prozess 'avshadow.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'avmailc7.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'avwebg7.exe' - '67' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskhost.exe' - '83' Modul(e) wurden durchsucht
Durchsuche Prozess 'InsOnWMI.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskeng.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'Dwm.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskeng.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'BatteryLife.exe' - '53' Modul(e) wurden durchsucht
Durchsuche Prozess 'USBChargerPlus.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'Explorer.EXE' - '201' Modul(e) wurden durchsucht
Durchsuche Prozess 'AsScrPro.exe' - '35' Modul(e) wurden durchsucht
Durchsuche Prozess 'ATKOSD2.exe' - '36' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmiprvse.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'CLMLSvc.exe' - '40' Modul(e) wurden durchsucht
Durchsuche Prozess 'hkcmd.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'igfxpers.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'RAVBg64.exe' - '55' Modul(e) wurden durchsucht
Durchsuche Prozess 'RAVCpl64.exe' - '46' Modul(e) wurden durchsucht
Durchsuche Prozess 'wcourier.exe' - '61' Modul(e) wurden durchsucht
Durchsuche Prozess 'DMedia.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'HControlUser.exe' - '22' Modul(e) wurden durchsucht
Durchsuche Prozess 'avgnt.exe' - '94' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchIndexer.exe' - '54' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmpnetwk.exe' - '124' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '61' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '55' Modul(e) wurden durchsucht
Durchsuche Prozess 'HPSupportSolutionsFrameworkService.exe' - '91' Modul(e) wurden durchsucht
Durchsuche Prozess 'LMS.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'UNS.exe' - '45' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'MOM.exe' - '83' Modul(e) wurden durchsucht
Durchsuche Prozess 'CCC.exe' - '213' Modul(e) wurden durchsucht
Durchsuche Prozess 'avscan.exe' - '131' Modul(e) wurden durchsucht
Durchsuche Prozess 'vssvc.exe' - '47' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbam.exe' - '118' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbamservice.exe' - '58' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskhost.exe' - '57' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '15' Modul(e) wurden durchsucht
Durchsuche Prozess 'avcenter.exe' - '140' Modul(e) wurden durchsucht
Durchsuche Prozess 'avscan.exe' - '87' Modul(e) wurden durchsucht
Durchsuche Prozess 'avscan.exe' - '122' Modul(e) wurden durchsucht
Durchsuche Prozess 'smss.exe' - '2' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht
Durchsuche Prozess 'wininit.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht
Durchsuche Prozess 'services.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsass.exe' - '67' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsm.exe' - '16' Modul(e) wurden durchsucht
Durchsuche Prozess 'winlogon.exe' - '32' Modul(e) wurden durchsucht
Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen:
Die Registry wurde durchsucht ( '2171' Dateien ).
Der Suchlauf über die ausgewählten Dateien wird begonnen:
Beginne mit der Suche in 'C:\' <OS>
Cloud SDK Initialisierung und Lizenz überprüfen erfolgreich.
Die Datei 'C:\eSupport\eDriver\Software\ASUS\ASUS_K3_Series_Screensaver\XP32_Vista32_Win7_32_Win7_64_AsusScr_K3_Series_ENG\AsScrInst.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 83D642A180E52591A48BC02416E5DCB640CC9293CA3F4CFF1E384713FA9DEB6B
[0] Archivtyp: RSRC
--> C:\ProgramData\Avira\Launcher\Temp\939e0be5-f23f-4805-851e-5518baa80c83\3f091d14-09f6-44eb-a5c1-2d9505bbb1cc.tmp
[1] Archivtyp: RAR SFX (self extracting)
--> de-de\210\avwin.chm
[2] Archivtyp: CHM
--> lib/imageswac_vp_out_of_date.png
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> lib/imageswac_vp_not_found.png
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> lib/imageswac_desktop_off.png
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> lib/imageswac_desktop_out_of_date.png
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> lib/imageswac_wd_out_of_date.png
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> lib/imageswac_wd_off.png
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> lib/imageslogo165.jpg
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> css/reset.css
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> css/base.css
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> css/avira.css
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> js/chmRelative.js
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> $WWKeywordLinks/BTree
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> $WWKeywordLinks/Data
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> $WWKeywordLinks/Map
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> $WWKeywordLinks/Property
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> $WWAssociativeLinks/Property
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> $OBJINST
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> $FIftiMain
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> #IDXHDR
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> #TOPICS
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> #URLTBL
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> #URLSTR
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> #STRINGS
[WARNUNG] Die Datei konnte nicht gelesen werden!
--> C:\ProgramData\Avira\Launcher\Temp\ec1f5c84-3fca-4070-8905-b9c52bdd85af\968eda93-7686-46a5-a9be-8950fa18e2ee.tmp
[1] Archivtyp: RAR SFX (self extracting)
--> xbv00000.vdf
[WARNUNG] Die Datei konnte nicht gelesen werden!
[WARNUNG] Die Datei konnte nicht gelesen werden!
C:\ProgramData\Avira\Launcher\Temp\ec1f5c84-3fca-4070-8905-b9c52bdd85af\968eda93-7686-46a5-a9be-8950fa18e2ee.tmp
[WARNUNG] Die Datei konnte nicht gelesen werden!
Die Datei 'C:\Windows\AsusScr_K3 Series_ENG Uninstaller.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 0F998D1DD9C616D11CB6BB98F85B23F3F16461C106EE004872456BB4251C1410
Beginne mit der Suche in 'D:\' <DATA>
Ende des Suchlaufs: Samstag, 4. Februar 2017 21:26
Benötigte Zeit: 2:26:32 Stunde(n)
Der Suchlauf wurde vollständig durchgeführt.
56806 Verzeichnisse wurden überprüft
1003529 Dateien wurden geprüft
0 Viren bzw. unerwünschte Programme wurden gefunden
0 Dateien wurden als verdächtig eingestuft
0 Dateien wurden gelöscht
0 Viren bzw. unerwünschte Programme wurden repariert
0 Dateien wurden in die Quarantäne verschoben
0 Dateien wurden umbenannt
0 Dateien konnten nicht durchsucht werden
1003529 Dateien ohne Befall
12776 Archive wurden durchsucht
1 Warnungen
0 Hinweise
Code:
ATTFilter <?xml version="1.0" encoding="UTF-8" ?>
<mbam-log>
<header>
<date>2017/02/04 18:22:55 +0100</date>
<logfile>mbam-log-2017-02-04 (18-22-52).xml</logfile>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.2.1.1043</version>
<malware-database>v2017.02.04.05</malware-database>
<rootkit-database>v2016.11.20.01</rootkit-database>
<license>free</license>
<file-protection>disabled</file-protection>
<web-protection>disabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<hostname>DENISE-PC</hostname>
<ip>192.168.2.109</ip>
<osversion>Windows 7 Service Pack 1</osversion>
<arch>x64</arch>
<username>Denise</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>413966</objects>
<time>1666</time>
<processes>0</processes>
<modules>0</modules>
<keys>0</keys>
<values>0</values>
<datas>0</datas>
<folders>0</folders>
<files>0</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>enabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<heuristics>enabled</heuristics>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
</items>
</mbam-log>
|
|
05.02.2017, 02:08
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | PUA.SpeedUpMyPC.GEN - in Quarantäne? Scan mit Farbar's Recovery Scan Tool (FRST)
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
05.02.2017, 10:52
| #3 |
| | PUA.SpeedUpMyPC.GEN - in Quarantäne? Danke das du mir hilfst!!!
__________________Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-01-2017
durchgeführt von Denise (Administrator) auf DENISE-PC (05-02-2017 10:43:22)
Gestartet von C:\Users\Denise\Desktop
Geladene Profile: Denise (Verfügbare Profile: Denise & Kontokonto & Gast)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(ASUS) C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
(ASUS) C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Windows\AsScrPro.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ASUS) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2278504 2011-09-19] (Realtek Semiconductor)
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2018032 2011-04-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2317312 2011-09-13] (ASUS)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-07-06] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [178848 2012-07-17] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-09-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [917576 2016-12-06] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2011-04-13]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe ()
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{4DD2443C-60BD-4176-8274-8122F63AA316}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3586178835-4235327162-316650703-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3586178835-4235327162-316650703-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378 [2017-02-05]
FF Homepage: Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378 -> about:home
FF Extension: (All-in-One Sidebar) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2016-11-09]
FF Extension: (WOT) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-09]
FF Extension: (Adblock Plus) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF Extension: (Tab Mix Plus) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2017-01-13]
FF Extension: (Diagnostics) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\features\{04fb8cd6-c8af-4815-96d6-b6c01fb9f181}\diagnostics@mozilla.org.xpi [2017-02-03]
FF Extension: (Send HSTS Priming Requests) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\features\{04fb8cd6-c8af-4815-96d6-b6c01fb9f181}\hsts-priming@mozilla.org.xpi [2017-02-03]
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\searchplugins\chip-online-suche.xml [2015-12-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation)
FF Plugin HKU\S-1-5-21-3586178835-4235327162-316650703-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101727.dll [2012-09-15] (Amazon.com, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.de/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\PepperFlash\pepflashplayer.dll => Keine Datei
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\pdf.dll => Keine Datei
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll => Keine Datei
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101727.dll (Amazon.com, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll => Keine Datei
CHR Plugin: (Zeon Plus) - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll => Keine Datei
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll => Keine Datei
CHR Profile: C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default [2017-01-30]
CHR Extension: (Wetter) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\fapbbpdnlcmiolkdfjnnjhabmcndadad [2015-03-10]
CHR Extension: (Yulia Brodskaya) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgdloilieclkegafohackmhffbmdpko [2013-10-27]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-05]
CHR Extension: (Outlook.com) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2013-10-27]
CHR Extension: (Google Mail) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-28]
CHR Extension: (Chrome Media Router) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-05]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1089592 2016-12-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [476736 2016-12-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [476736 2016-12-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1490296 2016-12-06] (Avira Operations GmbH & Co. KG)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-08-29] (Chip Digital GmbH) [Datei ist nicht signiert]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-13] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-13] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46400 2017-01-30] (Dropbox, Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [16768 2011-09-20] (ASUSTek Computer Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [176464 2016-12-06] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [148032 2016-12-06] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2016-12-06] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [79696 2016-12-06] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35864 2016-12-06] (Avira Operations GmbH & Co. KG)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [44480 2011-05-17] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2017-02-04] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
S3 s217bus; C:\Windows\System32\DRIVERS\s217bus.sys [108072 2007-11-02] (MCCI Corporation)
S3 s217mdfl; C:\Windows\System32\DRIVERS\s217mdfl.sys [19496 2007-11-02] (MCCI Corporation)
S3 s217mdm; C:\Windows\System32\DRIVERS\s217mdm.sys [145448 2007-11-02] (MCCI Corporation)
S3 s217nd5; C:\Windows\System32\DRIVERS\s217nd5.sys [33832 2007-11-02] (MCCI Corporation)
S3 s217obex; C:\Windows\System32\DRIVERS\s217obex.sys [124968 2007-11-02] (MCCI Corporation)
S3 s217unic; C:\Windows\System32\DRIVERS\s217unic.sys [138792 2007-11-02] (MCCI)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-02-05 10:43 - 2017-02-05 10:43 - 00021702 _____ C:\Users\Denise\Desktop\FRST.txt
2017-02-05 10:42 - 2017-02-05 10:43 - 00000000 ___DC C:\FRST
2017-02-05 10:42 - 2017-02-05 10:42 - 02420736 _____ (Farbar) C:\Users\Denise\Desktop\FRST64.exe
2017-02-04 21:47 - 2017-02-04 21:47 - 00001303 _____ C:\Users\Denise\Desktop\mb log 4.2.17.xml
2017-02-04 17:31 - 2017-02-04 18:04 - 00001238 _____ C:\Users\Public\Desktop\Avira Antivirus.lnk
2017-02-04 17:31 - 2017-02-04 17:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-02-04 17:30 - 2016-12-06 16:01 - 00176464 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2017-02-04 17:30 - 2016-12-06 16:01 - 00148032 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2017-02-04 17:30 - 2016-12-06 16:01 - 00079696 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2017-02-04 17:30 - 2016-12-06 16:01 - 00035864 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2017-02-04 17:30 - 2016-12-06 16:01 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2017-02-04 17:17 - 2017-02-04 17:17 - 00000000 ____D C:\Users\Denise\AppData\Local\AviraSpeedup
2017-02-04 17:12 - 2017-02-04 17:12 - 00000000 ____D C:\Users\Denise\AppData\Local\Avira
2017-02-04 11:58 - 2017-02-04 11:58 - 00042298 _____ C:\Users\Kontokonto\Downloads\918121_2017_Mitteilung_vom_01.02.2017_20170204115821.pdf
2017-02-04 11:57 - 2017-02-04 11:57 - 00061537 _____ C:\Users\Kontokonto\Downloads\918121_2017_Nr.001_Kontoauszug_vom_01.02.2017_20170204115735.pdf
2017-02-04 11:57 - 2017-02-04 11:57 - 00041446 _____ C:\Users\Kontokonto\Downloads\918121_2017_IhreEntgelte_vom_01.02.2017_20170204115707.pdf
2017-02-04 11:56 - 2017-02-04 11:56 - 00041732 _____ C:\Users\Kontokonto\Downloads\918121_2017_InformationzurKontoabrechnungnach504BGB_vom_01.02.2017_20170204115617.pdf
2017-02-03 18:00 - 2017-02-03 18:00 - 00144468 _____ C:\Users\Denise\Documents\Rechnung 11teamsport jan.17.pdf
2017-02-02 21:51 - 2017-02-02 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-01-30 15:02 - 2017-01-30 15:02 - 00046400 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-01-30 12:49 - 2017-01-30 13:59 - 00000000 ____D C:\Users\Denise\Desktop\handy
2017-01-26 12:40 - 2017-01-26 12:40 - 00390654 _____ C:\Users\Kontokonto\Downloads\xxxxxxxxxxxxx409_2017_Kreditkarten-Umsatzaufstellung_vom_21.01.2017_20170126124024.pdf
2017-01-26 12:40 - 2017-01-26 12:40 - 00390654 _____ C:\Users\Kontokonto\Downloads\xxxxxxxxxxxxx409_2017_Kreditkarten-Umsatzaufstellung_vom_21.01.2017_20170126124016.pdf
2017-01-25 12:41 - 2017-01-25 12:41 - 00000000 ____D C:\Users\Denise\AppData\Local\{022A032A-D6B2-4FC3-BB7F-6371EEED610B}
2017-01-19 09:45 - 2017-01-19 09:45 - 00071028 _____ C:\Users\Kontokonto\Downloads\Konto_1565106705-Auszug_2016_012.PDF
2017-01-11 10:44 - 2017-01-11 10:44 - 00041233 _____ C:\Users\Kontokonto\Downloads\918121_2016_Entgeltinformationen_vom_01.12.2016_20170111104424.pdf
2017-01-11 10:43 - 2017-01-11 10:43 - 00060274 _____ C:\Users\Kontokonto\Downloads\918121_2016_Nr.005_Kontoauszug_vom_31.12.2016_20170111104317.pdf
2017-01-11 10:43 - 2017-01-11 10:43 - 00041204 _____ C:\Users\Kontokonto\Downloads\918121_2016_Entgeltinformationen_vom_01.12.2016_20170111104358.pdf
2017-01-10 23:49 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-10 23:49 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-10 23:49 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-01-10 23:49 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-01-10 23:49 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-10 23:49 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-10 23:49 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-10 23:49 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-10 23:49 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-10 23:49 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-01-10 23:49 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-01-10 23:23 - 2017-01-10 23:23 - 20358232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-02-05 10:43 - 2016-04-19 23:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-05 10:39 - 2016-11-16 23:17 - 00000000 ____D C:\Users\Denise\AppData\LocalLow\Mozilla
2017-02-05 10:39 - 2016-07-13 09:59 - 00001214 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-02-04 23:14 - 2016-07-13 09:59 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-02-04 22:00 - 2009-07-14 05:45 - 00018512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-04 22:00 - 2009-07-14 05:45 - 00018512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-04 21:54 - 2012-06-11 20:44 - 00000000 ____D C:\Users\Denise\AppData\Local\CrashDumps
2017-02-04 21:50 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-04 18:22 - 2015-10-28 15:00 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-04 18:04 - 2016-07-25 19:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-02-04 17:38 - 2009-07-14 05:45 - 00366424 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-04 17:35 - 2016-09-28 19:39 - 00000000 ____D C:\Program Files (x86)\Avira
2017-02-04 17:32 - 2013-03-16 00:12 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Avira
2017-02-04 17:30 - 2012-05-21 07:15 - 00000000 ____D C:\ProgramData\Avira
2017-02-04 17:15 - 2015-10-24 12:15 - 00000000 ____D C:\ProgramData\Package Cache
2017-02-04 17:12 - 2012-05-12 12:04 - 00101128 _____ C:\Users\Denise\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-04 17:05 - 2016-08-11 12:23 - 00000000 ___RD C:\Users\Denise\Dropbox
2017-02-04 17:00 - 2013-03-20 16:41 - 00000000 ____D C:\Users\Kontokonto\AppData\Roaming\Avira
2017-02-04 13:16 - 2012-06-05 15:35 - 00056091 _____ C:\Users\Denise\Desktop\Finanzen.xlsx
2017-02-04 11:57 - 2015-11-10 16:13 - 00000000 ____D C:\Users\Kontokonto\Downloads\Auszüge Silvio
2017-02-02 21:51 - 2016-07-13 09:59 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-02-01 17:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2017-01-30 20:17 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-30 20:16 - 2016-11-16 00:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-30 20:16 - 2016-07-26 19:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-30 12:49 - 2014-05-14 19:39 - 04187648 ___SH C:\Users\Denise\Downloads\Thumbs.db
2017-01-19 19:47 - 2014-03-01 18:19 - 00000000 ____D C:\Users\Denise\Downloads\frisur
2017-01-16 17:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-11 10:57 - 2013-07-17 14:42 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 10:56 - 2012-05-15 16:28 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-11 10:43 - 2016-12-05 20:08 - 00000000 ____D C:\Users\Kontokonto\Downloads\Auszüge Denise
2017-01-10 23:24 - 2016-04-19 23:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-01-10 23:23 - 2016-04-19 23:12 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-01-10 23:23 - 2016-04-19 23:12 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-01-10 23:23 - 2012-06-08 18:44 - 00000000 ____D C:\Windows\system32\Macromed
2017-01-10 23:23 - 2011-04-13 03:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-06-30 18:22 - 2014-06-30 18:22 - 0007605 _____ () C:\Users\Denise\AppData\Local\Resmon.ResmonCfg
2012-05-12 13:24 - 2012-11-10 17:07 - 0017408 _____ () C:\Users\Denise\AppData\Local\WebpageIcons.db
2011-11-18 02:19 - 2011-11-18 02:20 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2011-11-18 02:19 - 2011-11-18 02:19 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
Einige Dateien in TEMP:
====================
2017-02-04 21:54 - 2017-02-04 21:58 - 0204800 _____ (Sony DADC Austria AG) C:\Users\Denise\AppData\Local\Temp\drm_dyndata_7380009.dll
2016-04-22 11:21 - 2016-07-28 20:11 - 0000000 ____D () C:\Users\Kontokonto\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-02-03 18:27
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-01-2017
durchgeführt von Denise (05-02-2017 10:44:32)
Gestartet von C:\Users\Denise\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-05-12 11:03:55)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3586178835-4235327162-316650703-500 - Administrator - Disabled)
Denise (S-1-5-21-3586178835-4235327162-316650703-1000 - Administrator - Enabled) => C:\Users\Denise
Gast (S-1-5-21-3586178835-4235327162-316650703-501 - Limited - Enabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-3586178835-4235327162-316650703-1007 - Limited - Enabled)
Kontokonto (S-1-5-21-3586178835-4235327162-316650703-1008 - Limited - Enabled) => C:\Users\Kontokonto
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{959C941C-EA43-44DE-F18B-0849766AC19A}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.9.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.19 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.27 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{33B98264-A889-4913-A0CA-C364A75032B3}) (Version: 1.1.45 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Sonic Focus (HKLM-x32\...\{B0002707-4F7E-4745-88A7-852DA8A88635}) (Version: 1.0.0.5 - Synopsys )
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.4 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.23 - asus)
AsusScr_K3 Series_ENG (HKLM-x32\...\AsusScr_K3 Series_ENG) (Version: 1.0.0001 - ASUS)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0022 - ASUS)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.24.146 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.67.18988 - Avira Operations GmbH & Co. KG) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims 2 (HKLM-x32\...\{6E7DD182-9FC6-4651-0095-2E666CC6AF35}) (Version: - )
Die Sims 2: Family Fun - Accessoires (HKLM-x32\...\{6BDD9CE6-D0A6-478A-BAD3-BA6945E89EB0}) (Version: - )
Die Sims 2: Nightlife (HKLM-x32\...\{F7529650-B9DB-481B-0089-A2AC3C2821C1}) (Version: - )
Die Sims 2: Open For Business (HKLM-x32\...\{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}) (Version: - )
Die Sims 2: Wilde Campus-Jahre (HKLM-x32\...\{01521746-02A6-4A72-00BD-A285DF6B80C6}) (Version: - )
Die Sims™ 2 Apartment-Leben (HKLM-x32\...\{B6F5B704-06D3-4687-90F3-6195304AD755}) (Version: - Electronic Arts)
Die Sims™ 2 Freizeit-Spaß (HKLM-x32\...\{87F6C83D-F949-4d14-B5CB-DC8C75F8932D}) (Version: - Electronic Arts)
Die Sims™ 2 Vier Jahreszeiten (HKLM-x32\...\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}) (Version: - )
Dropbox (HKLM-x32\...\Dropbox) (Version: 19.4.12 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
ETDWare PS/2-X64 8.0.5.5_WHQL (HKLM\...\Elantech) (Version: 8.0.5.5 - ELAN Microelectronic Corp.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HP Support Solutions Framework (HKLM-x32\...\{3A1CB1B8-8646-41A0-B496-35DC48916904}) (Version: 12.5.32.203 - HP)
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.1.5 - ASUS)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mahjongg dimensions (HKLM-x32\...\Mahjongg dimensions) (Version: - Oberon Media Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Picture It! Express 7.0 (HKLM-x32\...\{369B36BE-3D64-4641-9AEA-808D436FE130}) (Version: 7.0.0.0000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 51.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 de)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NWZ-B170 WALKMAN Guide (HKLM-x32\...\{B91B14D5-B817-4C79-BEF6-0A7A23FE6C61}) (Version: 2.1.0.33220 - Sony Corporation)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6473 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10010 - Realtek Semiconductor Corp.)
Sims2Pack Clean Installer (HKLM-x32\...\Sims2Pack Clean Installer) (Version: - )
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15104.7 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.0.15104.7 - Samsung Electronics Co., Ltd.) Hidden
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
Ulead PhotoImpact XL (HKLM-x32\...\{0DDDE141-9696-4E33-AB82-EF398169D7E5}) (Version: 8.5 - Ulead System)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.32.0 - ASUS)
WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{C4BC5A5F-4A97-47CC-99C3-AB8E10572AFE}) (Version: 3.0.24 - ASUS)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {008B9F4C-AAD0-44E3-90CB-C6E67053FC99} - System32\Tasks\{C984FB87-1CAB-4461-A0F8-3F852C7A9D11} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2 Wilde Campus-Jahre\EAUninstall.exe"
Task: {117DBD37-3315-4B04-ABD6-083C779EF5AC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {22AB25F2-EBCE-49D7-A296-5AC7467C0882} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-13] (Dropbox, Inc.)
Task: {2372EE44-C1AF-41A6-9D4D-8959DE5760E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {2E6CB959-6B9E-419F-935A-2A5F5A1D20B5} - System32\Tasks\{03855B19-AA23-45BA-9D46-04FC46343B94} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2EP8.exe [2008-10-09] (Maxis, a division of Electronic Arts Inc.)
Task: {328DC65A-A88C-41F3-ADB0-8D2E408D7C69} - System32\Tasks\{491B9562-CDC5-4CD8-8A9B-8C6953C5BCA4} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2 Freizeit-Spaß\CSBin\PackageInstaller.exe" -d "C:\Users\Denise\Documents\EA Games\Die Sims 2\Downloads\set_complet_SDB_rom" -c "C:\Users\Denise\Documents\EA Games\Die Sims 2\Downloads\set_complet_SDB_rom\frances_carrelageDouche_sdb_Rom.Sims2Pack"
Task: {46A95F96-B425-49E7-9ABA-4BDD4A2192B1} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-07-06] (ASUSTek Computer Inc.)
Task: {5B0FCA0C-D204-4484-A30B-1BC26B239CF2} - System32\Tasks\{3952678B-5714-43AA-A637-63F17DE3BF39} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {5BC8EDCB-A18B-436C-8C61-F66D70503F8E} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
Task: {5C029C20-CB7B-4C1B-8FCA-3C6960090C20} - System32\Tasks\{3B4732AC-3194-409C-9004-0153C970885F} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {5C474B6B-AB06-45A3-B28A-756A45976EDE} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {5EA500ED-8B05-4399-A7FE-1F2E7C8D6078} - System32\Tasks\{6BA8A638-D711-4FD0-8C6C-102DEB754737} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2 Nightlife\EAUninstall.exe"
Task: {67911D8E-4BDC-4D54-B1E1-B72014FE614F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-13] (Dropbox, Inc.)
Task: {74128AA7-6F33-4416-97DB-F1D2085654DF} - System32\Tasks\{0509E058-4BF2-4A8C-BB47-66635E3440F7} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2EP8.exe [2008-10-09] (Maxis, a division of Electronic Arts Inc.)
Task: {77739E8F-3708-4373-92A8-83F432E3F0D2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {79792F2D-0BC9-4F5B-8A2E-348BF38541C7} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2011-06-01] (ASUS)
Task: {81B239B2-3219-44C0-8343-D960BD022337} - System32\Tasks\{53957E08-4D39-4919-B532-0ADF75B93A1B} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2 Vier Jahreszeiten\EAUninstall.exe"
Task: {881CE750-0169-4F53-8809-C6A12A66B7BD} - System32\Tasks\{3E4B03EF-2057-4684-978B-3318DF336428} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {8E770C2C-2EF7-4278-BC7E-83B250B6E2CE} - System32\Tasks\{5A0C5A9E-81BA-4904-A40D-52BA6AC3C647} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {A7079BDE-6769-4A49-A00D-F99977EBCE32} - System32\Tasks\{2E0726D8-DDEC-4913-9C62-1C81FEB01145} => pcalua.exe -a "C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe" -d "C:\Program Files (x86)\ESET\ESET Online Scanner"
Task: {BCAF4FEA-1C52-4A9F-A5A2-DCA48564C449} - System32\Tasks\{0D01D0A8-3817-4924-AF0C-2F54E33126D0} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {BF216B74-4FD4-4D82-9E94-02A082DCB468} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {C16936E0-1EC4-486D-9454-5AF7038E8E60} - System32\Tasks\{9F725641-251B-4704-8F38-2EFAC47E900A} => pcalua.exe -a C:\Users\Denise\Downloads\JRT.exe -d C:\Users\Denise\Downloads
Task: {C1F27C97-3FEF-46D6-892D-291EBC0DB26D} - System32\Tasks\USBChargerPlus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2011-09-20] (ASUSTek Computer Inc.)
Task: {DF7A109B-07D6-4794-8E31-827F5FC377F1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {F0DF450E-C50F-4641-8604-EC4F0255BA74} - System32\Tasks\{E25C3872-6CF3-47C0-B104-89DAAB3DF65E} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2\Sims2_uninst.exe" -d "C:\Program Files (x86)\EA GAMES\Die Sims 2"
Task: {F4F1154F-DB01-4089-B3F1-8BD649EE7CC8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2012-05-30 16:38 - 2012-02-17 19:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2010-07-15 01:11 - 2010-07-15 01:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll
2011-11-18 02:10 - 2011-08-09 00:44 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2009-11-02 23:20 - 2009-11-02 23:20 - 00619816 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 23:23 - 2009-11-02 23:23 - 00013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2011-09-13 22:33 - 2011-09-13 22:33 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
Da befinden sich 7776 mehr Seiten.
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\123simsen.com -> www.123simsen.com
Da befinden sich 7786 mehr Seiten.
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2015-10-27 16:50 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3586178835-4235327162-316650703-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AudioEndpointBuilder => 2
MSCONFIG\Services: bthserv => 3
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: ETDCtrl => %ProgramFiles%\Elantech\ETDCtrl.exe
MSCONFIG\startupreg: Facebook Update => "C:\Users\Denise\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: SonicMasterTray => C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{50D76052-134E-46DB-AF8E-63827F883C0F}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{B827E1C7-5A7A-484C-9653-2FE388A8B888}] => LPort=1900
FirewallRules: [{25BDD843-A815-48A8-A216-66D065687049}] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8EF01BA1-D1F6-4D73-AADB-AB5E81F83EF1}] => C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{A72233AF-337A-40D3-BCE9-4CBCFF8C6B0B}] => LPort=5353
FirewallRules: [{8D309E1A-081C-4FA8-82C7-F1750FBCF2E0}] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{FCB802BC-AABF-4A36-BEA8-33B2E3D9C978}] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{4507F716-013E-4849-874E-757CA990D6E1}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DE520D19-BD7B-42B3-9420-DD017E4334CB}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FA0C8130-6E0F-4C9F-A245-8978BA7DE542}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{A9832444-8803-4A1A-9D59-2D049504C875}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Wiederherstellungspunkte =========================
28-01-2017 12:06:58 Geplanter Prüfpunkt
04-02-2017 17:12:33 Avira System Speedup 1.0.0
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (02/04/2017 09:54:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Sims2EP8.exe, Version: 1.16.0.194, Zeitstempel: 0x48eea287
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001b0151
ID des fehlerhaften Prozesses: 0x1d4
Startzeit der fehlerhaften Anwendung: 0x01d27f28cca29440
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2EP8.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 20752ced-eb1c-11e6-8dbb-5404a62de07a
Error: (02/04/2017 09:51:14 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.
Error: (02/04/2017 09:51:06 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/04/2017 08:52:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm avcenter.exe, Version 15.0.24.143 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2480
Startzeit: 01d27f1ff38a31ab
Endzeit: 60000
Anwendungspfad: C:\Program Files (x86)\Avira\Antivirus\avcenter.exe
Berichts-ID: 3a7b9a9b-eb13-11e6-9d19-5404a62de07a
Error: (02/04/2017 07:00:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm avscan.exe, Version 15.0.24.145 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: f3c
Startzeit: 01d27f0ae33acf3c
Endzeit: 60000
Anwendungspfad: c:\program files (x86)\avira\antivirus\avscan.exe
Berichts-ID: b2c5bca1-eb03-11e6-9d19-5404a62de07a
Error: (02/04/2017 06:07:49 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.
Error: (02/04/2017 06:07:17 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/04/2017 05:38:51 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.
Error: (02/04/2017 05:38:13 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/04/2017 05:15:17 PM) (Source: MsiInstaller) (EventID: 11714) (User: Denise-PC)
Description: Product: Avira Connect -- Error 1714. The older version of Avira Connect cannot be removed. Contact your technical support group. System Error 1612.
Systemfehler:
=============
Error: (02/04/2017 09:51:13 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (02/04/2017 09:51:13 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (02/04/2017 09:50:34 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Der Dienst "ATKGFNEX Service" ist von folgendem Dienst abhängig: ASMMAP64. Dieser Dienst ist eventuell nicht installiert.
Error: (02/04/2017 09:49:44 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{752073A1-23F2-4396-85F0-8FDB879ED0ED}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (02/04/2017 09:49:14 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
Zugriff verweigert
Error: (02/04/2017 06:07:54 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (02/04/2017 06:07:54 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (02/04/2017 06:07:12 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Der Dienst "ATKGFNEX Service" ist von folgendem Dienst abhängig: ASMMAP64. Dieser Dienst ist eventuell nicht installiert.
Error: (02/04/2017 05:38:52 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (02/04/2017 05:38:49 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0
CodeIntegrity:
===================================
Date: 2015-10-27 16:49:59.998
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-10-27 16:49:59.967
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-10-27 16:49:59.951
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-10-27 16:49:59.920
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-05-11 12:50:25.014
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-05-11 12:50:24.952
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Prozentuale Nutzung des RAM: 35%
Installierter physikalischer RAM: 6048.05 MB
Verfügbarer physikalischer RAM: 3875.47 MB
Summe virtueller Speicher: 12094.24 MB
Verfügbarer virtueller Speicher: 9332.02 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:72.67 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (DATA) (Fixed) (Total:254.46 GB) (Free:133.5 GB) NTFS
Drive e: (Sims2EP8) (CDROM) (Total:0.98 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=186.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=254.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
05.02.2017, 14:51
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA.SpeedUpMyPC.GEN - in Quarantäne? Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
05.02.2017, 17:30
| #5 |
| | PUA.SpeedUpMyPC.GEN - in Quarantäne? So Avira ist gelöscht, was nehme ich nun? |
|
05.02.2017, 17:48
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA.SpeedUpMyPC.GEN - in Quarantäne? Was soll die Frage, du hast doch das fett in blau gepostete gelesen oder nicht  1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ --> PUA.SpeedUpMyPC.GEN - in Quarantäne? |
|
05.02.2017, 23:15
| #7 |
| | PUA.SpeedUpMyPC.GEN - in Quarantäne?Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2017.02.05.06
rootkit: v2016.11.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.17609
Denise :: DENISE-PC [administrator]
05.02.2017 22:34:00
mbar-log-2017-02-05 (22-34-00).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 419999
Time elapsed: 24 minute(s), 46 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 23:06:33.0166 0x044c TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
23:06:38.0298 0x044c ============================================================
23:06:38.0298 0x044c Current date / time: 2017/02/05 23:06:38.0298
23:06:38.0298 0x044c SystemInfo:
23:06:38.0298 0x044c
23:06:38.0298 0x044c OS Version: 6.1.7601 ServicePack: 1.0
23:06:38.0298 0x044c Product type: Workstation
23:06:38.0298 0x044c ComputerName: DENISE-PC
23:06:38.0298 0x044c UserName: Denise
23:06:38.0298 0x044c Windows directory: C:\Windows
23:06:38.0298 0x044c System windows directory: C:\Windows
23:06:38.0298 0x044c Running under WOW64
23:06:38.0298 0x044c Processor architecture: Intel x64
23:06:38.0298 0x044c Number of processors: 4
23:06:38.0298 0x044c Page size: 0x1000
23:06:38.0298 0x044c Boot type: Normal boot
23:06:38.0298 0x044c CodeIntegrityOptions = 0x00000001
23:06:38.0298 0x044c ============================================================
23:06:40.0560 0x044c KLMD registered as C:\Windows\system32\drivers\52833188.sys
23:06:40.0560 0x044c KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23572, osProperties = 0x1
23:06:41.0558 0x044c System UUID: {B69B0BA3-C30B-F444-D6EA-2F7845004E3B}
23:06:42.0042 0x044c Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:06:42.0058 0x044c ============================================================
23:06:42.0058 0x044c \Device\Harddisk0\DR0:
23:06:42.0058 0x044c MBR partitions:
23:06:42.0058 0x044c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x1749C000
23:06:42.0058 0x044c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A69C800, BlocksNum 0x1FCE9000
23:06:42.0058 0x044c ============================================================
23:06:42.0151 0x044c C: <-> \Device\Harddisk0\DR0\Partition1
23:06:42.0323 0x044c D: <-> \Device\Harddisk0\DR0\Partition2
23:06:42.0323 0x044c ============================================================
23:06:42.0323 0x044c Initialize success
23:06:42.0323 0x044c ============================================================
23:07:28.0670 0x0c5c ============================================================
23:07:28.0670 0x0c5c Scan started
23:07:28.0670 0x0c5c Mode: Manual; SigCheck; TDLFS;
23:07:28.0670 0x0c5c ============================================================
23:07:28.0670 0x0c5c KSN ping started
23:07:28.0858 0x0c5c KSN ping finished: true
23:07:29.0435 0x0c5c ================ Scan system memory ========================
23:07:29.0435 0x0c5c System memory - ok
23:07:29.0435 0x0c5c ================ Scan services =============================
23:07:29.0653 0x0c5c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:07:29.0809 0x0c5c 1394ohci - ok
23:07:29.0872 0x0c5c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:07:29.0918 0x0c5c ACPI - ok
23:07:29.0950 0x0c5c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:07:30.0043 0x0c5c AcpiPmi - ok
23:07:30.0215 0x0c5c [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:07:30.0340 0x0c5c AdobeFlashPlayerUpdateSvc - ok
23:07:30.0449 0x0c5c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:07:30.0511 0x0c5c adp94xx - ok
23:07:30.0620 0x0c5c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:07:30.0667 0x0c5c adpahci - ok
23:07:30.0745 0x0c5c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:07:30.0761 0x0c5c adpu320 - ok
23:07:30.0792 0x0c5c [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:07:30.0839 0x0c5c AeLookupSvc - ok
23:07:30.0901 0x0c5c [ 69FD46FAC0D9C4A8ECD522AC6A7481F5, 048FA3F77423D43346A35F142DBD0ACEC190F5E68F79960856C325B3CA7DD6C9 ] AFBAgent C:\Windows\system32\FBAgent.exe
23:07:30.0932 0x0c5c AFBAgent - ok
23:07:31.0042 0x0c5c [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
23:07:31.0120 0x0c5c AFD - ok
23:07:31.0151 0x0c5c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:07:31.0166 0x0c5c agp440 - ok
23:07:31.0198 0x0c5c [ 3F66D9AC081B495F91529C80BFA73E97, F62C4EF0B7BDC56CD9752AF9D6C1F355597794DEEE9B83D66A28671D42037115 ] AiCharger C:\Windows\system32\DRIVERS\AiCharger.sys
23:07:31.0213 0x0c5c AiCharger - ok
23:07:31.0244 0x0c5c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:07:31.0307 0x0c5c ALG - ok
23:07:31.0354 0x0c5c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:07:31.0369 0x0c5c aliide - ok
23:07:31.0447 0x0c5c [ AE5AE0FDDB09A922B08A371EF5DE811A, D7C77F840E8BF7BA56C1826288939ED4BAB782EC38518E54554DDB2BDA9002F6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:07:31.0525 0x0c5c AMD External Events Utility - ok
23:07:31.0541 0x0c5c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:07:31.0556 0x0c5c amdide - ok
23:07:31.0588 0x0c5c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:07:31.0603 0x0c5c AmdK8 - ok
23:07:32.0040 0x0c5c [ 4B1AB25AC54C2A27D74AB96FE79A7291, 37B83EC8E607DE71FF55EDE91067D785FBFA2D0C9312FC1862EFD365139E6350 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:07:32.0321 0x0c5c amdkmdag - ok
23:07:32.0352 0x0c5c [ 367E4AEF5402FA519EA2EA4549072A6E, 60F953526E57B2E32748F707D81CD7C109E082DDD6E54D302A561FF07829CD55 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
23:07:32.0383 0x0c5c amdkmdap - ok
23:07:32.0414 0x0c5c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
23:07:32.0414 0x0c5c AmdPPM - ok
23:07:32.0477 0x0c5c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:07:32.0508 0x0c5c amdsata - ok
23:07:32.0524 0x0c5c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
23:07:32.0539 0x0c5c amdsbs - ok
23:07:32.0555 0x0c5c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:07:32.0555 0x0c5c amdxata - ok
23:07:32.0602 0x0c5c [ FCE5C79717A487BDC71F3DEC78A684CA, F5520F112A4EBDD10444AA5E9FDB9125219FCF768FEB95AB608BC84D60136816 ] AppID C:\Windows\system32\drivers\appid.sys
23:07:32.0664 0x0c5c AppID - ok
23:07:32.0711 0x0c5c [ 8921E1D8AE5171691F186A7C5B98B630, 4A37313BB94D4B49D0294C9439AD0793DE328F9F4DA1C47E34E6ACEA46AF6E14 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:07:32.0758 0x0c5c AppIDSvc - ok
23:07:32.0789 0x0c5c [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo C:\Windows\System32\appinfo.dll
23:07:32.0820 0x0c5c Appinfo - ok
23:07:32.0882 0x0c5c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
23:07:32.0914 0x0c5c arc - ok
23:07:32.0929 0x0c5c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:07:32.0929 0x0c5c arcsas - ok
23:07:33.0038 0x0c5c [ FA713019412C061385F09BD373BF747A, 83ED108FEE95BA7CBE87C845154F97FCB4597F9D9BEC1F802B92D8994BD5931D ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
23:07:33.0070 0x0c5c ASLDRService - ok
23:07:33.0116 0x0c5c [ D6D2BB2F4F5868549DDE75F3146BC84E, FE2965649FF62696D30A4A7C377064EA2A27F03511DAF781913AA055A5FED323 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
23:07:33.0163 0x0c5c asmthub3 - ok
23:07:33.0210 0x0c5c [ 1E758172367DC2A3653F16586D62A3F0, 5395781F2B71CD9050F6CF75779D661F98E816A263ABA51153D14E21B73D4BC4 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
23:07:33.0257 0x0c5c asmtxhci - ok
23:07:33.0382 0x0c5c [ EE424A5CE56E3923D59BB7DE2E15036D, 8B8196870EFE74D43EDA72674021A46846D370E97A6A058134D84A721AECD091 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:07:33.0460 0x0c5c aspnet_state - ok
23:07:33.0553 0x0c5c [ EBDFC0F5B1E22CDED582BF882C95166B, EA6623BCABD5F8C7F74432CB83534F0A428F0D948D8967F053677585489EB52B ] ASUS InstantOn C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
23:07:33.0584 0x0c5c ASUS InstantOn - ok
23:07:33.0600 0x0c5c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:07:33.0787 0x0c5c AsyncMac - ok
23:07:33.0834 0x0c5c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:07:33.0850 0x0c5c atapi - ok
23:07:33.0990 0x0c5c [ A5E770426D18F8EF332A593F3289DA91, 87AC97758618765814B630CB1A189CD690DC6B0EAAE93D80EDE7771FB362C9AF ] athr C:\Windows\system32\DRIVERS\athrx.sys
23:07:34.0130 0x0c5c athr - ok
23:07:34.0177 0x0c5c [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
23:07:34.0208 0x0c5c ATKGFNEXSrv - ok
23:07:34.0255 0x0c5c [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO_ C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
23:07:34.0271 0x0c5c ATKWMIACPIIO_ - ok
23:07:34.0333 0x0c5c [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:07:34.0411 0x0c5c AudioEndpointBuilder - ok
23:07:34.0427 0x0c5c [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:07:34.0442 0x0c5c AudioSrv - ok
23:07:34.0489 0x0c5c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:07:34.0567 0x0c5c AxInstSV - ok
23:07:34.0645 0x0c5c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
23:07:34.0708 0x0c5c b06bdrv - ok
23:07:34.0754 0x0c5c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:07:34.0832 0x0c5c b57nd60a - ok
23:07:34.0895 0x0c5c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:07:34.0942 0x0c5c BDESVC - ok
23:07:34.0942 0x0c5c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:07:35.0004 0x0c5c Beep - ok
23:07:35.0098 0x0c5c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:07:35.0144 0x0c5c BFE - ok
23:07:35.0238 0x0c5c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
23:07:35.0503 0x0c5c BITS - ok
23:07:35.0550 0x0c5c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:07:35.0566 0x0c5c blbdrive - ok
23:07:35.0597 0x0c5c [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:07:35.0659 0x0c5c bowser - ok
23:07:35.0675 0x0c5c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
23:07:35.0722 0x0c5c BrFiltLo - ok
23:07:35.0722 0x0c5c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
23:07:35.0753 0x0c5c BrFiltUp - ok
23:07:35.0784 0x0c5c [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
23:07:35.0846 0x0c5c BridgeMP - ok
23:07:35.0893 0x0c5c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:07:35.0909 0x0c5c Browser - ok
23:07:35.0924 0x0c5c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:07:35.0956 0x0c5c Brserid - ok
23:07:35.0987 0x0c5c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:07:36.0018 0x0c5c BrSerWdm - ok
23:07:36.0034 0x0c5c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:07:36.0080 0x0c5c BrUsbMdm - ok
23:07:36.0096 0x0c5c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:07:36.0112 0x0c5c BrUsbSer - ok
23:07:36.0158 0x0c5c [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
23:07:36.0221 0x0c5c BthEnum - ok
23:07:36.0236 0x0c5c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:07:36.0268 0x0c5c BTHMODEM - ok
23:07:36.0283 0x0c5c [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:07:36.0314 0x0c5c BthPan - ok
23:07:36.0346 0x0c5c [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
23:07:36.0392 0x0c5c BTHPORT - ok
23:07:36.0439 0x0c5c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:07:36.0502 0x0c5c bthserv - ok
23:07:36.0517 0x0c5c [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
23:07:36.0533 0x0c5c BTHUSB - ok
23:07:36.0580 0x0c5c catchme - ok
23:07:36.0611 0x0c5c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:07:36.0658 0x0c5c cdfs - ok
23:07:36.0689 0x0c5c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:07:36.0720 0x0c5c cdrom - ok
23:07:36.0751 0x0c5c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:07:36.0798 0x0c5c CertPropSvc - ok
23:07:36.0860 0x0c5c [ CF3FFDA7B06A62DC018AFF75B4749FF4, B9ECE0A37CA4A389114737EADF68334DBF6A77214E8794ADFC6F83AD42F90D56 ] chip1click C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
23:07:36.0876 0x0c5c chip1click - detected UnsignedFile.Multi.Generic ( 1 )
23:07:37.0204 0x0c5c chip1click ( UnsignedFile.Multi.Generic ) - warning
23:07:37.0375 0x0c5c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
23:07:37.0422 0x0c5c circlass - ok
23:07:37.0500 0x0c5c [ 3D67C27DD17B254D7915FA16A5AE3573, 5B3A6C6A7F940C06362775DAF13CEADA37C7AA84A509458A57C23B4369970A90 ] CLFS C:\Windows\system32\CLFS.sys
23:07:37.0562 0x0c5c CLFS - ok
23:07:37.0625 0x0c5c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:07:37.0656 0x0c5c clr_optimization_v2.0.50727_32 - ok
23:07:37.0687 0x0c5c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:07:37.0703 0x0c5c clr_optimization_v2.0.50727_64 - ok
23:07:37.0812 0x0c5c [ 5BAF4F1296D4D91FC28560CDB4C37C4B, ACA4BC57ED1F8432F18F0F215EC7FF956BAEF6E02760779E264E4008A979E9DD ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:07:37.0828 0x0c5c clr_optimization_v4.0.30319_32 - ok
23:07:37.0874 0x0c5c [ 569B54004A7E85A74FD92841DE6058E2, 58949313D0F6B1C06359B2F3C68E29940B1655A17E93FFC3718F6D2EAE1633E4 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:07:38.0015 0x0c5c clr_optimization_v4.0.30319_64 - ok
23:07:38.0062 0x0c5c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:07:38.0093 0x0c5c CmBatt - ok
23:07:38.0124 0x0c5c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:07:38.0140 0x0c5c cmdide - ok
23:07:38.0186 0x0c5c [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys
23:07:38.0249 0x0c5c CNG - ok
23:07:38.0264 0x0c5c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
23:07:38.0264 0x0c5c Compbatt - ok
23:07:38.0296 0x0c5c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
23:07:38.0342 0x0c5c CompositeBus - ok
23:07:38.0342 0x0c5c COMSysApp - ok
23:07:38.0374 0x0c5c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:07:38.0374 0x0c5c crcdisk - ok
23:07:38.0420 0x0c5c [ 2C6632CECFDBBE793FDA8AF9CA55A9CC, 335188515F798483660E529204A13012E4D21B0ECA489224A11C26F91A5B3CCE ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:07:38.0452 0x0c5c CryptSvc - ok
23:07:38.0498 0x0c5c [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
23:07:38.0530 0x0c5c dbupdate - ok
23:07:38.0545 0x0c5c [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
23:07:38.0545 0x0c5c dbupdatem - ok
23:07:38.0545 0x0c5c dbx - ok
23:07:38.0561 0x0c5c [ 2C5A991F0320D95BAC80D0C31F43A79E, CC7887132AF15C77676A3186429FE0071DCC8DC9C6252314D99C02E54867BE10 ] DbxSvc C:\Windows\system32\DbxSvc.exe
23:07:38.0576 0x0c5c DbxSvc - ok
23:07:38.0608 0x0c5c [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll
23:07:38.0654 0x0c5c DcomLaunch - ok
23:07:38.0686 0x0c5c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:07:38.0717 0x0c5c defragsvc - ok
23:07:38.0779 0x0c5c [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:07:38.0826 0x0c5c DfsC - ok
23:07:38.0873 0x0c5c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:07:38.0951 0x0c5c Dhcp - ok
23:07:39.0107 0x0c5c [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll
23:07:39.0185 0x0c5c DiagTrack - ok
23:07:39.0232 0x0c5c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:07:39.0294 0x0c5c discache - ok
23:07:39.0325 0x0c5c [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
23:07:39.0356 0x0c5c Disk - ok
23:07:39.0403 0x0c5c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:07:39.0466 0x0c5c Dnscache - ok
23:07:39.0497 0x0c5c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:07:39.0590 0x0c5c dot3svc - ok
23:07:39.0606 0x0c5c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:07:39.0637 0x0c5c DPS - ok
23:07:39.0684 0x0c5c [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:07:39.0731 0x0c5c drmkaud - ok
23:07:39.0809 0x0c5c [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:07:39.0856 0x0c5c DXGKrnl - ok
23:07:39.0887 0x0c5c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:07:39.0918 0x0c5c EapHost - ok
23:07:40.0074 0x0c5c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
23:07:40.0246 0x0c5c ebdrv - ok
23:07:40.0277 0x0c5c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] EFS C:\Windows\System32\lsass.exe
23:07:40.0308 0x0c5c EFS - ok
23:07:40.0386 0x0c5c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:07:40.0464 0x0c5c ehRecvr - ok
23:07:40.0480 0x0c5c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:07:40.0511 0x0c5c ehSched - ok
23:07:40.0573 0x0c5c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:07:40.0636 0x0c5c elxstor - ok
23:07:40.0651 0x0c5c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:07:40.0667 0x0c5c ErrDev - ok
23:07:40.0714 0x0c5c [ B46626A89C943DD2799D403F0CB34E42, 19FC07C51598B689140B9548D4D9FE051497B28D17E1A952620CCEAE72E07113 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
23:07:40.0745 0x0c5c ETD - ok
23:07:40.0792 0x0c5c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:07:40.0838 0x0c5c EventSystem - ok
23:07:40.0870 0x0c5c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:07:40.0916 0x0c5c exfat - ok
23:07:40.0948 0x0c5c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:07:40.0979 0x0c5c fastfat - ok
23:07:41.0010 0x0c5c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:07:41.0072 0x0c5c Fax - ok
23:07:41.0088 0x0c5c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
23:07:41.0104 0x0c5c fdc - ok
23:07:41.0166 0x0c5c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:07:41.0244 0x0c5c fdPHost - ok
23:07:41.0260 0x0c5c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:07:41.0306 0x0c5c FDResPub - ok
23:07:41.0353 0x0c5c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:07:41.0353 0x0c5c FileInfo - ok
23:07:41.0384 0x0c5c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:07:41.0400 0x0c5c Filetrace - ok
23:07:41.0431 0x0c5c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
23:07:41.0478 0x0c5c flpydisk - ok
23:07:41.0572 0x0c5c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:07:41.0634 0x0c5c FltMgr - ok
23:07:41.0821 0x0c5c [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache C:\Windows\system32\FntCache.dll
23:07:41.0915 0x0c5c FontCache - ok
23:07:41.0962 0x0c5c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:07:41.0993 0x0c5c FontCache3.0.0.0 - ok
23:07:42.0008 0x0c5c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:07:42.0024 0x0c5c FsDepends - ok
23:07:42.0040 0x0c5c [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
23:07:42.0055 0x0c5c fssfltr - ok
23:07:42.0180 0x0c5c [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:07:42.0242 0x0c5c fsssvc - ok
23:07:42.0289 0x0c5c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:07:42.0289 0x0c5c Fs_Rec - ok
23:07:42.0336 0x0c5c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:07:42.0367 0x0c5c fvevol - ok
23:07:42.0414 0x0c5c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:07:42.0414 0x0c5c gagp30kx - ok
23:07:42.0476 0x0c5c [ 16C2A6BCDDA8952C2035DEC861492A19, 9023CD3A2C1009786A48EF7FBCC97ED1724C836279424A4D465CCE1AFA2DBDDA ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
23:07:42.0508 0x0c5c ggflt - ok
23:07:42.0523 0x0c5c [ 6B503DF845EABF3457E49FBBDA26C10E, A1553E3822EDEA26D8E67FCC7F9EA40DFBED49EC92FD5674AAF938F2D58CF964 ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
23:07:42.0554 0x0c5c ggsemc - ok
23:07:42.0617 0x0c5c [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
23:07:42.0679 0x0c5c gpsvc - ok
23:07:42.0788 0x0c5c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:07:42.0820 0x0c5c gupdate - ok
23:07:42.0835 0x0c5c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:07:42.0835 0x0c5c gupdatem - ok
23:07:42.0866 0x0c5c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:07:42.0929 0x0c5c hcw85cir - ok
23:07:42.0960 0x0c5c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:07:43.0022 0x0c5c HdAudAddService - ok
23:07:43.0054 0x0c5c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:07:43.0085 0x0c5c HDAudBus - ok
23:07:43.0100 0x0c5c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
23:07:43.0116 0x0c5c HidBatt - ok
23:07:43.0147 0x0c5c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:07:43.0194 0x0c5c HidBth - ok
23:07:43.0210 0x0c5c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
23:07:43.0225 0x0c5c HidIr - ok
23:07:43.0303 0x0c5c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
23:07:43.0350 0x0c5c hidserv - ok
23:07:43.0428 0x0c5c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:07:43.0490 0x0c5c HidUsb - ok
23:07:43.0537 0x0c5c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:07:43.0615 0x0c5c hkmsvc - ok
23:07:43.0662 0x0c5c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:07:43.0740 0x0c5c HomeGroupListener - ok
23:07:43.0771 0x0c5c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:07:43.0818 0x0c5c HomeGroupProvider - ok
23:07:43.0849 0x0c5c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:07:43.0865 0x0c5c HpSAMD - ok
23:07:43.0927 0x0c5c [ EC80F3ECC5F8543E22BBCB037D837CA9, 23A4AE80A6C317CE77BD9D352CD9CED8649E3AD98A7C0A2044138BB20B46F398 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
23:07:43.0958 0x0c5c HPSupportSolutionsFrameworkService - ok
23:07:44.0005 0x0c5c [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:07:44.0083 0x0c5c HTTP - ok
23:07:44.0099 0x0c5c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:07:44.0099 0x0c5c hwpolicy - ok
23:07:44.0130 0x0c5c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:07:44.0146 0x0c5c i8042prt - ok
23:07:44.0224 0x0c5c [ 26CF4275034214ECEDD8EC17B0A18A99, 95A08C63971C28F1BC97040C0ADA247E3B43DE7D937B14E33A394B955D0AC8B7 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:07:44.0239 0x0c5c iaStor - ok
23:07:44.0270 0x0c5c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:07:44.0286 0x0c5c iaStorV - ok
23:07:44.0380 0x0c5c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:07:44.0426 0x0c5c idsvc - ok
23:07:44.0489 0x0c5c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:07:44.0520 0x0c5c iirsp - ok
23:07:44.0707 0x0c5c [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:07:44.0754 0x0c5c IKEEXT - ok
23:07:44.0941 0x0c5c [ 3F2AAD1E888E9EEEB82500F88A5503B3, E657435ADF554842415D68A5500423A943CAE929EF022BE1E6658E7C163784CF ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:07:45.0004 0x0c5c IntcAzAudAddService - ok
23:07:45.0082 0x0c5c [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
23:07:45.0160 0x0c5c IntcDAud - ok
23:07:45.0206 0x0c5c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:07:45.0222 0x0c5c intelide - ok
23:07:45.0643 0x0c5c [ 33FAA40B288002C89529DBD14F3AB72C, 670BA536796322122EBD93F256331899DD2E1834471B017A58F74132EE8DFDB7 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
23:07:46.0189 0x0c5c intelkmd - ok
23:07:46.0252 0x0c5c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:07:46.0283 0x0c5c intelppm - ok
23:07:46.0314 0x0c5c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:07:46.0376 0x0c5c IPBusEnum - ok
23:07:46.0376 0x0c5c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:07:46.0423 0x0c5c IpFilterDriver - ok
23:07:46.0501 0x0c5c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:07:46.0610 0x0c5c iphlpsvc - ok
23:07:46.0642 0x0c5c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:07:46.0657 0x0c5c IPMIDRV - ok
23:07:46.0688 0x0c5c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:07:46.0735 0x0c5c IPNAT - ok
23:07:46.0782 0x0c5c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:07:46.0829 0x0c5c IRENUM - ok
23:07:46.0844 0x0c5c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:07:46.0860 0x0c5c isapnp - ok
23:07:46.0907 0x0c5c [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:07:46.0938 0x0c5c iScsiPrt - ok
23:07:46.0969 0x0c5c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:07:46.0969 0x0c5c kbdclass - ok
23:07:46.0985 0x0c5c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:07:47.0016 0x0c5c kbdhid - ok
23:07:47.0078 0x0c5c [ E63EF8C3271D014F14E2469CE75FECB4, 3A8DFA4B446AFDC35F01FD5218D0BEBC510A1E3DE9976210F00D19767D0F9069 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
23:07:47.0094 0x0c5c kbfiltr - ok
23:07:47.0110 0x0c5c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] KeyIso C:\Windows\system32\lsass.exe
23:07:47.0125 0x0c5c KeyIso - ok
23:07:47.0156 0x0c5c [ 6F5F0C6160EF237F0243C1E416EEBA98, 8BA8AA0D71350A74E294A731226B1638C6059013D645ABDE7188F7733E320FBD ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:07:47.0172 0x0c5c KSecDD - ok
23:07:47.0188 0x0c5c [ 05529E53B286FD60E7EF04EF138CABFD, 6C045750DCD3EE76F748582513AD4FA99C0E8E56B616725CD48DCA1068FF8923 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:07:47.0203 0x0c5c KSecPkg - ok
23:07:47.0203 0x0c5c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:07:47.0234 0x0c5c ksthunk - ok
23:07:47.0297 0x0c5c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:07:47.0390 0x0c5c KtmRm - ok
23:07:47.0406 0x0c5c [ 033B4AED2C5519072C0D81E00804D003, 6C450A604C382416C482FED43098B4E95BD61B480B0CEFD728A269446AF18708 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
23:07:47.0453 0x0c5c L1C - ok
23:07:47.0500 0x0c5c [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
23:07:47.0546 0x0c5c LanmanServer - ok
23:07:47.0562 0x0c5c [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:07:47.0609 0x0c5c LanmanWorkstation - ok
23:07:47.0656 0x0c5c [ 02538E602280C07438C94489DCBE77D5, 2E2B60E5FB7A274F4945444D5EDB058E62CAC268C5336FF8F4B9E82245095211 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
23:07:47.0656 0x0c5c libusb0 - ok
23:07:47.0687 0x0c5c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:07:47.0796 0x0c5c lltdio - ok
23:07:47.0921 0x0c5c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:07:47.0999 0x0c5c lltdsvc - ok
23:07:48.0014 0x0c5c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:07:48.0046 0x0c5c lmhosts - ok
23:07:48.0170 0x0c5c [ 0803906D607A9B83184447B75B60ECC2, A7A599C4CEDD4AC4196A558442E80B4F852AF6C6104A53C8819A79AA5D388DE8 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
23:07:48.0202 0x0c5c LMS - ok
23:07:48.0280 0x0c5c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:07:48.0295 0x0c5c LSI_FC - ok
23:07:48.0326 0x0c5c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:07:48.0342 0x0c5c LSI_SAS - ok
23:07:48.0358 0x0c5c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
23:07:48.0373 0x0c5c LSI_SAS2 - ok
23:07:48.0389 0x0c5c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:07:48.0404 0x0c5c LSI_SCSI - ok
23:07:48.0436 0x0c5c [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:07:48.0482 0x0c5c luafv - ok
23:07:48.0529 0x0c5c [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:07:48.0545 0x0c5c MBAMProtector - ok
23:07:48.0670 0x0c5c [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
23:07:48.0732 0x0c5c MBAMService - ok
23:07:48.0779 0x0c5c [ 452ACB7A9914398D9E18CCCFFCF92208, 754AF45C19731C356E7E84497B04E0333759AC86DC553BA275EFC09845E43E4D ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
23:07:48.0826 0x0c5c MBAMWebAccessControl - ok
23:07:48.0888 0x0c5c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:07:48.0935 0x0c5c Mcx2Svc - ok
23:07:48.0966 0x0c5c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
23:07:48.0997 0x0c5c megasas - ok
23:07:49.0044 0x0c5c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
23:07:49.0060 0x0c5c MegaSR - ok
23:07:49.0091 0x0c5c [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
23:07:49.0091 0x0c5c MEIx64 - ok
23:07:49.0106 0x0c5c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:07:49.0153 0x0c5c MMCSS - ok
23:07:49.0169 0x0c5c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:07:49.0216 0x0c5c Modem - ok
23:07:49.0247 0x0c5c [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:07:49.0278 0x0c5c monitor - ok
23:07:49.0294 0x0c5c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:07:49.0309 0x0c5c mouclass - ok
23:07:49.0340 0x0c5c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:07:49.0356 0x0c5c mouhid - ok
23:07:49.0387 0x0c5c [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:07:49.0403 0x0c5c mountmgr - ok
23:07:49.0496 0x0c5c [ ADF79A49E942C91D1FC9863CBFDD6B58, C2B2A792C4717133DCAE6297EE3F5D985B11D3C1E68A8DC23985AC6B78ACDE98 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:07:49.0528 0x0c5c MozillaMaintenance - ok
23:07:49.0543 0x0c5c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:07:49.0559 0x0c5c mpio - ok
23:07:49.0574 0x0c5c [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:07:49.0606 0x0c5c mpsdrv - ok
23:07:49.0652 0x0c5c [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:07:49.0715 0x0c5c MpsSvc - ok
23:07:49.0762 0x0c5c [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:07:49.0808 0x0c5c MRxDAV - ok
23:07:49.0840 0x0c5c [ 632E8A00090E4F85F304E152C92C7F2C, A3098941251A8327C95E6B1122384D54FB0ED705A9215577D968EA5B5FD88C87 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:07:49.0886 0x0c5c mrxsmb - ok
23:07:49.0918 0x0c5c [ 0D9C05484F2F4BD9D33A615D5DBE67EA, 1E164B631B1CD85DD5B205284CB547B189609946490AAABD22741743BFB413DF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:07:49.0933 0x0c5c mrxsmb10 - ok
23:07:49.0949 0x0c5c [ 6123E6FECC1C164022868FB1982271BE, 417E6C7AFF8B014B31AFCC202B0DCEECBDBB73205DF8C3EFC7E313664E284178 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:07:49.0964 0x0c5c mrxsmb20 - ok
23:07:49.0996 0x0c5c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:07:50.0011 0x0c5c msahci - ok
23:07:50.0089 0x0c5c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:07:50.0120 0x0c5c msdsm - ok
23:07:50.0152 0x0c5c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:07:50.0214 0x0c5c MSDTC - ok
23:07:50.0245 0x0c5c [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:07:50.0292 0x0c5c Msfs - ok
23:07:50.0308 0x0c5c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:07:50.0386 0x0c5c mshidkmdf - ok
23:07:50.0401 0x0c5c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:07:50.0401 0x0c5c msisadrv - ok
23:07:50.0448 0x0c5c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:07:50.0495 0x0c5c MSiSCSI - ok
23:07:50.0495 0x0c5c msiserver - ok
23:07:50.0526 0x0c5c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:07:50.0573 0x0c5c MSKSSRV - ok
23:07:50.0588 0x0c5c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:07:50.0620 0x0c5c MSPCLOCK - ok
23:07:50.0635 0x0c5c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:07:50.0666 0x0c5c MSPQM - ok
23:07:50.0698 0x0c5c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:07:50.0713 0x0c5c MsRPC - ok
23:07:50.0729 0x0c5c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:07:50.0729 0x0c5c mssmbios - ok
23:07:50.0744 0x0c5c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:07:50.0776 0x0c5c MSTEE - ok
23:07:50.0791 0x0c5c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
23:07:50.0791 0x0c5c MTConfig - ok
23:07:50.0822 0x0c5c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:07:50.0822 0x0c5c Mup - ok
23:07:50.0869 0x0c5c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:07:50.0916 0x0c5c napagent - ok
23:07:50.0963 0x0c5c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:07:50.0994 0x0c5c NativeWifiP - ok
23:07:51.0212 0x0c5c [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:07:51.0275 0x0c5c NDIS - ok
23:07:51.0306 0x0c5c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:07:51.0353 0x0c5c NdisCap - ok
23:07:51.0384 0x0c5c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:07:51.0415 0x0c5c NdisTapi - ok
23:07:51.0415 0x0c5c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:07:51.0462 0x0c5c Ndisuio - ok
23:07:51.0478 0x0c5c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:07:51.0524 0x0c5c NdisWan - ok
23:07:51.0540 0x0c5c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:07:51.0571 0x0c5c NDProxy - ok
23:07:51.0602 0x0c5c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:07:51.0634 0x0c5c NetBIOS - ok
23:07:51.0680 0x0c5c [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:07:51.0712 0x0c5c NetBT - ok
23:07:51.0712 0x0c5c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] Netlogon C:\Windows\system32\lsass.exe
23:07:51.0727 0x0c5c Netlogon - ok
23:07:51.0758 0x0c5c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:07:51.0790 0x0c5c Netman - ok
23:07:51.0836 0x0c5c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:07:51.0914 0x0c5c NetMsmqActivator - ok
23:07:51.0930 0x0c5c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:07:51.0946 0x0c5c NetPipeActivator - ok
23:07:51.0977 0x0c5c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:07:52.0055 0x0c5c netprofm - ok
23:07:52.0055 0x0c5c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:07:52.0070 0x0c5c NetTcpActivator - ok
23:07:52.0070 0x0c5c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:07:52.0086 0x0c5c NetTcpPortSharing - ok
23:07:52.0117 0x0c5c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:07:52.0133 0x0c5c nfrd960 - ok
23:07:52.0195 0x0c5c [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:07:52.0242 0x0c5c NlaSvc - ok
23:07:52.0258 0x0c5c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:07:52.0289 0x0c5c Npfs - ok
23:07:52.0320 0x0c5c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:07:52.0351 0x0c5c nsi - ok
23:07:52.0367 0x0c5c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:07:52.0398 0x0c5c nsiproxy - ok
23:07:52.0523 0x0c5c [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:07:52.0601 0x0c5c Ntfs - ok
23:07:52.0601 0x0c5c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:07:52.0632 0x0c5c Null - ok
23:07:52.0663 0x0c5c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:07:52.0679 0x0c5c nvraid - ok
23:07:52.0694 0x0c5c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:07:52.0694 0x0c5c nvstor - ok
23:07:52.0757 0x0c5c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:07:52.0772 0x0c5c nv_agp - ok
23:07:52.0804 0x0c5c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:07:52.0819 0x0c5c ohci1394 - ok
23:07:52.0928 0x0c5c [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:07:52.0960 0x0c5c ose - ok
23:07:53.0506 0x0c5c [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:07:53.0708 0x0c5c osppsvc - ok
23:07:53.0740 0x0c5c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:07:53.0771 0x0c5c p2pimsvc - ok
23:07:53.0818 0x0c5c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:07:53.0880 0x0c5c p2psvc - ok
23:07:53.0911 0x0c5c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
23:07:53.0942 0x0c5c Parport - ok
23:07:53.0974 0x0c5c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:07:54.0005 0x0c5c partmgr - ok
23:07:54.0052 0x0c5c [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
23:07:54.0067 0x0c5c PcaSvc - ok
23:07:54.0098 0x0c5c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:07:54.0114 0x0c5c pci - ok
23:07:54.0176 0x0c5c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:07:54.0208 0x0c5c pciide - ok
23:07:54.0223 0x0c5c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:07:54.0254 0x0c5c pcmcia - ok
23:07:54.0270 0x0c5c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:07:54.0286 0x0c5c pcw - ok
23:07:54.0332 0x0c5c [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:07:54.0395 0x0c5c PEAUTH - ok
23:07:54.0473 0x0c5c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:07:54.0520 0x0c5c PerfHost - ok
23:07:54.0629 0x0c5c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:07:54.0707 0x0c5c pla - ok
23:07:54.0769 0x0c5c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:07:54.0847 0x0c5c PlugPlay - ok
23:07:54.0847 0x0c5c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:07:54.0878 0x0c5c PNRPAutoReg - ok
23:07:54.0910 0x0c5c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:07:54.0925 0x0c5c PNRPsvc - ok
23:07:54.0956 0x0c5c [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:07:55.0003 0x0c5c PolicyAgent - ok
23:07:55.0034 0x0c5c [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:07:55.0066 0x0c5c Power - ok
23:07:55.0112 0x0c5c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:07:55.0175 0x0c5c PptpMiniport - ok
23:07:55.0190 0x0c5c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
23:07:55.0206 0x0c5c Processor - ok
23:07:55.0253 0x0c5c [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
23:07:55.0315 0x0c5c ProfSvc - ok
23:07:55.0331 0x0c5c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] ProtectedStorage C:\Windows\system32\lsass.exe
23:07:55.0331 0x0c5c ProtectedStorage - ok
23:07:55.0378 0x0c5c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:07:55.0409 0x0c5c Psched - ok
23:07:55.0471 0x0c5c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:07:55.0534 0x0c5c ql2300 - ok
23:07:55.0549 0x0c5c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:07:55.0549 0x0c5c ql40xx - ok
23:07:55.0596 0x0c5c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:07:55.0612 0x0c5c QWAVE - ok
23:07:55.0627 0x0c5c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:07:55.0658 0x0c5c QWAVEdrv - ok
23:07:55.0674 0x0c5c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:07:55.0705 0x0c5c RasAcd - ok
23:07:55.0736 0x0c5c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:07:55.0768 0x0c5c RasAgileVpn - ok
23:07:55.0799 0x0c5c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:07:55.0846 0x0c5c RasAuto - ok
23:07:55.0861 0x0c5c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:07:55.0892 0x0c5c Rasl2tp - ok
23:07:55.0924 0x0c5c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:07:55.0970 0x0c5c RasMan - ok
23:07:55.0986 0x0c5c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:07:56.0017 0x0c5c RasPppoe - ok
23:07:56.0017 0x0c5c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:07:56.0048 0x0c5c RasSstp - ok
23:07:56.0064 0x0c5c [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:07:56.0111 0x0c5c rdbss - ok
23:07:56.0126 0x0c5c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
23:07:56.0142 0x0c5c rdpbus - ok
23:07:56.0173 0x0c5c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:07:56.0204 0x0c5c RDPCDD - ok
23:07:56.0220 0x0c5c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:07:56.0267 0x0c5c RDPENCDD - ok
23:07:56.0282 0x0c5c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:07:56.0360 0x0c5c RDPREFMP - ok
23:07:56.0423 0x0c5c [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:07:56.0532 0x0c5c RDPWD - ok
23:07:56.0563 0x0c5c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:07:56.0594 0x0c5c rdyboost - ok
23:07:56.0626 0x0c5c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:07:56.0657 0x0c5c RemoteAccess - ok
23:07:56.0688 0x0c5c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:07:56.0719 0x0c5c RemoteRegistry - ok
23:07:56.0782 0x0c5c [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:07:56.0813 0x0c5c RFCOMM - ok
23:07:56.0828 0x0c5c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:07:56.0875 0x0c5c RpcEptMapper - ok
23:07:56.0906 0x0c5c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:07:56.0906 0x0c5c RpcLocator - ok
23:07:56.0953 0x0c5c [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll
23:07:56.0969 0x0c5c RpcSs - ok
23:07:56.0984 0x0c5c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:07:57.0016 0x0c5c rspndr - ok
23:07:57.0094 0x0c5c [ CE0A1D8A59410E698140821E4E69DA0D, 4AEBF07C4016AF62B1A4F1C838FDC3A272FC643E596A86E4FE3C34F10523E318 ] RSUSBVSTOR C:\Windows\system32\Drivers\RtsUVStor.sys
23:07:57.0125 0x0c5c RSUSBVSTOR - ok
23:07:57.0187 0x0c5c [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
23:07:57.0218 0x0c5c RTL8167 - ok
23:07:57.0250 0x0c5c [ B49951A2C8FD81307707443D01936E37, 3F9A80FAA39A29F71A9028C576AB183632FFA662AFC8CD9D6A2E1E2F462B804C ] s217bus C:\Windows\system32\DRIVERS\s217bus.sys
23:07:57.0250 0x0c5c s217bus - ok
23:07:57.0281 0x0c5c [ 58204EC551D1A94D60CAC130440F0FEB, FD9CC9D6473A860DD5B4CAFD3279AB97B1A54C5D2F44941112DB7C8BCE773595 ] s217mdfl C:\Windows\system32\DRIVERS\s217mdfl.sys
23:07:57.0281 0x0c5c s217mdfl - ok
23:07:57.0312 0x0c5c [ E2B3DE89339A7A807520C6063CD146D3, 72023A16E6880D858BE6524D34E9859DA998E07476FF50085D159285B754A983 ] s217mdm C:\Windows\system32\DRIVERS\s217mdm.sys
23:07:57.0312 0x0c5c s217mdm - ok
23:07:57.0374 0x0c5c [ 7BC7D18351B846F4544B54DB38FB4208, 3C6E37BC2E8FE41F193A66300CB8A2B5BC0339B91327577EC51CA7B636EC39E6 ] s217nd5 C:\Windows\system32\DRIVERS\s217nd5.sys
23:07:57.0374 0x0c5c s217nd5 - ok
23:07:57.0406 0x0c5c [ D498B2082F51858F121D4584A7787CD5, 4A3D93EC31C1C949285FBBA8FB0C839D2C30DF58AC17ED646FAEC06DD7122A62 ] s217obex C:\Windows\system32\DRIVERS\s217obex.sys
23:07:57.0406 0x0c5c s217obex - ok
23:07:57.0437 0x0c5c [ 43512D0C3A59EB20FDA06CE4265A1549, 806BBA62AF2D792DCC2F4A4FB789A1D0C9B365F869E7950B31572BAE809CEB07 ] s217unic C:\Windows\system32\DRIVERS\s217unic.sys
23:07:57.0437 0x0c5c s217unic - ok
23:07:57.0468 0x0c5c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] SamSs C:\Windows\system32\lsass.exe
23:07:57.0468 0x0c5c SamSs - ok
23:07:57.0499 0x0c5c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:07:57.0499 0x0c5c sbp2port - ok
23:07:57.0562 0x0c5c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:07:57.0640 0x0c5c SCardSvr - ok
23:07:57.0640 0x0c5c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:07:57.0686 0x0c5c scfilter - ok
23:07:57.0764 0x0c5c [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
23:07:57.0842 0x0c5c Schedule - ok
23:07:57.0858 0x0c5c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:07:57.0889 0x0c5c SCPolicySvc - ok
23:07:57.0920 0x0c5c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:07:57.0952 0x0c5c SDRSVC - ok
23:07:57.0983 0x0c5c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:07:58.0014 0x0c5c secdrv - ok
23:07:58.0061 0x0c5c [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
23:07:58.0108 0x0c5c seclogon - ok
23:07:58.0123 0x0c5c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
23:07:58.0201 0x0c5c SENS - ok
23:07:58.0217 0x0c5c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:07:58.0248 0x0c5c SensrSvc - ok
23:07:58.0279 0x0c5c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
23:07:58.0279 0x0c5c Serenum - ok
23:07:58.0310 0x0c5c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
23:07:58.0326 0x0c5c Serial - ok
23:07:58.0342 0x0c5c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:07:58.0373 0x0c5c sermouse - ok
23:07:58.0404 0x0c5c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
23:07:58.0435 0x0c5c SessionEnv - ok
23:07:58.0451 0x0c5c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:07:58.0482 0x0c5c sffdisk - ok
23:07:58.0513 0x0c5c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:07:58.0529 0x0c5c sffp_mmc - ok
23:07:58.0544 0x0c5c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:07:58.0560 0x0c5c sffp_sd - ok
23:07:58.0591 0x0c5c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:07:58.0607 0x0c5c sfloppy - ok
23:07:58.0716 0x0c5c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:07:58.0810 0x0c5c SharedAccess - ok
23:07:58.0841 0x0c5c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:07:58.0888 0x0c5c ShellHWDetection - ok
23:07:58.0966 0x0c5c [ 1BC348CF6BAA90EC8E533EF6E6A69933, 2B26F6EB701F48E092DED6A7B888F24736F2899EE81D54DD4B1E9DF7CFD36E7A ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
23:07:58.0997 0x0c5c SiSGbeLH - ok
23:07:59.0028 0x0c5c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
23:07:59.0028 0x0c5c SiSRaid2 - ok
23:07:59.0059 0x0c5c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:07:59.0059 0x0c5c SiSRaid4 - ok
23:07:59.0075 0x0c5c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:07:59.0106 0x0c5c Smb - ok
23:07:59.0137 0x0c5c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:07:59.0153 0x0c5c SNMPTRAP - ok
23:07:59.0184 0x0c5c [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys
23:07:59.0215 0x0c5c speedfan - ok
23:07:59.0231 0x0c5c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
23:07:59.0231 0x0c5c spldr - ok
23:07:59.0278 0x0c5c [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
23:07:59.0324 0x0c5c Spooler - ok
23:07:59.0465 0x0c5c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
23:07:59.0636 0x0c5c sppsvc - ok
23:07:59.0668 0x0c5c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:07:59.0714 0x0c5c sppuinotify - ok
23:07:59.0808 0x0c5c [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:07:59.0948 0x0c5c srv - ok
23:08:00.0042 0x0c5c [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:08:00.0089 0x0c5c srv2 - ok
23:08:00.0136 0x0c5c [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:08:00.0151 0x0c5c srvnet - ok
23:08:00.0182 0x0c5c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:08:00.0229 0x0c5c SSDPSRV - ok
23:08:00.0245 0x0c5c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:08:00.0292 0x0c5c SstpSvc - ok
23:08:00.0323 0x0c5c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
23:08:00.0323 0x0c5c stexstor - ok
23:08:00.0370 0x0c5c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
23:08:00.0401 0x0c5c stisvc - ok
23:08:00.0416 0x0c5c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:08:00.0432 0x0c5c swenum - ok
23:08:00.0448 0x0c5c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
23:08:00.0479 0x0c5c swprv - ok
23:08:00.0604 0x0c5c [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
23:08:00.0713 0x0c5c SysMain - ok
23:08:00.0713 0x0c5c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:08:00.0728 0x0c5c TabletInputService - ok
23:08:00.0744 0x0c5c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
23:08:00.0791 0x0c5c TapiSrv - ok
23:08:00.0947 0x0c5c [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:08:01.0009 0x0c5c Tcpip - ok
23:08:01.0072 0x0c5c [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:08:01.0118 0x0c5c TCPIP6 - ok
23:08:01.0150 0x0c5c [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:08:01.0165 0x0c5c tcpipreg - ok
23:08:01.0212 0x0c5c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:08:01.0243 0x0c5c TDPIPE - ok
23:08:01.0306 0x0c5c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:08:01.0337 0x0c5c TDTCP - ok
23:08:01.0368 0x0c5c [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:08:01.0399 0x0c5c tdx - ok
23:08:01.0430 0x0c5c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:08:01.0446 0x0c5c TermDD - ok
23:08:01.0508 0x0c5c [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
23:08:01.0602 0x0c5c TermService - ok
23:08:01.0633 0x0c5c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
23:08:01.0649 0x0c5c Themes - ok
23:08:01.0664 0x0c5c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
23:08:01.0680 0x0c5c THREADORDER - ok
23:08:01.0711 0x0c5c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
23:08:01.0742 0x0c5c TrkWks - ok
23:08:01.0820 0x0c5c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:08:01.0883 0x0c5c TrustedInstaller - ok
23:08:01.0898 0x0c5c [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:08:01.0930 0x0c5c tssecsrv - ok
23:08:01.0945 0x0c5c [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:08:01.0976 0x0c5c TsUsbFlt - ok
23:08:02.0008 0x0c5c [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
23:08:02.0023 0x0c5c TsUsbGD - ok
23:08:02.0054 0x0c5c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:08:02.0086 0x0c5c tunnel - ok
23:08:02.0117 0x0c5c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:08:02.0117 0x0c5c uagp35 - ok
23:08:02.0195 0x0c5c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:08:02.0288 0x0c5c udfs - ok
23:08:02.0335 0x0c5c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:08:02.0366 0x0c5c UI0Detect - ok
23:08:02.0460 0x0c5c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:08:02.0491 0x0c5c uliagpkx - ok
23:08:02.0507 0x0c5c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:08:02.0538 0x0c5c umbus - ok
23:08:02.0554 0x0c5c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
23:08:02.0569 0x0c5c UmPass - ok
23:08:02.0756 0x0c5c [ EB79C6C91A99930015EF29AE7FA802D1, 96D00BA330854C7763BF385D84D47C3D1B87C4085A91D73B558C86829930DC4B ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
23:08:02.0881 0x0c5c UNS - ok
23:08:02.0897 0x0c5c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
23:08:02.0944 0x0c5c upnphost - ok
23:08:02.0990 0x0c5c [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
23:08:03.0022 0x0c5c usbccgp - ok
23:08:03.0053 0x0c5c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:08:03.0068 0x0c5c usbcir - ok
23:08:03.0084 0x0c5c [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci C:\Windows\system32\drivers\usbehci.sys
23:08:03.0146 0x0c5c usbehci - ok
23:08:03.0178 0x0c5c [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub C:\Windows\system32\drivers\usbhub.sys
23:08:03.0209 0x0c5c usbhub - ok
23:08:03.0224 0x0c5c [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:08:03.0224 0x0c5c usbohci - ok
23:08:03.0271 0x0c5c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:08:03.0271 0x0c5c usbprint - ok
23:08:03.0334 0x0c5c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
23:08:03.0349 0x0c5c usbscan - ok
23:08:03.0380 0x0c5c [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
23:08:03.0427 0x0c5c USBSTOR - ok
23:08:03.0458 0x0c5c [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:08:03.0490 0x0c5c usbuhci - ok
23:08:03.0521 0x0c5c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:08:03.0552 0x0c5c usbvideo - ok
23:08:03.0583 0x0c5c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
23:08:03.0614 0x0c5c UxSms - ok
23:08:03.0630 0x0c5c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] VaultSvc C:\Windows\system32\lsass.exe
23:08:03.0646 0x0c5c VaultSvc - ok
23:08:03.0661 0x0c5c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:08:03.0677 0x0c5c vdrvroot - ok
23:08:03.0708 0x0c5c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
23:08:03.0755 0x0c5c vds - ok
23:08:03.0755 0x0c5c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:08:03.0770 0x0c5c vga - ok
23:08:03.0786 0x0c5c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:08:03.0817 0x0c5c VgaSave - ok
23:08:03.0833 0x0c5c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:08:03.0848 0x0c5c vhdmp - ok
23:08:03.0864 0x0c5c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
23:08:03.0880 0x0c5c viaide - ok
23:08:03.0895 0x0c5c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:08:03.0895 0x0c5c volmgr - ok
23:08:03.0926 0x0c5c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:08:03.0942 0x0c5c volmgrx - ok
23:08:03.0958 0x0c5c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:08:03.0973 0x0c5c volsnap - ok
23:08:03.0989 0x0c5c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:08:04.0004 0x0c5c vsmraid - ok
23:08:04.0098 0x0c5c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
23:08:04.0207 0x0c5c VSS - ok
23:08:04.0223 0x0c5c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:08:04.0238 0x0c5c vwifibus - ok
23:08:04.0254 0x0c5c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:08:04.0270 0x0c5c vwififlt - ok
23:08:04.0316 0x0c5c [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
23:08:04.0363 0x0c5c vwifimp - ok
23:08:04.0394 0x0c5c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
23:08:04.0457 0x0c5c W32Time - ok
23:08:04.0488 0x0c5c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:08:04.0488 0x0c5c WacomPen - ok
23:08:04.0550 0x0c5c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:08:04.0628 0x0c5c WANARP - ok
23:08:04.0660 0x0c5c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:08:04.0691 0x0c5c Wanarpv6 - ok
23:08:04.0847 0x0c5c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
23:08:04.0909 0x0c5c wbengine - ok
23:08:04.0940 0x0c5c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:08:05.0003 0x0c5c WbioSrvc - ok
23:08:05.0018 0x0c5c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:08:05.0050 0x0c5c wcncsvc - ok
23:08:05.0081 0x0c5c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:08:05.0112 0x0c5c WcsPlugInService - ok
23:08:05.0143 0x0c5c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
23:08:05.0159 0x0c5c Wd - ok
23:08:05.0221 0x0c5c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:08:05.0268 0x0c5c Wdf01000 - ok
23:08:05.0299 0x0c5c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:08:05.0315 0x0c5c WdiServiceHost - ok
23:08:05.0330 0x0c5c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:08:05.0330 0x0c5c WdiSystemHost - ok
23:08:05.0377 0x0c5c [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
23:08:05.0455 0x0c5c WebClient - ok
23:08:05.0486 0x0c5c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:08:05.0533 0x0c5c Wecsvc - ok
23:08:05.0549 0x0c5c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:08:05.0596 0x0c5c wercplsupport - ok
23:08:05.0611 0x0c5c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
23:08:05.0642 0x0c5c WerSvc - ok
23:08:05.0642 0x0c5c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:08:05.0674 0x0c5c WfpLwf - ok
23:08:05.0720 0x0c5c [ 52DED146E4797E6CCF94799E8E22BB2A, 57A29260D81AA3AD3F8C29E9CFA7CE3970D7A8BF673ADD9B256EE76C7DEC080E ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
23:08:05.0736 0x0c5c WimFltr - ok
23:08:05.0752 0x0c5c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:08:05.0767 0x0c5c WIMMount - ok
23:08:05.0783 0x0c5c WinDefend - ok
23:08:05.0798 0x0c5c WinHttpAutoProxySvc - ok
23:08:05.0892 0x0c5c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:08:05.0939 0x0c5c Winmgmt - ok
23:08:06.0095 0x0c5c [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
23:08:06.0204 0x0c5c WinRM - ok
23:08:06.0282 0x0c5c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:08:06.0313 0x0c5c WinUsb - ok
23:08:06.0360 0x0c5c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:08:06.0422 0x0c5c Wlansvc - ok
23:08:06.0500 0x0c5c [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:08:06.0532 0x0c5c wlcrasvc - ok
23:08:06.0656 0x0c5c [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:08:06.0797 0x0c5c wlidsvc - ok
23:08:06.0859 0x0c5c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:08:06.0906 0x0c5c WmiAcpi - ok
23:08:06.0968 0x0c5c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:08:07.0000 0x0c5c wmiApSrv - ok
23:08:07.0062 0x0c5c WMPNetworkSvc - ok
23:08:07.0171 0x0c5c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:08:07.0234 0x0c5c WPCSvc - ok
23:08:07.0265 0x0c5c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:08:07.0296 0x0c5c WPDBusEnum - ok
23:08:07.0358 0x0c5c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:08:07.0421 0x0c5c ws2ifsl - ok
23:08:07.0483 0x0c5c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
23:08:07.0530 0x0c5c wscsvc - ok
23:08:07.0530 0x0c5c WSearch - ok
23:08:07.0717 0x0c5c [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv C:\Windows\system32\wuaueng.dll
23:08:07.0889 0x0c5c wuauserv - ok
23:08:07.0936 0x0c5c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:08:07.0967 0x0c5c WudfPf - ok
23:08:08.0029 0x0c5c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:08:08.0092 0x0c5c WUDFRd - ok
23:08:08.0107 0x0c5c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:08:08.0138 0x0c5c wudfsvc - ok
23:08:08.0170 0x0c5c [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
23:08:08.0232 0x0c5c WwanSvc - ok
23:08:08.0310 0x0c5c ================ Scan global ===============================
23:08:08.0357 0x0c5c [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
23:08:08.0419 0x0c5c [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll
23:08:08.0450 0x0c5c [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll
23:08:08.0482 0x0c5c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:08:08.0528 0x0c5c [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
23:08:08.0528 0x0c5c [ Global ] - ok
23:08:08.0528 0x0c5c ================ Scan MBR ==================================
23:08:08.0544 0x0c5c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:08:09.0043 0x0c5c \Device\Harddisk0\DR0 - ok
23:08:09.0043 0x0c5c ================ Scan VBR ==================================
23:08:09.0043 0x0c5c [ 331410A9C76C8D16430FBC741F7BB60C ] \Device\Harddisk0\DR0\Partition1
23:08:09.0043 0x0c5c \Device\Harddisk0\DR0\Partition1 - ok
23:08:09.0059 0x0c5c [ D5485C0CA4358126B84BA110EEF6AF77 ] \Device\Harddisk0\DR0\Partition2
23:08:09.0059 0x0c5c \Device\Harddisk0\DR0\Partition2 - ok
23:08:09.0059 0x0c5c ================ Scan generic autorun ======================
23:08:09.0106 0x0c5c [ 31F52459AA89317FFB57EBAF9B4DD8BC, 05DA7048451BEF06B059A86D7FB3084942724F3359BD67A0DFADFB3FFFF6990A ] C:\Windows\system32\igfxtray.exe
23:08:09.0137 0x0c5c IgfxTray - ok
23:08:09.0168 0x0c5c [ 7CA105C4CCDFCA407859B2DF3D05A645, 36EEE251B2A221F1974A5BE3A743135EB317FF95A32A8B31DA3791573DB7D6BE ] C:\Windows\system32\igfxpers.exe
23:08:09.0215 0x0c5c Persistence - ok
23:08:09.0355 0x0c5c [ 4912F15F275B47D5021641648CC90BC6, 31985B1A4F035BCDC7F0EB95026973D06B2DB671FE662AE20BBEE2890A948895 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
23:08:09.0433 0x0c5c RtHDVBg - ok
23:08:09.0527 0x0c5c [ 757A595F75E7840A7132EC11E6E6188A, 95085E8B5432F76E0C50D79F74DECAD54662BB32FFDD575BC8CBAC2C79B1C069 ] C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe
23:08:09.0542 0x0c5c Nuance PDF Reader-reminder - ok
23:08:09.0636 0x0c5c [ BD87D5F5D68AC07243010A6F5176F897, D6518C2990DDAE5E88C9BE649B34A09A0C19A2EAA14967B45F6B176E34DC2EEB ] C:\Program Files (x86)\ASUS\APRP\APRP.EXE
23:08:09.0698 0x0c5c ASUSPRP - detected UnsignedFile.Multi.Generic ( 1 )
23:08:09.0901 0x0c5c Detect skipped due to KSN trusted
23:08:09.0901 0x0c5c ASUSPRP - ok
23:08:10.0057 0x0c5c [ B166415C55E416022B3339EBD6CB216E, A9E27DEAF911CB4D06056CD9E34AB55FDEB4F7E4C61A6934A2D3DD89CB598A18 ] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
23:08:10.0104 0x0c5c Wireless Console 3 - detected UnsignedFile.Multi.Generic ( 1 )
23:08:10.0416 0x0c5c Detect skipped due to KSN trusted
23:08:10.0416 0x0c5c Wireless Console 3 - ok
23:08:10.0478 0x0c5c [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
23:08:10.0494 0x0c5c UpdateLBPShortCut - ok
23:08:10.0588 0x0c5c [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
23:08:10.0588 0x0c5c UpdateP2GoShortCut - ok
23:08:10.0634 0x0c5c [ 2C35624F79B9ADBFE47090879F0D8673, 05FA39E574BDA62FB88BC1725FC1D95D9D5F5E7E8728171317D417C16A0A074D ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
23:08:10.0634 0x0c5c ATKOSD2 - ok
23:08:10.0650 0x0c5c [ A2791CF11D1ED52DBCD75D2FFD4D50E7, 9C06378E96430A70BFAF52C35B6D280DEE304D3D7E42FA9E0EECC6FBD3D6FC54 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
23:08:10.0666 0x0c5c ATKMEDIA - ok
23:08:10.0681 0x0c5c [ 5AEBF6FA9805C9101220AA4FB4FA17E7, A9B2FC41380211A6C44E839A95676A5BA868CEEBB56D83A780230434C2A20836 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
23:08:10.0697 0x0c5c HControlUser - ok
23:08:10.0868 0x0c5c [ 04E5640A8D9F29B183308AEFCD77F178, F1511C128305D1EAC90E8187E61CE9541CA1B8CB4F9312E6CE0963AEED980337 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
23:08:10.0915 0x0c5c StartCCC - ok
23:08:11.0227 0x0c5c [ 52F5D651B8E39F258C1C34272FEB1AB2, C13AD8762A4474D8246DE7BC023244BD74456D45348F74F77373CC61C238A0F3 ] C:\Program Files\CCleaner\CCleaner64.exe
23:08:11.0399 0x0c5c CCleaner Monitoring - ok
23:08:11.0399 0x0c5c Waiting for KSN requests completion. In queue: 102
23:08:12.0444 0x0c5c Win FW state via NFP2: enabled ( trusted )
23:08:12.0584 0x0c5c ============================================================
23:08:12.0584 0x0c5c Scan finished
23:08:12.0584 0x0c5c ============================================================
23:08:12.0584 0x0d24 Detected object count: 1
23:08:12.0584 0x0d24 Actual detected object count: 1
23:08:26.0422 0x0d24 chip1click ( UnsignedFile.Multi.Generic ) - skipped by user
23:08:26.0422 0x0d24 chip1click ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:09:13.0955 0x1338 Deinitialize success
|
|
05.02.2017, 23:27
| #8 |
| | PUA.SpeedUpMyPC.GEN - in Quarantäne? So nun noochmal nach Delete und Reboot: hoffe das war so richtig bis hierhin?  Code:
ATTFilter 23:16:03.0190 0x1224 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
23:16:05.0920 0x1224 ============================================================
23:16:05.0920 0x1224 Current date / time: 2017/02/05 23:16:05.0920
23:16:05.0920 0x1224 SystemInfo:
23:16:05.0920 0x1224
23:16:05.0920 0x1224 OS Version: 6.1.7601 ServicePack: 1.0
23:16:05.0920 0x1224 Product type: Workstation
23:16:05.0920 0x1224 ComputerName: DENISE-PC
23:16:05.0920 0x1224 UserName: Denise
23:16:05.0920 0x1224 Windows directory: C:\Windows
23:16:05.0920 0x1224 System windows directory: C:\Windows
23:16:05.0920 0x1224 Running under WOW64
23:16:05.0920 0x1224 Processor architecture: Intel x64
23:16:05.0920 0x1224 Number of processors: 4
23:16:05.0920 0x1224 Page size: 0x1000
23:16:05.0920 0x1224 Boot type: Normal boot
23:16:05.0920 0x1224 CodeIntegrityOptions = 0x00000001
23:16:05.0920 0x1224 ============================================================
23:16:06.0091 0x1224 KLMD registered as C:\Windows\system32\drivers\55979229.sys
23:16:06.0091 0x1224 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23572, osProperties = 0x1
23:16:06.0481 0x1224 System UUID: {B69B0BA3-C30B-F444-D6EA-2F7845004E3B}
23:16:06.0793 0x1224 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:16:06.0793 0x1224 ============================================================
23:16:06.0793 0x1224 \Device\Harddisk0\DR0:
23:16:06.0793 0x1224 MBR partitions:
23:16:06.0793 0x1224 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x1749C000
23:16:06.0793 0x1224 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A69C800, BlocksNum 0x1FCE9000
23:16:06.0793 0x1224 ============================================================
23:16:06.0840 0x1224 C: <-> \Device\Harddisk0\DR0\Partition1
23:16:06.0871 0x1224 D: <-> \Device\Harddisk0\DR0\Partition2
23:16:06.0871 0x1224 ============================================================
23:16:06.0871 0x1224 Initialize success
23:16:06.0871 0x1224 ============================================================
23:16:15.0951 0x0fc0 ============================================================
23:16:15.0951 0x0fc0 Scan started
23:16:15.0951 0x0fc0 Mode: Manual; SigCheck; TDLFS;
23:16:15.0951 0x0fc0 ============================================================
23:16:15.0951 0x0fc0 KSN ping started
23:16:16.0091 0x0fc0 KSN ping finished: true
23:16:16.0653 0x0fc0 ================ Scan system memory ========================
23:16:16.0653 0x0fc0 System memory - ok
23:16:16.0653 0x0fc0 ================ Scan services =============================
23:16:16.0902 0x0fc0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:16:16.0949 0x0fc0 1394ohci - ok
23:16:16.0996 0x0fc0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:16:17.0011 0x0fc0 ACPI - ok
23:16:17.0043 0x0fc0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:16:17.0058 0x0fc0 AcpiPmi - ok
23:16:17.0230 0x0fc0 [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:16:17.0261 0x0fc0 AdobeFlashPlayerUpdateSvc - ok
23:16:17.0339 0x0fc0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:16:17.0355 0x0fc0 adp94xx - ok
23:16:17.0417 0x0fc0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:16:17.0464 0x0fc0 adpahci - ok
23:16:17.0495 0x0fc0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:16:17.0511 0x0fc0 adpu320 - ok
23:16:17.0557 0x0fc0 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:16:17.0573 0x0fc0 AeLookupSvc - ok
23:16:17.0635 0x0fc0 [ 69FD46FAC0D9C4A8ECD522AC6A7481F5, 048FA3F77423D43346A35F142DBD0ACEC190F5E68F79960856C325B3CA7DD6C9 ] AFBAgent C:\Windows\system32\FBAgent.exe
23:16:17.0682 0x0fc0 AFBAgent - ok
23:16:17.0791 0x0fc0 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
23:16:17.0807 0x0fc0 AFD - ok
23:16:17.0854 0x0fc0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:16:17.0885 0x0fc0 agp440 - ok
23:16:17.0916 0x0fc0 [ 3F66D9AC081B495F91529C80BFA73E97, F62C4EF0B7BDC56CD9752AF9D6C1F355597794DEEE9B83D66A28671D42037115 ] AiCharger C:\Windows\system32\DRIVERS\AiCharger.sys
23:16:17.0932 0x0fc0 AiCharger - ok
23:16:17.0963 0x0fc0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:16:17.0979 0x0fc0 ALG - ok
23:16:18.0025 0x0fc0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:16:18.0041 0x0fc0 aliide - ok
23:16:18.0103 0x0fc0 [ AE5AE0FDDB09A922B08A371EF5DE811A, D7C77F840E8BF7BA56C1826288939ED4BAB782EC38518E54554DDB2BDA9002F6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:16:18.0135 0x0fc0 AMD External Events Utility - ok
23:16:18.0150 0x0fc0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:16:18.0150 0x0fc0 amdide - ok
23:16:18.0197 0x0fc0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:16:18.0197 0x0fc0 AmdK8 - ok
23:16:18.0618 0x0fc0 [ 4B1AB25AC54C2A27D74AB96FE79A7291, 37B83EC8E607DE71FF55EDE91067D785FBFA2D0C9312FC1862EFD365139E6350 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:16:18.0868 0x0fc0 amdkmdag - ok
23:16:18.0915 0x0fc0 [ 367E4AEF5402FA519EA2EA4549072A6E, 60F953526E57B2E32748F707D81CD7C109E082DDD6E54D302A561FF07829CD55 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
23:16:18.0930 0x0fc0 amdkmdap - ok
23:16:18.0946 0x0fc0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
23:16:18.0946 0x0fc0 AmdPPM - ok
23:16:18.0993 0x0fc0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:16:19.0024 0x0fc0 amdsata - ok
23:16:19.0055 0x0fc0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
23:16:19.0086 0x0fc0 amdsbs - ok
23:16:19.0102 0x0fc0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:16:19.0102 0x0fc0 amdxata - ok
23:16:19.0149 0x0fc0 [ FCE5C79717A487BDC71F3DEC78A684CA, F5520F112A4EBDD10444AA5E9FDB9125219FCF768FEB95AB608BC84D60136816 ] AppID C:\Windows\system32\drivers\appid.sys
23:16:19.0164 0x0fc0 AppID - ok
23:16:19.0211 0x0fc0 [ 8921E1D8AE5171691F186A7C5B98B630, 4A37313BB94D4B49D0294C9439AD0793DE328F9F4DA1C47E34E6ACEA46AF6E14 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:16:19.0227 0x0fc0 AppIDSvc - ok
23:16:19.0258 0x0fc0 [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo C:\Windows\System32\appinfo.dll
23:16:19.0273 0x0fc0 Appinfo - ok
23:16:19.0305 0x0fc0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
23:16:19.0320 0x0fc0 arc - ok
23:16:19.0336 0x0fc0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:16:19.0351 0x0fc0 arcsas - ok
23:16:19.0461 0x0fc0 [ FA713019412C061385F09BD373BF747A, 83ED108FEE95BA7CBE87C845154F97FCB4597F9D9BEC1F802B92D8994BD5931D ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
23:16:19.0476 0x0fc0 ASLDRService - ok
23:16:19.0523 0x0fc0 [ D6D2BB2F4F5868549DDE75F3146BC84E, FE2965649FF62696D30A4A7C377064EA2A27F03511DAF781913AA055A5FED323 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
23:16:19.0539 0x0fc0 asmthub3 - ok
23:16:19.0601 0x0fc0 [ 1E758172367DC2A3653F16586D62A3F0, 5395781F2B71CD9050F6CF75779D661F98E816A263ABA51153D14E21B73D4BC4 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
23:16:19.0632 0x0fc0 asmtxhci - ok
23:16:19.0757 0x0fc0 [ EE424A5CE56E3923D59BB7DE2E15036D, 8B8196870EFE74D43EDA72674021A46846D370E97A6A058134D84A721AECD091 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:16:19.0788 0x0fc0 aspnet_state - ok
23:16:19.0866 0x0fc0 [ EBDFC0F5B1E22CDED582BF882C95166B, EA6623BCABD5F8C7F74432CB83534F0A428F0D948D8967F053677585489EB52B ] ASUS InstantOn C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
23:16:19.0897 0x0fc0 ASUS InstantOn - ok
23:16:19.0913 0x0fc0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:16:19.0960 0x0fc0 AsyncMac - ok
23:16:19.0991 0x0fc0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:16:20.0007 0x0fc0 atapi - ok
23:16:20.0147 0x0fc0 [ A5E770426D18F8EF332A593F3289DA91, 87AC97758618765814B630CB1A189CD690DC6B0EAAE93D80EDE7771FB362C9AF ] athr C:\Windows\system32\DRIVERS\athrx.sys
23:16:20.0209 0x0fc0 athr - ok
23:16:20.0256 0x0fc0 [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
23:16:20.0272 0x0fc0 ATKGFNEXSrv - ok
23:16:20.0334 0x0fc0 [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO_ C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
23:16:20.0350 0x0fc0 ATKWMIACPIIO_ - ok
23:16:20.0428 0x0fc0 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:16:20.0459 0x0fc0 AudioEndpointBuilder - ok
23:16:20.0490 0x0fc0 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:16:20.0506 0x0fc0 AudioSrv - ok
23:16:20.0553 0x0fc0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:16:20.0584 0x0fc0 AxInstSV - ok
23:16:20.0631 0x0fc0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
23:16:20.0662 0x0fc0 b06bdrv - ok
23:16:20.0693 0x0fc0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:16:20.0709 0x0fc0 b57nd60a - ok
23:16:20.0740 0x0fc0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:16:20.0740 0x0fc0 BDESVC - ok
23:16:20.0771 0x0fc0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:16:20.0787 0x0fc0 Beep - ok
23:16:20.0849 0x0fc0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:16:20.0865 0x0fc0 BFE - ok
23:16:20.0943 0x0fc0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
23:16:20.0989 0x0fc0 BITS - ok
23:16:21.0021 0x0fc0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:16:21.0021 0x0fc0 blbdrive - ok
23:16:21.0067 0x0fc0 [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:16:21.0099 0x0fc0 bowser - ok
23:16:21.0114 0x0fc0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
23:16:21.0130 0x0fc0 BrFiltLo - ok
23:16:21.0145 0x0fc0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
23:16:21.0161 0x0fc0 BrFiltUp - ok
23:16:21.0192 0x0fc0 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
23:16:21.0223 0x0fc0 BridgeMP - ok
23:16:21.0286 0x0fc0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:16:21.0301 0x0fc0 Browser - ok
23:16:21.0348 0x0fc0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:16:21.0364 0x0fc0 Brserid - ok
23:16:21.0379 0x0fc0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:16:21.0395 0x0fc0 BrSerWdm - ok
23:16:21.0411 0x0fc0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:16:21.0411 0x0fc0 BrUsbMdm - ok
23:16:21.0426 0x0fc0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:16:21.0442 0x0fc0 BrUsbSer - ok
23:16:21.0489 0x0fc0 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
23:16:21.0520 0x0fc0 BthEnum - ok
23:16:21.0535 0x0fc0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:16:21.0535 0x0fc0 BTHMODEM - ok
23:16:21.0551 0x0fc0 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:16:21.0567 0x0fc0 BthPan - ok
23:16:21.0598 0x0fc0 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
23:16:21.0613 0x0fc0 BTHPORT - ok
23:16:21.0660 0x0fc0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:16:21.0707 0x0fc0 bthserv - ok
23:16:21.0723 0x0fc0 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
23:16:21.0738 0x0fc0 BTHUSB - ok
23:16:21.0769 0x0fc0 catchme - ok
23:16:21.0801 0x0fc0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:16:21.0847 0x0fc0 cdfs - ok
23:16:21.0879 0x0fc0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:16:21.0894 0x0fc0 cdrom - ok
23:16:21.0925 0x0fc0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:16:21.0957 0x0fc0 CertPropSvc - ok
23:16:22.0019 0x0fc0 [ CF3FFDA7B06A62DC018AFF75B4749FF4, B9ECE0A37CA4A389114737EADF68334DBF6A77214E8794ADFC6F83AD42F90D56 ] chip1click C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
23:16:22.0035 0x0fc0 chip1click - detected UnsignedFile.Multi.Generic ( 1 )
23:16:22.0471 0x0fc0 chip1click ( UnsignedFile.Multi.Generic ) - warning
23:16:22.0612 0x0fc0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
23:16:22.0643 0x0fc0 circlass - ok
23:16:22.0705 0x0fc0 [ 3D67C27DD17B254D7915FA16A5AE3573, 5B3A6C6A7F940C06362775DAF13CEADA37C7AA84A509458A57C23B4369970A90 ] CLFS C:\Windows\system32\CLFS.sys
23:16:22.0721 0x0fc0 CLFS - ok
23:16:22.0799 0x0fc0 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:16:22.0830 0x0fc0 clr_optimization_v2.0.50727_32 - ok
23:16:22.0877 0x0fc0 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:16:22.0893 0x0fc0 clr_optimization_v2.0.50727_64 - ok
23:16:23.0002 0x0fc0 [ 5BAF4F1296D4D91FC28560CDB4C37C4B, ACA4BC57ED1F8432F18F0F215EC7FF956BAEF6E02760779E264E4008A979E9DD ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:16:23.0033 0x0fc0 clr_optimization_v4.0.30319_32 - ok
23:16:23.0080 0x0fc0 [ 569B54004A7E85A74FD92841DE6058E2, 58949313D0F6B1C06359B2F3C68E29940B1655A17E93FFC3718F6D2EAE1633E4 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:16:23.0095 0x0fc0 clr_optimization_v4.0.30319_64 - ok
23:16:23.0142 0x0fc0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:16:23.0158 0x0fc0 CmBatt - ok
23:16:23.0189 0x0fc0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:16:23.0205 0x0fc0 cmdide - ok
23:16:23.0298 0x0fc0 [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys
23:16:23.0329 0x0fc0 CNG - ok
23:16:23.0345 0x0fc0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
23:16:23.0361 0x0fc0 Compbatt - ok
23:16:23.0376 0x0fc0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
23:16:23.0392 0x0fc0 CompositeBus - ok
23:16:23.0407 0x0fc0 COMSysApp - ok
23:16:23.0423 0x0fc0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:16:23.0439 0x0fc0 crcdisk - ok
23:16:23.0485 0x0fc0 [ 2C6632CECFDBBE793FDA8AF9CA55A9CC, 335188515F798483660E529204A13012E4D21B0ECA489224A11C26F91A5B3CCE ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:16:23.0517 0x0fc0 CryptSvc - ok
23:16:23.0563 0x0fc0 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
23:16:23.0579 0x0fc0 dbupdate - ok
23:16:23.0595 0x0fc0 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
23:16:23.0610 0x0fc0 dbupdatem - ok
23:16:23.0610 0x0fc0 dbx - ok
23:16:23.0626 0x0fc0 [ 2C5A991F0320D95BAC80D0C31F43A79E, CC7887132AF15C77676A3186429FE0071DCC8DC9C6252314D99C02E54867BE10 ] DbxSvc C:\Windows\system32\DbxSvc.exe
23:16:23.0626 0x0fc0 DbxSvc - ok
23:16:23.0688 0x0fc0 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll
23:16:23.0735 0x0fc0 DcomLaunch - ok
23:16:23.0766 0x0fc0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:16:23.0797 0x0fc0 defragsvc - ok
23:16:23.0844 0x0fc0 [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:16:23.0875 0x0fc0 DfsC - ok
23:16:23.0922 0x0fc0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:16:23.0938 0x0fc0 Dhcp - ok
23:16:24.0094 0x0fc0 [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll
23:16:24.0125 0x0fc0 DiagTrack - ok
23:16:24.0156 0x0fc0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:16:24.0187 0x0fc0 discache - ok
23:16:24.0203 0x0fc0 [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
23:16:24.0219 0x0fc0 Disk - ok
23:16:24.0265 0x0fc0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:16:24.0297 0x0fc0 Dnscache - ok
23:16:24.0328 0x0fc0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:16:24.0359 0x0fc0 dot3svc - ok
23:16:24.0390 0x0fc0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:16:24.0421 0x0fc0 DPS - ok
23:16:24.0453 0x0fc0 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:16:24.0484 0x0fc0 drmkaud - ok
23:16:24.0562 0x0fc0 [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:16:24.0593 0x0fc0 DXGKrnl - ok
23:16:24.0609 0x0fc0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:16:24.0640 0x0fc0 EapHost - ok
23:16:24.0780 0x0fc0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
23:16:24.0843 0x0fc0 ebdrv - ok
23:16:24.0874 0x0fc0 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] EFS C:\Windows\System32\lsass.exe
23:16:24.0889 0x0fc0 EFS - ok
23:16:24.0983 0x0fc0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:16:25.0014 0x0fc0 ehRecvr - ok
23:16:25.0045 0x0fc0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:16:25.0045 0x0fc0 ehSched - ok
23:16:25.0123 0x0fc0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:16:25.0139 0x0fc0 elxstor - ok
23:16:25.0155 0x0fc0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:16:25.0170 0x0fc0 ErrDev - ok
23:16:25.0217 0x0fc0 [ B46626A89C943DD2799D403F0CB34E42, 19FC07C51598B689140B9548D4D9FE051497B28D17E1A952620CCEAE72E07113 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
23:16:25.0217 0x0fc0 ETD - ok
23:16:25.0279 0x0fc0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:16:25.0311 0x0fc0 EventSystem - ok
23:16:25.0326 0x0fc0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:16:25.0357 0x0fc0 exfat - ok
23:16:25.0389 0x0fc0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:16:25.0404 0x0fc0 fastfat - ok
23:16:25.0451 0x0fc0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:16:25.0467 0x0fc0 Fax - ok
23:16:25.0498 0x0fc0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
23:16:25.0498 0x0fc0 fdc - ok
23:16:25.0529 0x0fc0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:16:25.0560 0x0fc0 fdPHost - ok
23:16:25.0576 0x0fc0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:16:25.0591 0x0fc0 FDResPub - ok
23:16:25.0623 0x0fc0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:16:25.0623 0x0fc0 FileInfo - ok
23:16:25.0638 0x0fc0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:16:25.0669 0x0fc0 Filetrace - ok
23:16:25.0685 0x0fc0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
23:16:25.0685 0x0fc0 flpydisk - ok
23:16:25.0716 0x0fc0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:16:25.0716 0x0fc0 FltMgr - ok
23:16:25.0825 0x0fc0 [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache C:\Windows\system32\FntCache.dll
23:16:25.0872 0x0fc0 FontCache - ok
23:16:25.0903 0x0fc0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:16:25.0935 0x0fc0 FontCache3.0.0.0 - ok
23:16:25.0950 0x0fc0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:16:25.0966 0x0fc0 FsDepends - ok
23:16:25.0997 0x0fc0 [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
23:16:25.0997 0x0fc0 fssfltr - ok
23:16:26.0153 0x0fc0 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:16:26.0184 0x0fc0 fsssvc - ok
23:16:26.0231 0x0fc0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:16:26.0247 0x0fc0 Fs_Rec - ok
23:16:26.0325 0x0fc0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:16:26.0340 0x0fc0 fvevol - ok
23:16:26.0387 0x0fc0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:16:26.0403 0x0fc0 gagp30kx - ok
23:16:26.0465 0x0fc0 [ 16C2A6BCDDA8952C2035DEC861492A19, 9023CD3A2C1009786A48EF7FBCC97ED1724C836279424A4D465CCE1AFA2DBDDA ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
23:16:26.0481 0x0fc0 ggflt - ok
23:16:26.0527 0x0fc0 [ 6B503DF845EABF3457E49FBBDA26C10E, A1553E3822EDEA26D8E67FCC7F9EA40DFBED49EC92FD5674AAF938F2D58CF964 ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
23:16:26.0543 0x0fc0 ggsemc - ok
23:16:26.0605 0x0fc0 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
23:16:26.0637 0x0fc0 gpsvc - ok
23:16:26.0746 0x0fc0 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:16:26.0761 0x0fc0 gupdate - ok
23:16:26.0793 0x0fc0 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:16:26.0808 0x0fc0 gupdatem - ok
23:16:26.0824 0x0fc0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:16:26.0839 0x0fc0 hcw85cir - ok
23:16:26.0902 0x0fc0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:16:26.0933 0x0fc0 HdAudAddService - ok
23:16:26.0964 0x0fc0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:16:26.0980 0x0fc0 HDAudBus - ok
23:16:26.0995 0x0fc0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
23:16:27.0011 0x0fc0 HidBatt - ok
23:16:27.0027 0x0fc0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:16:27.0027 0x0fc0 HidBth - ok
23:16:27.0058 0x0fc0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
23:16:27.0073 0x0fc0 HidIr - ok
23:16:27.0089 0x0fc0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
23:16:27.0120 0x0fc0 hidserv - ok
23:16:27.0151 0x0fc0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:16:27.0151 0x0fc0 HidUsb - ok
23:16:27.0167 0x0fc0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:16:27.0198 0x0fc0 hkmsvc - ok
23:16:27.0214 0x0fc0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:16:27.0229 0x0fc0 HomeGroupListener - ok
23:16:27.0261 0x0fc0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:16:27.0276 0x0fc0 HomeGroupProvider - ok
23:16:27.0307 0x0fc0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:16:27.0323 0x0fc0 HpSAMD - ok
23:16:27.0385 0x0fc0 [ EC80F3ECC5F8543E22BBCB037D837CA9, 23A4AE80A6C317CE77BD9D352CD9CED8649E3AD98A7C0A2044138BB20B46F398 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
23:16:27.0432 0x0fc0 HPSupportSolutionsFrameworkService - ok
23:16:27.0510 0x0fc0 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:16:27.0541 0x0fc0 HTTP - ok
23:16:27.0541 0x0fc0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:16:27.0557 0x0fc0 hwpolicy - ok
23:16:27.0588 0x0fc0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:16:27.0588 0x0fc0 i8042prt - ok
23:16:27.0666 0x0fc0 [ 26CF4275034214ECEDD8EC17B0A18A99, 95A08C63971C28F1BC97040C0ADA247E3B43DE7D937B14E33A394B955D0AC8B7 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:16:27.0697 0x0fc0 iaStor - ok
23:16:27.0729 0x0fc0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:16:27.0744 0x0fc0 iaStorV - ok
23:16:27.0822 0x0fc0 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:16:27.0869 0x0fc0 idsvc - ok
23:16:27.0885 0x0fc0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:16:27.0900 0x0fc0 iirsp - ok
23:16:27.0963 0x0fc0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:16:27.0978 0x0fc0 IKEEXT - ok
23:16:28.0181 0x0fc0 [ 3F2AAD1E888E9EEEB82500F88A5503B3, E657435ADF554842415D68A5500423A943CAE929EF022BE1E6658E7C163784CF ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:16:28.0259 0x0fc0 IntcAzAudAddService - ok
23:16:28.0337 0x0fc0 [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
23:16:28.0353 0x0fc0 IntcDAud - ok
23:16:28.0399 0x0fc0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:16:28.0399 0x0fc0 intelide - ok
23:16:28.0821 0x0fc0 [ 33FAA40B288002C89529DBD14F3AB72C, 670BA536796322122EBD93F256331899DD2E1834471B017A58F74132EE8DFDB7 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
23:16:29.0086 0x0fc0 intelkmd - ok
23:16:29.0133 0x0fc0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:16:29.0148 0x0fc0 intelppm - ok
23:16:29.0179 0x0fc0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:16:29.0195 0x0fc0 IPBusEnum - ok
23:16:29.0211 0x0fc0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:16:29.0242 0x0fc0 IpFilterDriver - ok
23:16:29.0320 0x0fc0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:16:29.0335 0x0fc0 iphlpsvc - ok
23:16:29.0351 0x0fc0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:16:29.0367 0x0fc0 IPMIDRV - ok
23:16:29.0382 0x0fc0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:16:29.0413 0x0fc0 IPNAT - ok
23:16:29.0429 0x0fc0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:16:29.0445 0x0fc0 IRENUM - ok
23:16:29.0476 0x0fc0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:16:29.0476 0x0fc0 isapnp - ok
23:16:29.0523 0x0fc0 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:16:29.0554 0x0fc0 iScsiPrt - ok
23:16:29.0569 0x0fc0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:16:29.0585 0x0fc0 kbdclass - ok
23:16:29.0616 0x0fc0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:16:29.0632 0x0fc0 kbdhid - ok
23:16:29.0679 0x0fc0 [ E63EF8C3271D014F14E2469CE75FECB4, 3A8DFA4B446AFDC35F01FD5218D0BEBC510A1E3DE9976210F00D19767D0F9069 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
23:16:29.0694 0x0fc0 kbfiltr - ok
23:16:29.0725 0x0fc0 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] KeyIso C:\Windows\system32\lsass.exe
23:16:29.0725 0x0fc0 KeyIso - ok
23:16:29.0757 0x0fc0 [ 6F5F0C6160EF237F0243C1E416EEBA98, 8BA8AA0D71350A74E294A731226B1638C6059013D645ABDE7188F7733E320FBD ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:16:29.0772 0x0fc0 KSecDD - ok
23:16:29.0788 0x0fc0 [ 05529E53B286FD60E7EF04EF138CABFD, 6C045750DCD3EE76F748582513AD4FA99C0E8E56B616725CD48DCA1068FF8923 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:16:29.0803 0x0fc0 KSecPkg - ok
23:16:29.0819 0x0fc0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:16:29.0866 0x0fc0 ksthunk - ok
23:16:29.0897 0x0fc0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:16:29.0928 0x0fc0 KtmRm - ok
23:16:29.0959 0x0fc0 [ 033B4AED2C5519072C0D81E00804D003, 6C450A604C382416C482FED43098B4E95BD61B480B0CEFD728A269446AF18708 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
23:16:29.0975 0x0fc0 L1C - ok
23:16:30.0006 0x0fc0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
23:16:30.0053 0x0fc0 LanmanServer - ok
23:16:30.0100 0x0fc0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:16:30.0115 0x0fc0 LanmanWorkstation - ok
23:16:30.0147 0x0fc0 [ 02538E602280C07438C94489DCBE77D5, 2E2B60E5FB7A274F4945444D5EDB058E62CAC268C5336FF8F4B9E82245095211 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
23:16:30.0147 0x0fc0 libusb0 - ok
23:16:30.0178 0x0fc0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:16:30.0209 0x0fc0 lltdio - ok
23:16:30.0240 0x0fc0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:16:30.0271 0x0fc0 lltdsvc - ok
23:16:30.0287 0x0fc0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:16:30.0318 0x0fc0 lmhosts - ok
23:16:30.0443 0x0fc0 [ 0803906D607A9B83184447B75B60ECC2, A7A599C4CEDD4AC4196A558442E80B4F852AF6C6104A53C8819A79AA5D388DE8 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
23:16:30.0459 0x0fc0 LMS - ok
23:16:30.0521 0x0fc0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:16:30.0521 0x0fc0 LSI_FC - ok
23:16:30.0537 0x0fc0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:16:30.0552 0x0fc0 LSI_SAS - ok
23:16:30.0568 0x0fc0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
23:16:30.0583 0x0fc0 LSI_SAS2 - ok
23:16:30.0599 0x0fc0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:16:30.0615 0x0fc0 LSI_SCSI - ok
23:16:30.0630 0x0fc0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:16:30.0661 0x0fc0 luafv - ok
23:16:30.0739 0x0fc0 [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:16:30.0755 0x0fc0 MBAMProtector - ok
23:16:30.0880 0x0fc0 [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
23:16:30.0911 0x0fc0 MBAMService - ok
23:16:30.0942 0x0fc0 [ 452ACB7A9914398D9E18CCCFFCF92208, 754AF45C19731C356E7E84497B04E0333759AC86DC553BA275EFC09845E43E4D ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
23:16:30.0942 0x0fc0 MBAMWebAccessControl - ok
23:16:30.0973 0x0fc0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:16:30.0973 0x0fc0 Mcx2Svc - ok
23:16:30.0989 0x0fc0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
23:16:30.0989 0x0fc0 megasas - ok
23:16:31.0020 0x0fc0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
23:16:31.0036 0x0fc0 MegaSR - ok
23:16:31.0067 0x0fc0 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
23:16:31.0083 0x0fc0 MEIx64 - ok
23:16:31.0098 0x0fc0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:16:31.0114 0x0fc0 MMCSS - ok
23:16:31.0129 0x0fc0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:16:31.0161 0x0fc0 Modem - ok
23:16:31.0176 0x0fc0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:16:31.0192 0x0fc0 monitor - ok
23:16:31.0207 0x0fc0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:16:31.0223 0x0fc0 mouclass - ok
23:16:31.0254 0x0fc0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:16:31.0254 0x0fc0 mouhid - ok
23:16:31.0301 0x0fc0 [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:16:31.0317 0x0fc0 mountmgr - ok
23:16:31.0426 0x0fc0 [ ADF79A49E942C91D1FC9863CBFDD6B58, C2B2A792C4717133DCAE6297EE3F5D985B11D3C1E68A8DC23985AC6B78ACDE98 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:16:31.0441 0x0fc0 MozillaMaintenance - ok
23:16:31.0488 0x0fc0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:16:31.0504 0x0fc0 mpio - ok
23:16:31.0504 0x0fc0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:16:31.0551 0x0fc0 mpsdrv - ok
23:16:31.0597 0x0fc0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:16:31.0629 0x0fc0 MpsSvc - ok
23:16:31.0675 0x0fc0 [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:16:31.0707 0x0fc0 MRxDAV - ok
23:16:31.0738 0x0fc0 [ 632E8A00090E4F85F304E152C92C7F2C, A3098941251A8327C95E6B1122384D54FB0ED705A9215577D968EA5B5FD88C87 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:16:31.0753 0x0fc0 mrxsmb - ok
23:16:31.0800 0x0fc0 [ 0D9C05484F2F4BD9D33A615D5DBE67EA, 1E164B631B1CD85DD5B205284CB547B189609946490AAABD22741743BFB413DF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:16:31.0816 0x0fc0 mrxsmb10 - ok
23:16:31.0847 0x0fc0 [ 6123E6FECC1C164022868FB1982271BE, 417E6C7AFF8B014B31AFCC202B0DCEECBDBB73205DF8C3EFC7E313664E284178 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:16:31.0863 0x0fc0 mrxsmb20 - ok
23:16:31.0878 0x0fc0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:16:31.0894 0x0fc0 msahci - ok
23:16:31.0925 0x0fc0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:16:31.0956 0x0fc0 msdsm - ok
23:16:31.0972 0x0fc0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:16:31.0987 0x0fc0 MSDTC - ok
23:16:32.0003 0x0fc0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:16:32.0050 0x0fc0 Msfs - ok
23:16:32.0050 0x0fc0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:16:32.0081 0x0fc0 mshidkmdf - ok
23:16:32.0097 0x0fc0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:16:32.0097 0x0fc0 msisadrv - ok
23:16:32.0143 0x0fc0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:16:32.0159 0x0fc0 MSiSCSI - ok
23:16:32.0175 0x0fc0 msiserver - ok
23:16:32.0206 0x0fc0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:16:32.0221 0x0fc0 MSKSSRV - ok
23:16:32.0253 0x0fc0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:16:32.0268 0x0fc0 MSPCLOCK - ok
23:16:32.0299 0x0fc0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:16:32.0331 0x0fc0 MSPQM - ok
23:16:32.0346 0x0fc0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:16:32.0362 0x0fc0 MsRPC - ok
23:16:32.0377 0x0fc0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:16:32.0393 0x0fc0 mssmbios - ok
23:16:32.0393 0x0fc0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:16:32.0424 0x0fc0 MSTEE - ok
23:16:32.0424 0x0fc0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
23:16:32.0440 0x0fc0 MTConfig - ok
23:16:32.0455 0x0fc0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:16:32.0471 0x0fc0 Mup - ok
23:16:32.0502 0x0fc0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:16:32.0549 0x0fc0 napagent - ok
23:16:32.0580 0x0fc0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:16:32.0596 0x0fc0 NativeWifiP - ok
23:16:32.0643 0x0fc0 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:16:32.0674 0x0fc0 NDIS - ok
23:16:32.0674 0x0fc0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:16:32.0705 0x0fc0 NdisCap - ok
23:16:32.0736 0x0fc0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:16:32.0752 0x0fc0 NdisTapi - ok
23:16:32.0783 0x0fc0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:16:32.0830 0x0fc0 Ndisuio - ok
23:16:32.0845 0x0fc0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:16:32.0877 0x0fc0 NdisWan - ok
23:16:32.0877 0x0fc0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:16:32.0908 0x0fc0 NDProxy - ok
23:16:32.0923 0x0fc0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:16:32.0955 0x0fc0 NetBIOS - ok
23:16:32.0986 0x0fc0 [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:16:33.0001 0x0fc0 NetBT - ok
23:16:33.0017 0x0fc0 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] Netlogon C:\Windows\system32\lsass.exe
23:16:33.0033 0x0fc0 Netlogon - ok
23:16:33.0064 0x0fc0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:16:33.0095 0x0fc0 Netman - ok
23:16:33.0142 0x0fc0 [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:16:33.0157 0x0fc0 NetMsmqActivator - ok
23:16:33.0157 0x0fc0 [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:16:33.0173 0x0fc0 NetPipeActivator - ok
23:16:33.0189 0x0fc0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:16:33.0220 0x0fc0 netprofm - ok
23:16:33.0235 0x0fc0 [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:16:33.0235 0x0fc0 NetTcpActivator - ok
23:16:33.0251 0x0fc0 [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:16:33.0251 0x0fc0 NetTcpPortSharing - ok
23:16:33.0298 0x0fc0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:16:33.0313 0x0fc0 nfrd960 - ok
23:16:33.0360 0x0fc0 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:16:33.0376 0x0fc0 NlaSvc - ok
23:16:33.0391 0x0fc0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:16:33.0407 0x0fc0 Npfs - ok
23:16:33.0423 0x0fc0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:16:33.0454 0x0fc0 nsi - ok
23:16:33.0454 0x0fc0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:16:33.0485 0x0fc0 nsiproxy - ok
23:16:33.0547 0x0fc0 [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:16:33.0594 0x0fc0 Ntfs - ok
23:16:33.0610 0x0fc0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:16:33.0625 0x0fc0 Null - ok
23:16:33.0657 0x0fc0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:16:33.0672 0x0fc0 nvraid - ok
23:16:33.0688 0x0fc0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:16:33.0703 0x0fc0 nvstor - ok
23:16:33.0735 0x0fc0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:16:33.0750 0x0fc0 nv_agp - ok
23:16:33.0766 0x0fc0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:16:33.0781 0x0fc0 ohci1394 - ok
23:16:33.0891 0x0fc0 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:16:33.0906 0x0fc0 ose - ok
23:16:34.0171 0x0fc0 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:16:34.0281 0x0fc0 osppsvc - ok
23:16:34.0343 0x0fc0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:16:34.0374 0x0fc0 p2pimsvc - ok
23:16:34.0421 0x0fc0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:16:34.0452 0x0fc0 p2psvc - ok
23:16:34.0483 0x0fc0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
23:16:34.0483 0x0fc0 Parport - ok
23:16:34.0515 0x0fc0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:16:34.0530 0x0fc0 partmgr - ok
23:16:34.0577 0x0fc0 [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
23:16:34.0593 0x0fc0 PcaSvc - ok
23:16:34.0608 0x0fc0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:16:34.0624 0x0fc0 pci - ok
23:16:34.0655 0x0fc0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:16:34.0671 0x0fc0 pciide - ok
23:16:34.0686 0x0fc0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:16:34.0702 0x0fc0 pcmcia - ok
23:16:34.0717 0x0fc0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:16:34.0717 0x0fc0 pcw - ok
23:16:34.0795 0x0fc0 [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:16:34.0827 0x0fc0 PEAUTH - ok
23:16:34.0889 0x0fc0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:16:34.0920 0x0fc0 PerfHost - ok
23:16:35.0029 0x0fc0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:16:35.0092 0x0fc0 pla - ok
23:16:35.0170 0x0fc0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:16:35.0201 0x0fc0 PlugPlay - ok
23:16:35.0217 0x0fc0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:16:35.0217 0x0fc0 PNRPAutoReg - ok
23:16:35.0248 0x0fc0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:16:35.0263 0x0fc0 PNRPsvc - ok
23:16:35.0295 0x0fc0 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:16:35.0310 0x0fc0 PolicyAgent - ok
23:16:35.0357 0x0fc0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:16:35.0388 0x0fc0 Power - ok
23:16:35.0419 0x0fc0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:16:35.0451 0x0fc0 PptpMiniport - ok
23:16:35.0466 0x0fc0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
23:16:35.0482 0x0fc0 Processor - ok
23:16:35.0497 0x0fc0 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
23:16:35.0513 0x0fc0 ProfSvc - ok
23:16:35.0513 0x0fc0 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] ProtectedStorage C:\Windows\system32\lsass.exe
23:16:35.0529 0x0fc0 ProtectedStorage - ok
23:16:35.0544 0x0fc0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:16:35.0575 0x0fc0 Psched - ok
23:16:35.0638 0x0fc0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:16:35.0669 0x0fc0 ql2300 - ok
23:16:35.0685 0x0fc0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:16:35.0700 0x0fc0 ql40xx - ok
23:16:35.0731 0x0fc0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:16:35.0747 0x0fc0 QWAVE - ok
23:16:35.0747 0x0fc0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:16:35.0763 0x0fc0 QWAVEdrv - ok
23:16:35.0778 0x0fc0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:16:35.0794 0x0fc0 RasAcd - ok
23:16:35.0825 0x0fc0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:16:35.0856 0x0fc0 RasAgileVpn - ok
23:16:35.0872 0x0fc0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:16:35.0903 0x0fc0 RasAuto - ok
23:16:35.0919 0x0fc0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:16:35.0950 0x0fc0 Rasl2tp - ok
23:16:35.0965 0x0fc0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:16:35.0997 0x0fc0 RasMan - ok
23:16:36.0012 0x0fc0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:16:36.0043 0x0fc0 RasPppoe - ok
23:16:36.0043 0x0fc0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:16:36.0075 0x0fc0 RasSstp - ok
23:16:36.0090 0x0fc0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:16:36.0121 0x0fc0 rdbss - ok
23:16:36.0137 0x0fc0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
23:16:36.0153 0x0fc0 rdpbus - ok
23:16:36.0184 0x0fc0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:16:36.0199 0x0fc0 RDPCDD - ok
23:16:36.0215 0x0fc0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:16:36.0231 0x0fc0 RDPENCDD - ok
23:16:36.0246 0x0fc0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:16:36.0277 0x0fc0 RDPREFMP - ok
23:16:36.0309 0x0fc0 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:16:36.0309 0x0fc0 RDPWD - ok
23:16:36.0340 0x0fc0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:16:36.0355 0x0fc0 rdyboost - ok
23:16:36.0387 0x0fc0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:16:36.0418 0x0fc0 RemoteAccess - ok
23:16:36.0465 0x0fc0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:16:36.0496 0x0fc0 RemoteRegistry - ok
23:16:36.0527 0x0fc0 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:16:36.0543 0x0fc0 RFCOMM - ok
23:16:36.0558 0x0fc0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:16:36.0574 0x0fc0 RpcEptMapper - ok
23:16:36.0589 0x0fc0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:16:36.0605 0x0fc0 RpcLocator - ok
23:16:36.0636 0x0fc0 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll
23:16:36.0667 0x0fc0 RpcSs - ok
23:16:36.0683 0x0fc0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:16:36.0714 0x0fc0 rspndr - ok
23:16:36.0855 0x0fc0 [ CE0A1D8A59410E698140821E4E69DA0D, 4AEBF07C4016AF62B1A4F1C838FDC3A272FC643E596A86E4FE3C34F10523E318 ] RSUSBVSTOR C:\Windows\system32\Drivers\RtsUVStor.sys
23:16:36.0870 0x0fc0 RSUSBVSTOR - ok
23:16:36.0948 0x0fc0 [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
23:16:36.0964 0x0fc0 RTL8167 - ok
23:16:37.0057 0x0fc0 [ B49951A2C8FD81307707443D01936E37, 3F9A80FAA39A29F71A9028C576AB183632FFA662AFC8CD9D6A2E1E2F462B804C ] s217bus C:\Windows\system32\DRIVERS\s217bus.sys
23:16:37.0089 0x0fc0 s217bus - ok
23:16:37.0151 0x0fc0 [ 58204EC551D1A94D60CAC130440F0FEB, FD9CC9D6473A860DD5B4CAFD3279AB97B1A54C5D2F44941112DB7C8BCE773595 ] s217mdfl C:\Windows\system32\DRIVERS\s217mdfl.sys
23:16:37.0167 0x0fc0 s217mdfl - ok
23:16:37.0198 0x0fc0 [ E2B3DE89339A7A807520C6063CD146D3, 72023A16E6880D858BE6524D34E9859DA998E07476FF50085D159285B754A983 ] s217mdm C:\Windows\system32\DRIVERS\s217mdm.sys
23:16:37.0198 0x0fc0 s217mdm - ok
23:16:37.0260 0x0fc0 [ 7BC7D18351B846F4544B54DB38FB4208, 3C6E37BC2E8FE41F193A66300CB8A2B5BC0339B91327577EC51CA7B636EC39E6 ] s217nd5 C:\Windows\system32\DRIVERS\s217nd5.sys
23:16:37.0276 0x0fc0 s217nd5 - ok
23:16:37.0291 0x0fc0 [ D498B2082F51858F121D4584A7787CD5, 4A3D93EC31C1C949285FBBA8FB0C839D2C30DF58AC17ED646FAEC06DD7122A62 ] s217obex C:\Windows\system32\DRIVERS\s217obex.sys
23:16:37.0291 0x0fc0 s217obex - ok
23:16:37.0338 0x0fc0 [ 43512D0C3A59EB20FDA06CE4265A1549, 806BBA62AF2D792DCC2F4A4FB789A1D0C9B365F869E7950B31572BAE809CEB07 ] s217unic C:\Windows\system32\DRIVERS\s217unic.sys
23:16:37.0338 0x0fc0 s217unic - ok
23:16:37.0369 0x0fc0 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] SamSs C:\Windows\system32\lsass.exe
23:16:37.0369 0x0fc0 SamSs - ok
23:16:37.0416 0x0fc0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:16:37.0432 0x0fc0 sbp2port - ok
23:16:37.0463 0x0fc0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:16:37.0494 0x0fc0 SCardSvr - ok
23:16:37.0510 0x0fc0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:16:37.0572 0x0fc0 scfilter - ok
23:16:37.0837 0x0fc0 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
23:16:37.0869 0x0fc0 Schedule - ok
23:16:37.0915 0x0fc0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:16:37.0978 0x0fc0 SCPolicySvc - ok
23:16:38.0040 0x0fc0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:16:38.0071 0x0fc0 SDRSVC - ok
23:16:38.0149 0x0fc0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:16:38.0181 0x0fc0 secdrv - ok
23:16:38.0243 0x0fc0 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
23:16:38.0259 0x0fc0 seclogon - ok
23:16:38.0290 0x0fc0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
23:16:38.0321 0x0fc0 SENS - ok
23:16:38.0337 0x0fc0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:16:38.0337 0x0fc0 SensrSvc - ok
23:16:38.0368 0x0fc0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
23:16:38.0368 0x0fc0 Serenum - ok
23:16:38.0415 0x0fc0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
23:16:38.0430 0x0fc0 Serial - ok
23:16:38.0446 0x0fc0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:16:38.0461 0x0fc0 sermouse - ok
23:16:38.0477 0x0fc0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
23:16:38.0508 0x0fc0 SessionEnv - ok
23:16:38.0539 0x0fc0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:16:38.0539 0x0fc0 sffdisk - ok
23:16:38.0555 0x0fc0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:16:38.0571 0x0fc0 sffp_mmc - ok
23:16:38.0571 0x0fc0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:16:38.0586 0x0fc0 sffp_sd - ok
23:16:38.0633 0x0fc0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:16:38.0649 0x0fc0 sfloppy - ok
23:16:38.0758 0x0fc0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:16:38.0820 0x0fc0 SharedAccess - ok
23:16:38.0914 0x0fc0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:16:38.0961 0x0fc0 ShellHWDetection - ok
23:16:38.0992 0x0fc0 [ 1BC348CF6BAA90EC8E533EF6E6A69933, 2B26F6EB701F48E092DED6A7B888F24736F2899EE81D54DD4B1E9DF7CFD36E7A ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
23:16:39.0007 0x0fc0 SiSGbeLH - ok
23:16:39.0054 0x0fc0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
23:16:39.0054 0x0fc0 SiSRaid2 - ok
23:16:39.0070 0x0fc0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:16:39.0085 0x0fc0 SiSRaid4 - ok
23:16:39.0132 0x0fc0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:16:39.0163 0x0fc0 Smb - ok
23:16:39.0226 0x0fc0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:16:39.0257 0x0fc0 SNMPTRAP - ok
23:16:39.0366 0x0fc0 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys
23:16:39.0382 0x0fc0 speedfan - ok
23:16:39.0413 0x0fc0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
23:16:39.0413 0x0fc0 spldr - ok
23:16:39.0553 0x0fc0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
23:16:39.0585 0x0fc0 Spooler - ok
23:16:40.0209 0x0fc0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
23:16:40.0318 0x0fc0 sppsvc - ok
23:16:40.0333 0x0fc0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:16:40.0365 0x0fc0 sppuinotify - ok
23:16:40.0427 0x0fc0 [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:16:40.0443 0x0fc0 srv - ok
23:16:40.0474 0x0fc0 [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:16:40.0489 0x0fc0 srv2 - ok
23:16:40.0505 0x0fc0 [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:16:40.0521 0x0fc0 srvnet - ok
23:16:40.0552 0x0fc0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:16:40.0583 0x0fc0 SSDPSRV - ok
23:16:40.0599 0x0fc0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:16:40.0614 0x0fc0 SstpSvc - ok
23:16:40.0645 0x0fc0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
23:16:40.0645 0x0fc0 stexstor - ok
23:16:40.0692 0x0fc0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
23:16:40.0723 0x0fc0 stisvc - ok
23:16:40.0739 0x0fc0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:16:40.0739 0x0fc0 swenum - ok
23:16:40.0755 0x0fc0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
23:16:40.0801 0x0fc0 swprv - ok
23:16:40.0911 0x0fc0 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
23:16:40.0973 0x0fc0 SysMain - ok
23:16:41.0004 0x0fc0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:16:41.0004 0x0fc0 TabletInputService - ok
23:16:41.0035 0x0fc0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
23:16:41.0067 0x0fc0 TapiSrv - ok
23:16:41.0191 0x0fc0 [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:16:41.0223 0x0fc0 Tcpip - ok
23:16:41.0347 0x0fc0 [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:16:41.0394 0x0fc0 TCPIP6 - ok
23:16:41.0425 0x0fc0 [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:16:41.0457 0x0fc0 tcpipreg - ok
23:16:41.0488 0x0fc0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:16:41.0503 0x0fc0 TDPIPE - ok
23:16:41.0535 0x0fc0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:16:41.0550 0x0fc0 TDTCP - ok
23:16:41.0566 0x0fc0 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:16:41.0597 0x0fc0 tdx - ok
23:16:41.0613 0x0fc0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:16:41.0613 0x0fc0 TermDD - ok
23:16:41.0659 0x0fc0 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
23:16:41.0691 0x0fc0 TermService - ok
23:16:41.0722 0x0fc0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
23:16:41.0753 0x0fc0 Themes - ok
23:16:41.0784 0x0fc0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
23:16:41.0815 0x0fc0 THREADORDER - ok
23:16:41.0847 0x0fc0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
23:16:41.0878 0x0fc0 TrkWks - ok
23:16:41.0940 0x0fc0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:16:41.0987 0x0fc0 TrustedInstaller - ok
23:16:42.0034 0x0fc0 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:16:42.0065 0x0fc0 tssecsrv - ok
23:16:42.0112 0x0fc0 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:16:42.0127 0x0fc0 TsUsbFlt - ok
23:16:42.0159 0x0fc0 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
23:16:42.0159 0x0fc0 TsUsbGD - ok
23:16:42.0190 0x0fc0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:16:42.0221 0x0fc0 tunnel - ok
23:16:42.0237 0x0fc0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:16:42.0237 0x0fc0 uagp35 - ok
23:16:42.0268 0x0fc0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:16:42.0299 0x0fc0 udfs - ok
23:16:42.0330 0x0fc0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:16:42.0330 0x0fc0 UI0Detect - ok
23:16:42.0361 0x0fc0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:16:42.0361 0x0fc0 uliagpkx - ok
23:16:42.0393 0x0fc0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:16:42.0393 0x0fc0 umbus - ok
23:16:42.0424 0x0fc0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
23:16:42.0424 0x0fc0 UmPass - ok
23:16:42.0611 0x0fc0 [ EB79C6C91A99930015EF29AE7FA802D1, 96D00BA330854C7763BF385D84D47C3D1B87C4085A91D73B558C86829930DC4B ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
23:16:42.0673 0x0fc0 UNS - ok
23:16:42.0705 0x0fc0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
23:16:42.0736 0x0fc0 upnphost - ok
23:16:42.0783 0x0fc0 [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
23:16:42.0814 0x0fc0 usbccgp - ok
23:16:42.0829 0x0fc0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:16:42.0845 0x0fc0 usbcir - ok
23:16:42.0861 0x0fc0 [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci C:\Windows\system32\drivers\usbehci.sys
23:16:42.0876 0x0fc0 usbehci - ok
23:16:42.0923 0x0fc0 [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub C:\Windows\system32\drivers\usbhub.sys
23:16:42.0939 0x0fc0 usbhub - ok
23:16:42.0939 0x0fc0 [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:16:42.0954 0x0fc0 usbohci - ok
23:16:42.0985 0x0fc0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:16:43.0032 0x0fc0 usbprint - ok
23:16:43.0048 0x0fc0 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
23:16:43.0063 0x0fc0 usbscan - ok
23:16:43.0095 0x0fc0 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
23:16:43.0110 0x0fc0 USBSTOR - ok
23:16:43.0126 0x0fc0 [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:16:43.0141 0x0fc0 usbuhci - ok
23:16:43.0157 0x0fc0 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:16:43.0173 0x0fc0 usbvideo - ok
23:16:43.0188 0x0fc0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
23:16:43.0219 0x0fc0 UxSms - ok
23:16:43.0235 0x0fc0 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] VaultSvc C:\Windows\system32\lsass.exe
23:16:43.0235 0x0fc0 VaultSvc - ok
23:16:43.0266 0x0fc0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:16:43.0282 0x0fc0 vdrvroot - ok
23:16:43.0297 0x0fc0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
23:16:43.0344 0x0fc0 vds - ok
23:16:43.0344 0x0fc0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:16:43.0360 0x0fc0 vga - ok
23:16:43.0375 0x0fc0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:16:43.0391 0x0fc0 VgaSave - ok
23:16:43.0422 0x0fc0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:16:43.0438 0x0fc0 vhdmp - ok
23:16:43.0453 0x0fc0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
23:16:43.0469 0x0fc0 viaide - ok
23:16:43.0485 0x0fc0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:16:43.0485 0x0fc0 volmgr - ok
23:16:43.0516 0x0fc0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:16:43.0531 0x0fc0 volmgrx - ok
23:16:43.0547 0x0fc0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:16:43.0563 0x0fc0 volsnap - ok
23:16:43.0594 0x0fc0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:16:43.0594 0x0fc0 vsmraid - ok
23:16:43.0672 0x0fc0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
23:16:43.0719 0x0fc0 VSS - ok
23:16:43.0734 0x0fc0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:16:43.0734 0x0fc0 vwifibus - ok
23:16:43.0750 0x0fc0 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:16:43.0765 0x0fc0 vwififlt - ok
23:16:43.0781 0x0fc0 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
23:16:43.0797 0x0fc0 vwifimp - ok
23:16:43.0812 0x0fc0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
23:16:43.0843 0x0fc0 W32Time - ok
23:16:43.0859 0x0fc0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:16:43.0875 0x0fc0 WacomPen - ok
23:16:43.0906 0x0fc0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:16:43.0921 0x0fc0 WANARP - ok
23:16:43.0937 0x0fc0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:16:43.0953 0x0fc0 Wanarpv6 - ok
23:16:43.0999 0x0fc0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
23:16:44.0046 0x0fc0 wbengine - ok
23:16:44.0062 0x0fc0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:16:44.0077 0x0fc0 WbioSrvc - ok
23:16:44.0109 0x0fc0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:16:44.0124 0x0fc0 wcncsvc - ok
23:16:44.0140 0x0fc0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:16:44.0140 0x0fc0 WcsPlugInService - ok
23:16:44.0155 0x0fc0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
23:16:44.0171 0x0fc0 Wd - ok
23:16:44.0233 0x0fc0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:16:44.0280 0x0fc0 Wdf01000 - ok
23:16:44.0311 0x0fc0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:16:44.0327 0x0fc0 WdiServiceHost - ok
23:16:44.0327 0x0fc0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:16:44.0343 0x0fc0 WdiSystemHost - ok
23:16:44.0389 0x0fc0 [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
23:16:44.0421 0x0fc0 WebClient - ok
23:16:44.0436 0x0fc0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:16:44.0467 0x0fc0 Wecsvc - ok
23:16:44.0467 0x0fc0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:16:44.0499 0x0fc0 wercplsupport - ok
23:16:44.0514 0x0fc0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
23:16:44.0545 0x0fc0 WerSvc - ok
23:16:44.0561 0x0fc0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:16:44.0592 0x0fc0 WfpLwf - ok
23:16:44.0623 0x0fc0 [ 52DED146E4797E6CCF94799E8E22BB2A, 57A29260D81AA3AD3F8C29E9CFA7CE3970D7A8BF673ADD9B256EE76C7DEC080E ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
23:16:44.0639 0x0fc0 WimFltr - ok
23:16:44.0655 0x0fc0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:16:44.0655 0x0fc0 WIMMount - ok
23:16:44.0670 0x0fc0 WinDefend - ok
23:16:44.0686 0x0fc0 WinHttpAutoProxySvc - ok
23:16:44.0764 0x0fc0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:16:44.0826 0x0fc0 Winmgmt - ok
23:16:44.0935 0x0fc0 [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
23:16:44.0982 0x0fc0 WinRM - ok
23:16:45.0091 0x0fc0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:16:45.0123 0x0fc0 WinUsb - ok
23:16:45.0216 0x0fc0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:16:45.0263 0x0fc0 Wlansvc - ok
23:16:45.0325 0x0fc0 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:16:45.0357 0x0fc0 wlcrasvc - ok
23:16:45.0497 0x0fc0 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:16:45.0544 0x0fc0 wlidsvc - ok
23:16:45.0575 0x0fc0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:16:45.0591 0x0fc0 WmiAcpi - ok
23:16:45.0622 0x0fc0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:16:45.0637 0x0fc0 wmiApSrv - ok
23:16:45.0653 0x0fc0 WMPNetworkSvc - ok
23:16:45.0684 0x0fc0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:16:45.0684 0x0fc0 WPCSvc - ok
23:16:45.0700 0x0fc0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:16:45.0715 0x0fc0 WPDBusEnum - ok
23:16:45.0731 0x0fc0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:16:45.0762 0x0fc0 ws2ifsl - ok
23:16:45.0778 0x0fc0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
23:16:45.0793 0x0fc0 wscsvc - ok
23:16:45.0793 0x0fc0 WSearch - ok
23:16:45.0934 0x0fc0 [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv C:\Windows\system32\wuaueng.dll
23:16:45.0996 0x0fc0 wuauserv - ok
23:16:46.0027 0x0fc0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:16:46.0043 0x0fc0 WudfPf - ok
23:16:46.0059 0x0fc0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:16:46.0074 0x0fc0 WUDFRd - ok
23:16:46.0090 0x0fc0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:16:46.0105 0x0fc0 wudfsvc - ok
23:16:46.0137 0x0fc0 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
23:16:46.0152 0x0fc0 WwanSvc - ok
23:16:46.0183 0x0fc0 ================ Scan global ===============================
23:16:46.0215 0x0fc0 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
23:16:46.0246 0x0fc0 [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll
23:16:46.0246 0x0fc0 [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll
23:16:46.0277 0x0fc0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:16:46.0308 0x0fc0 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
23:16:46.0324 0x0fc0 [ Global ] - ok
23:16:46.0324 0x0fc0 ================ Scan MBR ==================================
23:16:46.0339 0x0fc0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:16:46.0792 0x0fc0 \Device\Harddisk0\DR0 - ok
23:16:46.0792 0x0fc0 ================ Scan VBR ==================================
23:16:46.0807 0x0fc0 [ 331410A9C76C8D16430FBC741F7BB60C ] \Device\Harddisk0\DR0\Partition1
23:16:46.0807 0x0fc0 \Device\Harddisk0\DR0\Partition1 - ok
23:16:46.0807 0x0fc0 [ D5485C0CA4358126B84BA110EEF6AF77 ] \Device\Harddisk0\DR0\Partition2
23:16:46.0807 0x0fc0 \Device\Harddisk0\DR0\Partition2 - ok
23:16:46.0823 0x0fc0 ================ Scan generic autorun ======================
23:16:46.0870 0x0fc0 [ 31F52459AA89317FFB57EBAF9B4DD8BC, 05DA7048451BEF06B059A86D7FB3084942724F3359BD67A0DFADFB3FFFF6990A ] C:\Windows\system32\igfxtray.exe
23:16:46.0885 0x0fc0 IgfxTray - ok
23:16:46.0932 0x0fc0 [ 7CA105C4CCDFCA407859B2DF3D05A645, 36EEE251B2A221F1974A5BE3A743135EB317FF95A32A8B31DA3791573DB7D6BE ] C:\Windows\system32\igfxpers.exe
23:16:46.0963 0x0fc0 Persistence - ok
23:16:47.0104 0x0fc0 [ 4912F15F275B47D5021641648CC90BC6, 31985B1A4F035BCDC7F0EB95026973D06B2DB671FE662AE20BBEE2890A948895 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
23:16:47.0151 0x0fc0 RtHDVBg - ok
23:16:47.0213 0x0fc0 [ 757A595F75E7840A7132EC11E6E6188A, 95085E8B5432F76E0C50D79F74DECAD54662BB32FFDD575BC8CBAC2C79B1C069 ] C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe
23:16:47.0229 0x0fc0 Nuance PDF Reader-reminder - ok
23:16:47.0322 0x0fc0 [ BD87D5F5D68AC07243010A6F5176F897, D6518C2990DDAE5E88C9BE649B34A09A0C19A2EAA14967B45F6B176E34DC2EEB ] C:\Program Files (x86)\ASUS\APRP\APRP.EXE
23:16:47.0385 0x0fc0 ASUSPRP - detected UnsignedFile.Multi.Generic ( 1 )
23:16:47.0587 0x0fc0 Detect skipped due to KSN trusted
23:16:47.0587 0x0fc0 ASUSPRP - ok
23:16:47.0728 0x0fc0 [ B166415C55E416022B3339EBD6CB216E, A9E27DEAF911CB4D06056CD9E34AB55FDEB4F7E4C61A6934A2D3DD89CB598A18 ] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
23:16:47.0775 0x0fc0 Wireless Console 3 - detected UnsignedFile.Multi.Generic ( 1 )
23:16:47.0931 0x0fc0 Detect skipped due to KSN trusted
23:16:47.0931 0x0fc0 Wireless Console 3 - ok
23:16:48.0009 0x0fc0 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
23:16:48.0040 0x0fc0 UpdateLBPShortCut - ok
23:16:48.0118 0x0fc0 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
23:16:48.0149 0x0fc0 UpdateP2GoShortCut - ok
23:16:48.0196 0x0fc0 [ 2C35624F79B9ADBFE47090879F0D8673, 05FA39E574BDA62FB88BC1725FC1D95D9D5F5E7E8728171317D417C16A0A074D ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
23:16:48.0211 0x0fc0 ATKOSD2 - ok
23:16:48.0227 0x0fc0 [ A2791CF11D1ED52DBCD75D2FFD4D50E7, 9C06378E96430A70BFAF52C35B6D280DEE304D3D7E42FA9E0EECC6FBD3D6FC54 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
23:16:48.0227 0x0fc0 ATKMEDIA - ok
23:16:48.0258 0x0fc0 [ 5AEBF6FA9805C9101220AA4FB4FA17E7, A9B2FC41380211A6C44E839A95676A5BA868CEEBB56D83A780230434C2A20836 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
23:16:48.0258 0x0fc0 HControlUser - ok
23:16:48.0399 0x0fc0 [ 04E5640A8D9F29B183308AEFCD77F178, F1511C128305D1EAC90E8187E61CE9541CA1B8CB4F9312E6CE0963AEED980337 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
23:16:48.0430 0x0fc0 StartCCC - ok
23:16:48.0726 0x0fc0 [ 52F5D651B8E39F258C1C34272FEB1AB2, C13AD8762A4474D8246DE7BC023244BD74456D45348F74F77373CC61C238A0F3 ] C:\Program Files\CCleaner\CCleaner64.exe
23:16:48.0898 0x0fc0 CCleaner Monitoring - ok
23:16:48.0898 0x0fc0 Waiting for KSN requests completion. In queue: 102
23:16:49.0943 0x0fc0 Win FW state via NFP2: enabled ( trusted )
23:16:50.0099 0x0fc0 ============================================================
23:16:50.0099 0x0fc0 Scan finished
23:16:50.0099 0x0fc0 ============================================================
23:16:50.0115 0x1358 Detected object count: 1
23:16:50.0115 0x1358 Actual detected object count: 1
23:17:07.0290 0x1358 C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe - copied to quarantine
23:17:07.0290 0x1358 HKLM\SYSTEM\ControlSet001\services\chip1click - will be deleted on reboot
23:17:07.0322 0x1358 HKLM\SYSTEM\ControlSet002\services\chip1click - will be deleted on reboot
23:17:07.0524 0x1358 C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe - will be deleted on reboot
23:17:07.0524 0x1358 chip1click ( UnsignedFile.Multi.Generic ) - User select action: Delete
23:17:07.0602 0x1358 KLMD registered as C:\Windows\system32\drivers\08578915.sys
23:17:37.0149 0x1184 Deinitialize success
|
|
05.02.2017, 23:28
| #9 |
| | PUA.SpeedUpMyPC.GEN - in Quarantäne?Code:
ATTFilter 23:19:17.0592 0x0fcc TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
23:19:17.0904 0x0fcc ============================================================
23:19:17.0904 0x0fcc Current date / time: 2017/02/05 23:19:17.0904
23:19:17.0904 0x0fcc SystemInfo:
23:19:17.0904 0x0fcc
23:19:17.0904 0x0fcc OS Version: 6.1.7601 ServicePack: 1.0
23:19:17.0904 0x0fcc Product type: Workstation
23:19:17.0904 0x0fcc ComputerName: DENISE-PC
23:19:17.0904 0x0fcc UserName: Denise
23:19:17.0904 0x0fcc Windows directory: C:\Windows
23:19:17.0904 0x0fcc System windows directory: C:\Windows
23:19:17.0904 0x0fcc Running under WOW64
23:19:17.0904 0x0fcc Processor architecture: Intel x64
23:19:17.0904 0x0fcc Number of processors: 4
23:19:17.0904 0x0fcc Page size: 0x1000
23:19:17.0904 0x0fcc Boot type: Normal boot
23:19:17.0904 0x0fcc CodeIntegrityOptions = 0x00000001
23:19:17.0904 0x0fcc ============================================================
23:19:17.0904 0x0fcc KLMD ARK init status: drvProperties = 0xFFFF00, osBuild = 7601.23572, osProperties = 0x1
23:19:17.0904 0x0fcc KLMD BG init status: drvProperties = 0xFFFF00, osBuild = 7601.23572, osProperties = 0x1
23:19:17.0904 0x0fcc BG loaded
23:19:18.0808 0x0fcc System UUID: {B69B0BA3-C30B-F444-D6EA-2F7845004E3B}
23:19:19.0526 0x0fcc Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:19:19.0542 0x0fcc ============================================================
23:19:19.0542 0x0fcc \Device\Harddisk0\DR0:
23:19:19.0542 0x0fcc MBR partitions:
23:19:19.0542 0x0fcc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x1749C000
23:19:19.0542 0x0fcc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A69C800, BlocksNum 0x1FCE9000
23:19:19.0542 0x0fcc ============================================================
23:19:19.0698 0x0fcc C: <-> \Device\Harddisk0\DR0\Partition1
23:19:19.0791 0x0fcc D: <-> \Device\Harddisk0\DR0\Partition2
23:19:19.0791 0x0fcc ============================================================
23:19:19.0791 0x0fcc Initialize success
23:19:19.0791 0x0fcc ============================================================
23:19:40.0944 0x0f70 ============================================================
23:19:40.0944 0x0f70 Scan started
23:19:40.0944 0x0f70 Mode: Manual; SigCheck; TDLFS;
23:19:40.0944 0x0f70 ============================================================
23:19:40.0944 0x0f70 KSN ping started
23:19:42.0364 0x0f70 KSN ping finished: true
23:19:51.0880 0x0f70 ================ Scan system memory ========================
23:19:51.0880 0x0f70 System memory - ok
23:19:51.0880 0x0f70 ================ Scan services =============================
23:19:53.0378 0x0f70 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:20:02.0410 0x0f70 1394ohci - ok
23:20:02.0519 0x0f70 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:20:02.0566 0x0f70 ACPI - ok
23:20:02.0613 0x0f70 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:20:03.0081 0x0f70 AcpiPmi - ok
23:20:03.0674 0x0f70 [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:20:03.0721 0x0f70 AdobeFlashPlayerUpdateSvc - ok
23:20:03.0986 0x0f70 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:20:04.0001 0x0f70 adp94xx - ok
23:20:04.0142 0x0f70 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:20:04.0189 0x0f70 adpahci - ok
23:20:04.0282 0x0f70 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:20:04.0313 0x0f70 adpu320 - ok
23:20:04.0485 0x0f70 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:20:04.0547 0x0f70 AeLookupSvc - ok
23:20:04.0688 0x0f70 [ 69FD46FAC0D9C4A8ECD522AC6A7481F5, 048FA3F77423D43346A35F142DBD0ACEC190F5E68F79960856C325B3CA7DD6C9 ] AFBAgent C:\Windows\system32\FBAgent.exe
23:20:04.0719 0x0f70 AFBAgent - ok
23:20:04.0984 0x0f70 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
23:20:05.0078 0x0f70 AFD - ok
23:20:05.0203 0x0f70 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:20:05.0234 0x0f70 agp440 - ok
23:20:05.0546 0x0f70 [ 3F66D9AC081B495F91529C80BFA73E97, F62C4EF0B7BDC56CD9752AF9D6C1F355597794DEEE9B83D66A28671D42037115 ] AiCharger C:\Windows\system32\DRIVERS\AiCharger.sys
23:20:05.0561 0x0f70 AiCharger - ok
23:20:05.0655 0x0f70 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:20:05.0905 0x0f70 ALG - ok
23:20:05.0998 0x0f70 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:20:06.0014 0x0f70 aliide - ok
23:20:06.0154 0x0f70 [ AE5AE0FDDB09A922B08A371EF5DE811A, D7C77F840E8BF7BA56C1826288939ED4BAB782EC38518E54554DDB2BDA9002F6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:20:06.0185 0x0f70 AMD External Events Utility - ok
23:20:06.0232 0x0f70 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:20:06.0248 0x0f70 amdide - ok
23:20:06.0341 0x0f70 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:20:06.0419 0x0f70 AmdK8 - ok
23:20:08.0993 0x0f70 [ 4B1AB25AC54C2A27D74AB96FE79A7291, 37B83EC8E607DE71FF55EDE91067D785FBFA2D0C9312FC1862EFD365139E6350 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:20:09.0571 0x0f70 amdkmdag - ok
23:20:09.0758 0x0f70 [ 367E4AEF5402FA519EA2EA4549072A6E, 60F953526E57B2E32748F707D81CD7C109E082DDD6E54D302A561FF07829CD55 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
23:20:09.0883 0x0f70 amdkmdap - ok
23:20:09.0961 0x0f70 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
23:20:10.0054 0x0f70 AmdPPM - ok
23:20:10.0148 0x0f70 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:20:10.0195 0x0f70 amdsata - ok
23:20:10.0319 0x0f70 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
23:20:10.0335 0x0f70 amdsbs - ok
23:20:10.0366 0x0f70 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:20:10.0397 0x0f70 amdxata - ok
23:20:10.0507 0x0f70 [ FCE5C79717A487BDC71F3DEC78A684CA, F5520F112A4EBDD10444AA5E9FDB9125219FCF768FEB95AB608BC84D60136816 ] AppID C:\Windows\system32\drivers\appid.sys
23:20:10.0678 0x0f70 AppID - ok
23:20:10.0819 0x0f70 [ 8921E1D8AE5171691F186A7C5B98B630, 4A37313BB94D4B49D0294C9439AD0793DE328F9F4DA1C47E34E6ACEA46AF6E14 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:20:10.0975 0x0f70 AppIDSvc - ok
23:20:11.0224 0x0f70 [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo C:\Windows\System32\appinfo.dll
23:20:11.0302 0x0f70 Appinfo - ok
23:20:11.0708 0x0f70 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
23:20:11.0739 0x0f70 arc - ok
23:20:11.0879 0x0f70 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:20:11.0911 0x0f70 arcsas - ok
23:20:12.0691 0x0f70 [ FA713019412C061385F09BD373BF747A, 83ED108FEE95BA7CBE87C845154F97FCB4597F9D9BEC1F802B92D8994BD5931D ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
23:20:12.0706 0x0f70 ASLDRService - ok
23:20:12.0831 0x0f70 [ D6D2BB2F4F5868549DDE75F3146BC84E, FE2965649FF62696D30A4A7C377064EA2A27F03511DAF781913AA055A5FED323 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
23:20:12.0971 0x0f70 asmthub3 - ok
23:20:13.0159 0x0f70 [ 1E758172367DC2A3653F16586D62A3F0, 5395781F2B71CD9050F6CF75779D661F98E816A263ABA51153D14E21B73D4BC4 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
23:20:13.0237 0x0f70 asmtxhci - ok
23:20:14.0469 0x0f70 [ EE424A5CE56E3923D59BB7DE2E15036D, 8B8196870EFE74D43EDA72674021A46846D370E97A6A058134D84A721AECD091 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:20:15.0701 0x0f70 aspnet_state - ok
23:20:15.0998 0x0f70 [ EBDFC0F5B1E22CDED582BF882C95166B, EA6623BCABD5F8C7F74432CB83534F0A428F0D948D8967F053677585489EB52B ] ASUS InstantOn C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
23:20:16.0013 0x0f70 ASUS InstantOn - ok
23:20:16.0123 0x0f70 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:20:18.0478 0x0f70 AsyncMac - ok
23:20:18.0572 0x0f70 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:20:18.0603 0x0f70 atapi - ok
23:20:19.0133 0x0f70 [ A5E770426D18F8EF332A593F3289DA91, 87AC97758618765814B630CB1A189CD690DC6B0EAAE93D80EDE7771FB362C9AF ] athr C:\Windows\system32\DRIVERS\athrx.sys
23:20:19.0430 0x0f70 athr - ok
23:20:19.0679 0x0f70 [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
23:20:19.0695 0x0f70 ATKGFNEXSrv - ok
23:20:20.0069 0x0f70 [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO_ C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
23:20:20.0085 0x0f70 ATKWMIACPIIO_ - ok
23:20:20.0241 0x0f70 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:20:20.0413 0x0f70 AudioEndpointBuilder - ok
23:20:20.0569 0x0f70 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:20:20.0600 0x0f70 AudioSrv - ok
23:20:20.0756 0x0f70 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:20:21.0239 0x0f70 AxInstSV - ok
23:20:21.0349 0x0f70 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
23:20:21.0411 0x0f70 b06bdrv - ok
23:20:21.0489 0x0f70 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:20:21.0520 0x0f70 b57nd60a - ok
23:20:21.0551 0x0f70 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:20:21.0583 0x0f70 BDESVC - ok
23:20:21.0629 0x0f70 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:20:21.0723 0x0f70 Beep - ok
23:20:21.0910 0x0f70 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:20:21.0973 0x0f70 BFE - ok
23:20:22.0129 0x0f70 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
23:20:23.0501 0x0f70 BITS - ok
23:20:23.0564 0x0f70 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:20:23.0611 0x0f70 blbdrive - ok
23:20:23.0689 0x0f70 [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:20:23.0767 0x0f70 bowser - ok
23:20:23.0798 0x0f70 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
23:20:23.0829 0x0f70 BrFiltLo - ok
23:20:23.0876 0x0f70 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
23:20:23.0923 0x0f70 BrFiltUp - ok
23:20:23.0954 0x0f70 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
23:20:24.0016 0x0f70 BridgeMP - ok
23:20:24.0110 0x0f70 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:20:24.0157 0x0f70 Browser - ok
23:20:24.0266 0x0f70 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:20:24.0453 0x0f70 Brserid - ok
23:20:24.0500 0x0f70 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:20:24.0547 0x0f70 BrSerWdm - ok
23:20:24.0593 0x0f70 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:20:24.0656 0x0f70 BrUsbMdm - ok
23:20:24.0671 0x0f70 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:20:24.0718 0x0f70 BrUsbSer - ok
23:20:24.0781 0x0f70 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
23:20:24.0843 0x0f70 BthEnum - ok
23:20:24.0890 0x0f70 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:20:24.0921 0x0f70 BTHMODEM - ok
23:20:24.0983 0x0f70 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:20:24.0999 0x0f70 BthPan - ok
23:20:25.0217 0x0f70 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
23:20:25.0264 0x0f70 BTHPORT - ok
23:20:25.0311 0x0f70 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:20:25.0373 0x0f70 bthserv - ok
23:20:25.0420 0x0f70 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
23:20:25.0467 0x0f70 BTHUSB - ok
23:20:25.0561 0x0f70 catchme - ok
23:20:25.0592 0x0f70 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:20:25.0670 0x0f70 cdfs - ok
23:20:25.0748 0x0f70 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:20:25.0826 0x0f70 cdrom - ok
23:20:25.0935 0x0f70 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:20:25.0982 0x0f70 CertPropSvc - ok
23:20:26.0044 0x0f70 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
23:20:26.0060 0x0f70 circlass - ok
23:20:26.0153 0x0f70 [ 3D67C27DD17B254D7915FA16A5AE3573, 5B3A6C6A7F940C06362775DAF13CEADA37C7AA84A509458A57C23B4369970A90 ] CLFS C:\Windows\system32\CLFS.sys
23:20:26.0169 0x0f70 CLFS - ok
23:20:26.0263 0x0f70 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:20:26.0294 0x0f70 clr_optimization_v2.0.50727_32 - ok
23:20:26.0356 0x0f70 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:20:26.0387 0x0f70 clr_optimization_v2.0.50727_64 - ok
23:20:26.0668 0x0f70 [ 5BAF4F1296D4D91FC28560CDB4C37C4B, ACA4BC57ED1F8432F18F0F215EC7FF956BAEF6E02760779E264E4008A979E9DD ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:20:27.0433 0x0f70 clr_optimization_v4.0.30319_32 - ok
23:20:27.0511 0x0f70 [ 569B54004A7E85A74FD92841DE6058E2, 58949313D0F6B1C06359B2F3C68E29940B1655A17E93FFC3718F6D2EAE1633E4 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:20:27.0994 0x0f70 clr_optimization_v4.0.30319_64 - ok
23:20:28.0072 0x0f70 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:20:28.0135 0x0f70 CmBatt - ok
23:20:28.0166 0x0f70 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:20:28.0181 0x0f70 cmdide - ok
23:20:28.0384 0x0f70 [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys
23:20:28.0431 0x0f70 CNG - ok
23:20:28.0509 0x0f70 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
23:20:28.0525 0x0f70 Compbatt - ok
23:20:28.0556 0x0f70 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
23:20:28.0587 0x0f70 CompositeBus - ok
23:20:28.0603 0x0f70 COMSysApp - ok
23:20:28.0634 0x0f70 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:20:28.0649 0x0f70 crcdisk - ok
23:20:28.0805 0x0f70 [ 2C6632CECFDBBE793FDA8AF9CA55A9CC, 335188515F798483660E529204A13012E4D21B0ECA489224A11C26F91A5B3CCE ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:20:28.0868 0x0f70 CryptSvc - ok
23:20:29.0071 0x0f70 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
23:20:29.0102 0x0f70 dbupdate - ok
23:20:29.0102 0x0f70 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
23:20:29.0117 0x0f70 dbupdatem - ok
23:20:29.0117 0x0f70 dbx - ok
23:20:29.0211 0x0f70 [ 2C5A991F0320D95BAC80D0C31F43A79E, CC7887132AF15C77676A3186429FE0071DCC8DC9C6252314D99C02E54867BE10 ] DbxSvc C:\Windows\system32\DbxSvc.exe
23:20:29.0227 0x0f70 DbxSvc - ok
23:20:29.0351 0x0f70 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll
23:20:29.0429 0x0f70 DcomLaunch - ok
23:20:29.0570 0x0f70 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:20:29.0648 0x0f70 defragsvc - ok
23:20:29.0695 0x0f70 [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:20:29.0788 0x0f70 DfsC - ok
23:20:29.0960 0x0f70 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:20:30.0038 0x0f70 Dhcp - ok
23:20:30.0350 0x0f70 [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll
23:20:30.0428 0x0f70 DiagTrack - ok
23:20:30.0475 0x0f70 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:20:30.0568 0x0f70 discache - ok
23:20:30.0693 0x0f70 [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
23:20:30.0724 0x0f70 Disk - ok
23:20:30.0818 0x0f70 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:20:30.0880 0x0f70 Dnscache - ok
23:20:30.0958 0x0f70 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:20:31.0021 0x0f70 dot3svc - ok
23:20:31.0145 0x0f70 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:20:31.0239 0x0f70 DPS - ok
23:20:31.0348 0x0f70 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:20:31.0426 0x0f70 drmkaud - ok
23:20:31.0676 0x0f70 [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:20:31.0707 0x0f70 DXGKrnl - ok
23:20:31.0801 0x0f70 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:20:31.0847 0x0f70 EapHost - ok
23:20:32.0659 0x0f70 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
23:20:32.0861 0x0f70 ebdrv - ok
23:20:32.0924 0x0f70 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] EFS C:\Windows\System32\lsass.exe
23:20:32.0986 0x0f70 EFS - ok
23:20:33.0142 0x0f70 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:20:33.0392 0x0f70 ehRecvr - ok
23:20:33.0423 0x0f70 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:20:33.0454 0x0f70 ehSched - ok
23:20:33.0548 0x0f70 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:20:33.0610 0x0f70 elxstor - ok
23:20:33.0626 0x0f70 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:20:33.0641 0x0f70 ErrDev - ok
23:20:33.0719 0x0f70 [ B46626A89C943DD2799D403F0CB34E42, 19FC07C51598B689140B9548D4D9FE051497B28D17E1A952620CCEAE72E07113 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
23:20:33.0751 0x0f70 ETD - ok
23:20:33.0907 0x0f70 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:20:33.0985 0x0f70 EventSystem - ok
23:20:34.0031 0x0f70 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:20:34.0125 0x0f70 exfat - ok
23:20:34.0265 0x0f70 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:20:34.0297 0x0f70 fastfat - ok
23:20:34.0359 0x0f70 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:20:34.0453 0x0f70 Fax - ok
23:20:34.0468 0x0f70 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
23:20:34.0484 0x0f70 fdc - ok
23:20:34.0531 0x0f70 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:20:34.0562 0x0f70 fdPHost - ok
23:20:34.0593 0x0f70 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:20:34.0640 0x0f70 FDResPub - ok
23:20:34.0671 0x0f70 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:20:34.0687 0x0f70 FileInfo - ok
23:20:34.0687 0x0f70 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:20:34.0718 0x0f70 Filetrace - ok
23:20:34.0749 0x0f70 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
23:20:34.0796 0x0f70 flpydisk - ok
23:20:35.0045 0x0f70 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:20:35.0092 0x0f70 FltMgr - ok
23:20:35.0482 0x0f70 [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache C:\Windows\system32\FntCache.dll
23:20:35.0607 0x0f70 FontCache - ok
23:20:35.0841 0x0f70 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:20:35.0872 0x0f70 FontCache3.0.0.0 - ok
23:20:35.0919 0x0f70 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:20:35.0966 0x0f70 FsDepends - ok
23:20:36.0044 0x0f70 [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
23:20:36.0059 0x0f70 fssfltr - ok
23:20:36.0605 0x0f70 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:20:36.0637 0x0f70 fsssvc - ok
23:20:36.0683 0x0f70 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:20:36.0715 0x0f70 Fs_Rec - ok
23:20:36.0777 0x0f70 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:20:36.0808 0x0f70 fvevol - ok
23:20:36.0871 0x0f70 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:20:36.0886 0x0f70 gagp30kx - ok
23:20:36.0949 0x0f70 [ 16C2A6BCDDA8952C2035DEC861492A19, 9023CD3A2C1009786A48EF7FBCC97ED1724C836279424A4D465CCE1AFA2DBDDA ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
23:20:36.0980 0x0f70 ggflt - ok
23:20:37.0011 0x0f70 [ 6B503DF845EABF3457E49FBBDA26C10E, A1553E3822EDEA26D8E67FCC7F9EA40DFBED49EC92FD5674AAF938F2D58CF964 ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
23:20:37.0042 0x0f70 ggsemc - ok
23:20:37.0307 0x0f70 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
23:20:37.0432 0x0f70 gpsvc - ok
23:20:37.0651 0x0f70 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:20:37.0666 0x0f70 gupdate - ok
23:20:37.0697 0x0f70 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:20:37.0697 0x0f70 gupdatem - ok
23:20:37.0744 0x0f70 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:20:37.0838 0x0f70 hcw85cir - ok
23:20:37.0900 0x0f70 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:20:38.0041 0x0f70 HdAudAddService - ok
23:20:38.0072 0x0f70 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:20:38.0119 0x0f70 HDAudBus - ok
23:20:38.0134 0x0f70 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
23:20:38.0150 0x0f70 HidBatt - ok
23:20:38.0165 0x0f70 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:20:38.0181 0x0f70 HidBth - ok
23:20:38.0197 0x0f70 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
23:20:38.0212 0x0f70 HidIr - ok
23:20:38.0259 0x0f70 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
23:20:38.0290 0x0f70 hidserv - ok
23:20:38.0353 0x0f70 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:20:38.0368 0x0f70 HidUsb - ok
23:20:38.0399 0x0f70 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:20:38.0446 0x0f70 hkmsvc - ok
23:20:38.0493 0x0f70 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:20:38.0555 0x0f70 HomeGroupListener - ok
23:20:38.0649 0x0f70 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:20:38.0727 0x0f70 HomeGroupProvider - ok
23:20:38.0758 0x0f70 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:20:38.0789 0x0f70 HpSAMD - ok
23:20:38.0883 0x0f70 [ EC80F3ECC5F8543E22BBCB037D837CA9, 23A4AE80A6C317CE77BD9D352CD9CED8649E3AD98A7C0A2044138BB20B46F398 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
23:20:38.0883 0x0f70 HPSupportSolutionsFrameworkService - ok
23:20:39.0133 0x0f70 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:20:39.0242 0x0f70 HTTP - ok
23:20:39.0398 0x0f70 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:20:39.0413 0x0f70 hwpolicy - ok
23:20:39.0460 0x0f70 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:20:39.0491 0x0f70 i8042prt - ok
23:20:39.0616 0x0f70 [ 26CF4275034214ECEDD8EC17B0A18A99, 95A08C63971C28F1BC97040C0ADA247E3B43DE7D937B14E33A394B955D0AC8B7 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:20:39.0647 0x0f70 iaStor - ok
23:20:39.0741 0x0f70 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:20:39.0803 0x0f70 iaStorV - ok
23:20:39.0928 0x0f70 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:20:39.0959 0x0f70 idsvc - ok
23:20:39.0991 0x0f70 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:20:40.0022 0x0f70 iirsp - ok
23:20:40.0256 0x0f70 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:20:40.0334 0x0f70 IKEEXT - ok
23:20:40.0599 0x0f70 [ 3F2AAD1E888E9EEEB82500F88A5503B3, E657435ADF554842415D68A5500423A943CAE929EF022BE1E6658E7C163784CF ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:20:40.0661 0x0f70 IntcAzAudAddService - ok
23:20:40.0849 0x0f70 [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
23:20:40.0942 0x0f70 IntcDAud - ok
23:20:40.0989 0x0f70 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:20:41.0005 0x0f70 intelide - ok
23:20:42.0377 0x0f70 [ 33FAA40B288002C89529DBD14F3AB72C, 670BA536796322122EBD93F256331899DD2E1834471B017A58F74132EE8DFDB7 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
23:20:42.0736 0x0f70 intelkmd - ok
23:20:42.0783 0x0f70 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:20:42.0830 0x0f70 intelppm - ok
23:20:42.0845 0x0f70 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:20:42.0892 0x0f70 IPBusEnum - ok
23:20:42.0908 0x0f70 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:20:42.0955 0x0f70 IpFilterDriver - ok
23:20:43.0126 0x0f70 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:20:43.0204 0x0f70 iphlpsvc - ok
23:20:43.0220 0x0f70 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:20:43.0251 0x0f70 IPMIDRV - ok
23:20:43.0282 0x0f70 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:20:43.0407 0x0f70 IPNAT - ok
23:20:43.0438 0x0f70 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:20:43.0532 0x0f70 IRENUM - ok
23:20:43.0547 0x0f70 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:20:43.0594 0x0f70 isapnp - ok
23:20:43.0688 0x0f70 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:20:43.0735 0x0f70 iScsiPrt - ok
23:20:43.0750 0x0f70 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:20:43.0766 0x0f70 kbdclass - ok
23:20:43.0797 0x0f70 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:20:43.0969 0x0f70 kbdhid - ok
23:20:44.0015 0x0f70 [ E63EF8C3271D014F14E2469CE75FECB4, 3A8DFA4B446AFDC35F01FD5218D0BEBC510A1E3DE9976210F00D19767D0F9069 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
23:20:44.0031 0x0f70 kbfiltr - ok
23:20:44.0062 0x0f70 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] KeyIso C:\Windows\system32\lsass.exe
23:20:44.0093 0x0f70 KeyIso - ok
23:20:44.0140 0x0f70 [ 6F5F0C6160EF237F0243C1E416EEBA98, 8BA8AA0D71350A74E294A731226B1638C6059013D645ABDE7188F7733E320FBD ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:20:44.0171 0x0f70 KSecDD - ok
23:20:44.0234 0x0f70 [ 05529E53B286FD60E7EF04EF138CABFD, 6C045750DCD3EE76F748582513AD4FA99C0E8E56B616725CD48DCA1068FF8923 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:20:44.0265 0x0f70 KSecPkg - ok
23:20:44.0327 0x0f70 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:20:44.0390 0x0f70 ksthunk - ok
23:20:44.0515 0x0f70 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:20:44.0593 0x0f70 KtmRm - ok
23:20:44.0639 0x0f70 [ 033B4AED2C5519072C0D81E00804D003, 6C450A604C382416C482FED43098B4E95BD61B480B0CEFD728A269446AF18708 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
23:20:44.0671 0x0f70 L1C - ok
23:20:44.0717 0x0f70 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
23:20:44.0795 0x0f70 LanmanServer - ok
23:20:44.0842 0x0f70 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:20:44.0905 0x0f70 LanmanWorkstation - ok
23:20:44.0967 0x0f70 [ 02538E602280C07438C94489DCBE77D5, 2E2B60E5FB7A274F4945444D5EDB058E62CAC268C5336FF8F4B9E82245095211 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
23:20:44.0983 0x0f70 libusb0 - ok
23:20:45.0014 0x0f70 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:20:45.0123 0x0f70 lltdio - ok
23:20:45.0263 0x0f70 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:20:45.0388 0x0f70 lltdsvc - ok
23:20:45.0419 0x0f70 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:20:45.0482 0x0f70 lmhosts - ok
23:20:45.0685 0x0f70 [ 0803906D607A9B83184447B75B60ECC2, A7A599C4CEDD4AC4196A558442E80B4F852AF6C6104A53C8819A79AA5D388DE8 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
23:20:45.0716 0x0f70 LMS - ok
23:20:45.0778 0x0f70 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:20:45.0809 0x0f70 LSI_FC - ok
23:20:45.0841 0x0f70 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:20:45.0856 0x0f70 LSI_SAS - ok
23:20:45.0872 0x0f70 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
23:20:45.0887 0x0f70 LSI_SAS2 - ok
23:20:45.0903 0x0f70 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:20:45.0919 0x0f70 LSI_SCSI - ok
23:20:45.0934 0x0f70 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:20:46.0043 0x0f70 luafv - ok
23:20:46.0121 0x0f70 [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:20:46.0153 0x0f70 MBAMProtector - ok
23:20:46.0309 0x0f70 [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
23:20:46.0355 0x0f70 MBAMService - ok
23:20:46.0433 0x0f70 [ 452ACB7A9914398D9E18CCCFFCF92208, 754AF45C19731C356E7E84497B04E0333759AC86DC553BA275EFC09845E43E4D ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
23:20:46.0449 0x0f70 MBAMWebAccessControl - ok
23:20:46.0480 0x0f70 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:20:46.0496 0x0f70 Mcx2Svc - ok
23:20:46.0527 0x0f70 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
23:20:46.0543 0x0f70 megasas - ok
23:20:46.0683 0x0f70 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
23:20:46.0699 0x0f70 MegaSR - ok
23:20:46.0745 0x0f70 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
23:20:46.0745 0x0f70 MEIx64 - ok
23:20:46.0777 0x0f70 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:20:46.0839 0x0f70 MMCSS - ok
23:20:46.0870 0x0f70 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:20:46.0964 0x0f70 Modem - ok
23:20:47.0011 0x0f70 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:20:47.0057 0x0f70 monitor - ok
23:20:47.0135 0x0f70 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:20:47.0167 0x0f70 mouclass - ok
23:20:47.0182 0x0f70 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:20:47.0229 0x0f70 mouhid - ok
23:20:47.0245 0x0f70 [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:20:47.0260 0x0f70 mountmgr - ok
23:20:47.0369 0x0f70 [ ADF79A49E942C91D1FC9863CBFDD6B58, C2B2A792C4717133DCAE6297EE3F5D985B11D3C1E68A8DC23985AC6B78ACDE98 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:20:47.0401 0x0f70 MozillaMaintenance - ok
23:20:47.0463 0x0f70 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:20:47.0494 0x0f70 mpio - ok
23:20:47.0525 0x0f70 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:20:47.0588 0x0f70 mpsdrv - ok
23:20:47.0806 0x0f70 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:20:47.0853 0x0f70 MpsSvc - ok
23:20:47.0947 0x0f70 [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:20:47.0993 0x0f70 MRxDAV - ok
23:20:48.0040 0x0f70 [ 632E8A00090E4F85F304E152C92C7F2C, A3098941251A8327C95E6B1122384D54FB0ED705A9215577D968EA5B5FD88C87 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:20:48.0134 0x0f70 mrxsmb - ok
23:20:48.0259 0x0f70 [ 0D9C05484F2F4BD9D33A615D5DBE67EA, 1E164B631B1CD85DD5B205284CB547B189609946490AAABD22741743BFB413DF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:20:48.0290 0x0f70 mrxsmb10 - ok
23:20:48.0368 0x0f70 [ 6123E6FECC1C164022868FB1982271BE, 417E6C7AFF8B014B31AFCC202B0DCEECBDBB73205DF8C3EFC7E313664E284178 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:20:48.0399 0x0f70 mrxsmb20 - ok
23:20:48.0430 0x0f70 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:20:48.0446 0x0f70 msahci - ok
23:20:48.0493 0x0f70 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:20:48.0508 0x0f70 msdsm - ok
23:20:48.0571 0x0f70 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:20:48.0633 0x0f70 MSDTC - ok
23:20:48.0664 0x0f70 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:20:48.0727 0x0f70 Msfs - ok
23:20:48.0742 0x0f70 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:20:48.0805 0x0f70 mshidkmdf - ok
23:20:48.0820 0x0f70 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:20:48.0820 0x0f70 msisadrv - ok
23:20:48.0851 0x0f70 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:20:48.0898 0x0f70 MSiSCSI - ok
23:20:48.0898 0x0f70 msiserver - ok
23:20:48.0945 0x0f70 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:20:48.0976 0x0f70 MSKSSRV - ok
23:20:48.0992 0x0f70 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:20:49.0023 0x0f70 MSPCLOCK - ok
23:20:49.0023 0x0f70 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:20:49.0070 0x0f70 MSPQM - ok
23:20:49.0101 0x0f70 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:20:49.0117 0x0f70 MsRPC - ok
23:20:49.0132 0x0f70 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:20:49.0148 0x0f70 mssmbios - ok
23:20:49.0179 0x0f70 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:20:49.0241 0x0f70 MSTEE - ok
23:20:49.0273 0x0f70 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
23:20:49.0304 0x0f70 MTConfig - ok
23:20:49.0335 0x0f70 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:20:49.0351 0x0f70 Mup - ok
23:20:49.0475 0x0f70 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:20:49.0538 0x0f70 napagent - ok
23:20:49.0616 0x0f70 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:20:49.0678 0x0f70 NativeWifiP - ok
23:20:49.0850 0x0f70 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:20:49.0912 0x0f70 NDIS - ok
23:20:49.0959 0x0f70 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:20:50.0037 0x0f70 NdisCap - ok
23:20:50.0084 0x0f70 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:20:50.0115 0x0f70 NdisTapi - ok
23:20:50.0146 0x0f70 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:20:50.0193 0x0f70 Ndisuio - ok
23:20:50.0255 0x0f70 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:20:50.0411 0x0f70 NdisWan - ok
23:20:50.0427 0x0f70 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:20:50.0474 0x0f70 NDProxy - ok
23:20:50.0521 0x0f70 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:20:50.0614 0x0f70 NetBIOS - ok
23:20:50.0692 0x0f70 [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:20:50.0801 0x0f70 NetBT - ok
23:20:50.0833 0x0f70 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] Netlogon C:\Windows\system32\lsass.exe
23:20:50.0864 0x0f70 Netlogon - ok
23:20:50.0926 0x0f70 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:20:50.0957 0x0f70 Netman - ok
23:20:51.0051 0x0f70 [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:20:51.0145 0x0f70 NetMsmqActivator - ok
23:20:51.0160 0x0f70 [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:20:51.0176 0x0f70 NetPipeActivator - ok
23:20:51.0238 0x0f70 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:20:51.0316 0x0f70 netprofm - ok
23:20:51.0316 0x0f70 [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:20:51.0332 0x0f70 NetTcpActivator - ok
23:20:51.0332 0x0f70 [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:20:51.0347 0x0f70 NetTcpPortSharing - ok
23:20:51.0394 0x0f70 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:20:51.0425 0x0f70 nfrd960 - ok
23:20:51.0488 0x0f70 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:20:51.0613 0x0f70 NlaSvc - ok
23:20:51.0628 0x0f70 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:20:51.0706 0x0f70 Npfs - ok
23:20:51.0769 0x0f70 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:20:51.0878 0x0f70 nsi - ok
23:20:51.0925 0x0f70 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:20:51.0971 0x0f70 nsiproxy - ok
23:20:52.0330 0x0f70 [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:20:52.0377 0x0f70 Ntfs - ok
23:20:52.0408 0x0f70 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:20:52.0424 0x0f70 Null - ok
23:20:52.0549 0x0f70 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:20:52.0580 0x0f70 nvraid - ok
23:20:52.0611 0x0f70 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:20:52.0642 0x0f70 nvstor - ok
23:20:52.0658 0x0f70 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:20:52.0673 0x0f70 nv_agp - ok
23:20:52.0705 0x0f70 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:20:52.0736 0x0f70 ohci1394 - ok
23:20:52.0829 0x0f70 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:20:52.0845 0x0f70 ose - ok
23:20:54.0389 0x0f70 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:20:54.0499 0x0f70 osppsvc - ok
23:20:54.0639 0x0f70 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:20:54.0701 0x0f70 p2pimsvc - ok
23:20:54.0779 0x0f70 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:20:54.0873 0x0f70 p2psvc - ok
23:20:54.0920 0x0f70 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
23:20:54.0967 0x0f70 Parport - ok
23:20:54.0998 0x0f70 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:20:55.0029 0x0f70 partmgr - ok
23:20:55.0107 0x0f70 [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
23:20:55.0185 0x0f70 PcaSvc - ok
23:20:55.0247 0x0f70 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:20:55.0263 0x0f70 pci - ok
23:20:55.0325 0x0f70 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:20:55.0341 0x0f70 pciide - ok
23:20:55.0403 0x0f70 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:20:55.0419 0x0f70 pcmcia - ok
23:20:55.0466 0x0f70 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:20:55.0497 0x0f70 pcw - ok
23:20:55.0762 0x0f70 [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:20:55.0809 0x0f70 PEAUTH - ok
23:20:55.0949 0x0f70 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:20:56.0027 0x0f70 PerfHost - ok
23:20:56.0137 0x0f70 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:20:56.0293 0x0f70 pla - ok
23:20:56.0480 0x0f70 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:20:56.0558 0x0f70 PlugPlay - ok
23:20:56.0558 0x0f70 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:20:56.0589 0x0f70 PNRPAutoReg - ok
23:20:56.0605 0x0f70 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:20:56.0620 0x0f70 PNRPsvc - ok
23:20:56.0745 0x0f70 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:20:56.0792 0x0f70 PolicyAgent - ok
23:20:56.0823 0x0f70 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:20:56.0870 0x0f70 Power - ok
23:20:56.0917 0x0f70 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:20:56.0963 0x0f70 PptpMiniport - ok
23:20:56.0979 0x0f70 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
23:20:56.0979 0x0f70 Processor - ok
23:20:57.0010 0x0f70 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
23:20:57.0041 0x0f70 ProfSvc - ok
23:20:57.0057 0x0f70 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] ProtectedStorage C:\Windows\system32\lsass.exe
23:20:57.0073 0x0f70 ProtectedStorage - ok
23:20:57.0088 0x0f70 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:20:57.0119 0x0f70 Psched - ok
23:20:57.0369 0x0f70 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:20:57.0494 0x0f70 ql2300 - ok
23:20:57.0525 0x0f70 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:20:57.0541 0x0f70 ql40xx - ok
23:20:57.0572 0x0f70 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:20:57.0587 0x0f70 QWAVE - ok
23:20:57.0650 0x0f70 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:20:57.0681 0x0f70 QWAVEdrv - ok
23:20:57.0712 0x0f70 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:20:57.0728 0x0f70 RasAcd - ok
23:20:57.0915 0x0f70 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:20:57.0962 0x0f70 RasAgileVpn - ok
23:20:58.0009 0x0f70 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:20:58.0055 0x0f70 RasAuto - ok
23:20:58.0102 0x0f70 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:20:58.0149 0x0f70 Rasl2tp - ok
23:20:58.0196 0x0f70 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:20:58.0243 0x0f70 RasMan - ok
23:20:58.0289 0x0f70 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:20:58.0321 0x0f70 RasPppoe - ok
23:20:58.0352 0x0f70 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:20:58.0383 0x0f70 RasSstp - ok
23:20:58.0492 0x0f70 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:20:58.0570 0x0f70 rdbss - ok
23:20:58.0617 0x0f70 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
23:20:58.0664 0x0f70 rdpbus - ok
23:20:58.0679 0x0f70 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:20:58.0711 0x0f70 RDPCDD - ok
23:20:58.0726 0x0f70 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:20:58.0773 0x0f70 RDPENCDD - ok
23:20:58.0820 0x0f70 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:20:58.0882 0x0f70 RDPREFMP - ok
23:20:58.0960 0x0f70 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:20:59.0007 0x0f70 RDPWD - ok
23:20:59.0038 0x0f70 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:20:59.0054 0x0f70 rdyboost - ok
23:20:59.0085 0x0f70 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:20:59.0116 0x0f70 RemoteAccess - ok
23:20:59.0210 0x0f70 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:20:59.0257 0x0f70 RemoteRegistry - ok
23:20:59.0319 0x0f70 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:20:59.0335 0x0f70 RFCOMM - ok
23:20:59.0366 0x0f70 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:20:59.0413 0x0f70 RpcEptMapper - ok
23:20:59.0459 0x0f70 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:20:59.0459 0x0f70 RpcLocator - ok
23:20:59.0584 0x0f70 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll
23:20:59.0600 0x0f70 RpcSs - ok
23:20:59.0678 0x0f70 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:20:59.0709 0x0f70 rspndr - ok
23:20:59.0865 0x0f70 [ CE0A1D8A59410E698140821E4E69DA0D, 4AEBF07C4016AF62B1A4F1C838FDC3A272FC643E596A86E4FE3C34F10523E318 ] RSUSBVSTOR C:\Windows\system32\Drivers\RtsUVStor.sys
23:20:59.0881 0x0f70 RSUSBVSTOR - ok
23:20:59.0974 0x0f70 [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
23:20:59.0990 0x0f70 RTL8167 - ok
23:21:00.0052 0x0f70 [ B49951A2C8FD81307707443D01936E37, 3F9A80FAA39A29F71A9028C576AB183632FFA662AFC8CD9D6A2E1E2F462B804C ] s217bus C:\Windows\system32\DRIVERS\s217bus.sys
23:21:00.0068 0x0f70 s217bus - ok
23:21:00.0083 0x0f70 [ 58204EC551D1A94D60CAC130440F0FEB, FD9CC9D6473A860DD5B4CAFD3279AB97B1A54C5D2F44941112DB7C8BCE773595 ] s217mdfl C:\Windows\system32\DRIVERS\s217mdfl.sys
23:21:00.0099 0x0f70 s217mdfl - ok
23:21:00.0115 0x0f70 [ E2B3DE89339A7A807520C6063CD146D3, 72023A16E6880D858BE6524D34E9859DA998E07476FF50085D159285B754A983 ] s217mdm C:\Windows\system32\DRIVERS\s217mdm.sys
23:21:00.0130 0x0f70 s217mdm - ok
23:21:00.0146 0x0f70 [ 7BC7D18351B846F4544B54DB38FB4208, 3C6E37BC2E8FE41F193A66300CB8A2B5BC0339B91327577EC51CA7B636EC39E6 ] s217nd5 C:\Windows\system32\DRIVERS\s217nd5.sys
23:21:00.0146 0x0f70 s217nd5 - ok
23:21:00.0161 0x0f70 [ D498B2082F51858F121D4584A7787CD5, 4A3D93EC31C1C949285FBBA8FB0C839D2C30DF58AC17ED646FAEC06DD7122A62 ] s217obex C:\Windows\system32\DRIVERS\s217obex.sys
23:21:00.0161 0x0f70 s217obex - ok
23:21:00.0177 0x0f70 [ 43512D0C3A59EB20FDA06CE4265A1549, 806BBA62AF2D792DCC2F4A4FB789A1D0C9B365F869E7950B31572BAE809CEB07 ] s217unic C:\Windows\system32\DRIVERS\s217unic.sys
23:21:00.0193 0x0f70 s217unic - ok
23:21:00.0208 0x0f70 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] SamSs C:\Windows\system32\lsass.exe
23:21:00.0208 0x0f70 SamSs - ok
23:21:00.0271 0x0f70 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:21:00.0286 0x0f70 sbp2port - ok
23:21:00.0317 0x0f70 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:21:00.0364 0x0f70 SCardSvr - ok
23:21:00.0411 0x0f70 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:21:00.0489 0x0f70 scfilter - ok
23:21:00.0817 0x0f70 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
23:21:00.0895 0x0f70 Schedule - ok
23:21:00.0926 0x0f70 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:21:00.0957 0x0f70 SCPolicySvc - ok
23:21:00.0973 0x0f70 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:21:01.0004 0x0f70 SDRSVC - ok
23:21:01.0035 0x0f70 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:21:01.0066 0x0f70 secdrv - ok
23:21:01.0097 0x0f70 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
23:21:01.0144 0x0f70 seclogon - ok
23:21:01.0191 0x0f70 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
23:21:01.0238 0x0f70 SENS - ok
23:21:01.0269 0x0f70 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:21:01.0300 0x0f70 SensrSvc - ok
23:21:01.0331 0x0f70 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
23:21:01.0331 0x0f70 Serenum - ok
23:21:01.0347 0x0f70 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
23:21:01.0363 0x0f70 Serial - ok
23:21:01.0394 0x0f70 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:21:01.0425 0x0f70 sermouse - ok
23:21:01.0456 0x0f70 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
23:21:01.0503 0x0f70 SessionEnv - ok
23:21:01.0534 0x0f70 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:21:01.0550 0x0f70 sffdisk - ok
23:21:01.0581 0x0f70 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:21:01.0597 0x0f70 sffp_mmc - ok
23:21:01.0597 0x0f70 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:21:01.0612 0x0f70 sffp_sd - ok
23:21:01.0628 0x0f70 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:21:01.0643 0x0f70 sfloppy - ok
23:21:01.0690 0x0f70 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:21:01.0737 0x0f70 SharedAccess - ok
23:21:01.0877 0x0f70 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:21:01.0924 0x0f70 ShellHWDetection - ok
23:21:01.0955 0x0f70 [ 1BC348CF6BAA90EC8E533EF6E6A69933, 2B26F6EB701F48E092DED6A7B888F24736F2899EE81D54DD4B1E9DF7CFD36E7A ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
23:21:01.0955 0x0f70 SiSGbeLH - ok
23:21:01.0987 0x0f70 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
23:21:02.0002 0x0f70 SiSRaid2 - ok
23:21:02.0002 0x0f70 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:21:02.0018 0x0f70 SiSRaid4 - ok
23:21:02.0033 0x0f70 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:21:02.0065 0x0f70 Smb - ok
23:21:02.0158 0x0f70 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:21:02.0189 0x0f70 SNMPTRAP - ok
23:21:02.0361 0x0f70 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys
23:21:02.0377 0x0f70 speedfan - ok
23:21:02.0392 0x0f70 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
23:21:02.0392 0x0f70 spldr - ok
23:21:02.0579 0x0f70 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
23:21:02.0611 0x0f70 Spooler - ok
23:21:02.0845 0x0f70 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
23:21:02.0954 0x0f70 sppsvc - ok
23:21:02.0985 0x0f70 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:21:03.0063 0x0f70 sppuinotify - ok
23:21:03.0141 0x0f70 [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:21:03.0188 0x0f70 srv - ok
23:21:03.0250 0x0f70 [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:21:03.0266 0x0f70 srv2 - ok
23:21:03.0344 0x0f70 [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:21:03.0359 0x0f70 srvnet - ok
23:21:03.0422 0x0f70 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:21:03.0453 0x0f70 SSDPSRV - ok
23:21:03.0469 0x0f70 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:21:03.0500 0x0f70 SstpSvc - ok
23:21:03.0531 0x0f70 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
23:21:03.0547 0x0f70 stexstor - ok
23:21:03.0812 0x0f70 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
23:21:03.0827 0x0f70 stisvc - ok
23:21:03.0921 0x0f70 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:21:03.0937 0x0f70 swenum - ok
23:21:03.0999 0x0f70 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
23:21:04.0046 0x0f70 swprv - ok
23:21:04.0233 0x0f70 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
23:21:04.0311 0x0f70 SysMain - ok
23:21:04.0389 0x0f70 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:21:04.0405 0x0f70 TabletInputService - ok
23:21:04.0498 0x0f70 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
23:21:04.0545 0x0f70 TapiSrv - ok
23:21:05.0247 0x0f70 [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:21:05.0434 0x0f70 Tcpip - ok
23:21:05.0746 0x0f70 [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:21:05.0777 0x0f70 TCPIP6 - ok
23:21:05.0840 0x0f70 [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:21:05.0871 0x0f70 tcpipreg - ok
23:21:07.0587 0x0f70 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:21:07.0618 0x0f70 TDPIPE - ok
23:21:07.0681 0x0f70 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:21:07.0696 0x0f70 TDTCP - ok
23:21:07.0743 0x0f70 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:21:07.0774 0x0f70 tdx - ok
23:21:07.0805 0x0f70 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:21:07.0821 0x0f70 TermDD - ok
23:21:07.0883 0x0f70 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
23:21:07.0915 0x0f70 TermService - ok
23:21:07.0977 0x0f70 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
23:21:08.0039 0x0f70 Themes - ok
23:21:08.0071 0x0f70 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
23:21:08.0102 0x0f70 THREADORDER - ok
23:21:08.0133 0x0f70 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
23:21:08.0180 0x0f70 TrkWks - ok
23:21:08.0320 0x0f70 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:21:08.0351 0x0f70 TrustedInstaller - ok
23:21:08.0383 0x0f70 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:21:08.0414 0x0f70 tssecsrv - ok
23:21:08.0461 0x0f70 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:21:08.0523 0x0f70 TsUsbFlt - ok
23:21:08.0554 0x0f70 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
23:21:08.0585 0x0f70 TsUsbGD - ok
23:21:08.0632 0x0f70 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:21:08.0679 0x0f70 tunnel - ok
23:21:08.0710 0x0f70 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:21:08.0710 0x0f70 uagp35 - ok
23:21:08.0773 0x0f70 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:21:08.0819 0x0f70 udfs - ok
23:21:08.0897 0x0f70 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:21:08.0929 0x0f70 UI0Detect - ok
23:21:09.0007 0x0f70 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:21:09.0038 0x0f70 uliagpkx - ok
23:21:09.0100 0x0f70 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:21:09.0100 0x0f70 umbus - ok
23:21:09.0147 0x0f70 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
23:21:09.0163 0x0f70 UmPass - ok
23:21:09.0428 0x0f70 [ EB79C6C91A99930015EF29AE7FA802D1, 96D00BA330854C7763BF385D84D47C3D1B87C4085A91D73B558C86829930DC4B ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
23:21:09.0568 0x0f70 UNS - ok
23:21:09.0615 0x0f70 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
23:21:09.0662 0x0f70 upnphost - ok
23:21:09.0740 0x0f70 [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
23:21:09.0833 0x0f70 usbccgp - ok
23:21:09.0911 0x0f70 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:21:09.0943 0x0f70 usbcir - ok
23:21:09.0989 0x0f70 [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci C:\Windows\system32\drivers\usbehci.sys
23:21:10.0021 0x0f70 usbehci - ok
23:21:10.0083 0x0f70 [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub C:\Windows\system32\drivers\usbhub.sys
23:21:10.0114 0x0f70 usbhub - ok
23:21:10.0161 0x0f70 [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:21:10.0192 0x0f70 usbohci - ok
23:21:10.0255 0x0f70 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:21:10.0286 0x0f70 usbprint - ok
23:21:10.0379 0x0f70 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
23:21:10.0411 0x0f70 usbscan - ok
23:21:10.0473 0x0f70 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
23:21:10.0551 0x0f70 USBSTOR - ok
23:21:10.0613 0x0f70 [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:21:10.0629 0x0f70 usbuhci - ok
23:21:10.0676 0x0f70 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:21:10.0723 0x0f70 usbvideo - ok
23:21:10.0785 0x0f70 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
23:21:10.0863 0x0f70 UxSms - ok
23:21:10.0910 0x0f70 [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] VaultSvc C:\Windows\system32\lsass.exe
23:21:10.0925 0x0f70 VaultSvc - ok
23:21:10.0957 0x0f70 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:21:10.0972 0x0f70 vdrvroot - ok
23:21:11.0191 0x0f70 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
23:21:11.0222 0x0f70 vds - ok
23:21:11.0253 0x0f70 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:21:11.0300 0x0f70 vga - ok
23:21:11.0331 0x0f70 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:21:11.0409 0x0f70 VgaSave - ok
23:21:11.0487 0x0f70 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:21:11.0518 0x0f70 vhdmp - ok
23:21:11.0627 0x0f70 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
23:21:11.0643 0x0f70 viaide - ok
23:21:11.0705 0x0f70 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:21:11.0721 0x0f70 volmgr - ok
23:21:11.0752 0x0f70 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:21:11.0768 0x0f70 volmgrx - ok
23:21:11.0830 0x0f70 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:21:11.0846 0x0f70 volsnap - ok
23:21:11.0893 0x0f70 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:21:11.0908 0x0f70 vsmraid - ok
23:21:12.0345 0x0f70 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
23:21:12.0407 0x0f70 VSS - ok
23:21:12.0454 0x0f70 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:21:12.0454 0x0f70 vwifibus - ok
23:21:12.0470 0x0f70 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:21:12.0517 0x0f70 vwififlt - ok
23:21:12.0595 0x0f70 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
23:21:12.0626 0x0f70 vwifimp - ok
23:21:12.0719 0x0f70 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
23:21:12.0829 0x0f70 W32Time - ok
23:21:12.0922 0x0f70 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:21:12.0938 0x0f70 WacomPen - ok
23:21:13.0016 0x0f70 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:21:13.0063 0x0f70 WANARP - ok
23:21:13.0078 0x0f70 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:21:13.0109 0x0f70 Wanarpv6 - ok
23:21:13.0343 0x0f70 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
23:21:13.0421 0x0f70 wbengine - ok
23:21:13.0484 0x0f70 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:21:13.0577 0x0f70 WbioSrvc - ok
23:21:13.0609 0x0f70 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:21:13.0702 0x0f70 wcncsvc - ok
23:21:13.0733 0x0f70 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:21:13.0780 0x0f70 WcsPlugInService - ok
23:21:13.0827 0x0f70 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
23:21:13.0843 0x0f70 Wd - ok
23:21:13.0905 0x0f70 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:21:13.0952 0x0f70 Wdf01000 - ok
23:21:13.0999 0x0f70 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:21:14.0014 0x0f70 WdiServiceHost - ok
23:21:14.0030 0x0f70 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:21:14.0030 0x0f70 WdiSystemHost - ok
23:21:14.0139 0x0f70 [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
23:21:14.0201 0x0f70 WebClient - ok
23:21:14.0264 0x0f70 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:21:14.0326 0x0f70 Wecsvc - ok
23:21:14.0342 0x0f70 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:21:14.0373 0x0f70 wercplsupport - ok
23:21:14.0435 0x0f70 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
23:21:14.0529 0x0f70 WerSvc - ok
23:21:14.0591 0x0f70 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:21:14.0623 0x0f70 WfpLwf - ok
23:21:14.0716 0x0f70 [ 52DED146E4797E6CCF94799E8E22BB2A, 57A29260D81AA3AD3F8C29E9CFA7CE3970D7A8BF673ADD9B256EE76C7DEC080E ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
23:21:14.0732 0x0f70 WimFltr - ok
23:21:14.0779 0x0f70 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:21:14.0779 0x0f70 WIMMount - ok
23:21:14.0825 0x0f70 WinDefend - ok
23:21:14.0857 0x0f70 WinHttpAutoProxySvc - ok
23:21:15.0106 0x0f70 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:21:15.0169 0x0f70 Winmgmt - ok
23:21:15.0527 0x0f70 [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
23:21:15.0605 0x0f70 WinRM - ok
23:21:15.0808 0x0f70 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:21:15.0839 0x0f70 WinUsb - ok
23:21:16.0167 0x0f70 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:21:16.0229 0x0f70 Wlansvc - ok
23:21:16.0354 0x0f70 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:21:16.0385 0x0f70 wlcrasvc - ok
23:21:16.0760 0x0f70 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:21:16.0807 0x0f70 wlidsvc - ok
23:21:16.0853 0x0f70 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:21:16.0869 0x0f70 WmiAcpi - ok
23:21:16.0931 0x0f70 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:21:16.0947 0x0f70 wmiApSrv - ok
23:21:16.0963 0x0f70 WMPNetworkSvc - ok
23:21:16.0994 0x0f70 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:21:17.0025 0x0f70 WPCSvc - ok
23:21:17.0041 0x0f70 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:21:17.0056 0x0f70 WPDBusEnum - ok
23:21:17.0072 0x0f70 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:21:17.0150 0x0f70 ws2ifsl - ok
23:21:17.0181 0x0f70 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
23:21:17.0197 0x0f70 wscsvc - ok
23:21:17.0197 0x0f70 WSearch - ok
23:21:17.0337 0x0f70 [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv C:\Windows\system32\wuaueng.dll
23:21:17.0431 0x0f70 wuauserv - ok
23:21:17.0477 0x0f70 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:21:17.0540 0x0f70 WudfPf - ok
23:21:17.0571 0x0f70 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:21:17.0618 0x0f70 WUDFRd - ok
23:21:17.0649 0x0f70 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:21:17.0696 0x0f70 wudfsvc - ok
23:21:17.0789 0x0f70 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
23:21:17.0930 0x0f70 WwanSvc - ok
23:21:18.0023 0x0f70 ================ Scan global ===============================
23:21:18.0101 0x0f70 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
23:21:18.0164 0x0f70 [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll
23:21:18.0195 0x0f70 [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll
23:21:18.0273 0x0f70 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:21:18.0351 0x0f70 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
23:21:18.0367 0x0f70 [ Global ] - ok
23:21:18.0367 0x0f70 ================ Scan MBR ==================================
23:21:18.0398 0x0f70 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:21:19.0162 0x0f70 \Device\Harddisk0\DR0 - ok
23:21:19.0162 0x0f70 ================ Scan VBR ==================================
23:21:19.0178 0x0f70 [ 331410A9C76C8D16430FBC741F7BB60C ] \Device\Harddisk0\DR0\Partition1
23:21:19.0193 0x0f70 \Device\Harddisk0\DR0\Partition1 - ok
23:21:19.0209 0x0f70 [ D5485C0CA4358126B84BA110EEF6AF77 ] \Device\Harddisk0\DR0\Partition2
23:21:19.0209 0x0f70 \Device\Harddisk0\DR0\Partition2 - ok
23:21:19.0209 0x0f70 ================ Scan generic autorun ======================
23:21:19.0287 0x0f70 [ 31F52459AA89317FFB57EBAF9B4DD8BC, 05DA7048451BEF06B059A86D7FB3084942724F3359BD67A0DFADFB3FFFF6990A ] C:\Windows\system32\igfxtray.exe
23:21:19.0318 0x0f70 IgfxTray - ok
23:21:19.0552 0x0f70 [ 7CA105C4CCDFCA407859B2DF3D05A645, 36EEE251B2A221F1974A5BE3A743135EB317FF95A32A8B31DA3791573DB7D6BE ] C:\Windows\system32\igfxpers.exe
23:21:19.0568 0x0f70 Persistence - ok
23:21:19.0927 0x0f70 [ 4912F15F275B47D5021641648CC90BC6, 31985B1A4F035BCDC7F0EB95026973D06B2DB671FE662AE20BBEE2890A948895 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
23:21:20.0036 0x0f70 RtHDVBg - ok
23:21:20.0223 0x0f70 [ 757A595F75E7840A7132EC11E6E6188A, 95085E8B5432F76E0C50D79F74DECAD54662BB32FFDD575BC8CBAC2C79B1C069 ] C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe
23:21:20.0254 0x0f70 Nuance PDF Reader-reminder - ok
23:21:20.0753 0x0f70 [ BD87D5F5D68AC07243010A6F5176F897, D6518C2990DDAE5E88C9BE649B34A09A0C19A2EAA14967B45F6B176E34DC2EEB ] C:\Program Files (x86)\ASUS\APRP\APRP.EXE
23:21:20.0863 0x0f70 ASUSPRP - detected UnsignedFile.Multi.Generic ( 1 )
23:21:21.0034 0x0f70 Detect skipped due to KSN trusted
23:21:21.0034 0x0f70 ASUSPRP - ok
23:21:21.0580 0x0f70 [ B166415C55E416022B3339EBD6CB216E, A9E27DEAF911CB4D06056CD9E34AB55FDEB4F7E4C61A6934A2D3DD89CB598A18 ] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
23:21:21.0643 0x0f70 Wireless Console 3 - detected UnsignedFile.Multi.Generic ( 1 )
23:21:21.0955 0x0f70 Detect skipped due to KSN trusted
23:21:21.0955 0x0f70 Wireless Console 3 - ok
23:21:22.0111 0x0f70 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
23:21:22.0126 0x0f70 UpdateLBPShortCut - ok
23:21:22.0360 0x0f70 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
23:21:22.0376 0x0f70 UpdateP2GoShortCut - ok
23:21:22.0547 0x0f70 [ 2C35624F79B9ADBFE47090879F0D8673, 05FA39E574BDA62FB88BC1725FC1D95D9D5F5E7E8728171317D417C16A0A074D ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
23:21:22.0563 0x0f70 ATKOSD2 - ok
23:21:22.0625 0x0f70 [ A2791CF11D1ED52DBCD75D2FFD4D50E7, 9C06378E96430A70BFAF52C35B6D280DEE304D3D7E42FA9E0EECC6FBD3D6FC54 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
23:21:22.0641 0x0f70 ATKMEDIA - ok
23:21:22.0781 0x0f70 [ 5AEBF6FA9805C9101220AA4FB4FA17E7, A9B2FC41380211A6C44E839A95676A5BA868CEEBB56D83A780230434C2A20836 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
23:21:22.0797 0x0f70 HControlUser - ok
23:21:23.0249 0x0f70 [ 04E5640A8D9F29B183308AEFCD77F178, F1511C128305D1EAC90E8187E61CE9541CA1B8CB4F9312E6CE0963AEED980337 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
23:21:23.0265 0x0f70 StartCCC - ok
23:21:24.0560 0x0f70 [ 52F5D651B8E39F258C1C34272FEB1AB2, C13AD8762A4474D8246DE7BC023244BD74456D45348F74F77373CC61C238A0F3 ] C:\Program Files\CCleaner\CCleaner64.exe
23:21:24.0747 0x0f70 CCleaner Monitoring - ok
23:21:24.0747 0x0f70 Waiting for KSN requests completion. In queue: 112
23:21:25.0870 0x0f70 Win FW state via NFP2: enabled ( trusted )
23:21:26.0026 0x0f70 ============================================================
23:21:26.0026 0x0f70 Scan finished
23:21:26.0026 0x0f70 ============================================================
23:21:26.0026 0x07a0 Detected object count: 0
23:21:26.0026 0x07a0 Actual detected object count: 0
23:22:18.0926 0x0f18 Deinitialize success
|
|
06.02.2017, 09:57
| #10 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA.SpeedUpMyPC.GEN - in Quarantäne? Soviel zum Thema richtig Lesen... Zitat:
Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.02.2017, 12:58
| #11 |
| | PUA.SpeedUpMyPC.GEN - in Quarantäne? Ok da hab ich wohl was "mistverstanden" habe beim ersten mal Skip gewählt und den Report gepostet, dann aber nicht deine antwort abgewartet und mit schritt 5 weitergemacht SORRY! Alterserscheinung ;-) Code:
ATTFilter # AdwCleaner v6.043 - Bericht erstellt am 06/02/2017 um 12:48:47
# Aktualisiert am 27/01/2017 von Malwarebytes
# Datenbank : 2017-02-03.2 [Lokal]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64)
# Benutzername : Denise - DENISE-PC
# Gestartet von : C:\Users\Denise\Desktop\AdwCleaner_6.043.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
***** [ Browser ] *****
[-] [C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Gelöscht: ask.com
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1212 Bytes] - [06/02/2017 12:48:47]
C:\AdwCleaner\AdwCleaner[S0].txt - [1478 Bytes] - [06/02/2017 12:43:58]
C:\AdwCleaner\AdwCleaner[S1].txt - [1550 Bytes] - [06/02/2017 12:47:35]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1431 Bytes] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 7 Home Premium x64
Ran by Denise (Administrator) on 06.02.2017 at 12:54:24,32
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 24
Successfully deleted: C:\Users\Denise\AppData\Local\{022A032A-D6B2-4FC3-BB7F-6371EEED610B} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{02A223B4-3299-4BC7-A86F-FB7FEC7FB073} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{0B0EAC9E-96D6-4CA6-9F7A-2397C066B17C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2B6BFAAB-7152-45B6-8680-8C324ABA4836} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2B76796E-2B84-42C7-9878-B0EF307197E5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{2D3ABE1B-0032-472A-9021-8D8545BF601D} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{34BCC647-41D8-4ACA-8F86-40EEEA64BD1F} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{48169121-1C89-43F9-B55D-59DE63CD76A9} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{4D63BFD3-D891-4616-BA89-095BECC2C220} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{6BB3BE87-3732-4126-AA18-240EB639FEC0} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{8347D385-19B9-43CE-8699-2B4EBDAF7CE5} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{9A141B94-8978-4375-A79C-FF138636CAC6} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{A5062D18-42E1-4CB9-9099-6B74896513D3} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{D71FDFC7-5CE5-446C-9B93-614D649E92F4} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{EFAFF2A2-71AD-47B3-83A2-95AB329C3628} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\{FE7349E0-D951-444D-A74C-F96508C0A79C} (Empty Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0NX1ZEV3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GRPUGTG7 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WBNQ925F (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Denise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X30YS2JI (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0NX1ZEV3 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GRPUGTG7 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WBNQ925F (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X30YS2JI (Temporary Internet Files Folder)
Registry: 1
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.02.2017 at 12:56:30,09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
06.02.2017, 12:59
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA.SpeedUpMyPC.GEN - in Quarantäne? Wir haben leider noch ne ältere Anleitung vom adwCleaner, bitte nochmal ausführen und so einstellen: 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.02.2017, 13:33
| #13 |
| | PUA.SpeedUpMyPC.GEN - in Quarantäne? ok dann nochmal so: Code:
ATTFilter # AdwCleaner v6.043 - Bericht erstellt am 06/02/2017 um 13:32:20
# Aktualisiert am 27/01/2017 von Malwarebytes
# Datenbank : 2017-02-03.2 [Lokal]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64)
# Benutzername : Denise - DENISE-PC
# Gestartet von : C:\Users\Denise\Desktop\AdwCleaner_6.043.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
Keine schädlichen Dienste gefunden.
***** [ Ordner ] *****
Keine schädlichen Ordner gefunden.
***** [ Dateien ] *****
Keine schädlichen Dateien gefunden.
***** [ DLL ] *****
Keine infizierten DLLs gefunden.
***** [ WMI ] *****
Keine schädlichen Schlüssel gefunden.
***** [ Verknüpfungen ] *****
Keine infizierten Verknüpfungen gefunden.
***** [ Aufgabenplanung ] *****
Keine schädlichen Aufgaben gefunden.
***** [ Registrierungsdatenbank ] *****
Keine schädlichen Elemente in der Registrierungsdatenbank gefunden.
***** [ Internetbrowser ] *****
Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1514 Bytes] - [06/02/2017 12:48:47]
C:\AdwCleaner\AdwCleaner[S0].txt - [1478 Bytes] - [06/02/2017 12:43:58]
C:\AdwCleaner\AdwCleaner[S1].txt - [1550 Bytes] - [06/02/2017 12:47:35]
C:\AdwCleaner\AdwCleaner[S2].txt - [1429 Bytes] - [06/02/2017 13:32:20]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1502 Bytes] ##########
|
|
06.02.2017, 13:55
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUA.SpeedUpMyPC.GEN - in Quarantäne? Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.02.2017, 14:06
| #15 |
| | PUA.SpeedUpMyPC.GEN - in Quarantäne? da sind se: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2017
durchgeführt von Denise (Administrator) auf DENISE-PC (06-02-2017 14:02:08)
Gestartet von C:\Users\Denise\Desktop
Geladene Profile: Denise (Verfügbare Profile: Denise & Kontokonto & Gast)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2278504 2011-09-19] (Realtek Semiconductor)
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2018032 2011-04-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2317312 2011-09-13] (ASUS)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-07-06] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [178848 2012-07-17] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-09-05] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2011-04-13]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe ()
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{4DD2443C-60BD-4176-8274-8122F63AA316}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3586178835-4235327162-316650703-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378 [2017-02-06]
FF Homepage: Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378 -> about:home
FF Extension: (All-in-One Sidebar) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2016-11-09]
FF Extension: (WOT) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-09]
FF Extension: (Adblock Plus) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF Extension: (Tab Mix Plus) - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2017-01-13]
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\6no30sh8.default-1426026780378\searchplugins\chip-online-suche.xml [2015-12-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation)
FF Plugin HKU\S-1-5-21-3586178835-4235327162-316650703-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101727.dll [2012-09-15] (Amazon.com, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.de/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\PepperFlash\pepflashplayer.dll => Keine Datei
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\pdf.dll => Keine Datei
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll => Keine Datei
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101727.dll (Amazon.com, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll => Keine Datei
CHR Plugin: (Zeon Plus) - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll => Keine Datei
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll => Keine Datei
CHR Profile: C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default [2017-02-06]
CHR Extension: (Wetter) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\fapbbpdnlcmiolkdfjnnjhabmcndadad [2015-03-10]
CHR Extension: (Yulia Brodskaya) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgdloilieclkegafohackmhffbmdpko [2013-10-27]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-05]
CHR Extension: (Outlook.com) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2013-10-27]
CHR Extension: (Google Mail) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-28]
CHR Extension: (Chrome Media Router) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-05]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-13] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-13] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46400 2017-01-30] (Dropbox, Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [16768 2011-09-20] (ASUSTek Computer Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [17536 2011-09-07] (ASUS)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [44480 2011-05-17] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
S3 s217bus; C:\Windows\System32\DRIVERS\s217bus.sys [108072 2007-11-02] (MCCI Corporation)
S3 s217mdfl; C:\Windows\System32\DRIVERS\s217mdfl.sys [19496 2007-11-02] (MCCI Corporation)
S3 s217mdm; C:\Windows\System32\DRIVERS\s217mdm.sys [145448 2007-11-02] (MCCI Corporation)
S3 s217nd5; C:\Windows\System32\DRIVERS\s217nd5.sys [33832 2007-11-02] (MCCI Corporation)
S3 s217obex; C:\Windows\System32\DRIVERS\s217obex.sys [124968 2007-11-02] (MCCI Corporation)
S3 s217unic; C:\Windows\System32\DRIVERS\s217unic.sys [138792 2007-11-02] (MCCI)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-02-06 14:02 - 2017-02-06 14:02 - 00018223 _____ C:\Users\Denise\Desktop\FRST.txt
2017-02-06 14:01 - 2017-02-06 14:01 - 02421248 _____ (Farbar) C:\Users\Denise\Desktop\FRST64.exe
2017-02-06 12:56 - 2017-02-06 12:56 - 00003716 _____ C:\Users\Denise\Desktop\JRT.txt
2017-02-06 12:34 - 2017-02-06 13:32 - 00000000 ___DC C:\AdwCleaner
2017-02-06 12:31 - 2017-02-06 12:31 - 04015056 _____ C:\Users\Denise\Desktop\AdwCleaner_6.043.exe
2017-02-06 12:31 - 2017-02-06 12:31 - 01663040 _____ (Malwarebytes) C:\Users\Denise\Desktop\JRT.exe
2017-02-05 23:19 - 2017-02-05 23:22 - 00204850 ____C C:\TDSSKiller.3.1.0.12_05.02.2017_23.19.17_log.txt
2017-02-05 23:17 - 2017-02-05 23:17 - 00000000 ___DC C:\TDSSKiller_Quarantine
2017-02-05 23:16 - 2017-02-05 23:17 - 00206728 ____C C:\TDSSKiller.3.1.0.12_05.02.2017_23.16.03_log.txt
2017-02-05 23:09 - 2017-02-05 23:12 - 00004616 ____C C:\TDSSKiller.3.1.0.12_05.02.2017_23.09.39_log.txt
2017-02-05 23:06 - 2017-02-05 23:09 - 00205826 ____C C:\TDSSKiller.3.1.0.12_05.02.2017_23.06.33_log.txt
2017-02-05 22:33 - 2017-02-05 22:59 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-02-05 22:32 - 2017-02-05 22:59 - 00000000 ____D C:\Users\Denise\Desktop\mbar
2017-02-05 22:22 - 2017-02-05 22:22 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Denise\Desktop\tdsskiller.exe
2017-02-05 22:16 - 2017-02-05 22:16 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Denise\Desktop\mbar-1.09.3.1001.exe
2017-02-05 10:54 - 2017-02-05 10:54 - 00178167 _____ C:\Users\Denise\Documents\HERMES_label_2017-2-5_10_53_47.pdf
2017-02-05 10:42 - 2017-02-06 14:02 - 00000000 ___DC C:\FRST
2017-02-04 21:47 - 2017-02-04 21:47 - 00001303 _____ C:\Users\Denise\Desktop\mb log 4.2.17.xml
2017-02-04 17:31 - 2017-02-04 17:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-02-04 17:17 - 2017-02-04 17:17 - 00000000 ____D C:\Users\Denise\AppData\Local\AviraSpeedup
2017-02-04 17:12 - 2017-02-04 17:12 - 00000000 ____D C:\Users\Denise\AppData\Local\Avira
2017-02-04 11:58 - 2017-02-04 11:58 - 00042298 _____ C:\Users\Kontokonto\Downloads\918121_2017_Mitteilung_vom_01.02.2017_20170204115821.pdf
2017-02-04 11:57 - 2017-02-04 11:57 - 00061537 _____ C:\Users\Kontokonto\Downloads\918121_2017_Nr.001_Kontoauszug_vom_01.02.2017_20170204115735.pdf
2017-02-04 11:57 - 2017-02-04 11:57 - 00041446 _____ C:\Users\Kontokonto\Downloads\918121_2017_IhreEntgelte_vom_01.02.2017_20170204115707.pdf
2017-02-04 11:56 - 2017-02-04 11:56 - 00041732 _____ C:\Users\Kontokonto\Downloads\918121_2017_InformationzurKontoabrechnungnach504BGB_vom_01.02.2017_20170204115617.pdf
2017-02-03 18:00 - 2017-02-03 18:00 - 00144468 _____ C:\Users\Denise\Documents\Rechnung 11teamsport jan.17.pdf
2017-02-02 21:51 - 2017-02-02 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-01-30 15:02 - 2017-01-30 15:02 - 00046400 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-01-30 12:49 - 2017-01-30 13:59 - 00000000 ____D C:\Users\Denise\Desktop\handy
2017-01-26 12:40 - 2017-01-26 12:40 - 00390654 _____ C:\Users\Kontokonto\Downloads\xxxxxxxxxxxxx409_2017_Kreditkarten-Umsatzaufstellung_vom_21.01.2017_20170126124024.pdf
2017-01-26 12:40 - 2017-01-26 12:40 - 00390654 _____ C:\Users\Kontokonto\Downloads\xxxxxxxxxxxxx409_2017_Kreditkarten-Umsatzaufstellung_vom_21.01.2017_20170126124016.pdf
2017-01-19 09:45 - 2017-01-19 09:45 - 00071028 _____ C:\Users\Kontokonto\Downloads\Konto_1565106705-Auszug_2016_012.PDF
2017-01-11 10:44 - 2017-01-11 10:44 - 00041233 _____ C:\Users\Kontokonto\Downloads\918121_2016_Entgeltinformationen_vom_01.12.2016_20170111104424.pdf
2017-01-11 10:43 - 2017-01-11 10:43 - 00060274 _____ C:\Users\Kontokonto\Downloads\918121_2016_Nr.005_Kontoauszug_vom_31.12.2016_20170111104317.pdf
2017-01-11 10:43 - 2017-01-11 10:43 - 00041204 _____ C:\Users\Kontokonto\Downloads\918121_2016_Entgeltinformationen_vom_01.12.2016_20170111104358.pdf
2017-01-10 23:49 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-10 23:49 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-10 23:49 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-10 23:49 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-01-10 23:49 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-01-10 23:49 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-01-10 23:49 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-10 23:49 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-10 23:49 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-10 23:49 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-10 23:49 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-10 23:49 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-01-10 23:49 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-01-10 23:23 - 2017-01-10 23:23 - 20358232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-02-06 14:01 - 2016-11-16 23:17 - 00000000 ____D C:\Users\Denise\AppData\LocalLow\Mozilla
2017-02-06 13:43 - 2016-04-19 23:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-06 13:14 - 2016-07-13 09:59 - 00001214 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-02-06 12:58 - 2009-07-14 05:45 - 00018512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-06 12:58 - 2009-07-14 05:45 - 00018512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-06 12:50 - 2016-07-13 09:59 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-02-06 12:49 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-06 12:32 - 2014-05-14 19:39 - 04187648 ___SH C:\Users\Denise\Downloads\Thumbs.db
2017-02-05 23:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-05 22:59 - 2015-10-28 14:59 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2017-02-05 22:33 - 2015-10-28 15:00 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-05 17:41 - 2012-06-11 20:44 - 00000000 ____D C:\Users\Denise\AppData\Local\CrashDumps
2017-02-05 17:24 - 2016-07-25 19:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-02-05 17:24 - 2013-03-16 00:12 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Avira
2017-02-05 17:24 - 2012-05-21 07:15 - 00000000 ____D C:\ProgramData\Avira
2017-02-05 11:05 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2017-02-04 17:38 - 2009-07-14 05:45 - 00366424 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-04 17:15 - 2015-10-24 12:15 - 00000000 ____D C:\ProgramData\Package Cache
2017-02-04 17:12 - 2012-05-12 12:04 - 00101128 _____ C:\Users\Denise\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-04 17:05 - 2016-08-11 12:23 - 00000000 ___RD C:\Users\Denise\Dropbox
2017-02-04 17:00 - 2013-03-20 16:41 - 00000000 ____D C:\Users\Kontokonto\AppData\Roaming\Avira
2017-02-04 13:16 - 2012-06-05 15:35 - 00056091 _____ C:\Users\Denise\Desktop\Finanzen.xlsx
2017-02-04 11:57 - 2015-11-10 16:13 - 00000000 ____D C:\Users\Kontokonto\Downloads\Auszüge Silvio
2017-02-02 21:51 - 2016-07-13 09:59 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-01-30 20:16 - 2016-11-16 00:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-30 20:16 - 2016-07-26 19:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-19 19:47 - 2014-03-01 18:19 - 00000000 ____D C:\Users\Denise\Downloads\frisur
2017-01-16 17:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-11 10:57 - 2013-07-17 14:42 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 10:56 - 2012-05-15 16:28 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-11 10:43 - 2016-12-05 20:08 - 00000000 ____D C:\Users\Kontokonto\Downloads\Auszüge Denise
2017-01-10 23:24 - 2016-04-19 23:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-01-10 23:23 - 2016-04-19 23:12 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-01-10 23:23 - 2016-04-19 23:12 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-01-10 23:23 - 2012-06-08 18:44 - 00000000 ____D C:\Windows\system32\Macromed
2017-01-10 23:23 - 2011-04-13 03:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-06-30 18:22 - 2014-06-30 18:22 - 0007605 _____ () C:\Users\Denise\AppData\Local\Resmon.ResmonCfg
2012-05-12 13:24 - 2012-11-10 17:07 - 0017408 _____ () C:\Users\Denise\AppData\Local\WebpageIcons.db
2011-11-18 02:19 - 2011-11-18 02:20 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2011-11-18 02:19 - 2011-11-18 02:19 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
Einige Dateien in TEMP:
====================
2017-02-04 21:54 - 2017-02-05 17:52 - 0204800 _____ (Sony DADC Austria AG) C:\Users\Denise\AppData\Local\Temp\drm_dyndata_7380009.dll
2016-04-22 11:21 - 2016-07-28 20:11 - 0000000 ____D () C:\Users\Kontokonto\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-02-03 18:27
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 05-02-2017
durchgeführt von Denise (06-02-2017 14:02:47)
Gestartet von C:\Users\Denise\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-05-12 11:03:55)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3586178835-4235327162-316650703-500 - Administrator - Disabled)
Denise (S-1-5-21-3586178835-4235327162-316650703-1000 - Administrator - Enabled) => C:\Users\Denise
Gast (S-1-5-21-3586178835-4235327162-316650703-501 - Limited - Enabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-3586178835-4235327162-316650703-1007 - Limited - Enabled)
Kontokonto (S-1-5-21-3586178835-4235327162-316650703-1008 - Limited - Enabled) => C:\Users\Kontokonto
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{959C941C-EA43-44DE-F18B-0849766AC19A}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.9.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.19 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.27 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{33B98264-A889-4913-A0CA-C364A75032B3}) (Version: 1.1.45 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Sonic Focus (HKLM-x32\...\{B0002707-4F7E-4745-88A7-852DA8A88635}) (Version: 1.0.0.5 - Synopsys )
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.4 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.23 - asus)
AsusScr_K3 Series_ENG (HKLM-x32\...\AsusScr_K3 Series_ENG) (Version: 1.0.0001 - ASUS)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0022 - ASUS)
Avira Launcher (x32 Version: 1.1.67.18988 - Avira Operations GmbH & Co. KG) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims 2 (HKLM-x32\...\{6E7DD182-9FC6-4651-0095-2E666CC6AF35}) (Version: - )
Die Sims 2: Family Fun - Accessoires (HKLM-x32\...\{6BDD9CE6-D0A6-478A-BAD3-BA6945E89EB0}) (Version: - )
Die Sims 2: Nightlife (HKLM-x32\...\{F7529650-B9DB-481B-0089-A2AC3C2821C1}) (Version: - )
Die Sims 2: Open For Business (HKLM-x32\...\{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}) (Version: - )
Die Sims 2: Wilde Campus-Jahre (HKLM-x32\...\{01521746-02A6-4A72-00BD-A285DF6B80C6}) (Version: - )
Die Sims™ 2 Apartment-Leben (HKLM-x32\...\{B6F5B704-06D3-4687-90F3-6195304AD755}) (Version: - Electronic Arts)
Die Sims™ 2 Freizeit-Spaß (HKLM-x32\...\{87F6C83D-F949-4d14-B5CB-DC8C75F8932D}) (Version: - Electronic Arts)
Die Sims™ 2 Vier Jahreszeiten (HKLM-x32\...\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}) (Version: - )
Dropbox (HKLM-x32\...\Dropbox) (Version: 19.4.12 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
ETDWare PS/2-X64 8.0.5.5_WHQL (HKLM\...\Elantech) (Version: 8.0.5.5 - ELAN Microelectronic Corp.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HP Support Solutions Framework (HKLM-x32\...\{3A1CB1B8-8646-41A0-B496-35DC48916904}) (Version: 12.5.32.203 - HP)
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.1.5 - ASUS)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mahjongg dimensions (HKLM-x32\...\Mahjongg dimensions) (Version: - Oberon Media Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Picture It! Express 7.0 (HKLM-x32\...\{369B36BE-3D64-4641-9AEA-808D436FE130}) (Version: 7.0.0.0000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 51.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 de)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NWZ-B170 WALKMAN Guide (HKLM-x32\...\{B91B14D5-B817-4C79-BEF6-0A7A23FE6C61}) (Version: 2.1.0.33220 - Sony Corporation)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6473 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10010 - Realtek Semiconductor Corp.)
Sims2Pack Clean Installer (HKLM-x32\...\Sims2Pack Clean Installer) (Version: - )
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15104.7 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.0.15104.7 - Samsung Electronics Co., Ltd.) Hidden
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
Ulead PhotoImpact XL (HKLM-x32\...\{0DDDE141-9696-4E33-AB82-EF398169D7E5}) (Version: 8.5 - Ulead System)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.32.0 - ASUS)
WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{C4BC5A5F-4A97-47CC-99C3-AB8E10572AFE}) (Version: 3.0.24 - ASUS)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {008B9F4C-AAD0-44E3-90CB-C6E67053FC99} - System32\Tasks\{C984FB87-1CAB-4461-A0F8-3F852C7A9D11} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2 Wilde Campus-Jahre\EAUninstall.exe"
Task: {117DBD37-3315-4B04-ABD6-083C779EF5AC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {22AB25F2-EBCE-49D7-A296-5AC7467C0882} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-13] (Dropbox, Inc.)
Task: {2372EE44-C1AF-41A6-9D4D-8959DE5760E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {2E6CB959-6B9E-419F-935A-2A5F5A1D20B5} - System32\Tasks\{03855B19-AA23-45BA-9D46-04FC46343B94} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2EP8.exe [2008-10-09] (Maxis, a division of Electronic Arts Inc.)
Task: {328DC65A-A88C-41F3-ADB0-8D2E408D7C69} - System32\Tasks\{491B9562-CDC5-4CD8-8A9B-8C6953C5BCA4} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2 Freizeit-Spaß\CSBin\PackageInstaller.exe" -d "C:\Users\Denise\Documents\EA Games\Die Sims 2\Downloads\set_complet_SDB_rom" -c "C:\Users\Denise\Documents\EA Games\Die Sims 2\Downloads\set_complet_SDB_rom\frances_carrelageDouche_sdb_Rom.Sims2Pack"
Task: {46A95F96-B425-49E7-9ABA-4BDD4A2192B1} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-07-06] (ASUSTek Computer Inc.)
Task: {5B0FCA0C-D204-4484-A30B-1BC26B239CF2} - System32\Tasks\{3952678B-5714-43AA-A637-63F17DE3BF39} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {5BC8EDCB-A18B-436C-8C61-F66D70503F8E} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
Task: {5C029C20-CB7B-4C1B-8FCA-3C6960090C20} - System32\Tasks\{3B4732AC-3194-409C-9004-0153C970885F} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {5C474B6B-AB06-45A3-B28A-756A45976EDE} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {5EA500ED-8B05-4399-A7FE-1F2E7C8D6078} - System32\Tasks\{6BA8A638-D711-4FD0-8C6C-102DEB754737} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2 Nightlife\EAUninstall.exe"
Task: {67911D8E-4BDC-4D54-B1E1-B72014FE614F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-13] (Dropbox, Inc.)
Task: {74128AA7-6F33-4416-97DB-F1D2085654DF} - System32\Tasks\{0509E058-4BF2-4A8C-BB47-66635E3440F7} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2EP8.exe [2008-10-09] (Maxis, a division of Electronic Arts Inc.)
Task: {77739E8F-3708-4373-92A8-83F432E3F0D2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {79792F2D-0BC9-4F5B-8A2E-348BF38541C7} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2011-06-01] (ASUS)
Task: {81B239B2-3219-44C0-8343-D960BD022337} - System32\Tasks\{53957E08-4D39-4919-B532-0ADF75B93A1B} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2 Vier Jahreszeiten\EAUninstall.exe"
Task: {881CE750-0169-4F53-8809-C6A12A66B7BD} - System32\Tasks\{3E4B03EF-2057-4684-978B-3318DF336428} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {8E770C2C-2EF7-4278-BC7E-83B250B6E2CE} - System32\Tasks\{5A0C5A9E-81BA-4904-A40D-52BA6AC3C647} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {A7079BDE-6769-4A49-A00D-F99977EBCE32} - System32\Tasks\{2E0726D8-DDEC-4913-9C62-1C81FEB01145} => pcalua.exe -a "C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe" -d "C:\Program Files (x86)\ESET\ESET Online Scanner"
Task: {BCAF4FEA-1C52-4A9F-A5A2-DCA48564C449} - System32\Tasks\{0D01D0A8-3817-4924-AF0C-2F54E33126D0} => C:\Program Files (x86)\EA GAMES\Die Sims 2 Apartment-Leben\TSBin\Sims2Launcher.exe [2008-10-09] (Electronic Arts)
Task: {BF216B74-4FD4-4D82-9E94-02A082DCB468} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {C16936E0-1EC4-486D-9454-5AF7038E8E60} - System32\Tasks\{9F725641-251B-4704-8F38-2EFAC47E900A} => pcalua.exe -a C:\Users\Denise\Downloads\JRT.exe -d C:\Users\Denise\Downloads
Task: {C1F27C97-3FEF-46D6-892D-291EBC0DB26D} - System32\Tasks\USBChargerPlus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2011-09-20] (ASUSTek Computer Inc.)
Task: {DF7A109B-07D6-4794-8E31-827F5FC377F1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {F0DF450E-C50F-4641-8604-EC4F0255BA74} - System32\Tasks\{E25C3872-6CF3-47C0-B104-89DAAB3DF65E} => pcalua.exe -a "C:\Program Files (x86)\EA GAMES\Die Sims 2\Sims2_uninst.exe" -d "C:\Program Files (x86)\EA GAMES\Die Sims 2"
Task: {F4F1154F-DB01-4089-B3F1-8BD649EE7CC8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2012-05-30 16:38 - 2012-02-17 19:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\71084821.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\71084821.sys => ""="Driver"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
Da befinden sich 7776 mehr Seiten.
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3586178835-4235327162-316650703-1000\...\123simsen.com -> www.123simsen.com
Da befinden sich 7786 mehr Seiten.
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2015-10-27 16:50 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3586178835-4235327162-316650703-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AudioEndpointBuilder => 2
MSCONFIG\Services: bthserv => 3
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: ETDCtrl => %ProgramFiles%\Elantech\ETDCtrl.exe
MSCONFIG\startupreg: Facebook Update => "C:\Users\Denise\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: SonicMasterTray => C:\Program Files (x86)\ASUS\ASUS Sonic Focus\SonicFocusTray.exe
MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{50D76052-134E-46DB-AF8E-63827F883C0F}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{B827E1C7-5A7A-484C-9653-2FE388A8B888}] => LPort=1900
FirewallRules: [{25BDD843-A815-48A8-A216-66D065687049}] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8EF01BA1-D1F6-4D73-AADB-AB5E81F83EF1}] => C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{A72233AF-337A-40D3-BCE9-4CBCFF8C6B0B}] => LPort=5353
FirewallRules: [{8D309E1A-081C-4FA8-82C7-F1750FBCF2E0}] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{FCB802BC-AABF-4A36-BEA8-33B2E3D9C978}] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{4507F716-013E-4849-874E-757CA990D6E1}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DE520D19-BD7B-42B3-9420-DD017E4334CB}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FA0C8130-6E0F-4C9F-A245-8978BA7DE542}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{A9832444-8803-4A1A-9D59-2D049504C875}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Wiederherstellungspunkte =========================
28-01-2017 12:06:58 Geplanter Prüfpunkt
04-02-2017 17:12:33 Avira System Speedup 1.0.0
06-02-2017 12:52:54 JRT Pre-Junkware Removal
06-02-2017 12:54:24 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (02/06/2017 12:50:00 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.
Error: (02/06/2017 12:50:00 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/06/2017 09:44:37 AM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.
Error: (02/06/2017 09:44:31 AM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/05/2017 11:44:24 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/05/2017 11:43:24 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/05/2017 11:42:24 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/05/2017 11:41:24 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/05/2017 11:40:24 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Error: (02/05/2017 11:39:23 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start
Systemfehler:
=============
Error: (02/06/2017 12:49:53 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Der Dienst "ATKGFNEX Service" ist von folgendem Dienst abhängig: ASMMAP64. Dieser Dienst ist eventuell nicht installiert.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Management and Security Application User Notification Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "HP Support Solutions Framework Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Live ID Sign-in Assistant" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Live Family Safety Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "DbxSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "ASUS InstantOn Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/06/2017 12:48:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2015-10-27 16:49:59.998
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-10-27 16:49:59.967
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-10-27 16:49:59.951
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-10-27 16:49:59.920
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-05-11 12:50:25.014
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-05-11 12:50:24.952
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 6048.05 MB
Verfügbarer physikalischer RAM: 4490.05 MB
Summe virtueller Speicher: 12094.24 MB
Verfügbarer virtueller Speicher: 10528.38 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:73.97 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (DATA) (Fixed) (Total:254.46 GB) (Free:133.5 GB) NTFS
Drive e: (Sims2EP8) (CDROM) (Total:0.98 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=186.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=254.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
| Themen zu PUA.SpeedUpMyPC.GEN - in Quarantäne? |
| antivir, antivirus, asus, avira, csrss.exe, desktop, explorer.exe, home, lsass.exe, modul, neu, programm, prozesse, registry, services.exe, software, spoolsv.exe, svchost.exe, taskleiste, temp, vista, vista32, warnung, windows, winlogon.exe, wmp |
Linear-Darstellung
