Trojaner-Board - Sicherheitszertifikat ungültig: Sicher, dass es stimmt, was tun?!

Hier die beiden .txt:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015

Ran by Administrator (administrator) on K-TOWN on 12-03-2015 21:41:28

Running from C:\Users\Administrator\Downloads

Loaded Profiles: Administrator (Available profiles: Philipp & Administrator)

Platform: Windows 8.1 Pro N (X64) OS Language: Deutsch (Deutschland)

Internet Explorer Version 11 (Default browser: FF)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Processes (Whitelisted) =================
 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe

(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe

(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe

(Nero AG) E:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe

(Steganos Software GmbH) C:\Program Files (x86)\OkayFreedom\OkayFreedomService.exe

() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe

() C:\Windows\SysWOW64\PnkBstrA.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe

(Microsoft Corporation) C:\Windows\System32\dasHost.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe

() C:\Users\Administrator\AppData\Local\Amazon Music\Amazon Music Helper.exe

(Intel Corporation) C:\Windows\System32\igfxEM.exe

(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe

(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe

(CMedia) C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe

() C:\Windows\SysWOW64\HsMgr.exe

() C:\Windows\System\HsMgr64.exe

(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe

(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe

(Valve Corporation) H:\Steam\Steam.exe

(Valve Corporation) H:\Steam\bin\steamwebhelper.exe

(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe

(Dropbox, Inc.) C:\Users\Administrator\AppData\Roaming\Dropbox\bin\Dropbox.exe

(Autodesk Inc.) C:\Users\Administrator\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

(Valve Corporation) H:\Steam\bin\steamwebhelper.exe

(Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

(Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

(Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

(Valve Corporation) H:\Steam\bin\steamwebhelper.exe

(Sports Interactive) E:\SteamLibrary\SteamApps\common\Football Manager 2015\fm.exe

() E:\SteamLibrary\SteamApps\common\Football Manager 2015\cefsimple.exe

() E:\SteamLibrary\SteamApps\common\Football Manager 2015\cefsimple.exe

(Valve Corporation) H:\Steam\GameOverlayUI.exe

(Valve Corporation) H:\Steam\GameOverlayUI.exe
 
 

==================== Registry (Whitelisted) ==================
 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 

HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)

HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13636824 2013-07-26] (Realtek Semiconductor)

HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd

HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()

HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()

HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)

HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-09-04] (Autodesk Inc.)

Winlogon\Notify\igfxcui: igfxdev.dll [X]

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\Run: [Steam] => H:\Steam\steam.exe [2874048 2015-02-19] (Valve Corporation)

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\Run: [DAEMON Tools Lite] => D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\Run: [Amazon Music] => C:\Users\Administrator\AppData\Local\Amazon Music\Amazon Music Helper.exe [5886272 2015-02-27] ()

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1193352 2014-05-01] (Autodesk, Inc.)

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\Policies\Explorer: [] 

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\MountPoints2: {34fa5530-c660-11e3-9c08-bc5ff435eefd} - "K:\setup.exe" 

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\MountPoints2: {3e90e8d9-8332-11e4-9c4e-bc5ff435eefd} - "M:\HTC_Sync_Manager_PC.exe" 

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\MountPoints2: {6cfd5c04-8f8a-11e4-9c4f-bc5ff435eefd} - "M:\HTC_Sync_Manager_PC.exe" 

HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1193352 2014-05-01] (Autodesk, Inc.)

IFEO\notepad.exe: [Debugger] E:\Program Files (x86)\Notepad Replacer\NotepadReplacer.exe

Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

ShortcutTarget: Dropbox.lnk -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk

ShortcutTarget: HDDlife.lnk -> E:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe (No File)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk

ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk

ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{5FDC06BF-3D3D-4367-8FFB-4FAFCB61972D}\Icon09DB8A851.exe ()

ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)

ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

BootExecute: autocheck autochk * sdnclean64.exe
 

==================== Internet (Whitelisted) ====================
 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 

ProxyServer: [S-1-5-21-3008043235-1487260414-1339302276-500] => www-proxy.htw-saarland.de:3128

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp

BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)

BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-09] (Kaspersky Lab ZAO)

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation)

BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)

BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation)

BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)

BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)

BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-09] (Kaspersky Lab ZAO)

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation)

BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)

BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> E:\Program Files (x86)\Free Download Manager\iefdm2.dll [2013-10-25] (FreeDownloadManager.ORG)

BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation)

BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
 

FireFox:

========

FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\fak1hsnn.default-1426093551258

FF Homepage: hxxp://www.kicker.de/ | hxxp://www.facebook.de/

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()

FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll No File

FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [2014-09-01] (EA Digital Illusions CE AB)

FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)

FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)

FF Plugin: @videolan.org/vlc,version=2.1.3 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)

FF Plugin: @videolan.org/vlc,version=2.1.4 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)

FF Plugin: @videolan.org/vlc,version=2.1.5 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()

FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll No File

FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll No File

FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll No File

FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll No File

FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [2014-09-01] (EA Digital Illusions CE AB)

FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)

FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)

FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation)

FF Plugin-x32: @kaspersky.com/content_blocker -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2014-10-09] ()

FF Plugin-x32: @kaspersky.com/online_banking -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2014-10-09] ()

FF Plugin-x32: @kaspersky.com/virtual_keyboard -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-10-09] ()

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)

FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)

FF Plugin HKU\S-1-5-21-3008043235-1487260414-1339302276-500: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Administrator\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-05-07] (Unity Technologies ApS)

FF user.js: detected! => C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\fak1hsnn.default-1426093551258\user.js [2015-03-11]

FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com

FF Extension: Ngăn chặn trang web nguy hiểm - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2014-09-03]

FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com

FF Extension: Bàn phím ảo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-09-03]

FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com

FF Extension: Công cụ kiểm tra liên kết của Kaspersky - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com [2014-09-03]

FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com

FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com [2014-09-03]

FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com

FF Extension: An toàn giao dịch tài chính - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2014-09-03]

StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Mozilla Firefox\firefox.exe
 

Chrome: 

=======

CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Slides) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-22]

CHR Extension: (Google Docs) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-22]

CHR Extension: (Google Drive) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-22]

CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-22]

CHR Extension: (Google Search) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-22]

CHR Extension: (Kaspersky Protection) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-01-22]

CHR Extension: (Google Sheets) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-22]

CHR Extension: (AdBlock) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-01-22]

CHR Extension: (Stealthy) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieaebnkibonmpbhdaanjkmedikadnoje [2015-01-22]

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]

CHR Extension: (Grass) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmiboiefncpfjihjdedpaoammipkilla [2015-01-22]

CHR Extension: (RSS Subscription Extension (by Google)) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2015-01-22]

CHR Extension: (Google Wallet) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-22]

CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-22]

CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho [Not Found]

CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho [Not Found]
 

==================== Services (Whitelisted) =================
 

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [597896 2014-09-04] (Autodesk Inc.)

R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)

R2 AVP15.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-04-15] () [File not signed]

S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [174624 2015-01-13] (EasyAntiCheat Ltd)

R2 HTCMonitorService; E:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)

S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)

R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)

R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)

R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-08-12] ()

S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)

S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [File not signed]

R2 OkayFreedom VPN Starter Service; C:\Program Files (x86)\OkayFreedom\OkayFreedomService.exe [324024 2014-12-12] (Steganos Software GmbH)

S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-03-02] (Electronic Arts)

R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]

S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [File not signed]

R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-12-23] ()

R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-03] ()

S3 SandraAgentSrv; E:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP2a\RpcAgentSrv.exe [72344 2008-05-19] (SiSoftware) [File not signed]

S3 TunngleService; E:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
 

==================== Drivers (Whitelisted) ====================
 

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 

R3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2735616 2013-12-11] (C-Media Inc)

R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [306536 2011-03-04] ()

R3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)

R3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (Windows (R) Win 7 DDK provider)

R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-04-19] (Disc Soft Ltd)

S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)

R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-08] ()

R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-08] ()

R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-07] ()

R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-07] ()

R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [457824 2014-02-20] (Kaspersky Lab ZAO)

S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)

R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [142344 2014-10-09] (Kaspersky Lab ZAO)

R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [243808 2014-04-10] (Kaspersky Lab ZAO)

R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [771272 2014-10-09] (Kaspersky Lab ZAO)

R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)

R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)

R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)

R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)

R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [67680 2014-03-19] (Kaspersky Lab ZAO)

R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [179296 2014-03-26] (Kaspersky Lab ZAO)

R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)

S3 Neo_VPN111; C:\Windows\system32\DRIVERS\Neo_VPN111.sys [28768 2014-10-24] (SoftEther VPN Project at University of Tsukuba, Japan.)

S3 SaiK1709; C:\Windows\system32\DRIVERS\SaiK1709.sys [180544 2012-09-20] (Saitek)

R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)

R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)

S3 SaiU1709; C:\Windows\System32\drivers\SaiU1709.sys [47168 2012-09-20] (Saitek)

S3 SANDRA; E:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP2a\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)

R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)

R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)

U5 UnlockerDriver5; F:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()

S1 vflt; C:\Windows\system32\DRIVERS\vfilter.sys [24064 2013-07-01] (Shrew Soft Inc) [File not signed]

S3 vnet; C:\Windows\system32\DRIVERS\virtualnet.sys [17408 2013-07-01] (Shrew Soft Inc) [File not signed]

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)

R3 xb1usb; C:\Windows\System32\drivers\xb1usb.sys [34016 2014-05-27] (Microsoft Corporation)

S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)

S3 cpuz136; \??\C:\Users\ADMINI~1\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X]

S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]

S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
 

==================== NetSvcs (Whitelisted) ===================
 

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 

==================== One Month Created Files and Folders ========
 

(If an entry is included in the fixlist, the file\folder will be moved.)
 

2015-03-12 21:41 - 2015-03-12 21:41 - 00031680 _____ () C:\Users\Administrator\Downloads\FRST.txt

2015-03-12 21:41 - 2015-03-12 21:41 - 00000000 ____D () C:\FRST

2015-03-12 21:40 - 2015-03-12 21:41 - 02095616 _____ (Farbar) C:\Users\Administrator\Downloads\FRST64.exe

2015-03-11 19:49 - 2015-03-11 19:49 - 00002155 _____ () C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk

2015-03-11 19:49 - 2015-03-11 19:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation

2015-03-11 19:49 - 2015-02-05 18:57 - 00621384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe

2015-03-11 19:48 - 2015-02-05 22:01 - 32106640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 24768144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 20466496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 17253848 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 13294528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 13208200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 10773704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 10713256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 10284872 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2015-03-11 19:48 - 2015-02-05 22:01 - 03610768 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 03299512 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 03247248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434752.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434752.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00995248 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00969872 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00943760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00929936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00908104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00877816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00833680 _____ () C:\Windows\system32\nvmcumd.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00496272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00399504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00353224 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00345744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00305136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2015-03-11 19:48 - 2015-02-05 22:01 - 00164752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2015-03-11 18:22 - 2015-03-11 18:34 - 309136440 _____ (NVIDIA Corporation) C:\Users\Administrator\Downloads\347.52-desktop-win8-win7-winvista-64bit-international-whql.exe

2015-03-11 18:10 - 2015-03-11 18:11 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Train Fever

2015-03-11 18:08 - 2015-03-11 18:08 - 00000812 _____ () C:\Users\Public\Desktop\Train Fever.lnk

2015-03-11 18:08 - 2015-03-11 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Train Fever [GOG.com]

2015-03-11 18:05 - 2015-03-11 18:05 - 00000000 ____D () C:\Users\Administrator\Desktop\Alte Firefox-Daten

2015-03-11 17:18 - 2015-03-11 18:04 - 1593644760 _____ (GOG.com ) C:\Users\Administrator\Downloads\setup_train_fever_2.0.0.1.exe

2015-03-11 14:12 - 2015-02-04 00:58 - 00264000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys

2015-03-11 14:12 - 2015-02-04 00:58 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys

2015-03-11 14:12 - 2015-02-04 00:58 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys

2015-03-11 14:12 - 2015-02-03 00:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll

2015-03-11 14:12 - 2015-02-03 00:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll

2015-03-11 14:11 - 2015-03-06 03:53 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-03-11 14:11 - 2015-03-06 03:33 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-03-11 14:11 - 2015-02-26 00:26 - 04178944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2015-03-11 14:11 - 2015-02-20 04:03 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2015-03-11 14:11 - 2015-02-20 03:58 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2015-03-11 14:11 - 2015-02-20 03:20 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2015-03-11 14:11 - 2015-02-20 03:15 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2015-03-11 14:11 - 2015-01-31 00:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll

2015-03-11 14:11 - 2015-01-30 04:01 - 00097792 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys

2015-03-11 14:11 - 2015-01-28 16:41 - 07472960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2015-03-11 14:11 - 2015-01-28 16:41 - 01733440 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2015-03-11 14:11 - 2015-01-28 16:41 - 01498360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2015-03-11 14:11 - 2015-01-27 05:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll

2015-03-11 14:11 - 2015-01-27 03:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2015-03-11 14:11 - 2014-10-29 04:56 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys

2015-03-11 14:11 - 2014-10-29 03:49 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2015-03-11 14:11 - 2014-10-29 03:44 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2015-03-11 14:11 - 2014-10-29 03:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2015-03-11 14:11 - 2014-10-29 03:37 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll

2015-03-11 14:11 - 2014-10-29 03:04 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2015-03-11 14:11 - 2014-10-29 03:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2015-03-11 14:11 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2015-03-11 14:10 - 2015-02-21 02:16 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-03-11 14:10 - 2015-02-21 01:41 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-03-11 14:10 - 2015-02-21 01:27 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-03-11 14:10 - 2015-02-21 01:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2015-03-11 14:10 - 2015-02-21 01:25 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-03-11 14:10 - 2015-02-21 00:58 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-03-11 14:10 - 2015-02-21 00:32 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-03-11 14:10 - 2015-02-20 03:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-03-11 14:10 - 2015-02-20 03:48 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-03-11 14:10 - 2015-02-20 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2015-03-11 14:10 - 2015-02-20 03:35 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-03-11 14:10 - 2015-02-20 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2015-03-11 14:10 - 2015-02-20 03:32 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-03-11 14:10 - 2015-02-20 03:09 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-03-11 14:10 - 2015-02-20 03:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2015-03-11 14:10 - 2015-02-20 03:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2015-03-11 14:10 - 2015-02-20 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-03-11 14:10 - 2015-02-20 03:03 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-03-11 14:10 - 2015-02-20 02:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll

2015-03-11 14:10 - 2015-02-20 02:56 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-03-11 14:10 - 2015-02-20 02:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-03-11 14:10 - 2015-02-20 02:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-03-11 14:10 - 2015-02-20 02:49 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-03-11 14:10 - 2015-02-20 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-03-11 14:10 - 2015-02-20 02:43 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-03-11 14:10 - 2015-02-20 02:30 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-03-11 14:10 - 2015-02-20 02:30 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll

2015-03-11 14:10 - 2015-02-20 02:29 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll

2015-03-11 14:10 - 2015-02-20 02:28 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-03-11 14:10 - 2015-02-20 02:26 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2015-03-11 14:10 - 2015-02-20 02:24 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-03-11 14:10 - 2015-02-20 02:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-03-11 14:10 - 2015-02-20 02:16 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-03-11 14:10 - 2015-02-20 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-03-11 14:10 - 2015-02-20 02:01 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-03-11 14:10 - 2015-02-20 01:57 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-03-11 14:10 - 2015-02-20 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-03-11 14:10 - 2015-02-12 18:40 - 22291584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2015-03-11 14:10 - 2015-02-12 18:34 - 19731824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2015-03-11 14:10 - 2015-01-29 19:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

2015-03-11 14:10 - 2015-01-29 19:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2015-03-11 14:10 - 2015-01-28 02:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2015-03-11 14:10 - 2015-01-28 02:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2015-03-11 14:10 - 2015-01-21 06:54 - 01384712 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll

2015-03-11 14:10 - 2015-01-21 06:15 - 01123848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll

2015-03-06 10:29 - 2015-03-06 10:54 - 833638538 _____ () C:\Users\Administrator\Downloads\NPR Music Presents The Austin 100 (2015).zip

2015-03-02 20:37 - 2015-03-02 20:37 - 00639912 _____ (Oracle Corporation) C:\Users\Administrator\Downloads\jxpiinstall(2).exe

2015-03-02 19:42 - 2015-03-02 19:42 - 02591000 _____ (Odem Mortis ) C:\Users\Administrator\Downloads\OMC_ModPack_Installer(3).exe

2015-02-28 23:05 - 2015-02-28 23:27 - 742211354 _____ () C:\Users\Administrator\Downloads\trailers_and_cargo_pack_by_Jazzycat_v3.2.7z

2015-02-28 20:26 - 2015-02-28 20:27 - 00000000 ____D () C:\Users\Administrator\Downloads\Sprachdatei

2015-02-28 20:07 - 2015-02-28 20:07 - 00388037 _____ () C:\Users\Administrator\Downloads\fake.lnc-FM15_3.0.zip

2015-02-28 20:06 - 2015-02-28 20:07 - 09132716 _____ () C:\Users\Administrator\Downloads\FM15_Deutsch_V13.rar

2015-02-27 00:05 - 2015-02-27 00:05 - 00000000 ____D () C:\Program Files\Logitech Gaming Software

2015-02-27 00:01 - 2015-02-27 00:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech

2015-02-27 00:01 - 2015-02-27 00:01 - 00000000 ____D () C:\Program Files\Logitech

2015-02-27 00:00 - 2015-02-27 00:01 - 17276616 _____ (Logitech ) C:\Users\Administrator\Downloads\lgs510_x64(2).exe

2015-02-26 23:19 - 2015-02-26 23:20 - 00000000 ____D () C:\Users\Administrator\Downloads\TSM_LightTrafficMod_V_1

2015-02-26 22:53 - 2015-02-26 23:02 - 259889972 _____ () C:\Users\Administrator\Downloads\ets2_1.16_Roadhunter_39trailer_v4.rar

2015-02-26 22:52 - 2015-02-26 22:56 - 93924840 _____ () C:\Users\Administrator\Downloads\TSM_LightTrafficMod_V_1.7z

2015-02-26 22:44 - 2015-02-26 22:46 - 40487007 _____ () C:\Users\Administrator\Downloads\JPM_forTSM_5_4.7z

2015-02-26 22:25 - 2015-02-26 22:27 - 67350808 _____ (Logitech Inc.) C:\Users\Administrator\Downloads\LGS_8.57.145_x64_Logitech(1).exe

2015-02-26 20:57 - 2015-02-26 21:00 - 00001342 _____ () C:\Users\Administrator\Desktop\taskkill.lnk

2015-02-26 16:54 - 2015-02-26 21:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird

2015-02-25 16:15 - 2015-03-02 19:50 - 00000717 _____ () C:\Users\Public\Desktop\World of Tanks 0.9.6.lnk

2015-02-25 16:15 - 2015-03-02 19:50 - 00000712 _____ () C:\Users\Public\Desktop\World of Tanks Launcher 0.9.6.lnk

2015-02-25 16:08 - 2015-02-25 16:08 - 02589928 _____ (Odem Mortis ) C:\Users\Administrator\Downloads\OMC_ModPack_Installer(2).exe

2015-02-19 14:40 - 2015-02-19 14:41 - 22641210 _____ () C:\Users\Administrator\Downloads\Scorpio v1.9.zip

2015-02-19 14:38 - 2015-02-19 14:39 - 00388080 _____ () C:\Users\Administrator\Downloads\fake.lnc-FM15_2.2.zip

2015-02-19 14:36 - 2015-02-19 14:56 - 354030700 _____ () C:\Users\Administrator\Downloads\1 Meistertrainerforum Song Contest.avi

2015-02-19 09:34 - 2015-02-19 09:34 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Steam

2015-02-19 01:52 - 2015-02-19 01:56 - 158748783 _____ () C:\Users\Administrator\Downloads\Greatest Hits - Journey.zip

2015-02-19 01:44 - 2015-02-19 01:49 - 182143305 _____ () C:\Users\Administrator\Downloads\The Best Of - Gipsy Kings.zip

2015-02-19 01:40 - 2015-02-19 01:43 - 119950990 _____ () C:\Users\Administrator\Downloads\head or heart - christina perri.zip

2015-02-19 01:34 - 2015-02-19 01:39 - 152472695 _____ () C:\Users\Administrator\Downloads\Songs In A Minor - Alicia Keys.zip

2015-02-18 12:05 - 2015-03-02 19:50 - 00000897 _____ () C:\Users\Public\Desktop\OMC ModPack entfernen 0.9.6.lnk

2015-02-18 12:05 - 2015-03-02 19:50 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack

2015-02-18 11:34 - 2015-02-18 11:34 - 02590128 _____ (Odem Mortis ) C:\Users\Administrator\Downloads\OMC_ModPack_Installer(1).exe

2015-02-18 11:32 - 2015-03-02 19:50 - 00000849 _____ () C:\Users\Public\Desktop\OMC ModPack Aktualisierung- Rekonfiguration.lnk

2015-02-17 16:04 - 2015-02-17 16:04 - 01202848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FM20.DLL

2015-02-16 14:29 - 2015-02-16 15:11 - 510000000 _____ () C:\Users\Administrator\Downloads\metallic_logos_fm2015_v1.part02.rar

2015-02-16 14:23 - 2015-02-16 16:22 - 510000000 _____ () C:\Users\Administrator\Downloads\metallic_logos_fm2015_v1.part01.rar

2015-02-15 00:12 - 2015-03-02 19:42 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack Client

2015-02-14 23:31 - 2015-02-14 23:31 - 02589528 _____ (Odem Mortis ) C:\Users\Administrator\Downloads\OMC_ModPack_Installer.exe

2015-02-14 22:55 - 2015-02-14 22:55 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Smellyriver

2015-02-14 22:50 - 2015-02-14 22:55 - 00000000 ____D () C:\Users\Administrator\Documents\World of Tanks

2015-02-14 22:46 - 2015-02-14 22:47 - 15660883 _____ () C:\Users\Administrator\Downloads\STI.1.3.7.62.2.zip

2015-02-14 10:17 - 2015-02-14 10:19 - 00000000 ____D () C:\Users\Administrator\Documents\FUSSBALL MANAGER 13

2015-02-13 21:48 - 2015-02-13 21:48 - 01600096 _____ () C:\Users\Administrator\Downloads\sortitoutsi.net - Northern Irish Premiership.rar

2015-02-13 17:28 - 2015-02-13 17:28 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Unity

2015-02-13 14:02 - 2015-02-13 14:02 - 00000907 _____ () C:\Users\Administrator\AppData\Local\recently-used.xbel

2015-02-13 13:59 - 2015-02-13 13:59 - 00000783 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk

2015-02-13 13:55 - 2015-02-13 13:55 - 00009127 _____ () C:\Users\Administrator\Downloads\gimp-2.8.14-setup-1.exe.torrent

2015-02-13 13:41 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2015-02-13 13:41 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-02-13 13:41 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll

2015-02-13 13:41 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll

2015-02-13 13:41 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-02-13 13:41 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-02-13 13:41 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-02-13 13:41 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-02-13 13:41 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll

2015-02-13 13:41 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll

2015-02-13 13:41 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2015-02-13 13:41 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2015-02-13 13:41 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2015-02-13 13:41 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2015-02-13 13:41 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2015-02-13 13:41 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2015-02-13 13:41 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2015-02-13 13:41 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-02-13 13:41 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2015-02-13 13:41 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2015-02-13 13:41 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2015-02-13 13:41 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2015-02-13 13:41 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
 

==================== One Month Modified Files and Folders =======
 

(If an entry is included in the fixlist, the file\folder will be moved.)
 

2015-03-12 21:32 - 2014-09-03 00:12 - 00000000 ____D () C:\ProgramData\Kaspersky Lab

2015-03-12 21:21 - 2014-04-26 01:14 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2015-03-12 21:14 - 2014-04-15 20:32 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2015-03-12 21:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru

2015-03-12 19:21 - 2014-04-11 20:39 - 00003954 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{13CA2C57-9EC1-40B1-A543-D479992DC238}

2015-03-12 18:33 - 2014-11-06 20:58 - 01795858 _____ () C:\Windows\WindowsUpdate.log

2015-03-12 18:14 - 2014-04-19 20:30 - 00000000 ___RD () C:\Users\Administrator\Dropbox

2015-03-12 18:14 - 2014-04-19 20:28 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Dropbox

2015-03-12 18:13 - 2014-04-15 20:32 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-03-12 13:44 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache

2015-03-12 01:02 - 2014-04-05 21:19 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\TS3Client

2015-03-12 00:17 - 2014-12-02 02:44 - 00000000 ____D () C:\Users\Administrator\Documents\ProfileCache

2015-03-12 00:08 - 2014-12-02 02:44 - 00000000 ____D () C:\Users\Administrator\Documents\The Crew

2015-03-11 20:26 - 2014-04-05 15:30 - 01780340 _____ () C:\Windows\system32\PerfStringBackup.INI

2015-03-11 20:26 - 2013-08-23 00:26 - 00765378 _____ () C:\Windows\system32\perfh007.dat

2015-03-11 20:26 - 2013-08-23 00:26 - 00159696 _____ () C:\Windows\system32\perfc007.dat

2015-03-11 20:20 - 2014-12-31 12:47 - 00000000 ____D () C:\Users\Administrator\AppData\Local\HTC MediaHub

2015-03-11 20:20 - 2014-11-15 19:00 - 00020229 _____ () C:\Windows\setupact.log

2015-03-11 20:20 - 2014-05-28 18:05 - 00000000 ____D () C:\ProgramData\NVIDIA

2015-03-11 20:20 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2015-03-11 20:20 - 2013-08-22 15:44 - 00493768 _____ () C:\Windows\system32\FNTCACHE.DAT

2015-03-11 20:19 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData

2015-03-11 20:19 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-03-11 20:19 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-03-11 20:19 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender

2015-03-11 20:19 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender

2015-03-11 20:19 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI

2015-03-11 19:53 - 2014-04-05 17:25 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3008043235-1487260414-1339302276-500

2015-03-11 19:49 - 2014-12-31 12:41 - 00000000 ____D () C:\Temp

2015-03-11 19:48 - 2014-04-06 00:27 - 00000000 ____D () C:\Users\Philipp\AppData\Local\NVIDIA Corporation

2015-03-11 19:48 - 2014-04-05 20:05 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA Corporation

2015-03-11 19:48 - 2014-04-05 16:51 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

2015-03-11 19:48 - 2014-04-05 16:51 - 00000000 ____D () C:\Program Files\NVIDIA Corporation

2015-03-11 19:48 - 2014-04-05 16:51 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation

2015-03-11 19:46 - 2014-04-11 19:48 - 00000000 ____D () C:\Users\Administrator\AppData\Local\CrashDumps

2015-03-11 19:17 - 2015-01-22 19:28 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2015-03-11 15:48 - 2014-04-12 22:27 - 00000000 ____D () C:\ProgramData\Microsoft Help

2015-03-11 15:48 - 2014-04-07 16:38 - 00000000 ____D () C:\Windows\system32\MRT

2015-03-11 15:48 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp

2015-03-11 15:45 - 2014-04-07 16:38 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-03-11 14:07 - 2014-04-19 20:30 - 00001097 _____ () C:\Users\Administrator\Desktop\Dropbox.lnk

2015-03-11 14:07 - 2014-04-19 20:30 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

2015-03-10 02:42 - 2014-04-05 17:19 - 00000000 ____D () C:\Users\Administrator

2015-03-09 22:39 - 2014-04-05 15:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2015-03-09 20:30 - 2014-04-05 18:39 - 00000000 ____D () C:\ProgramData\Origin

2015-03-09 15:16 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness

2015-03-08 17:29 - 2014-04-19 05:06 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\vlc

2015-03-04 22:24 - 2013-08-22 16:38 - 00792032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2015-03-04 22:24 - 2013-08-22 16:38 - 00178144 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2015-03-04 19:38 - 2014-07-23 19:50 - 00000000 ____D () C:\Users\Administrator\Documents\Euro Truck Simulator 2

2015-03-02 22:32 - 2014-08-30 19:56 - 00000000 ____D () C:\Users\Administrator\AppData\Local\JDownloader v2.0

2015-03-02 21:56 - 2014-05-09 18:15 - 00000905 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk

2015-03-02 21:56 - 2014-05-09 18:15 - 00000843 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk

2015-03-02 01:22 - 2014-04-15 02:03 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Free Download Manager

2015-02-28 22:36 - 2014-07-23 06:44 - 00001216 _____ () C:\Users\Administrator\Desktop\Amazon Music.lnk

2015-02-28 22:36 - 2014-05-12 16:36 - 00001630 _____ () C:\Windows\System32\Tasks\Amazon Music Helper

2015-02-28 18:06 - 2014-11-28 13:07 - 00004096 _____ () C:\Users\Public\Documents\0000A6E0.LCS

2015-02-28 18:05 - 2014-04-05 19:42 - 00000000 ____D () C:\ProgramData\Package Cache

2015-02-21 20:26 - 2014-04-28 21:59 - 00000720 _____ () C:\Windows\system32\usage.xml

2015-02-13 15:14 - 2014-04-21 18:38 - 00000000 ____D () C:\Users\Administrator\.gimp-2.8

2015-02-13 14:02 - 2014-04-21 18:40 - 00000000 ____D () C:\Users\Administrator\AppData\Local\gtk-2.0
 

==================== Files in the root of some directories =======
 

2014-07-08 04:08 - 2014-07-08 04:20 - 14155776 _____ () C:\Users\Administrator\AppData\Roaming\Sandra.mdb

2015-02-13 14:02 - 2015-02-13 14:02 - 0000907 _____ () C:\Users\Administrator\AppData\Local\recently-used.xbel

2014-04-20 00:05 - 2014-11-12 19:53 - 0007597 _____ () C:\Users\Administrator\AppData\Local\Resmon.ResmonCfg

2014-05-03 13:32 - 2014-05-03 15:33 - 0000080 _____ () C:\Users\Administrator\AppData\Local\X-Plane Installer.prf

2014-05-03 13:37 - 2014-05-03 16:38 - 0000073 _____ () C:\Users\Administrator\AppData\Local\X-Plane_drm.prf

2014-05-03 11:18 - 2014-05-03 11:18 - 0000036 _____ () C:\Users\Administrator\AppData\Local\x-plane_install_10.txt

2014-04-07 16:19 - 2014-04-07 16:19 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

2014-10-28 23:40 - 2014-10-28 23:40 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

2014-10-24 14:25 - 2014-10-24 14:25 - 0000036 ___SH () C:\ProgramData\Shrew Soft VPN.dat
 

Files to move or delete:

====================

C:\ProgramData\Shrew Soft VPN.dat
 
 

Some content of TEMP:

====================

C:\Users\Administrator\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpfmzs2d.dll

C:\Users\Administrator\AppData\Local\Temp\jre-8u31-windows-au.exe

C:\Users\Administrator\AppData\Local\Temp\King.exe

C:\Users\Administrator\AppData\Local\Temp\mailcheck_ff_2014_12_02.exe

C:\Users\Administrator\AppData\Local\Temp\nv3DVStreaming.dll

C:\Users\Administrator\AppData\Local\Temp\nvSCPAPI.dll

C:\Users\Administrator\AppData\Local\Temp\nvSCPAPI64.dll

C:\Users\Administrator\AppData\Local\Temp\nvStereoApiI.dll

C:\Users\Administrator\AppData\Local\Temp\nvStInst.exe

C:\Users\Administrator\AppData\Local\Temp\PCSChecker.exe

C:\Users\Administrator\AppData\Local\Temp\proxy_vole7028626912299732192.dll

C:\Users\Administrator\AppData\Local\Temp\sdan.exe

C:\Users\Administrator\AppData\Local\Temp\sdapk.exe

C:\Users\Administrator\AppData\Local\Temp\sdaspwn.exe

C:\Users\Administrator\AppData\Local\Temp\setup.exe

C:\Users\Administrator\AppData\Local\Temp\sfamcc00001.dll

C:\Users\Administrator\AppData\Local\Temp\sfareca00001.dll

C:\Users\Administrator\AppData\Local\Temp\sfextra.dll

C:\Users\Administrator\AppData\Local\Temp\SRLDetectionLibrary5394823676436471165.dll

C:\Users\Administrator\AppData\Local\Temp\vlc-2.1.5-win64.exe
 
 

==================== Bamital & volsnap Check =================
 

(There is no automatic fix for files that do not pass verification.)
 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 

LastRegBack: 2015-03-08 09:36
 

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015

Ran by Administrator at 2015-03-12 21:41:49

Running from C:\Users\Administrator\Downloads

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

(If an entry is included in the fixlist, it will be removed.)
 

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
 

==================== Installed Programs ======================
 

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 

@DD.ATC3.iMenu (HKLM-x32\...\@DD.ATC3.iMenu) (Version:  - )

@DD.ATC3.RJOO.Basic_v2.03 (HKLM-x32\...\@DD.ATC3.RJOO.Basic_v2.03) (Version:  - )

@DD.ATC3.ROAH_v2.02 (HKLM-x32\...\@DD.ATC3.ROAH_v2.02) (Version:  - )

64 Bit HP CIO Components Installer (Version: 16.2.1 - Hewlett-Packard) Hidden

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)

Activision(R) (x32 Version: 1.00.0000 - Activision) Hidden

Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)

aerosoft's - Aerosoft Airport Pack (HKLM-x32\...\{CFDD2CFF-C388-4BEC-85F0-1921C9F57F14}) (Version: 1.00 - aerosoft)

Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.2.0.3 - Aerosoft)

Aerosoft's - Catalina Island Demo - FSX (HKLM-x32\...\Catalina Island Demo - FSX) (Version: 1.00 - Aerosoft)

Amazon Music (HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\Amazon Amazon Music) (Version: 3.8.0.751 - Amazon Services LLC)

ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)

Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version:  - Ubisoft)

ASUS PMP Lite (x32 Version: 1.00.0000 - Kuroom) Hidden

ASUS Xonar DX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version:   - ASUSTeK Computer Inc.)

ASUS Xonar DX Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version:  - )

Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)

AutoCAD Architecture 2015 - Deutsch (German) (Version: 7.7.49.0 - Autodesk) Hidden

AutoCAD Architecture 2015 Language Pack - Deutsch (German) (Version: 7.7.49.0 - Autodesk) Hidden

Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.1.2.1000 - Autodesk)

Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)

Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 3.0.159.0 - Autodesk)

Autodesk AutoCAD Architecture 2015 - Deutsch (German) (HKLM\...\AutoCAD Architecture 2015 - Deutsch (German)) (Version: 7.7.49.0 - Autodesk)

Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)

Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)

Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)

Autodesk Content Service (x32 Version: 3.2.0.0 - Autodesk) Hidden

Autodesk Content Service Language Pack (x32 Version: 3.2.0.0 - Autodesk) Hidden

Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)

Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)

Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.3.1.39 - Autodesk)

Autodesk ReCap (Version: 1.3.1.39 - Autodesk) Hidden

Awesomium Redistributable (HKLM-x32\...\{5BCB064B-9F65-4E15-BAFB-669E72E54FD9}) (Version: 1.7.4.2 - SIX Networks GmbH)

Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version:  - )

Battlefield 2: Special Forces (HKLM-x32\...\{50D4CB89-AF34-4978-96DC-C3034062E901}) (Version:  - )

Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.23028 - Electronic Arts)

Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version:  - DICE)

Battlefield™ Hardline-Beta (HKLM-x32\...\{F5526D9D-13AD-4270-8707-AC921D168299}) (Version: 1.0.0.2 - Electronic Arts)

Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)

Battlestations: Pacific (HKLM-x32\...\Steam App 8170) (Version:  - Eidos Studio Hungary)

Blur(TM) (HKLM-x32\...\InstallShield_{589A63D3-89E1-4D9B-8DBC-6039BB27289E}) (Version: 1.00.0000 - Activision)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)

Broadcom NetLink Controller (HKLM\...\{AD8D300D-7ADD-4651-AB43-13188FD30D0C}) (Version: 16.2.1.1 - Broadcom Corporation)

Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)

Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)

CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP)

Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)

Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)

Cisco Systems VPN Client 5.0.07.0440 (HKLM\...\{5FDC06BF-3D3D-4367-8FFB-4FAFCB61972D}) (Version: 5.0.7 - Cisco Systems, Inc.)

Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version:  - Relic Entertainment)

Construction-Simulator 2015 (HKLM-x32\...\Steam App 289950) (Version:  - weltenbauer. Software Entwicklung GmbH)

CPUID CPU-Z 1.69 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )

CPUID HWMonitor 1.24 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )

Crash Time III (HKLM-x32\...\Crash Time III_is1) (Version:  - Synetic)

DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)

Data Lifeguard Diagnostic for Windows 1.28 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version:  - Western Digital Corporation)

Defiance (HKLM-x32\...\Steam App 224600) (Version:  - Trion Worlds, Inc.)

Dropbox (HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)

Emergency 4 Deluxe (HKLM-x32\...\{EDA12670-56B5-4459-BA21-D010F0E3EBA1}) (Version: 1.03.001 - )

EMERGENCY 5 (HKLM\...\EMERGENCY 5) (Version:  - Sixteen Tons Entertainment)

eMule (HKLM-x32\...\eMule) (Version:  - )

ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)

Explorer Suite IV (HKLM\...\Explorer Suite_is1) (Version:  - )

Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version:  - Ubisoft)

Flight Simulator X (HKLM-x32\...\RTMshadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version:  - )

Flight Simulator X Service Pack 1 (HKLM-x32\...\SP1shadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version:  - )

FM Genie Scout 15g version 1.0 15.2.1 beta 9 (HKLM-x32\...\FM Genie Scout 15g_is1) (Version: 1.0 15.2.1 beta 9 - )

Football Manager 2015 (HKLM-x32\...\Steam App 295270) (Version:  - Sports Interactive)

Football Manager 2015 Editor (HKLM-x32\...\Steam App 295350) (Version:  - )

Free Audio Converter version 5.0.45.716 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.45.716 - DVDVideoSoft Ltd.)

Free Download Manager 3.9.3 (HKLM-x32\...\Free Download Manager_is1) (Version:  - FreeDownloadManager.ORG)

GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.89 - Google Inc.)

Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)

Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden

GrabIt 1.7.3 Beta (build 1010) (HKLM-x32\...\GrabIt_is1) (Version:  - Ilan Shemes)

Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)

Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)

Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version:  - IO Interactive)

Hitman: Sniper Challenge (HKLM-x32\...\Steam App 205930) (Version:  - IO Interactive)

HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.14.0.001 - HTC Corporation)

HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.37.2 - HTC)

I am an Air Traffic Controller3 (HKLM-x32\...\I am an Air Traffic Controller3) (Version:  - )

inCloak VPN (HKLM-x32\...\{BBFA2085-A4FD-4BC0-BBBB-182479FB7101}) (Version: 1.01 - inCloak Network Ltd.)

Installer (x32 Version: 1.0.0 - Sierra Entertainment, Inc.) Hidden

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)

Intel(R) Smart Connect Technology (HKLM\...\{26AA61D4-B04D-4E0D-8E20-94A8FF2EE64D}) (Version: 4.2.40.2439 - Intel Corporation)

Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)

Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden

IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)

Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)

Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)

JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)

Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - JC2-MP Team)

Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{653C1B5A-3287-47B1-8613-0745D4E771C4}) (Version: 15.0.0.463 - Kaspersky Lab)

Kaspersky Internet Security (x32 Version: 15.0.0.463 - Kaspersky Lab) Hidden

King (HKLM-x32\...\King) (Version:  - )

Landwirtschafts Simulator 15 (HKLM-x32\...\FarmingSimulator2015DE_is1) (Version: 1.1.0.0 - GIANTS Software)

Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)

Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)

Microsoft AppLocale (HKLM-x32\...\{394BE3D9-7F57-4638-A8D1-1D88671913B7}) (Version: 1.0.0 - MS)

Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)

Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)

Microsoft Flight Simulator X: Acceleration (HKLM-x32\...\FlightSim_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: 10.0.61637.0 - Microsoft Game Studios)

Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)

Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Windows Application Compatibility Database (HKLM\...\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb) (Version:  - )

Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)

Modern Combat (HKLM-x32\...\Modern Combat 1.016) (Version: 1.016 - BSS Modern Combat Dev Team)

Modern Combat (x32 Version: 1.016 - BSS Modern Combat Dev Team) Hidden

MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)

Mozilla Firefox 36.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 de)) (Version: 36.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.6.0 - Mozilla)

Mozilla Thunderbird 31.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.5.0 (x86 de)) (Version: 31.5.0 - Mozilla)

MSXML 4.0 SP2 Parser und SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)

Need for Speed Most Wanted 2012 Version 1.5 (HKLM-x32\...\Need for Speed Most Wanted 2012_is1) (Version: 1.5 - EA Games)

NetBeans IDE 8.0 (HKLM\...\nbi-nb-base-8.0.0.0.201403101706) (Version: 8.0 - NetBeans.org)

Notepad Replacer 1.1.6 (HKLM-x32\...\0EDD95B3-6CED-4E8A-B1BF-78BF11C38837_is1) (Version: 1.1.6.0 - Binary Fortress Software)

Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team)

NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)

NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)

NVIDIA Miracast Virtueller Ton 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 347.52 - NVIDIA Corporation)

NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)

OkayFreedom (HKLM-x32\...\{3F3FB10C-7175-4D38-9335-3488B89C12AF}) (Version: 1.4.1 - Steganos Software GmbH)

OMC ModPack Client Version 1.2.4.8 (HKLM-x32\...\{E2F3187C-2B94-486F-8914-E69211487FB6}_is1) (Version: 1.2.4.8 - Odem Mortis)

OMSI 2 (HKLM-x32\...\Steam App 252530) (Version:  - MR-Software GbR)

OMSI Addon Manager Version 1.2.4 (HKLM-x32\...\{32B08666-1587-435D-988C-7958A04B218A}_is1) (Version: 1.2.4 - Jan Kiesewalter)

OpenAL (HKLM-x32\...\OpenAL) (Version:  - )

OpenOffice 4.0.1 (HKLM-x32\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)

Oracle VM VirtualBox 4.3.20 (HKLM\...\{DD8F7A7A-852F-4648-8A73-B8FC1DF5F082}) (Version: 4.3.20 - Oracle Corporation)

Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)

paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)

PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)

PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version:  - )

Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)

PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Sony Online Entertainment)

PlanetSide 2 (HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\SOE-PlanetSide 2) (Version:  - Sony Online Entertainment)

PoE:2 v2.5.0.0 (HKLM-x32\...\PoE:2) (Version: 2.5.0.0 - Point of Existence)

Port Forward Network Utilities (HKLM-x32\...\{88B1D36C-7B70-4C48-8D2F-AAB956ECF4C3}) (Version: 2.0.9 - Portforward, LLC)

Ports Of Call Classic Edition - astragon 1.2.2 (HKLM-x32\...\Ports Of Call Classic Edition - astragon 1.2.2) (Version:  - )

ProtectDisc Driver, Version 11 (HKLM-x32\...\ProtectDisc Driver 11) (Version: 11.0.0.12 - ProtectDisc Software GmbH)

PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)

Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)

Risen 2 - Dark Waters (HKLM-x32\...\Steam App 40390) (Version:  - Piranha Bytes)

Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version:  - Tripwire Interactive)

Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)

SeaTools for Windows (HKLM-x32\...\SeaTools for Windows) (Version:  - Seagate Technology)

Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)

SimCity 4 Rush Hour (HKLM-x32\...\{01339AE5-04D4-43F8-008E-13AD788DC4F7}) (Version:  - )

SiSoftware Sandra Lite 2014.SP2a (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 20.35.2014.6 - SiSoftware)

SketchUp-Import (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)

Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)

Smart Technology Programming Software 7.0.27.13 (HKLM\...\{C9193CBB-C31A-412A-A074-AD08F0F2CF3D}) (Version: 7.0.27.13 - Mad Catz)

Spintires (HKLM-x32\...\Steam App 263280) (Version:  - Oovee® Game Studios)

Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)

Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)

SWAT 4 - THE STETCHKOV SYNDICATE (HKLM-x32\...\InstallShield_{97E12F84-C033-4DA2-97D2-F540C3E292EA}) (Version: 1.0.0 - Sierra Entertainment, Inc.)

SWAT 4 (HKLM-x32\...\InstallShield_{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8}) (Version: 1.0.31763 - Ihr Firmenname)

SWAT 4 (x32 Version: 1.0.31763 - Ihr Firmenname) Hidden

System Requirements Lab CYRI (HKLM-x32\...\{1110A014-1471-4B66-BFDC-E8EED120CC59}) (Version: 6.0.20.0 - Husdawg, LLC)

TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15.1 - TeamSpeak Systems GmbH)

TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)

The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)

The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)

Train Fever (HKLM-x32\...\1424258777_is1) (Version: 2.0.0.1 - GOG.com)

Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version:  - Tunngle.net GmbH)

Unity Web Player (HKU\S-1-5-21-3008043235-1487260414-1339302276-500\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)

Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)

Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft)

Verfügbare Autodesk-Apps (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)

Very Sleepy version 0.82 (HKLM\...\Very Sleepy_is1) (Version: 0.82 - codersnotes.com)

VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)

WATCH_DOGS (HKLM-x32\...\Uplay Install 274) (Version:  - Ubisoft)

WinZip 16.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D3}) (Version: 16.5.10095 - WinZip Computing, S.L. )

World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version:  - Wargaming.net)

WRC 4 FIA World Rally Championship Update 1 (HKLM-x32\...\V1JDNEZJQVdvcmxkUmFsbHlDaGFtcGlvbnNoaXA=_is1) (Version: 1 - )
 

==================== Custom CLSID (selected items): ==========================
 

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> E:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> E:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> E:\Program Files\Autodesk\AutoCAD 2015\de-DE\acadficn.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3008043235-1487260414-1339302276-500_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
 

==================== Restore Points  =========================
 

12-03-2015 13:43:17 Geplanter Prüfpunkt
 

==================== Hosts content: ==========================
 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 

==================== Scheduled Tasks (whitelisted) =============
 

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 

Task: {0E146ADB-3F05-474C-B445-586FD00FF38B} - System32\Tasks\Amazon Music Helper => C:\Users\Administrator\AppData\Local\Amazon Music\Amazon Music Helper.exe [2015-02-27] ()

Task: {1CC1887D-8AC5-4B7D-99A8-C63741A3FFE7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)

Task: {5E51D9AA-DA96-4119-B5BA-416D26549495} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()

Task: {6FD00FBD-DD3F-4C38-90E8-2BC3CD0434A6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()

Task: {B90FFA48-F67F-4008-9020-AA953C2E5B4A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-03-11] (Microsoft Corporation)

Task: {D9C42A07-99DC-499C-8345-B8EA410DF49E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd)

Task: {E8BEB868-FB1B-4746-B039-843F309D04E6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-15] (Google Inc.)

Task: {ED6DD69E-9ED4-44CE-9F9B-9C856F1D2ED6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-15] (Google Inc.)

Task: {EEC4B4C0-9767-459B-BB3C-F243D4CF1DAD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 

==================== Loaded Modules (whitelisted) ==============
 

2013-08-12 18:06 - 2013-08-12 18:06 - 00198120 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe

2013-08-12 18:06 - 2013-08-12 18:06 - 00054760 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll

2013-08-12 18:06 - 2013-08-12 18:06 - 00034792 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll

2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe

2014-04-05 19:42 - 2015-02-03 11:41 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe

2014-05-28 18:05 - 2015-02-05 20:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2014-07-23 06:44 - 2015-02-27 23:44 - 05886272 _____ () C:\Users\Administrator\AppData\Local\Amazon Music\Amazon Music Helper.exe

2015-01-24 15:36 - 2008-07-11 15:04 - 00200704 ____N () C:\Windows\SysWOW64\HsMgr.exe

2015-01-24 15:36 - 2008-07-11 15:03 - 00282112 ____N () C:\Windows\System\HsMgr64.exe

2014-09-18 08:23 - 2014-09-18 08:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll

2014-10-14 19:51 - 2014-10-14 19:51 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll

2014-09-18 08:23 - 2014-09-18 08:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll

2014-10-14 19:51 - 2014-10-14 19:51 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll

2014-05-01 20:05 - 2014-05-01 20:05 - 00232328 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll

2014-05-01 20:05 - 2014-05-01 20:05 - 00048520 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll

2014-05-01 20:05 - 2014-05-01 20:05 - 00059784 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll

2014-05-01 20:05 - 2014-05-01 20:05 - 00922504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll

2015-02-26 15:36 - 2015-02-26 15:36 - 01845248 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\cefsimple.exe

2014-10-28 23:43 - 2014-09-04 04:41 - 00047496 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll

2014-10-28 23:43 - 2014-09-04 04:41 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll

2014-03-06 14:00 - 2014-03-06 14:00 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\kpcengine.2.3.dll

2011-03-04 11:49 - 2011-03-04 11:49 - 00202752 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll

2014-12-18 15:06 - 2014-12-18 15:06 - 00031080 _____ () E:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll

2014-12-18 15:08 - 2014-12-18 15:08 - 00607376 _____ () E:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll

2014-12-18 15:09 - 2014-12-18 15:09 - 00059752 _____ () E:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll

2014-12-18 15:08 - 2014-12-18 15:08 - 00036216 _____ () E:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll

2014-12-18 15:09 - 2014-12-18 15:09 - 00080248 _____ () E:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll

2014-12-18 15:11 - 2014-12-18 15:11 - 00129376 _____ () E:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll

2014-12-18 15:14 - 2014-12-18 15:14 - 00223592 _____ () E:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll

2014-04-07 16:10 - 2013-09-16 11:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

2015-01-24 15:36 - 2012-06-06 09:56 - 00143360 ____N () C:\Program Files\ASUS Xonar DX Audio\Customapp\VmixP8.dll

2013-03-12 17:10 - 2014-11-11 19:47 - 00774656 _____ () H:\Steam\SDL2.dll

2015-01-19 23:38 - 2014-12-02 01:29 - 05002752 _____ () H:\Steam\v8.dll

2014-05-21 18:55 - 2015-02-19 00:51 - 02360000 _____ () H:\Steam\video.dll

2015-01-19 23:38 - 2014-12-02 01:29 - 01612800 _____ () H:\Steam\icui18n.dll

2015-01-19 23:38 - 2014-12-02 01:29 - 01210368 _____ () H:\Steam\icuuc.dll

2014-08-29 17:15 - 2014-12-01 22:31 - 02396672 _____ () H:\Steam\libavcodec-56.dll

2014-08-29 17:15 - 2014-12-01 22:31 - 00479744 _____ () H:\Steam\libavformat-56.dll

2014-08-29 17:15 - 2014-12-01 22:31 - 00332800 _____ () H:\Steam\libavresample-2.dll

2014-08-29 17:15 - 2014-12-01 22:31 - 00442880 _____ () H:\Steam\libavutil-54.dll

2014-08-29 17:15 - 2014-12-01 22:31 - 00485888 _____ () H:\Steam\libswscale-3.dll

2011-07-17 16:34 - 2015-02-19 00:51 - 00702656 _____ () H:\Steam\bin\chromehtml.DLL

2010-04-26 19:21 - 2015-01-28 02:30 - 34641288 _____ () H:\Steam\bin\libcef.dll

2015-03-04 23:08 - 2015-03-04 23:08 - 00750080 _____ () C:\Users\Administrator\AppData\Roaming\Dropbox\bin\libGLESv2.dll

2015-03-12 18:14 - 2015-03-12 18:14 - 00043008 _____ () c:\Users\Administrator\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpfmzs2d.dll

2015-03-04 23:08 - 2015-03-04 23:08 - 00047616 _____ () C:\Users\Administrator\AppData\Roaming\Dropbox\bin\libEGL.dll

2015-03-04 23:08 - 2015-03-04 23:08 - 00865280 _____ () C:\Users\Administrator\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll

2015-03-04 23:07 - 2015-03-04 23:07 - 00200704 _____ () C:\Users\Administrator\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll

2015-03-12 18:14 - 2014-09-04 04:41 - 00104328 _____ () C:\Users\Administrator\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll

2015-02-26 16:54 - 2015-02-26 16:54 - 03348080 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll

2015-02-26 16:54 - 2015-02-26 16:54 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll

2015-02-26 16:54 - 2015-02-26 16:54 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

2014-08-14 19:41 - 2015-01-28 02:30 - 01709960 _____ () H:\Steam\bin\ffmpegsumo.dll

2014-04-20 00:42 - 2014-04-20 00:42 - 00468672 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com\npcontentblocker.dll

2014-04-20 00:42 - 2014-10-09 15:45 - 00642344 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com\npvkplugin.dll

2014-04-20 00:42 - 2014-04-20 00:42 - 00347328 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com\nponlinebanking.dll

2014-10-23 17:59 - 2014-10-23 19:11 - 00429056 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\OpenAL32.dll

2014-10-23 17:59 - 2014-10-23 19:12 - 01086976 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\twitchsdk_32_release.dll

2015-02-26 15:36 - 2015-02-26 15:44 - 40555520 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\libcef.dll

2014-10-23 17:59 - 2014-10-23 19:11 - 00394810 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\libmp3lame-ttv.dll

2014-10-23 19:12 - 2014-10-23 19:12 - 00113171 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\swresample-ttv-0.dll

2014-10-23 18:15 - 2014-10-23 18:15 - 00246332 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\avutil-ttv-51.dll

2014-10-23 19:09 - 2014-10-23 19:09 - 00151552 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\IntelLaptopGamingVista.dll

2009-12-28 02:21 - 2015-02-19 00:51 - 00358592 _____ () H:\Steam\steam.dll

2015-02-26 15:36 - 2015-02-26 15:44 - 01359360 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\libglesv2.dll

2015-02-26 15:44 - 2015-02-26 15:44 - 00212992 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\libegl.dll

2015-02-26 15:36 - 2015-02-26 15:44 - 09301504 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\pdf.dll

2015-02-26 15:36 - 2015-02-26 15:43 - 00985088 _____ () E:\SteamLibrary\steamapps\common\Football Manager 2015\ffmpegsumo.dll
 

==================== Alternate Data Streams (whitelisted) =========
 

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 

AlternateDataStreams: C:\Users\Administrator\Documents\Gameliebe  Neue Bestellung Nr. 1000127121.eml:OECustomProperty

AlternateDataStreams: C:\Users\Administrator\Documents\Re  Supportanfrage (Philipp-Dolling@t-online.de).eml:OECustomProperty

AlternateDataStreams: C:\Users\Administrator\Documents\Re  Supportanfrage2.eml:OECustomProperty

AlternateDataStreams: C:\Users\Administrator\Documents\roxxgames.de  Gutschrift Nr. # 101616 für Bestellung Nr. # 128240.eml:OECustomProperty

AlternateDataStreams: C:\ProgramData\TEMP:55B41E6A

AlternateDataStreams: C:\Users\Philipp\SkyDrive:ms-properties
 

==================== Safe Mode (whitelisted) ===================
 

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 

==================== EXE Association (whitelisted) ===============
 

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 

==================== Other Areas ============================
 

(Currently there is no automatic fix for this section.)
 

HKU\S-1-5-21-3008043235-1487260414-1339302276-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper

DNS Servers: 192.168.2.1
 

==================== MSCONFIG/TASK MANAGER disabled items ==
 

(Currently there is no automatic fix for this section.)
 
 

==================== Accounts: =============================
 

Administrator (S-1-5-21-3008043235-1487260414-1339302276-500 - Administrator - Enabled) => C:\Users\Administrator

Gast (S-1-5-21-3008043235-1487260414-1339302276-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-3008043235-1487260414-1339302276-1004 - Limited - Enabled)

Philipp (S-1-5-21-3008043235-1487260414-1339302276-1001 - Administrator - Enabled) => C:\Users\Philipp
 

==================== Faulty Device Manager Devices =============
 

Name: Cisco Systems VPN Adapter for 64-bit Windows

Description: Cisco Systems VPN Adapter for 64-bit Windows

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Cisco Systems

Service: CVirtA

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (03/12/2015 01:43:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (03/11/2015 08:20:07 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)

Description: Vom Ereignisanbieter "ProtectionManagement" wurde versucht, die Abfrage "select * from MSFT_MpEvent" zu registrieren, deren Zielklasse "MSFT_MpEvent" im Namespace "//./root/microsoft/protectionManagement" nicht vorhanden ist. Die Abfrage wird ignoriert.
 

Error: (03/11/2015 08:20:07 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)

Description: Vom Ereignisanbieter "" wurde versucht, die Abfrage "select * from MSFT_MpEvent" zu registrieren, deren Zielklasse "MSFT_MpEvent" im Namespace "//./root/microsoft/protectionManagement" nicht vorhanden ist. Die Abfrage wird ignoriert.
 

Error: (03/11/2015 07:48:43 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )

Description: NvStreamSvcFailed continue stopping. [0]
 

Error: (03/11/2015 07:46:34 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Name der fehlerhaften Anwendung: fm.exe, Version: 15.3.1.0, Zeitstempel: 0x54f89e3f

Name des fehlerhaften Moduls: fm.exe, Version: 15.3.1.0, Zeitstempel: 0x54f89e3f

Ausnahmecode: 0xc0000005

Fehleroffset: 0x00ca6556

ID des fehlerhaften Prozesses: 0xba4

Startzeit der fehlerhaften Anwendung: 0xfm.exe0

Pfad der fehlerhaften Anwendung: fm.exe1

Pfad des fehlerhaften Moduls: fm.exe2

Berichtskennung: fm.exe3

Vollständiger Name des fehlerhaften Pakets: fm.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: fm.exe5
 

Error: (03/11/2015 03:44:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (03/11/2015 01:17:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 2000
 

Error: (03/11/2015 01:17:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 2000
 

Error: (03/11/2015 01:17:09 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (03/09/2015 09:51:19 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )

Description: Das Volume "System-reserviert" wurde aufgrund eines Fehlers nicht optimiert: Falscher Parameter. (0x80070057)
 
 

System errors:

=============

Error: (03/12/2015 01:27:27 PM) (Source: DCOM) (EventID: 10010) (User: K-Town)

Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
 

Error: (03/12/2015 01:26:57 PM) (Source: DCOM) (EventID: 10010) (User: K-Town)

Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
 

Error: (03/11/2015 07:54:20 PM) (Source: DCOM) (EventID: 10010) (User: K-Town)

Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
 

Error: (03/11/2015 06:05:59 PM) (Source: volsnap) (EventID: 36) (User: )

Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
 

Error: (03/11/2015 03:44:55 PM) (Source: DCOM) (EventID: 10010) (User: K-Town)

Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
 

Error: (03/09/2015 10:39:52 PM) (Source: volsnap) (EventID: 36) (User: )

Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
 

Error: (03/09/2015 10:39:56 PM) (Source: EventLog) (EventID: 6008) (User: )

Description: Das System wurde zuvor am ‎09.‎03.‎2015 um 22:38:40 unerwartet heruntergefahren.
 

Error: (03/09/2015 10:38:49 PM) (Source: nvlddmkm) (EventID: 13) (User: )

Description: \Device\000000bfNVRM: Graphics TEX Exception on (GPC 1, TPC 1):    TEX FORMAT
 

Error: (03/09/2015 10:38:49 PM) (Source: nvlddmkm) (EventID: 13) (User: )

Description: \Device\000000bfVariable String to Large
 

Error: (03/09/2015 10:38:49 PM) (Source: nvlddmkm) (EventID: 13) (User: )

Description: \Device\000000bfNVRM: Graphics TEX Exception on (GPC 1, TPC 1):    TEX FORMAT
 
 

Microsoft Office Sessions:

=========================
 

CodeIntegrity Errors:

===================================

  Date: 2015-03-11 20:19:54.016

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-03-09 22:39:47.767

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-02-26 23:46:44.423

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-02-14 09:16:49.908

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-02-07 00:20:01.111

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-01-29 18:11:19.015

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-01-29 18:10:06.126

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-01-25 00:22:56.924

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-01-24 20:06:05.971

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

  Date: 2015-01-24 19:55:18.939

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 

==================== Memory info =========================== 
 

Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz

Percentage of memory in use: 22%

Total physical RAM: 16276.71 MB

Available physical RAM: 12673.8 MB

Total Pagefile: 18708.71 MB

Available Pagefile: 14440.24 MB

Total Virtual: 131072 MB

Available Virtual: 131071.79 MB
 

==================== Drives ================================
 

Drive c: (System) (Fixed) (Total:238.13 GB) (Free:2.98 GB) NTFS

Drive d: () (Fixed) (Total:55.68 GB) (Free:9.7 GB) NTFS

Drive e: (Programme (Neu)) (Fixed) (Total:931.51 GB) (Free:296.61 GB) NTFS

Drive f: (Programme (Alt)) (Fixed) (Total:596.17 GB) (Free:65.61 GB) NTFS

Drive g: () (Fixed) (Total:288.11 GB) (Free:41.01 GB) NTFS

Drive h: (DATA) (Fixed) (Total:308.06 GB) (Free:72.22 GB) NTFS

Drive k: (TDU2) (CDROM) (Total:6.14 GB) (Free:0 GB) CDFS

Drive l: (Volume) (Fixed) (Total:139.73 GB) (Free:119.15 GB) NTFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 955EDC6B)

Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=238.1 GB) - (Type=07 NTFS)
 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 55.9 GB) (Disk ID: 00000000)
 

Partition: GPT Partition Type.
 

========================================================

Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: A43A2D31)

Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 

========================================================

Disk: 3 (MBR Code: Windows 7 or 8) (Size: 139.7 GB) (Disk ID: 70523439)

Partition 1: (Not Active) - (Size=139.7 GB) - (Type=07 NTFS)
 

========================================================

Disk: 4 (MBR Code: Windows 7 or Vista) (Size: 596.2 GB) (Disk ID: 4260B29A)

Partition 1: (Active) - (Size=308.1 GB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=288.1 GB) - (Type=07 NTFS)
 

========================================================

Disk: 5 (MBR Code: Windows 7 or Vista) (Size: 596.2 GB) (Disk ID: 4260B292)

Partition 1: (Not Active) - (Size=596.2 GB) - (Type=07 NTFS)
 

==================== End Of Log ============================

MAR ist durch, keine Funde. Jedoch hat TDSSKiller zwei Sachen gefunden, SmartTechnology, die Treibersoftware meiner alten MadCatz R.A.T. 9, welche jedoch seit einem Monat nicht mehr auf dem PC ist. Würde die Software, sofern hier nichts gegen spricht, gerade deinstallieren. Zum Thema: Glaube nicht, dass diese gefährlich ist/sind.
Logfile von TDSSKiller im nächsten Post...

Code:

Malwarebytes Anti-Rootkit BETA 1.09.1.1004

www.malwarebytes.org
 

Database version:

  main:    v2015.03.13.09

  rootkit: v2015.02.25.01
 

Windows 8.1 x64 NTFS

Internet Explorer 11.0.9600.17690

Administrator :: K-TOWN [administrator]
 

14.03.2015 02:17:32

mbar-log-2015-03-14 (02-17-32).txt
 

Scan type: Quick scan

Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken

Scan options disabled: 

Objects scanned: 503670

Time elapsed: 8 minute(s), 37 second(s)
 

Memory Processes Detected: 0

(No malicious items detected)
 

Memory Modules Detected: 0

(No malicious items detected)
 

Registry Keys Detected: 0

(No malicious items detected)
 

Registry Values Detected: 0

(No malicious items detected)
 

Registry Data Items Detected: 0

(No malicious items detected)
 

Folders Detected: 0

(No malicious items detected)
 

Files Detected: 0

(No malicious items detected)
 

Physical Sectors Detected: 0

(No malicious items detected)
 

(end)

Code:

02:28:13.0198 0x1740  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04

02:28:16.0825 0x1740  ============================================================

02:28:16.0825 0x1740  Current date / time: 2015/03/14 02:28:16.0825

02:28:16.0825 0x1740  SystemInfo:

02:28:16.0825 0x1740  

02:28:16.0825 0x1740  OS Version: 6.3.9600 ServicePack: 0.0

02:28:16.0825 0x1740  Product type: Workstation

02:28:16.0825 0x1740  ComputerName: K-TOWN

02:28:16.0825 0x1740  UserName: Administrator

02:28:16.0825 0x1740  Windows directory: C:\Windows

02:28:16.0825 0x1740  System windows directory: C:\Windows

02:28:16.0825 0x1740  Running under WOW64

02:28:16.0825 0x1740  Processor architecture: Intel x64

02:28:16.0825 0x1740  Number of processors: 8

02:28:16.0825 0x1740  Page size: 0x1000

02:28:16.0826 0x1740  Boot type: Normal boot

02:28:16.0826 0x1740  ============================================================

02:28:16.0873 0x1740  KLMD registered as C:\Windows\system32\drivers\15316378.sys

02:28:17.0009 0x1740  System UUID: {556A339E-412F-9794-6994-C7C685EB3C65}

02:28:17.0302 0x1740  Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

02:28:17.0305 0x1740  Drive \Device\Harddisk1\DR1 - Size: 0xDF99E6000 ( 55.90 Gb ), SectorSize: 0x200, Cylinders: 0x1C81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

02:28:17.0322 0x1740  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

02:28:17.0322 0x1740  Drive \Device\Harddisk3\DR3 - Size: 0x22EF13E000 ( 139.74 Gb ), SectorSize: 0x200, Cylinders: 0x4741, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

02:28:17.0334 0x1740  Drive \Device\Harddisk4\DR4 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

02:28:17.0347 0x1740  Drive \Device\Harddisk5\DR5 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

02:28:17.0352 0x1740  ============================================================

02:28:17.0352 0x1740  \Device\Harddisk0\DR0:

02:28:17.0353 0x1740  MBR partitions:

02:28:17.0353 0x1740  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAF000

02:28:17.0353 0x1740  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xAF800, BlocksNum 0x1DC43000

02:28:17.0353 0x1740  \Device\Harddisk1\DR1:

02:28:17.0353 0x1740  GPT partitions:

02:28:17.0354 0x1740  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {78FEF8DA-8CB9-40CF-9DA7-C920FF783BC7}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000

02:28:17.0354 0x1740  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {D11B27C4-A302-4564-AC86-4A8C548A18C8}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000

02:28:17.0354 0x1740  \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {30A1D6DE-11C7-4A5A-8F1D-C62053A17F61}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0x6F5A000

02:28:17.0354 0x1740  MBR partitions:

02:28:17.0354 0x1740  \Device\Harddisk2\DR2:

02:28:17.0354 0x1740  MBR partitions:

02:28:17.0354 0x1740  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800

02:28:17.0354 0x1740  \Device\Harddisk3\DR3:

02:28:17.0354 0x1740  MBR partitions:

02:28:17.0354 0x1740  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x11777800

02:28:17.0354 0x1740  \Device\Harddisk4\DR4:

02:28:17.0354 0x1740  MBR partitions:

02:28:17.0355 0x1740  \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0x26820017

02:28:17.0355 0x1740  \Device\Harddisk4\DR4\Partition2: MBR, Type 0x7, StartLBA 0x26820800, BlocksNum 0x24037000

02:28:17.0355 0x1740  \Device\Harddisk5\DR5:

02:28:17.0355 0x1740  MBR partitions:

02:28:17.0355 0x1740  \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000

02:28:17.0355 0x1740  ============================================================

02:28:17.0356 0x1740  C: <-> \Device\Harddisk0\DR0\Partition2

02:28:17.0358 0x1740  D: <-> \Device\Harddisk1\DR1\Partition3

02:28:17.0385 0x1740  F: <-> \Device\Harddisk5\DR5\Partition1

02:28:17.0426 0x1740  G: <-> \Device\Harddisk4\DR4\Partition2

02:28:17.0460 0x1740  E: <-> \Device\Harddisk2\DR2\Partition1

02:28:17.0484 0x1740  H: <-> \Device\Harddisk4\DR4\Partition1

02:28:17.0485 0x1740  L: <-> \Device\Harddisk3\DR3\Partition1

02:28:17.0485 0x1740  ============================================================

02:28:17.0485 0x1740  Initialize success

02:28:17.0485 0x1740  ============================================================

02:28:53.0245 0x16f4  ============================================================

02:28:53.0245 0x16f4  Scan started

02:28:53.0245 0x16f4  Mode: Manual; SigCheck; TDLFS; 

02:28:53.0245 0x16f4  ============================================================

02:28:53.0245 0x16f4  KSN ping started

02:28:55.0611 0x16f4  KSN ping finished: true

02:28:56.0645 0x16f4  ================ Scan system memory ========================

02:28:56.0645 0x16f4  System memory - ok

02:28:56.0646 0x16f4  ================ Scan services =============================

02:28:56.0686 0x16f4  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys

02:28:56.0732 0x16f4  1394ohci - ok

02:28:56.0738 0x16f4  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\Windows\system32\drivers\3ware.sys

02:28:56.0745 0x16f4  3ware - ok

02:28:56.0753 0x16f4  [ 6CE02D42183CDF31315F208AE35F153F, 89ABA07D48FADF2CFA2A5C9390479B3436229DA4C0082B0EE4B27D66D3AB3B4F ] acedrv11        C:\Windows\system32\drivers\acedrv11.sys

02:28:56.0772 0x16f4  acedrv11 - ok

02:28:56.0785 0x16f4  [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\Windows\system32\drivers\ACPI.sys

02:28:56.0803 0x16f4  ACPI - ok

02:28:56.0806 0x16f4  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys

02:28:56.0813 0x16f4  acpiex - ok

02:28:56.0816 0x16f4  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys

02:28:56.0822 0x16f4  acpipagr - ok

02:28:56.0824 0x16f4  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys

02:28:56.0833 0x16f4  AcpiPmi - ok

02:28:56.0836 0x16f4  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys

02:28:56.0842 0x16f4  acpitime - ok

02:28:56.0855 0x16f4  [ C81147AB3B711331DA930E56D896650C, CBBD154F49B993910EC13A09AA8F660E6B6ECE99133612A7AAD7B0767A9ACAD2 ] AdAppMgrSvc     C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe

02:28:56.0868 0x16f4  AdAppMgrSvc - ok

02:28:56.0872 0x16f4  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

02:28:56.0876 0x16f4  AdobeARMservice - ok

02:28:56.0909 0x16f4  [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

02:28:56.0915 0x16f4  AdobeFlashPlayerUpdateSvc - ok

02:28:56.0931 0x16f4  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS

02:28:56.0951 0x16f4  ADP80XX - ok

02:28:56.0958 0x16f4  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

02:28:56.0969 0x16f4  AeLookupSvc - ok

02:28:56.0980 0x16f4  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\Windows\system32\drivers\afd.sys

02:28:56.0998 0x16f4  AFD - ok

02:28:57.0002 0x16f4  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\Windows\system32\drivers\agp440.sys

02:28:57.0008 0x16f4  agp440 - ok

02:28:57.0011 0x16f4  [ F0CB6DB513CAC393D04A0FCE0A59E1BF, E6EE159D0E6B1F666946B1FE421874044E89BB2EB60A521BAA111A1229FA7B2D ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys

02:28:57.0021 0x16f4  ahcache - ok

02:28:57.0024 0x16f4  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\Windows\System32\alg.exe

02:28:57.0037 0x16f4  ALG - ok

02:28:57.0042 0x16f4  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\Windows\System32\drivers\amdk8.sys

02:28:57.0052 0x16f4  AmdK8 - ok

02:28:57.0056 0x16f4  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys

02:28:57.0064 0x16f4  AmdPPM - ok

02:28:57.0067 0x16f4  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\Windows\system32\drivers\amdsata.sys

02:28:57.0074 0x16f4  amdsata - ok

02:28:57.0079 0x16f4  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys

02:28:57.0088 0x16f4  amdsbs - ok

02:28:57.0091 0x16f4  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\Windows\system32\drivers\amdxata.sys

02:28:57.0096 0x16f4  amdxata - ok

02:28:57.0100 0x16f4  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\Windows\system32\drivers\appid.sys

02:28:57.0110 0x16f4  AppID - ok

02:28:57.0113 0x16f4  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\Windows\System32\appidsvc.dll

02:28:57.0120 0x16f4  AppIDSvc - ok

02:28:57.0123 0x16f4  [ 7667B9D81EA8FD6540E6CF72F92161A6, 98F3D0E376F715EBE083FE112CAA640BCE0F13DCE0F244D059D7FA019EA3D24C ] Appinfo         C:\Windows\System32\appinfo.dll

02:28:57.0133 0x16f4  Appinfo - ok

02:28:57.0138 0x16f4  [ 8176FBA685178FB0F52D46693474FA50, 69FE3692C7FE24289A479ADD74F2C782B59A099B7B07FE5ACFC4DA899E40BFDE ] AppMgmt         C:\Windows\System32\appmgmts.dll

02:28:57.0148 0x16f4  AppMgmt - ok

02:28:57.0158 0x16f4  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\Windows\system32\AppReadiness.dll

02:28:57.0175 0x16f4  AppReadiness - ok

02:28:57.0196 0x16f4  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll

02:28:57.0225 0x16f4  AppXSvc - ok

02:28:57.0231 0x16f4  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys

02:28:57.0238 0x16f4  arcsas - ok

02:28:57.0241 0x16f4  [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

02:28:57.0249 0x16f4  AsyncMac - ok

02:28:57.0252 0x16f4  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\Windows\system32\drivers\atapi.sys

02:28:57.0257 0x16f4  atapi - ok

02:28:57.0262 0x16f4  [ 8779FDAE68BC948B0FE152E758CC8DA7, 13070C2073F8E7546B48AE9CF54067B9BB75DFCD98F2987B90FFAD20D40D54CF ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll

02:28:57.0273 0x16f4  AudioEndpointBuilder - ok

02:28:57.0289 0x16f4  [ 61EA45A645854FE81D8A924E2D93DFFE, 34F79532297F609CA93C380B68BB8B7B0F027F9C8F4FB8E02A9A43EA3D155F1B ] Audiosrv        C:\Windows\System32\Audiosrv.dll

02:28:57.0309 0x16f4  Audiosrv - ok

02:28:57.0314 0x16f4  [ DE3FF859EDF66F5E0106B23B3A4B09CE, 9F6D735E32F340547D5FDA595E2A461083AC581AC0719913D4841C0C5D7A2998 ] Autodesk Content Service C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe

02:28:57.0318 0x16f4  Autodesk Content Service - ok

02:28:57.0328 0x16f4  [ 058734C95991F6BEBF3D3075B8776234, D94A0E5893723C0F30D8215F001039AE9D903BF8EC3782D9583DEFD9B304B0CA ] AVP15.0.0       C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe

02:28:57.0336 0x16f4  AVP15.0.0 - ok

02:28:57.0341 0x16f4  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\Windows\System32\AxInstSV.dll

02:28:57.0350 0x16f4  AxInstSV - ok

02:28:57.0359 0x16f4  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys

02:28:57.0374 0x16f4  b06bdrv - ok

02:28:57.0378 0x16f4  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys

02:28:57.0386 0x16f4  BasicDisplay - ok

02:28:57.0389 0x16f4  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys

02:28:57.0398 0x16f4  BasicRender - ok

02:28:57.0401 0x16f4  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys

02:28:57.0406 0x16f4  bcmfn2 - ok

02:28:57.0413 0x16f4  [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC          C:\Windows\System32\bdesvc.dll

02:28:57.0426 0x16f4  BDESVC - ok

02:28:57.0428 0x16f4  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys

02:28:57.0436 0x16f4  Beep - ok

02:28:57.0439 0x16f4  [ B1359701847FF1FF415FA083F1610F48, 991F995B9CF614549F5F7EB5C5B2D47F34EFF0F47B35C4BF4CE716666B9DA1D3 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe

02:28:57.0442 0x16f4  BEService - detected UnsignedFile.Multi.Generic ( 1 )

02:28:59.0819 0x16f4  Detect skipped due to KSN trusted

02:28:59.0819 0x16f4  BEService - ok

02:28:59.0847 0x16f4  [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE             C:\Windows\System32\bfe.dll

02:28:59.0870 0x16f4  BFE - ok

02:28:59.0889 0x16f4  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\Windows\System32\qmgr.dll

02:28:59.0916 0x16f4  BITS - ok

02:28:59.0926 0x16f4  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

02:28:59.0936 0x16f4  Bonjour Service - ok

02:28:59.0940 0x16f4  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

02:28:59.0949 0x16f4  bowser - ok

02:28:59.0956 0x16f4  [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll

02:28:59.0968 0x16f4  BrokerInfrastructure - ok

02:28:59.0973 0x16f4  [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser         C:\Windows\System32\browser.dll

02:28:59.0982 0x16f4  Browser - ok

02:28:59.0985 0x16f4  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys

02:28:59.0994 0x16f4  BthAvrcpTg - ok

02:28:59.0997 0x16f4  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys

02:29:00.0004 0x16f4  BthHFEnum - ok

02:29:00.0007 0x16f4  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys

02:29:00.0014 0x16f4  bthhfhid - ok

02:29:00.0017 0x16f4  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys

02:29:00.0024 0x16f4  BTHMODEM - ok

02:29:00.0028 0x16f4  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\Windows\system32\bthserv.dll

02:29:00.0036 0x16f4  bthserv - ok

02:29:00.0039 0x16f4  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

02:29:00.0050 0x16f4  cdfs - ok

02:29:00.0056 0x16f4  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\Windows\System32\drivers\cdrom.sys

02:29:00.0065 0x16f4  cdrom - ok

02:29:00.0070 0x16f4  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\Windows\System32\certprop.dll

02:29:00.0083 0x16f4  CertPropSvc - ok

02:29:00.0086 0x16f4  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys

02:29:00.0093 0x16f4  circlass - ok

02:29:00.0101 0x16f4  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\Windows\system32\drivers\CLFS.sys

02:29:00.0113 0x16f4  CLFS - ok

02:29:00.0120 0x16f4  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys

02:29:00.0127 0x16f4  CmBatt - ok

02:29:00.0170 0x16f4  [ 2A01CA9628F36208A7D188F34B295192, 336532A03600759C8D243A0E8AAE334EB741EFE89165C1BE08339AE1EC5838B1 ] cmudaxp         C:\Windows\system32\drivers\cmudaxp.sys

02:29:00.0217 0x16f4  cmudaxp - ok

02:29:00.0231 0x16f4  [ 3930E508DDA46C1FF68FD963F350AA0A, BF63F9C7AB30E2A8199D65EDD6DCBB797C93A4A0B972373643FBE1C38BCFA697 ] CNG             C:\Windows\system32\Drivers\cng.sys

02:29:00.0246 0x16f4  CNG - ok

02:29:00.0251 0x16f4  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys

02:29:00.0257 0x16f4  CompositeBus - ok

02:29:00.0259 0x16f4  COMSysApp - ok

02:29:00.0262 0x16f4  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys

02:29:00.0270 0x16f4  condrv - ok

02:29:00.0292 0x16f4  [ 15FBADDC84ED202E59A4F1B201CC692C, A50092155B18DAD51049A72503002F08C1BB2DFDA239C4D3555360C163F2F782 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe

02:29:00.0301 0x16f4  cphs - ok

02:29:00.0315 0x16f4  cpuz136 - ok

02:29:00.0343 0x16f4  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\Windows\system32\cryptsvc.dll

02:29:00.0354 0x16f4  CryptSvc - ok

02:29:00.0368 0x16f4  [ EE2F3C0D6ADBC975D6B621EC15ACF4E2, D158C0FACA6344BCD77616EC3D23212F9FD76D7D0C834ACA51998B80162106D5 ] CSC             C:\Windows\system32\drivers\csc.sys

02:29:00.0384 0x16f4  CSC - ok

02:29:00.0398 0x16f4  [ 936D9E2871CEEFF6A33695D98374367B, C30D42E870F196C4FA20AF95C7B9D9C9C5414D6DDE71268F88C3FC5BF372E61B ] CscService      C:\Windows\System32\cscsvc.dll

02:29:00.0417 0x16f4  CscService - ok

02:29:00.0420 0x16f4  [ 44BDDEB03C84A1C993C992FFB5700357, 29080E9A434BB2A932783B0B5104BC9E3C514A0FFB387123B75F4F4045E353BC ] CVirtA          C:\Windows\system32\DRIVERS\CVirtA64.sys

02:29:00.0424 0x16f4  CVirtA - ok

02:29:00.0451 0x16f4  [ 98C413E1A2FB6E5A4C101C25B3D0B275, 86C02211285F1807A6B276F07C56DE1A54BD5947E513884D8D971A22F4362849 ] CVPND           C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe

02:29:00.0474 0x16f4  CVPND - ok

02:29:00.0481 0x16f4  [ 79AF0E203D089AF442A3F70ED00A37FB, BF28BF9AEE23A3052D5ADA6C1B4C255C5F09DED69BB88D2CA3C011D2C3CFA8C1 ] CVPNDRVA        C:\Windows\system32\Drivers\CVPNDRVA.sys

02:29:00.0490 0x16f4  CVPNDRVA - ok

02:29:00.0493 0x16f4  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\Windows\system32\drivers\dam.sys

02:29:00.0499 0x16f4  dam - ok

02:29:00.0514 0x16f4  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\Windows\system32\rpcss.dll

02:29:00.0535 0x16f4  DcomLaunch - ok

02:29:00.0545 0x16f4  [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc       C:\Windows\System32\defragsvc.dll

02:29:00.0560 0x16f4  defragsvc - ok

02:29:00.0569 0x16f4  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\Windows\system32\das.dll

02:29:00.0583 0x16f4  DeviceAssociationService - ok

02:29:00.0588 0x16f4  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll

02:29:00.0598 0x16f4  DeviceInstall - ok

02:29:00.0603 0x16f4  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys

02:29:00.0613 0x16f4  Dfsc - ok

02:29:00.0617 0x16f4  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys

02:29:00.0622 0x16f4  dg_ssudbus - ok

02:29:00.0630 0x16f4  [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp            C:\Windows\system32\dhcpcore.dll

02:29:00.0644 0x16f4  Dhcp - ok

02:29:00.0648 0x16f4  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\Windows\system32\drivers\disk.sys

02:29:00.0655 0x16f4  disk - ok

02:29:00.0658 0x16f4  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys

02:29:00.0666 0x16f4  dmvsc - ok

02:29:00.0671 0x16f4  [ 05CB5910B3CA6019FC3CCA815EE06FFB, 8FA532ED500BB1F08E8034A6125BDD53B74D5E6AB0A83A6185B07AAFCD90AA82 ] DNE             C:\Windows\system32\DRIVERS\dne64x.sys

02:29:00.0677 0x16f4  DNE - ok

02:29:00.0682 0x16f4  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\Windows\System32\dnsrslvr.dll

02:29:00.0694 0x16f4  Dnscache - ok

02:29:00.0700 0x16f4  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\Windows\System32\dot3svc.dll

02:29:00.0712 0x16f4  dot3svc - ok

02:29:00.0716 0x16f4  [ 27069CFFF29B7F04F4B1BB10154BE52B, 6869626F9A1D3F64224883C5E661638CEE893A3E29651C7B9302A03E52180415 ] dot4            C:\Windows\system32\DRIVERS\Dot4.sys

02:29:00.0723 0x16f4  dot4 - ok

02:29:00.0725 0x16f4  [ CC88A1D8A39752859101ECCE1F1BC888, F21C1D478180BC5E932BB2C2E4618E3ED463CA87ACEDEB139682D218435F82F1 ] Dot4Print       C:\Windows\System32\drivers\Dot4Prt.sys

02:29:00.0736 0x16f4  Dot4Print - ok

02:29:00.0739 0x16f4  [ B7D595F2F464F7B628AD53F06547792C, F5D06A91EF54FBF56305FCC882B854350B266B2A005D80CC77AEBC2929440729 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys

02:29:00.0743 0x16f4  dot4usb - ok

02:29:00.0748 0x16f4  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\Windows\system32\dps.dll

02:29:00.0764 0x16f4  DPS - ok

02:29:00.0767 0x16f4  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

02:29:00.0772 0x16f4  drmkaud - ok

02:29:00.0778 0x16f4  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll

02:29:00.0790 0x16f4  DsmSvc - ok

02:29:00.0796 0x16f4  [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01     C:\Windows\System32\drivers\dtsoftbus01.sys

02:29:00.0805 0x16f4  dtsoftbus01 - ok

02:29:00.0831 0x16f4  [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

02:29:00.0864 0x16f4  DXGKrnl - ok

02:29:00.0870 0x16f4  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\Windows\System32\eapsvc.dll

02:29:00.0878 0x16f4  Eaphost - ok

02:29:00.0880 0x16f4  EasyAntiCheat - ok

02:29:00.0931 0x16f4  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\Windows\system32\drivers\evbda.sys

02:29:00.0988 0x16f4  ebdrv - ok

02:29:00.0994 0x16f4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\Windows\System32\lsass.exe

02:29:01.0000 0x16f4  EFS - ok

02:29:01.0004 0x16f4  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys

02:29:01.0010 0x16f4  EhStorClass - ok

02:29:01.0015 0x16f4  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys

02:29:01.0023 0x16f4  EhStorTcgDrv - ok

02:29:01.0025 0x16f4  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys

02:29:01.0032 0x16f4  ErrDev - ok

02:29:01.0043 0x16f4  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\Windows\system32\es.dll

02:29:01.0057 0x16f4  EventSystem - ok

02:29:01.0063 0x16f4  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\Windows\system32\drivers\exfat.sys

02:29:01.0075 0x16f4  exfat - ok

02:29:01.0080 0x16f4  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\Windows\system32\drivers\fastfat.sys

02:29:01.0089 0x16f4  fastfat - ok

02:29:01.0101 0x16f4  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\Windows\system32\fxssvc.exe

02:29:01.0120 0x16f4  Fax - ok

02:29:01.0123 0x16f4  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\Windows\System32\drivers\fdc.sys

02:29:01.0130 0x16f4  fdc - ok

02:29:01.0132 0x16f4  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\Windows\system32\fdPHost.dll

02:29:01.0142 0x16f4  fdPHost - ok

02:29:01.0145 0x16f4  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\Windows\system32\fdrespub.dll

02:29:01.0155 0x16f4  FDResPub - ok

02:29:01.0159 0x16f4  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\Windows\system32\fhsvc.dll

02:29:01.0170 0x16f4  fhsvc - ok

02:29:01.0173 0x16f4  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

02:29:01.0179 0x16f4  FileInfo - ok

02:29:01.0182 0x16f4  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

02:29:01.0192 0x16f4  Filetrace - ok

02:29:01.0215 0x16f4  [ 8645F91F40B8D022C9AC3DABDF360A6B, 4F83080B1273C92470EB90D80B32056C913240DCC9C4C50B7BE85254066D654D ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe

02:29:01.0236 0x16f4  FlexNet Licensing Service 64 - ok

02:29:01.0240 0x16f4  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys

02:29:01.0247 0x16f4  flpydisk - ok

02:29:01.0255 0x16f4  [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

02:29:01.0266 0x16f4  FltMgr - ok

02:29:01.0289 0x16f4  [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache       C:\Windows\system32\FntCache.dll

02:29:01.0317 0x16f4  FontCache - ok

02:29:01.0322 0x16f4  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

02:29:01.0328 0x16f4  FontCache3.0.0.0 - ok

02:29:01.0331 0x16f4  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys

02:29:01.0337 0x16f4  FsDepends - ok

02:29:01.0339 0x16f4  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

02:29:01.0345 0x16f4  Fs_Rec - ok

02:29:01.0356 0x16f4  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys

02:29:01.0371 0x16f4  fvevol - ok

02:29:01.0375 0x16f4  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys

02:29:01.0381 0x16f4  FxPPM - ok

02:29:01.0384 0x16f4  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys

02:29:01.0390 0x16f4  gagp30kx - ok

02:29:01.0393 0x16f4  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys

02:29:01.0399 0x16f4  gencounter - ok

02:29:01.0403 0x16f4  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys

02:29:01.0410 0x16f4  GPIOClx0101 - ok

02:29:01.0431 0x16f4  [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc           C:\Windows\System32\gpsvc.dll

02:29:01.0459 0x16f4  gpsvc - ok

02:29:01.0464 0x16f4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

02:29:01.0470 0x16f4  gupdate - ok

02:29:01.0473 0x16f4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

02:29:01.0478 0x16f4  gupdatem - ok

02:29:01.0488 0x16f4  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

02:29:01.0499 0x16f4  HdAudAddService - ok

02:29:01.0504 0x16f4  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys

02:29:01.0512 0x16f4  HDAudBus - ok

02:29:01.0515 0x16f4  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys

02:29:01.0521 0x16f4  HidBatt - ok

02:29:01.0525 0x16f4  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\Windows\System32\drivers\hidbth.sys

02:29:01.0534 0x16f4  HidBth - ok

02:29:01.0537 0x16f4  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys

02:29:01.0543 0x16f4  hidi2c - ok

02:29:01.0546 0x16f4  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\Windows\System32\drivers\hidir.sys

02:29:01.0553 0x16f4  HidIr - ok

02:29:01.0556 0x16f4  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\Windows\system32\hidserv.dll

02:29:01.0564 0x16f4  hidserv - ok

02:29:01.0567 0x16f4  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys

02:29:01.0575 0x16f4  HidUsb - ok

02:29:01.0578 0x16f4  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\Windows\system32\kmsvc.dll

02:29:01.0588 0x16f4  hkmsvc - ok

02:29:01.0594 0x16f4  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\Windows\system32\ListSvc.dll

02:29:01.0606 0x16f4  HomeGroupListener - ok

02:29:01.0614 0x16f4  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

02:29:01.0629 0x16f4  HomeGroupProvider - ok

02:29:01.0632 0x16f4  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys

02:29:01.0639 0x16f4  HpSAMD - ok

02:29:01.0743 0x16f4  [ 5C8BC8A28798FD010E7ABC4E0D588CAA, 622CAFD3DCBB05E15539589FDD4002DA6F24790FC55BDF05AA3D043E8A34E53E ] HTCMonitorService E:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe

02:29:01.0753 0x16f4  HTCMonitorService - ok

02:29:01.0759 0x16f4  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\Windows\system32\DRIVERS\htcnprot.sys

02:29:01.0768 0x16f4  htcnprot - ok

02:29:01.0774 0x16f4  [ 7C7C986776D00E575BFBDE5DCBDC615D, 4CF12851A5A45917C3A9139B19D79434F2038611B617F83A714506CC7A1A6C61 ] HtcVCom32       C:\Windows\system32\DRIVERS\HtcVComV64.sys

02:29:01.0786 0x16f4  HtcVCom32 - ok

02:29:01.0805 0x16f4  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\Windows\system32\drivers\HTTP.sys

02:29:01.0826 0x16f4  HTTP - ok

02:29:01.0830 0x16f4  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys

02:29:01.0835 0x16f4  hwpolicy - ok

02:29:01.0837 0x16f4  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys

02:29:01.0843 0x16f4  hyperkbd - ok

02:29:01.0846 0x16f4  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys

02:29:01.0852 0x16f4  HyperVideo - ok

02:29:01.0857 0x16f4  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys

02:29:01.0865 0x16f4  i8042prt - ok

02:29:01.0869 0x16f4  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys

02:29:01.0873 0x16f4  iaLPSSi_GPIO - ok

02:29:01.0877 0x16f4  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys

02:29:01.0882 0x16f4  iaLPSSi_I2C - ok

02:29:01.0895 0x16f4  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys

02:29:01.0906 0x16f4  iaStorA - ok

02:29:01.0919 0x16f4  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys

02:29:01.0933 0x16f4  iaStorAV - ok

02:29:01.0937 0x16f4  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

02:29:01.0940 0x16f4  IAStorDataMgrSvc - ok

02:29:01.0949 0x16f4  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys

02:29:01.0960 0x16f4  iaStorV - ok

02:29:01.0966 0x16f4  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

02:29:01.0969 0x16f4  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )

02:29:04.0421 0x16f4  Detect skipped due to KSN trusted

02:29:04.0421 0x16f4  IDriverT - ok

02:29:04.0426 0x16f4  IEEtwCollectorService - ok

02:29:04.0499 0x16f4  [ C38AFE18A40ADF005647090DD3AC24F3, 302810C31B005DD4C9143233AB5B4F332C62AD866A7C7AB0E8F8F81AE1766B11 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys

02:29:04.0570 0x16f4  igfx - ok

02:29:04.0579 0x16f4  [ 7A510A9AFC7955DEE63F8DC243E31292, 13906F6212F4C116BE224F2A8AFFF089ACFED8F543E26FC6208FF38463366173 ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe

02:29:04.0587 0x16f4  igfxCUIService1.0.0.0 - ok

02:29:04.0590 0x16f4  [ E71AC94964ED675B3ED0727059B7F97B, 5468B5E9B75B10EA0BFBD81827FFC9CABFC69A4065CC5A5792DBC289D4DA27EE ] ikbevent        C:\Windows\system32\DRIVERS\ikbevent.sys

02:29:04.0594 0x16f4  ikbevent - ok

02:29:04.0613 0x16f4  [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT          C:\Windows\System32\ikeext.dll

02:29:04.0637 0x16f4  IKEEXT - ok

02:29:04.0641 0x16f4  [ 2FDB67F5B9F4E96B40FDC9D1AA0B686F, B556328D54F886792A89588F3FEFE38F7129E3D7A417CDC012778FA4EF37A8C1 ] imsevent        C:\Windows\system32\DRIVERS\imsevent.sys

02:29:04.0645 0x16f4  imsevent - ok

02:29:04.0650 0x16f4  [ 3F2BB021CB280880F8C1B7A6FEF9B447, CEC0BF9D6C9CF6E6A9F9B4E656BD47208AC977EDDC11C1C3BCD07EB50BABC017 ] INETMON         C:\Windows\System32\Drivers\INETMON.sys

02:29:04.0654 0x16f4  INETMON - ok

02:29:04.0657 0x16f4  [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys

02:29:04.0661 0x16f4  intaud_WaveExtensible - ok

02:29:04.0714 0x16f4  [ E9740A3BC0AE6EA035FF7ECE3A1B27B6, 4CA3E094B0057E143955DE5D41C3344688B6D2C4FFC0417235FF46312B600F99 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

02:29:04.0774 0x16f4  IntcAzAudAddService - ok

02:29:04.0790 0x16f4  [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe

02:29:04.0804 0x16f4  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )

02:29:07.0179 0x16f4  Detect skipped due to KSN trusted

02:29:07.0179 0x16f4  Intel(R) Capability Licensing Service Interface - ok

02:29:07.0204 0x16f4  [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe

02:29:07.0225 0x16f4  Intel(R) Capability Licensing Service TCP IP Interface - ok

02:29:07.0231 0x16f4  [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe

02:29:07.0236 0x16f4  Intel(R) ME Service - ok

02:29:07.0238 0x16f4  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys

02:29:07.0244 0x16f4  intelide - ok

02:29:07.0247 0x16f4  [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep        C:\Windows\system32\drivers\intelpep.sys

02:29:07.0252 0x16f4  intelpep - ok

02:29:07.0256 0x16f4  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\Windows\System32\drivers\intelppm.sys

02:29:07.0264 0x16f4  intelppm - ok

02:29:07.0268 0x16f4  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

02:29:07.0276 0x16f4  IpFilterDriver - ok

02:29:07.0292 0x16f4  [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

02:29:07.0315 0x16f4  iphlpsvc - ok

02:29:07.0319 0x16f4  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys

02:29:07.0329 0x16f4  IPMIDRV - ok

02:29:07.0333 0x16f4  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys

02:29:07.0345 0x16f4  IPNAT - ok

02:29:07.0347 0x16f4  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys

02:29:07.0355 0x16f4  IRENUM - ok

02:29:07.0358 0x16f4  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\Windows\system32\drivers\isapnp.sys

02:29:07.0363 0x16f4  isapnp - ok

02:29:07.0371 0x16f4  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys

02:29:07.0382 0x16f4  iScsiPrt - ok

02:29:07.0385 0x16f4  [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT            C:\Windows\System32\drivers\ISCTD64.sys

02:29:07.0389 0x16f4  ISCT - ok

02:29:07.0395 0x16f4  [ 03A3CE57926257CBBF60A1FF189C177B, 4B56EAB27FCB050A102C8B0D96F14484F8CE812AB5F51FA5A81B0B365A56BD1D ] ISCTAgent       C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe

02:29:07.0401 0x16f4  ISCTAgent - ok

02:29:07.0406 0x16f4  [ 5C9B001D8970C2DA36254A916F3DA8F7, 625AC5C3DFAE52BD34EC3F93742D1D2C229785E4F0F3484CFB7B8728A1C830DF ] iumsvc          C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe

02:29:07.0413 0x16f4  iumsvc - ok

02:29:07.0416 0x16f4  [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus          C:\Windows\System32\drivers\iwdbus.sys

02:29:07.0420 0x16f4  iwdbus - ok

02:29:07.0425 0x16f4  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

02:29:07.0430 0x16f4  jhi_service - ok

02:29:07.0439 0x16f4  [ 6EEB253FABF511192D05841B47A15FF9, 395F31E8FC186C07B4DF86FEC84429F00FA2BCA892864F616F1D2B3113A2288D ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys

02:29:07.0449 0x16f4  k57nd60a - ok

02:29:07.0453 0x16f4  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys

02:29:07.0459 0x16f4  kbdclass - ok

02:29:07.0462 0x16f4  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys

02:29:07.0468 0x16f4  kbdhid - ok

02:29:07.0471 0x16f4  [ DB7A09BC90DF20F44F16F8B0F9ED3491, 2DF5E042284D61368A5801B2557351B2C4B1044AA6F966DF4DDCE7B453D1B9AE ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys

02:29:07.0476 0x16f4  kbldfltr - ok

02:29:07.0479 0x16f4  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys

02:29:07.0486 0x16f4  kdnic - ok

02:29:07.0489 0x16f4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\Windows\system32\lsass.exe

02:29:07.0494 0x16f4  KeyIso - ok

02:29:07.0503 0x16f4  [ 67D1F7FA1DF9502DE12027D7C7782863, BCB92C1C11A7576FD7E91B160CBC3FB5A0C31FE028305021D7C10EC40C4D5013 ] kl1             C:\Windows\system32\DRIVERS\kl1.sys

02:29:07.0513 0x16f4  kl1 - ok

02:29:07.0516 0x16f4  [ F2EB9202FCCC81E0902D3C5A70037A44, 9554851BB68228500E69536B0C484B32FC92B85A76A7F1F268549212D0D5CFCA ] klelam          C:\Windows\system32\DRIVERS\klelam.sys

02:29:07.0522 0x16f4  klelam - ok

02:29:07.0526 0x16f4  [ C10F8065188403857CD3AE1397185877, 347BDA6371D25B6BE5FE1CB7FB7FBE2F469D74FCDBBD9BB25DD928D90D7BD235 ] klflt           C:\Windows\system32\DRIVERS\klflt.sys

02:29:07.0533 0x16f4  klflt - ok

02:29:07.0539 0x16f4  [ AB9F0954450B132CCC1CAD40AC3190B5, 2C8F31B4C93F2F7CB78B1FE47A38FC924BF7D4B68E861035921AD79FC27A9BEF ] klhk            C:\Windows\system32\DRIVERS\klhk.sys

02:29:07.0546 0x16f4  klhk - ok

02:29:07.0559 0x16f4  [ 0620A7BE4C98C4B1DDFE2BCBE6B29D1D, 72C0516A09CB852BE63DA6C4F1A4EE2544D0FCCFA5D86FE2600101038B7802CE ] KLIF            C:\Windows\system32\DRIVERS\klif.sys

02:29:07.0576 0x16f4  KLIF - ok

02:29:07.0580 0x16f4  [ 753BFA638ACE05983D4C64988CC13926, FE0D2604AE845D9AC35C793E1E0523BFF7FCA396183D7FED005E4CDF29381252 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys

02:29:07.0584 0x16f4  KLIM6 - ok

02:29:07.0587 0x16f4  [ 37ADA02E498051A4D533F21096789597, 569D0D29C509695C5136D5039AACAF3CAD70FA92AB3F7FE92B6F58C0C691F3F6 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys

02:29:07.0591 0x16f4  klkbdflt - ok

02:29:07.0594 0x16f4  [ 8849D8F6259D3494E8C5C9482EE40A08, 62C60FD28916407AEF3C4F8B8FF7E5FCDFAE261E772E672E3E06F0D0CA6D6729 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys

02:29:07.0598 0x16f4  klmouflt - ok

02:29:07.0600 0x16f4  [ 8C0EC95AD65A0DE3D6C040591D02BF02, 272FB83752B73684FA7BDBE256FAFD56138E4755AAEFED9E7EF8F0E3D0ACFAF2 ] klpd            C:\Windows\system32\DRIVERS\klpd.sys

02:29:07.0605 0x16f4  klpd - ok

02:29:07.0608 0x16f4  [ B14A25C9035DCE1108743CFE3340CB8E, 001E7FC5EB197D5863A00F0750E39FA94B2812BC975C721DFEA95F2A5396FB39 ] klwfp           C:\Windows\system32\DRIVERS\klwfp.sys

02:29:07.0613 0x16f4  klwfp - ok

02:29:07.0617 0x16f4  [ D043624FE4AE0A4894A785097C02EF09, 2259CA9BAC73902D291176AB689C101CACE115A8A1C2E6824CC66E928FA27552 ] kneps           C:\Windows\system32\DRIVERS\kneps.sys

02:29:07.0623 0x16f4  kneps - ok

02:29:07.0627 0x16f4  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

02:29:07.0633 0x16f4  KSecDD - ok

02:29:07.0638 0x16f4  [ 15C8C65CEA018C02EA0F648448C491C5, DF909704D22D891BE439B2E3D8386EA659444F91DC92AABFF9766446AEE5EBC0 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys

02:29:07.0646 0x16f4  KSecPkg - ok

02:29:07.0649 0x16f4  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys

02:29:07.0656 0x16f4  ksthunk - ok

02:29:07.0664 0x16f4  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\Windows\system32\msdtckrm.dll

02:29:07.0676 0x16f4  KtmRm - ok

02:29:07.0683 0x16f4  [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer    C:\Windows\system32\srvsvc.dll

02:29:07.0697 0x16f4  LanmanServer - ok

02:29:07.0704 0x16f4  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

02:29:07.0715 0x16f4  LanmanWorkstation - ok

02:29:07.0726 0x16f4  [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll

02:29:07.0741 0x16f4  lfsvc - ok

02:29:07.0745 0x16f4  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys

02:29:07.0749 0x16f4  LGBusEnum - ok

02:29:07.0752 0x16f4  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys

02:29:07.0756 0x16f4  LGVirHid - ok

02:29:07.0759 0x16f4  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

02:29:07.0767 0x16f4  lltdio - ok

02:29:07.0773 0x16f4  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\Windows\System32\lltdsvc.dll

02:29:07.0787 0x16f4  lltdsvc - ok

02:29:07.0790 0x16f4  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\Windows\System32\lmhsvc.dll

02:29:07.0798 0x16f4  lmhosts - ok

02:29:07.0805 0x16f4  [ 3DE66F47365AA8CEB18B1EE272F4FEBA, 8DDD6AB4AEDE3B2FEA0D3B63DD24E3F3422D6ADE067756A3919FCED53C349167 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

02:29:07.0814 0x16f4  LMS - ok

02:29:07.0819 0x16f4  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys

02:29:07.0826 0x16f4  LSI_SAS - ok

02:29:07.0829 0x16f4  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys

02:29:07.0835 0x16f4  LSI_SAS2 - ok

02:29:07.0839 0x16f4  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys

02:29:07.0845 0x16f4  LSI_SAS3 - ok

02:29:07.0848 0x16f4  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys

02:29:07.0854 0x16f4  LSI_SSS - ok

02:29:07.0867 0x16f4  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\Windows\System32\lsm.dll

02:29:07.0887 0x16f4  LSM - ok

02:29:07.0892 0x16f4  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\Windows\system32\drivers\luafv.sys

02:29:07.0900 0x16f4  luafv - ok

02:29:07.0903 0x16f4  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\Windows\system32\drivers\megasas.sys

02:29:07.0909 0x16f4  megasas - ok

02:29:07.0920 0x16f4  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys

02:29:07.0936 0x16f4  megasr - ok

02:29:07.0940 0x16f4  [ E0EF6C1399A9B1AAA0B28590411BED04, 10C193D1ED434A6DC2AD8C450012B9AF1C848A0A0B3B775F13495648FB77E009 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys

02:29:07.0945 0x16f4  MEIx64 - ok

02:29:07.0948 0x16f4  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\Windows\system32\mmcss.dll

02:29:07.0957 0x16f4  MMCSS - ok

02:29:07.0960 0x16f4  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\Windows\system32\drivers\modem.sys

02:29:07.0968 0x16f4  Modem - ok

02:29:07.0971 0x16f4  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\Windows\System32\drivers\monitor.sys

02:29:07.0979 0x16f4  monitor - ok

02:29:07.0983 0x16f4  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\Windows\System32\drivers\mouclass.sys

02:29:07.0988 0x16f4  mouclass - ok

02:29:07.0991 0x16f4  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\Windows\System32\drivers\mouhid.sys

02:29:07.0998 0x16f4  mouhid - ok

02:29:08.0001 0x16f4  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys

02:29:08.0008 0x16f4  mountmgr - ok

02:29:08.0012 0x16f4  [ 81E8AF6407EC3F41908FE37F054353EA, 756C7656ED68AEAE4225E952ED1CED0717264D3378DB8DF0B2D70B6EBC67C62F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

02:29:08.0019 0x16f4  MozillaMaintenance - ok

02:29:08.0023 0x16f4  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

02:29:08.0031 0x16f4  mpsdrv - ok

02:29:08.0045 0x16f4  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\Windows\system32\mpssvc.dll

02:29:08.0067 0x16f4  MpsSvc - ok

02:29:08.0073 0x16f4  [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys

02:29:08.0082 0x16f4  MRxDAV - ok

02:29:08.0090 0x16f4  [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

02:29:08.0102 0x16f4  mrxsmb - ok

02:29:08.0109 0x16f4  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

02:29:08.0120 0x16f4  mrxsmb10 - ok

02:29:08.0126 0x16f4  [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

02:29:08.0136 0x16f4  mrxsmb20 - ok

02:29:08.0140 0x16f4  [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys

02:29:08.0149 0x16f4  MsBridge - ok

02:29:08.0153 0x16f4  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\Windows\System32\msdtc.exe

02:29:08.0162 0x16f4  MSDTC - ok

02:29:08.0167 0x16f4  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\Windows\system32\drivers\Msfs.sys

02:29:08.0174 0x16f4  Msfs - ok

02:29:08.0179 0x16f4  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys

02:29:08.0184 0x16f4  msgpiowin32 - ok

02:29:08.0187 0x16f4  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys

02:29:08.0193 0x16f4  mshidkmdf - ok

02:29:08.0196 0x16f4  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys

02:29:08.0202 0x16f4  mshidumdf - ok

02:29:08.0205 0x16f4  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

02:29:08.0211 0x16f4  msisadrv - ok

02:29:08.0216 0x16f4  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

02:29:08.0224 0x16f4  MSiSCSI - ok

02:29:08.0227 0x16f4  msiserver - ok

02:29:08.0231 0x16f4  [ D22AE5313F6B7EFDDD8C117B5501F4A3, 1937EEE33BF9C4485F172B10FB17AEF3F3B8978371307F49C3338D74D96A8389 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll

02:29:08.0238 0x16f4  MsKeyboardFilter - ok

02:29:08.0240 0x16f4  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

02:29:08.0246 0x16f4  MSKSSRV - ok

02:29:08.0250 0x16f4  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys

02:29:08.0258 0x16f4  MsLldp - ok

02:29:08.0261 0x16f4  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

02:29:08.0267 0x16f4  MSPCLOCK - ok

02:29:08.0269 0x16f4  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

02:29:08.0276 0x16f4  MSPQM - ok

02:29:08.0284 0x16f4  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

02:29:08.0296 0x16f4  MsRPC - ok

02:29:08.0300 0x16f4  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys

02:29:08.0306 0x16f4  mssmbios - ok

02:29:08.0309 0x16f4  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

02:29:08.0315 0x16f4  MSTEE - ok

02:29:08.0317 0x16f4  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys

02:29:08.0323 0x16f4  MTConfig - ok

02:29:08.0327 0x16f4  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\Windows\system32\Drivers\mup.sys

02:29:08.0333 0x16f4  Mup - ok

02:29:08.0337 0x16f4  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys

02:29:08.0343 0x16f4  mvumis - ok

02:29:08.0351 0x16f4  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\Windows\system32\qagentRT.dll

02:29:08.0366 0x16f4  napagent - ok

02:29:08.0376 0x16f4  [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

02:29:08.0390 0x16f4  NativeWifiP - ok

02:29:08.0395 0x16f4  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\Windows\System32\ncasvc.dll

02:29:08.0406 0x16f4  NcaSvc - ok

02:29:08.0410 0x16f4  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\Windows\System32\ncbservice.dll

02:29:08.0420 0x16f4  NcbService - ok

02:29:08.0424 0x16f4  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll

02:29:08.0442 0x16f4  NcdAutoSetup - ok

02:29:08.0460 0x16f4  [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS            C:\Windows\system32\drivers\ndis.sys

02:29:08.0487 0x16f4  NDIS - ok

02:29:08.0490 0x16f4  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys

02:29:08.0498 0x16f4  NdisCap - ok

02:29:08.0501 0x16f4  [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys

02:29:08.0511 0x16f4  NdisImPlatform - ok

02:29:08.0514 0x16f4  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

02:29:08.0521 0x16f4  NdisTapi - ok

02:29:08.0525 0x16f4  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

02:29:08.0531 0x16f4  Ndisuio - ok

02:29:08.0534 0x16f4  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys

02:29:08.0541 0x16f4  NdisVirtualBus - ok

02:29:08.0547 0x16f4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

02:29:08.0557 0x16f4  NdisWan - ok

02:29:08.0562 0x16f4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys

02:29:08.0572 0x16f4  NdisWanLegacy - ok

02:29:08.0575 0x16f4  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

02:29:08.0583 0x16f4  NDProxy - ok

02:29:08.0587 0x16f4  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\Windows\system32\drivers\Ndu.sys

02:29:08.0596 0x16f4  Ndu - ok

02:29:08.0599 0x16f4  [ AFBF859B49F12B67630829DE7433D75F, 7680D2D5BA5519529F4C212F6B9498EA62874FB651811A3B8853691CDB0C42D4 ] Neo_VPN111      C:\Windows\system32\DRIVERS\Neo_VPN111.sys

02:29:08.0604 0x16f4  Neo_VPN111 - ok

02:29:08.0607 0x16f4  [ 96B4C0CE935F934C86662820294F7533, 118987F8A2EC912E1FF9060E9EF512C571343E66D356B09622F60044142345FC ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll

02:29:08.0611 0x16f4  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )

02:29:11.0149 0x16f4  Detect skipped due to KSN trusted

02:29:11.0149 0x16f4  Net Driver HPZ12 - ok

02:29:11.0156 0x16f4  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

02:29:11.0173 0x16f4  NetBIOS - ok

02:29:11.0186 0x16f4  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

02:29:11.0203 0x16f4  NetBT - ok

02:29:11.0207 0x16f4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\Windows\system32\lsass.exe

02:29:11.0214 0x16f4  Netlogon - ok

02:29:11.0221 0x16f4  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\Windows\System32\netman.dll

02:29:11.0233 0x16f4  Netman - ok

02:29:11.0244 0x16f4  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\Windows\System32\netprofmsvc.dll

02:29:11.0261 0x16f4  netprofm - ok

02:29:11.0270 0x16f4  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

02:29:11.0277 0x16f4  NetTcpPortSharing - ok

02:29:11.0281 0x16f4  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\Windows\system32\DRIVERS\netvsc63.sys

02:29:11.0289 0x16f4  netvsc - ok

02:29:11.0298 0x16f4  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\Windows\System32\nlasvc.dll

02:29:11.0312 0x16f4  NlaSvc - ok

02:29:11.0316 0x16f4  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\Windows\system32\drivers\Npfs.sys

02:29:11.0323 0x16f4  Npfs - ok

02:29:11.0326 0x16f4  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys

02:29:11.0334 0x16f4  npsvctrig - ok

02:29:11.0337 0x16f4  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\Windows\system32\nsisvc.dll

02:29:11.0344 0x16f4  nsi - ok

02:29:11.0347 0x16f4  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

02:29:11.0354 0x16f4  nsiproxy - ok

02:29:11.0386 0x16f4  [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

02:29:11.0429 0x16f4  Ntfs - ok

02:29:11.0433 0x16f4  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys

02:29:11.0439 0x16f4  Null - ok

02:29:11.0445 0x16f4  [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys

02:29:11.0452 0x16f4  NVHDA - ok

02:29:11.0618 0x16f4  [ 3B99271224C43ADAB5A7F8D4B574AE3F, 931B011EA7796C61922D892C11D880BCC0383FCECABC4F4855AF89BA20B9B01B ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys

02:29:11.0754 0x16f4  nvlddmkm - ok

02:29:11.0766 0x16f4  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys

02:29:11.0774 0x16f4  nvraid - ok

02:29:11.0780 0x16f4  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys

02:29:11.0787 0x16f4  nvstor - ok

02:29:11.0788 0x16f4  NvStreamKms - ok

02:29:11.0805 0x16f4  [ 97ADEBE576474D4CEC53F8E06590FFC8, 2CC8587AAB595D7621AA57A33D94789BD9DC6DBFB4FA9BDEFBB425B7ACCB65AB ] nvsvc           C:\Windows\system32\nvvsvc.exe

02:29:11.0822 0x16f4  nvsvc - ok

02:29:11.0824 0x16f4  nvvad_WaveExtensible - ok

02:29:11.0828 0x16f4  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

02:29:11.0835 0x16f4  nv_agp - ok

02:29:11.0844 0x16f4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

02:29:11.0855 0x16f4  odserv - ok

02:29:11.0862 0x16f4  [ D1A3BE27A7A8C300EBDEF20369F45F1D, AFDF524CC977ACFA12BB3B958D9085E4E7CDE1612DB926F94BA3F2C8992457A1 ] OkayFreedom VPN Starter Service C:\Program Files (x86)\OkayFreedom\OkayFreedomService.exe

02:29:11.0870 0x16f4  OkayFreedom VPN Starter Service - ok

02:29:11.0912 0x16f4  [ 4E2D0656946F2A19FED1C60E0E4FC1AF, 5551D5BD89EB650C5485BBB58DAA5473044B7C967B72687A27430FA9A1E812FE ] Origin Client Service D:\Program Files (x86)\Origin\OriginClientService.exe

02:29:11.0946 0x16f4  Origin Client Service - ok

02:29:11.0952 0x16f4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

02:29:11.0958 0x16f4  ose - ok

02:29:11.0967 0x16f4  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll

02:29:11.0984 0x16f4  p2pimsvc - ok

02:29:11.0996 0x16f4  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\Windows\system32\p2psvc.dll

02:29:12.0012 0x16f4  p2psvc - ok

02:29:12.0017 0x16f4  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\Windows\System32\drivers\parport.sys

02:29:12.0024 0x16f4  Parport - ok

02:29:12.0029 0x16f4  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\Windows\system32\drivers\partmgr.sys

02:29:12.0036 0x16f4  partmgr - ok

02:29:12.0041 0x16f4  [ 446462BBA744DA60379574926FD51EAB, 4A79E8EF28670333F4733FA0016508DC88E9BDC566B455DA5EDEDC514612180A ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe

02:29:12.0050 0x16f4  PassThru Service - detected UnsignedFile.Multi.Generic ( 1 )

02:29:14.0430 0x16f4  Detect skipped due to KSN trusted

02:29:14.0430 0x16f4  PassThru Service - ok

02:29:14.0448 0x16f4  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\Windows\System32\pcasvc.dll

02:29:14.0471 0x16f4  PcaSvc - ok

02:29:14.0479 0x16f4  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\Windows\system32\drivers\pci.sys

02:29:14.0488 0x16f4  pci - ok

02:29:14.0491 0x16f4  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys

02:29:14.0496 0x16f4  pciide - ok

02:29:14.0501 0x16f4  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys

02:29:14.0507 0x16f4  pcmcia - ok

02:29:14.0510 0x16f4  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\Windows\system32\drivers\pcw.sys

02:29:14.0516 0x16f4  pcw - ok

02:29:14.0519 0x16f4  [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc             C:\Windows\system32\drivers\pdc.sys

02:29:14.0525 0x16f4  pdc - ok

02:29:14.0538 0x16f4  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

02:29:14.0554 0x16f4  PEAUTH - ok

02:29:14.0588 0x16f4  [ 084DE525DFE82AE7453DD527390FA110, 8216AE63AE740D97204CDED6543B66FC1FB55DB86D42FBA0EC629361C40F9EC0 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll

02:29:14.0631 0x16f4  PeerDistSvc - ok

02:29:14.0654 0x16f4  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe

02:29:14.0662 0x16f4  PerfHost - ok

02:29:14.0688 0x16f4  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\Windows\system32\pla.dll

02:29:14.0721 0x16f4  pla - ok

02:29:14.0726 0x16f4  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

02:29:14.0733 0x16f4  PlugPlay - ok

02:29:14.0736 0x16f4  [ 028E6651E11162AE4F4D0283D78A2EC4, EE34CB8BF5BE95E1841A14111D55170BEEEC8C19B6396763A474CC96E5889D9F ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll

02:29:14.0739 0x16f4  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )

02:29:17.0199 0x16f4  Detect skipped due to KSN trusted

02:29:17.0199 0x16f4  Pml Driver HPZ12 - ok

02:29:17.0206 0x16f4  [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe

02:29:17.0217 0x16f4  PnkBstrA - ok

02:29:17.0222 0x16f4  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll

02:29:17.0232 0x16f4  PNRPAutoReg - ok

02:29:17.0243 0x16f4  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll

02:29:17.0256 0x16f4  PNRPsvc - ok

02:29:17.0265 0x16f4  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

02:29:17.0278 0x16f4  PolicyAgent - ok

02:29:17.0282 0x16f4  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\Windows\system32\umpo.dll

02:29:17.0292 0x16f4  Power - ok

02:29:17.0295 0x16f4  [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

02:29:17.0303 0x16f4  PptpMiniport - ok

02:29:17.0349 0x16f4  [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll

02:29:17.0395 0x16f4  PrintNotify - ok

02:29:17.0401 0x16f4  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\Windows\System32\drivers\processr.sys

02:29:17.0407 0x16f4  Processor - ok

02:29:17.0414 0x16f4  [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc         C:\Windows\system32\profsvc.dll

02:29:17.0424 0x16f4  ProfSvc - ok

02:29:17.0429 0x16f4  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\Windows\system32\DRIVERS\pacer.sys

02:29:17.0437 0x16f4  Psched - ok

02:29:17.0444 0x16f4  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\Windows\system32\qwave.dll

02:29:17.0456 0x16f4  QWAVE - ok

02:29:17.0459 0x16f4  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

02:29:17.0467 0x16f4  QWAVEdrv - ok

02:29:17.0469 0x16f4  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

02:29:17.0476 0x16f4  RasAcd - ok

02:29:17.0480 0x16f4  [ 674A4702E4E144E8710ED1A2EC6DD049, 613A921101A6815C9185D5EF3E251A592604E56FADE945BB7E256885CAD473BC ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys

02:29:17.0488 0x16f4  RasAgileVpn - ok

02:29:17.0491 0x16f4  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\Windows\System32\rasauto.dll

02:29:17.0500 0x16f4  RasAuto - ok

02:29:17.0504 0x16f4  [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

02:29:17.0512 0x16f4  Rasl2tp - ok

02:29:17.0523 0x16f4  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\Windows\System32\rasmans.dll

02:29:17.0539 0x16f4  RasMan - ok

02:29:17.0543 0x16f4  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

02:29:17.0551 0x16f4  RasPppoe - ok

02:29:17.0555 0x16f4  [ 2B0F1677CDD08967005F34488559BC6F, FFF168EBD171C0B85A448AD1A04F66534E889AE1DC128F68EA3F35D5996C8D39 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

02:29:17.0562 0x16f4  RasSstp - ok

02:29:17.0571 0x16f4  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

02:29:17.0584 0x16f4  rdbss - ok

02:29:17.0588 0x16f4  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys

02:29:17.0596 0x16f4  rdpbus - ok

02:29:17.0601 0x16f4  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys

02:29:17.0610 0x16f4  RDPDR - ok

02:29:17.0614 0x16f4  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

02:29:17.0620 0x16f4  RdpVideoMiniport - ok

02:29:17.0626 0x16f4  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys

02:29:17.0634 0x16f4  rdyboost - ok

02:29:17.0650 0x16f4  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\Windows\system32\drivers\ReFS.sys

02:29:17.0672 0x16f4  ReFS - ok

02:29:17.0679 0x16f4  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\Windows\System32\mprdim.dll

02:29:17.0690 0x16f4  RemoteAccess - ok

02:29:17.0695 0x16f4  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\Windows\system32\regsvc.dll

02:29:17.0707 0x16f4  RemoteRegistry - ok

02:29:17.0710 0x16f4  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll

02:29:17.0718 0x16f4  RpcEptMapper - ok

02:29:17.0721 0x16f4  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\Windows\system32\locator.exe

02:29:17.0727 0x16f4  RpcLocator - ok

02:29:17.0740 0x16f4  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\Windows\system32\rpcss.dll

02:29:17.0757 0x16f4  RpcSs - ok

02:29:17.0761 0x16f4  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

02:29:17.0769 0x16f4  rspndr - ok

02:29:17.0771 0x16f4  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys

02:29:17.0778 0x16f4  s3cap - ok

02:29:17.0783 0x16f4  [ AEED412196AA928A752641E41F358464, 61EE27F01C2D6F09A34F56DC0116D78A026BB46E31347A79E66A7EDA5655754F ] SaiK1709        C:\Windows\system32\DRIVERS\SaiK1709.sys

02:29:17.0789 0x16f4  SaiK1709 - ok

02:29:17.0792 0x16f4  [ B08581EDF3290210D3366CD2D992F6C2, FF1BE97B8F37FF39B784CAB254F2460B7F7A84C45BAD5CDB06FE5C29CF293BE5 ] SaiMini         C:\Windows\System32\drivers\SaiMini.sys

02:29:17.0796 0x16f4  SaiMini - ok

02:29:17.0799 0x16f4  [ D086C2F45D328C2F63FC6B4CD79FCB66, BF3D27D95C83D2454AE62BAFE9297E08BB58EA4C7FBFBDEE075A4FFC6085735C ] SaiNtBus        C:\Windows\system32\drivers\SaiBus.sys

02:29:17.0804 0x16f4  SaiNtBus - ok

02:29:17.0807 0x16f4  [ E0BB0A98692A8227A281ED0FA71F6AE4, 2E68EED3AFC8A9096EC030E76C45BF827D2BF94CB96C1B97A9F8D59FAAA41E6F ] SaiU1709        C:\Windows\System32\drivers\SaiU1709.sys

02:29:17.0811 0x16f4  SaiU1709 - ok

02:29:17.0814 0x16f4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\Windows\system32\lsass.exe

02:29:17.0820 0x16f4  SamSs - ok

02:29:17.0917 0x16f4  [ 5EFBBFCC6ADAC121C8E2FE76641ED329, 0EAB16C7F54B61620277977F8C332737081A46BC6BBDE50742B6904BDD54F502 ] SANDRA          E:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP2a\WNt500x64\Sandra.sys

02:29:17.0925 0x16f4  SANDRA - ok

02:29:17.0936 0x16f4  [ 65FCC1102E87462548AF8EC49620C9FC, 99FA15DA12D7550364F598EF78F04051FE1743A1D74BE6048DF840757FB08D0B ] SandraAgentSrv  E:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP2a\RpcAgentSrv.exe

02:29:17.0944 0x16f4  SandraAgentSrv - detected UnsignedFile.Multi.Generic ( 1 )

02:29:20.0324 0x16f4  Detect skipped due to KSN trusted

02:29:20.0324 0x16f4  SandraAgentSrv - ok

02:29:20.0333 0x16f4  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

02:29:20.0347 0x16f4  sbp2port - ok

02:29:20.0358 0x16f4  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\Windows\System32\SCardSvr.dll

02:29:20.0376 0x16f4  SCardSvr - ok

02:29:20.0382 0x16f4  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll

02:29:20.0394 0x16f4  ScDeviceEnum - ok

02:29:20.0397 0x16f4  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys

02:29:20.0405 0x16f4  scfilter - ok

02:29:20.0425 0x16f4  [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule        C:\Windows\system32\schedsvc.dll

02:29:20.0452 0x16f4  Schedule - ok

02:29:20.0458 0x16f4  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\Windows\System32\certprop.dll

02:29:20.0467 0x16f4  SCPolicySvc - ok

02:29:20.0470 0x16f4  [ AD7189E85A0801DE0507C610963A3CD0, 0AA9F3C9D252624CC62EC95FD910C6911E136DD3E66159CEB9857BC7AB70FAA2 ] ScpVBus         C:\Windows\System32\drivers\ScpVBus.sys

02:29:20.0474 0x16f4  ScpVBus - ok

02:29:20.0483 0x16f4  [ 7B7C482CF48E6EE33664340D1A78E6FE, CE5077C4B0372F4F9F02B0B37AE58C0DAEFCA9D242065731A23F072506430575 ] sdbus           C:\Windows\System32\drivers\sdbus.sys

02:29:20.0491 0x16f4  sdbus - ok

02:29:20.0496 0x16f4  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\Windows\System32\drivers\sdstor.sys

02:29:20.0501 0x16f4  sdstor - ok

02:29:20.0504 0x16f4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys

02:29:20.0510 0x16f4  secdrv - ok

02:29:20.0513 0x16f4  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\Windows\system32\seclogon.dll

02:29:20.0521 0x16f4  seclogon - ok

02:29:20.0524 0x16f4  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\Windows\System32\sens.dll

02:29:20.0534 0x16f4  SENS - ok

02:29:20.0540 0x16f4  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\Windows\system32\sensrsvc.dll

02:29:20.0552 0x16f4  SensrSvc - ok

02:29:20.0555 0x16f4  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\Windows\system32\drivers\SerCx.sys

02:29:20.0561 0x16f4  SerCx - ok

02:29:20.0566 0x16f4  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys

02:29:20.0573 0x16f4  SerCx2 - ok

02:29:20.0576 0x16f4  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\Windows\System32\drivers\serenum.sys

02:29:20.0582 0x16f4  Serenum - ok

02:29:20.0587 0x16f4  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\Windows\System32\drivers\serial.sys

02:29:20.0593 0x16f4  Serial - ok

02:29:20.0596 0x16f4  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\Windows\System32\drivers\sermouse.sys

02:29:20.0603 0x16f4  sermouse - ok

02:29:20.0612 0x16f4  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\Windows\system32\sessenv.dll

02:29:20.0626 0x16f4  SessionEnv - ok

02:29:20.0628 0x16f4  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys

02:29:20.0635 0x16f4  sfloppy - ok

02:29:20.0643 0x16f4  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\Windows\System32\ipnathlp.dll

02:29:20.0670 0x16f4  SharedAccess - ok

02:29:20.0685 0x16f4  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

02:29:20.0709 0x16f4  ShellHWDetection - ok

02:29:20.0712 0x16f4  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys

02:29:20.0718 0x16f4  SiSRaid2 - ok

02:29:20.0722 0x16f4  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys

02:29:20.0727 0x16f4  SiSRaid4 - ok

02:29:20.0735 0x16f4  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

02:29:20.0745 0x16f4  SkypeUpdate - ok

02:29:20.0748 0x16f4  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\Windows\System32\smphost.dll

02:29:20.0757 0x16f4  smphost - ok

02:29:20.0762 0x16f4  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

02:29:20.0770 0x16f4  SNMPTRAP - ok

02:29:20.0781 0x16f4  [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport       C:\Windows\system32\drivers\spaceport.sys

02:29:20.0792 0x16f4  spaceport - ok

02:29:20.0796 0x16f4  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys

02:29:20.0802 0x16f4  SpbCx - ok

02:29:20.0817 0x16f4  [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler         C:\Windows\System32\spoolsv.exe

02:29:20.0837 0x16f4  Spooler - ok

02:29:20.0950 0x16f4  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\Windows\system32\sppsvc.exe

02:29:21.0059 0x16f4  sppsvc - ok

02:29:21.0072 0x16f4  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\Windows\system32\DRIVERS\srv.sys

02:29:21.0084 0x16f4  srv - ok

02:29:21.0097 0x16f4  [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

02:29:21.0110 0x16f4  srv2 - ok

02:29:21.0117 0x16f4  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

02:29:21.0125 0x16f4  srvnet - ok

02:29:21.0131 0x16f4  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

02:29:21.0142 0x16f4  SSDPSRV - ok

02:29:21.0147 0x16f4  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\Windows\system32\sstpsvc.dll

02:29:21.0157 0x16f4  SstpSvc - ok

02:29:21.0163 0x16f4  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys

02:29:21.0169 0x16f4  ssudmdm - ok

02:29:21.0184 0x16f4  [ CC7ED069C2FC82B5B1555C2044C765CC, CE43363544A3EE2C5133CD0D47BF34AFAFA4EAD6AC9EB9A772EE55E89D4D89D4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe

02:29:21.0200 0x16f4  Steam Client Service - ok

02:29:21.0210 0x16f4  [ 49B1E5AF3AA400752A20BE169CB73DFA, D990BC79B289912EB07F3FD50F1236C593A45C5E9B7BD8162269687258E07CE2 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

02:29:21.0219 0x16f4  Stereo Service - ok

02:29:21.0222 0x16f4  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys

02:29:21.0228 0x16f4  stexstor - ok

02:29:21.0240 0x16f4  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\Windows\System32\wiaservc.dll

02:29:21.0259 0x16f4  stisvc - ok

02:29:21.0263 0x16f4  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys

02:29:21.0269 0x16f4  storahci - ok

02:29:21.0273 0x16f4  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys

02:29:21.0279 0x16f4  storflt - ok

02:29:21.0282 0x16f4  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\Windows\system32\drivers\stornvme.sys

02:29:21.0288 0x16f4  stornvme - ok

02:29:21.0291 0x16f4  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\Windows\system32\storsvc.dll

02:29:21.0298 0x16f4  StorSvc - ok

02:29:21.0301 0x16f4  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\Windows\system32\drivers\storvsc.sys

02:29:21.0307 0x16f4  storvsc - ok

02:29:21.0310 0x16f4  [ 03618F935379614837F915D04C45FC0E, 9CC0CBA7AFC58E7F921C13FA3F5269714F1F827535A311E11EA48689C4D539DE ] storvsp         C:\Windows\System32\drivers\storvsp.sys

02:29:21.0318 0x16f4  storvsp - ok

02:29:21.0321 0x16f4  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\Windows\system32\svsvc.dll

02:29:21.0331 0x16f4  svsvc - ok

02:29:21.0333 0x16f4  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\Windows\System32\drivers\swenum.sys

02:29:21.0338 0x16f4  swenum - ok

02:29:21.0351 0x16f4  [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv           C:\Windows\System32\swprv.dll

02:29:21.0372 0x16f4  swprv - ok

02:29:21.0392 0x16f4  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\Windows\system32\sysmain.dll

02:29:21.0420 0x16f4  SysMain - ok

02:29:21.0428 0x16f4  [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll

02:29:21.0440 0x16f4  SystemEventsBroker - ok

02:29:21.0445 0x16f4  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\Windows\System32\TabSvc.dll

02:29:21.0454 0x16f4  TabletInputService - ok

02:29:21.0458 0x16f4  [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys

02:29:21.0463 0x16f4  tap0901 - ok

02:29:21.0466 0x16f4  [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys

02:29:21.0472 0x16f4  tap0901t - ok

02:29:21.0478 0x16f4  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\Windows\System32\tapisrv.dll

02:29:21.0492 0x16f4  TapiSrv - ok

02:29:21.0530 0x16f4  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

02:29:21.0577 0x16f4  Tcpip - ok

02:29:21.0617 0x16f4  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys

02:29:21.0664 0x16f4  TCPIP6 - ok

02:29:21.0670 0x16f4  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

02:29:21.0678 0x16f4  tcpipreg - ok

02:29:21.0683 0x16f4  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

02:29:21.0689 0x16f4  tdx - ok

02:29:21.0692 0x16f4  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys

02:29:21.0699 0x16f4  terminpt - ok

02:29:21.0716 0x16f4  [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService     C:\Windows\System32\termsrv.dll

02:29:21.0740 0x16f4  TermService - ok

02:29:21.0744 0x16f4  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\Windows\system32\themeservice.dll

02:29:21.0755 0x16f4  Themes - ok

02:29:21.0759 0x16f4  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\Windows\system32\mmcss.dll

02:29:21.0766 0x16f4  THREADORDER - ok

02:29:21.0771 0x16f4  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll

02:29:21.0785 0x16f4  TimeBroker - ok

02:29:21.0791 0x16f4  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\Windows\system32\drivers\tpm.sys

02:29:21.0798 0x16f4  TPM - ok

02:29:21.0802 0x16f4  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\Windows\System32\trkwks.dll

02:29:21.0811 0x16f4  TrkWks - ok

02:29:21.0814 0x16f4  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

02:29:21.0823 0x16f4  TrustedInstaller - ok

02:29:21.0827 0x16f4  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys

02:29:21.0836 0x16f4  TsUsbFlt - ok

02:29:21.0839 0x16f4  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys

02:29:21.0844 0x16f4  TsUsbGD - ok

02:29:21.0848 0x16f4  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

02:29:21.0856 0x16f4  tunnel - ok

02:29:21.0924 0x16f4  [ 9B67EEB5ECCA7E7A57942D967DD59089, 6CD1575BB52A936875DB6E2EA541C7630CF1B0BC4947A5B12356F7C493316324 ] TunngleService  E:\Program Files (x86)\Tunngle\TnglCtrl.exe

02:29:21.0947 0x16f4  TunngleService - ok

02:29:21.0952 0x16f4  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys

02:29:21.0960 0x16f4  uagp35 - ok

02:29:21.0964 0x16f4  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys

02:29:21.0970 0x16f4  UASPStor - ok

02:29:21.0975 0x16f4  [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys

02:29:21.0983 0x16f4  UCX01000 - ok

02:29:21.0990 0x16f4  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

02:29:22.0003 0x16f4  udfs - ok

02:29:22.0006 0x16f4  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\Windows\System32\drivers\UEFI.sys

02:29:22.0011 0x16f4  UEFI - ok

02:29:22.0016 0x16f4  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\Windows\system32\UI0Detect.exe

02:29:22.0025 0x16f4  UI0Detect - ok

02:29:22.0028 0x16f4  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

02:29:22.0034 0x16f4  uliagpkx - ok

02:29:22.0037 0x16f4  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\Windows\System32\drivers\umbus.sys

02:29:22.0043 0x16f4  umbus - ok

02:29:22.0046 0x16f4  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys

02:29:22.0051 0x16f4  UmPass - ok

02:29:22.0058 0x16f4  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\Windows\System32\umrdp.dll

02:29:22.0068 0x16f4  UmRdpService - ok

02:29:22.0128 0x16f4  [ 9DC07E73A4ABB9ACF692113B36A5009F, CA7176FC219515D58DCFA66EC61880ECE5617275C9B83701BB74D8B60E733D34 ] UnlockerDriver5 F:\Program Files\Unlocker\UnlockerDriver5.sys