Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 7 Anwenderprogramme öffnen nur sehr langsam

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 21.02.2013, 19:09   #1
weoiss
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Hallo,

seit einiger Zeit habe ich ein Problem mit meinem PC. Alle Anwendungsprogramme starten manchmal erst nach mehr als 10 Sekunden. Was kann ich machen?
Danke im Vorraus!
Mit freundlichen Grüßen
weoiss

Alt 21.02.2013, 19:11   #2
markusg
/// Malware-holic
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



hi,

Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
  • Starte bitte die
    OTL.exe
    .
    Vista und Win7 User mit Rechtsklick "als Administrator starten"
  • Kopiere nun den Inhalt in die
    Textbox.
Code:
ATTFilter
activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
C:\Windows\system32\*.tsp
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
         
  • Schliesse bitte nun alle Programme. (Wichtig)
  • Klicke nun bitte auf den Quick Scan Button.
  • Kopiere
    nun den Inhalt aus OTL.txt und Extra.txt hier in Deinen Thread
__________________

__________________

Alt 22.02.2013, 16:17   #3
weoiss
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Ich bin irritiert, aber keine Extra.txt Datei wurde erstellt Außerdem läuft er zur Zeit wieder flüssig, ich werde noch mal so ein Scan machen wenn es wieder hängt ok? OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 22.02.2013 15:57:53 - Run 3
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\User\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
15,95 Gb Total Physical Memory | 13,90 Gb Available Physical Memory | 87,19% Memory free
31,89 Gb Paging File | 29,73 Gb Available in Paging File | 93,21% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 1862,79 Gb Total Space | 1470,47 Gb Free Space | 78,94% Space Free | Partition Type: NTFS
Drive I: | 571,17 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: ***** | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013.02.21 20:44:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe
PRC - [2013.02.10 04:25:27 | 001,266,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013.02.09 18:43:48 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012.01.05 12:59:50 | 000,291,608 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2011.12.16 14:08:32 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010.09.06 01:19:58 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2009.10.07 00:47:22 | 000,125,464 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
 
 
========== Modules (No Company Name) ==========
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2012.09.19 11:10:54 | 000,037,216 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp)
SRV:64bit: - [2011.12.02 04:12:11 | 000,165,456 | ---- | M] (Samsung Electronics) [On_Demand | Stopped] -- C:\Windows\SysNative\SUPDSvc2.exe -- (Samsung UPD Service2)
SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2010.03.03 10:01:00 | 000,182,784 | ---- | M] (Samsung India Software Center) [Disabled | Stopped] -- C:\Program Files\Samsung\FrameManager\sam_service.exe -- (FrameManager Service)
SRV:64bit: - [2009.10.07 00:47:10 | 000,191,000 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.02.20 15:41:55 | 000,115,608 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.02.15 13:08:20 | 000,543,144 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013.02.14 15:33:11 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.02.10 04:25:27 | 001,266,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013.02.09 18:43:48 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013.01.28 14:19:28 | 002,402,080 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2013.01.08 12:55:20 | 000,161,536 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.12.14 10:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) [Disabled | Stopped] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2012.12.10 17:29:46 | 002,465,712 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012.11.26 18:35:10 | 000,745,368 | ---- | M] (Tunngle.net GmbH) [On_Demand | Stopped] -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2012.09.19 11:10:54 | 000,029,536 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp)
SRV - [2012.04.10 18:21:22 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Stopped] -- C:\Program Files (x86)\Kaspersky Security Suite CBE 12\avp.exe -- (AVP)
SRV - [2011.12.16 14:08:32 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2011.08.22 13:44:48 | 001,421,216 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe -- (ACT2_Service)
SRV - [2010.09.06 01:19:58 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2003.01.17 03:59:56 | 000,001,984 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\SysWOW64\drivers\papycpu2.sys -- (papycpu2)
SRV - [2003.01.17 03:59:56 | 000,001,856 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\SysWOW64\drivers\papyjoy.sys -- (papyjoy)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2013.01.29 16:18:58 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012.12.27 01:26:12 | 000,805,088 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012.12.19 06:41:52 | 000,194,488 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012.08.23 15:12:16 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012.08.23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.08.23 15:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012.08.23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.07.17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012.06.28 17:17:44 | 000,615,728 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.01.05 12:58:48 | 000,786,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012.01.05 12:58:48 | 000,355,096 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012.01.05 12:58:48 | 000,016,152 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2011.11.02 10:48:26 | 000,021,616 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.03.10 17:36:24 | 000,029,488 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6)
DRV:64bit: - [2011.03.04 12:23:28 | 000,011,864 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kl2.sys -- (kl2)
DRV:64bit: - [2011.03.04 12:23:24 | 000,460,888 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (KL1)
DRV:64bit: - [2010.11.21 04:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010.11.21 04:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010.11.21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 14:34:04 | 000,360,832 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcvmm.sys -- (vpcvmm)
DRV:64bit: - [2010.11.20 14:34:04 | 000,194,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpchbus.sys -- (vpcbus)
DRV:64bit: - [2010.11.20 12:35:34 | 000,095,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpcusb.sys -- (vpcusb)
DRV:64bit: - [2010.11.20 12:35:22 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcnfltr.sys -- (vpcnfltr)
DRV:64bit: - [2010.04.28 00:57:20 | 000,016,200 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmVirHid.sys -- (WmVirHid)
DRV:64bit: - [2010.04.28 00:57:14 | 000,036,936 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmHidLo.sys -- (WmHidLo)
DRV:64bit: - [2010.04.28 00:57:12 | 000,026,440 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmBEnum.sys -- (WmBEnum)
DRV:64bit: - [2010.04.27 22:03:12 | 000,077,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WmXlCore.sys -- (WmXlCore)
DRV:64bit: - [2010.04.27 22:02:42 | 000,043,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WmFilter.sys -- (WmFilter)
DRV:64bit: - [2010.03.19 02:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010.03.04 13:31:22 | 000,030,776 | ---- | M] (Samsung India Software Center) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sam_miniport.sys -- (SODI)
DRV:64bit: - [2010.03.04 13:31:18 | 000,023,480 | ---- | M] (Samsung India Software Center) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sam_miniusb.sys -- (miniusb)
DRV:64bit: - [2010.02.24 11:20:40 | 000,191,616 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\acedrv11.sys -- (acedrv11)
DRV:64bit: - [2009.11.02 19:27:10 | 000,022,544 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt)
DRV:64bit: - [2009.10.07 00:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon)
DRV:64bit: - [2009.10.07 00:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64)
DRV:64bit: - [2009.09.16 07:02:42 | 000,031,232 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tap0901t.sys -- (tap0901t)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 01:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2009.07.14 01:01:09 | 000,679,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xnacc.sys -- (xnacc)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.01 00:01:34 | 000,327,576 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2009.04.30 23:55:56 | 002,755,096 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LV302V64.SYS -- (PID_PEPI)
DRV:64bit: - [2009.04.30 23:55:46 | 000,015,896 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lv302a64.sys -- (lvpepf64)
DRV:64bit: - [2009.04.08 13:28:46 | 000,068,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2009.03.18 16:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008.07.26 14:26:34 | 000,050,072 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2007.03.08 18:03:58 | 001,541,120 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbVM305.sys -- (ZSMC0305)
DRV:64bit: - [2007.02.02 19:47:18 | 000,300,800 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vvftav.sys -- (vvftav)
DRV - [2012.11.16 16:51:26 | 000,011,880 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2011.06.10 03:19:52 | 000,015,160 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys -- (ACT2PM)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2003.01.17 03:59:56 | 000,001,984 | ---- | M] () [Unknown (-1) | Unknown (-1) | Stopped] -- C:\Windows\SysWOW64\drivers\papycpu2.sys -- (papycpu2)
DRV - [2003.01.17 03:59:56 | 000,001,856 | ---- | M] () [Unknown (-1) | Unknown (-1) | Stopped] -- C:\Windows\SysWOW64\drivers\papyjoy.sys -- (papyjoy)
DRV - [1998.09.04 12:32:22 | 000,001,984 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWow64\drivers\papycpu.sys -- (papycpu)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {721061fb-eb79-4568-a03c-3ce26d68dae9}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{721061fb-eb79-4568-a03c-3ce26d68dae9}: "URL" = hxxp://de.search.yahoo.com/search/?p={searchTerms}&fr=vc_trans_de_8197
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.search.yahoo.com/web?fr=vc_trans_de_8197
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D7 3C 6D 8E A6 0E CD 01  [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {721061fb-eb79-4568-a03c-3ce26d68dae9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{721061fb-eb79-4568-a03c-3ce26d68dae9}: "URL" = hxxp://de.search.yahoo.com/search/?p={searchTerms}&fr=vc_trans_de_8197
IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = hxxp://mystart.incredibar.com/mb188/?search={searchTerms}&loc=IB_DS&a=6OyOB8lwcy&i=26
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "Search"
FF - prefs.js..browser.search.selectedEngine: "Search"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledAddons: adblockpopups%40jessehakanen.net:0.6
FF - prefs.js..extensions.enabledAddons: ich%40maltegoetz.de:1.4.6
FF - prefs.js..extensions.enabledAddons: %7Bd49a148e-817e-4025-bee3-5d541376de3b%7D:2.0
FF - prefs.js..extensions.enabledAddons: langpack-de%40firefox.mozilla.org:19.0
FF - prefs.js..extensions.enabledAddons: dnshelp%40dnshelp.com:1.0.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0
 
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_168.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.15.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1:  File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2:  File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4:  File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files (x86)\Kaspersky Security Suite CBE 12\FFExt\virtualKeyboard@kaspersky.ru [2012.06.28 17:34:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files (x86)\Kaspersky Security Suite CBE 12\FFExt\linkfilter@kaspersky.ru [2012.06.28 17:34:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\KavAntiBanner@Kaspersky.ru: C:\Program Files (x86)\Kaspersky Security Suite CBE 12\FFExt\KavAntiBanner@Kaspersky.ru [2012.06.28 17:34:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\dnshelp@dnshelp.com: C:\Users\User\AppData\Roaming\Helper [2013.02.03 16:26:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.02.20 15:41:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Waterfox 18.0.1\extensions\\Components: C:\Program Files\\Waterfox\components [2013.01.20 14:20:33 | 000,000,000 | ---D | M]
 
[2012.12.31 20:36:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Extensions
[2013.02.21 15:50:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\h2syn23t.default\extensions
[2013.01.31 16:23:39 | 000,000,000 | ---D | M] (ProxTube - Unblock YouTube) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\h2syn23t.default\extensions\ich@maltegoetz.de
[2013.01.31 16:23:39 | 000,130,828 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\adblockpopups@jessehakanen.net.xpi
[2013.02.21 15:50:54 | 000,306,394 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\langpack-de@firefox.mozilla.org.xpi
[2013.01.31 16:23:38 | 000,348,761 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\proxylist@proxylists.me.xpi
[2013.02.14 17:42:10 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013.02.01 22:56:02 | 000,008,883 | ---- | M] () (No name found) -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi
[2013.02.03 16:26:36 | 000,002,046 | ---- | M] () -- C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\searchplugins\360dbd17-2787-4a41-8a5e-a89509e04aca.xml
[2013.02.14 15:46:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2013.02.14 15:45:05 | 000,000,000 | ---D | M] (Anti-Banner) -- C:\Program Files (x86)\mozilla firefox\extensions\KavAntiBanner@kaspersky.ru_bak2
[2013.02.14 15:45:05 | 000,000,000 | ---D | M] (Modul zur Link-Untersuchung) -- C:\Program Files (x86)\mozilla firefox\extensions\linkfilter@kaspersky.ru_bak2
[2013.02.03 16:26:36 | 000,000,000 | ---D | M] (Helper) -- C:\USERS\USER\APPDATA\ROAMING\HELPER
[2013.02.20 15:41:55 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013.02.04 14:26:09 | 000,001,400 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2013.02.04 14:26:09 | 000,001,679 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2013.02.04 14:26:09 | 000,000,947 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2013.02.04 14:26:09 | 000,006,818 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2013.02.03 16:26:12 | 000,001,276 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2013.02.04 14:26:09 | 000,000,903 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\x64\ievkbd.dll (Kaspersky Lab ZAO)
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (DNS Error Helper) - {9B6B03F1-16CF-4491-BBBB-E872802DD717} - C:\ProgramData\DNSErrorHelper\bho.dll ()
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\klwtbbho.dll (Kaspersky Lab ZAO)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Security Suite CBE 12\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [BigDog305] C:\Windows\VM305_STI.EXE (Vimicro)
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [RoccatKonePure] C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE (ROCCAT GmbH)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 221
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O9:64bit: - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\x64\ievkbd.dll (Kaspersky Lab ZAO)
O9:64bit: - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Security Suite CBE 12\klwtbbho.dll (Kaspersky Lab ZAO)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 10.13.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 7.254.254.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B2260ABA-03F9-49A9-8720-710E51E73984}: DhcpNameServer = 7.254.254.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE74617E-9D34-49D5-BFC3-D4D88DE756F1}: DhcpNameServer = 217.0.43.97 217.0.43.113
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FA4F2766-301B-48E0-9012-4BAF43095570}: DhcpNameServer = 192.168.42.129
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) -  File not found
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -  File not found
O20 - HKLM Winlogon: UserInit - (userinit.exe) -  File not found
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -  File not found
O20:64bit: - Winlogon\Notify\klogon: DllName - (%SystemRoot%\System32\klogon.dll) - C:\Windows\SysNative\klogon.dll (Kaspersky Lab ZAO)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O27:64bit: - HKLM IFEO\act2.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\ccleaner64.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\framemanager.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\setup.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\teamviewer.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\unins000.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27:64bit: - HKLM IFEO\uninst.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\act2.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\ccleaner64.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\framemanager.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\setup.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\teamviewer.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\unins000.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\uninst.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) -  File not found
O29 - HKLM SecurityProviders - (credssp.dll) -  File not found
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2002.01.18 18:47:38 | 000,868,352 | R--- | M] () - I:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2002.01.03 14:06:12 | 000,000,050 | R--- | M] () - I:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{68e87b9d-6a26-11e2-92f2-902b3410c704}\Shell - "" = AutoRun
O33 - MountPoints2\{68e87b9d-6a26-11e2-92f2-902b3410c704}\Shell\AutoRun\command - "" = I:\autorun.exe -- [2002.01.18 18:47:38 | 000,868,352 | R--- | M] ()
O33 - MountPoints2\{8afd60aa-6fbe-11e1-97ea-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{8afd60aa-6fbe-11e1-97ea-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Run.exe
O33 - MountPoints2\{c2a85673-e6d5-11e1-8653-902b3410c704}\Shell - "" = AutoRun
O33 - MountPoints2\{c2a85673-e6d5-11e1-8653-902b3410c704}\Shell\AutoRun\command - "" = I:\autorun.exe -- [2002.01.18 18:47:38 | 000,868,352 | R--- | M] ()
O33 - MountPoints2\{c2a85684-e6d5-11e1-8653-902b3410c704}\Shell - "" = AutoRun
O33 - MountPoints2\{c2a85684-e6d5-11e1-8653-902b3410c704}\Shell\AutoRun\command - "" = J:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {EF289A85-8E57-408d-BE47-73B55609861A} - RootsUpdate
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
 
NetSvcs:64bit: UxTuneUp - C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
 
MsConfig:64bit - StartUpFolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -  - File not found
MsConfig:64bit - StartUpReg: Adobe ARM - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: APSDaemon - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: DAEMON Tools Net Agent - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: Duden Korrektor SysTray - hkey= - key= - C:\Program Files (x86)\Duden\Duden Korrektor\DKTray.exe (Expert System S.p.A.)
MsConfig:64bit - StartUpReg: FrameManager - hkey= - key= - C:\Program Files\Samsung\FrameManager\FrameManager.exe (Samsung Electronics Co. Ltd)
MsConfig:64bit - StartUpReg: LogitechQuickCamRibbon - hkey= - key= - C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
MsConfig:64bit - StartUpReg: LogMeIn Hamachi Ui - hkey= - key= - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
MsConfig:64bit - StartUpReg: QuickTime Task - hkey= - key= -  File not found
MsConfig:64bit - StartUpReg: spdetector3 - hkey= - key= - C:\Program Files (x86)\Spyware Process Detector\spd323.exe (System  SoftLab)
MsConfig:64bit - StartUpReg: Start WingMan Profiler - hkey= - key= - C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
MsConfig:64bit - StartUpReg: Steam - hkey= - key= - C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
MsConfig:64bit - StartUpReg: SunJavaUpdateSched - hkey= - key= - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
MsConfig:64bit - StartUpReg: Wondershare Helper Compact.exe - hkey= - key= - C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
MsConfig:64bit - State: "startup" - Reg Error: Key error.
MsConfig:64bit - State: "services" - Reg Error: Key error.
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.02.21 20:45:15 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013.02.21 20:44:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe
[2013.02.21 15:30:19 | 000,035,104 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2013.02.21 15:29:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
[2013.02.21 15:28:49 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\TuneUp Software
[2013.02.21 15:27:34 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2013.02.21 14:53:40 | 000,000,000 | ---D | C] -- C:\TuneUpPortable
[2013.02.18 17:35:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Tunngle
[2013.02.18 17:35:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Tunngle
[2013.02.18 17:35:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
[2013.02.18 17:35:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tunngle
[2013.02.18 17:19:42 | 000,000,000 | ---D | C] -- C:\Program Files\GIGABYTE
[2013.02.18 17:15:21 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2013.02.18 17:15:21 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013.02.18 17:14:55 | 002,603,864 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2013.02.18 17:14:52 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2013.02.18 17:14:51 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2013.02.18 17:14:50 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2013.02.18 17:14:49 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2013.02.18 17:14:30 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2013.02.18 17:14:29 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2013.02.18 17:14:28 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2013.02.18 17:14:27 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2013.02.18 17:14:27 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2013.02.18 17:14:27 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2013.02.18 17:14:21 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2013.02.18 17:14:20 | 000,958,296 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2013.02.18 17:14:19 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2013.02.18 17:14:14 | 002,528,832 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2013.02.17 17:41:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2013.02.17 17:41:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2013.02.16 22:41:52 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\.minecraft
[2013.02.16 21:05:15 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\http___mvc.craften.de
[2013.02.16 21:04:45 | 002,752,512 | ---- | C] (hxxp://mvc.craften.de) -- C:\Users\User\Desktop\Minecraft Version Changer.exe
[2013.02.15 15:20:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2013.02.15 15:15:18 | 000,000,000 | ---D | C] -- C:\AiO-Files
[2013.02.15 15:09:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AmIcoSingLun
[2013.02.15 15:09:18 | 000,000,000 | ---D | C] -- C:\ProgramData\AmUStor
[2013.02.15 14:50:44 | 000,805,088 | ---- | C] (Realtek                                            ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2013.02.15 13:29:25 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
[2013.02.14 15:45:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.02.13 14:42:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
[2013.02.13 14:42:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GIGABYTE
[2013.02.13 14:33:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
[2013.02.13 14:33:35 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID
[2013.02.11 20:05:52 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\.minecraft
[2013.02.10 14:16:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013.02.07 14:41:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\en-US
[2013.02.07 14:41:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\en
[2013.02.07 14:41:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\0409
[2013.02.07 14:41:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\en
[2013.02.07 14:41:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\0409
[2013.02.06 16:43:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Installer Clean Up
[2013.02.04 14:32:26 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\FileZilla
[2013.02.04 14:26:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\IO
[2013.02.03 16:36:29 | 000,037,216 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2013.02.03 16:36:29 | 000,029,536 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2013.02.03 16:35:32 | 000,026,400 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2013.02.03 16:35:32 | 000,021,792 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2013.02.03 16:35:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2013
[2013.02.03 16:34:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013.02.03 16:34:39 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2013.02.03 16:26:36 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Helper
[2013.02.03 16:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\DNSErrorHelper
[2013.02.03 16:26:24 | 000,493,056 | ---- | C] ( datenhaus GmbH) -- C:\Windows\SysWow64\dhRichClient3.dll
[2013.02.03 16:26:16 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\DesktopIconForAmazon
[2013.02.03 16:26:08 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\OCS
[2013.02.03 16:19:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013.02.02 21:53:05 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Sun
[2013.02.02 18:38:39 | 000,000,000 | R--D | C] -- C:\Users\User\Documents\Scanned Documents
[2013.02.02 18:38:39 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\Fax
[2013.02.02 12:27:28 | 000,226,304 | ---- | C] (RAD Game Tools, Inc.) -- C:\Windows\SysNative\binkw32.dll
[2013.01.29 16:23:14 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images
[2013.01.29 16:21:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2013.01.29 16:18:58 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.01.29 16:18:52 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\DAEMON Tools Lite
[2013.01.29 16:18:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2013.01.29 16:17:16 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2013.01.29 16:04:36 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\DAEMON Tools Net
[2013.01.29 16:04:03 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Net
[2013.01.28 18:35:40 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MeatWater FO Altitude Callouts v1.0
[2013.01.28 18:35:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MeatWater FO Altitude Callouts v1.0
[2013.01.28 16:16:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Papyrus
[2013.01.28 16:12:18 | 000,000,000 | ---D | C] -- C:\Papyrus
[2013.01.26 17:18:14 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\.mc3totalconversion
[2013.01.25 17:01:27 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\IsolatedStorage
[2013.01.25 17:00:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2013.01.23 18:16:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013.01.23 18:16:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013.02.22 15:57:38 | 000,022,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.02.22 15:57:38 | 000,022,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.02.22 15:50:32 | 000,001,057 | ---- | M] () -- C:\Users\User\Desktop\weoiss1998 - Verknüpfung.lnk
[2013.02.22 15:50:32 | 000,001,023 | ---- | M] () -- C:\Users\User\Desktop\simon1 - Verknüpfung.lnk
[2013.02.22 15:49:03 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.02.22 15:48:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.02.21 20:46:45 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.02.21 20:44:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe
[2013.02.21 20:23:22 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.02.21 16:20:17 | 002,752,512 | ---- | M] (hxxp://mvc.craften.de) -- C:\Users\User\Desktop\Minecraft Version Changer.exe
[2013.02.21 16:03:13 | 000,439,128 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.02.19 18:02:02 | 001,621,244 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.02.19 18:02:02 | 000,702,062 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2013.02.19 18:02:02 | 000,655,438 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.02.19 18:02:02 | 000,149,618 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2013.02.19 18:02:02 | 000,122,310 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.02.18 17:35:35 | 000,000,991 | ---- | M] () -- C:\Users\Public\Desktop\Tunngle beta.lnk
[2013.02.18 17:12:49 | 000,000,010 | ---- | M] () -- C:\Windows\GSetup.ini
[2013.02.17 21:25:44 | 000,000,196 | ---- | M] () -- C:\Windows\SysNative\cc_20130217_212519.reg
[2013.02.17 20:10:56 | 000,000,744 | ---- | M] () -- C:\Windows\SysNative\cc_20130217_201049.reg
[2013.02.17 13:19:14 | 001,644,462 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.02.16 13:32:36 | 000,000,258 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_133234.reg
[2013.02.16 13:32:21 | 000,009,020 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_133219.reg
[2013.02.16 00:45:06 | 000,000,178 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_004504.reg
[2013.02.16 00:44:53 | 000,000,242 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_004451.reg
[2013.02.16 00:44:19 | 000,010,480 | ---- | M] () -- C:\Windows\SysNative\cc_20130216_004416.reg
[2013.02.15 15:34:48 | 000,001,028 | ---- | M] () -- C:\Windows\SysNative\cc_20130215_153446.reg
[2013.02.15 15:34:38 | 000,006,030 | ---- | M] () -- C:\Windows\SysNative\cc_20130215_153435.reg
[2013.02.12 17:12:41 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\Access.dat
[2013.02.12 12:37:20 | 000,000,439 | ---- | M] () -- C:\Windows\SIERRA.INI
[2013.02.10 17:38:29 | 000,002,242 | ---- | M] () -- C:\Windows\SysNative\cc_20130210_173828.reg
[2013.02.10 04:25:27 | 000,017,738 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2013.02.09 15:26:58 | 000,001,262 | ---- | M] () -- C:\Users\User\Desktop\Roaming - Verknüpfung.lnk
[2013.02.09 14:25:36 | 003,035,306 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2013.02.08 16:27:45 | 000,000,704 | ---- | M] () -- C:\Users\User\AppData\Roaming\server.properties
[2013.02.03 16:10:27 | 000,008,038 | ---- | M] () -- C:\Windows\SysNative\cc_20130203_161025.reg
[2013.01.30 15:42:22 | 000,011,946 | ---- | M] () -- C:\Windows\SysNative\cc_20130130_154220.reg
[2013.01.29 16:18:58 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.01.28 14:19:32 | 000,035,104 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2013.01.28 14:19:28 | 000,026,400 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2013.01.28 14:19:28 | 000,021,792 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2013.01.26 18:35:08 | 000,003,694 | ---- | M] () -- C:\Users\User\Desktop\weoiss1998.png
[2013.01.24 19:13:07 | 000,000,994 | ---- | M] () -- C:\Users\User\Desktop\start.bat - Verknüpfung.lnk
[2013.01.23 17:57:32 | 064,185,135 | ---- | M] () -- C:\Users\User\AppData\Roaming\.minecraft.zip
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013.02.22 15:50:32 | 000,001,057 | ---- | C] () -- C:\Users\User\Desktop\weoiss1998 - Verknüpfung.lnk
[2013.02.22 15:50:32 | 000,001,023 | ---- | C] () -- C:\Users\User\Desktop\simon1 - Verknüpfung.lnk
[2013.02.21 16:03:04 | 000,439,128 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.02.21 15:29:23 | 000,002,201 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk
[2013.02.18 17:35:35 | 000,000,991 | ---- | C] () -- C:\Users\Public\Desktop\Tunngle beta.lnk
[2013.02.18 17:19:42 | 000,031,272 | ---- | C] () -- C:\Windows\SysNative\AppleChargerSrv.exe
[2013.02.18 17:19:42 | 000,021,616 | ---- | C] () -- C:\Windows\SysNative\drivers\AppleCharger.sys
[2013.02.18 17:14:27 | 000,215,644 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2013.02.17 21:25:32 | 000,000,196 | ---- | C] () -- C:\Windows\SysNative\cc_20130217_212519.reg
[2013.02.17 20:10:51 | 000,000,744 | ---- | C] () -- C:\Windows\SysNative\cc_20130217_201049.reg
[2013.02.16 13:32:35 | 000,000,258 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_133234.reg
[2013.02.16 13:32:20 | 000,009,020 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_133219.reg
[2013.02.16 00:45:05 | 000,000,178 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_004504.reg
[2013.02.16 00:44:52 | 000,000,242 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_004451.reg
[2013.02.16 00:44:18 | 000,010,480 | ---- | C] () -- C:\Windows\SysNative\cc_20130216_004416.reg
[2013.02.15 15:34:47 | 000,001,028 | ---- | C] () -- C:\Windows\SysNative\cc_20130215_153446.reg
[2013.02.15 15:34:37 | 000,006,030 | ---- | C] () -- C:\Windows\SysNative\cc_20130215_153435.reg
[2013.02.15 13:19:11 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013.02.10 17:38:29 | 000,002,242 | ---- | C] () -- C:\Windows\SysNative\cc_20130210_173828.reg
[2013.02.09 15:26:58 | 000,001,262 | ---- | C] () -- C:\Users\User\Desktop\Roaming - Verknüpfung.lnk
[2013.02.08 16:27:45 | 000,000,704 | ---- | C] () -- C:\Users\User\AppData\Roaming\server.properties
[2013.02.06 16:43:51 | 000,002,849 | ---- | C] () -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Install Clean Up.lnk
[2013.02.03 16:26:24 | 000,338,432 | ---- | C] () -- C:\Windows\SysWow64\sqlite36_engine.dll
[2013.02.03 16:10:26 | 000,008,038 | ---- | C] () -- C:\Windows\SysNative\cc_20130203_161025.reg
[2013.01.30 15:42:22 | 000,011,946 | ---- | C] () -- C:\Windows\SysNative\cc_20130130_154220.reg
[2013.01.29 16:05:01 | 000,001,899 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
[2013.01.26 18:35:07 | 000,003,694 | ---- | C] () -- C:\Users\User\Desktop\weoiss1998.png
[2013.01.24 19:13:07 | 000,000,994 | ---- | C] () -- C:\Users\User\Desktop\start.bat - Verknüpfung.lnk
[2013.01.23 17:57:03 | 064,185,135 | ---- | C] () -- C:\Users\User\AppData\Roaming\.minecraft.zip
[2013.01.13 00:48:27 | 001,644,462 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.01.10 15:51:48 | 000,001,073 | ---- | C] () -- C:\Users\User\Videos - Verknüpfung.lnk
[2013.01.09 16:37:36 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\Access.dat
[2012.12.19 18:50:16 | 000,003,584 | ---- | C] () -- C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.11.18 19:31:33 | 000,110,080 | ---- | C] () -- C:\Windows\SysWow64\advd.dll
[2012.11.18 19:31:33 | 000,023,040 | ---- | C] () -- C:\Windows\SysWow64\auth.dll
[2012.11.18 19:31:32 | 000,511,488 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll
[2012.11.14 11:45:13 | 000,000,576 | ---- | C] () -- C:\Users\User\AppData\Roaming\All CPU MeterV3_Settings.ini
[2012.09.12 14:37:23 | 000,032,256 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll
[2012.09.02 10:20:59 | 000,000,037 | ---- | C] () -- C:\Windows\wininit.ini
[2012.08.23 19:03:45 | 000,000,017 | ---- | C] () -- C:\Users\User\AppData\Local\resmon.resmoncfg
[2012.08.18 12:59:01 | 000,122,880 | ---- | C] () -- C:\Windows\rm305.exe
[2012.08.18 12:59:01 | 000,000,900 | ---- | C] () -- C:\Windows\rm305.ini
[2012.08.11 21:11:11 | 000,000,530 | ---- | C] () -- C:\Users\User\AppData\Roaming\All CPU MeterV2_Settings.ini
[2012.08.11 21:10:44 | 000,000,294 | ---- | C] () -- C:\Users\User\AppData\Roaming\GPU MeterV2_Settings.ini
[2012.08.11 19:46:41 | 000,017,408 | ---- | C] () -- C:\Users\User\AppData\Local\WebpageIcons.db
[2012.07.15 15:25:34 | 000,000,295 | ---- | C] () -- C:\Users\User\.openev
[2012.07.15 12:15:02 | 000,000,646 | ---- | C] () -- C:\Windows\FSX_KML.INI
[2012.07.09 18:26:33 | 000,000,241 | ---- | C] () -- C:\Users\User\AppData\Roaming\GPU Meter_Settings.ini
[2012.07.08 10:30:29 | 000,000,173 | ---- | C] () -- C:\Users\User\AppData\Local\msmathematics.qat.User
[2012.07.07 17:50:55 | 000,000,412 | ---- | C] () -- C:\Users\User\AppData\Roaming\All CPU Meter_Settings.ini
[2012.06.22 12:51:28 | 000,260,688 | ---- | C] () -- C:\Windows\SUPDRun.exe
[2012.04.21 13:55:25 | 000,356,352 | ---- | C] () -- C:\Windows\SysWow64\GPLPatchDLL.dll
[2012.04.20 17:50:25 | 000,001,984 | ---- | C] () -- C:\Windows\SysWow64\drivers\papycpu2.sys
[2012.04.20 17:47:04 | 000,001,984 | ---- | C] () -- C:\Windows\SysWow64\drivers\papycpu.sys
[2012.04.20 17:47:04 | 000,001,856 | ---- | C] () -- C:\Windows\SysWow64\drivers\papyjoy.sys
[2012.04.20 17:45:45 | 000,000,439 | ---- | C] () -- C:\Windows\SIERRA.INI
[2012.03.29 15:26:48 | 000,000,680 | RHS- | C] () -- C:\Users\User\ntuser.pol
[2012.03.17 00:26:57 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2011.12.08 16:14:58 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
[2011.09.19 08:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
[2011.09.19 08:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
 
========== ZeroAccess Check ==========
 
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2013.01.26 17:18:14 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\.mc3totalconversion
[2013.02.22 15:56:42 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\.minecraft
[2012.08.26 16:43:43 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\BANDISOFT
[2012.07.27 16:11:57 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Canneverbe Limited
[2012.12.31 18:14:40 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\com.dansl.QRreader
[2012.11.18 19:32:05 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\concept design
[2013.01.30 15:42:00 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DAEMON Tools Lite
[2013.01.29 16:04:36 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DAEMON Tools Net
[2013.02.16 00:34:14 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\DesktopIconForAmazon
[2013.02.17 14:00:49 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Dropbox
[2012.04.17 18:15:21 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Duden
[2013.01.10 16:26:29 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Electronic Arts
[2013.02.09 18:00:52 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\FileZilla
[2012.09.17 16:53:07 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Foxit Reader
[2012.07.14 17:50:05 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Foxit Software
[2012.11.27 20:33:47 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\JOSM
[2012.03.30 11:58:28 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Leadertech
[2012.12.01 10:42:23 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\lennox
[2012.11.23 16:04:32 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\logs
[2013.01.22 11:59:55 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Minecraft Version Changer
[2012.12.13 17:17:48 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\MTE
[2012.10.06 21:29:11 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Need for Speed World
[2013.02.17 21:25:07 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Notepad++
[2013.02.03 16:26:08 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\OCS
[2012.12.02 19:58:29 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Origin
[2012.09.21 19:56:28 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\pdfforge
[2012.07.20 22:09:59 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\ProtectDISC
[2012.04.02 18:30:59 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Sierra
[2012.12.16 14:04:23 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\TeamViewer
[2013.02.07 19:13:34 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\The Creative Assembly
[2013.02.21 20:47:38 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\TS3Client
[2012.06.30 12:59:36 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\ts3overlay
[2013.02.21 15:28:49 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\TuneUp Software
[2013.02.18 17:35:39 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Tunngle
[2012.07.16 20:59:59 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Unity
[2012.06.30 16:24:11 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\wargaming.net
[2012.06.18 15:33:03 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\WatchGuard
[2013.01.20 14:17:10 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Waterfox Limited
[2012.09.12 14:48:42 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\Wondershare Video Converter Platinum
[2012.09.12 15:00:40 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\XMedia Recode
[2013.01.29 15:33:56 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\xVideoServiceThief
[2012.09.12 14:49:02 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
 
========== Purity Check ==========
 
 
 
========== Custom Scans ==========
 
< %SYSTEMDRIVE%\*. >
[2012.08.24 23:00:25 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2012.09.12 17:30:47 | 000,000,000 | ---D | M] -- C:\4560a6c572b499d39611800522cb
[2012.12.19 14:34:24 | 000,000,000 | ---D | M] -- C:\97c0481b3aa9dcb24eb08efcf1e1606c
[2013.02.15 15:19:19 | 000,000,000 | ---D | M] -- C:\AiO-Files
[2013.02.21 20:46:48 | 000,000,000 | ---D | M] -- C:\Config.Msi
[2012.06.22 12:46:49 | 000,000,000 | ---D | M] -- C:\CP1520_Series_Full_Solution
[2009.07.14 06:08:56 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2012.03.17 00:25:26 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen
[2012.10.26 21:07:38 | 000,000,000 | ---D | M] -- C:\F1 2010 Textures Editor
[2013.01.07 17:46:17 | 000,000,000 | ---D | M] -- C:\Flight Simulator X
[2013.02.21 15:44:11 | 000,000,000 | -HSD | M] -- C:\found.000
[2012.09.05 14:29:20 | 000,000,000 | ---D | M] -- C:\Fraps
[2012.07.15 11:53:07 | 000,000,000 | ---D | M] -- C:\fsxkm110
[2012.10.19 10:50:42 | 000,000,000 | ---D | M] -- C:\Games
[2013.01.13 17:55:12 | 000,000,000 | ---D | M] -- C:\GPL
[2012.06.05 18:06:09 | 000,000,000 | ---D | M] -- C:\gpl sicher
[2012.12.12 21:18:02 | 000,000,000 | ---D | M] -- C:\GPLSecrets
[2012.08.12 19:51:49 | 000,000,000 | ---D | M] -- C:\lj631ge
[2012.04.21 15:32:27 | 000,000,000 | ---D | M] -- C:\Mods
[2012.03.19 21:35:50 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2012.07.07 18:56:19 | 000,000,000 | ---D | M] -- C:\musik konvertiert
[2012.04.21 20:55:03 | 000,000,000 | ---D | M] -- C:\Papa
[2013.02.12 12:37:04 | 000,000,000 | ---D | M] -- C:\Papyrus
[2013.02.20 15:25:01 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2013.02.21 20:45:15 | 000,000,000 | R--D | M] -- C:\Program Files
[2013.02.18 17:35:34 | 000,000,000 | R--D | M] -- C:\Program Files (x86)
[2013.02.21 15:27:34 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2012.03.17 00:25:29 | 000,000,000 | -HSD | M] -- C:\Recovery
[2012.05.01 11:24:59 | 000,000,000 | ---D | M] -- C:\sicher fifa
[2012.12.12 20:49:20 | 000,000,000 | ---D | M] -- C:\Sierra
[2013.01.07 13:03:29 | 000,000,000 | ---D | M] -- C:\steam_sicher
[2013.02.22 15:59:01 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2012.09.21 16:29:35 | 000,000,000 | ---D | M] -- C:\temp
[2013.02.21 15:08:39 | 000,000,000 | ---D | M] -- C:\TuneUpPortable
[2012.03.30 19:15:12 | 000,000,000 | ---D | M] -- C:\Ubisoft
[2012.11.03 15:54:43 | 000,000,000 | ---D | M] -- C:\USB
[2012.07.12 18:59:30 | 000,000,000 | R--D | M] -- C:\Users
[2012.06.05 16:16:43 | 000,000,000 | ---D | M] -- C:\win7_spezial
[2013.02.21 16:03:22 | 000,000,000 | ---D | M] -- C:\Windows
[2012.06.05 16:51:12 | 000,000,000 | ---D | M] -- C:\Windows 7 Logon Background Changer
 
< %PROGRAMFILES%\*.exe >
 
< %LOCALAPPDATA%\*.exe >
 
< %systemroot%\*. /mp /s >
 
< C:\Windows\system32\*.tsp >
[2009.07.14 02:14:11 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\hidphone.tsp
[2009.07.14 02:14:11 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\kmddsp.tsp
[2009.07.14 02:14:11 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ndptsp.tsp
[2009.07.14 02:14:11 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\remotesp.tsp
[2010.11.21 04:23:55 | 000,281,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\unimdm.tsp
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,032,632 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012.07.10 21:37:03 | 000,001,102 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.07.10 21:37:03 | 000,001,106 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.07.14 17:33:05 | 000,000,884 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
 
< MD5 for: AGP440.SYS  >
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys
 
< MD5 for: ATAPI.SYS  >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
 
< MD5 for: CNGAUDIT.DLL  >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
 
< MD5 for: EXPLORER.EXE  >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
 
< MD5 for: IASTORV.SYS  >
[2010.11.21 04:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.21 04:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.03.11 07:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
 
< MD5 for: NETLOGON.DLL  >
[2010.11.21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010.11.21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
 
< MD5 for: NVSTOR.SYS  >
[2011.03.11 07:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.21 04:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.21 04:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys
 
< MD5 for: SCECLI.DLL  >
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
 
< MD5 for: USER32.DLL  >
[2010.11.21 04:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\SysWOW64\user32.dll
[2010.11.21 04:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
[2010.11.21 04:24:09 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\SysNative\user32.dll
[2010.11.21 04:24:09 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
 
< MD5 for: USERINIT.EXE  >
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
 
< MD5 for: WINLOGON.EXE  >
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
 
< MD5 for: WS2IFSL.SYS  >
[2009.07.14 01:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\SysNative\drivers\ws2ifsl.sys
[2009.07.14 01:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=6BCC1D7D2FD2453957C5479A32364E52 -- C:\Windows\winsxs\amd64_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.1.7600.16385_none_ab7b927be17eace8\ws2ifsl.sys
 
< %systemroot%\system32\drivers\*.sys /lockedfiles >
 
< %systemroot%\System32\config\*.sav >
 
< %systemroot%\system32\*.dll /lockedfiles >
 
< %USERPROFILE%\*.* >
[2012.07.15 15:25:34 | 000,000,295 | ---- | M] () -- C:\Users\User\.openev
[2013.02.15 15:31:36 | 000,000,000 | ---- | M] () -- C:\Users\User\agent.log
[2013.02.22 15:58:50 | 003,932,160 | -HS- | M] () -- C:\Users\User\NTUSER.DAT
[2013.02.22 15:58:50 | 000,262,144 | -HS- | M] () -- C:\Users\User\ntuser.dat.LOG1
[2012.03.17 00:25:37 | 000,000,000 | -HS- | M] () -- C:\Users\User\ntuser.dat.LOG2
[2012.03.17 18:40:51 | 000,065,536 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2012.03.17 18:40:51 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2012.03.17 18:40:51 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2012.04.28 19:08:44 | 000,065,536 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{1abe991d-914f-11e1-b958-902b3410c704}.TM.blf
[2012.04.28 19:08:43 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{1abe991d-914f-11e1-b958-902b3410c704}.TMContainer00000000000000000001.regtrans-ms
[2012.04.28 19:08:44 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{1abe991d-914f-11e1-b958-902b3410c704}.TMContainer00000000000000000002.regtrans-ms
[2013.02.08 20:36:02 | 000,065,536 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{90466440-71f3-11e2-9a39-902b3410c704}.TM.blf
[2013.02.08 20:36:02 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{90466440-71f3-11e2-9a39-902b3410c704}.TMContainer00000000000000000001.regtrans-ms
[2013.02.08 20:36:02 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{90466440-71f3-11e2-9a39-902b3410c704}.TMContainer00000000000000000002.regtrans-ms
[2012.03.17 00:25:37 | 000,000,020 | -HS- | M] () -- C:\Users\User\ntuser.ini
[2012.10.22 09:50:11 | 000,000,680 | RHS- | M] () -- C:\Users\User\ntuser.pol
[2013.01.10 15:51:48 | 000,001,073 | ---- | M] () -- C:\Users\User\Videos - Verknüpfung.lnk
 
< %USERPROFILE%\Local Settings\Temp\*.exe >
 
< %USERPROFILE%\Local Settings\Temp\*.dll >
 
< %USERPROFILE%\Application Data\*.exe >
 
< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs >
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\\Required: DebugWindows [binary data]
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\\Windows: %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
 
<           >
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:05EE1EEF

< End of report >
         
--- --- ---
__________________

Alt 22.02.2013, 16:22   #4
markusg
/// Malware-holic
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



otl fix

Fixen mit OTL

  • Starte bitte die OTL.exe.
  • Kopiere nun den Inhalt aus der Codebox in die Textbox.

Code:
ATTFilter
:OTL
O8:64bit: - Extra context menu item: An OneNote senden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: Nach Microsoft Excel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Nach Microsoft Exel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: An OneNote senden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Nach Microsoft Excel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Nach Microsoft Exel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
:files
:Commands
[emptytemp]
         
  • Solltest du deinen Benutzernamen z. B. durch "*****" unkenntlich gemacht haben, so füge an entsprechender Stelle deinen richtigen Benutzernamen ein. Andernfalls wird der Fix nicht funktionieren.
  • Schließe bitte nun alle Programme.
  • Klicke nun bitte auf den Fix Button.
  • OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen.
  • Nach dem Neustart findest Du ein Textdokument auf deinem Desktop.
    ( Auch zu finden unter C:\_OTL\MovedFiles\<Uhrzeit_Datum>.txt)
    Kopiere nun den Inhalt hier in Deinen Thread
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 22.02.2013, 16:56   #5
weoiss
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Das müsste das sein:

All processes killed
========== OTL ==========
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\An OneNote senden\ not found.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Nach Microsoft Excel exportieren\ not found.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Nach Microsoft Exel exportieren\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\An OneNote senden\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Nach Microsoft Excel exportieren\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Nach Microsoft Exel exportieren\ not found.
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Gast
->Temp folder emptied: 122650 bytes
->Temporary Internet Files folder emptied: 154965 bytes
->FireFox cache emptied: 52557767 bytes
->Flash cache emptied: 934 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: User
->Temp folder emptied: 46012671 bytes
->Temporary Internet Files folder emptied: 709932 bytes
->Java cache emptied: 3270460 bytes
->FireFox cache emptied: 75680263 bytes
->Flash cache emptied: 2755 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 200704 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 301707 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67832 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 558 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 171,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 02222013_164303

Files\Folders moved on Reboot...
C:\Users\User\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\logishrd\LVPrcInj01.dll scheduled to be moved on reboot.
File move failed. C:\Windows\temp\logishrd\LVPrcInj02.dll scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


Alt 22.02.2013, 17:09   #6
markusg
/// Malware-holic
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Yes sir.
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
--> Windows 7 Anwenderprogramme öffnen nur sehr langsam

Alt 22.02.2013, 19:57   #7
weoiss
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Er hat nix gefunden.
Gruß
weoiss

Alt 22.02.2013, 20:12   #8
markusg
/// Malware-holic
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



und wo ist das log?
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 22.02.2013, 20:17   #9
weoiss
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Sorry hab ich vergessen. hier der Log:
19:56:43.0446 3124 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:56:43.0446 3124 UEFI system
19:56:43.0626 3124 ============================================================
19:56:43.0626 3124 Current date / time: 2013/02/22 19:56:43.0626
19:56:43.0626 3124 SystemInfo:
19:56:43.0626 3124
19:56:43.0626 3124 OS Version: 6.1.7601 ServicePack: 1.0
19:56:43.0626 3124 Product type: Workstation
19:56:43.0626 3124 ComputerName: SIMONHIGHENDPC
19:56:43.0626 3124 UserName: User
19:56:43.0626 3124 Windows directory: C:\Windows
19:56:43.0626 3124 System windows directory: C:\Windows
19:56:43.0626 3124 Running under WOW64
19:56:43.0626 3124 Processor architecture: Intel x64
19:56:43.0626 3124 Number of processors: 8
19:56:43.0626 3124 Page size: 0x1000
19:56:43.0626 3124 Boot type: Normal boot
19:56:43.0626 3124 ============================================================
19:56:47.0622 3124 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:56:47.0638 3124 ============================================================
19:56:47.0638 3124 \Device\Harddisk0\DR0:
19:56:47.0638 3124 GPT partitions:
19:56:47.0638 3124 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {74D11EE9-D9FE-4274-8884-CA16F47B940D}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
19:56:47.0638 3124 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6AE313AC-A08A-4C78-9F26-286D8297AFE1}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000
19:56:47.0638 3124 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7329315E-CEE6-49FF-87E5-D522D0AB9FBD}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0xE8D96000
19:56:47.0638 3124 MBR partitions:
19:56:47.0638 3124 ============================================================
19:56:47.0700 3124 C: <-> \Device\Harddisk0\DR0\Partition3
19:56:47.0700 3124 ============================================================
19:56:47.0700 3124 Initialize success
19:56:47.0700 3124 ============================================================
19:56:51.0600 5112 ============================================================
19:56:51.0600 5112 Scan started
19:56:51.0600 5112 Mode: Manual;
19:56:51.0600 5112 ============================================================
19:56:52.0614 5112 ================ Scan system memory ========================
19:56:52.0614 5112 System memory - ok
19:56:52.0614 5112 ================ Scan services =============================
19:56:56.0171 5112 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:56:56.0171 5112 1394ohci - ok
19:56:56.0280 5112 [ A3769020F7E8A70FD3E824C050F33306 ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
19:56:56.0280 5112 acedrv11 - ok
19:56:56.0296 5112 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:56:56.0312 5112 ACPI - ok
19:56:56.0312 5112 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:56:56.0312 5112 AcpiPmi - ok
19:56:56.0421 5112 [ 2D766591E87FFFF237C0C9C16CDDECAB ] ACT2PM C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys
19:56:56.0421 5112 ACT2PM - ok
19:56:56.0452 5112 [ C47D15FC2CA269DD2EC5946953C5BF03 ] ACT2_Service C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
19:56:56.0483 5112 ACT2_Service - ok
19:56:56.0592 5112 AddonsHelper - ok
19:56:56.0702 5112 [ C004F38974F4D321B4C20A240E1175C0 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
19:56:56.0717 5112 AdobeActiveFileMonitor9.0 - ok
19:56:56.0826 5112 [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:56:56.0842 5112 AdobeFlashPlayerUpdateSvc - ok
19:56:56.0873 5112 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:56:56.0889 5112 adp94xx - ok
19:56:56.0920 5112 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:56:56.0920 5112 adpahci - ok
19:56:56.0936 5112 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:56:56.0936 5112 adpu320 - ok
19:56:56.0951 5112 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:56:56.0951 5112 AeLookupSvc - ok
19:56:57.0014 5112 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:56:57.0014 5112 AFD - ok
19:56:57.0029 5112 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:56:57.0045 5112 agp440 - ok
19:56:57.0045 5112 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:56:57.0060 5112 ALG - ok
19:56:57.0076 5112 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:56:57.0076 5112 aliide - ok
19:56:57.0092 5112 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:56:57.0092 5112 amdide - ok
19:56:57.0123 5112 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:56:57.0123 5112 AmdK8 - ok
19:56:57.0123 5112 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
19:56:57.0138 5112 AmdPPM - ok
19:56:57.0170 5112 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:56:57.0185 5112 amdsata - ok
19:56:57.0201 5112 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
19:56:57.0201 5112 amdsbs - ok
19:56:57.0216 5112 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:56:57.0216 5112 amdxata - ok
19:56:57.0248 5112 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:56:57.0248 5112 AppID - ok
19:56:57.0263 5112 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:56:57.0263 5112 AppIDSvc - ok
19:56:57.0279 5112 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:56:57.0279 5112 Appinfo - ok
19:56:57.0310 5112 [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
19:56:57.0310 5112 AppleCharger - ok
19:56:57.0341 5112 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
19:56:57.0341 5112 AppleChargerSrv - ok
19:56:57.0404 5112 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
19:56:57.0404 5112 AppMgmt - ok
19:56:57.0419 5112 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
19:56:57.0419 5112 arc - ok
19:56:57.0450 5112 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:56:57.0450 5112 arcsas - ok
19:56:58.0199 5112 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:56:58.0246 5112 aspnet_state - ok
19:56:58.0308 5112 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:56:58.0324 5112 AsyncMac - ok
19:56:58.0324 5112 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:56:58.0324 5112 atapi - ok
19:56:58.0355 5112 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:56:58.0371 5112 AudioEndpointBuilder - ok
19:56:58.0371 5112 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:56:58.0371 5112 AudioSrv - ok
19:56:58.0901 5112 [ 38AE54966E8C0004F20965BBC00F74FB ] AVP C:\Program Files (x86)\Kaspersky Security Suite CBE 12\avp.exe
19:56:58.0901 5112 AVP - ok
19:56:58.0932 5112 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:56:58.0932 5112 AxInstSV - ok
19:56:58.0964 5112 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
19:56:58.0964 5112 b06bdrv - ok
19:56:59.0010 5112 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:56:59.0010 5112 b57nd60a - ok
19:56:59.0042 5112 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:56:59.0042 5112 BDESVC - ok
19:56:59.0042 5112 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:56:59.0042 5112 Beep - ok
19:56:59.0104 5112 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:56:59.0104 5112 BFE - ok
19:56:59.0135 5112 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
19:56:59.0135 5112 BITS - ok
19:56:59.0151 5112 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:56:59.0166 5112 blbdrive - ok
19:56:59.0213 5112 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:56:59.0229 5112 bowser - ok
19:56:59.0229 5112 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
19:56:59.0229 5112 BrFiltLo - ok
19:56:59.0229 5112 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
19:56:59.0229 5112 BrFiltUp - ok
19:56:59.0322 5112 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:56:59.0322 5112 Browser - ok
19:56:59.0338 5112 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:56:59.0338 5112 Brserid - ok
19:56:59.0338 5112 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:56:59.0338 5112 BrSerWdm - ok
19:56:59.0338 5112 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:56:59.0338 5112 BrUsbMdm - ok
19:56:59.0338 5112 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:56:59.0338 5112 BrUsbSer - ok
19:56:59.0354 5112 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:56:59.0354 5112 BTHMODEM - ok
19:56:59.0369 5112 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:56:59.0369 5112 bthserv - ok
19:56:59.0385 5112 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:56:59.0385 5112 cdfs - ok
19:56:59.0400 5112 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:56:59.0400 5112 cdrom - ok
19:56:59.0463 5112 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:56:59.0478 5112 CertPropSvc - ok
19:56:59.0478 5112 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
19:56:59.0478 5112 circlass - ok
19:56:59.0510 5112 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:56:59.0510 5112 CLFS - ok
19:56:59.0541 5112 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:56:59.0556 5112 clr_optimization_v2.0.50727_32 - ok
19:56:59.0728 5112 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:56:59.0744 5112 clr_optimization_v2.0.50727_64 - ok
19:56:59.0790 5112 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:56:59.0915 5112 clr_optimization_v4.0.30319_32 - ok
19:56:59.0946 5112 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:56:59.0978 5112 clr_optimization_v4.0.30319_64 - ok
19:57:00.0024 5112 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
19:57:00.0024 5112 CmBatt - ok
19:57:00.0040 5112 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:57:00.0040 5112 cmdide - ok
19:57:00.0087 5112 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
19:57:00.0102 5112 CNG - ok
19:57:00.0102 5112 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
19:57:00.0118 5112 Compbatt - ok
19:57:00.0134 5112 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
19:57:00.0134 5112 CompositeBus - ok
19:57:00.0134 5112 COMSysApp - ok
19:57:00.0149 5112 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:57:00.0149 5112 crcdisk - ok
19:57:00.0196 5112 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:57:00.0196 5112 CryptSvc - ok
19:57:00.0243 5112 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
19:57:00.0258 5112 CSC - ok
19:57:00.0274 5112 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
19:57:00.0290 5112 CscService - ok
19:57:00.0321 5112 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:57:00.0321 5112 DcomLaunch - ok
19:57:00.0368 5112 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:57:00.0368 5112 defragsvc - ok
19:57:00.0383 5112 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:57:00.0383 5112 DfsC - ok
19:57:00.0414 5112 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:57:00.0414 5112 Dhcp - ok
19:57:00.0414 5112 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:57:00.0414 5112 discache - ok
19:57:00.0430 5112 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
19:57:00.0430 5112 Disk - ok
19:57:00.0461 5112 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
19:57:00.0461 5112 dmvsc - ok
19:57:00.0492 5112 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:57:00.0492 5112 Dnscache - ok
19:57:00.0508 5112 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:57:00.0508 5112 dot3svc - ok
19:57:00.0524 5112 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:57:00.0524 5112 DPS - ok
19:57:00.0555 5112 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:57:00.0555 5112 drmkaud - ok
19:57:00.0648 5112 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:57:00.0648 5112 dtsoftbus01 - ok
19:57:00.0664 5112 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:57:00.0680 5112 DXGKrnl - ok
19:57:00.0695 5112 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:57:00.0695 5112 EapHost - ok
19:57:00.0742 5112 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
19:57:00.0820 5112 ebdrv - ok
19:57:00.0851 5112 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:57:00.0851 5112 EFS - ok
19:57:01.0023 5112 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:57:01.0023 5112 ehRecvr - ok
19:57:01.0038 5112 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:57:01.0054 5112 ehSched - ok
19:57:01.0085 5112 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:57:01.0085 5112 elxstor - ok
19:57:01.0101 5112 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:57:01.0101 5112 ErrDev - ok
19:57:01.0132 5112 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:57:01.0132 5112 EventSystem - ok
19:57:01.0148 5112 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:57:01.0163 5112 exfat - ok
19:57:01.0179 5112 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:57:01.0179 5112 fastfat - ok
19:57:01.0210 5112 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:57:01.0226 5112 Fax - ok
19:57:01.0226 5112 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
19:57:01.0226 5112 fdc - ok
19:57:01.0226 5112 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:57:01.0226 5112 fdPHost - ok
19:57:01.0241 5112 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:57:01.0241 5112 FDResPub - ok
19:57:01.0257 5112 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:57:01.0257 5112 FileInfo - ok
19:57:01.0272 5112 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:57:01.0272 5112 Filetrace - ok
19:57:01.0272 5112 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
19:57:01.0272 5112 flpydisk - ok
19:57:01.0288 5112 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:57:01.0288 5112 FltMgr - ok
19:57:01.0335 5112 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:57:01.0350 5112 FontCache - ok
19:57:01.0413 5112 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:57:01.0413 5112 FontCache3.0.0.0 - ok
19:57:01.0553 5112 [ 341306735FFE1541E0A0232F85EFD172 ] FrameManager Service C:\Program Files\Samsung\FrameManager\sam_service.exe
19:57:01.0569 5112 FrameManager Service - ok
19:57:01.0584 5112 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:57:01.0584 5112 FsDepends - ok
19:57:01.0616 5112 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:57:01.0616 5112 Fs_Rec - ok
19:57:01.0631 5112 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:57:01.0631 5112 fvevol - ok
19:57:01.0631 5112 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:57:01.0631 5112 gagp30kx - ok
19:57:01.0647 5112 gdrv - ok
19:57:01.0662 5112 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:57:01.0678 5112 gpsvc - ok
19:57:01.0772 5112 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:57:01.0772 5112 gupdate - ok
19:57:01.0787 5112 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:57:01.0787 5112 gupdatem - ok
19:57:01.0865 5112 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
19:57:01.0865 5112 hamachi - ok
19:57:02.0411 5112 [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
19:57:02.0427 5112 Hamachi2Svc - ok
19:57:02.0458 5112 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:57:02.0458 5112 hcw85cir - ok
19:57:02.0489 5112 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:57:02.0489 5112 HdAudAddService - ok
19:57:02.0505 5112 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:57:02.0505 5112 HDAudBus - ok
19:57:02.0520 5112 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
19:57:02.0520 5112 HidBatt - ok
19:57:02.0536 5112 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:57:02.0536 5112 HidBth - ok
19:57:02.0552 5112 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
19:57:02.0552 5112 HidIr - ok
19:57:02.0567 5112 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:57:02.0567 5112 hidserv - ok
19:57:02.0567 5112 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:57:02.0567 5112 HidUsb - ok
19:57:02.0614 5112 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:57:02.0614 5112 hkmsvc - ok
19:57:02.0630 5112 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:57:02.0645 5112 HomeGroupListener - ok
19:57:02.0676 5112 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:57:02.0676 5112 HomeGroupProvider - ok
19:57:02.0692 5112 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:57:02.0692 5112 HpSAMD - ok
19:57:02.0723 5112 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:57:02.0739 5112 HTTP - ok
19:57:02.0770 5112 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:57:02.0770 5112 hwpolicy - ok
19:57:02.0786 5112 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:57:02.0786 5112 i8042prt - ok
19:57:02.0817 5112 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:57:02.0832 5112 iaStorV - ok
19:57:02.0895 5112 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:57:02.0895 5112 IDriverT - ok
19:57:02.0957 5112 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:57:02.0957 5112 idsvc - ok
19:57:02.0973 5112 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:57:02.0973 5112 iirsp - ok
19:57:03.0004 5112 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:57:03.0004 5112 IKEEXT - ok
19:57:03.0269 5112 [ ACACD1B925D448558C1C9D0258749451 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:57:03.0285 5112 IntcAzAudAddService - ok
19:57:03.0316 5112 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:57:03.0316 5112 intelide - ok
19:57:03.0332 5112 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:57:03.0332 5112 intelppm - ok
19:57:03.0347 5112 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:57:03.0363 5112 IPBusEnum - ok
19:57:03.0378 5112 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:57:03.0378 5112 IpFilterDriver - ok
19:57:03.0425 5112 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:57:03.0425 5112 iphlpsvc - ok
19:57:03.0425 5112 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:57:03.0441 5112 IPMIDRV - ok
19:57:03.0441 5112 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:57:03.0441 5112 IPNAT - ok
19:57:03.0456 5112 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:57:03.0456 5112 IRENUM - ok
19:57:03.0472 5112 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:57:03.0472 5112 isapnp - ok
19:57:03.0488 5112 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:57:03.0488 5112 iScsiPrt - ok
19:57:03.0519 5112 [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
19:57:03.0519 5112 iusb3hcs - ok
19:57:03.0597 5112 [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
19:57:03.0597 5112 iusb3hub - ok
19:57:03.0659 5112 [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
19:57:03.0675 5112 iusb3xhc - ok
19:57:03.0675 5112 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:57:03.0690 5112 kbdclass - ok
19:57:03.0706 5112 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:57:03.0706 5112 kbdhid - ok
19:57:03.0722 5112 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:57:03.0722 5112 KeyIso - ok
19:57:03.0800 5112 [ E656FE10D6D27794AFA08136685A69E8 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
19:57:03.0815 5112 KL1 - ok
19:57:03.0831 5112 [ D865DD8B0448E3F963D68C04C532858F ] kl2 C:\Windows\system32\DRIVERS\kl2.sys
19:57:03.0831 5112 kl2 - ok
19:57:03.0924 5112 [ C7D4F357C482DD37E2B05F34093B7B0C ] KLIF C:\Windows\system32\DRIVERS\klif.sys
19:57:03.0940 5112 KLIF - ok
19:57:03.0956 5112 [ 89FB5A33D7171B6D84F5EB721D5055E1 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
19:57:03.0956 5112 KLIM6 - ok
19:57:03.0956 5112 [ 9468D07E91BA136D82415F5DFC1FE168 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
19:57:03.0956 5112 klmouflt - ok
19:57:03.0987 5112 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:57:04.0002 5112 KSecDD - ok
19:57:04.0034 5112 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:57:04.0034 5112 KSecPkg - ok
19:57:04.0034 5112 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:57:04.0034 5112 ksthunk - ok
19:57:04.0049 5112 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:57:04.0065 5112 KtmRm - ok
19:57:04.0081 5112 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:57:04.0096 5112 LanmanServer - ok
19:57:04.0127 5112 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:57:04.0127 5112 LanmanWorkstation - ok
19:57:04.0159 5112 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:57:04.0159 5112 lltdio - ok
19:57:04.0174 5112 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:57:04.0174 5112 lltdsvc - ok
19:57:04.0205 5112 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:57:04.0205 5112 lmhosts - ok
19:57:04.0377 5112 [ 05D708ED589BF5EE6402AEC873214061 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:57:04.0377 5112 LMS - ok
19:57:04.0424 5112 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:57:04.0424 5112 LSI_FC - ok
19:57:04.0439 5112 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:57:04.0439 5112 LSI_SAS - ok
19:57:04.0471 5112 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
19:57:04.0471 5112 LSI_SAS2 - ok
19:57:04.0502 5112 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:57:04.0502 5112 LSI_SCSI - ok
19:57:04.0502 5112 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:57:04.0517 5112 luafv - ok
19:57:04.0580 5112 [ 4A503882318BB2F59218D401614E6AF6 ] lvpepf64 C:\Windows\system32\DRIVERS\lv302a64.sys
19:57:04.0595 5112 lvpepf64 - ok
19:57:04.0611 5112 [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
19:57:04.0611 5112 LVPr2M64 - ok
19:57:04.0627 5112 [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
19:57:04.0627 5112 LVPr2Mon - ok
19:57:04.0673 5112 [ A35679E56E78091E1042A2D7ADBF2958 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
19:57:04.0673 5112 LVPrcS64 - ok
19:57:04.0720 5112 [ 125AE13C293889001B8456CF3EB04A40 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
19:57:04.0720 5112 LVRS64 - ok
19:57:04.0736 5112 [ 5C3FF68267A5D242EE79EE01B993D6CE ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
19:57:04.0736 5112 LVUSBS64 - ok
19:57:04.0767 5112 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:57:04.0783 5112 Mcx2Svc - ok
19:57:04.0798 5112 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
19:57:04.0798 5112 megasas - ok
19:57:04.0814 5112 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
19:57:04.0814 5112 MegaSR - ok
19:57:04.0845 5112 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
19:57:04.0845 5112 MEIx64 - ok
19:57:04.0892 5112 [ 05DCE0370CCA1501B67D6EEC18F33B8F ] miniusb C:\Windows\system32\DRIVERS\sam_miniusb.sys
19:57:04.0892 5112 miniusb - ok
19:57:04.0907 5112 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:57:04.0907 5112 MMCSS - ok
19:57:04.0923 5112 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:57:04.0923 5112 Modem - ok
19:57:04.0954 5112 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:57:04.0954 5112 monitor - ok
19:57:04.0954 5112 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:57:04.0954 5112 mouclass - ok
19:57:04.0970 5112 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:57:04.0970 5112 mouhid - ok
19:57:05.0001 5112 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:57:05.0001 5112 mountmgr - ok
19:57:05.0095 5112 [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:57:05.0095 5112 MozillaMaintenance - ok
19:57:05.0110 5112 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:57:05.0126 5112 mpio - ok
19:57:05.0126 5112 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:57:05.0126 5112 mpsdrv - ok
19:57:05.0141 5112 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:57:05.0157 5112 MpsSvc - ok
19:57:05.0173 5112 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:57:05.0173 5112 MRxDAV - ok
19:57:05.0188 5112 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:57:05.0188 5112 mrxsmb - ok
19:57:05.0204 5112 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:57:05.0219 5112 mrxsmb10 - ok
19:57:05.0219 5112 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:57:05.0219 5112 mrxsmb20 - ok
19:57:05.0235 5112 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:57:05.0235 5112 msahci - ok
19:57:05.0251 5112 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:57:05.0251 5112 msdsm - ok
19:57:05.0266 5112 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:57:05.0266 5112 MSDTC - ok
19:57:05.0282 5112 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:57:05.0282 5112 Msfs - ok
19:57:05.0282 5112 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:57:05.0297 5112 mshidkmdf - ok
19:57:05.0297 5112 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:57:05.0297 5112 msisadrv - ok
19:57:05.0313 5112 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:57:05.0329 5112 MSiSCSI - ok
19:57:05.0329 5112 msiserver - ok
19:57:05.0344 5112 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:57:05.0344 5112 MSKSSRV - ok
19:57:05.0360 5112 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:57:05.0360 5112 MSPCLOCK - ok
19:57:05.0375 5112 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:57:05.0375 5112 MSPQM - ok
19:57:05.0391 5112 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:57:05.0391 5112 MsRPC - ok
19:57:05.0407 5112 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:57:05.0407 5112 mssmbios - ok
19:57:05.0422 5112 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:57:05.0422 5112 MSTEE - ok
19:57:05.0422 5112 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
19:57:05.0438 5112 MTConfig - ok
19:57:05.0438 5112 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:57:05.0438 5112 Mup - ok
19:57:05.0453 5112 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:57:05.0453 5112 napagent - ok
19:57:05.0485 5112 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:57:05.0485 5112 NativeWifiP - ok
19:57:05.0531 5112 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:57:05.0547 5112 NDIS - ok
19:57:05.0563 5112 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:57:05.0563 5112 NdisCap - ok
19:57:05.0578 5112 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:57:05.0594 5112 NdisTapi - ok
19:57:05.0594 5112 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:57:05.0594 5112 Ndisuio - ok
19:57:05.0609 5112 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:57:05.0625 5112 NdisWan - ok
19:57:05.0625 5112 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:57:05.0625 5112 NDProxy - ok
19:57:05.0672 5112 [ D4F51E88C71BF8F06EA1BE320B0BB75B ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:57:05.0687 5112 Net Driver HPZ12 - ok
19:57:05.0687 5112 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:57:05.0687 5112 NetBIOS - ok
19:57:05.0703 5112 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:57:05.0703 5112 NetBT - ok
19:57:05.0719 5112 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:57:05.0719 5112 Netlogon - ok
19:57:05.0750 5112 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:57:05.0765 5112 Netman - ok
19:57:05.0828 5112 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:57:05.0843 5112 NetMsmqActivator - ok
19:57:05.0906 5112 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:57:05.0906 5112 NetPipeActivator - ok
19:57:05.0906 5112 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:57:05.0921 5112 netprofm - ok
19:57:05.0921 5112 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:57:05.0921 5112 NetTcpActivator - ok
19:57:05.0921 5112 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:57:05.0921 5112 NetTcpPortSharing - ok
19:57:05.0953 5112 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:57:05.0968 5112 nfrd960 - ok
19:57:06.0046 5112 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:57:06.0062 5112 NlaSvc - ok
19:57:06.0077 5112 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:57:06.0077 5112 Npfs - ok
19:57:06.0093 5112 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:57:06.0093 5112 nsi - ok
19:57:06.0109 5112 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:57:06.0109 5112 nsiproxy - ok
19:57:06.0171 5112 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:57:06.0187 5112 Ntfs - ok
19:57:06.0202 5112 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:57:06.0202 5112 Null - ok
19:57:06.0265 5112 [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:57:06.0265 5112 NVHDA - ok
19:57:06.0764 5112 [ 0A2F27B5BCC45B64E152DD6AE0815198 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:57:06.0795 5112 nvlddmkm - ok
19:57:06.0826 5112 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:57:06.0842 5112 nvraid - ok
19:57:06.0889 5112 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:57:06.0889 5112 nvstor - ok
19:57:06.0951 5112 [ 574087EA9105F23FB522A4FDDD5292D9 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:57:06.0951 5112 nvsvc - ok
19:57:07.0029 5112 [ ABA5A88740635D37A2B6CEB27DBC738A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:57:07.0045 5112 nvUpdatusService - ok
19:57:07.0060 5112 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:57:07.0076 5112 nv_agp - ok
19:57:07.0076 5112 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:57:07.0091 5112 ohci1394 - ok
19:57:07.0138 5112 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:57:07.0138 5112 ose - ok
19:57:07.0294 5112 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:57:07.0357 5112 osppsvc - ok
19:57:07.0403 5112 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:57:07.0403 5112 p2pimsvc - ok
19:57:07.0435 5112 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:57:07.0450 5112 p2psvc - ok
19:57:07.0497 5112 papycpu - ok
19:57:07.0528 5112 papycpu2 - ok
19:57:07.0544 5112 papyjoy - ok
19:57:07.0575 5112 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:57:07.0575 5112 Parport - ok
19:57:07.0622 5112 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:57:07.0622 5112 partmgr - ok
19:57:07.0622 5112 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:57:07.0622 5112 PcaSvc - ok
19:57:07.0637 5112 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:57:07.0637 5112 pci - ok
19:57:07.0637 5112 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:57:07.0637 5112 pciide - ok
19:57:07.0653 5112 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:57:07.0653 5112 pcmcia - ok
19:57:07.0653 5112 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:57:07.0653 5112 pcw - ok
19:57:07.0669 5112 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:57:07.0684 5112 PEAUTH - ok
19:57:07.0715 5112 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:57:07.0731 5112 PeerDistSvc - ok
19:57:07.0825 5112 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:57:07.0825 5112 PerfHost - ok
19:57:08.0059 5112 [ AE0B94363DA0F60D42B9D05B352F61ED ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
19:57:08.0137 5112 PID_PEPI - ok
19:57:08.0168 5112 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:57:08.0199 5112 pla - ok
19:57:08.0277 5112 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:57:08.0293 5112 PlugPlay - ok
19:57:08.0308 5112 [ 9A80707D8B6C1806531BFD7399B3CC76 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:57:08.0308 5112 Pml Driver HPZ12 - ok
19:57:08.0324 5112 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:57:08.0324 5112 PNRPAutoReg - ok
19:57:08.0339 5112 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:57:08.0339 5112 PNRPsvc - ok
19:57:08.0355 5112 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:57:08.0355 5112 PolicyAgent - ok
19:57:08.0386 5112 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:57:08.0386 5112 Power - ok
19:57:08.0417 5112 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:57:08.0417 5112 PptpMiniport - ok
19:57:08.0433 5112 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
19:57:08.0433 5112 Processor - ok
19:57:08.0464 5112 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:57:08.0464 5112 ProfSvc - ok
19:57:08.0480 5112 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:57:08.0480 5112 ProtectedStorage - ok
19:57:08.0495 5112 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:57:08.0495 5112 Psched - ok
19:57:08.0542 5112 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
19:57:08.0542 5112 PxHlpa64 - ok
19:57:08.0573 5112 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:57:08.0589 5112 ql2300 - ok
19:57:08.0605 5112 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:57:08.0605 5112 ql40xx - ok
19:57:08.0636 5112 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:57:08.0636 5112 QWAVE - ok
19:57:08.0651 5112 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:57:08.0651 5112 QWAVEdrv - ok
19:57:08.0667 5112 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:57:08.0667 5112 RasAcd - ok
19:57:08.0683 5112 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:57:08.0683 5112 RasAgileVpn - ok
19:57:08.0698 5112 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:57:08.0698 5112 RasAuto - ok
19:57:08.0714 5112 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:57:08.0714 5112 Rasl2tp - ok
19:57:08.0729 5112 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:57:08.0729 5112 RasMan - ok
19:57:08.0745 5112 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:57:08.0745 5112 RasPppoe - ok
19:57:08.0745 5112 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:57:08.0745 5112 RasSstp - ok
19:57:08.0761 5112 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:57:08.0761 5112 rdbss - ok
19:57:08.0761 5112 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:57:08.0776 5112 rdpbus - ok
19:57:08.0792 5112 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:57:08.0792 5112 RDPCDD - ok
19:57:08.0807 5112 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:57:08.0807 5112 RDPDR - ok
19:57:08.0823 5112 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:57:08.0823 5112 RDPENCDD - ok
19:57:08.0839 5112 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:57:08.0839 5112 RDPREFMP - ok
19:57:08.0870 5112 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:57:08.0901 5112 RdpVideoMiniport - ok
19:57:08.0932 5112 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:57:08.0932 5112 RDPWD - ok
19:57:08.0948 5112 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:57:08.0963 5112 rdyboost - ok
19:57:08.0979 5112 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:57:08.0979 5112 RemoteAccess - ok
19:57:08.0979 5112 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:57:08.0995 5112 RemoteRegistry - ok
19:57:08.0995 5112 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:57:08.0995 5112 RpcEptMapper - ok
19:57:09.0010 5112 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:57:09.0026 5112 RpcLocator - ok
19:57:09.0026 5112 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:57:09.0026 5112 RpcSs - ok
19:57:09.0057 5112 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:57:09.0057 5112 rspndr - ok
19:57:09.0104 5112 [ 61A04C0C084D560BBEF1D09604608262 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:57:09.0119 5112 RTL8167 - ok
19:57:09.0151 5112 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:57:09.0166 5112 s3cap - ok
19:57:09.0166 5112 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:57:09.0166 5112 SamSs - ok
19:57:09.0260 5112 [ 2C31378A5695526E99ADAB928157B992 ] Samsung UPD Service2 C:\Windows\System32\SUPDSvc2.exe
19:57:09.0275 5112 Samsung UPD Service2 - ok
19:57:09.0291 5112 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:57:09.0291 5112 sbp2port - ok
19:57:09.0291 5112 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:57:09.0307 5112 SCardSvr - ok
19:57:09.0307 5112 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:57:09.0307 5112 scfilter - ok
19:57:09.0338 5112 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:57:09.0353 5112 Schedule - ok
19:57:09.0369 5112 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:57:09.0369 5112 SCPolicySvc - ok
19:57:09.0385 5112 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:57:09.0385 5112 SDRSVC - ok
19:57:09.0400 5112 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:57:09.0400 5112 secdrv - ok
19:57:09.0416 5112 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:57:09.0416 5112 seclogon - ok
19:57:09.0431 5112 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:57:09.0431 5112 SENS - ok
19:57:09.0447 5112 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:57:09.0447 5112 SensrSvc - ok
19:57:09.0478 5112 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:57:09.0478 5112 Serenum - ok
19:57:09.0494 5112 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:57:09.0494 5112 Serial - ok
19:57:09.0494 5112 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:57:09.0509 5112 sermouse - ok
19:57:09.0509 5112 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:57:09.0509 5112 SessionEnv - ok
19:57:09.0509 5112 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:57:09.0509 5112 sffdisk - ok
19:57:09.0525 5112 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:57:09.0525 5112 sffp_mmc - ok
19:57:09.0525 5112 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:57:09.0525 5112 sffp_sd - ok
19:57:09.0525 5112 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:57:09.0525 5112 sfloppy - ok
19:57:09.0556 5112 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:57:09.0556 5112 SharedAccess - ok
19:57:09.0572 5112 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:57:09.0572 5112 ShellHWDetection - ok
19:57:09.0587 5112 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
19:57:09.0587 5112 SiSRaid2 - ok
19:57:09.0603 5112 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:57:09.0603 5112 SiSRaid4 - ok
19:57:09.0665 5112 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:57:09.0681 5112 SkypeUpdate - ok
19:57:09.0681 5112 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:57:09.0681 5112 Smb - ok
19:57:09.0712 5112 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:57:09.0712 5112 SNMPTRAP - ok
19:57:09.0743 5112 [ 867DB0D7380DD1DA484B74A75E3E9023 ] SODI C:\Windows\system32\DRIVERS\sam_miniport.sys
19:57:09.0743 5112 SODI - ok
19:57:09.0759 5112 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:57:09.0759 5112 spldr - ok
19:57:09.0837 5112 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:57:09.0837 5112 Spooler - ok
19:57:10.0102 5112 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:57:10.0149 5112 sppsvc - ok
19:57:10.0165 5112 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:57:10.0165 5112 sppuinotify - ok
19:57:10.0258 5112 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:57:10.0352 5112 srv - ok
19:57:10.0367 5112 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:57:10.0414 5112 srv2 - ok
19:57:10.0430 5112 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:57:10.0430 5112 srvnet - ok
19:57:10.0445 5112 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:57:10.0445 5112 SSDPSRV - ok
19:57:10.0445 5112 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:57:10.0461 5112 SstpSvc - ok
19:57:10.0601 5112 Steam Client Service - ok
19:57:10.0726 5112 [ 78216A10BF8B200890A88D8820F33F14 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:57:10.0742 5112 Stereo Service - ok
19:57:10.0757 5112 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
19:57:10.0757 5112 stexstor - ok
19:57:10.0789 5112 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:57:10.0804 5112 stisvc - ok
19:57:10.0835 5112 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:57:10.0835 5112 storflt - ok
19:57:10.0867 5112 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:57:10.0867 5112 storvsc - ok
19:57:10.0882 5112 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:57:10.0882 5112 swenum - ok
19:57:10.0898 5112 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:57:10.0913 5112 swprv - ok
19:57:10.0929 5112 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
19:57:10.0929 5112 Synth3dVsc - ok
19:57:10.0960 5112 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:57:10.0976 5112 SysMain - ok
19:57:11.0023 5112 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:57:11.0023 5112 TabletInputService - ok
19:57:11.0054 5112 [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
19:57:11.0054 5112 tap0901t - ok
19:57:11.0085 5112 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:57:11.0085 5112 TapiSrv - ok
19:57:11.0101 5112 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:57:11.0101 5112 TBS - ok
19:57:11.0413 5112 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:57:11.0444 5112 Tcpip - ok
19:57:11.0756 5112 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:57:11.0756 5112 TCPIP6 - ok
19:57:11.0818 5112 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:57:11.0818 5112 tcpipreg - ok
19:57:11.0896 5112 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:57:11.0912 5112 TDPIPE - ok
19:57:11.0943 5112 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:57:11.0959 5112 TDTCP - ok
19:57:12.0005 5112 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:57:12.0005 5112 tdx - ok
19:57:12.0333 5112 [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
19:57:12.0380 5112 TeamViewer8 - ok
19:57:12.0395 5112 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:57:12.0395 5112 TermDD - ok
19:57:12.0427 5112 [ EF4469AB69EB15E5D3754E6AEAFBCD3D ] terminpt C:\Windows\system32\drivers\terminpt.sys
19:57:12.0442 5112 terminpt - ok
19:57:12.0505 5112 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:57:12.0520 5112 TermService - ok
19:57:12.0520 5112 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:57:12.0536 5112 Themes - ok
19:57:12.0536 5112 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:57:12.0536 5112 THREADORDER - ok
19:57:12.0567 5112 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:57:12.0567 5112 TrkWks - ok
19:57:12.0692 5112 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:57:12.0692 5112 TrustedInstaller - ok
19:57:12.0707 5112 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:57:12.0723 5112 tssecsrv - ok
19:57:12.0770 5112 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:57:12.0785 5112 TsUsbFlt - ok
19:57:12.0801 5112 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
19:57:12.0801 5112 TsUsbGD - ok
19:57:12.0832 5112 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
19:57:12.0832 5112 tsusbhub - ok
19:57:13.0300 5112 [ 50D8102EECC446F160C8C31AF927242D ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
19:57:13.0316 5112 TuneUp.UtilitiesSvc - ok
19:57:13.0394 5112 [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys
19:57:13.0394 5112 TuneUpUtilitiesDrv - ok
19:57:13.0441 5112 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:57:13.0441 5112 tunnel - ok
19:57:13.0534 5112 [ 2FD0FE0A0C721C8E47C5A3AE16E519B1 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
19:57:13.0534 5112 TunngleService - ok
19:57:13.0565 5112 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:57:13.0565 5112 uagp35 - ok
19:57:13.0581 5112 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:57:13.0581 5112 udfs - ok
19:57:13.0612 5112 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:57:13.0612 5112 UI0Detect - ok
19:57:13.0612 5112 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:57:13.0612 5112 uliagpkx - ok
19:57:13.0628 5112 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:57:13.0628 5112 umbus - ok
19:57:13.0643 5112 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
19:57:13.0643 5112 UmPass - ok
19:57:13.0690 5112 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
19:57:13.0706 5112 UmRdpService - ok
19:57:13.0706 5112 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:57:13.0706 5112 upnphost - ok
19:57:13.0768 5112 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:57:13.0768 5112 usbaudio - ok
19:57:13.0815 5112 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:57:13.0815 5112 usbccgp - ok
19:57:13.0831 5112 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:57:13.0831 5112 usbcir - ok
19:57:13.0846 5112 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:57:13.0846 5112 usbehci - ok
19:57:13.0877 5112 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:57:13.0877 5112 usbhub - ok
19:57:13.0909 5112 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:57:13.0909 5112 usbohci - ok
19:57:13.0924 5112 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
19:57:13.0924 5112 usbprint - ok
19:57:13.0940 5112 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:57:13.0940 5112 USBSTOR - ok
19:57:13.0955 5112 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:57:13.0971 5112 usbuhci - ok
19:57:14.0018 5112 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
19:57:14.0049 5112 usb_rndisx - ok
19:57:14.0065 5112 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:57:14.0065 5112 UxSms - ok
19:57:14.0143 5112 [ 3DEC48B5C70562DEE960117553134E3E ] UxTuneUp C:\Windows\System32\uxtuneup.dll
19:57:14.0158 5112 UxTuneUp - ok
19:57:14.0174 5112 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:57:14.0189 5112 VaultSvc - ok
19:57:14.0205 5112 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:57:14.0205 5112 vdrvroot - ok
19:57:14.0205 5112 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:57:14.0221 5112 vds - ok
19:57:14.0252 5112 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:57:14.0252 5112 vga - ok
19:57:14.0252 5112 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:57:14.0267 5112 VgaSave - ok
19:57:14.0267 5112 VGPU - ok
19:57:14.0267 5112 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:57:14.0267 5112 vhdmp - ok
19:57:14.0283 5112 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:57:14.0283 5112 viaide - ok
19:57:14.0314 5112 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:57:14.0314 5112 vmbus - ok
19:57:14.0330 5112 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:57:14.0330 5112 VMBusHID - ok
19:57:14.0330 5112 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:57:14.0330 5112 volmgr - ok
19:57:14.0345 5112 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:57:14.0345 5112 volmgrx - ok
19:57:14.0361 5112 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:57:14.0377 5112 volsnap - ok
19:57:14.0408 5112 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
19:57:14.0408 5112 vpcbus - ok
19:57:14.0423 5112 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys
19:57:14.0455 5112 vpcnfltr - ok
19:57:14.0455 5112 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
19:57:14.0455 5112 vpcusb - ok
19:57:14.0501 5112 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys
19:57:14.0501 5112 vpcvmm - ok
19:57:14.0517 5112 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:57:14.0533 5112 vsmraid - ok
19:57:14.0548 5112 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:57:14.0564 5112 VSS - ok
19:57:14.0626 5112 [ E6CB71665C410D6CC3D44E796835CE32 ] vvftav C:\Windows\system32\drivers\vvftav.sys
19:57:14.0626 5112 vvftav - ok
19:57:14.0642 5112 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:57:14.0657 5112 vwifibus - ok
19:57:14.0673 5112 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:57:14.0673 5112 W32Time - ok
19:57:14.0673 5112 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:57:14.0673 5112 WacomPen - ok
19:57:14.0689 5112 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:57:14.0689 5112 WANARP - ok
19:57:14.0704 5112 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:57:14.0704 5112 Wanarpv6 - ok
19:57:14.0751 5112 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:57:14.0767 5112 WatAdminSvc - ok
19:57:14.0798 5112 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:57:14.0829 5112 wbengine - ok
19:57:14.0829 5112 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:57:14.0829 5112 WbioSrvc - ok
19:57:14.0860 5112 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:57:14.0860 5112 wcncsvc - ok
19:57:14.0876 5112 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:57:14.0876 5112 WcsPlugInService - ok
19:57:14.0891 5112 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
19:57:14.0891 5112 Wd - ok
19:57:15.0063 5112 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:57:15.0094 5112 Wdf01000 - ok
19:57:15.0110 5112 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:57:15.0110 5112 WdiServiceHost - ok
19:57:15.0110 5112 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:57:15.0110 5112 WdiSystemHost - ok
19:57:15.0125 5112 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:57:15.0125 5112 WebClient - ok
19:57:15.0125 5112 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:57:15.0141 5112 Wecsvc - ok
19:57:15.0141 5112 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:57:15.0157 5112 wercplsupport - ok
19:57:15.0172 5112 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:57:15.0172 5112 WerSvc - ok
19:57:15.0203 5112 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:57:15.0203 5112 WfpLwf - ok
19:57:15.0219 5112 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:57:15.0219 5112 WIMMount - ok
19:57:15.0235 5112 WinDefend - ok
19:57:15.0235 5112 WinHttpAutoProxySvc - ok
19:57:15.0281 5112 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:57:15.0281 5112 Winmgmt - ok
19:57:15.0406 5112 WinRing0_1_2_0 - ok
19:57:15.0612 5112 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:57:15.0652 5112 WinRM - ok
19:57:15.0702 5112 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:57:15.0722 5112 WinUsb - ok
19:57:15.0742 5112 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:57:15.0752 5112 Wlansvc - ok
19:57:15.0792 5112 [ 680A7846370000D20D7E74917D5B7936 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
19:57:15.0802 5112 WmBEnum - ok
19:57:15.0832 5112 [ 14C35BA8189C6F65D839163AA285E954 ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
19:57:15.0832 5112 WmFilter - ok
19:57:15.0862 5112 [ AC4331AF118A720F13C9C5CABBFE27BD ] WmHidLo C:\Windows\system32\drivers\WmHidLo.sys
19:57:15.0862 5112 WmHidLo - ok
19:57:15.0882 5112 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:57:15.0882 5112 WmiAcpi - ok
19:57:15.0902 5112 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:57:15.0912 5112 wmiApSrv - ok
19:57:15.0932 5112 WMPNetworkSvc - ok
19:57:15.0932 5112 [ 8488DD91A3EE54A8E29F02AD7BB8201E ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
19:57:15.0942 5112 WmVirHid - ok
19:57:15.0942 5112 [ 14802B3A30AA849C97CB968CCC813BF3 ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
19:57:15.0952 5112 WmXlCore - ok
19:57:15.0962 5112 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:57:15.0962 5112 WPCSvc - ok
19:57:15.0972 5112 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:57:15.0972 5112 WPDBusEnum - ok
19:57:15.0992 5112 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:57:15.0992 5112 ws2ifsl - ok
19:57:16.0062 5112 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
19:57:16.0062 5112 wscsvc - ok
19:57:16.0062 5112 WSearch - ok
19:57:16.0132 5112 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:57:16.0162 5112 wuauserv - ok
19:57:16.0192 5112 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:57:16.0192 5112 WudfPf - ok
19:57:16.0222 5112 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:57:16.0222 5112 WUDFRd - ok
19:57:16.0242 5112 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:57:16.0262 5112 wudfsvc - ok
19:57:16.0272 5112 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:57:16.0282 5112 WwanSvc - ok
19:57:16.0332 5112 [ 4A5CE13408945E525503B5F73D29B9C5 ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
19:57:16.0342 5112 xnacc - ok
19:57:16.0382 5112 XSpaceWg - ok
19:57:16.0412 5112 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
19:57:16.0422 5112 xusb21 - ok
19:57:16.0472 5112 [ C48A0F1DF0DBA60010748DEC8CC886B4 ] ZSMC0305 C:\Windows\system32\Drivers\usbVM305.sys
19:57:16.0502 5112 ZSMC0305 - ok
19:57:16.0502 5112 ================ Scan global ===============================
19:57:16.0522 5112 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:57:16.0552 5112 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:57:16.0562 5112 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:57:16.0582 5112 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:57:16.0602 5112 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:57:16.0602 5112 [Global] - ok
19:57:16.0602 5112 ================ Scan MBR ==================================
19:57:16.0612 5112 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:57:16.0612 5112 \Device\Harddisk0\DR0 - ok
19:57:16.0612 5112 ================ Scan VBR ==================================
19:57:16.0622 5112 [ 311110DA24392C968935A78177825000 ] \Device\Harddisk0\DR0\Partition1
19:57:16.0622 5112 \Device\Harddisk0\DR0\Partition1 - ok
19:57:16.0632 5112 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2
19:57:16.0632 5112 \Device\Harddisk0\DR0\Partition2 - ok
19:57:16.0642 5112 [ F10242DB253F8FBE824011290232BBA5 ] \Device\Harddisk0\DR0\Partition3
19:57:16.0642 5112 \Device\Harddisk0\DR0\Partition3 - ok
19:57:16.0642 5112 ============================================================
19:57:16.0642 5112 Scan finished
19:57:16.0642 5112 ============================================================
19:57:16.0652 3716 Detected object count: 0
19:57:16.0652 3716 Actual detected object count: 0
19:57:29.0089 3724 Deinitialize success

Alt 23.02.2013, 21:22   #10
weoiss
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Kann es auch an falschen Treibern liegen? Gibt es da irgendeine Überprüfungs-Software?

Alt 25.02.2013, 16:45   #11
markusg
/// Malware-holic
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



hi
tdss killer war nicht richtig konfiguriert, bilder ansehen und noch mal bitte
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 26.02.2013, 18:28   #12
weoiss
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



:
Code:
ATTFilter
18:26:17.0029 2168  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:26:17.0029 2168  UEFI system
18:26:17.0337 2168  ============================================================
18:26:17.0337 2168  Current date / time: 2013/02/26 18:26:17.0337
18:26:17.0337 2168  SystemInfo:
18:26:17.0337 2168  
18:26:17.0337 2168  OS Version: 6.1.7601 ServicePack: 1.0
18:26:17.0337 2168  Product type: Workstation
18:26:17.0337 2168  ComputerName: SIMONHIGHENDPC
18:26:17.0337 2168  UserName: User
18:26:17.0337 2168  Windows directory: C:\Windows
18:26:17.0337 2168  System windows directory: C:\Windows
18:26:17.0337 2168  Running under WOW64
18:26:17.0337 2168  Processor architecture: Intel x64
18:26:17.0337 2168  Number of processors: 8
18:26:17.0337 2168  Page size: 0x1000
18:26:17.0337 2168  Boot type: Normal boot
18:26:17.0337 2168  ============================================================
18:26:18.0249 2168  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:26:18.0272 2168  ============================================================
18:26:18.0272 2168  \Device\Harddisk0\DR0:
18:26:18.0279 2168  GPT partitions:
18:26:18.0280 2168  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {74D11EE9-D9FE-4274-8884-CA16F47B940D}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
18:26:18.0280 2168  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6AE313AC-A08A-4C78-9F26-286D8297AFE1}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000
18:26:18.0280 2168  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7329315E-CEE6-49FF-87E5-D522D0AB9FBD}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0xE8D96000
18:26:18.0280 2168  MBR partitions:
18:26:18.0280 2168  ============================================================
18:26:18.0366 2168  C: <-> \Device\Harddisk0\DR0\Partition3
18:26:18.0366 2168  ============================================================
18:26:18.0366 2168  Initialize success
18:26:18.0366 2168  ============================================================
18:26:41.0873 1184  ============================================================
18:26:41.0873 1184  Scan started
18:26:41.0873 1184  Mode: Manual; SigCheck; TDLFS; 
18:26:41.0873 1184  ============================================================
18:26:42.0171 1184  ================ Scan system memory ========================
18:26:42.0171 1184  System memory - ok
18:26:42.0171 1184  ================ Scan services =============================
18:26:44.0082 1184  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:26:44.0203 1184  1394ohci - ok
18:26:44.0283 1184  [ A3769020F7E8A70FD3E824C050F33306 ] acedrv11        C:\Windows\system32\drivers\acedrv11.sys
18:26:44.0294 1184  acedrv11 - ok
18:26:44.0314 1184  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:26:44.0324 1184  ACPI - ok
18:26:44.0336 1184  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:26:44.0374 1184  AcpiPmi - ok
18:26:44.0504 1184  [ 2D766591E87FFFF237C0C9C16CDDECAB ] ACT2PM          C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys
18:26:44.0511 1184  ACT2PM - ok
18:26:44.0541 1184  [ C47D15FC2CA269DD2EC5946953C5BF03 ] ACT2_Service    C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
18:26:44.0560 1184  ACT2_Service - ok
18:26:44.0650 1184  [ C004F38974F4D321B4C20A240E1175C0 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
18:26:44.0657 1184  AdobeActiveFileMonitor9.0 - ok
18:26:44.0802 1184  [ 563CDCFEEAEF97163E206AF71A61AA6E ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:26:44.0810 1184  AdobeFlashPlayerUpdateSvc - ok
18:26:44.0874 1184  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:26:44.0885 1184  adp94xx - ok
18:26:44.0942 1184  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:26:44.0951 1184  adpahci - ok
18:26:44.0974 1184  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:26:44.0982 1184  adpu320 - ok
18:26:45.0022 1184  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:26:45.0071 1184  AeLookupSvc - ok
18:26:45.0130 1184  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
18:26:45.0197 1184  AFD - ok
18:26:45.0238 1184  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:26:45.0246 1184  agp440 - ok
18:26:45.0316 1184  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
18:26:45.0392 1184  ALG - ok
18:26:45.0430 1184  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:26:45.0437 1184  aliide - ok
18:26:45.0453 1184  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
18:26:45.0460 1184  amdide - ok
18:26:45.0505 1184  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:26:45.0542 1184  AmdK8 - ok
18:26:45.0574 1184  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
18:26:45.0611 1184  AmdPPM - ok
18:26:45.0643 1184  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:26:45.0650 1184  amdsata - ok
18:26:45.0688 1184  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:26:45.0698 1184  amdsbs - ok
18:26:45.0747 1184  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:26:45.0754 1184  amdxata - ok
18:26:45.0822 1184  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
18:26:45.0885 1184  AppID - ok
18:26:45.0908 1184  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:26:45.0932 1184  AppIDSvc - ok
18:26:45.0948 1184  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
18:26:46.0003 1184  Appinfo - ok
18:26:46.0048 1184  [ BA957E7ACD2B44FA3B01FAA64F6A9060 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
18:26:46.0054 1184  AppleCharger - ok
18:26:46.0099 1184  [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
18:26:46.0105 1184  AppleChargerSrv - ok
18:26:46.0173 1184  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
18:26:46.0233 1184  AppMgmt - ok
18:26:46.0273 1184  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
18:26:46.0280 1184  arc - ok
18:26:46.0303 1184  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:26:46.0310 1184  arcsas - ok
18:26:46.0811 1184  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:26:46.0818 1184  aspnet_state - ok
18:26:46.0884 1184  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:26:46.0939 1184  AsyncMac - ok
18:26:46.0958 1184  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
18:26:46.0965 1184  atapi - ok
18:26:47.0060 1184  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:26:47.0111 1184  AudioEndpointBuilder - ok
18:26:47.0130 1184  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:26:47.0156 1184  AudioSrv - ok
18:26:47.0214 1184  [ 38AE54966E8C0004F20965BBC00F74FB ] AVP             C:\Program Files (x86)\Kaspersky Security Suite CBE 12\avp.exe
18:26:47.0223 1184  AVP - ok
18:26:47.0262 1184  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:26:47.0354 1184  AxInstSV - ok
18:26:47.0423 1184  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
18:26:47.0478 1184  b06bdrv - ok
18:26:47.0510 1184  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:26:47.0546 1184  b57nd60a - ok
18:26:47.0584 1184  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:26:47.0624 1184  BDESVC - ok
18:26:47.0645 1184  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:26:47.0687 1184  Beep - ok
18:26:47.0755 1184  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
18:26:47.0799 1184  BFE - ok
18:26:47.0850 1184  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
18:26:47.0905 1184  BITS - ok
18:26:47.0938 1184  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:26:47.0973 1184  blbdrive - ok
18:26:48.0077 1184  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:26:48.0156 1184  bowser - ok
18:26:48.0196 1184  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
18:26:48.0232 1184  BrFiltLo - ok
18:26:48.0241 1184  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
18:26:48.0251 1184  BrFiltUp - ok
18:26:48.0292 1184  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
18:26:48.0305 1184  Browser - ok
18:26:48.0332 1184  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:26:48.0397 1184  Brserid - ok
18:26:48.0415 1184  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:26:48.0448 1184  BrSerWdm - ok
18:26:48.0462 1184  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:26:48.0498 1184  BrUsbMdm - ok
18:26:48.0521 1184  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:26:48.0555 1184  BrUsbSer - ok
18:26:48.0579 1184  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
18:26:48.0609 1184  BTHMODEM - ok
18:26:48.0654 1184  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
18:26:48.0695 1184  bthserv - ok
18:26:48.0723 1184  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:26:48.0773 1184  cdfs - ok
18:26:48.0847 1184  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:26:48.0875 1184  cdrom - ok
18:26:48.0977 1184  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
18:26:49.0073 1184  CertPropSvc - ok
18:26:49.0093 1184  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
18:26:49.0116 1184  circlass - ok
18:26:49.0135 1184  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
18:26:49.0145 1184  CLFS - ok
18:26:49.0187 1184  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:26:49.0194 1184  clr_optimization_v2.0.50727_32 - ok
18:26:49.0460 1184  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:26:49.0467 1184  clr_optimization_v2.0.50727_64 - ok
18:26:49.0564 1184  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:26:49.0571 1184  clr_optimization_v4.0.30319_32 - ok
18:26:49.0608 1184  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:26:49.0615 1184  clr_optimization_v4.0.30319_64 - ok
18:26:49.0662 1184  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
18:26:49.0692 1184  CmBatt - ok
18:26:49.0732 1184  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:26:49.0739 1184  cmdide - ok
18:26:49.0885 1184  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
18:26:49.0901 1184  CNG - ok
18:26:49.0930 1184  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
18:26:49.0937 1184  Compbatt - ok
18:26:49.0990 1184  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
18:26:50.0041 1184  CompositeBus - ok
18:26:50.0065 1184  COMSysApp - ok
18:26:50.0112 1184  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:26:50.0120 1184  crcdisk - ok
18:26:50.0201 1184  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:26:50.0246 1184  CryptSvc - ok
18:26:50.0323 1184  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
18:26:50.0371 1184  CSC - ok
18:26:50.0415 1184  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
18:26:50.0454 1184  CscService - ok
18:26:50.0520 1184  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:26:50.0567 1184  DcomLaunch - ok
18:26:50.0612 1184  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
18:26:50.0638 1184  defragsvc - ok
18:26:50.0662 1184  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:26:50.0705 1184  DfsC - ok
18:26:50.0733 1184  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:26:50.0760 1184  Dhcp - ok
18:26:50.0775 1184  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
18:26:50.0822 1184  discache - ok
18:26:50.0838 1184  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
18:26:50.0845 1184  Disk - ok
18:26:50.0882 1184  [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
18:26:50.0982 1184  dmvsc - ok
18:26:51.0015 1184  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:26:51.0054 1184  Dnscache - ok
18:26:51.0080 1184  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:26:51.0133 1184  dot3svc - ok
18:26:51.0147 1184  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
18:26:51.0188 1184  DPS - ok
18:26:51.0219 1184  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:26:51.0253 1184  drmkaud - ok
18:26:51.0374 1184  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:26:51.0383 1184  dtsoftbus01 - ok
18:26:51.0451 1184  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:26:51.0466 1184  DXGKrnl - ok
18:26:51.0470 1184  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
18:26:51.0517 1184  EapHost - ok
18:26:51.0730 1184  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
18:26:51.0782 1184  ebdrv - ok
18:26:51.0852 1184  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
18:26:51.0895 1184  EFS - ok
18:26:52.0062 1184  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:26:52.0104 1184  ehRecvr - ok
18:26:52.0135 1184  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
18:26:52.0161 1184  ehSched - ok
18:26:52.0306 1184  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:26:52.0317 1184  elxstor - ok
18:26:52.0332 1184  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:26:52.0341 1184  ErrDev - ok
18:26:52.0401 1184  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
18:26:52.0461 1184  EventSystem - ok
18:26:52.0489 1184  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
18:26:52.0513 1184  exfat - ok
18:26:52.0527 1184  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:26:52.0588 1184  fastfat - ok
18:26:52.0654 1184  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
18:26:52.0671 1184  Fax - ok
18:26:52.0683 1184  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
18:26:52.0717 1184  fdc - ok
18:26:52.0768 1184  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:26:52.0798 1184  fdPHost - ok
18:26:52.0816 1184  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:26:52.0863 1184  FDResPub - ok
18:26:52.0878 1184  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:26:52.0885 1184  FileInfo - ok
18:26:52.0903 1184  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:26:52.0944 1184  Filetrace - ok
18:26:52.0951 1184  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
18:26:52.0960 1184  flpydisk - ok
18:26:52.0965 1184  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:26:52.0975 1184  FltMgr - ok
18:26:53.0019 1184  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
18:26:53.0055 1184  FontCache - ok
18:26:53.0143 1184  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:26:53.0149 1184  FontCache3.0.0.0 - ok
18:26:53.0290 1184  [ 341306735FFE1541E0A0232F85EFD172 ] FrameManager Service C:\Program Files\Samsung\FrameManager\sam_service.exe
18:26:53.0322 1184  FrameManager Service ( UnsignedFile.Multi.Generic ) - warning
18:26:53.0322 1184  FrameManager Service - detected UnsignedFile.Multi.Generic (1)
18:26:53.0358 1184  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:26:53.0365 1184  FsDepends - ok
18:26:53.0400 1184  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:26:53.0407 1184  Fs_Rec - ok
18:26:53.0435 1184  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:26:53.0446 1184  fvevol - ok
18:26:53.0456 1184  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:26:53.0463 1184  gagp30kx - ok
18:26:53.0484 1184  gdrv - ok
18:26:53.0500 1184  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
18:26:53.0527 1184  gpsvc - ok
18:26:53.0597 1184  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:26:53.0604 1184  gupdate - ok
18:26:53.0626 1184  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:26:53.0633 1184  gupdatem - ok
18:26:53.0746 1184  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
18:26:53.0752 1184  hamachi - ok
18:26:53.0894 1184  [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
18:26:53.0923 1184  Hamachi2Svc - ok
18:26:53.0957 1184  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:26:54.0035 1184  hcw85cir - ok
18:26:54.0095 1184  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:26:54.0140 1184  HdAudAddService - ok
18:26:54.0216 1184  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:26:54.0251 1184  HDAudBus - ok
18:26:54.0282 1184  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
18:26:54.0304 1184  HidBatt - ok
18:26:54.0308 1184  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
18:26:54.0340 1184  HidBth - ok
18:26:54.0380 1184  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:26:54.0390 1184  HidIr - ok
18:26:54.0415 1184  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
18:26:54.0438 1184  hidserv - ok
18:26:54.0472 1184  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:26:54.0481 1184  HidUsb - ok
18:26:54.0550 1184  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:26:54.0604 1184  hkmsvc - ok
18:26:54.0659 1184  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:26:54.0677 1184  HomeGroupListener - ok
18:26:54.0714 1184  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:26:54.0754 1184  HomeGroupProvider - ok
18:26:54.0798 1184  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:26:54.0805 1184  HpSAMD - ok
18:26:54.0881 1184  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:26:54.0943 1184  HTTP - ok
18:26:55.0005 1184  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:26:55.0012 1184  hwpolicy - ok
18:26:55.0048 1184  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:26:55.0056 1184  i8042prt - ok
18:26:55.0114 1184  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:26:55.0125 1184  iaStorV - ok
18:26:55.0241 1184  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:26:55.0276 1184  IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:26:55.0276 1184  IDriverT - detected UnsignedFile.Multi.Generic (1)
18:26:55.0346 1184  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:26:55.0359 1184  idsvc - ok
18:26:55.0382 1184  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:26:55.0389 1184  iirsp - ok
18:26:55.0417 1184  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
18:26:55.0461 1184  IKEEXT - ok
18:26:55.0545 1184  [ ACACD1B925D448558C1C9D0258749451 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:26:55.0594 1184  IntcAzAudAddService - ok
18:26:55.0635 1184  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
18:26:55.0642 1184  intelide - ok
18:26:55.0651 1184  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:26:55.0681 1184  intelppm - ok
18:26:55.0709 1184  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:26:55.0750 1184  IPBusEnum - ok
18:26:55.0777 1184  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:26:55.0799 1184  IpFilterDriver - ok
18:26:55.0861 1184  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:26:55.0895 1184  iphlpsvc - ok
18:26:55.0898 1184  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:26:55.0908 1184  IPMIDRV - ok
18:26:55.0911 1184  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:26:55.0943 1184  IPNAT - ok
18:26:55.0977 1184  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:26:56.0008 1184  IRENUM - ok
18:26:56.0040 1184  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:26:56.0047 1184  isapnp - ok
18:26:56.0082 1184  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:26:56.0092 1184  iScsiPrt - ok
18:26:56.0136 1184  [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
18:26:56.0142 1184  iusb3hcs - ok
18:26:56.0198 1184  [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
18:26:56.0207 1184  iusb3hub - ok
18:26:56.0230 1184  [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
18:26:56.0243 1184  iusb3xhc - ok
18:26:56.0280 1184  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:26:56.0287 1184  kbdclass - ok
18:26:56.0308 1184  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:26:56.0335 1184  kbdhid - ok
18:26:56.0376 1184  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
18:26:56.0385 1184  KeyIso - ok
18:26:56.0471 1184  [ E656FE10D6D27794AFA08136685A69E8 ] KL1             C:\Windows\system32\DRIVERS\kl1.sys
18:26:56.0481 1184  KL1 - ok
18:26:56.0585 1184  [ D865DD8B0448E3F963D68C04C532858F ] kl2             C:\Windows\system32\DRIVERS\kl2.sys
18:26:56.0591 1184  kl2 - ok
18:26:56.0679 1184  [ C7D4F357C482DD37E2B05F34093B7B0C ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
18:26:56.0692 1184  KLIF - ok
18:26:56.0753 1184  [ 89FB5A33D7171B6D84F5EB721D5055E1 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
18:26:56.0760 1184  KLIM6 - ok
18:26:56.0800 1184  [ 9468D07E91BA136D82415F5DFC1FE168 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
18:26:56.0806 1184  klmouflt - ok
18:26:56.0853 1184  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:26:56.0862 1184  KSecDD - ok
18:26:56.0901 1184  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:26:56.0909 1184  KSecPkg - ok
18:26:56.0938 1184  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:26:56.0977 1184  ksthunk - ok
18:26:57.0026 1184  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:26:57.0067 1184  KtmRm - ok
18:26:57.0120 1184  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:26:57.0180 1184  LanmanServer - ok
18:26:57.0241 1184  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:26:57.0286 1184  LanmanWorkstation - ok
18:26:57.0319 1184  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:26:57.0367 1184  lltdio - ok
18:26:57.0402 1184  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:26:57.0450 1184  lltdsvc - ok
18:26:57.0467 1184  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:26:57.0515 1184  lmhosts - ok
18:26:57.0597 1184  [ 05D708ED589BF5EE6402AEC873214061 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:26:57.0606 1184  LMS - ok
18:26:57.0631 1184  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:26:57.0639 1184  LSI_FC - ok
18:26:57.0686 1184  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:26:57.0694 1184  LSI_SAS - ok
18:26:57.0751 1184  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
18:26:57.0758 1184  LSI_SAS2 - ok
18:26:57.0798 1184  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:26:57.0806 1184  LSI_SCSI - ok
18:26:57.0840 1184  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:26:57.0879 1184  luafv - ok
18:26:57.0939 1184  [ 4A503882318BB2F59218D401614E6AF6 ] lvpepf64        C:\Windows\system32\DRIVERS\lv302a64.sys
18:26:57.0945 1184  lvpepf64 - ok
18:26:57.0970 1184  [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:26:57.0976 1184  LVPr2M64 - ok
18:26:57.0984 1184  [ DED333DBDBBCC3555A6E6244522E2F1A ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
18:26:57.0990 1184  LVPr2Mon - ok
18:26:58.0041 1184  [ A35679E56E78091E1042A2D7ADBF2958 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
18:26:58.0049 1184  LVPrcS64 - ok
18:26:58.0108 1184  [ 125AE13C293889001B8456CF3EB04A40 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
18:26:58.0116 1184  LVRS64 - ok
18:26:58.0135 1184  [ 5C3FF68267A5D242EE79EE01B993D6CE ] LVUSBS64        C:\Windows\system32\drivers\LVUSBS64.sys
18:26:58.0142 1184  LVUSBS64 - ok
18:26:58.0158 1184  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:26:58.0187 1184  Mcx2Svc - ok
18:26:58.0221 1184  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:26:58.0228 1184  megasas - ok
18:26:58.0289 1184  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
18:26:58.0298 1184  MegaSR - ok
18:26:58.0336 1184  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
18:26:58.0343 1184  MEIx64 - ok
18:26:58.0432 1184  [ 05DCE0370CCA1501B67D6EEC18F33B8F ] miniusb         C:\Windows\system32\DRIVERS\sam_miniusb.sys
18:26:58.0439 1184  miniusb - ok
18:26:58.0473 1184  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
18:26:58.0523 1184  MMCSS - ok
18:26:58.0537 1184  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
18:26:58.0595 1184  Modem - ok
18:26:58.0614 1184  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:26:58.0656 1184  monitor - ok
18:26:58.0714 1184  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:26:58.0721 1184  mouclass - ok
18:26:58.0742 1184  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:26:58.0783 1184  mouhid - ok
18:26:58.0820 1184  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:26:58.0828 1184  mountmgr - ok
18:26:58.0926 1184  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:26:58.0933 1184  MozillaMaintenance - ok
18:26:58.0956 1184  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:26:58.0964 1184  mpio - ok
18:26:58.0987 1184  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:26:59.0011 1184  mpsdrv - ok
18:26:59.0039 1184  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:26:59.0066 1184  MpsSvc - ok
18:26:59.0091 1184  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:26:59.0132 1184  MRxDAV - ok
18:26:59.0169 1184  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:26:59.0223 1184  mrxsmb - ok
18:26:59.0240 1184  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:26:59.0250 1184  mrxsmb10 - ok
18:26:59.0271 1184  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:26:59.0280 1184  mrxsmb20 - ok
18:26:59.0303 1184  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:26:59.0310 1184  msahci - ok
18:26:59.0331 1184  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:26:59.0340 1184  msdsm - ok
18:26:59.0370 1184  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
18:26:59.0401 1184  MSDTC - ok
18:26:59.0437 1184  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:26:59.0459 1184  Msfs - ok
18:26:59.0482 1184  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:26:59.0520 1184  mshidkmdf - ok
18:26:59.0522 1184  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:26:59.0529 1184  msisadrv - ok
18:26:59.0579 1184  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:26:59.0636 1184  MSiSCSI - ok
18:26:59.0637 1184  msiserver - ok
18:26:59.0668 1184  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:26:59.0709 1184  MSKSSRV - ok
18:26:59.0729 1184  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:26:59.0772 1184  MSPCLOCK - ok
18:26:59.0793 1184  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:26:59.0846 1184  MSPQM - ok
18:26:59.0867 1184  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:26:59.0878 1184  MsRPC - ok
18:26:59.0912 1184  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:26:59.0919 1184  mssmbios - ok
18:26:59.0937 1184  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:26:59.0983 1184  MSTEE - ok
18:27:00.0007 1184  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
18:27:00.0015 1184  MTConfig - ok
18:27:00.0032 1184  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:27:00.0039 1184  Mup - ok
18:27:00.0095 1184  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
18:27:00.0120 1184  napagent - ok
18:27:00.0149 1184  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:27:00.0171 1184  NativeWifiP - ok
18:27:00.0227 1184  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:27:00.0242 1184  NDIS - ok
18:27:00.0264 1184  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:27:00.0296 1184  NdisCap - ok
18:27:00.0344 1184  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:27:00.0366 1184  NdisTapi - ok
18:27:00.0386 1184  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:27:00.0415 1184  Ndisuio - ok
18:27:00.0419 1184  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:27:00.0465 1184  NdisWan - ok
18:27:00.0507 1184  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:27:00.0545 1184  NDProxy - ok
18:27:00.0577 1184  [ D4F51E88C71BF8F06EA1BE320B0BB75B ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
18:27:00.0598 1184  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:27:00.0598 1184  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:27:00.0626 1184  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:27:00.0686 1184  NetBIOS - ok
18:27:00.0705 1184  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:27:00.0728 1184  NetBT - ok
18:27:00.0750 1184  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
18:27:00.0758 1184  Netlogon - ok
18:27:00.0807 1184  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
18:27:00.0857 1184  Netman - ok
18:27:00.0933 1184  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:27:00.0940 1184  NetMsmqActivator - ok
18:27:00.0999 1184  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:27:01.0007 1184  NetPipeActivator - ok
18:27:01.0023 1184  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
18:27:01.0068 1184  netprofm - ok
18:27:01.0083 1184  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:27:01.0090 1184  NetTcpActivator - ok
18:27:01.0101 1184  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:27:01.0108 1184  NetTcpPortSharing - ok
18:27:01.0174 1184  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:27:01.0181 1184  nfrd960 - ok
18:27:01.0227 1184  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:27:01.0266 1184  NlaSvc - ok
18:27:01.0333 1184  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:27:01.0356 1184  Npfs - ok
18:27:01.0381 1184  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
18:27:01.0405 1184  nsi - ok
18:27:01.0436 1184  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:27:01.0494 1184  nsiproxy - ok
18:27:01.0582 1184  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:27:01.0605 1184  Ntfs - ok
18:27:01.0633 1184  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
18:27:01.0688 1184  Null - ok
18:27:01.0743 1184  [ B4F53BCA4C688FF47F04FA90098F896E ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
18:27:01.0751 1184  NVHDA - ok
18:27:02.0040 1184  [ 0A2F27B5BCC45B64E152DD6AE0815198 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:27:02.0150 1184  nvlddmkm - ok
18:27:02.0183 1184  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:27:02.0192 1184  nvraid - ok
18:27:02.0215 1184  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:27:02.0223 1184  nvstor - ok
18:27:02.0257 1184  [ 574087EA9105F23FB522A4FDDD5292D9 ] nvsvc           C:\Windows\system32\nvvsvc.exe
18:27:02.0272 1184  nvsvc - ok
18:27:02.0345 1184  [ ABA5A88740635D37A2B6CEB27DBC738A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:27:02.0364 1184  nvUpdatusService - ok
18:27:02.0398 1184  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:27:02.0406 1184  nv_agp - ok
18:27:02.0420 1184  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:27:02.0452 1184  ohci1394 - ok
18:27:02.0516 1184  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:27:02.0523 1184  ose - ok
18:27:02.0955 1184  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:27:03.0007 1184  osppsvc - ok
18:27:03.0063 1184  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:27:03.0106 1184  p2pimsvc - ok
18:27:03.0164 1184  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:27:03.0175 1184  p2psvc - ok
18:27:03.0256 1184  papycpu - ok
18:27:03.0347 1184  papycpu2 - ok
18:27:03.0423 1184  papyjoy - ok
18:27:03.0453 1184  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
18:27:03.0490 1184  Parport - ok
18:27:03.0546 1184  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:27:03.0554 1184  partmgr - ok
18:27:03.0580 1184  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:27:03.0619 1184  PcaSvc - ok
18:27:03.0653 1184  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
18:27:03.0662 1184  pci - ok
18:27:03.0665 1184  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
18:27:03.0671 1184  pciide - ok
18:27:03.0696 1184  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:27:03.0705 1184  pcmcia - ok
18:27:03.0719 1184  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:27:03.0726 1184  pcw - ok
18:27:03.0759 1184  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:27:03.0808 1184  PEAUTH - ok
18:27:03.0889 1184  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
18:27:03.0936 1184  PeerDistSvc - ok
18:27:04.0156 1184  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:27:04.0190 1184  PerfHost - ok
18:27:04.0397 1184  [ AE0B94363DA0F60D42B9D05B352F61ED ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V64.SYS
18:27:04.0427 1184  PID_PEPI - ok
18:27:04.0489 1184  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
18:27:04.0521 1184  pla - ok
18:27:04.0612 1184  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:27:04.0647 1184  PlugPlay - ok
18:27:04.0677 1184  [ 9A80707D8B6C1806531BFD7399B3CC76 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
18:27:04.0700 1184  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:27:04.0700 1184  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:27:04.0732 1184  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:27:04.0759 1184  PNRPAutoReg - ok
18:27:04.0790 1184  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:27:04.0801 1184  PNRPsvc - ok
18:27:04.0833 1184  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:27:04.0891 1184  PolicyAgent - ok
18:27:04.0917 1184  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
18:27:04.0959 1184  Power - ok
18:27:04.0982 1184  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:27:05.0036 1184  PptpMiniport - ok
18:27:05.0043 1184  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
18:27:05.0071 1184  Processor - ok
18:27:05.0120 1184  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:27:05.0152 1184  ProfSvc - ok
18:27:05.0173 1184  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:27:05.0182 1184  ProtectedStorage - ok
18:27:05.0220 1184  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:27:05.0270 1184  Psched - ok
18:27:05.0316 1184  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
18:27:05.0322 1184  PxHlpa64 - ok
18:27:05.0380 1184  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:27:05.0401 1184  ql2300 - ok
18:27:05.0456 1184  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:27:05.0464 1184  ql40xx - ok
18:27:05.0512 1184  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
18:27:05.0525 1184  QWAVE - ok
18:27:05.0537 1184  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:27:05.0574 1184  QWAVEdrv - ok
18:27:05.0591 1184  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:27:05.0622 1184  RasAcd - ok
18:27:05.0675 1184  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:27:05.0698 1184  RasAgileVpn - ok
18:27:05.0731 1184  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
18:27:05.0781 1184  RasAuto - ok
18:27:05.0817 1184  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:27:05.0865 1184  Rasl2tp - ok
18:27:05.0919 1184  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
18:27:05.0968 1184  RasMan - ok
18:27:05.0981 1184  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:27:06.0020 1184  RasPppoe - ok
18:27:06.0041 1184  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:27:06.0065 1184  RasSstp - ok
18:27:06.0077 1184  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:27:06.0105 1184  rdbss - ok
18:27:06.0108 1184  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
18:27:06.0146 1184  rdpbus - ok
18:27:06.0190 1184  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:27:06.0212 1184  RDPCDD - ok
18:27:06.0234 1184  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
18:27:06.0261 1184  RDPDR - ok
18:27:06.0280 1184  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:27:06.0322 1184  RDPENCDD - ok
18:27:06.0339 1184  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:27:06.0384 1184  RDPREFMP - ok
18:27:06.0424 1184  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:27:06.0458 1184  RdpVideoMiniport - ok
18:27:06.0515 1184  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:27:06.0559 1184  RDPWD - ok
18:27:06.0601 1184  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:27:06.0610 1184  rdyboost - ok
18:27:06.0654 1184  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:27:06.0680 1184  RemoteAccess - ok
18:27:06.0692 1184  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:27:06.0715 1184  RemoteRegistry - ok
18:27:06.0722 1184  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:27:06.0744 1184  RpcEptMapper - ok
18:27:06.0754 1184  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
18:27:06.0765 1184  RpcLocator - ok
18:27:06.0817 1184  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
18:27:06.0842 1184  RpcSs - ok
18:27:06.0891 1184  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:27:06.0914 1184  rspndr - ok
18:27:07.0039 1184  [ 61A04C0C084D560BBEF1D09604608262 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
18:27:07.0052 1184  RTL8167 - ok
18:27:07.0068 1184  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
18:27:07.0094 1184  s3cap - ok
18:27:07.0112 1184  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
18:27:07.0121 1184  SamSs - ok
18:27:07.0169 1184  [ 2C31378A5695526E99ADAB928157B992 ] Samsung UPD Service2 C:\Windows\System32\SUPDSvc2.exe
18:27:07.0177 1184  Samsung UPD Service2 - ok
18:27:07.0264 1184  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:27:07.0272 1184  sbp2port - ok
18:27:07.0297 1184  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:27:07.0322 1184  SCardSvr - ok
18:27:07.0347 1184  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:27:07.0389 1184  scfilter - ok
18:27:07.0473 1184  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
18:27:07.0504 1184  Schedule - ok
18:27:07.0530 1184  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:27:07.0553 1184  SCPolicySvc - ok
18:27:07.0563 1184  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:27:07.0603 1184  SDRSVC - ok
18:27:07.0668 1184  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:27:07.0718 1184  secdrv - ok
18:27:07.0735 1184  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
18:27:07.0758 1184  seclogon - ok
18:27:07.0777 1184  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
18:27:07.0806 1184  SENS - ok
18:27:07.0816 1184  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:27:07.0870 1184  SensrSvc - ok
18:27:07.0895 1184  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
18:27:07.0930 1184  Serenum - ok
18:27:07.0978 1184  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
18:27:08.0006 1184  Serial - ok
18:27:08.0047 1184  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:27:08.0081 1184  sermouse - ok
18:27:08.0108 1184  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:27:08.0156 1184  SessionEnv - ok
18:27:08.0160 1184  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:27:08.0171 1184  sffdisk - ok
18:27:08.0173 1184  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:27:08.0203 1184  sffp_mmc - ok
18:27:08.0218 1184  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:27:08.0258 1184  sffp_sd - ok
18:27:08.0281 1184  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:27:08.0291 1184  sfloppy - ok
18:27:08.0332 1184  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:27:08.0385 1184  SharedAccess - ok
18:27:08.0434 1184  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:27:08.0480 1184  ShellHWDetection - ok
18:27:08.0504 1184  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:27:08.0511 1184  SiSRaid2 - ok
18:27:08.0520 1184  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:27:08.0527 1184  SiSRaid4 - ok
18:27:08.0672 1184  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
18:27:08.0680 1184  SkypeUpdate - ok
18:27:08.0698 1184  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:27:08.0739 1184  Smb - ok
18:27:08.0792 1184  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:27:08.0802 1184  SNMPTRAP - ok
18:27:08.0856 1184  [ 867DB0D7380DD1DA484B74A75E3E9023 ] SODI            C:\Windows\system32\DRIVERS\sam_miniport.sys
18:27:08.0862 1184  SODI - ok
18:27:08.0872 1184  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:27:08.0880 1184  spldr - ok
18:27:08.0918 1184  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
18:27:08.0931 1184  Spooler - ok
18:27:09.0016 1184  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
18:27:09.0086 1184  sppsvc - ok
18:27:09.0114 1184  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:27:09.0137 1184  sppuinotify - ok
18:27:09.0208 1184  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:27:09.0274 1184  srv - ok
18:27:09.0305 1184  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:27:09.0344 1184  srv2 - ok
18:27:09.0393 1184  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:27:09.0402 1184  srvnet - ok
18:27:09.0433 1184  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:27:09.0458 1184  SSDPSRV - ok
18:27:09.0472 1184  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:27:09.0497 1184  SstpSvc - ok
18:27:09.0543 1184  Steam Client Service - ok
18:27:09.0716 1184  [ 78216A10BF8B200890A88D8820F33F14 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:27:09.0726 1184  Stereo Service - ok
18:27:09.0755 1184  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:27:09.0763 1184  stexstor - ok
18:27:09.0844 1184  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
18:27:09.0882 1184  stisvc - ok
18:27:09.0903 1184  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
18:27:09.0910 1184  storflt - ok
18:27:09.0968 1184  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
18:27:09.0975 1184  storvsc - ok
18:27:10.0002 1184  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:27:10.0009 1184  swenum - ok
18:27:10.0059 1184  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
18:27:10.0086 1184  swprv - ok
18:27:10.0105 1184  [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
18:27:10.0112 1184  Synth3dVsc - ok
18:27:10.0257 1184  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
18:27:10.0302 1184  SysMain - ok
18:27:10.0335 1184  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:27:10.0367 1184  TabletInputService - ok
18:27:10.0424 1184  [ B08740047145B9BCE15BF75CA0F9718A ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
18:27:10.0462 1184  tap0901t - ok
18:27:10.0509 1184  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:27:10.0560 1184  TapiSrv - ok
18:27:10.0579 1184  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
18:27:10.0602 1184  TBS - ok
18:27:10.0824 1184  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:27:10.0850 1184  Tcpip - ok
18:27:11.0037 1184  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:27:11.0061 1184  TCPIP6 - ok
18:27:11.0092 1184  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:27:11.0100 1184  tcpipreg - ok
18:27:11.0124 1184  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:27:11.0182 1184  TDPIPE - ok
18:27:11.0222 1184  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:27:11.0258 1184  TDTCP - ok
18:27:11.0301 1184  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:27:11.0356 1184  tdx - ok
18:27:12.0003 1184  [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8     C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
18:27:12.0042 1184  TeamViewer8 - ok
18:27:12.0091 1184  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:27:12.0098 1184  TermDD - ok
18:27:12.0138 1184  [ EF4469AB69EB15E5D3754E6AEAFBCD3D ] terminpt        C:\Windows\system32\drivers\terminpt.sys
18:27:12.0164 1184  terminpt - ok
18:27:12.0277 1184  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
18:27:12.0305 1184  TermService - ok
18:27:12.0400 1184  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
18:27:12.0412 1184  Themes - ok
18:27:12.0442 1184  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
18:27:12.0464 1184  THREADORDER - ok
18:27:12.0540 1184  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
18:27:12.0592 1184  TrkWks - ok
18:27:12.0650 1184  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:27:12.0673 1184  TrustedInstaller - ok
18:27:12.0688 1184  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:27:12.0741 1184  tssecsrv - ok
18:27:12.0847 1184  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:27:12.0890 1184  TsUsbFlt - ok
18:27:12.0925 1184  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
18:27:12.0988 1184  TsUsbGD - ok
18:27:13.0010 1184  [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
18:27:13.0094 1184  tsusbhub - ok
18:27:13.0384 1184  [ 50D8102EECC446F160C8C31AF927242D ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
18:27:13.0413 1184  TuneUp.UtilitiesSvc - ok
18:27:13.0485 1184  [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys
18:27:13.0490 1184  TuneUpUtilitiesDrv - ok
18:27:13.0561 1184  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:27:13.0611 1184  tunnel - ok
18:27:13.0676 1184  [ 2FD0FE0A0C721C8E47C5A3AE16E519B1 ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
18:27:13.0688 1184  TunngleService - ok
18:27:13.0706 1184  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:27:13.0713 1184  uagp35 - ok
18:27:13.0746 1184  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:27:13.0799 1184  udfs - ok
18:27:13.0815 1184  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:27:13.0856 1184  UI0Detect - ok
18:27:13.0883 1184  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:27:13.0891 1184  uliagpkx - ok
18:27:13.0914 1184  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:27:13.0944 1184  umbus - ok
18:27:13.0963 1184  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
18:27:13.0997 1184  UmPass - ok
18:27:14.0030 1184  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
18:27:14.0063 1184  UmRdpService - ok
18:27:14.0094 1184  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
18:27:14.0138 1184  upnphost - ok
18:27:14.0216 1184  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
18:27:14.0251 1184  usbaudio - ok
18:27:14.0300 1184  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:27:14.0328 1184  usbccgp - ok
18:27:14.0351 1184  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:27:14.0362 1184  usbcir - ok
18:27:14.0421 1184  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
18:27:14.0429 1184  usbehci - ok
18:27:14.0498 1184  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:27:14.0536 1184  usbhub - ok
18:27:14.0567 1184  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:27:14.0603 1184  usbohci - ok
18:27:14.0627 1184  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
18:27:14.0663 1184  usbprint - ok
18:27:14.0707 1184  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:27:14.0741 1184  USBSTOR - ok
18:27:14.0778 1184  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:27:14.0811 1184  usbuhci - ok
18:27:14.0920 1184  [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
18:27:14.0968 1184  usb_rndisx - ok
18:27:15.0008 1184  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
18:27:15.0053 1184  UxSms - ok
18:27:15.0159 1184  [ 3DEC48B5C70562DEE960117553134E3E ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
18:27:15.0165 1184  UxTuneUp - ok
18:27:15.0192 1184  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
18:27:15.0200 1184  VaultSvc - ok
18:27:15.0250 1184  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:27:15.0257 1184  vdrvroot - ok
18:27:15.0293 1184  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
18:27:15.0348 1184  vds - ok
18:27:15.0407 1184  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:27:15.0441 1184  vga - ok
18:27:15.0459 1184  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:27:15.0493 1184  VgaSave - ok
18:27:15.0495 1184  VGPU - ok
18:27:15.0524 1184  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:27:15.0532 1184  vhdmp - ok
18:27:15.0549 1184  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:27:15.0556 1184  viaide - ok
18:27:15.0594 1184  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
18:27:15.0603 1184  vmbus - ok
18:27:15.0611 1184  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
18:27:15.0637 1184  VMBusHID - ok
18:27:15.0678 1184  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:27:15.0686 1184  volmgr - ok
18:27:15.0699 1184  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:27:15.0709 1184  volmgrx - ok
18:27:15.0723 1184  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:27:15.0733 1184  volsnap - ok
18:27:15.0765 1184  [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
18:27:15.0774 1184  vpcbus - ok
18:27:15.0814 1184  [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
18:27:15.0823 1184  vpcnfltr - ok
18:27:15.0827 1184  [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
18:27:15.0836 1184  vpcusb - ok
18:27:15.0841 1184  [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
18:27:15.0851 1184  vpcvmm - ok
18:27:15.0887 1184  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:27:15.0895 1184  vsmraid - ok
18:27:15.0928 1184  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
18:27:15.0976 1184  VSS - ok
18:27:16.0023 1184  [ E6CB71665C410D6CC3D44E796835CE32 ] vvftav          C:\Windows\system32\drivers\vvftav.sys
18:27:16.0032 1184  vvftav - ok
18:27:16.0053 1184  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
18:27:16.0091 1184  vwifibus - ok
18:27:16.0149 1184  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
18:27:16.0177 1184  W32Time - ok
18:27:16.0204 1184  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:27:16.0233 1184  WacomPen - ok
18:27:16.0259 1184  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:27:16.0304 1184  WANARP - ok
18:27:16.0333 1184  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:27:16.0355 1184  Wanarpv6 - ok
18:27:16.0493 1184  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:27:16.0512 1184  WatAdminSvc - ok
18:27:16.0548 1184  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
18:27:16.0609 1184  wbengine - ok
18:27:16.0640 1184  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:27:16.0652 1184  WbioSrvc - ok
18:27:16.0672 1184  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:27:16.0705 1184  wcncsvc - ok
18:27:16.0742 1184  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:27:16.0769 1184  WcsPlugInService - ok
18:27:16.0796 1184  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
18:27:16.0803 1184  Wd - ok
18:27:16.0910 1184  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:27:16.0924 1184  Wdf01000 - ok
18:27:16.0945 1184  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:27:17.0233 1184  WdiServiceHost - ok
18:27:17.0235 1184  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:27:17.0248 1184  WdiSystemHost - ok
18:27:17.0297 1184  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
18:27:17.0332 1184  WebClient - ok
18:27:17.0362 1184  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:27:17.0406 1184  Wecsvc - ok
18:27:17.0432 1184  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:27:17.0456 1184  wercplsupport - ok
18:27:17.0512 1184  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:27:17.0536 1184  WerSvc - ok
18:27:17.0591 1184  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:27:17.0613 1184  WfpLwf - ok
18:27:17.0656 1184  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:27:17.0663 1184  WIMMount - ok
18:27:17.0690 1184  WinDefend - ok
18:27:17.0693 1184  WinHttpAutoProxySvc - ok
18:27:17.0798 1184  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:27:17.0822 1184  Winmgmt - ok
18:27:18.0049 1184  WinRing0_1_2_0 - ok
18:27:18.0204 1184  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
18:27:18.0240 1184  WinRM - ok
18:27:18.0324 1184  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
18:27:18.0368 1184  WinUsb - ok
18:27:18.0457 1184  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:27:18.0496 1184  Wlansvc - ok
18:27:18.0559 1184  [ 680A7846370000D20D7E74917D5B7936 ] WmBEnum         C:\Windows\system32\drivers\WmBEnum.sys
18:27:18.0565 1184  WmBEnum - ok
18:27:18.0627 1184  [ 14C35BA8189C6F65D839163AA285E954 ] WmFilter        C:\Windows\system32\drivers\WmFilter.sys
18:27:18.0633 1184  WmFilter - ok
18:27:18.0687 1184  [ AC4331AF118A720F13C9C5CABBFE27BD ] WmHidLo         C:\Windows\system32\drivers\WmHidLo.sys
18:27:18.0693 1184  WmHidLo - ok
18:27:18.0707 1184  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:27:18.0732 1184  WmiAcpi - ok
18:27:18.0785 1184  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:27:18.0817 1184  wmiApSrv - ok
18:27:18.0870 1184  WMPNetworkSvc - ok
18:27:18.0873 1184  [ 8488DD91A3EE54A8E29F02AD7BB8201E ] WmVirHid        C:\Windows\system32\drivers\WmVirHid.sys
18:27:18.0879 1184  WmVirHid - ok
18:27:18.0884 1184  [ 14802B3A30AA849C97CB968CCC813BF3 ] WmXlCore        C:\Windows\system32\drivers\WmXlCore.sys
18:27:18.0891 1184  WmXlCore - ok
18:27:18.0906 1184  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:27:18.0914 1184  WPCSvc - ok
18:27:18.0925 1184  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:27:18.0937 1184  WPDBusEnum - ok
18:27:18.0972 1184  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:27:18.0994 1184  ws2ifsl - ok
18:27:19.0127 1184  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
18:27:19.0167 1184  wscsvc - ok
18:27:19.0169 1184  WSearch - ok
18:27:19.0411 1184  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:27:19.0442 1184  wuauserv - ok
18:27:19.0482 1184  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:27:19.0522 1184  WudfPf - ok
18:27:19.0573 1184  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:27:19.0612 1184  WUDFRd - ok
18:27:19.0658 1184  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:27:19.0693 1184  wudfsvc - ok
18:27:19.0737 1184  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:27:19.0751 1184  WwanSvc - ok
18:27:19.0879 1184  [ 4A5CE13408945E525503B5F73D29B9C5 ] xnacc           C:\Windows\system32\DRIVERS\xnacc.sys
18:27:19.0922 1184  xnacc - ok
18:27:19.0971 1184  XSpaceWg - ok
18:27:20.0041 1184  [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
18:27:20.0048 1184  xusb21 - ok
18:27:20.0273 1184  [ C48A0F1DF0DBA60010748DEC8CC886B4 ] ZSMC0305        C:\Windows\system32\Drivers\usbVM305.sys
18:27:20.0314 1184  ZSMC0305 - ok
18:27:20.0373 1184  ================ Scan global ===============================
18:27:20.0408 1184  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:27:20.0469 1184  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:27:20.0488 1184  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:27:20.0563 1184  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:27:20.0578 1184  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:27:20.0580 1184  [Global] - ok
18:27:20.0581 1184  ================ Scan MBR ==================================
18:27:20.0595 1184  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:27:21.0180 1184  \Device\Harddisk0\DR0 - ok
18:27:21.0181 1184  ================ Scan VBR ==================================
18:27:21.0197 1184  [ 311110DA24392C968935A78177825000 ] \Device\Harddisk0\DR0\Partition1
18:27:21.0208 1184  \Device\Harddisk0\DR0\Partition1 - ok
18:27:21.0229 1184  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2
18:27:21.0238 1184  \Device\Harddisk0\DR0\Partition2 - ok
18:27:21.0244 1184  [ F10242DB253F8FBE824011290232BBA5 ] \Device\Harddisk0\DR0\Partition3
18:27:21.0253 1184  \Device\Harddisk0\DR0\Partition3 - ok
18:27:21.0254 1184  ============================================================
18:27:21.0254 1184  Scan finished
18:27:21.0254 1184  ============================================================
18:27:21.0255 1412  Detected object count: 4
18:27:21.0255 1412  Actual detected object count: 4
18:27:37.0870 1412  FrameManager Service ( UnsignedFile.Multi.Generic ) - skipped by user
18:27:37.0870 1412  FrameManager Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:27:37.0870 1412  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
18:27:37.0870 1412  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:27:37.0871 1412  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:27:37.0871 1412  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:27:37.0871 1412  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:27:37.0871 1412  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
         

Geändert von weoiss (26.02.2013 um 18:30 Uhr) Grund: Einfacher zu lesen

Alt 26.02.2013, 18:33   #13
markusg
/// Malware-holic
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Hi,
Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 27.02.2013, 15:49   #14
weoiss
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



Vorher hat ich eine Spyware übersehen, aber jetzt
Combofix Logfile:
Code:
ATTFilter
ComboFix 13-02-26.01 - User 27.02.2013  15:38:07.2.8 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.49.1031.18.16330.14309 [GMT 1:00]
ausgeführt von:: c:\users\User\Desktop\ComboFix.exe
AV: Kaspersky Security Suite CBE *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
FW: Kaspersky Security Suite CBE *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
SP: Kaspersky Security Suite CBE *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Vorheriger Suchlauf -------
.
c:\windows\IsUn0407.exe
c:\windows\TEMP\logishrd\LVPrcInj02.dll
c:\windows\VM305Cap.exe
c:\windows\wininit.ini
c:\windows\TEMP\logishrd\LVPrcInj01.dll . . . . Nicht in der Lage zu löschen
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-01-27 bis 2013-02-27  ))))))))))))))))))))))))))))))
.
.
2013-02-27 14:45 . 2013-02-27 14:45	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2013-02-27 14:45 . 2013-02-27 14:45	--------	d-----w-	c:\users\Gast\AppData\Local\temp
2013-02-27 14:45 . 2013-02-27 14:45	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-02-26 16:17 . 2013-02-08 00:28	9162192	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{9C1FE73B-8CF6-467A-A844-6DAF31D91CCA}\mpengine.dll
2013-02-24 11:00 . 2013-02-24 11:00	--------	d-----w-	c:\users\User\AppData\Roaming\Malwarebytes
2013-02-24 11:00 . 2013-02-24 11:00	--------	d-----w-	c:\programdata\Malwarebytes
2013-02-24 10:26 . 2013-02-24 10:25	95648	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-23 17:30 . 2013-02-23 17:30	3762	----a-w-	c:\windows\system32\cc_20130223_183040.reg
2013-02-22 15:43 . 2013-02-22 15:43	--------	d-----w-	C:\_OTL
2013-02-21 19:46 . 2013-02-21 19:45	310688	----a-w-	c:\windows\system32\javaws.exe
2013-02-21 19:45 . 2013-02-21 19:45	188832	----a-w-	c:\windows\system32\javaw.exe
2013-02-21 19:45 . 2013-02-21 19:45	188320	----a-w-	c:\windows\system32\java.exe
2013-02-21 19:45 . 2013-02-21 19:45	108448	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2013-02-21 19:45 . 2013-02-21 19:45	--------	d-----w-	c:\program files\Java
2013-02-21 14:30 . 2013-01-28 13:19	35104	----a-w-	c:\windows\system32\TURegOpt.exe
2013-02-21 14:28 . 2013-02-21 14:28	--------	d-----w-	c:\users\User\AppData\Roaming\TuneUp Software
2013-02-21 14:27 . 2013-02-21 14:28	--------	d-----w-	c:\programdata\TuneUp Software
2013-02-21 13:53 . 2013-02-21 14:08	--------	d-----w-	C:\TuneUpPortable
2013-02-18 16:35 . 2013-02-25 20:09	--------	d-----w-	c:\programdata\Tunngle
2013-02-18 16:35 . 2013-02-18 16:35	--------	d-----w-	c:\program files (x86)\Tunngle
2013-02-18 16:19 . 2013-02-18 16:19	--------	d-----w-	c:\program files\GIGABYTE
2013-02-18 16:19 . 2011-11-02 09:48	21616	----a-w-	c:\windows\system32\drivers\AppleCharger.sys
2013-02-18 16:19 . 2010-04-06 15:30	31272	----a-w-	c:\windows\system32\AppleChargerSrv.exe
2013-02-18 16:15 . 2012-01-05 11:58	355096	----a-w-	c:\windows\system32\drivers\iusb3hub.sys
2013-02-18 16:15 . 2013-02-18 16:15	--------	d-----w-	c:\windows\SysWow64\RTCOM
2013-02-18 16:15 . 2013-02-18 16:15	--------	d-----w-	c:\program files\Realtek
2013-02-18 16:15 . 2012-01-05 11:58	786200	----a-w-	c:\windows\system32\drivers\iusb3xhc.sys
2013-02-17 20:25 . 2013-02-17 20:25	196	----a-w-	c:\windows\system32\cc_20130217_212519.reg
2013-02-17 19:10 . 2013-02-17 19:10	744	----a-w-	c:\windows\system32\cc_20130217_201049.reg
2013-02-17 16:41 . 2013-02-17 16:41	--------	d-----w-	c:\program files (x86)\LogMeIn Hamachi
2013-02-16 20:05 . 2013-02-16 20:05	--------	d-----w-	c:\users\User\AppData\Local\http___mvc.craften.de
2013-02-16 12:32 . 2013-02-16 12:32	258	----a-w-	c:\windows\system32\cc_20130216_133234.reg
2013-02-16 12:32 . 2013-02-16 12:32	9020	----a-w-	c:\windows\system32\cc_20130216_133219.reg
2013-02-15 23:45 . 2013-02-15 23:45	178	----a-w-	c:\windows\system32\cc_20130216_004504.reg
2013-02-15 23:44 . 2013-02-15 23:44	242	----a-w-	c:\windows\system32\cc_20130216_004451.reg
2013-02-15 23:44 . 2013-02-15 23:44	10480	----a-w-	c:\windows\system32\cc_20130216_004416.reg
2013-02-15 14:34 . 2013-02-15 14:34	1028	----a-w-	c:\windows\system32\cc_20130215_153446.reg
2013-02-15 14:34 . 2013-02-15 14:34	6030	----a-w-	c:\windows\system32\cc_20130215_153435.reg
2013-02-15 14:20 . 2013-02-15 14:20	--------	d-----w-	c:\programdata\Package Cache
2013-02-15 14:15 . 2013-02-15 14:19	--------	d-----w-	C:\AiO-Files
2013-02-15 14:09 . 2013-02-15 14:09	--------	d-----w-	c:\program files (x86)\AmIcoSingLun
2013-02-15 14:09 . 2013-02-15 14:09	--------	d-----w-	c:\programdata\AmUStor
2013-02-15 13:50 . 2012-12-27 00:26	805088	----a-w-	c:\windows\system32\drivers\Rt64win7.sys
2013-02-15 13:50 . 2012-12-27 00:26	74344	----a-w-	c:\windows\system32\RtNicProp64.dll
2013-02-15 13:42 . 2005-11-13 22:19	5632	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2013-02-15 13:16 . 2006-02-07 14:45	757760	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2013-02-15 13:16 . 2006-02-07 14:40	204800	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2013-02-15 13:16 . 2006-02-07 14:40	69715	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2013-02-15 13:16 . 2006-02-07 14:40	274432	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2013-02-15 13:16 . 2013-02-15 13:16	331908	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2013-02-15 13:16 . 2013-02-15 13:16	200836	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2013-02-15 12:29 . 2013-02-21 14:44	--------	d-----w-	c:\programdata\DriverGenius
2013-02-15 12:19 . 2012-06-09 18:21	178688	----a-w-	c:\windows\SysWow64\unrar.dll
2013-02-13 13:42 . 2013-02-18 16:19	--------	d-----w-	c:\program files (x86)\GIGABYTE
2013-02-13 13:33 . 2013-02-13 13:33	--------	d-----w-	c:\program files\CPUID
2013-02-13 13:33 . 2013-01-09 01:10	996352	----a-w-	c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-13 13:33 . 2013-01-08 22:01	768000	----a-w-	c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-13 13:18 . 2013-01-04 05:46	215040	----a-w-	c:\windows\system32\winsrv.dll
2013-02-13 13:18 . 2013-01-04 04:51	5120	----a-w-	c:\windows\SysWow64\wow32.dll
2013-02-13 13:18 . 2013-01-04 02:47	25600	----a-w-	c:\windows\SysWow64\setup16.exe
2013-02-13 13:18 . 2013-01-04 02:47	7680	----a-w-	c:\windows\SysWow64\instnm.exe
2013-02-13 13:18 . 2013-01-04 02:47	2048	----a-w-	c:\windows\SysWow64\user.exe
2013-02-13 13:18 . 2013-01-04 02:47	14336	----a-w-	c:\windows\SysWow64\ntvdm64.dll
2013-02-13 13:18 . 2013-01-05 05:53	5553512	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-02-13 13:18 . 2013-01-05 05:00	3967848	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2013-02-13 13:18 . 2013-01-03 06:00	1913192	----a-w-	c:\windows\system32\drivers\tcpip.sys
2013-02-13 13:18 . 2013-01-03 06:00	288088	----a-w-	c:\windows\system32\drivers\FWPKCLNT.SYS
2013-02-13 13:18 . 2013-01-05 05:00	3913064	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2013-02-13 13:17 . 2013-01-04 03:26	3153408	----a-w-	c:\windows\system32\win32k.sys
2013-02-11 19:05 . 2013-02-27 13:38	--------	d-----w-	c:\users\User\AppData\Roaming\.minecraft
2013-02-10 16:38 . 2013-02-10 16:38	2242	----a-w-	c:\windows\system32\cc_20130210_173828.reg
2013-02-10 13:16 . 2013-02-10 13:16	--------	d-----w-	c:\program files (x86)\Common Files\Java
2013-02-09 23:12 . 2012-08-23 15:09	3072	----a-w-	c:\windows\system32\drivers\en-US\tsusbflt.sys.mui
2013-02-09 17:43 . 2013-02-09 17:43	555808	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-02-07 13:59 . 2012-07-26 04:47	2560	----a-w-	c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2013-02-07 13:41 . 2013-02-07 13:41	--------	d-----w-	c:\windows\SysWow64\en
2013-02-07 13:41 . 2013-02-07 13:41	--------	d-----w-	c:\windows\SysWow64\drivers\UMDF\en-US
2013-02-07 13:41 . 2013-02-07 13:41	--------	d-----w-	c:\windows\SysWow64\0409
2013-02-07 13:41 . 2013-02-07 13:41	--------	d-----w-	c:\windows\system32\en
2013-02-07 13:41 . 2013-02-07 13:41	--------	d-----w-	c:\windows\system32\drivers\UMDF\en-US
2013-02-07 13:41 . 2013-02-07 13:41	--------	d-----w-	c:\windows\system32\0409
2013-02-07 13:36 . 2010-11-20 04:11	6144	----a-w-	c:\windows\system32\drivers\en-US\IPMIDrv.sys.mui
2013-02-07 13:36 . 2010-11-20 04:10	4608	----a-w-	c:\windows\system32\drivers\en-US\kbdclass.sys.mui
2013-02-07 13:36 . 2009-07-13 16:24	2560	----a-w-	c:\windows\system32\drivers\en-US\kbdhid.sys.mui
2013-02-07 13:36 . 2010-11-20 04:13	6144	----a-w-	c:\windows\system32\drivers\en-US\rdvgkmd.sys.mui
2013-02-07 13:36 . 2010-11-20 04:01	2560	----a-w-	c:\windows\system32\drivers\en-US\rdpwd.sys.mui
2013-02-07 13:36 . 2010-11-20 04:11	4096	----a-w-	c:\windows\system32\drivers\en-US\tsusbhub.sys.mui
2013-02-07 13:36 . 2009-07-13 16:27	7168	----a-w-	c:\windows\system32\drivers\en-US\battc.sys.mui
2013-02-07 13:36 . 2009-07-13 16:26	24576	----a-w-	c:\windows\system32\drivers\en-US\usbport.sys.mui
2013-02-07 13:36 . 2009-07-13 16:24	7680	----a-w-	c:\windows\system32\drivers\en-US\tunnel.sys.mui
2013-02-06 15:43 . 2013-02-06 15:43	3584	----a-r-	c:\users\User\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2013-02-06 15:43 . 2013-02-06 15:43	--------	d-----w-	c:\program files (x86)\Windows Installer Clean Up
2013-02-05 14:06 . 2013-02-24 11:17	893552	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2013-02-05 14:06 . 2013-02-24 11:17	42776	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2013-02-05 14:06 . 2013-02-27 14:22	1236816	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2013-02-04 13:32 . 2013-02-09 17:00	--------	d-----w-	c:\users\User\AppData\Roaming\FileZilla
2013-02-04 13:26 . 2013-02-04 13:26	--------	d-----w-	c:\windows\system32\IO
2013-02-03 15:36 . 2012-09-19 10:10	37216	----a-w-	c:\windows\system32\uxtuneup.dll
2013-02-03 15:36 . 2012-09-19 10:10	29536	----a-w-	c:\windows\SysWow64\uxtuneup.dll
2013-02-03 15:35 . 2013-01-28 13:19	26400	----a-w-	c:\windows\system32\authuitu.dll
2013-02-03 15:35 . 2013-01-28 13:19	21792	----a-w-	c:\windows\SysWow64\authuitu.dll
2013-02-03 15:35 . 2013-02-21 14:29	--------	d-----w-	c:\program files (x86)\TuneUp Utilities 2013
2013-02-03 15:34 . 2013-02-21 14:44	--------	d-sh--w-	c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-02-03 15:34 . 2013-02-03 15:34	--------	d--h--w-	c:\programdata\Common Files
2013-02-03 15:26 . 2013-02-03 15:26	--------	d-----w-	c:\users\User\AppData\Roaming\Helper
2013-02-03 15:26 . 2013-02-03 15:26	--------	d-----w-	c:\programdata\DNSErrorHelper
2013-02-03 15:26 . 2011-05-13 13:16	493056	----a-w-	c:\windows\SysWow64\dhRichClient3.dll
2013-02-03 15:26 . 2011-03-25 21:42	338432	----a-w-	c:\windows\SysWow64\sqlite36_engine.dll
2013-02-03 15:26 . 2013-02-15 23:34	--------	d-----w-	c:\users\User\AppData\Roaming\DesktopIconForAmazon
2013-02-03 15:26 . 2013-02-03 15:26	--------	d-----w-	c:\users\User\AppData\Roaming\OCS
2013-02-03 15:19 . 2013-02-24 10:25	--------	d-----w-	c:\program files (x86)\Java
2013-02-03 15:10 . 2013-02-03 15:10	8038	----a-w-	c:\windows\system32\cc_20130203_161025.reg
2013-02-02 11:27 . 2012-03-26 15:38	226304	----a-w-	c:\windows\system32\binkw32.dll
2013-01-30 14:42 . 2013-01-30 14:42	11946	----a-w-	c:\windows\system32\cc_20130130_154220.reg
2013-01-29 15:18 . 2013-01-29 15:18	283200	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2013-01-29 15:18 . 2013-01-30 14:42	--------	d-----w-	c:\users\User\AppData\Roaming\DAEMON Tools Lite
2013-01-29 15:18 . 2013-01-29 15:18	--------	d-----w-	c:\program files (x86)\DAEMON Tools Lite
2013-01-29 15:17 . 2013-01-29 15:30	--------	d-----w-	c:\programdata\DAEMON Tools Lite
2013-01-29 15:04 . 2013-01-29 15:04	--------	d-----w-	c:\users\User\AppData\Roaming\DAEMON Tools Net
2013-01-29 15:04 . 2013-01-29 15:04	--------	d-----w-	c:\programdata\DAEMON Tools Net
2013-01-28 17:37 . 2013-01-28 17:37	74977	----a-w-	c:\program files (x86)\Microsoft Games\Microsoft Flight Simulator X\SimObjects\Airplanes\A380-841Lufthansa\panel\Uninstal.exe
2013-01-28 17:35 . 2013-01-28 17:35	74977	----a-w-	c:\program files (x86)\Microsoft Games\Microsoft Flight Simulator X\SimObjects\Airplanes\Uninstal.exe
2013-01-28 16:44 . 2001-11-08 14:07	13312	----a-w-	c:\program files (x86)\Microsoft Games\Microsoft Flight Simulator X\Modules\FSSound.dll
2013-01-28 15:12 . 2013-02-12 11:37	--------	d-----w-	C:\Papyrus
2013-01-28 15:11 . 1997-08-26 11:06	315904	----a-w-	c:\windows\IsUninst.exe
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-27 14:23 . 2013-01-12 11:06	893552	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2013-02-27 14:22 . 2013-01-12 11:06	42776	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2013-02-27 13:47 . 2012-03-30 19:02	71024	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-27 13:47 . 2012-03-30 19:02	691568	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-24 10:25 . 2012-04-30 12:04	861088	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2013-02-24 10:25 . 2012-03-28 13:37	782240	----a-w-	c:\windows\SysWow64\deployJava1.dll
2013-02-21 19:45 . 2012-03-28 13:36	1085344	----a-w-	c:\windows\system32\npdeployJava1.dll
2013-02-21 19:45 . 2012-03-28 13:36	963488	----a-w-	c:\windows\system32\deployJava1.dll
2013-02-21 14:18 . 2013-01-12 11:06	1236816	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-02-13 13:37 . 2012-03-30 20:40	70004024	----a-w-	c:\windows\system32\MRT.exe
2013-02-10 03:25 . 2012-10-10 19:22	15038296	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2013-02-10 03:25 . 2012-03-30 19:27	1114144	----a-w-	c:\windows\system32\nvumdshimx.dll
2013-02-10 03:25 . 2012-03-19 18:37	2854344	----a-w-	c:\windows\system32\nvapi64.dll
2013-02-10 03:25 . 2012-03-19 18:37	15275744	----a-w-	c:\windows\system32\nvwgf2umx.dll
2013-02-10 01:04 . 2012-03-19 18:38	6393120	----a-w-	c:\windows\system32\nvcpl.dll
2013-02-10 01:04 . 2012-03-19 18:38	3472672	----a-w-	c:\windows\system32\nvsvc64.dll
2013-02-10 01:04 . 2012-03-19 18:38	877856	----a-w-	c:\windows\system32\nvvsvc.exe
2013-02-10 01:04 . 2012-03-19 18:38	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-02-10 01:04 . 2012-03-19 18:38	2555680	----a-w-	c:\windows\system32\nvsvcr.dll
2013-02-10 01:04 . 2012-03-19 18:38	237856	----a-w-	c:\windows\system32\nvmctray.dll
2013-02-09 13:25 . 2012-03-30 19:28	3035306	----a-w-	c:\windows\system32\nvcoproc.bin
2013-01-18 17:59 . 2013-01-18 17:59	1744	----a-w-	c:\windows\system32\cc_20130118_185935.reg
2013-01-18 17:59 . 2013-01-18 17:59	14954	----a-w-	c:\windows\system32\cc_20130118_185924.reg
2013-01-17 00:28 . 2010-11-21 03:27	273840	------w-	c:\windows\system32\MpSigStub.exe
2013-01-10 15:37 . 2013-01-10 15:37	440	----a-w-	c:\windows\system32\cc_20130110_163739.reg
2013-01-10 15:27 . 2013-01-10 15:27	4628	----a-w-	c:\windows\system32\cc_20130110_162712.reg
2013-01-10 15:15 . 2013-01-10 15:15	7746	----a-w-	c:\windows\system32\cc_20130110_161548.reg
2013-01-09 10:37 . 2013-01-09 10:37	4954	----a-w-	c:\windows\system32\cc_20130109_113712.reg
2013-01-08 22:19 . 2013-01-08 22:19	190	----a-w-	c:\windows\system32\cc_20130108_231923.reg
2013-01-08 22:19 . 2013-01-08 22:19	270	----a-w-	c:\windows\system32\cc_20130108_231912.reg
2013-01-08 22:19 . 2013-01-08 22:19	16164	----a-w-	c:\windows\system32\cc_20130108_231859.reg
2013-01-04 04:43 . 2013-02-13 13:18	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2013-01-01 00:52 . 2013-01-01 00:52	3618	----a-w-	c:\windows\system32\cc_20130101_015249.reg
2012-12-30 16:44 . 2012-12-30 16:44	460	----a-w-	c:\windows\system32\cc_20121230_174453.reg
2012-12-30 16:44 . 2012-12-30 16:44	82	----a-w-	c:\windows\system32\cc_20121230_174445.reg
2012-12-29 10:34 . 2012-09-21 15:28	1504696	----a-w-	c:\windows\system32\nvdispgenco64.dll
2012-12-29 10:34 . 2012-03-30 19:27	1813432	----a-w-	c:\windows\system32\nvdispco64.dll
2012-12-29 00:05 . 2012-12-29 00:05	2348	----a-w-	c:\windows\system32\cc_20121229_010548.reg
2012-12-27 00:26 . 2012-03-16 23:29	107552	----a-w-	c:\windows\system32\RTNUninst64.dll
2012-12-18 22:49 . 2012-03-16 23:28	2079968	----a-w-	c:\windows\RtlExUpd.dll
2012-12-18 08:31 . 2012-03-30 19:27	1510328	----a-w-	c:\windows\system32\nvhdagenco6420103.dll
2012-12-16 17:11 . 2012-12-21 11:18	46080	----a-w-	c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2012-12-21 11:18	367616	----a-w-	c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-21 11:18	295424	----a-w-	c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2012-12-21 11:18	34304	----a-w-	c:\windows\SysWow64\atmlib.dll
2012-12-14 15:28 . 2012-12-14 15:28	179685	----a-w-	c:\users\User\AppData\Roaming\Microsoft\Windows\Templates\proxtube_online.exe
2012-12-12 19:09 . 2012-12-12 19:09	446	----a-w-	c:\windows\system32\cc_20121212_200903.reg
2012-12-12 19:08 . 2012-12-12 19:08	63962	----a-w-	c:\windows\system32\cc_20121212_200847.reg
2012-12-12 13:16 . 2012-12-12 13:16	1220	----a-w-	c:\windows\system32\cc_20121212_141642.reg
2012-12-07 13:20 . 2013-01-09 19:46	441856	----a-w-	c:\windows\system32\Wpc.dll
2012-12-07 13:15 . 2013-01-09 19:46	2746368	----a-w-	c:\windows\system32\gameux.dll
2012-12-07 12:26 . 2013-01-09 19:46	308736	----a-w-	c:\windows\SysWow64\Wpc.dll
2012-12-07 12:20 . 2013-01-09 19:46	2576384	----a-w-	c:\windows\SysWow64\gameux.dll
2012-12-07 11:20 . 2013-01-09 19:46	30720	----a-w-	c:\windows\system32\usk.rs
2012-12-07 11:20 . 2013-01-09 19:46	43520	----a-w-	c:\windows\system32\csrr.rs
2012-12-07 11:20 . 2013-01-09 19:46	23552	----a-w-	c:\windows\system32\oflc.rs
2012-12-07 11:20 . 2013-01-09 19:46	45568	----a-w-	c:\windows\system32\oflc-nz.rs
2012-12-07 11:20 . 2013-01-09 19:46	44544	----a-w-	c:\windows\system32\pegibbfc.rs
2012-12-07 11:20 . 2013-01-09 19:46	20480	----a-w-	c:\windows\system32\pegi-fi.rs
2012-12-07 11:20 . 2013-01-09 19:46	20480	----a-w-	c:\windows\system32\pegi-pt.rs
2012-12-07 11:19 . 2013-01-09 19:46	20480	----a-w-	c:\windows\system32\pegi.rs
2012-12-07 11:19 . 2013-01-09 19:46	46592	----a-w-	c:\windows\system32\fpb.rs
2012-12-07 11:19 . 2013-01-09 19:46	40960	----a-w-	c:\windows\system32\cob-au.rs
2012-12-07 11:19 . 2013-01-09 19:46	21504	----a-w-	c:\windows\system32\grb.rs
2012-12-07 11:19 . 2013-01-09 19:46	15360	----a-w-	c:\windows\system32\djctq.rs
2012-12-07 11:19 . 2013-01-09 19:46	55296	----a-w-	c:\windows\system32\cero.rs
2012-12-07 11:19 . 2013-01-09 19:46	51712	----a-w-	c:\windows\system32\esrb.rs
2012-12-07 10:46 . 2013-01-09 19:46	43520	----a-w-	c:\windows\SysWow64\csrr.rs
2012-12-07 10:46 . 2013-01-09 19:46	30720	----a-w-	c:\windows\SysWow64\usk.rs
2012-12-07 10:46 . 2013-01-09 19:46	45568	----a-w-	c:\windows\SysWow64\oflc-nz.rs
2012-12-07 10:46 . 2013-01-09 19:46	44544	----a-w-	c:\windows\SysWow64\pegibbfc.rs
2012-12-07 10:46 . 2013-01-09 19:46	20480	----a-w-	c:\windows\SysWow64\pegi-pt.rs
2012-12-07 10:46 . 2013-01-09 19:46	23552	----a-w-	c:\windows\SysWow64\oflc.rs
2012-12-07 10:46 . 2013-01-09 19:46	20480	----a-w-	c:\windows\SysWow64\pegi-fi.rs
2012-12-07 10:46 . 2013-01-09 19:46	46592	----a-w-	c:\windows\SysWow64\fpb.rs
2012-12-07 10:46 . 2013-01-09 19:46	20480	----a-w-	c:\windows\SysWow64\pegi.rs
2012-12-07 10:46 . 2013-01-09 19:46	21504	----a-w-	c:\windows\SysWow64\grb.rs
2012-12-07 10:46 . 2013-01-09 19:46	40960	----a-w-	c:\windows\SysWow64\cob-au.rs
2012-12-07 10:46 . 2013-01-09 19:46	15360	----a-w-	c:\windows\SysWow64\djctq.rs
2012-12-07 10:46 . 2013-01-09 19:46	55296	----a-w-	c:\windows\SysWow64\cero.rs
2012-12-07 10:46 . 2013-01-09 19:46	51712	----a-w-	c:\windows\SysWow64\esrb.rs
2012-12-01 09:36 . 2012-12-01 09:36	460	----a-w-	c:\windows\system32\cc_20121201_103608.reg
2012-11-30 05:45 . 2013-01-09 19:47	362496	----a-w-	c:\windows\system32\wow64win.dll
2012-11-30 05:45 . 2013-01-09 19:47	243200	----a-w-	c:\windows\system32\wow64.dll
2012-11-30 05:45 . 2013-01-09 19:47	13312	----a-w-	c:\windows\system32\wow64cpu.dll
2012-11-30 05:43 . 2013-01-09 19:47	16384	----a-w-	c:\windows\system32\ntvdm64.dll
2012-11-30 05:41 . 2013-01-09 19:47	424448	----a-w-	c:\windows\system32\KernelBase.dll
2012-11-30 05:41 . 2013-01-09 19:47	1161216	----a-w-	c:\windows\system32\kernel32.dll
2012-11-30 05:38 . 2013-01-09 19:47	6144	---ha-w-	c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	4608	---ha-w-	c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	4608	---ha-w-	c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	4096	---ha-w-	c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	4096	---ha-w-	c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	3584	---ha-w-	c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	3584	---ha-w-	c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	3584	---ha-w-	c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	3584	---ha-w-	c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	3072	---ha-w-	c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	3072	---ha-w-	c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-11-30 05:38 . 2013-01-09 19:47	3072	---ha-w-	c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{9B6B03F1-16CF-4491-BBBB-E872802DD717}]
2013-02-03 15:26	111616	----a-w-	c:\programdata\DNSErrorHelper\bho.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-01-08 18705664]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2011-12-16 133400]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-01-05 291608]
"AVP"="c:\program files (x86)\Kaspersky Security Suite CBE 12\avp.exe" [2012-04-10 202296]
"BigDog305"="c:\windows\VM305_STI.EXE" [2007-01-05 61440]
"RoccatKonePure"="c:\program files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE" [2012-11-30 569040]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R1 XSpaceWg;XSpaceWg;c:\windows\system32\drivers\XSpaceWg.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 LVPrcS64;Process Monitor;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-06 191000]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2013-01-28 2402080]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 lvpepf64;Volume Adapter;c:\windows\system32\DRIVERS\lv302a64.sys [2009-04-30 15896]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2009-04-30 327576]
R3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
R3 miniusb;FrameManager Display Adapter;c:\windows\system32\DRIVERS\sam_miniusb.sys [2010-03-04 23480]
R3 papycpu;papycpu; [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 Samsung UPD Service2;Samsung UPD Service2;c:\windows\System32\SUPDSvc2.exe [2011-12-02 165456]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2012-08-23 29696]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe [2012-11-26 745368]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 vvftav;vvftav;c:\windows\system32\drivers\vvftav.sys [2007-02-02 300800]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [2012-12-16 1255736]
R3 ZSMC0305;USB PC Camera VC305;c:\windows\system32\Drivers\usbVM305.sys [2007-03-08 1541120]
R4 ACT2_Service;Ashampoo Core Tuner 2 Service;c:\program files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe [2011-08-22 1421216]
R4 FrameManager Service;FrameManager Service;c:\program files\Samsung\FrameManager\sam_service.exe [2010-03-03 182784]
R4 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 3467768]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-01-05 16152]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 21616]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-29 283200]
S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [2011-03-04 11864]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2011-03-10 29488]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [2010-02-24 191616]
S2 ACT2PM;Ashampoo CoreTuner 2 ProcessMonitor Driver;c:\program files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys [2011-06-10 15160]
S2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-06 169408]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 2465712]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-02-09 383264]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-01-05 355096]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-01-05 786200]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544]
S3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [2009-10-06 30232]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-12-27 805088]
S3 SODI;SODI;c:\windows\system32\DRIVERS\sam_miniport.sys [2010-03-04 30776]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-11-16 11880]
S3 WinRing0_1_2_0;WinRing0_1_2_0;c:\users\User\AppData\Local\Temp\tmp2BE0.tmp [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WINRING0_1_2_0
.
Inhalt des "geplante Tasks" Ordners
.
2013-02-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 13:48]
.
2013-02-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 20:37]
.
2013-02-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 20:37]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-07-28 497648]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-16 12445288]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
UxTuneUp
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://de.search.yahoo.com/web?fr=vc_trans_de_8197
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - ExtSQL: 2012-12-31 20:51; langpack-de@firefox.mozilla.org; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\langpack-de@firefox.mozilla.org.xpi
FF - ExtSQL: 2013-01-05 15:51; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-01-05 15:51; adblockpopups@jessehakanen.net; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\adblockpopups@jessehakanen.net.xpi
FF - ExtSQL: 2013-01-18 16:25; {d49a148e-817e-4025-bee3-5d541376de3b}; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi
FF - ExtSQL: 2013-01-31 16:23; proxylist@proxylists.me; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\proxylist@proxylists.me.xpi
FF - ExtSQL: 2013-01-31 16:23; ich@maltegoetz.de; c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\extensions\ich@maltegoetz.de
FF - ExtSQL: 2013-02-03 16:26; dnshelp@dnshelp.com; c:\users\User\AppData\Roaming\Helper
FF - user.js: network.http.max-connections-per-server - 6
FF - user.js: network.http.max-persistent-connections-per-server - 3
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinRing0_1_2_0]
"ImagePath"="\??\c:\users\User\AppData\Local\Temp\tmp2BE0.tmp"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_171_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_171_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_171_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_171_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_171.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-02-27  15:47:50
ComboFix-quarantined-files.txt  2013-02-27 14:47
.
Vor Suchlauf: 38 Verzeichnis(se), 1.577.880.576.000 Bytes frei
Nach Suchlauf: 39 Verzeichnis(se), 1.577.472.151.552 Bytes frei
.
- - End Of File - - F37F7D795A8402A31931E1078937F1BF
         
--- --- ---

Alt 27.02.2013, 15:56   #15
markusg
/// Malware-holic
 
Windows 7 Anwenderprogramme öffnen nur sehr langsam - Standard

Windows 7 Anwenderprogramme öffnen nur sehr langsam



lösche nie wieder mit dem CCleaner oder sonstigen programmen in der reg rumm, bitte.
denn sowas kann probleme verursachen


lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Antwort

Themen zu Windows 7 Anwenderprogramme öffnen nur sehr langsam
anwendungsprogramme, arten, einiger, langsam, problem, sehr langsam, starte, starten, windows, windows 7, öffnen



Ähnliche Themen: Windows 7 Anwenderprogramme öffnen nur sehr langsam


  1. Windows bzw. ganzer Rechner läuft sehr sehr langsam.....
    Plagegeister aller Art und deren Bekämpfung - 28.09.2015 (11)
  2. windows 7 es öffnen sich ständig neue fenster rechner ist sehr langsam, ist auch schon mit blue screen abgestürtzt
    Log-Analyse und Auswertung - 09.09.2014 (1)
  3. Webseiten öffnen sehr langsam oder gar nicht
    Log-Analyse und Auswertung - 24.01.2014 (5)
  4. Laptop mit Vista sehr langsam beim Hoch-/Runterfahren und Programme öffnen
    Log-Analyse und Auswertung - 06.01.2014 (13)
  5. Windows Vista fährt nur sehr langsam hoch und braucht sehr lange um Befehle auszufuehren.
    Mülltonne - 22.11.2013 (1)
  6. Windows 7: Sponsorship-Fenster öffnen sich + PC sehr langsam
    Log-Analyse und Auswertung - 19.09.2013 (11)
  7. Programme starten sehr langsam / Windows allg. sehr lahm
    Log-Analyse und Auswertung - 18.05.2013 (2)
  8. Programme öffnen nur sehr langsam
    Log-Analyse und Auswertung - 14.03.2013 (15)
  9. Programme öffnen nur sehr langsam, Virensuche vergebens
    Mülltonne - 13.03.2013 (1)
  10. Win 7 64 bit prof, die Ordner öffnen und schließen sehr langsam
    Alles rund um Windows - 17.07.2012 (3)
  11. PC sehr langsam und Programme öffnen sich sehr langsam...
    Log-Analyse und Auswertung - 01.05.2012 (5)
  12. Programme öffnen sehr langsam
    Plagegeister aller Art und deren Bekämpfung - 23.03.2011 (14)
  13. PC sehr langsam / Inet Seiten öffnen sich langsam
    Log-Analyse und Auswertung - 11.04.2009 (1)
  14. Rechner startet sehr langsam und Programme brauchen ewig zum öffnen
    Log-Analyse und Auswertung - 09.03.2009 (1)
  15. Werbefenster öffnen ungefragt, System wird sehr langsam
    Plagegeister aller Art und deren Bekämpfung - 29.11.2008 (1)
  16. Browser öffnen selbstständig, Herunterfahren sehr langsam, viele neue Prozesse
    Log-Analyse und Auswertung - 15.11.2008 (3)
  17. Internet ist sehr langsam und Popups öffnen sich ständig.
    Log-Analyse und Auswertung - 26.06.2008 (4)

Zum Thema Windows 7 Anwenderprogramme öffnen nur sehr langsam - Hallo, seit einiger Zeit habe ich ein Problem mit meinem PC. Alle Anwendungsprogramme starten manchmal erst nach mehr als 10 Sekunden. Was kann ich machen? Danke im Vorraus! Mit freundlichen - Windows 7 Anwenderprogramme öffnen nur sehr langsam...
Archiv
Du betrachtest: Windows 7 Anwenderprogramme öffnen nur sehr langsam auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.