| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: csrss key-logger bzw Trojaner im Taskmanager gefundenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
19.02.2014, 15:33
| #1 |
 |  csrss key-logger bzw Trojaner im Taskmanager gefunden Hallo Helfer, Ich hatte ein paar streitigkeiten mit einer Spielefirma die mich darauf aufmerksam gemacht hat, dass ich einen keylogger / trojaner auf meinem rechner habe der die Passwörter speichert. Ich hab deshalb einmal angefangen mein Avira Antivir die vollständige Überprüfung durchzuführen und gleichzeitig mit dem Programm ProcessQuickLink2 meinen Taskmanager auf unbekannte und schädliche ausführungen zu überprüfen und mir ist dabei csrss aufgefallen. Ich weiß demnach nicht wie man so ein keylogger entfernt und da ich hier schon einmal gewesen bin und nur gute erfahrungen gemacht habe wollte ich sie um hilfe bitten. Vielen Dank im vorraus Simon Geändert von Nomes (19.02.2014 um 15:42 Uhr) |
|
19.02.2014, 15:50
| #2 |
| /// the machine /// TB-Ausbilder    |  csrss key-logger bzw Trojaner im Taskmanager gefunden hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
19.02.2014, 16:03
| #3 |
| | csrss key-logger bzw Trojaner im Taskmanager gefundenFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2014
Ran by Simon (administrator) on BODENEICHEL on 19-02-2014 16:01:45
Running from C:\Users\Simon\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Spotify Ltd) C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
(Uniblue) C:\Program Files (x86)\Uniblue\ProcessQuickLink 2\ProcessQuickLink2Admin.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Simon\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [Nvtmru] - "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1179576 2014-02-05] (NVIDIA Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2014-02-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813712 2014-02-04] (LogMeIn Inc.)
HKU\S-1-5-21-1353729038-960519232-1093109976-1000\...\Run: [Google Update] - C:\Users\Simon\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-09-10] (Google Inc.)
HKU\S-1-5-21-1353729038-960519232-1093109976-1000\...\Run: [Spotify Web Helper] - C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-14] (Spotify Ltd)
HKU\S-1-5-21-1353729038-960519232-1093109976-1000\...\Run: [Uniblue ProcessQuickLink 2] - C:\Program Files (x86)\Uniblue\ProcessQuickLink 2\ProcessQuickLink2.exe [655640 2008-04-02] (Uniblue)
HKU\S-1-5-21-1353729038-960519232-1093109976-1000\...\MountPoints2: {c966393c-31b5-11e3-9d8d-bc5ff4bd4362} - F:\LaunchU3.exe -a
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.opti-page.com/?babsrc=HP_ss&mntrId=54C5002586DD3C4D&affID=126473&tsp=5039
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovigo.com/Results.aspx?gd=&ctid=CT3318522&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP83649B82-C531-47B6-B5DC-0857DD4F34F1&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.opti-page.com/?q={searchTerms}&babsrc=SP_ss&mntrId=54C5002586DD3C4D&affID=126473&tsp=5039
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Chrome:
=======
CHR HomePage:
CHR Extension: (AdBlock) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-02-13]
CHR Extension: (Google Wallet) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-10]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2014-02-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2014-02-18] (Avira Operations GmbH & Co. KG)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-04] (LogMeIn, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-31] ()
S4 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2100024 2013-08-30] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-08-21] (TuneUp Software)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-19 16:01 - 2014-02-19 16:01 - 02153472 _____ (Farbar) C:\Users\Simon\Downloads\FRST64.exe
2014-02-19 16:01 - 2014-02-19 16:01 - 00007555 _____ () C:\Users\Simon\Downloads\FRST.txt
2014-02-19 16:01 - 2014-02-19 16:01 - 00000000 ____D () C:\FRST
2014-02-19 15:08 - 2014-02-19 15:08 - 00422432 _____ (Uniblue ) C:\Users\Simon\Downloads\processquicklink2.exe
2014-02-19 15:08 - 2014-02-19 15:08 - 00001144 _____ () C:\Users\Simon\Desktop\ProcessQuickLink 2.lnk
2014-02-19 15:08 - 2014-02-19 15:08 - 00000000 ____D () C:\Program Files (x86)\Uniblue
2014-02-19 14:59 - 2014-02-19 14:59 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\NVIDIA
2014-02-18 18:02 - 2014-02-18 18:02 - 00064024 _____ () C:\Users\Simon\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-18 18:02 - 2014-02-18 18:02 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-02-18 17:59 - 2014-02-18 17:59 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-02-18 17:59 - 2014-02-18 17:59 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-18 17:59 - 2014-02-05 10:31 - 01048152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-02-18 17:59 - 2014-02-05 10:30 - 01179576 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-18 17:58 - 2014-02-08 19:34 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00832424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00483104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00408352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00378656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-02-18 17:58 - 2014-02-08 19:34 - 00148528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-02-18 17:58 - 2013-12-27 19:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-02-18 17:58 - 2013-12-27 19:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-02-18 17:58 - 2013-12-27 19:42 - 00033056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-02-18 17:52 - 2014-02-18 17:56 - 276927952 _____ (NVIDIA Corporation) C:\Users\Simon\Downloads\334.89-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-02-17 17:14 - 2014-02-18 17:59 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-17 17:13 - 2014-02-08 19:34 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-02-17 17:13 - 2014-02-08 19:34 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-02-17 17:12 - 2014-02-17 17:12 - 00000000 ____D () C:\NVIDIA
2014-02-17 17:12 - 2014-02-08 19:34 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-17 17:12 - 2014-02-08 19:34 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-17 17:12 - 2014-02-08 19:34 - 03090184 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-02-17 17:12 - 2014-02-08 19:34 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-02-17 17:12 - 2014-02-08 19:34 - 00947296 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-02-17 17:12 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-02-17 17:12 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-02-17 17:12 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-02-17 17:12 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-02-17 17:12 - 2013-11-22 09:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-02-17 17:05 - 2014-02-17 17:12 - 262041840 _____ (NVIDIA Corporation) C:\Users\Simon\Downloads\332.21-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-02-17 17:00 - 2014-02-08 18:42 - 06712608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-17 17:00 - 2014-02-08 18:42 - 03498272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-02-17 17:00 - 2014-02-08 18:42 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-17 17:00 - 2014-02-08 18:42 - 00923936 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-17 17:00 - 2014-02-08 18:42 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-17 17:00 - 2014-02-08 18:42 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-17 17:00 - 2014-02-05 18:52 - 03573739 _____ () C:\Windows\system32\nvcoproc.bin
2014-02-17 16:46 - 2014-02-17 16:46 - 00294712 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-17 16:45 - 2014-02-19 14:47 - 00003810 _____ () C:\Windows\setupact.log
2014-02-17 16:45 - 2014-02-17 16:45 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-17 16:31 - 2014-02-19 14:50 - 00084457 _____ () C:\Windows\WindowsUpdate.log
2014-02-17 15:46 - 2014-02-17 15:46 - 00000000 ____D () C:\Users\Simon\Documents\Respawn
2014-02-17 14:59 - 2014-02-17 14:59 - 00001220 _____ () C:\Users\Public\Desktop\Titanfall-Beta.lnk
2014-02-13 00:01 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-13 00:01 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-13 00:01 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 00:01 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-13 00:01 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-13 00:01 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-13 00:01 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-13 00:01 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-13 00:01 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-13 00:01 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-13 00:01 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-13 00:01 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-13 00:01 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-13 00:01 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-13 00:01 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-13 00:01 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-13 00:01 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-13 00:01 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-13 00:01 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-13 00:01 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-13 00:01 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-13 00:01 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-13 00:01 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-13 00:01 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-13 00:01 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-13 00:01 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-13 00:01 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-13 00:01 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-13 00:01 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-13 00:01 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-13 00:01 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-13 00:01 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-13 00:01 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-13 00:01 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-13 00:01 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-13 00:01 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-13 00:01 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-13 00:01 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-13 00:01 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-13 00:01 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-13 00:01 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 22:19 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 22:19 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 22:19 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 22:19 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 22:19 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 22:19 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 22:19 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 22:19 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 22:19 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 22:19 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 22:19 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 22:19 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 22:19 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 22:19 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 22:19 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 22:19 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 22:19 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 22:19 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 22:19 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 22:19 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 22:19 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 22:19 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 22:19 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 22:19 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 22:19 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 22:19 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 22:19 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 22:19 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-11 21:00 - 2014-02-11 21:00 - 04116816 _____ (Logitech Inc.) C:\Users\Simon\Downloads\unifying210.exe
2014-02-11 21:00 - 2014-02-11 21:00 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-02-11 20:58 - 2014-02-11 20:58 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Logitech
2014-02-11 20:58 - 2014-02-11 20:58 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Logishrd
2014-02-11 20:58 - 2014-02-11 20:58 - 00000000 ____D () C:\Program Files\Common Files\LogiShrd
2014-02-11 20:57 - 2014-02-11 20:58 - 81855696 _____ (Logitech Inc.) C:\Users\Simon\Downloads\setpoint6.61.15_64.exe
2014-02-07 22:16 - 2014-02-07 22:16 - 00001003 _____ () C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\MP3jam.lnk
2014-02-07 22:16 - 2014-02-07 22:16 - 00000979 _____ () C:\Users\Public\Desktop\MP3jam.lnk
2014-02-07 22:16 - 2014-02-07 22:16 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Mp3jam
2014-02-07 22:16 - 2014-02-07 22:16 - 00000000 ____D () C:\Program Files (x86)\MP3jam
2014-02-07 22:16 - 2014-02-07 22:16 - 00000000 _____ () C:\END
2014-02-07 22:15 - 2014-02-07 22:16 - 08790272 _____ (MP3jam ) C:\Users\Simon\Downloads\MP3jamSetup1114.exe
2014-02-06 22:23 - 2014-02-07 22:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-06 21:38 - 2014-02-06 21:38 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\CorsixTH
2014-02-06 21:33 - 2014-02-06 21:33 - 14878417 _____ () C:\Users\Simon\Downloads\CorsixTH-0.21-Win64.zip
2014-02-06 21:31 - 2014-02-06 21:33 - 07541702 _____ () C:\Users\Simon\Downloads\theme-hospital.zip
2014-02-05 17:30 - 2014-02-05 17:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-01-31 15:01 - 2014-01-31 15:01 - 00000927 _____ () C:\Users\Simon\Desktop\Blobby Volley 2 Version 1.0RC4.lnk
2014-01-30 18:34 - 2014-01-30 18:34 - 02676391 _____ ( ) C:\Users\Simon\Downloads\blobby2-win32-1.0rc4-installer (3).exe
2014-01-30 18:33 - 2014-01-30 18:33 - 02676391 _____ ( ) C:\Users\Simon\Downloads\blobby2-win32-1.0rc4-installer (2).exe
2014-01-30 18:26 - 2014-01-30 18:26 - 02676391 _____ ( ) C:\Users\Simon\Downloads\blobby2-win32-1.0rc4-installer.exe
2014-01-30 18:26 - 2014-01-30 18:26 - 02676391 _____ ( ) C:\Users\Simon\Downloads\blobby2-win32-1.0rc4-installer (1).exe
2014-01-29 20:58 - 2014-01-29 20:58 - 00813169 _____ () C:\Users\Simon\Downloads\blobby (2).zip
2014-01-29 20:44 - 2014-02-19 15:01 - 00000000 ____D () C:\Users\Simon\AppData\Local\LogMeIn Hamachi
2014-01-29 20:43 - 2014-01-29 20:43 - 00813169 _____ () C:\Users\Simon\Downloads\blobby (1).zip
2014-01-29 20:43 - 2014-01-29 20:43 - 00614784 _____ (Chip Digital GmbH) C:\Users\Simon\Downloads\LogMeIn Hamachi - CHIP-Downloader (1).exe
2014-01-29 20:42 - 2014-01-29 20:42 - 00614784 _____ (Chip Digital GmbH) C:\Users\Simon\Downloads\LogMeIn Hamachi - CHIP-Downloader.exe
2014-01-29 20:30 - 2014-01-29 20:30 - 00813169 _____ () C:\Users\Simon\Downloads\blobby.zip
2014-01-26 22:13 - 2014-01-26 22:13 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-01-26 20:39 - 2014-01-26 20:39 - 00229064 _____ () C:\Users\Simon\Downloads\en_us.oxt
2014-01-26 20:38 - 2014-01-26 20:38 - 06025250 _____ () C:\Users\Simon\Downloads\dict-en-marcoagpinto-20140107.oxt
2014-01-25 12:02 - 2014-01-25 12:02 - 00000000 ____D () C:\Absicherung
2014-01-25 11:56 - 2014-01-25 11:58 - 00000000 ____D () C:\Windows\Minidump
2014-01-25 00:09 - 2014-01-25 00:09 - 00000000 ____D () C:\Crash
2014-01-24 23:21 - 2014-01-24 23:21 - 00000000 ____D () C:\Users\Simon\AppData\Local\SCE
2014-01-24 20:49 - 2014-01-24 20:49 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\3909 LLC
2014-01-24 20:37 - 2014-01-24 20:42 - 12863847 _____ () C:\Users\Simon\Downloads\PapersPlease-0.5.13-Win.zip
2014-01-20 19:26 - 2014-01-29 21:07 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-20 19:26 - 2014-01-26 19:55 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-01-20 19:26 - 2014-01-20 19:26 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\TuneUp Software
2014-01-20 19:26 - 2013-08-30 09:51 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-20 19:26 - 2013-08-30 09:51 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-20 19:26 - 2013-08-30 09:51 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-20 19:25 - 2014-01-20 19:25 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-20 19:24 - 2014-01-26 19:55 - 00000000 ____D () C:\Program Files (x86)\Free Sound Recorder
2014-01-20 19:24 - 2014-01-20 19:26 - 00000000 ____D () C:\Users\Simon\Documents\Free Sound Recorder
2014-01-20 19:24 - 2014-01-20 19:25 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Free Sound Recorder
2014-01-20 19:24 - 2014-01-20 19:24 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\OpenCandy
2014-01-20 19:24 - 2006-03-23 12:56 - 00113486 _____ () C:\Windows\SysWOW64\NCTWMAProfiles.prx
2014-01-20 19:24 - 2005-05-18 11:52 - 01212416 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2014-01-20 19:24 - 2005-05-17 12:37 - 01986560 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2014-01-20 19:24 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2014-01-20 19:24 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2014-01-20 19:24 - 2005-04-15 12:08 - 00880640 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2014-01-20 19:24 - 2005-04-04 17:21 - 00602112 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2014-01-20 19:24 - 2005-03-28 15:54 - 00479232 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioVisualization2.dll
2014-01-20 19:24 - 2005-03-28 15:52 - 00417792 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTTextToAudio2.dll
2014-01-20 19:24 - 2005-02-24 11:51 - 00348160 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTWMAFile2.dll
2014-01-20 19:24 - 2004-11-04 13:31 - 00835584 _____ (NCT) C:\Windows\SysWOW64\NCTAudioCDGrabber2.dll
2014-01-20 19:24 - 2002-01-05 16:37 - 00344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2014-01-20 19:23 - 2014-01-20 19:24 - 11129456 _____ (Copyright© 2005-2013 FreeSoundRecorder Technologies, Inc. ) C:\Users\Simon\Downloads\FreeSoundRecorder_9.6.1.exe
==================== One Month Modified Files and Folders =======
2014-02-19 16:01 - 2014-02-19 16:01 - 02153472 _____ (Farbar) C:\Users\Simon\Downloads\FRST64.exe
2014-02-19 16:01 - 2014-02-19 16:01 - 00007555 _____ () C:\Users\Simon\Downloads\FRST.txt
2014-02-19 16:01 - 2014-02-19 16:01 - 00000000 ____D () C:\FRST
2014-02-19 16:01 - 2013-09-30 11:08 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-19 15:21 - 2013-09-10 19:53 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000UA.job
2014-02-19 15:08 - 2014-02-19 15:08 - 00422432 _____ (Uniblue ) C:\Users\Simon\Downloads\processquicklink2.exe
2014-02-19 15:08 - 2014-02-19 15:08 - 00001144 _____ () C:\Users\Simon\Desktop\ProcessQuickLink 2.lnk
2014-02-19 15:08 - 2014-02-19 15:08 - 00000000 ____D () C:\Program Files (x86)\Uniblue
2014-02-19 15:04 - 2014-01-19 15:35 - 00000000 ____D () C:\Users\Simon\AppData\Local\Battle.net
2014-02-19 15:01 - 2014-01-29 20:44 - 00000000 ____D () C:\Users\Simon\AppData\Local\LogMeIn Hamachi
2014-02-19 14:59 - 2014-02-19 14:59 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\NVIDIA
2014-02-19 14:55 - 2009-07-14 05:45 - 00021808 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-19 14:55 - 2009-07-14 05:45 - 00021808 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-19 14:53 - 2011-04-12 08:43 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-02-19 14:53 - 2011-04-12 08:43 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-02-19 14:53 - 2009-07-14 06:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-19 14:50 - 2014-02-17 16:31 - 00084457 _____ () C:\Windows\WindowsUpdate.log
2014-02-19 14:47 - 2014-02-17 16:45 - 00003810 _____ () C:\Windows\setupact.log
2014-02-19 14:47 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-19 10:48 - 2013-09-11 00:32 - 00000000 ____D () C:\Users\Simon\AppData\Local\Arma 3
2014-02-19 10:40 - 2013-11-07 19:35 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000UA.job
2014-02-18 23:33 - 2013-09-11 13:32 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Skype
2014-02-18 21:21 - 2013-09-10 19:53 - 00001068 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000Core.job
2014-02-18 19:40 - 2013-11-07 19:35 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000Core.job
2014-02-18 18:28 - 2013-09-10 19:57 - 00000000 ____D () C:\ProgramData\Origin
2014-02-18 18:02 - 2014-02-18 18:02 - 00064024 _____ () C:\Users\Simon\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-18 18:02 - 2014-02-18 18:02 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-02-18 18:00 - 2013-10-02 15:00 - 00000000 ____D () C:\Users\Simon\AppData\Local\NVIDIA
2014-02-18 17:59 - 2014-02-18 17:59 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-02-18 17:59 - 2014-02-18 17:59 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-18 17:59 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-18 17:59 - 2013-11-01 23:41 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-18 17:59 - 2013-10-02 20:06 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-18 17:59 - 2013-09-10 19:59 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-18 17:56 - 2014-02-18 17:52 - 276927952 _____ (NVIDIA Corporation) C:\Users\Simon\Downloads\334.89-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-02-18 17:55 - 2013-11-12 20:05 - 00000000 ____D () C:\Users\Simon\AppData\Local\NVIDIA Corporation
2014-02-18 13:50 - 2013-09-11 23:29 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\TS3Client
2014-02-17 17:12 - 2014-02-17 17:12 - 00000000 ____D () C:\NVIDIA
2014-02-17 17:12 - 2014-02-17 17:05 - 262041840 _____ (NVIDIA Corporation) C:\Users\Simon\Downloads\332.21-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-02-17 17:00 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2014-02-17 16:46 - 2014-02-17 16:46 - 00294712 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-17 16:45 - 2014-02-17 16:45 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-17 16:29 - 2013-09-21 13:23 - 00000000 ____D () C:\Users\Simon\Desktop\Programme
2014-02-17 15:46 - 2014-02-17 15:46 - 00000000 ____D () C:\Users\Simon\Documents\Respawn
2014-02-17 14:59 - 2014-02-17 14:59 - 00001220 _____ () C:\Users\Public\Desktop\Titanfall-Beta.lnk
2014-02-17 13:53 - 2013-10-31 14:36 - 00000000 ____D () C:\Program Files (x86)\Battlefield 4
2014-02-16 22:24 - 2013-09-20 21:03 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-16 22:24 - 2013-09-20 21:03 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-16 20:52 - 2013-12-17 18:45 - 00000000 ____D () C:\Users\Simon\AppData\Local\DayZ
2014-02-16 14:45 - 2013-09-10 21:30 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-02-16 14:45 - 2013-09-10 21:30 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-02-16 13:52 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-14 15:50 - 2013-09-11 20:37 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Spotify
2014-02-13 21:16 - 2013-09-10 19:53 - 00004090 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000UA
2014-02-13 21:16 - 2013-09-10 19:53 - 00003694 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000Core
2014-02-13 19:19 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-13 00:02 - 2013-09-10 20:02 - 01593956 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-12 18:45 - 2013-11-24 13:23 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\GameRanger
2014-02-11 21:00 - 2014-02-11 21:00 - 04116816 _____ (Logitech Inc.) C:\Users\Simon\Downloads\unifying210.exe
2014-02-11 21:00 - 2014-02-11 21:00 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-02-11 20:58 - 2014-02-11 20:58 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Logitech
2014-02-11 20:58 - 2014-02-11 20:58 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Logishrd
2014-02-11 20:58 - 2014-02-11 20:58 - 00000000 ____D () C:\Program Files\Common Files\LogiShrd
2014-02-11 20:58 - 2014-02-11 20:57 - 81855696 _____ (Logitech Inc.) C:\Users\Simon\Downloads\setpoint6.61.15_64.exe
2014-02-08 23:16 - 2013-09-12 23:05 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Mozilla
2014-02-08 19:34 - 2014-02-18 17:58 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-08 19:34 - 2014-02-18 17:58 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00832424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00483104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00408352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00378656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-02-08 19:34 - 2014-02-18 17:58 - 00148528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-02-08 19:34 - 2014-02-17 17:13 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-02-08 19:34 - 2014-02-17 17:13 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-02-08 19:34 - 2014-02-17 17:12 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-08 19:34 - 2014-02-17 17:12 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-08 19:34 - 2014-02-17 17:12 - 03090184 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-02-08 19:34 - 2014-02-17 17:12 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-02-08 19:34 - 2014-02-17 17:12 - 00947296 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-02-08 19:34 - 2013-11-01 23:41 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-02-08 18:42 - 2014-02-17 17:00 - 06712608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-08 18:42 - 2014-02-17 17:00 - 03498272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-02-08 18:42 - 2014-02-17 17:00 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-08 18:42 - 2014-02-17 17:00 - 00923936 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-08 18:42 - 2014-02-17 17:00 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-08 18:42 - 2014-02-17 17:00 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-08 12:26 - 2013-11-12 19:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-07 22:16 - 2014-02-07 22:16 - 00001003 _____ () C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\MP3jam.lnk
2014-02-07 22:16 - 2014-02-07 22:16 - 00000979 _____ () C:\Users\Public\Desktop\MP3jam.lnk
2014-02-07 22:16 - 2014-02-07 22:16 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Mp3jam
2014-02-07 22:16 - 2014-02-07 22:16 - 00000000 ____D () C:\Program Files (x86)\MP3jam
2014-02-07 22:16 - 2014-02-07 22:16 - 00000000 _____ () C:\END
2014-02-07 22:16 - 2014-02-07 22:15 - 08790272 _____ (MP3jam ) C:\Users\Simon\Downloads\MP3jamSetup1114.exe
2014-02-07 22:15 - 2014-02-06 22:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-07 14:38 - 2013-09-11 20:38 - 00000000 ____D () C:\Users\Simon\AppData\Local\Spotify
2014-02-06 21:38 - 2014-02-06 21:38 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\CorsixTH
2014-02-06 21:33 - 2014-02-06 21:33 - 14878417 _____ () C:\Users\Simon\Downloads\CorsixTH-0.21-Win64.zip
2014-02-06 21:33 - 2014-02-06 21:31 - 07541702 _____ () C:\Users\Simon\Downloads\theme-hospital.zip
2014-02-06 13:16 - 2014-02-13 00:01 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-13 00:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-13 00:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-13 00:01 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-13 00:01 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-13 00:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-13 00:01 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-13 00:01 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-13 00:01 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-13 00:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-13 00:01 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-13 00:01 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-13 00:01 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-13 00:01 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-13 00:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-13 00:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-13 00:01 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-13 00:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-13 00:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-13 00:01 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-13 00:01 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-13 00:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-13 00:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-13 00:01 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-13 00:01 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-13 00:01 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-13 00:01 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-13 00:01 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-13 00:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-13 00:01 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-13 00:01 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-13 00:01 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-13 00:01 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-13 00:01 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-13 00:01 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-13 00:01 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-13 00:01 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-13 00:01 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-13 00:01 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 18:52 - 2014-02-17 17:00 - 03573739 _____ () C:\Windows\system32\nvcoproc.bin
2014-02-05 17:30 - 2014-02-05 17:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-05 10:31 - 2014-02-18 17:59 - 01048152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-02-05 10:30 - 2014-02-18 17:59 - 01179576 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-02-04 22:01 - 2013-09-30 11:08 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-04 22:01 - 2013-09-30 11:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-04 22:01 - 2013-09-30 11:08 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-03 18:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-01-31 15:01 - 2014-01-31 15:01 - 00000927 _____ () C:\Users\Simon\Desktop\Blobby Volley 2 Version 1.0RC4.lnk
2014-01-30 18:34 - 2014-01-30 18:34 - 02676391 _____ ( ) C:\Users\Simon\Downloads\blobby2-win32-1.0rc4-installer (3).exe
2014-01-30 18:33 - 2014-01-30 18:33 - 02676391 _____ ( ) C:\Users\Simon\Downloads\blobby2-win32-1.0rc4-installer (2).exe
2014-01-30 18:26 - 2014-01-30 18:26 - 02676391 _____ ( ) C:\Users\Simon\Downloads\blobby2-win32-1.0rc4-installer.exe
2014-01-30 18:26 - 2014-01-30 18:26 - 02676391 _____ ( ) C:\Users\Simon\Downloads\blobby2-win32-1.0rc4-installer (1).exe
2014-01-29 21:07 - 2014-01-20 19:26 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-29 20:58 - 2014-01-29 20:58 - 00813169 _____ () C:\Users\Simon\Downloads\blobby (2).zip
2014-01-29 20:43 - 2014-01-29 20:43 - 00813169 _____ () C:\Users\Simon\Downloads\blobby (1).zip
2014-01-29 20:43 - 2014-01-29 20:43 - 00614784 _____ (Chip Digital GmbH) C:\Users\Simon\Downloads\LogMeIn Hamachi - CHIP-Downloader (1).exe
2014-01-29 20:42 - 2014-01-29 20:42 - 00614784 _____ (Chip Digital GmbH) C:\Users\Simon\Downloads\LogMeIn Hamachi - CHIP-Downloader.exe
2014-01-29 20:30 - 2014-01-29 20:30 - 00813169 _____ () C:\Users\Simon\Downloads\blobby.zip
2014-01-26 22:13 - 2014-01-26 22:13 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-01-26 20:39 - 2014-01-26 20:39 - 00229064 _____ () C:\Users\Simon\Downloads\en_us.oxt
2014-01-26 20:38 - 2014-01-26 20:38 - 06025250 _____ () C:\Users\Simon\Downloads\dict-en-marcoagpinto-20140107.oxt
2014-01-26 19:56 - 2013-09-10 19:44 - 00000000 ____D () C:\Users\Simon
2014-01-26 19:55 - 2014-01-20 19:26 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-01-26 19:55 - 2014-01-20 19:24 - 00000000 ____D () C:\Program Files (x86)\Free Sound Recorder
2014-01-26 19:55 - 2014-01-19 15:35 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Battle.net
2014-01-26 19:55 - 2013-12-17 18:45 - 00000000 ____D () C:\Users\Simon\Documents\DayZ
2014-01-26 19:55 - 2013-09-20 21:51 - 00000000 ____D () C:\Users\Simon\Desktop\Games
2014-01-26 19:55 - 2013-09-11 11:24 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\vlc
2014-01-26 19:55 - 2013-06-26 17:40 - 00000000 ____D () C:\Users\Simon\Documents\Arma 3
2014-01-26 19:55 - 2012-07-06 19:17 - 00000000 ____D () C:\Users\Simon\Documents\My Games
2014-01-26 19:55 - 2011-04-12 08:54 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-01-26 19:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-01-25 12:02 - 2014-01-25 12:02 - 00000000 ____D () C:\Absicherung
2014-01-25 11:58 - 2014-01-25 11:56 - 00000000 ____D () C:\Windows\Minidump
2014-01-25 11:40 - 2013-10-03 13:13 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-25 00:09 - 2014-01-25 00:09 - 00000000 ____D () C:\Crash
2014-01-24 23:21 - 2014-01-24 23:21 - 00000000 ____D () C:\Users\Simon\AppData\Local\SCE
2014-01-24 20:49 - 2014-01-24 20:49 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\3909 LLC
2014-01-24 20:42 - 2014-01-24 20:37 - 12863847 _____ () C:\Users\Simon\Downloads\PapersPlease-0.5.13-Win.zip
2014-01-24 17:54 - 2012-07-19 15:31 - 00000000 ____D () C:\Users\Simon\Documents\Diablo III
2014-01-20 19:26 - 2014-01-20 19:26 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\TuneUp Software
2014-01-20 19:26 - 2014-01-20 19:24 - 00000000 ____D () C:\Users\Simon\Documents\Free Sound Recorder
2014-01-20 19:25 - 2014-01-20 19:25 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-20 19:25 - 2014-01-20 19:24 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\Free Sound Recorder
2014-01-20 19:24 - 2014-01-20 19:24 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\OpenCandy
2014-01-20 19:24 - 2014-01-20 19:23 - 11129456 _____ (Copyright© 2005-2013 FreeSoundRecorder Technologies, Inc. ) C:\Users\Simon\Downloads\FreeSoundRecorder_9.6.1.exe
2014-01-20 19:09 - 2013-10-03 13:13 - 00000000 ____D () C:\Users\Simon\AppData\Roaming\.minecraft
Some content of TEMP:
====================
C:\Users\Simon\AppData\Local\Temp\avgnt.exe
C:\Users\Simon\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Simon\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Simon\AppData\Local\Temp\nvStInst.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-19 13:28
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-02-2014
Ran by Simon at 2014-02-19 16:02:04
Running from C:\Users\Simon\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Avira Free Antivirus (x32 Version: 14.0.2.344 - Avira)
Battle.net (x32 Version: - Blizzard Entertainment)
Battlefield 3™ (x32 Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (x32 Version: 1.1.0.1 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.3.2 - EA Digital Illusions CE AB)
Blobby Volley 2 Version 1.0RC4 (x32 Version: - )
Borderlands 2 (x32 Version: - Gearbox Software)
CCleaner (Version: 4.05 - Piriform)
Counter-Strike: Global Offensive (x32 Version: - Valve)
DayZ (x32 Version: - Bohemia Interactive)
Dead Island (x32 Version: - Techland)
Diablo III (x32 Version: - Blizzard Entertainment)
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
Facebook Video Calling 2.0.0.447 (x32 Version: 2.0.447 - Skype Limited)
Fraps (x32 Version: - )
Free Sound Recorder v9.6.1 (x32 Version: - Copyright(C) 2005-2013 FreeSoundRecorder Technologies, Inc.)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKCU Version: 32.0.1700.107 - Google Inc.)
Google Talk Plugin (x32 Version: 5.1.4.17398 - Google)
Hearthstone (x32 Version: - Blizzard Entertainment)
Logitech Unifying-Software 2.10 (Version: 2.10.37 - Logitech)
LogMeIn Hamachi (x32 Version: 2.2.0.130 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.130 - LogMeIn, Inc.) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 3.1 (x32 Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Maintenance Service (x32 Version: 24.3.0 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 de) (x32 Version: 24.3.0 - Mozilla)
MP3jam 1.1.1.4 (x32 Version: 1.1.1.4 - MP3jam)
Need For Speed™ World (x32 Version: 1.0.0.0 - Electronic Arts)
NVIDIA GeForce Experience 1.8.2.1 (Version: 1.8.2.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 334.89 (Version: 334.89 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden
NVIDIA Update 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.20 (Version: 1.2.20 - NVIDIA Corporation)
OpenOffice 4.0.1 (x32 Version: 4.01.9714 - Apache Software Foundation)
Orcs Must Die! 2 (x32 Version: - Robot Entertainment)
Origin (x32 Version: 9.1.13.85 - Electronic Arts, Inc.)
Portal 2 (x32 Version: - Valve)
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
RollerCoaster Tycoon 2 (x32 Version: - )
RollerCoaster Tycoon 2: Time Twister (x32 Version: 1.00.000 - )
RollerCoaster Tycoon 2: Wacky Worlds (x32 Version: - )
Rust (x32 Version: - Facepunch Studios)
SHIELD Streaming (Version: 1.7.321 - NVIDIA Corporation) Hidden
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Spotify (HKCU Version: 0.9.7.16.g4b197456 - Spotify AB)
Supreme Commander 2 (x32 Version: - Gas Powered Games)
TeamSpeak 3 Client (HKCU Version: 3.0.13.1 - TeamSpeak Systems GmbH)
Titanfall™-Beta (x32 Version: 1.0.0.0 - Electronic Arts)
TmNationsForever (x32 Version: - Nadeo)
Tom Clancy's Splinter Cell Conviction (x32 Version: 1.04.000 - Ubisoft)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.89 - TuneUp Software) Hidden
TuneUp Utilities 2014 (x32 Version: 14.0.1000.89 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.89 - TuneUp Software) Hidden
Uniblue ProcessQuickLink 2 (x32 Version: - Uniblue)
Uplay (x32 Version: 3.2 - Ubisoft)
VLC media player 2.0.7 (Version: 2.0.7 - VideoLAN)
WinRAR 5.00 (64-Bit) (Version: 5.00.0 - win.rar GmbH)
XMedia Recode Version 3.1.7.4 (x32 Version: 3.1.7.4 - XMedia Recode)
==================== Restore Points =========================
17-02-2014 14:31:17 Geplanter Prüfpunkt
17-02-2014 16:15:08 DirectX wurde installiert
18-02-2014 16:59:32 DirectX wurde installiert
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {06E35C5B-468E-4CDD-8227-25962EE9472F} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATTENTION
Task: {176A908F-7BA3-4E94-B55D-D97E461B2170} - System32\Tasks\{AB54399C-777C-49CC-A91B-5A89BDAE6C72} => E:\Online Games\FlatOut2\flatout2.exe [2006-08-04] ()
Task: {1EF03727-59FF-4683-92EE-4FBF7CC3B362} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2013-08-30] (TuneUp Software)
Task: {2596B59D-2AB3-4913-80F6-8BCE318DE4DF} - System32\Tasks\{111B835C-3D56-4D94-AEAF-10E88E8F8EE8} => E:\Online Games\Empire Earth Gold Edition\Empire Earth I\Empire Earth.exe
Task: {530744C8-E4E5-4EAA-B100-C2CD7A3577F1} - System32\Tasks\{134011BE-4658-4604-9DE2-9D1210AAE784} => C:\Program Files (x86)\LucasArts\Star Wars Empire at War Forces of Corruption\LaunchEAWX.exe
Task: {5326D151-ABBE-482B-A589-1913D6CCF677} - System32\Tasks\{2CE0F9C6-C81F-4A36-8031-393E4E797009} => C:\Program Files (x86)\LucasArts\Star Wars Empire at War Forces of Corruption\LaunchEAWX.exe
Task: {566D305B-1F6D-44C6-95FD-1449094E337E} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1353729038-960519232-1093109976-1000
Task: {5F47BBF4-9EE5-49D8-8897-9AC0898D5919} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000Core => C:\Users\Simon\AppData\Local\Google\Update\GoogleUpdate.exe [2013-09-10] (Google Inc.)
Task: {8C5F8782-7236-48F2-9E21-4B9264038C0F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000UA => C:\Users\Simon\AppData\Local\Google\Update\GoogleUpdate.exe [2013-09-10] (Google Inc.)
Task: {9F6BC41D-608F-424D-BE79-8102AF508900} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000Core => C:\Users\Simon\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-11-07] (Facebook Inc.)
Task: {A2745215-DBE2-426A-9FBB-6213A65FF0F1} - System32\Tasks\{1BBFBB65-44A9-4613-ADF7-E05F659BD7F2} => E:\Online Games\Empire Earth Gold Edition\Empire Earth I\Empire Earth.exe
Task: {A312E6EF-3CB6-4C9F-9572-C268586B6290} - System32\Tasks\{9912DB6A-10C2-470D-952D-8571D95F3A5F} => E:\Online Games\FlatOut2\flatout2.exe [2006-08-04] ()
Task: {A7147EB8-CF79-498B-89B9-8AF7EC12F481} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000UA => C:\Users\Simon\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-11-07] (Facebook Inc.)
Task: {A9FCFDA2-0298-43F9-8C5B-8D4F4484508E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {B25045A9-96F7-404F-8259-63CA1647C877} - System32\Tasks\{6B8D68E8-6E13-4BAA-BC09-B6A233C6B355} => E:\Online Games\Empire Earth Gold Edition\Empire Earth I\Empire Earth.exe
Task: {FAC069EE-39C8-44F2-B307-928B9F370A44} - System32\Tasks\{A8D02173-9852-406B-B13F-5636D34AFD2C} => E:\Online Games\Empire Earth Gold Edition\Empire Earth I\Empire Earth.exe
Task: {FC18EC2C-095E-445D-89A4-202237710156} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-04] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000Core.job => C:\Users\Simon\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000UA.job => C:\Users\Simon\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000Core.job => C:\Users\Simon\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1353729038-960519232-1093109976-1000UA.job => C:\Users\Simon\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-02-17 17:00 - 2014-02-08 18:42 - 00117024 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-09-10 21:30 - 2013-10-31 14:45 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-02-18 17:59 - 2014-02-05 10:32 - 00093472 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2014-02-18 17:59 - 2014-02-05 10:32 - 00874784 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2013-09-12 23:02 - 2013-09-12 23:02 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-02-03 19:07 - 2014-02-02 00:41 - 00715592 _____ () C:\Users\Simon\AppData\Local\Google\Chrome\Application\32.0.1700.107\libglesv2.dll
2014-02-03 19:07 - 2014-02-02 00:41 - 00100168 _____ () C:\Users\Simon\AppData\Local\Google\Chrome\Application\32.0.1700.107\libegl.dll
2014-02-03 19:07 - 2014-02-02 00:42 - 04055368 _____ () C:\Users\Simon\AppData\Local\Google\Chrome\Application\32.0.1700.107\pdf.dll
2014-02-03 19:07 - 2014-02-02 00:42 - 00399688 _____ () C:\Users\Simon\AppData\Local\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
2014-02-03 19:07 - 2014-02-02 00:41 - 01634632 _____ () C:\Users\Simon\AppData\Local\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll
2014-02-19 14:55 - 2014-02-19 14:55 - 13632904 _____ () C:\Users\Simon\AppData\Local\Google\Chrome\User Data\PepperFlash\12.0.0.70\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Disabled items from MSCONFIG ==============
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: LMIGuardianSvc => 2
MSCONFIG\Services: OverwolfUpdaterService => 3
MSCONFIG\startupfolder: C:^Users^Simon^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^GameRanger.lnk => C:\Windows\pss\GameRanger.lnk.Startup
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: Facebook Update => "C:\Users\Simon\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/19/2014 02:49:24 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/19/2014 00:59:08 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/19/2014 10:47:05 AM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/19/2014 10:12:23 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/18/2014 07:45:40 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: TitanFall.exe, Version: 1.0.0.0, Zeitstempel: 0x52f59d19
Name des fehlerhaften Moduls: d3d11.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5153b56b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fef69a0c15
ID des fehlerhaften Prozesses: 0x1228
Startzeit der fehlerhaften Anwendung: 0xTitanFall.exe0
Pfad der fehlerhaften Anwendung: TitanFall.exe1
Pfad des fehlerhaften Moduls: TitanFall.exe2
Berichtskennung: TitanFall.exe3
Error: (02/18/2014 06:29:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/18/2014 06:27:01 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: TitanFall.exe, Version: 1.0.0.0, Zeitstempel: 0x52f59d19
Name des fehlerhaften Moduls: d3d11.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5153b56b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fef66e0c15
ID des fehlerhaften Prozesses: 0x168c
Startzeit der fehlerhaften Anwendung: 0xTitanFall.exe0
Pfad der fehlerhaften Anwendung: TitanFall.exe1
Pfad des fehlerhaften Moduls: TitanFall.exe2
Berichtskennung: TitanFall.exe3
Error: (02/18/2014 04:45:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/18/2014 01:45:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/17/2014 06:21:58 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
System errors:
=============
Error: (02/19/2014 10:10:58 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/19/2014 10:10:58 AM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (02/19/2014 10:10:58 AM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (02/18/2014 05:55:48 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst NvNetworkService erreicht.
Error: (02/18/2014 01:44:28 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (02/18/2014 01:44:28 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (02/18/2014 01:44:14 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (02/18/2014 01:44:14 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (02/17/2014 10:59:08 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (02/17/2014 05:14:02 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst NvNetworkService erreicht.
Microsoft Office Sessions:
=========================
Error: (02/19/2014 02:49:24 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/19/2014 00:59:08 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/19/2014 10:47:05 AM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/19/2014 10:12:23 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/18/2014 07:45:40 PM) (Source: Application Error)(User: )
Description: TitanFall.exe1.0.0.052f59d19d3d11.dll_unloaded0.0.0.05153b56bc0000005000007fef69a0c15122801cf2cced468a84dC:\Program Files (x86)\Battlefield 4\Titanfall-Beta\TitanFall.exed3d11.dlldcc3fb4a-98cc-11e3-992f-bc5ff4bd4362
Error: (02/18/2014 06:29:29 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/18/2014 06:27:01 PM) (Source: Application Error)(User: )
Description: TitanFall.exe1.0.0.052f59d19d3d11.dll_unloaded0.0.0.05153b56bc0000005000007fef66e0c15168c01cf2cce6c80caaaC:\Program Files (x86)\Battlefield 4\Titanfall-Beta\TitanFall.exed3d11.dlldff51ebb-98c1-11e3-9167-bc5ff4bd4362
Error: (02/18/2014 04:45:15 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/18/2014 01:45:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/17/2014 06:21:58 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
==================== Memory info ===========================
Percentage of memory in use: 24%
Total physical RAM: 8147.63 MB
Available physical RAM: 6177.25 MB
Total Pagefile: 16293.44 MB
Available Pagefile: 13953.14 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:20.33 GB) NTFS
Drive d: (Multimedia) (Fixed) (Total:97.55 GB) (Free:27.69 GB) NTFS
Drive e: (Spiele) (Fixed) (Total:368.2 GB) (Free:48.51 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: BF5F5623)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 269B269A)
Partition 1: (Not Active) - (Size=466 GB) - (Type=42)
==================== End Of Log ============================
|
|
20.02.2014, 12:25
| #4 | |
| /// the machine /// TB-Ausbilder | csrss key-logger bzw Trojaner im Taskmanager gefundenZitat:
Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
20.02.2014, 14:22
| #5 |
| |  csrss key-logger bzw Trojaner im Taskmanager gefunden Hallo Schrauber Es wurde jeweils keine Malware gefunden, was mich zwar wundert da mein account von einem spiel offensichtlich gehackt wurde, aber ich bedanke mich hiermit vielmals. Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org
Database version: v2014.02.20.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Simon :: BODENEICHEL [administrator]
20.02.2014 12:58:46
mbar-log-2014-02-20 (12-58-46).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 251482
Time elapsed: 5 minute(s), 40 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
21.02.2014, 10:03
| #6 | |
| /// the machine /// TB-Ausbilder | csrss key-logger bzw Trojaner im Taskmanager gefunden TDSSKiller??? Zitat:
__________________ --> csrss key-logger bzw Trojaner im Taskmanager gefunden |
|
21.02.2014, 11:09
| #7 |
| | csrss key-logger bzw Trojaner im Taskmanager gefunden Tut mir leid dachte das waäre auch nicht mehr nötig, da keine objekte gefunden wurden  Code:
ATTFilter 14:16:48.0109 0x0534 TDSS rootkit removing tool 3.0.0.23 Feb 10 2014 23:32:41
14:17:03.0403 0x0534 ============================================================
14:17:03.0403 0x0534 Current date / time: 2014/02/20 14:17:03.0403
14:17:03.0403 0x0534 SystemInfo:
14:17:03.0404 0x0534
14:17:03.0404 0x0534 OS Version: 6.1.7601 ServicePack: 1.0
14:17:03.0404 0x0534 Product type: Workstation
14:17:03.0404 0x0534 ComputerName: BODENEICHEL
14:17:03.0404 0x0534 UserName: Simon
14:17:03.0404 0x0534 Windows directory: C:\Windows
14:17:03.0404 0x0534 System windows directory: C:\Windows
14:17:03.0404 0x0534 Running under WOW64
14:17:03.0404 0x0534 Processor architecture: Intel x64
14:17:03.0404 0x0534 Number of processors: 6
14:17:03.0404 0x0534 Page size: 0x1000
14:17:03.0404 0x0534 Boot type: Normal boot
14:17:03.0404 0x0534 ============================================================
14:17:03.0556 0x0534 KLMD registered as C:\Windows\system32\drivers\92735112.sys
14:17:03.0633 0x0534 System UUID: {363CF78A-0984-EBE1-1CF6-D209438B483E}
14:17:03.0927 0x0534 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:17:03.0927 0x0534 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:17:03.0931 0x0534 ============================================================
14:17:03.0931 0x0534 \Device\Harddisk0\DR0:
14:17:03.0932 0x0534 MBR partitions:
14:17:03.0932 0x0534 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:17:03.0932 0x0534 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
14:17:03.0932 0x0534 \Device\Harddisk1\DR1:
14:17:03.0932 0x0534 MBR partitions:
14:17:03.0932 0x0534 ============================================================
14:17:03.0933 0x0534 C: <-> \Device\Harddisk0\DR0\Partition2
14:17:03.0933 0x0534 ============================================================
14:17:03.0933 0x0534 Initialize success
14:17:03.0933 0x0534 ============================================================
14:17:26.0369 0x0fc0 ============================================================
14:17:26.0370 0x0fc0 Scan started
14:17:26.0370 0x0fc0 Mode: Manual; SigCheck; TDLFS;
14:17:26.0370 0x0fc0 ============================================================
14:17:26.0370 0x0fc0 KSN ping started
14:17:50.0808 0x0fc0 KSN ping finished: true
14:17:51.0045 0x0fc0 ================ Scan system memory ========================
14:17:51.0045 0x0fc0 System memory - ok
14:17:51.0045 0x0fc0 ================ Scan services =============================
14:17:51.0084 0x0fc0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:17:51.0121 0x0fc0 1394ohci - ok
14:17:51.0135 0x0fc0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:17:51.0148 0x0fc0 ACPI - ok
14:17:51.0152 0x0fc0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:17:51.0162 0x0fc0 AcpiPmi - ok
14:17:51.0166 0x0fc0 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:17:51.0175 0x0fc0 AdobeARMservice - ok
14:17:51.0201 0x0fc0 [ C8C6C0D659734FDBF63F6F421A5416BC, 11C452D77D0A8A5E430D0D0C9949797FFC03D2E3DADB8FBB9B63EDA868AFF83C ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:17:51.0212 0x0fc0 AdobeFlashPlayerUpdateSvc - ok
14:17:51.0225 0x0fc0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
14:17:51.0241 0x0fc0 adp94xx - ok
14:17:51.0250 0x0fc0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
14:17:51.0263 0x0fc0 adpahci - ok
14:17:51.0269 0x0fc0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
14:17:51.0280 0x0fc0 adpu320 - ok
14:17:51.0285 0x0fc0 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:17:51.0310 0x0fc0 AeLookupSvc - ok
14:17:51.0322 0x0fc0 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
14:17:51.0340 0x0fc0 AFD - ok
14:17:51.0345 0x0fc0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
14:17:51.0352 0x0fc0 agp440 - ok
14:17:51.0356 0x0fc0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
14:17:51.0366 0x0fc0 ALG - ok
14:17:51.0370 0x0fc0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
14:17:51.0377 0x0fc0 aliide - ok
14:17:51.0380 0x0fc0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
14:17:51.0387 0x0fc0 amdide - ok
14:17:51.0391 0x0fc0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
14:17:51.0400 0x0fc0 AmdK8 - ok
14:17:51.0404 0x0fc0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:17:51.0414 0x0fc0 AmdPPM - ok
14:17:51.0419 0x0fc0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:17:51.0428 0x0fc0 amdsata - ok
14:17:51.0434 0x0fc0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
14:17:51.0444 0x0fc0 amdsbs - ok
14:17:51.0448 0x0fc0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:17:51.0455 0x0fc0 amdxata - ok
14:17:51.0468 0x0fc0 [ 4D282B9C5BB05DF92C9F3977DFB9F916, E6D49ED0D5FA26F2936FC97A0F1DFA38D1066AAF2EEFCE2931AF21B2CBE54CAD ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
14:17:51.0481 0x0fc0 AntiVirSchedulerService - ok
14:17:51.0492 0x0fc0 [ 65AF41A7A2C5B6693E1B4164E7632C3E, BA1DC45D7BB5307BD418D2BDFDBD1DD593439245A0A3F65FE6287F6F5198B999 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
14:17:51.0504 0x0fc0 AntiVirService - ok
14:17:51.0508 0x0fc0 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
14:17:51.0532 0x0fc0 AppID - ok
14:17:51.0535 0x0fc0 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:17:51.0559 0x0fc0 AppIDSvc - ok
14:17:51.0563 0x0fc0 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
14:17:51.0572 0x0fc0 Appinfo - ok
14:17:51.0578 0x0fc0 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
14:17:51.0590 0x0fc0 AppMgmt - ok
14:17:51.0594 0x0fc0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
14:17:51.0603 0x0fc0 arc - ok
14:17:51.0607 0x0fc0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
14:17:51.0616 0x0fc0 arcsas - ok
14:17:51.0628 0x0fc0 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:17:51.0639 0x0fc0 aspnet_state - ok
14:17:51.0642 0x0fc0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:17:51.0666 0x0fc0 AsyncMac - ok
14:17:51.0670 0x0fc0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
14:17:51.0677 0x0fc0 atapi - ok
14:17:51.0692 0x0fc0 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:17:51.0729 0x0fc0 AudioEndpointBuilder - ok
14:17:51.0744 0x0fc0 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:17:51.0780 0x0fc0 AudioSrv - ok
14:17:51.0785 0x0fc0 [ 7806BFCD1D7FA5EC23F7324D4EAFD25B, 4EDFD9DE520728AF6578BED0054ED6A4976A7F020F3329EA6681D6E361D9DB2D ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
14:17:51.0801 0x0fc0 avgntflt - ok
14:17:51.0806 0x0fc0 [ C3A58DBD18786C338126D30BF8C33D72, 4DF4D37AB5139548C2DA4B4C8D6B933A7F4ED001BCA089EFBC8C57EEDE8785A6 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
14:17:51.0815 0x0fc0 avipbb - ok
14:17:51.0818 0x0fc0 [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
14:17:51.0825 0x0fc0 avkmgr - ok
14:17:51.0830 0x0fc0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:17:51.0844 0x0fc0 AxInstSV - ok
14:17:51.0855 0x0fc0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
14:17:51.0873 0x0fc0 b06bdrv - ok
14:17:51.0881 0x0fc0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:17:51.0895 0x0fc0 b57nd60a - ok
14:17:51.0901 0x0fc0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
14:17:51.0911 0x0fc0 BDESVC - ok
14:17:51.0913 0x0fc0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
14:17:51.0936 0x0fc0 Beep - ok
14:17:51.0952 0x0fc0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
14:17:51.0974 0x0fc0 BFE - ok
14:17:51.0993 0x0fc0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
14:17:52.0034 0x0fc0 BITS - ok
14:17:52.0039 0x0fc0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:17:52.0048 0x0fc0 blbdrive - ok
14:17:52.0052 0x0fc0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:17:52.0062 0x0fc0 bowser - ok
14:17:52.0065 0x0fc0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
14:17:52.0075 0x0fc0 BrFiltLo - ok
14:17:52.0078 0x0fc0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
14:17:52.0088 0x0fc0 BrFiltUp - ok
14:17:52.0093 0x0fc0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
14:17:52.0104 0x0fc0 Browser - ok
14:17:52.0112 0x0fc0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:17:52.0127 0x0fc0 Brserid - ok
14:17:52.0130 0x0fc0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:17:52.0141 0x0fc0 BrSerWdm - ok
14:17:52.0144 0x0fc0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:17:52.0154 0x0fc0 BrUsbMdm - ok
14:17:52.0157 0x0fc0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:17:52.0165 0x0fc0 BrUsbSer - ok
14:17:52.0169 0x0fc0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
14:17:52.0180 0x0fc0 BTHMODEM - ok
14:17:52.0185 0x0fc0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
14:17:52.0210 0x0fc0 bthserv - ok
14:17:52.0215 0x0fc0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:17:52.0241 0x0fc0 cdfs - ok
14:17:52.0246 0x0fc0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:17:52.0257 0x0fc0 cdrom - ok
14:17:52.0261 0x0fc0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
14:17:52.0286 0x0fc0 CertPropSvc - ok
14:17:52.0290 0x0fc0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
14:17:52.0300 0x0fc0 circlass - ok
14:17:52.0310 0x0fc0 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
14:17:52.0324 0x0fc0 CLFS - ok
14:17:52.0329 0x0fc0 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:17:52.0337 0x0fc0 clr_optimization_v2.0.50727_32 - ok
14:17:52.0343 0x0fc0 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:17:52.0351 0x0fc0 clr_optimization_v2.0.50727_64 - ok
14:17:52.0360 0x0fc0 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:17:52.0370 0x0fc0 clr_optimization_v4.0.30319_32 - ok
14:17:52.0375 0x0fc0 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:17:52.0387 0x0fc0 clr_optimization_v4.0.30319_64 - ok
14:17:52.0390 0x0fc0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
14:17:52.0399 0x0fc0 CmBatt - ok
14:17:52.0402 0x0fc0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:17:52.0410 0x0fc0 cmdide - ok
14:17:52.0421 0x0fc0 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
14:17:52.0442 0x0fc0 CNG - ok
14:17:52.0445 0x0fc0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
14:17:52.0453 0x0fc0 Compbatt - ok
14:17:52.0456 0x0fc0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
14:17:52.0467 0x0fc0 CompositeBus - ok
14:17:52.0470 0x0fc0 COMSysApp - ok
14:17:52.0473 0x0fc0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
14:17:52.0480 0x0fc0 crcdisk - ok
14:17:52.0487 0x0fc0 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:17:52.0499 0x0fc0 CryptSvc - ok
14:17:52.0511 0x0fc0 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
14:17:52.0530 0x0fc0 CSC - ok
14:17:52.0546 0x0fc0 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
14:17:52.0568 0x0fc0 CscService - ok
14:17:52.0582 0x0fc0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:17:52.0616 0x0fc0 DcomLaunch - ok
14:17:52.0625 0x0fc0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
14:17:52.0655 0x0fc0 defragsvc - ok
14:17:52.0660 0x0fc0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:17:52.0684 0x0fc0 DfsC - ok
14:17:52.0692 0x0fc0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
14:17:52.0707 0x0fc0 Dhcp - ok
14:17:52.0711 0x0fc0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
14:17:52.0734 0x0fc0 discache - ok
14:17:52.0738 0x0fc0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
14:17:52.0747 0x0fc0 Disk - ok
14:17:52.0751 0x0fc0 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
14:17:52.0760 0x0fc0 dmvsc - ok
14:17:52.0766 0x0fc0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:17:52.0778 0x0fc0 Dnscache - ok
14:17:52.0786 0x0fc0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
14:17:52.0813 0x0fc0 dot3svc - ok
14:17:52.0819 0x0fc0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
14:17:52.0845 0x0fc0 DPS - ok
14:17:52.0848 0x0fc0 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:17:52.0856 0x0fc0 drmkaud - ok
14:17:52.0876 0x0fc0 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:17:52.0901 0x0fc0 DXGKrnl - ok
14:17:52.0907 0x0fc0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
14:17:52.0933 0x0fc0 EapHost - ok
14:17:52.0995 0x0fc0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
14:17:53.0073 0x0fc0 ebdrv - ok
14:17:53.0081 0x0fc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
14:17:53.0090 0x0fc0 EFS - ok
14:17:53.0105 0x0fc0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:17:53.0128 0x0fc0 ehRecvr - ok
14:17:53.0133 0x0fc0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
14:17:53.0144 0x0fc0 ehSched - ok
14:17:53.0156 0x0fc0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
14:17:53.0173 0x0fc0 elxstor - ok
14:17:53.0177 0x0fc0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:17:53.0185 0x0fc0 ErrDev - ok
14:17:53.0190 0x0fc0 [ 3DBC10CBC436288801FAEE66DE91AE47, CE50732C43AEB8ACF977DF7CF609C88CB022E596EBE0C0AA9DDBC4D6BB25B804 ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
14:17:53.0199 0x0fc0 EtronHub3 - ok
14:17:53.0203 0x0fc0 [ DE261095A2220D400D9603E1E42D4185, F5C4493EDCE92EC46BC7940764F719131FE27AE695201EDF143D678881CD239D ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
14:17:53.0212 0x0fc0 EtronXHCI - ok
14:17:53.0224 0x0fc0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
14:17:53.0256 0x0fc0 EventSystem - ok
14:17:53.0262 0x0fc0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
14:17:53.0289 0x0fc0 exfat - ok
14:17:53.0296 0x0fc0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:17:53.0323 0x0fc0 fastfat - ok
14:17:53.0338 0x0fc0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
14:17:53.0361 0x0fc0 Fax - ok
14:17:53.0365 0x0fc0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
14:17:53.0374 0x0fc0 fdc - ok
14:17:53.0377 0x0fc0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
14:17:53.0400 0x0fc0 fdPHost - ok
14:17:53.0404 0x0fc0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
14:17:53.0428 0x0fc0 FDResPub - ok
14:17:53.0433 0x0fc0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:17:53.0440 0x0fc0 FileInfo - ok
14:17:53.0443 0x0fc0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:17:53.0467 0x0fc0 Filetrace - ok
14:17:53.0471 0x0fc0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
14:17:53.0479 0x0fc0 flpydisk - ok
14:17:53.0487 0x0fc0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:17:53.0499 0x0fc0 FltMgr - ok
14:17:53.0522 0x0fc0 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
14:17:53.0555 0x0fc0 FontCache - ok
14:17:53.0560 0x0fc0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:17:53.0566 0x0fc0 FontCache3.0.0.0 - ok
14:17:53.0570 0x0fc0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:17:53.0578 0x0fc0 FsDepends - ok
14:17:53.0588 0x0fc0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:17:53.0595 0x0fc0 Fs_Rec - ok
14:17:53.0602 0x0fc0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:17:53.0615 0x0fc0 fvevol - ok
14:17:53.0619 0x0fc0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
14:17:53.0628 0x0fc0 gagp30kx - ok
14:17:53.0645 0x0fc0 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
14:17:53.0684 0x0fc0 gpsvc - ok
14:17:53.0689 0x0fc0 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
14:17:53.0696 0x0fc0 hamachi - ok
14:17:53.0739 0x0fc0 [ 55706A31E8E2E67763ECD10F19CC3449, C3AC7243B56B0420EBBC0E0D7DDA5D602A2C88349963B23101E49D456EED7A2D ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
14:17:53.0786 0x0fc0 Hamachi2Svc - ok
14:17:53.0793 0x0fc0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:17:53.0801 0x0fc0 hcw85cir - ok
14:17:53.0811 0x0fc0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:17:53.0827 0x0fc0 HdAudAddService - ok
14:17:53.0832 0x0fc0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:17:53.0844 0x0fc0 HDAudBus - ok
14:17:53.0848 0x0fc0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
14:17:53.0856 0x0fc0 HidBatt - ok
14:17:53.0861 0x0fc0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
14:17:53.0872 0x0fc0 HidBth - ok
14:17:53.0876 0x0fc0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
14:17:53.0886 0x0fc0 HidIr - ok
14:17:53.0890 0x0fc0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
14:17:53.0915 0x0fc0 hidserv - ok
14:17:53.0918 0x0fc0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:17:53.0926 0x0fc0 HidUsb - ok
14:17:53.0930 0x0fc0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:17:53.0955 0x0fc0 hkmsvc - ok
14:17:53.0962 0x0fc0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:17:53.0975 0x0fc0 HomeGroupListener - ok
14:17:53.0981 0x0fc0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:17:53.0994 0x0fc0 HomeGroupProvider - ok
14:17:53.0998 0x0fc0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:17:54.0006 0x0fc0 HpSAMD - ok
14:17:54.0022 0x0fc0 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:17:54.0060 0x0fc0 HTTP - ok
14:17:54.0065 0x0fc0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:17:54.0072 0x0fc0 hwpolicy - ok
14:17:54.0076 0x0fc0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:17:54.0086 0x0fc0 i8042prt - ok
14:17:54.0097 0x0fc0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:17:54.0111 0x0fc0 iaStorV - ok
14:17:54.0129 0x0fc0 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:17:54.0151 0x0fc0 idsvc - ok
14:17:54.0155 0x0fc0 IEEtwCollectorService - ok
14:17:54.0158 0x0fc0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
14:17:54.0166 0x0fc0 iirsp - ok
14:17:54.0184 0x0fc0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
14:17:54.0211 0x0fc0 IKEEXT - ok
14:17:54.0216 0x0fc0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
14:17:54.0224 0x0fc0 intelide - ok
14:17:54.0228 0x0fc0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
14:17:54.0237 0x0fc0 intelppm - ok
14:17:54.0242 0x0fc0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:17:54.0268 0x0fc0 IPBusEnum - ok
14:17:54.0272 0x0fc0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:17:54.0295 0x0fc0 IpFilterDriver - ok
14:17:54.0308 0x0fc0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:17:54.0328 0x0fc0 iphlpsvc - ok
14:17:54.0333 0x0fc0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:17:54.0343 0x0fc0 IPMIDRV - ok
14:17:54.0347 0x0fc0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:17:54.0373 0x0fc0 IPNAT - ok
14:17:54.0376 0x0fc0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:17:54.0388 0x0fc0 IRENUM - ok
14:17:54.0390 0x0fc0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:17:54.0398 0x0fc0 isapnp - ok
14:17:54.0406 0x0fc0 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:17:54.0418 0x0fc0 iScsiPrt - ok
14:17:54.0422 0x0fc0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:17:54.0430 0x0fc0 kbdclass - ok
14:17:54.0433 0x0fc0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:17:54.0442 0x0fc0 kbdhid - ok
14:17:54.0445 0x0fc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
14:17:54.0453 0x0fc0 KeyIso - ok
14:17:54.0458 0x0fc0 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:17:54.0467 0x0fc0 KSecDD - ok
14:17:54.0472 0x0fc0 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:17:54.0482 0x0fc0 KSecPkg - ok
14:17:54.0486 0x0fc0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:17:54.0509 0x0fc0 ksthunk - ok
14:17:54.0518 0x0fc0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
14:17:54.0550 0x0fc0 KtmRm - ok
14:17:54.0557 0x0fc0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:17:54.0585 0x0fc0 LanmanServer - ok
14:17:54.0590 0x0fc0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:17:54.0616 0x0fc0 LanmanWorkstation - ok
14:17:54.0621 0x0fc0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:17:54.0645 0x0fc0 lltdio - ok
14:17:54.0653 0x0fc0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:17:54.0683 0x0fc0 lltdsvc - ok
14:17:54.0686 0x0fc0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:17:54.0712 0x0fc0 lmhosts - ok
14:17:54.0722 0x0fc0 [ 206D1495952A86E30CC997EA10A68A6C, 27020706A93B776FF3C839F7130B9D864C5BD2F401367C3E4D7729C968986B98 ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
14:17:54.0734 0x0fc0 LMIGuardianSvc - ok
14:17:54.0740 0x0fc0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
14:17:54.0749 0x0fc0 LSI_FC - ok
14:17:54.0754 0x0fc0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
14:17:54.0763 0x0fc0 LSI_SAS - ok
14:17:54.0767 0x0fc0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
14:17:54.0775 0x0fc0 LSI_SAS2 - ok
14:17:54.0779 0x0fc0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
14:17:54.0788 0x0fc0 LSI_SCSI - ok
14:17:54.0793 0x0fc0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
14:17:54.0818 0x0fc0 luafv - ok
14:17:54.0823 0x0fc0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:17:54.0833 0x0fc0 Mcx2Svc - ok
14:17:54.0836 0x0fc0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
14:17:54.0844 0x0fc0 megasas - ok
14:17:54.0852 0x0fc0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
14:17:54.0863 0x0fc0 MegaSR - ok
14:17:54.0867 0x0fc0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
14:17:54.0893 0x0fc0 MMCSS - ok
14:17:54.0896 0x0fc0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
14:17:54.0920 0x0fc0 Modem - ok
14:17:54.0923 0x0fc0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:17:54.0933 0x0fc0 monitor - ok
14:17:54.0937 0x0fc0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:17:54.0945 0x0fc0 mouclass - ok
14:17:54.0948 0x0fc0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:17:54.0956 0x0fc0 mouhid - ok
14:17:54.0961 0x0fc0 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:17:54.0970 0x0fc0 mountmgr - ok
14:17:54.0974 0x0fc0 [ C956DFD0C0BC91625EC4193579488054, E8DF121B4A95EF87143584267857E675EF6875FB3828E53C691548967EEA528D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:17:54.0983 0x0fc0 MozillaMaintenance - ok
14:17:54.0988 0x0fc0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
14:17:54.0998 0x0fc0 mpio - ok
14:17:55.0002 0x0fc0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:17:55.0026 0x0fc0 mpsdrv - ok
14:17:55.0044 0x0fc0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:17:55.0083 0x0fc0 MpsSvc - ok
14:17:55.0090 0x0fc0 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:17:55.0101 0x0fc0 MRxDAV - ok
14:17:55.0107 0x0fc0 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:17:55.0117 0x0fc0 mrxsmb - ok
14:17:55.0126 0x0fc0 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:17:55.0139 0x0fc0 mrxsmb10 - ok
14:17:55.0144 0x0fc0 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:17:55.0155 0x0fc0 mrxsmb20 - ok
14:17:55.0158 0x0fc0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
14:17:55.0165 0x0fc0 msahci - ok
14:17:55.0171 0x0fc0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:17:55.0180 0x0fc0 msdsm - ok
14:17:55.0185 0x0fc0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
14:17:55.0198 0x0fc0 MSDTC - ok
14:17:55.0203 0x0fc0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:17:55.0227 0x0fc0 Msfs - ok
14:17:55.0230 0x0fc0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:17:55.0253 0x0fc0 mshidkmdf - ok
14:17:55.0256 0x0fc0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:17:55.0264 0x0fc0 msisadrv - ok
14:17:55.0269 0x0fc0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:17:55.0296 0x0fc0 MSiSCSI - ok
14:17:55.0299 0x0fc0 msiserver - ok
14:17:55.0302 0x0fc0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:17:55.0327 0x0fc0 MSKSSRV - ok
14:17:55.0330 0x0fc0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:17:55.0354 0x0fc0 MSPCLOCK - ok
14:17:55.0357 0x0fc0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:17:55.0380 0x0fc0 MSPQM - ok
14:17:55.0389 0x0fc0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:17:55.0403 0x0fc0 MsRPC - ok
14:17:55.0408 0x0fc0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
14:17:55.0415 0x0fc0 mssmbios - ok
14:17:55.0418 0x0fc0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:17:55.0441 0x0fc0 MSTEE - ok
14:17:55.0444 0x0fc0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
14:17:55.0453 0x0fc0 MTConfig - ok
14:17:55.0457 0x0fc0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
14:17:55.0466 0x0fc0 Mup - ok
14:17:55.0477 0x0fc0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
14:17:55.0510 0x0fc0 napagent - ok
14:17:55.0519 0x0fc0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:17:55.0537 0x0fc0 NativeWifiP - ok
14:17:55.0558 0x0fc0 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
14:17:55.0582 0x0fc0 NDIS - ok
14:17:55.0587 0x0fc0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:17:55.0611 0x0fc0 NdisCap - ok
14:17:55.0614 0x0fc0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:17:55.0638 0x0fc0 NdisTapi - ok
14:17:55.0641 0x0fc0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:17:55.0664 0x0fc0 Ndisuio - ok
14:17:55.0670 0x0fc0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:17:55.0696 0x0fc0 NdisWan - ok
14:17:55.0700 0x0fc0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:17:55.0724 0x0fc0 NDProxy - ok
14:17:55.0727 0x0fc0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:17:55.0751 0x0fc0 NetBIOS - ok
14:17:55.0758 0x0fc0 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:17:55.0785 0x0fc0 NetBT - ok
14:17:55.0789 0x0fc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe
14:17:55.0797 0x0fc0 Netlogon - ok
14:17:55.0806 0x0fc0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
14:17:55.0837 0x0fc0 Netman - ok
14:17:55.0842 0x0fc0 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:17:55.0853 0x0fc0 NetMsmqActivator - ok
14:17:55.0858 0x0fc0 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:17:55.0868 0x0fc0 NetPipeActivator - ok
14:17:55.0879 0x0fc0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
14:17:55.0913 0x0fc0 netprofm - ok
14:17:55.0929 0x0fc0 [ F3A1D8B7317939813568992D1BFDDE37, 816829E4B8DF5C6A2B09685ED45E844D8DE2C2721C90490A2957227025D057A0 ] netr7364 C:\Windows\system32\DRIVERS\netr7364.sys
14:17:55.0949 0x0fc0 netr7364 - ok
14:17:55.0954 0x0fc0 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:17:55.0965 0x0fc0 NetTcpActivator - ok
14:17:55.0970 0x0fc0 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:17:55.0980 0x0fc0 NetTcpPortSharing - ok
14:17:55.0984 0x0fc0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
14:17:55.0992 0x0fc0 nfrd960 - ok
14:17:55.0999 0x0fc0 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:17:56.0014 0x0fc0 NlaSvc - ok
14:17:56.0018 0x0fc0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:17:56.0041 0x0fc0 Npfs - ok
14:17:56.0044 0x0fc0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
14:17:56.0068 0x0fc0 nsi - ok
14:17:56.0071 0x0fc0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:17:56.0095 0x0fc0 nsiproxy - ok
14:17:56.0130 0x0fc0 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:17:56.0167 0x0fc0 Ntfs - ok
14:17:56.0172 0x0fc0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
14:17:56.0195 0x0fc0 Null - ok
14:17:56.0202 0x0fc0 [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
14:17:56.0212 0x0fc0 NVHDA - ok
14:17:56.0436 0x0fc0 [ 52B33E12FF8C9E219CAEC1BB4A5F5E4C, 5272178B39FEDB3F001249FE7C852787EFD715FC49BBAAE58158A189AFB8A337 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:17:56.0675 0x0fc0 nvlddmkm - ok
14:17:56.0733 0x0fc0 [ D2FE0376285A783693469422678E878B, 9F0B1A6694CA7BDAAA3B26BE1D344A3FC7B98162518A259C273360EFF075CD75 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
14:17:56.0769 0x0fc0 NvNetworkService - ok
14:17:56.0777 0x0fc0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:17:56.0786 0x0fc0 nvraid - ok
14:17:56.0792 0x0fc0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:17:56.0802 0x0fc0 nvstor - ok
14:17:57.0126 0x0fc0 [ 4F0E2990DB12849D428DE7B0AC5D92B9, 77A058EFFE07E46F0DFF419DC1C204C245598E6A6F6EDFF545802D9C1573EAA0 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
14:17:57.0455 0x0fc0 NvStreamSvc - ok
14:17:57.0501 0x0fc0 [ 2B47EDD27365F9F5D8E87648BECF52C4, CADA4B19791441373580919FFF89623489C7A1737857760B96CC3F0A08DB8D59 ] nvsvc C:\Windows\system32\nvvsvc.exe
14:17:57.0526 0x0fc0 nvsvc - ok
14:17:57.0530 0x0fc0 [ 939C0FAE9CC0CDD69E6508BDE4C11FE5, 1E82FF4A8797A0EC5DF0E54DE7F358542C73FFFBECADDF86ED66839182E3B55D ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
14:17:57.0537 0x0fc0 nvvad_WaveExtensible - ok
14:17:57.0542 0x0fc0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:17:57.0551 0x0fc0 nv_agp - ok
14:17:57.0555 0x0fc0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:17:57.0565 0x0fc0 ohci1394 - ok
14:17:57.0573 0x0fc0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:17:57.0589 0x0fc0 p2pimsvc - ok
14:17:57.0600 0x0fc0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
14:17:57.0617 0x0fc0 p2psvc - ok
14:17:57.0622 0x0fc0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
14:17:57.0632 0x0fc0 Parport - ok
14:17:57.0636 0x0fc0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:17:57.0644 0x0fc0 partmgr - ok
14:17:57.0650 0x0fc0 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
14:17:57.0666 0x0fc0 PcaSvc - ok
14:17:57.0673 0x0fc0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
14:17:57.0682 0x0fc0 pci - ok
14:17:57.0685 0x0fc0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
14:17:57.0693 0x0fc0 pciide - ok
14:17:57.0699 0x0fc0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
14:17:57.0710 0x0fc0 pcmcia - ok
14:17:57.0714 0x0fc0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
14:17:57.0722 0x0fc0 pcw - ok
14:17:57.0736 0x0fc0 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:17:57.0773 0x0fc0 PEAUTH - ok
14:17:57.0801 0x0fc0 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
14:17:57.0839 0x0fc0 PeerDistSvc - ok
14:17:57.0864 0x0fc0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:17:57.0874 0x0fc0 PerfHost - ok
14:17:57.0906 0x0fc0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
14:17:57.0958 0x0fc0 pla - ok
14:17:57.0970 0x0fc0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:17:57.0988 0x0fc0 PlugPlay - ok
14:17:57.0991 0x0fc0 PnkBstrA - ok
14:17:57.0994 0x0fc0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:17:58.0003 0x0fc0 PNRPAutoReg - ok
14:17:58.0011 0x0fc0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:17:58.0027 0x0fc0 PNRPsvc - ok
14:17:58.0039 0x0fc0 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:17:58.0071 0x0fc0 PolicyAgent - ok
14:17:58.0079 0x0fc0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
14:17:58.0107 0x0fc0 Power - ok
14:17:58.0112 0x0fc0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:17:58.0136 0x0fc0 PptpMiniport - ok
14:17:58.0140 0x0fc0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
14:17:58.0150 0x0fc0 Processor - ok
14:17:58.0156 0x0fc0 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
14:17:58.0169 0x0fc0 ProfSvc - ok
14:17:58.0172 0x0fc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
14:17:58.0181 0x0fc0 ProtectedStorage - ok
14:17:58.0186 0x0fc0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:17:58.0211 0x0fc0 Psched - ok
14:17:58.0242 0x0fc0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
14:17:58.0277 0x0fc0 ql2300 - ok
14:17:58.0284 0x0fc0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
14:17:58.0293 0x0fc0 ql40xx - ok
14:17:58.0300 0x0fc0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
14:17:58.0317 0x0fc0 QWAVE - ok
14:17:58.0321 0x0fc0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:17:58.0334 0x0fc0 QWAVEdrv - ok
14:17:58.0337 0x0fc0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:17:58.0360 0x0fc0 RasAcd - ok
14:17:58.0364 0x0fc0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:17:58.0389 0x0fc0 RasAgileVpn - ok
14:17:58.0393 0x0fc0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
14:17:58.0420 0x0fc0 RasAuto - ok
14:17:58.0426 0x0fc0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:17:58.0452 0x0fc0 Rasl2tp - ok
14:17:58.0461 0x0fc0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
14:17:58.0491 0x0fc0 RasMan - ok
14:17:58.0496 0x0fc0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:17:58.0522 0x0fc0 RasPppoe - ok
14:17:58.0526 0x0fc0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:17:58.0551 0x0fc0 RasSstp - ok
14:17:58.0559 0x0fc0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:17:58.0588 0x0fc0 rdbss - ok
14:17:58.0592 0x0fc0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:17:58.0602 0x0fc0 rdpbus - ok
14:17:58.0605 0x0fc0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:17:58.0628 0x0fc0 RDPCDD - ok
14:17:58.0635 0x0fc0 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
14:17:58.0646 0x0fc0 RDPDR - ok
14:17:58.0649 0x0fc0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:17:58.0673 0x0fc0 RDPENCDD - ok
14:17:58.0677 0x0fc0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:17:58.0700 0x0fc0 RDPREFMP - ok
14:17:58.0704 0x0fc0 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
14:17:58.0713 0x0fc0 RdpVideoMiniport - ok
14:17:58.0720 0x0fc0 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:17:58.0732 0x0fc0 RDPWD - ok
14:17:58.0739 0x0fc0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:17:58.0749 0x0fc0 rdyboost - ok
14:17:58.0754 0x0fc0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:17:58.0780 0x0fc0 RemoteAccess - ok
14:17:58.0786 0x0fc0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:17:58.0813 0x0fc0 RemoteRegistry - ok
14:17:58.0817 0x0fc0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:17:58.0842 0x0fc0 RpcEptMapper - ok
14:17:58.0845 0x0fc0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
14:17:58.0854 0x0fc0 RpcLocator - ok
14:17:58.0866 0x0fc0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
14:17:58.0899 0x0fc0 RpcSs - ok
14:17:58.0904 0x0fc0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:17:58.0928 0x0fc0 rspndr - ok
14:17:58.0940 0x0fc0 [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
14:17:58.0955 0x0fc0 RTL8167 - ok
14:17:58.0958 0x0fc0 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
14:17:58.0966 0x0fc0 s3cap - ok
14:17:58.0969 0x0fc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe
14:17:58.0977 0x0fc0 SamSs - ok
14:17:58.0982 0x0fc0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:17:58.0990 0x0fc0 sbp2port - ok
14:17:58.0997 0x0fc0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:17:59.0025 0x0fc0 SCardSvr - ok
14:17:59.0028 0x0fc0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:17:59.0051 0x0fc0 scfilter - ok
14:17:59.0074 0x0fc0 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
14:17:59.0122 0x0fc0 Schedule - ok
14:17:59.0127 0x0fc0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
14:17:59.0151 0x0fc0 SCPolicySvc - ok
14:17:59.0157 0x0fc0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:17:59.0169 0x0fc0 SDRSVC - ok
14:17:59.0172 0x0fc0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:17:59.0196 0x0fc0 secdrv - ok
14:17:59.0199 0x0fc0 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
14:17:59.0223 0x0fc0 seclogon - ok
14:17:59.0227 0x0fc0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
14:17:59.0254 0x0fc0 SENS - ok
14:17:59.0258 0x0fc0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:17:59.0267 0x0fc0 SensrSvc - ok
14:17:59.0270 0x0fc0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
14:17:59.0278 0x0fc0 Serenum - ok
14:17:59.0283 0x0fc0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
14:17:59.0293 0x0fc0 Serial - ok
14:17:59.0296 0x0fc0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
14:17:59.0304 0x0fc0 sermouse - ok
14:17:59.0313 0x0fc0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
14:17:59.0338 0x0fc0 SessionEnv - ok
14:17:59.0341 0x0fc0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:17:59.0351 0x0fc0 sffdisk - ok
14:17:59.0354 0x0fc0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:17:59.0365 0x0fc0 sffp_mmc - ok
14:17:59.0368 0x0fc0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:17:59.0378 0x0fc0 sffp_sd - ok
14:17:59.0381 0x0fc0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
14:17:59.0389 0x0fc0 sfloppy - ok
14:17:59.0398 0x0fc0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:17:59.0429 0x0fc0 SharedAccess - ok
14:17:59.0439 0x0fc0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:17:59.0470 0x0fc0 ShellHWDetection - ok
14:17:59.0474 0x0fc0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
14:17:59.0482 0x0fc0 SiSRaid2 - ok
14:17:59.0486 0x0fc0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
14:17:59.0494 0x0fc0 SiSRaid4 - ok
14:17:59.0500 0x0fc0 [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
14:17:59.0511 0x0fc0 SkypeUpdate - ok
14:17:59.0516 0x0fc0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:17:59.0541 0x0fc0 Smb - ok
14:17:59.0546 0x0fc0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:17:59.0555 0x0fc0 SNMPTRAP - ok
14:17:59.0558 0x0fc0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
14:17:59.0566 0x0fc0 spldr - ok
14:17:59.0579 0x0fc0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
14:17:59.0599 0x0fc0 Spooler - ok
14:17:59.0666 0x0fc0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
14:17:59.0764 0x0fc0 sppsvc - ok
14:17:59.0773 0x0fc0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:17:59.0798 0x0fc0 sppuinotify - ok
14:17:59.0810 0x0fc0 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
14:17:59.0827 0x0fc0 srv - ok
14:17:59.0838 0x0fc0 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:17:59.0854 0x0fc0 srv2 - ok
14:17:59.0860 0x0fc0 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:17:59.0871 0x0fc0 srvnet - ok
14:17:59.0877 0x0fc0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:17:59.0905 0x0fc0 SSDPSRV - ok
14:17:59.0910 0x0fc0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:17:59.0935 0x0fc0 SstpSvc - ok
14:17:59.0948 0x0fc0 [ 5FFDA96330357A914A69D79BE1988A38, E2A03A8D108C210B1111E2466E3DD381F0FA440B95B5013DC728EAD9CFE448AF ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
14:17:59.0964 0x0fc0 Steam Client Service - ok
14:17:59.0968 0x0fc0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
14:17:59.0975 0x0fc0 stexstor - ok
14:17:59.0989 0x0fc0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
14:18:00.0014 0x0fc0 stisvc - ok
14:18:00.0018 0x0fc0 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
14:18:00.0026 0x0fc0 storflt - ok
14:18:00.0029 0x0fc0 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
14:18:00.0038 0x0fc0 StorSvc - ok
14:18:00.0041 0x0fc0 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
14:18:00.0049 0x0fc0 storvsc - ok
14:18:00.0052 0x0fc0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
14:18:00.0059 0x0fc0 swenum - ok
14:18:00.0071 0x0fc0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
14:18:00.0106 0x0fc0 swprv - ok
14:18:00.0142 0x0fc0 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
14:18:00.0191 0x0fc0 SysMain - ok
14:18:00.0198 0x0fc0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:18:00.0212 0x0fc0 TabletInputService - ok
14:18:00.0221 0x0fc0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
14:18:00.0252 0x0fc0 TapiSrv - ok
14:18:00.0256 0x0fc0 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
14:18:00.0282 0x0fc0 TBS - ok
14:18:00.0319 0x0fc0 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:18:00.0362 0x0fc0 Tcpip - ok
14:18:00.0401 0x0fc0 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:18:00.0445 0x0fc0 TCPIP6 - ok
14:18:00.0452 0x0fc0 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:18:00.0461 0x0fc0 tcpipreg - ok
14:18:00.0465 0x0fc0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:18:00.0474 0x0fc0 TDPIPE - ok
14:18:00.0477 0x0fc0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:18:00.0485 0x0fc0 TDTCP - ok
14:18:00.0490 0x0fc0 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:18:00.0515 0x0fc0 tdx - ok
14:18:00.0520 0x0fc0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
14:18:00.0528 0x0fc0 TermDD - ok
14:18:00.0544 0x0fc0 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
14:18:00.0581 0x0fc0 TermService - ok
14:18:00.0586 0x0fc0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
14:18:00.0599 0x0fc0 Themes - ok
14:18:00.0603 0x0fc0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
14:18:00.0629 0x0fc0 THREADORDER - ok
14:18:00.0634 0x0fc0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
14:18:00.0661 0x0fc0 TrkWks - ok
14:18:00.0666 0x0fc0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:18:00.0693 0x0fc0 TrustedInstaller - ok
14:18:00.0698 0x0fc0 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:18:00.0707 0x0fc0 tssecsrv - ok
14:18:00.0711 0x0fc0 [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:18:00.0720 0x0fc0 TsUsbFlt - ok
14:18:00.0723 0x0fc0 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
14:18:00.0732 0x0fc0 TsUsbGD - ok
14:18:00.0773 0x0fc0 [ 63369F518E7EF571033DA16DCCA4B2A1, 52A7F4FF59C3EA6092ECF7F1E54D2FB5C3285FE0C3107BD8E78625AF9AE2EB76 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
14:18:00.0819 0x0fc0 TuneUp.UtilitiesSvc - ok
14:18:00.0825 0x0fc0 [ 45427C4B8CAC6B241478F149B935CD80, 7F772D6D00D1ADD394F5907804661C75780EE9F8DF21EF0719D3E4ABA00092B7 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys
14:18:00.0832 0x0fc0 TuneUpUtilitiesDrv - ok
14:18:00.0837 0x0fc0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:18:00.0862 0x0fc0 tunnel - ok
14:18:00.0866 0x0fc0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
14:18:00.0875 0x0fc0 uagp35 - ok
14:18:00.0884 0x0fc0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:18:00.0913 0x0fc0 udfs - ok
14:18:00.0919 0x0fc0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:18:00.0930 0x0fc0 UI0Detect - ok
14:18:00.0933 0x0fc0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:18:00.0941 0x0fc0 uliagpkx - ok
14:18:00.0945 0x0fc0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:18:00.0955 0x0fc0 umbus - ok
14:18:00.0958 0x0fc0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
14:18:00.0966 0x0fc0 UmPass - ok
14:18:00.0973 0x0fc0 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
14:18:00.0986 0x0fc0 UmRdpService - ok
14:18:00.0995 0x0fc0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
14:18:01.0027 0x0fc0 upnphost - ok
14:18:01.0032 0x0fc0 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:18:01.0042 0x0fc0 usbccgp - ok
14:18:01.0047 0x0fc0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:18:01.0057 0x0fc0 usbcir - ok
14:18:01.0060 0x0fc0 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:18:01.0069 0x0fc0 usbehci - ok
14:18:01.0079 0x0fc0 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:18:01.0094 0x0fc0 usbhub - ok
14:18:01.0097 0x0fc0 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
14:18:01.0105 0x0fc0 usbohci - ok
14:18:01.0109 0x0fc0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
14:18:01.0119 0x0fc0 usbprint - ok
14:18:01.0124 0x0fc0 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:18:01.0133 0x0fc0 USBSTOR - ok
14:18:01.0137 0x0fc0 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:18:01.0146 0x0fc0 usbuhci - ok
14:18:01.0149 0x0fc0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
14:18:01.0175 0x0fc0 UxSms - ok
14:18:01.0178 0x0fc0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe
14:18:01.0186 0x0fc0 VaultSvc - ok
14:18:01.0189 0x0fc0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:18:01.0197 0x0fc0 vdrvroot - ok
14:18:01.0210 0x0fc0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
14:18:01.0245 0x0fc0 vds - ok
14:18:01.0249 0x0fc0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:18:01.0259 0x0fc0 vga - ok
14:18:01.0263 0x0fc0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
14:18:01.0287 0x0fc0 VgaSave - ok
14:18:01.0294 0x0fc0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:18:01.0305 0x0fc0 vhdmp - ok
14:18:01.0308 0x0fc0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
14:18:01.0315 0x0fc0 viaide - ok
14:18:01.0321 0x0fc0 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
14:18:01.0332 0x0fc0 vmbus - ok
14:18:01.0335 0x0fc0 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
14:18:01.0343 0x0fc0 VMBusHID - ok
14:18:01.0347 0x0fc0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:18:01.0355 0x0fc0 volmgr - ok
14:18:01.0365 0x0fc0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:18:01.0378 0x0fc0 volmgrx - ok
14:18:01.0387 0x0fc0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:18:01.0399 0x0fc0 volsnap - ok
14:18:01.0405 0x0fc0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
14:18:01.0415 0x0fc0 vsmraid - ok
14:18:01.0447 0x0fc0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
14:18:01.0505 0x0fc0 VSS - ok
14:18:01.0511 0x0fc0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:18:01.0521 0x0fc0 vwifibus - ok
14:18:01.0525 0x0fc0 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:18:01.0538 0x0fc0 vwififlt - ok
14:18:01.0548 0x0fc0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
14:18:01.0580 0x0fc0 W32Time - ok
14:18:01.0585 0x0fc0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
14:18:01.0594 0x0fc0 WacomPen - ok
14:18:01.0598 0x0fc0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:18:01.0623 0x0fc0 WANARP - ok
14:18:01.0626 0x0fc0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:18:01.0650 0x0fc0 Wanarpv6 - ok
14:18:01.0680 0x0fc0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
14:18:01.0721 0x0fc0 wbengine - ok
14:18:01.0730 0x0fc0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:18:01.0746 0x0fc0 WbioSrvc - ok
14:18:01.0756 0x0fc0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:18:01.0776 0x0fc0 wcncsvc - ok
14:18:01.0780 0x0fc0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:18:01.0789 0x0fc0 WcsPlugInService - ok
14:18:01.0793 0x0fc0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
14:18:01.0800 0x0fc0 Wd - ok
14:18:01.0817 0x0fc0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:18:01.0840 0x0fc0 Wdf01000 - ok
14:18:01.0845 0x0fc0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:18:01.0859 0x0fc0 WdiServiceHost - ok
14:18:01.0863 0x0fc0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:18:01.0877 0x0fc0 WdiSystemHost - ok
14:18:01.0884 0x0fc0 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
14:18:01.0898 0x0fc0 WebClient - ok
14:18:01.0905 0x0fc0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:18:01.0934 0x0fc0 Wecsvc - ok
14:18:01.0938 0x0fc0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:18:01.0964 0x0fc0 wercplsupport - ok
14:18:01.0969 0x0fc0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
14:18:01.0994 0x0fc0 WerSvc - ok
14:18:01.0997 0x0fc0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:18:02.0020 0x0fc0 WfpLwf - ok
14:18:02.0024 0x0fc0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:18:02.0031 0x0fc0 WIMMount - ok
14:18:02.0033 0x0fc0 WinDefend - ok
14:18:02.0038 0x0fc0 WinHttpAutoProxySvc - ok
14:18:02.0048 0x0fc0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:18:02.0076 0x0fc0 Winmgmt - ok
14:18:02.0116 0x0fc0 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
14:18:02.0183 0x0fc0 WinRM - ok
14:18:02.0192 0x0fc0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:18:02.0203 0x0fc0 WinUsb - ok
14:18:02.0223 0x0fc0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
14:18:02.0254 0x0fc0 Wlansvc - ok
14:18:02.0258 0x0fc0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:18:02.0267 0x0fc0 WmiAcpi - ok
14:18:02.0275 0x0fc0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:18:02.0287 0x0fc0 wmiApSrv - ok
14:18:02.0289 0x0fc0 WMPNetworkSvc - ok
14:18:02.0293 0x0fc0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:18:02.0302 0x0fc0 WPCSvc - ok
14:18:02.0306 0x0fc0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:18:02.0318 0x0fc0 WPDBusEnum - ok
14:18:02.0321 0x0fc0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:18:02.0345 0x0fc0 ws2ifsl - ok
14:18:02.0350 0x0fc0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
14:18:02.0364 0x0fc0 wscsvc - ok
14:18:02.0366 0x0fc0 WSearch - ok
14:18:02.0414 0x0fc0 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
14:18:02.0468 0x0fc0 wuauserv - ok
14:18:02.0482 0x0fc0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:18:02.0492 0x0fc0 WudfPf - ok
14:18:02.0498 0x0fc0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:18:02.0510 0x0fc0 WUDFRd - ok
14:18:02.0515 0x0fc0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:18:02.0525 0x0fc0 wudfsvc - ok
14:18:02.0532 0x0fc0 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
14:18:02.0546 0x0fc0 WwanSvc - ok
14:18:02.0555 0x0fc0 ================ Scan global ===============================
14:18:02.0558 0x0fc0 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
14:18:02.0565 0x0fc0 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:18:02.0576 0x0fc0 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:18:02.0583 0x0fc0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
14:18:02.0592 0x0fc0 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
14:18:02.0598 0x0fc0 [ Global ] - ok
14:18:02.0598 0x0fc0 ================ Scan MBR ==================================
14:18:02.0599 0x0fc0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:18:02.0655 0x0fc0 \Device\Harddisk0\DR0 - ok
14:18:02.0659 0x0fc0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
14:18:02.0749 0x0fc0 \Device\Harddisk1\DR1 - ok
14:18:02.0750 0x0fc0 ================ Scan VBR ==================================
14:18:02.0754 0x0fc0 [ FAA6CC801EA3791B5A9898B5D320F1E3 ] \Device\Harddisk0\DR0\Partition1
14:18:02.0756 0x0fc0 \Device\Harddisk0\DR0\Partition1 - ok
14:18:02.0760 0x0fc0 [ 3154DB5F19CB9C6FCFA86ACA8BB2A752 ] \Device\Harddisk0\DR0\Partition2
14:18:02.0761 0x0fc0 \Device\Harddisk0\DR0\Partition2 - ok
14:18:02.0762 0x0fc0 Waiting for KSN requests completion. In queue: 292
14:18:03.0762 0x0fc0 Waiting for KSN requests completion. In queue: 292
14:18:04.0762 0x0fc0 Waiting for KSN requests completion. In queue: 292
14:18:05.0807 0x0fc0 Win FW state via NFP2: enabled
14:18:08.0193 0x0fc0 ============================================================
14:18:08.0193 0x0fc0 Scan finished
14:18:08.0193 0x0fc0 ============================================================
14:18:08.0208 0x0734 Detected object count: 0
14:18:08.0208 0x0734 Actual detected object count: 0
14:19:09.0724 0x0c98 Deinitialize success
|
|
22.02.2014, 13:20
| #8 |
| /// the machine /// TB-Ausbilder | csrss key-logger bzw Trojaner im Taskmanager gefunden alles gut
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu csrss key-logger bzw Trojaner im Taskmanager gefunden |
| antivir, avira, avira antivir, bekannte, csrss, entfernt, erfahrungen, gefangen, gefunde, gen, gleichzeitig, helfer, keylogger, passwörter, programm, rechner, schädliche, speicher, taskmanager, troja, trojaner, unbekannte, vollständige, überprüfe, überprüfen |
Linear-Darstellung
