| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Win7 friert in unregelmäßigen Zeiten einWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
30.10.2015, 09:25
| #1 |
 |  Win7 friert in unregelmäßigen Zeiten ein Guten Morgen  Brauche dringend hilfe, bin echt am verzweifeln Mein PC friert einfach so ein, ma passiert es nach 1 einer Stunde oder nach paar minuten nach dem hochfahren, oder jetzt die Tage lief er den ganzen Tag ohne irgendwelche Freezes und dann irgendwann friert er ein.Mauszeiger/Tastatur lässt sich nicht mehr bedienen, Videos oder Musik die noch laufen bleiben auch stehen. Mir ist aufgefallen das wenn der PC sich aufhängt, die LED Status lampe dann nicht mehr blinkt/leuchtet. Hab meinen Computer schon in einen PC laden abgegeben( 39Euro) bezahlt damit die ma nachschauen können was es sein kann. Es kam raus,dass die Hardware alles ok ist, Graka und festplatte auch. Die meinten nur zu mir ich soll mein betriebssystem nochma neu installieren. Problem bestand weiter hin.....  Nachner Zeit bekam ich Bluescreens, womit ich aber die Fehler die da waren beheben konnte, dank Bluescreenview Tool. Hab schon folgendes probiert: PC frei gemacht von Staub. Festplatte und Arbeitsspeicher auf Fehler prüfen lassen. Win 7 neu Installiert. Bios resetet und neu aktualisiert. Temperaturen geprüft von der Grafikkarte und Prozessor mit dem Programm Speedfan und CPUID CPU-Z. Mit Antimalewarebytes und GData nach Viren geprüft ( Tiefe suche )nix gefunden. War schon im Ereignisprotokole drauf und habe das hier immer wieder als Meldungen, nach dem Freeze. Danke wenn mir jemand helfen könnte ) |
|
30.10.2015, 09:40
| #2 |
| /// the machine /// TB-Ausbilder    | Win7 friert in unregelmäßigen Zeiten ein hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
30.10.2015, 14:56
| #3 |
| | Win7 friert in unregelmäßigen Zeiten ein Mein Viren Programm (GDATA) meldet warnung ,dass dieses programm bösartig ist. Oder beim starten von FRST kommt auch Haftungsausschuss meldung soll ich trotzdem fortfahren.?
__________________ |
|
30.10.2015, 21:26
| #4 |
| /// the machine /// TB-Ausbilder | Win7 friert in unregelmäßigen Zeiten ein GDATA abschalten, ist ein Fehlalarm. Und Haftungsausschluss ist normal, der muss angezeigt werden
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
30.10.2015, 22:13
| #5 |
| | Win7 friert in unregelmäßigen Zeiten ein FRST Editor FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-10-2015
durchgeführt von Rudolf (Administrator) auf RUDOLF-PC (30-10-2015 22:07:18)
Gestartet von C:\Users\Rudolf\Desktop
Geladene Profile: Rudolf (Verfügbare Profile: Rudolf)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser nicht gefunden!)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forum
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(brother Industries Ltd) C:\Windows\SysWOW64\brsvc01a.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe
(brother Industries Ltd) C:\Windows\SysWOW64\brss01a.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
(G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
() C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Awesomium Technologies) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\awesomium_process.exe
(Awesomium Technologies) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\awesomium_process.exe
(Awesomium Technologies) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\awesomium_process.exe
(René's Homepage) C:\Users\Rudolf\Downloads\SnippingToolPlusv3-4-1-0\Snipping Tool Plus.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5119600 2012-05-11] (VIA)
HKLM-x32\...\Run: [GDFirewallTray] => C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe [1855608 2015-02-20] (G DATA Software AG)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe,c:\program files (x86)\g data\internetsecurity\avkkid\avkcks.exe
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-21-3733161408-756724473-978087059-1000\...\MountPoints2: {280b72ef-53ab-11e5-a53f-902b349b2f15} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3733161408-756724473-978087059-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1E0E9B76-BD97-4BBB-B236-9D1A82EF0FB8}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{FCB6E279-4A8C-4218-866A-07C26C27CAE9}: [DhcpNameServer] 7.254.254.254
Internet Explorer:
==================
HKU\S-1-5-21-3733161408-756724473-978087059-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-10-13] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL => Keine Datei
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-10-13] (Oracle Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\h6t4hxe4.default
FF Homepage: Google
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.79.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-10-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.79.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2015-10-13] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-10-03] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-10-03] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\h6t4hxe4.default\user.js [2015-10-25]
FF user.js: detected! => C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\f2z8a3w2.dev-edition-default\user.js [2015-10-25]
FF Extension: HTTPS-Everywhere - C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\h6t4hxe4.default\Extensions\https-everywhere-eff@eff.org [2015-10-21]
FF Extension: Video DownloadHelper - C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\h6t4hxe4.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-03]
FF Extension: Adblock Plus - C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\h6t4hxe4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-24]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\f2z8a3w2.dev-edition-default\Extensions\ascsurfingprotection@iobit.com [2015-10-25] [ist nicht signiert]
FF Extension: HTTPS-Everywhere - C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\f2z8a3w2.dev-edition-default\Extensions\https-everywhere-eff@eff.org [2015-10-21]
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-05]
CHR Extension: (Google Docs) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-05]
CHR Extension: (Google Drive) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google-Suche) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Tabellen) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-05]
CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-05]
CHR Extension: (Google Mail) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-05]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-09-19] ()
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2527864 2015-03-04] (G Data Software AG)
R2 AVKService; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe [965240 2015-02-20] (G Data Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [3672560 2015-04-07] (G Data Software AG)
R2 Brother XP spl Service; C:\Windows\SysWOW64\brsvc01a.exe [57344 2004-06-13] (brother Industries Ltd)
R3 GDFwSvc; C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [3193080 2015-02-20] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [789112 2015-03-04] (G Data Software AG)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [805840 2015-09-26] (Tunngle.net GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2015-10-26] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [60104 2014-09-19] (Advanced Micro Devices)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [150016 2015-10-29] (G Data Software AG)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB64.sys [27648 2015-10-29] (G Data Software AG)
R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [20992 2015-10-29] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [230400 2015-10-29] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [75776 2015-10-29] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [64512 2015-10-29] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [106272 2015-10-29] (G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [124928 2015-10-29] (G Data Software AG)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-10-26] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 atillk64; \??\C:\Program Files (x86)\AMD\System Monitor\atillk64.sys [X]
S3 EtronHub3; System32\Drivers\EtronHub3.sys [X]
S3 EtronXHCI; System32\Drivers\EtronXHCI.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-30 22:07 - 2015-10-30 22:07 - 00014600 _____ C:\Users\Rudolf\Desktop\FRST.txt
2015-10-30 19:18 - 2015-10-30 19:18 - 00000292 _____ C:\Windows\PFRO.log
2015-10-30 14:52 - 2015-10-30 22:07 - 00000000 ____D C:\FRST
2015-10-30 14:45 - 2015-10-30 14:45 - 02198016 _____ (Farbar) C:\Users\Rudolf\Desktop\FRST64.exe
2015-10-30 14:45 - 2015-10-30 14:45 - 01701888 _____ (Farbar) C:\Users\Rudolf\Desktop\FRST.exe
2015-10-30 06:33 - 2015-10-30 06:33 - 00852049 _____ (Neil Jedrzejewski & Ryan Gregg ) C:\Users\Rudolf\Downloads\vtfedit125-11.exe
2015-10-29 23:06 - 2015-10-29 23:06 - 00074024 _____ C:\Users\Rudolf\AppData\Local\GDIPFONTCACHEV1.DAT
2015-10-29 16:13 - 2015-10-30 19:47 - 00000921 _____ C:\Windows\setupact.log
2015-10-29 16:13 - 2015-10-29 16:14 - 00329080 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-29 16:13 - 2015-10-29 16:13 - 00000000 _____ C:\Windows\setuperr.log
2015-10-29 15:57 - 2015-10-29 15:57 - 00106272 _____ (G Data Software) C:\Windows\system32\Drivers\GRD.sys
2015-10-29 15:57 - 2015-10-29 15:57 - 00018160 _____ (G Data Software) C:\Windows\system32\Drivers\GdPhyMem.sys
2015-10-29 15:51 - 2015-10-29 15:51 - 00001264 _____ C:\Users\Rudolf\Desktop\Revo Uninstaller.lnk
2015-10-29 15:51 - 2015-10-29 15:51 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-10-29 13:50 - 2015-10-29 13:50 - 00075776 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2015-10-29 13:50 - 2015-10-29 13:50 - 00064512 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2015-10-29 13:50 - 2015-10-29 13:50 - 00027648 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBB64.sys
2015-10-29 13:50 - 2015-10-29 13:50 - 00020992 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBFlt64.sys
2015-10-29 13:50 - 2015-10-29 13:50 - 00002050 _____ C:\Users\Public\Desktop\G DATA INTERNET SECURITY.lnk
2015-10-29 13:50 - 2015-10-29 13:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA INTERNET SECURITY
2015-10-29 13:49 - 2015-10-29 13:49 - 00230400 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2015-10-29 13:49 - 2015-10-29 13:49 - 00150016 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2015-10-29 13:49 - 2015-10-29 13:49 - 00124928 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2015-10-28 17:31 - 2015-10-28 17:31 - 00001073 _____ C:\Users\Rudolf\Desktop\Jodix Free WMA to MP3 Converter.lnk
2015-10-28 17:31 - 2015-10-28 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jodix
2015-10-28 17:31 - 2015-10-28 17:31 - 00000000 ____D C:\Program Files (x86)\Free WMA to MP3 Converter
2015-10-28 15:27 - 2015-10-28 16:53 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\freac
2015-10-26 22:19 - 2015-10-26 22:19 - 00986368 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2015-10-26 22:19 - 2015-10-26 22:19 - 00100000 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2015-10-26 22:12 - 2015-10-26 22:12 - 00000000 ____D C:\Windows\system32\SRSLabs
2015-10-26 22:12 - 2015-10-26 22:12 - 00000000 ____D C:\Program Files\VIA
2015-10-26 22:11 - 2015-10-26 22:11 - 27646720 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64H.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 03322368 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 01985024 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO264.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 01845424 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 01713664 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO232.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 01161336 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaKaraokeApo.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 01013504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00884400 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00879616 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO64.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 00739328 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO32.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 00689840 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys
2015-10-26 22:11 - 2015-10-26 22:11 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00619520 _____ (Creative Technology Ltd.) C:\Windows\system32\VMTHX64.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 00554496 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMTHX32.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64H.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00388096 _____ (Creative Technology Ltd.) C:\Windows\system32\VMWRP64.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 00248952 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64H.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00123512 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaKaraokePropPageExt.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64H.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00095352 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00092280 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00086016 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64H.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00070776 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\VtSrdAPO.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00057856 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPLD64.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 00055416 _____ (TODO: <Company name>) C:\Windows\system32\PropPageExt.dll
2015-10-26 22:11 - 2015-10-26 22:11 - 00053760 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPCN64.DLL
2015-10-26 22:11 - 2015-10-26 22:11 - 00033456 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\VMfilt64.sys
2015-10-26 22:11 - 2015-10-26 22:11 - 00027768 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViakaraokeSrv.exe
2015-10-26 22:03 - 2015-10-29 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-10-26 22:03 - 2015-10-29 12:56 - 00003246 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2015-10-26 22:03 - 2015-10-29 12:56 - 00002878 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Rudolf)
2015-10-26 22:03 - 2015-10-26 22:03 - 00026528 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2015-10-26 21:52 - 2014-01-17 03:54 - 00000000 ____D C:\Users\Rudolf\Downloads\chipset_win
2015-10-25 18:19 - 2015-10-25 18:19 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\ProductData
2015-10-25 18:18 - 2015-10-29 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-10-25 18:18 - 2015-10-26 22:04 - 00000000 ____D C:\Users\Rudolf\AppData\LocalLow\IObit
2015-10-25 18:18 - 2015-10-26 22:04 - 00000000 ____D C:\ProgramData\ProductData
2015-10-25 18:18 - 2015-10-25 18:18 - 00003188 _____ C:\Windows\System32\Tasks\ASC8_PerformanceMonitor
2015-10-25 18:18 - 2015-10-25 18:18 - 00002908 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Rudolf
2015-10-25 18:18 - 2015-10-25 18:18 - 00002876 _____ C:\Windows\System32\Tasks\ASC8_SkipUac_Rudolf
2015-10-25 18:18 - 2015-10-25 18:18 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2015-10-25 18:18 - 2015-10-25 18:18 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Apple Computer
2015-10-25 18:18 - 2015-10-25 18:18 - 00000000 ____D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-10-25 18:17 - 2015-10-29 21:26 - 00000000 ____D C:\Program Files (x86)\IObit
2015-10-25 18:17 - 2015-10-26 22:03 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\IObit
2015-10-25 18:17 - 2015-10-26 22:03 - 00000000 ____D C:\ProgramData\IObit
2015-10-25 16:15 - 2015-10-25 16:15 - 00000796 _____ C:\Users\Public\Desktop\Speccy.lnk
2015-10-25 16:15 - 2015-10-25 16:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-10-25 16:15 - 2015-10-25 16:15 - 00000000 ____D C:\Program Files\Speccy
2015-10-25 16:12 - 2015-10-25 16:12 - 00000000 ____D C:\Users\Rudolf\Downloads\CrystalDiskInfo6_5_2
2015-10-25 14:59 - 2015-10-25 14:59 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\René's Homepage
2015-10-25 14:59 - 2015-10-25 14:59 - 00000000 ____D C:\Users\Rudolf\AppData\Local\René's Homepage
2015-10-25 14:59 - 2015-10-25 14:59 - 00000000 ____D C:\ProgramData\René's Homepage
2015-10-25 14:58 - 2015-10-25 14:58 - 00000000 ____D C:\Users\Rudolf\Downloads\SnippingToolPlusv3-4-1-0
2015-10-25 10:44 - 2015-10-25 10:44 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-10-25 04:55 - 2015-10-25 04:55 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\LibreOffice
2015-10-21 14:16 - 2015-10-21 14:16 - 00000991 _____ C:\Users\Public\Desktop\FRITZ!fax.lnk
2015-10-21 14:16 - 2015-10-21 14:16 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\FRITZ!fax für FRITZ!Box
2015-10-21 14:16 - 2015-10-21 14:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!
2015-10-21 14:16 - 2015-10-21 14:16 - 00000000 ____D C:\ProgramData\ISDNWatch
2015-10-21 13:40 - 2015-10-21 13:51 - 00001468 _____ C:\Users\Public\Desktop\LibreOffice 5.0.lnk
2015-10-21 13:40 - 2015-10-21 13:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
2015-10-21 13:39 - 2015-10-21 13:40 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2015-10-21 11:07 - 2015-09-14 20:45 - 03210240 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-10-21 11:06 - 2015-10-21 11:06 - 00001912 _____ C:\Windows\epplauncher.mif
2015-10-21 10:55 - 2015-10-21 10:55 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Thunderbird
2015-10-21 10:55 - 2015-10-21 10:55 - 00000000 ____D C:\Users\Rudolf\AppData\Local\Thunderbird
2015-10-17 22:47 - 2015-10-17 22:47 - 00000000 ____D C:\Intel
2015-10-17 16:01 - 2015-10-27 21:16 - 00000000 ____D C:\ProgramData\Tunngle
2015-10-17 16:01 - 2015-10-17 16:02 - 00000000 ____D C:\Program Files (x86)\Tunngle
2015-10-17 16:01 - 2015-10-17 16:01 - 00000991 _____ C:\Users\Public\Desktop\Tunngle.lnk
2015-10-17 16:01 - 2015-10-17 16:01 - 00000000 ____D C:\Users\Public\Documents\Tunngle
2015-10-17 16:01 - 2015-10-17 16:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2015-10-17 16:01 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys
2015-10-17 15:33 - 2015-10-29 19:46 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Tunngle
2015-10-17 15:33 - 2015-10-17 16:01 - 00003554 _____ C:\Windows\System32\Tasks\SidebarExecute
2015-10-17 15:33 - 2015-10-17 15:33 - 00000000 ____D C:\Users\Rudolf\Documents\Tunngle
2015-10-17 04:26 - 2015-10-17 04:26 - 00002956 _____ C:\Windows\System32\Tasks\{E8980F47-B6E8-478D-812D-B165E156EFFA}
2015-10-17 04:26 - 2015-10-17 04:26 - 00002956 _____ C:\Windows\System32\Tasks\{A3355BA2-348C-44D4-876B-9F2D5ECEE689}
2015-10-16 22:26 - 2015-10-16 22:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-10-16 19:22 - 2015-10-16 19:22 - 00000000 ____D C:\Users\Rudolf\Downloads\mflpro
2015-10-16 19:18 - 2015-10-16 22:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-14 13:29 - 2015-09-18 20:31 - 00391784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-10-14 13:29 - 2015-09-18 19:58 - 00345688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-10-14 13:29 - 2015-09-16 05:48 - 25851904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 13:29 - 2015-09-16 05:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-14 13:29 - 2015-09-16 05:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 13:29 - 2015-09-16 05:22 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-10-14 13:29 - 2015-09-16 05:21 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-14 13:29 - 2015-09-16 05:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 13:29 - 2015-09-16 05:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-14 13:29 - 2015-09-16 05:21 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-10-14 13:29 - 2015-09-16 05:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-10-14 13:29 - 2015-09-16 05:14 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-14 13:29 - 2015-09-16 05:13 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-10-14 13:29 - 2015-09-16 05:10 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-14 13:29 - 2015-09-16 05:09 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 13:29 - 2015-09-16 05:08 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 13:29 - 2015-09-16 05:08 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-10-14 13:29 - 2015-09-16 05:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-14 13:29 - 2015-09-16 05:08 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-10-14 13:29 - 2015-09-16 05:01 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 13:29 - 2015-09-16 04:58 - 20357632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-10-14 13:29 - 2015-09-16 04:58 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-14 13:29 - 2015-09-16 04:50 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 13:29 - 2015-09-16 04:46 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-10-14 13:29 - 2015-09-16 04:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-10-14 13:29 - 2015-09-16 04:45 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-14 13:29 - 2015-09-16 04:43 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-14 13:29 - 2015-09-16 04:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-10-14 13:29 - 2015-09-16 04:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-10-14 13:29 - 2015-09-16 04:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-10-14 13:29 - 2015-09-16 04:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-10-14 13:29 - 2015-09-16 04:32 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-10-14 13:29 - 2015-09-16 04:31 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-10-14 13:29 - 2015-09-16 04:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-10-14 13:29 - 2015-09-16 04:29 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-14 13:29 - 2015-09-16 04:29 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-10-14 13:29 - 2015-09-16 04:28 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-10-14 13:29 - 2015-09-16 04:28 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-10-14 13:29 - 2015-09-16 04:26 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-14 13:29 - 2015-09-16 04:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-10-14 13:29 - 2015-09-16 04:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-10-14 13:29 - 2015-09-16 04:24 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-10-14 13:29 - 2015-09-16 04:23 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-10-14 13:29 - 2015-09-16 04:22 - 14458368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 13:29 - 2015-09-16 04:22 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-10-14 13:29 - 2015-09-16 04:22 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-10-14 13:29 - 2015-09-16 04:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-10-14 13:29 - 2015-09-16 04:11 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-14 13:29 - 2015-09-16 04:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-10-14 13:29 - 2015-09-16 04:07 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-10-14 13:29 - 2015-09-16 04:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-10-14 13:29 - 2015-09-16 04:05 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-10-14 13:29 - 2015-09-16 04:05 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-10-14 13:29 - 2015-09-16 04:04 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-10-14 13:29 - 2015-09-16 03:59 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-14 13:29 - 2015-09-16 03:58 - 12853760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-10-14 13:29 - 2015-09-16 03:58 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-10-14 13:29 - 2015-09-16 03:56 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-10-14 13:29 - 2015-09-16 03:55 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-10-14 13:29 - 2015-09-16 03:55 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-10-14 13:29 - 2015-09-16 03:48 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-10-14 13:29 - 2015-09-16 03:37 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-10-14 13:29 - 2015-09-16 03:34 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-10-14 13:29 - 2015-09-16 03:32 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-10-14 13:20 - 2015-08-06 19:04 - 14176768 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 13:20 - 2015-08-06 19:03 - 01866752 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-14 13:20 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-10-14 13:20 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-10-14 13:16 - 2015-10-01 19:06 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-10-14 13:16 - 2015-10-01 19:04 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-10-14 13:16 - 2015-10-01 19:00 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 13:16 - 2015-10-01 19:00 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-14 13:16 - 2015-10-01 19:00 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-14 13:16 - 2015-10-01 19:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-14 13:16 - 2015-10-01 19:00 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 13:16 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-10-14 13:16 - 2015-10-01 18:00 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-14 13:16 - 2015-09-29 04:16 - 05569472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 13:16 - 2015-09-29 04:13 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-14 13:16 - 2015-09-29 04:11 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-14 13:16 - 2015-09-29 04:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-10-14 13:16 - 2015-09-29 04:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-10-14 13:16 - 2015-09-29 04:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-10-14 13:16 - 2015-09-29 04:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-14 13:16 - 2015-09-29 04:11 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-14 13:16 - 2015-09-29 04:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-14 13:16 - 2015-09-29 04:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-14 13:16 - 2015-09-29 04:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-10-14 13:16 - 2015-09-29 04:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-14 13:16 - 2015-09-29 04:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-10-14 13:16 - 2015-09-29 04:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-10-14 13:16 - 2015-09-29 04:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-14 13:16 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-10-14 13:16 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-10-14 13:16 - 2015-09-29 04:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-10-14 13:16 - 2015-09-29 04:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-10-14 13:16 - 2015-09-29 04:02 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 04:01 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-10-14 13:16 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-10-14 13:16 - 2015-09-29 03:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-10-14 13:16 - 2015-09-29 03:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-10-14 13:16 - 2015-09-29 03:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-10-14 13:16 - 2015-09-29 03:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-10-14 13:16 - 2015-09-29 03:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-10-14 13:16 - 2015-09-29 03:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-10-14 13:16 - 2015-09-29 03:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-10-14 13:16 - 2015-09-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-10-14 13:16 - 2015-09-29 03:57 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-10-14 13:16 - 2015-09-29 03:57 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-10-14 13:16 - 2015-09-29 03:57 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-10-14 13:16 - 2015-09-29 03:57 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-10-14 13:16 - 2015-09-29 03:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-10-14 13:16 - 2015-09-29 03:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 03:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 02:50 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-10-14 13:16 - 2015-09-29 02:49 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-14 13:16 - 2015-09-29 02:49 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-10-14 13:16 - 2015-09-29 02:43 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-10-14 13:16 - 2015-09-29 02:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-10-14 13:16 - 2015-09-29 02:40 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 02:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 02:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-10-14 13:16 - 2015-09-29 02:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-10-14 13:16 - 2015-09-15 19:17 - 00157016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-10-14 13:16 - 2015-09-15 19:17 - 00097112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-14 13:16 - 2015-09-15 19:11 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-10-14 13:16 - 2015-09-15 19:11 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-10-14 13:16 - 2015-09-15 19:11 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-10-14 13:16 - 2015-09-15 19:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-14 13:16 - 2015-09-15 19:11 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-14 13:16 - 2015-09-15 19:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-14 13:16 - 2015-09-15 19:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-14 13:16 - 2015-09-15 18:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-10-14 13:16 - 2015-09-15 18:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-10-14 13:16 - 2015-09-15 18:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-10-14 13:16 - 2015-09-15 18:35 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-10-13 12:29 - 2015-10-13 12:29 - 00000000 ____D C:\Users\Rudolf\.android
2015-10-13 09:10 - 2015-10-13 09:10 - 00000000 ____D C:\ProgramData\Oracle
2015-10-13 09:09 - 2015-10-13 09:09 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-10-13 09:09 - 2015-10-13 09:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-10-13 09:09 - 2015-10-13 09:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-10-13 09:09 - 2015-10-13 09:09 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-10-13 09:09 - 2015-10-13 09:09 - 00000000 ____D C:\ProgramData\Sun
2015-10-13 09:09 - 2015-10-13 09:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-12 17:29 - 2015-10-25 02:01 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\NVIDIA
2015-10-12 16:42 - 2015-10-12 17:04 - 122677242 _____ C:\Users\Rudolf\Downloads\luxmark-windows64-v3.1.zip
2015-10-12 16:17 - 2015-10-12 16:17 - 00155895 _____ C:\Users\Rudolf\Documents\Strom.odt
2015-10-12 16:04 - 2015-10-12 16:05 - 00008187 _____ C:\Users\Rudolf\Documents\Sally.odt
2015-10-12 15:58 - 2015-10-12 15:58 - 00000000 _____ C:\Users\Rudolf\Sti_Trace.log
2015-10-12 15:51 - 2015-10-15 16:40 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-12 15:46 - 2015-10-15 16:40 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-12 15:46 - 2015-10-12 15:46 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-10-12 15:46 - 2015-10-12 15:46 - 00000000 ____D C:\Users\Rudolf\AppData\LocalLow\Adobe
2015-10-12 15:45 - 2015-10-12 15:46 - 00000000 ____D C:\ProgramData\Adobe
2015-10-12 15:45 - 2015-10-12 15:45 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-10-12 15:35 - 2015-10-13 09:14 - 00156172 _____ C:\Users\Rudolf\Documents\Kündigung.odt
2015-10-12 15:27 - 2015-10-16 19:24 - 00000000 ____D C:\Program Files\paint.net
2015-10-12 15:27 - 2015-10-12 15:28 - 00000000 ____D C:\Users\Rudolf\AppData\Local\paint.net
2015-10-12 15:19 - 2015-10-12 15:19 - 00000000 ____D C:\Users\Rudolf\Documents\Fax
2015-10-12 15:08 - 2015-10-12 15:08 - 00020237 _____ C:\Users\Rudolf\Documents\Nutzungsvertragskündigung.odt
2015-10-12 14:45 - 2015-10-25 04:55 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\StarOffice8
2015-10-12 14:45 - 2015-10-16 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarOffice 8
2015-10-12 14:45 - 2015-10-12 14:45 - 00000000 ____D C:\Program Files (x86)\Sun
2015-10-12 14:44 - 2015-10-13 09:09 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-12 14:44 - 2015-10-12 14:44 - 00006094 _____ C:\Windows\SysWOW64\jupdate-1.6.0_04-b12.log
2015-10-12 14:44 - 2015-10-12 14:44 - 00000000 ____D C:\Users\Rudolf\AppData\LocalLow\Sun
2015-10-12 14:38 - 2015-10-12 14:42 - 00011259 _____ C:\Users\Rudolf\gsview64.ini
2015-10-12 14:38 - 2015-10-12 14:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2015-10-12 14:38 - 2015-10-12 14:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostgum
2015-10-12 14:38 - 2015-10-12 14:38 - 00000000 ____D C:\Program Files\gs
2015-10-12 14:38 - 2015-10-12 14:38 - 00000000 ____D C:\Program Files\Ghostgum
2015-10-12 14:35 - 2015-10-12 14:35 - 00000000 ___RD C:\Users\Rudolf\AppData\Roaming\Brother
2015-10-12 14:25 - 2015-10-12 14:25 - 00000241 _____ C:\Windows\Brpfx04a.ini
2015-10-12 14:25 - 2015-10-12 14:25 - 00000093 _____ C:\Windows\brpcfx.ini
2015-10-12 14:25 - 2015-10-12 14:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2015-10-12 14:24 - 2015-10-12 14:24 - 00000425 _____ C:\Windows\BRWMARK.INI
2015-10-12 14:24 - 2015-10-12 14:24 - 00000184 _____ C:\Windows\SysWOW64\brsvc01a.bsi
2015-10-12 14:24 - 2015-10-12 14:24 - 00000030 _____ C:\Windows\SysWOW64\brss01a.ini
2015-10-12 14:24 - 2015-10-12 14:24 - 00000027 _____ C:\Windows\BRPP2KA.INI
2015-10-12 14:23 - 2015-10-12 14:23 - 00000050 _____ C:\Windows\system32\bridf05a.dat
2015-10-12 14:23 - 2015-10-12 14:23 - 00000000 ____D C:\Program Files (x86)\Brother
2015-10-12 14:23 - 2009-07-21 23:00 - 00045056 _____ (brother Industries Ltd) C:\Windows\SysWOW64\brss01a.exe
2015-10-12 14:23 - 2009-07-21 15:24 - 00179200 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrWia09a.dll
2015-10-12 14:23 - 2009-02-24 09:37 - 00050176 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrUsi09a.dll
2015-10-12 14:23 - 2009-01-15 18:20 - 00003072 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2S.dll
2015-10-12 14:23 - 2008-10-17 19:04 - 00179712 ____N (Brother Industries, Ltd.) C:\Windows\system32\BrfxDA5b.dll
2015-10-12 14:23 - 2008-06-17 14:33 - 00167936 ____N (brother) C:\Windows\SysWOW64\NSSearch.dll
2015-10-12 14:23 - 2007-12-13 21:16 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2.dll
2015-10-12 14:23 - 2007-12-13 21:16 - 00005632 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2L.dll
2015-10-12 14:23 - 2006-12-28 12:39 - 00176128 ____N (Brother Industries, Ltd.) C:\Windows\SysWOW64\BroSNMP.dll
2015-10-12 14:23 - 2006-10-30 23:00 - 00188928 _____ (Brother Industries,ltd) C:\Windows\system32\bsplmz01.exe
2015-10-12 14:23 - 2005-04-24 23:00 - 00161280 _____ (Brother Industries, Ltd) C:\Windows\system32\bsplmz01.dll
2015-10-12 14:23 - 2004-06-13 23:00 - 00057344 _____ (brother Industries Ltd) C:\Windows\SysWOW64\brsvc01a.exe
2015-10-12 14:23 - 2003-11-28 17:57 - 00000000 _____ C:\Windows\brdfxspd.dat
2015-10-12 14:22 - 2015-10-12 14:22 - 00000000 ____D C:\ProgramData\Brother
2015-10-12 14:18 - 2015-10-12 14:18 - 00000000 ____D C:\Users\Rudolf\Downloads\Brother
2015-10-12 13:52 - 2015-10-21 14:16 - 00000000 ____D C:\Users\Rudolf\AppData\Local\FRITZ!
2015-10-12 13:52 - 2015-10-12 13:57 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\FRITZ!
2015-10-12 13:52 - 2006-02-23 11:16 - 00047616 _____ (TODO: <Company name>) C:\Windows\system32\AvmColorFax.dll
2015-10-12 13:52 - 2006-02-23 10:35 - 00020480 _____ C:\Windows\system32\FritzColorPort64.dll
2015-10-12 13:52 - 2006-02-22 09:53 - 00043520 _____ (TODO: <Company name>) C:\Windows\system32\AvmFax.dll
2015-10-12 13:52 - 2006-02-22 09:51 - 00027136 _____ (AVM Berlin GmbH) C:\Windows\system32\FriDru64.dll
2015-10-12 13:52 - 2006-02-22 09:39 - 00020480 _____ C:\Windows\system32\FritzPort64.dll
2015-10-12 13:51 - 2015-10-21 14:16 - 00000000 ____D C:\Program Files (x86)\FRITZ!
2015-10-12 13:51 - 2007-09-07 09:05 - 00505136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2015-10-12 13:51 - 2007-09-07 09:05 - 00492848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll
2015-10-12 13:51 - 2007-09-07 09:05 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2015-10-12 13:51 - 2007-09-07 09:05 - 00349488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2015-10-12 13:51 - 2007-09-07 09:04 - 01066288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71.dll
2015-10-12 13:51 - 2007-09-07 09:04 - 00980272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2015-10-12 13:51 - 2007-09-07 09:04 - 00970032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2015-10-12 13:51 - 2007-09-07 09:04 - 00070960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71DEU.DLL
2015-10-12 13:51 - 2007-09-07 09:04 - 00060208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll
2015-10-12 13:51 - 1998-11-17 11:44 - 00328704 _____ (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe
2015-10-12 13:38 - 2015-10-12 13:42 - 47255216 _____ C:\Users\Rudolf\Downloads\fritzbox-labor_7490-31540.zip
2015-10-12 13:29 - 2015-09-25 19:07 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-10-12 13:29 - 2015-09-25 19:07 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-12 13:29 - 2015-09-25 19:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-10-12 13:29 - 2015-09-25 19:07 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-10-12 13:29 - 2015-09-25 19:07 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-10-12 13:29 - 2015-09-25 19:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-12 13:29 - 2015-09-25 19:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-12 13:29 - 2015-09-25 19:06 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-10-12 13:29 - 2015-09-25 19:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-12 13:29 - 2015-09-25 19:06 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-10-12 13:29 - 2015-09-25 19:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-10-12 13:29 - 2015-09-25 18:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-10-12 13:29 - 2015-09-25 18:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-10-12 13:29 - 2015-09-25 18:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-10-12 13:29 - 2015-09-25 18:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-10-12 13:29 - 2015-09-25 18:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-10-12 13:29 - 2015-09-18 20:22 - 00025432 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-12 13:29 - 2015-09-18 20:19 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-12 13:29 - 2015-09-18 20:19 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-12 13:29 - 2015-09-18 20:19 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-12 13:29 - 2015-09-18 20:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-12 13:29 - 2015-09-18 20:19 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-12 13:29 - 2015-09-18 20:09 - 01163776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-11 17:56 - 2015-10-11 17:56 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2015-10-11 13:03 - 2015-10-11 13:03 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\de.devolo.dLAN.Cockpit
2015-10-11 12:43 - 2015-10-11 12:43 - 01071460 _____ C:\Users\Rudolf\Downloads\mb_bios_ga-970a-ud3_f8f.zip
2015-10-11 12:31 - 2015-10-30 19:47 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-11 12:31 - 2015-10-17 00:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-10-11 12:31 - 2015-10-03 06:06 - 00112944 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-10-11 12:31 - 2015-10-03 06:06 - 00105080 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-10-11 12:31 - 2015-10-03 03:49 - 06358648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-10-11 12:31 - 2015-10-03 03:49 - 02982520 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-10-11 12:31 - 2015-10-03 03:49 - 02554488 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-10-11 12:31 - 2015-10-03 03:49 - 00938800 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-10-11 12:31 - 2015-10-03 03:49 - 00385328 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-10-11 12:31 - 2015-10-03 03:49 - 00062768 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-10-11 12:31 - 2015-10-03 03:18 - 00102520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-10-11 12:31 - 2015-10-01 10:33 - 05284082 _____ C:\Windows\system32\nvcoproc.bin
2015-10-11 12:29 - 2015-10-03 06:06 - 42914096 _____ C:\Windows\system32\nvcompiler.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 37882488 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 22306936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 18359928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 17395512 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 16541040 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 15716648 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 15002304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 14832968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 13518496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 12769408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 12032200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 11114616 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-10-11 12:29 - 2015-10-03 06:06 - 03573832 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 03154104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 02869880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 02489976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 01905456 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435850.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 01564976 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435850.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00877176 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00861816 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00689456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00673912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00512720 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00467912 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00422240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00414000 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00388024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00369272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-10-11 12:29 - 2015-10-03 06:06 - 00177416 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00155976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-10-11 12:29 - 2015-10-03 06:06 - 00033507 _____ C:\Windows\system32\nvinfo.pb
2015-10-11 09:21 - 2010-06-02 03:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-10-11 09:21 - 2010-06-02 03:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-10-11 09:21 - 2010-05-26 10:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-10-11 09:21 - 2010-05-26 10:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-10-11 09:21 - 2010-02-04 09:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-10-11 09:21 - 2010-02-04 09:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-10-11 09:21 - 2010-02-04 09:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-10-11 09:21 - 2010-02-04 09:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-10-11 09:21 - 2010-02-04 09:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-10-11 09:21 - 2010-02-04 09:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-10-11 09:21 - 2010-02-04 09:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-10-11 09:21 - 2010-02-04 09:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-10-11 09:21 - 2009-09-04 16:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-10-11 09:21 - 2009-09-04 16:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-10-11 09:21 - 2009-09-04 16:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-10-11 09:21 - 2009-09-04 16:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-10-11 09:21 - 2009-09-04 16:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-10-11 09:21 - 2009-09-04 16:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-10-11 09:21 - 2009-09-04 16:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-10-11 09:21 - 2009-09-04 16:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-10-11 09:21 - 2009-09-04 16:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-10-11 09:21 - 2009-09-04 16:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-10-11 09:21 - 2009-09-04 16:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-10-11 09:21 - 2009-09-04 16:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-10-11 09:21 - 2009-03-16 13:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-10-11 09:21 - 2009-03-16 13:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-10-11 09:21 - 2009-03-16 13:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-10-11 09:21 - 2009-03-16 13:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-10-11 09:21 - 2009-03-16 13:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-10-11 09:21 - 2009-03-16 13:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-10-11 09:21 - 2009-03-09 14:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-10-11 09:21 - 2009-03-09 14:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-10-11 09:21 - 2009-03-09 14:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-10-11 09:21 - 2009-03-09 14:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-10-11 09:21 - 2008-10-27 09:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-10-11 09:21 - 2008-10-27 09:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-10-11 09:21 - 2008-10-27 09:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-10-11 09:21 - 2008-10-27 09:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-10-11 09:21 - 2008-10-27 09:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-10-11 09:21 - 2008-10-27 09:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-10-11 09:21 - 2008-10-27 09:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-10-11 09:21 - 2008-10-27 09:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-10-11 09:21 - 2008-10-15 05:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-10-11 09:21 - 2008-10-15 05:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-10-11 09:21 - 2008-10-15 05:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-10-11 09:21 - 2008-10-15 05:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-10-11 09:21 - 2008-10-15 05:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-10-11 09:21 - 2008-10-15 05:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-10-11 09:21 - 2008-07-31 09:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-10-11 09:21 - 2008-07-31 09:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-10-11 09:21 - 2008-07-31 09:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-10-11 09:21 - 2008-07-31 09:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-10-11 09:21 - 2008-07-31 09:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-10-11 09:21 - 2008-07-31 09:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-10-11 09:21 - 2008-07-10 10:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-10-11 09:21 - 2008-07-10 10:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-10-11 09:21 - 2008-07-10 10:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-10-11 09:21 - 2008-07-10 10:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-10-11 09:21 - 2008-07-10 10:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-10-11 09:21 - 2008-07-10 10:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-10-11 09:21 - 2008-05-30 13:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-10-11 09:21 - 2008-05-30 13:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-10-11 09:21 - 2008-05-30 13:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-10-11 09:21 - 2008-05-30 13:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-10-11 09:21 - 2008-05-30 13:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-10-11 09:21 - 2008-05-30 13:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-10-11 09:21 - 2008-05-30 13:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-10-11 09:21 - 2008-05-30 13:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-10-11 09:21 - 2008-05-30 13:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-10-11 09:21 - 2008-05-30 13:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-10-11 09:21 - 2008-05-30 13:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-10-11 09:21 - 2008-05-30 13:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-10-11 09:21 - 2008-05-30 13:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-10-11 09:21 - 2008-05-30 13:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-10-11 09:21 - 2008-03-05 15:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-10-11 09:21 - 2008-03-05 15:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-10-11 09:21 - 2008-03-05 15:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-10-11 09:21 - 2008-03-05 15:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-10-11 09:21 - 2008-03-05 15:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-10-11 09:21 - 2008-03-05 15:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-10-11 09:21 - 2008-03-05 14:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-10-11 09:21 - 2008-03-05 14:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-10-11 09:21 - 2008-03-05 14:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-10-11 09:21 - 2008-03-05 14:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-10-11 09:21 - 2008-02-05 22:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-10-11 09:21 - 2008-02-05 22:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-10-11 09:21 - 2007-10-22 02:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-10-11 09:21 - 2007-10-22 02:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-10-11 09:21 - 2007-10-22 02:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-10-11 09:21 - 2007-10-22 02:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-10-11 09:21 - 2007-10-12 14:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-10-11 09:21 - 2007-10-12 14:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-10-11 09:21 - 2007-10-12 14:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-10-11 09:21 - 2007-10-12 14:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-10-11 09:21 - 2007-10-02 08:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-10-11 09:21 - 2007-10-02 08:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-10-11 09:21 - 2007-07-19 23:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-10-11 09:21 - 2007-07-19 23:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-10-11 09:21 - 2007-07-19 17:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-10-11 09:21 - 2007-07-19 17:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-10-11 09:21 - 2007-07-19 17:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-10-11 09:21 - 2007-07-19 17:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-10-11 09:21 - 2007-07-19 17:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-10-11 09:21 - 2007-07-19 17:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-10-11 09:21 - 2007-06-20 19:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-10-11 09:21 - 2007-06-20 19:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-10-10 20:32 - 2015-10-10 20:32 - 00000000 ____D C:\Users\Rudolf\AppData\Local\Macromedia
2015-10-10 20:30 - 2015-10-10 20:30 - 00000000 ____D C:\ProgramData\McAfee
2015-10-10 20:28 - 2015-10-12 15:46 - 00000000 ____D C:\Users\Rudolf\AppData\Local\Adobe
2015-10-10 18:51 - 2015-10-10 21:54 - 00000000 ____D C:\Program Files (x86)\OpenLibraries
2015-10-10 18:51 - 2015-10-10 21:54 - 00000000 ____D C:\Program Files (x86)\jahPlayer
2015-10-09 19:05 - 2015-10-09 19:05 - 00002043 _____ C:\Users\Public\Desktop\Microsoft LifeCam.lnk
2015-10-09 19:05 - 2015-10-09 19:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam
2015-10-09 19:05 - 2015-10-09 19:05 - 00000000 ____D C:\Program Files\Microsoft LifeCam
2015-10-09 19:05 - 2015-10-09 19:05 - 00000000 ____D C:\Program Files (x86)\Microsoft LifeCam
2015-10-09 19:05 - 2009-09-04 16:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-10-09 19:05 - 2009-09-04 16:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-10-09 18:43 - 2015-10-09 18:43 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Macromedia
2015-10-09 18:41 - 2015-10-09 18:41 - 00000000 ____D C:\Users\Rudolf\Tracing
2015-10-09 15:25 - 2015-10-24 12:31 - 00000000 ____D C:\Users\Rudolf\Downloads\bluescreenview_v1.55
2015-10-04 07:36 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-10-04 07:36 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-10-04 07:36 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-10-04 07:36 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-10-04 07:36 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-10-04 07:36 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-10-04 07:36 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-10-04 01:49 - 2015-10-29 21:28 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-04 01:49 - 2015-10-17 00:08 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-10-04 01:49 - 2015-10-17 00:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2015-10-04 01:49 - 2015-10-17 00:08 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2015-10-04 01:49 - 2015-10-05 08:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-10-04 01:49 - 2015-10-05 08:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-10-04 01:49 - 2015-10-05 08:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-10-03 19:35 - 2015-10-30 21:15 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-03 19:35 - 2015-10-17 16:15 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-10-03 19:35 - 2015-10-17 16:15 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-03 19:35 - 2015-10-17 16:15 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-10-03 19:35 - 2015-10-10 21:54 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2015-10-03 19:35 - 2015-10-10 21:54 - 00000000 ____D C:\Windows\system32\Macromed
2015-10-03 12:49 - 2015-10-03 12:49 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2015-10-03 12:22 - 2015-10-03 12:22 - 00000000 __RHD C:\Users\Rudolf\AppData\Roaming\SecuROM
2015-10-03 12:14 - 2015-10-03 13:28 - 00000394 _____ C:\Windows\SysWOW64\PATCH.ERR
2015-10-03 12:06 - 2007-05-16 15:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-10-03 12:06 - 2007-05-16 15:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-10-03 12:06 - 2007-05-16 15:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-10-03 12:06 - 2007-05-16 15:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-10-03 12:06 - 2007-05-16 15:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-10-03 12:06 - 2007-05-16 15:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-10-03 12:06 - 2007-04-04 17:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-10-03 12:06 - 2007-04-04 17:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-10-03 12:06 - 2007-04-04 17:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-10-03 12:06 - 2007-04-04 17:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-10-03 12:06 - 2007-03-15 15:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-10-03 12:06 - 2007-03-15 15:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-10-03 12:06 - 2007-03-12 15:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-10-03 12:06 - 2007-03-12 15:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-10-03 12:06 - 2007-03-12 15:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-10-03 12:06 - 2007-03-12 15:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-10-03 12:06 - 2007-03-05 11:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-10-03 12:06 - 2007-03-05 11:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-10-03 12:06 - 2007-01-24 14:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-10-03 12:06 - 2007-01-24 14:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-10-03 12:06 - 2006-12-08 11:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-10-03 12:06 - 2006-12-08 11:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-10-03 12:06 - 2006-11-29 12:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-10-03 12:06 - 2006-11-29 12:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-10-03 12:06 - 2006-09-28 15:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-10-03 12:06 - 2006-09-28 15:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-10-03 12:06 - 2006-09-28 15:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-10-03 12:06 - 2006-09-28 15:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-10-03 12:06 - 2006-07-28 08:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-10-03 12:06 - 2006-07-28 08:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-10-03 12:06 - 2006-07-28 08:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-10-03 12:06 - 2006-07-28 08:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-10-03 12:06 - 2006-05-31 06:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-10-03 12:06 - 2006-05-31 06:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-10-03 12:06 - 2006-03-31 11:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-10-03 12:06 - 2006-03-31 11:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-10-03 12:06 - 2006-03-31 11:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-10-03 12:06 - 2006-03-31 11:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-10-03 12:06 - 2006-03-31 11:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-10-03 12:06 - 2006-03-31 11:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-10-03 12:06 - 2006-02-03 07:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-10-03 12:06 - 2006-02-03 07:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-10-03 12:06 - 2006-02-03 07:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-10-03 12:06 - 2006-02-03 07:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-10-03 12:06 - 2006-02-03 07:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-10-03 12:06 - 2006-02-03 07:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-10-03 12:06 - 2005-12-05 17:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-10-03 12:06 - 2005-12-05 17:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-10-03 12:06 - 2005-07-22 18:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-10-03 12:06 - 2005-07-22 18:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-10-03 12:06 - 2005-05-26 14:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-10-03 12:06 - 2005-05-26 14:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-10-03 12:06 - 2005-03-18 16:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-10-03 12:06 - 2005-03-18 16:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-10-03 12:06 - 2005-02-05 18:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-10-03 12:06 - 2005-02-05 18:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-10-03 12:03 - 2015-10-03 12:03 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2015-10-03 11:58 - 2015-10-03 11:58 - 00000000 ____D C:\Program Files (x86)\2K Games
2015-10-03 10:35 - 2015-10-03 10:35 - 00000000 ___HD C:\$Windows.~WS
2015-10-03 10:30 - 2015-06-09 19:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-10-03 10:30 - 2015-06-09 19:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-10-03 10:30 - 2015-06-03 21:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-10-03 10:29 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-10-03 01:02 - 2015-10-04 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2015-10-03 01:02 - 2015-10-03 01:02 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2015-10-03 01:01 - 2015-10-11 12:43 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2015-10-02 19:53 - 2015-10-11 13:13 - 00000000 ____D C:\AdwCleaner
2015-10-02 19:38 - 2015-10-02 19:38 - 00000000 ____D C:\Program Files\AMD
2015-10-02 19:26 - 2015-10-12 16:44 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-02 19:26 - 2014-02-16 17:23 - 00060640 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2015-10-02 19:21 - 2015-10-02 19:48 - 00000000 ____D C:\Users\Rudolf\AppData\Local\Downloaded Installations
2015-10-02 19:21 - 2015-10-02 19:21 - 00002067 _____ C:\Users\Public\Desktop\AMD OverDrive.lnk
2015-10-02 19:21 - 2015-10-02 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD
2015-10-02 19:20 - 2015-10-02 19:20 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD
2015-10-02 19:18 - 2015-10-02 19:18 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2015-10-02 19:17 - 2015-10-02 19:17 - 00000963 _____ C:\Users\Rudolf\Desktop\TechPowerUp GPU-Z.lnk
2015-10-02 19:17 - 2015-10-02 19:17 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2015-10-02 19:17 - 2015-10-02 19:17 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2015-10-02 19:15 - 2015-10-02 19:15 - 00927302 _____ C:\Users\Rudolf\Downloads\amd_system_monitor.zip
2015-10-02 17:42 - 2015-10-29 22:05 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Skype
2015-10-02 17:42 - 2015-10-25 03:25 - 00000000 ____D C:\ProgramData\Skype
2015-10-02 17:42 - 2015-10-16 22:26 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2015-10-02 17:42 - 2015-10-16 22:26 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-10-02 17:42 - 2015-10-02 17:42 - 00000000 ____D C:\Users\Rudolf\AppData\Local\Skype
2015-10-02 17:42 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-10-02 17:42 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-10-02 17:42 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-10-02 17:42 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-10-02 17:42 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-10-02 17:42 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-10-02 17:42 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2015-10-02 17:42 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2015-10-02 17:42 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-10-02 17:42 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-10-02 17:41 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-10-02 17:41 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2015-10-02 17:41 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2015-10-02 17:41 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2015-10-02 17:40 - 2015-10-02 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-10-02 17:39 - 2015-10-02 17:39 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-10-02 17:39 - 2015-10-02 17:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-10-02 17:37 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-02 17:37 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-02 17:34 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2015-10-02 17:34 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-10-02 17:33 - 2014-11-25 03:56 - 00000000 ____D C:\Users\Rudolf\Downloads\atBIOS
2015-10-02 17:23 - 2015-10-21 11:04 - 00000869 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-10-02 17:23 - 2015-10-02 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-10-02 17:23 - 2015-10-02 17:23 - 00000000 ____D C:\Program Files\CPUID
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-30 21:57 - 2015-09-05 17:41 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-30 21:29 - 2015-09-04 22:48 - 00000000 ____D C:\Users\Rudolf
2015-10-30 20:35 - 2009-07-14 05:45 - 00021840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-30 20:35 - 2009-07-14 05:45 - 00021840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-30 19:55 - 2015-09-05 14:49 - 00000000 ____D C:\Program Files (x86)\Steam
2015-10-30 19:52 - 2011-04-12 08:43 - 00699190 _____ C:\Windows\system32\perfh007.dat
2015-10-30 19:52 - 2011-04-12 08:43 - 00149330 _____ C:\Windows\system32\perfc007.dat
2015-10-30 19:52 - 2009-07-14 06:13 - 01619700 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-30 19:51 - 2015-09-04 22:48 - 01336205 _____ C:\Windows\WindowsUpdate.log
2015-10-30 19:47 - 2015-09-05 17:41 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-30 19:47 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-30 19:33 - 2015-09-12 13:03 - 00000000 ____D C:\Windows\System32\Tasks\Aufgaben der Ereignisanzeige
2015-10-30 08:03 - 2015-09-05 14:27 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\vlc
2015-10-29 15:11 - 2015-09-05 13:32 - 00000000 ____D C:\ProgramData\G Data
2015-10-29 13:49 - 2015-09-05 13:52 - 00002337 _____ C:\Users\Rudolf\AppData\Roaming\gdscan.log
2015-10-29 13:49 - 2015-09-05 13:52 - 00000000 ____D C:\Program Files (x86)\G DATA
2015-10-27 10:42 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2015-10-26 22:19 - 2015-09-04 22:55 - 00133760 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2015-10-25 19:57 - 2015-09-04 22:54 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-10-25 05:59 - 2015-09-13 01:04 - 00000000 ____D C:\Users\Rudolf\AppData\Local\Windows Live
2015-10-24 20:01 - 2015-09-05 17:45 - 00002175 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-24 12:48 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-10-21 17:40 - 2015-09-13 00:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-21 14:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2015-10-21 13:47 - 2015-09-05 13:27 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\Adobe
2015-10-18 20:12 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2015-10-17 15:58 - 2015-09-04 22:48 - 00000000 ____D C:\Users\Rudolf\AppData\Local\VirtualStore
2015-10-17 00:17 - 2015-09-05 09:51 - 00000000 ____D C:\Users\Rudolf\AppData\Local\NVIDIA Corporation
2015-10-17 00:17 - 2015-09-05 00:12 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-10-17 00:17 - 2015-09-05 00:12 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-10-17 00:17 - 2015-09-04 23:40 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-10-15 12:54 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-10-14 14:05 - 2015-09-05 10:39 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 14:02 - 2015-09-05 10:39 - 143481208 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-13 13:13 - 2015-09-10 07:42 - 00000000 ___HD C:\$Windows.~BT
2015-10-13 10:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2015-10-13 10:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-10-13 10:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2015-10-13 10:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\com
2015-10-12 13:29 - 2015-09-05 13:18 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-12 13:29 - 2015-09-05 13:18 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-11 17:56 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-10-11 13:10 - 2015-09-05 10:02 - 00000000 ____D C:\Windows\Minidump
2015-10-10 21:54 - 2015-09-11 18:31 - 00000000 ____D C:\Users\Rudolf\AppData\Roaming\PhotoScape
2015-10-10 21:54 - 2015-09-05 21:07 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-10 21:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2015-10-08 10:40 - 2015-09-05 21:07 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-10-02 19:49 - 2015-09-05 14:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-02 19:48 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2015-10-02 19:46 - 2015-09-13 12:10 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-02 19:46 - 2015-09-13 12:10 - 00000000 ____D C:\Program Files\CCleaner
2015-10-02 19:21 - 2015-09-04 22:56 - 00000000 ____D C:\Program Files (x86)\AMD
2015-10-02 18:20 - 2009-07-14 04:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-02 18:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-09-05 13:52 - 2015-09-05 13:52 - 0000000 _____ () C:\Users\Rudolf\AppData\Roaming\gdfw.log
2015-09-05 13:52 - 2015-10-29 13:49 - 0002337 _____ () C:\Users\Rudolf\AppData\Roaming\gdscan.log
2015-09-12 16:31 - 2015-09-12 16:31 - 0000017 _____ () C:\Users\Rudolf\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-10-28 09:06
==================== Ende von FRST.txt ============================
|
|
30.10.2015, 22:14
| #6 |
| | Win7 friert in unregelmäßigen Zeiten ein Addition EditorFRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-10-2015
durchgeführt von Rudolf (2015-10-30 22:08:06)
Gestartet von C:\Users\Rudolf\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-09-04 21:48:39)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3733161408-756724473-978087059-500 - Administrator - Disabled)
Gast (S-1-5-21-3733161408-756724473-978087059-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3733161408-756724473-978087059-1002 - Limited - Enabled)
Rudolf (S-1-5-21-3733161408-756724473-978087059-1000 - Administrator - Enabled) => C:\Users\Rudolf
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: G DATA INTERNET SECURITY (Disabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AS: G DATA INTERNET SECURITY (Disabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G*DATA Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.34 - GIGABYTE)
Adabas D 13.01.00 (HKLM-x32\...\{5C52CED3-D45C-4DA9-932F-B91BD44BB461}) (Version: 13.0100.8895 - Sun Microsystems)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{3F48F53E-BC0F-A72E-AC89-EA9C3F8F4701}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD OverDrive (HKLM-x32\...\{EEB605FD-C5F5-4946-90F3-D65C604A9187}) (Version: 4.3.1.0698 - Advanced Micro Devices, Inc.)
AMD System Monitor (HKLM-x32\...\{6EFD0C42-4CC1-4716-A0CA-21C1A062CF34}) (Version: 1.0.9 - Advanced Micro Devices, Inc.)
AVM FRITZ!fax für FRITZ!Box (HKLM-x32\...\FRITZ! 2.0) (Version: - AVM Berlin)
Brother MFL-Pro Suite MFC-215C (HKLM-x32\...\{BB9AC6BF-71B6-42A4-9689-C17D9F44E79A}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of Defeat: Source (HKLM-x32\...\Steam App 300) (Version: - Valve)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free WMA to MP3 Converter 1.16 (HKLM-x32\...\Free WMA to MP3 Converter_is1) (Version: - Jodix Technologies Ltd.)
G DATA INTERNET SECURITY (HKLM-x32\...\{AC68D2FF-1674-4C16-A536-A69FC11BBD82}) (Version: 25.1.0.3 - G DATA Software AG)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.18) (Version: 9.18 - Artifex Software Inc.)
GSview 5.0 (HKLM\...\GSview 5.0) (Version: 5.0 - Ghostgum Software Pty Ltd)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version: - Valve)
Half-Life 2: Deathmatch (HKLM-x32\...\Steam App 320) (Version: - Valve)
Half-Life 2: Episode Two (HKLM-x32\...\Steam App 420) (Version: - Valve)
Half-Life 2: Lost Coast (HKLM-x32\...\Steam App 340) (Version: - Valve)
Java 7 Update 79 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217079FF}) (Version: 7.0.790 - Oracle)
LibreOffice 5.0 Help Pack (German) (HKLM-x32\...\{3A35B9EB-331E-4FDC-950C-7B1EAFB77C6E}) (Version: 5.0.2.2 - The Document Foundation)
LibreOffice 5.0.2.2 (HKLM-x32\...\{71508AE2-346A-4E56-AE95-DBB8DE692258}) (Version: 5.0.2.2 - The Document Foundation)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 41.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.2 (x86 de)) (Version: 41.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.0.5771 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 358.50 - NVIDIA Corporation)
NVIDIA Grafiktreiber 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.50 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.6 - Tunngle.net GmbH)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
26-10-2015 22:06:34 Driver Booster : Standard PCI-zu-USB erweiterter Hostcontroller
27-10-2015 02:16:30 DreamScene
27-10-2015 04:55:15 Driver Booster : ATI E/A-Kommunikationsprozessor-SMBus-Controller
28-10-2015 09:05:39 Windows Update
29-10-2015 15:52:43 Revo Uninstaller's restore point - Advanced SystemCare 8
29-10-2015 15:55:23 Revo Uninstaller's restore point - Driver Booster 3.0
30-10-2015 09:32:10 Removed Etron USB3.0 Host Controller
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {081876DB-FB00-4E76-913C-4F50EE15B73F} - System32\Tasks\ASC8_SkipUac_Rudolf => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe
Task: {113E8EC1-6E2D-4854-A75C-3116D17FD649} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {182F823B-2BE5-4008-A2DB-9EFB68DC65E6} - System32\Tasks\{E8980F47-B6E8-478D-812D-B165E156EFFA} => F:\Downloads\TheKlub17\Play The Klub 17.exe
Task: {2AF8A82E-2EB2-4188-8B8A-AD87ACC6FE62} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05] (Google Inc.)
Task: {3D86F8C2-E466-4A37-81D5-DAE11369AF20} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {4BE31BA3-B8E7-469D-8466-C8A19A77B557} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe
Task: {72103972-1326-4102-A376-01D63E786EB7} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation)
Task: {81F3826A-BE8E-4A21-8AAA-753D3B4064BE} - System32\Tasks\Driver Booster SkipUAC (Rudolf) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {864E64CA-AFC5-4637-A0C5-F3E6F16B36A9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {88DD9687-D3F8-4307-A718-6BD3CBDE7054} - System32\Tasks\Uninstaller_SkipUac_Rudolf => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {AA833E09-1C96-449B-90A4-26C2C059C646} - System32\Tasks\{A3355BA2-348C-44D4-876B-9F2D5ECEE689} => F:\Downloads\TheKlub17\Play The Klub 17.exe
Task: {AADD5ADF-7CC4-49ED-A575-0F535B1AC714} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
Task: {D5C635A5-088E-4FDA-9D09-DF253D3465BD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17] (Adobe Systems Incorporated)
Task: {FE0F00C5-0F66-44FD-BC26-08FC8935EAF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05] (Google Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-11 12:31 - 2015-10-03 03:49 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-12 13:52 - 2006-02-23 10:35 - 00020480 _____ () C:\Windows\System32\FritzColorPort64.dll
2015-10-12 13:52 - 2006-02-22 09:39 - 00020480 _____ () C:\Windows\System32\FritzPort64.dll
2015-02-20 04:42 - 2015-02-20 04:42 - 00382072 ____N () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2015-09-11 22:20 - 2015-09-11 22:20 - 00144896 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
2015-09-05 14:58 - 2015-10-05 17:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-09-05 14:58 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-09-05 14:58 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-09-05 14:58 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-09-05 14:58 - 2015-10-14 21:56 - 02423376 _____ () C:\Program Files (x86)\Steam\video.dll
2015-09-05 14:58 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-09-05 14:58 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-09-05 14:58 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-09-05 14:58 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-09-05 14:58 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-09-05 14:58 - 2015-10-14 21:56 - 00705104 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-09-05 14:58 - 2015-10-09 19:13 - 00193024 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-09-05 14:58 - 2015-10-08 23:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-09-05 14:58 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2015-09-11 22:22 - 2015-09-11 22:22 - 00157696 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\launcher.dll
2015-09-11 22:22 - 2015-09-11 22:22 - 00246272 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\tier0.dll
2015-09-11 22:21 - 2015-09-11 22:21 - 00164352 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\vstdlib.dll
2015-09-05 15:07 - 2015-09-11 22:20 - 00942080 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\filesystem_stdio.dll
2015-09-05 15:07 - 2015-09-18 18:06 - 04254720 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\engine.dll
2015-09-11 22:21 - 2015-09-11 22:21 - 00103936 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\inputsystem.dll
2015-09-05 15:07 - 2015-09-18 18:07 - 01140224 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\materialsystem.dll
2015-09-11 22:20 - 2015-09-11 22:20 - 00236544 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\datacache.dll
2015-09-05 15:07 - 2015-09-11 22:20 - 00518144 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\studiorender.dll
2015-09-05 15:07 - 2015-09-11 22:23 - 00914344 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\vphysics.dll
2015-09-05 15:07 - 2015-09-11 22:20 - 01347072 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\vguimatsurface.dll
2015-09-05 15:07 - 2015-09-11 22:22 - 00353792 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\vgui2.dll
2015-09-05 15:07 - 2015-09-11 22:21 - 00937472 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\shaderapidx9.dll
2015-09-05 14:58 - 2015-10-14 21:56 - 00373328 _____ () C:\Program Files (x86)\Steam\steam.dll
2015-09-11 22:21 - 2015-09-11 22:21 - 00147968 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\stdshader_dbg.dll
2015-09-11 22:22 - 2015-09-11 22:22 - 00229376 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\stdshader_dx6.dll
2015-09-11 22:21 - 2015-09-11 22:21 - 00160768 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\stdshader_dx7.dll
2015-09-05 15:07 - 2015-09-11 22:21 - 00346112 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\stdshader_dx8.dll
2015-09-05 15:07 - 2015-09-11 22:20 - 00559104 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\stdshader_dx9.dll
2015-09-11 22:22 - 2015-09-11 22:22 - 00156160 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\garrysmod\bin\game_shader_generic_garrysmod.dll
2015-09-11 22:23 - 2015-09-11 22:23 - 00070056 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\unicode.dll
2015-09-05 15:07 - 2015-09-18 18:07 - 06882304 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\garrysmod\bin\client.dll
2015-09-05 15:07 - 2015-09-11 22:23 - 10221056 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\garrysmod\bin\server.dll
2015-09-11 22:22 - 2015-09-11 22:22 - 00119808 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\soundemittersystem.dll
2015-09-11 22:22 - 2015-09-11 22:22 - 00071680 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\scenefilecache.dll
2015-09-05 15:07 - 2015-09-18 18:07 - 00451584 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\garrysmod\bin\lua_shared.dll
2015-09-05 15:07 - 2015-09-11 22:22 - 02082304 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\garrysmod\bin\menusystem.dll
2015-09-05 15:07 - 2015-09-11 22:23 - 00885248 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\garrysmod\bin\resources.dll
2015-09-11 22:22 - 2015-09-11 22:22 - 00083968 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\garrysmod\bin\gmhtml.dll
2015-09-11 22:19 - 2015-09-11 22:19 - 00084480 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\gmod_audio.dll
2015-09-05 15:07 - 2015-09-18 18:06 - 02053120 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\GameUI.dll
2015-09-05 15:07 - 2015-09-11 22:21 - 00898560 _____ () c:\program files (x86)\steam\steamapps\common\garrysmod\bin\serverbrowser.dll
2015-09-05 15:07 - 2015-09-11 22:19 - 01099704 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\avcodec-53.dll
2015-09-11 22:18 - 2015-09-11 22:18 - 00123320 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\avutil-51.dll
2015-09-11 22:19 - 2015-09-11 22:19 - 00190904 _____ () C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\bin\avformat-53.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3733161408-756724473-978087059-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupreg: BrMfcWnd => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
MSCONFIG\startupreg: ControlCenter3 => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{808659A5-83BF-4811-AC2E-B45AE183165D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B97EE11C-A898-475F-922F-412921B34284}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{678610EE-CC45-4384-A34D-FD07246EDAE5}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{48388424-0404-4646-8FDB-4AEC9B36C13E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{397B8FD9-CE5B-4766-BC44-92BA0ACDC2D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{AE59E0C8-CEA4-4764-826F-4BE881368586}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{9BFF133D-E7E5-41E1-BA29-5CA875800AF2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{3008F5CE-5589-4038-8F68-C8CB077063F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{FAC4359E-5321-4477-B127-6078ABC2DD84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{C0A0A6E3-50BF-40B1-AD8B-7CE213389E3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{1421F661-E697-41B4-8ABE-6A5E65B669B0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0B1FA47F-820C-4619-8F97-2CBE63ECDD7A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7FFB8853-C9B8-4183-BCF1-F0E2D967E194}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2EB307F5-DA7B-46AB-A2A1-7CE58A10FF7D}] => (Allow) LPort=2869
FirewallRules: [{468652F7-D9F4-4EAE-93F3-599DBB3628CC}] => (Allow) LPort=1900
FirewallRules: [{7D27D5CB-3B9E-42E0-AA2E-2709684916D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{360B443A-5581-4EDB-AC53-E49B0CA42269}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{F458DBAD-25E2-4796-B994-082F07001E08}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{56E792D7-AFA3-4550-BFB0-937DA3D8BC1E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{063B66FC-B2B2-4480-A3D3-0EAFC418F1FF}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{C3D54047-EFD7-486C-8E88-2FFC65D4D64F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{79E3A4DC-5712-4DA4-A0CA-95904909D5F1}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{122F69F6-6E03-4939-8C83-0DD9189B7398}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{595233B8-C841-4CBD-A7DA-42E286B24F7C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{C772185E-913E-4B7D-97CB-CCC44029B028}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{D86FC029-9C07-4D79-B623-B07BD3081DB2}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [TCP Query User{D72DCF29-C41E-4308-9C5D-A1705E384322}C:\program files (x86)\fritz!\frifax32.exe] => (Block) C:\program files (x86)\fritz!\frifax32.exe
FirewallRules: [UDP Query User{FF000B02-5229-4833-B18C-795CC44B6FB6}C:\program files (x86)\fritz!\frifax32.exe] => (Block) C:\program files (x86)\fritz!\frifax32.exe
FirewallRules: [TCP Query User{3ED94DDA-43DD-44E6-BAD8-7621524721F5}C:\program files (x86)\fritz!\frifax32.exe] => (Block) C:\program files (x86)\fritz!\frifax32.exe
FirewallRules: [UDP Query User{D170AD0A-66DC-4EF7-BA9A-F3CA2663CC8B}C:\program files (x86)\fritz!\frifax32.exe] => (Block) C:\program files (x86)\fritz!\frifax32.exe
FirewallRules: [{9EA9B264-00C0-4933-9D65-3EE6F54E6D8E}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{A1B67E59-AFAE-431C-B655-5C47CD0C1712}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{E6382D66-D023-4978-B969-CF08B8FE5423}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{BD7164AF-87BD-43AD-BFDD-62CF1EEAFA5D}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{09034D54-E255-47D1-A452-6CBE8CBE931A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Day of Defeat Source\hl2.exe
FirewallRules: [{5E85E4EF-3697-428F-BC5A-031938024B10}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Day of Defeat Source\hl2.exe
FirewallRules: [{B1D6F58E-C2E7-4C14-9180-C3C266998A82}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/29/2015 04:12:32 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (10/29/2015 04:12:32 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=3800} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Systemfehler:
=============
Error: (10/30/2015 07:47:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "LiveUpdate" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/30/2015 07:47:19 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 30.10.2015 um 19:45:25 unerwartet heruntergefahren.
Error: (10/30/2015 07:43:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "LiveUpdate" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/30/2015 07:43:33 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 30.10.2015 um 19:37:30 unerwartet heruntergefahren.
Error: (10/30/2015 07:18:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "LiveUpdate" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/30/2015 11:00:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "LiveUpdate" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/30/2015 11:00:08 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 30.10.2015 um 10:01:33 unerwartet heruntergefahren.
Error: (10/30/2015 08:46:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "LiveUpdate" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/30/2015 08:46:40 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 30.10.2015 um 08:43:39 unerwartet heruntergefahren.
Error: (10/30/2015 08:31:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "LiveUpdate" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
==================== Speicherinformationen ===========================
Prozessor: AMD FX(tm)-4170 Quad-Core Processor
Prozentuale Nutzung des RAM: 42%
Installierter physikalischer RAM: 8173.23 MB
Verfügbarer physikalischer RAM: 4659.81 MB
Summe virtueller Speicher: 16344.66 MB
Verfügbarer virtueller Speicher: 11221.67 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:199.9 GB) (Free:106.92 GB) NTFS
Drive d: () (Fixed) (Total:731.51 GB) (Free:712.55 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: A61848B0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=199.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
31.10.2015, 17:27
| #7 |
| /// the machine /// TB-Ausbilder | Win7 friert in unregelmäßigen Zeiten ein hi, Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
31.10.2015, 20:30
| #8 |
| | Win7 friert in unregelmäßigen Zeiten ein mbar Malwarebytes Anti-Rootkit BETA 1.9.3.1001 www.malwarebytes.org Database version: main: v2015.10.31.04 rootkit: v2015.10.28.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.18059 Rudolf :: RUDOLF-PC [administrator] 31.10.2015 20:13:02 mbar-log-2015-10-31 (20-13-02).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken Scan options disabled: Objects scanned: 323595 Time elapsed: 11 minute(s), 25 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) 20:28:00.0824 0x16fc TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57 20:28:08.0804 0x16fc ============================================================ 20:28:08.0804 0x16fc Current date / time: 2015/10/31 20:28:08.0804 20:28:08.0804 0x16fc SystemInfo: 20:28:08.0804 0x16fc 20:28:08.0804 0x16fc OS Version: 6.1.7601 ServicePack: 1.0 20:28:08.0804 0x16fc Product type: Workstation 20:28:08.0804 0x16fc ComputerName: RUDOLF-PC 20:28:08.0804 0x16fc UserName: Rudolf 20:28:08.0804 0x16fc Windows directory: C:\Windows 20:28:08.0804 0x16fc System windows directory: C:\Windows 20:28:08.0804 0x16fc Running under WOW64 20:28:08.0804 0x16fc Processor architecture: Intel x64 20:28:08.0804 0x16fc Number of processors: 4 20:28:08.0804 0x16fc Page size: 0x1000 20:28:08.0804 0x16fc Boot type: Normal boot 20:28:08.0804 0x16fc ============================================================ 20:28:09.0014 0x16fc KLMD registered as C:\Windows\system32\drivers\13010856.sys 20:28:09.0544 0x16fc System UUID: {C5D4B623-59C6-A10F-E07F-65C91825F81B} 20:28:10.0064 0x16fc Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 20:28:10.0074 0x16fc ============================================================ 20:28:10.0074 0x16fc \Device\Harddisk0\DR0: 20:28:10.0074 0x16fc MBR partitions: 20:28:10.0074 0x16fc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 20:28:10.0074 0x16fc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x18FCD800 20:28:10.0084 0x16fc \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x19000000, BlocksNum 0x5B706000 20:28:10.0084 0x16fc ============================================================ 20:28:10.0104 0x16fc C: <-> \Device\Harddisk0\DR0\Partition2 20:28:10.0134 0x16fc D: <-> \Device\Harddisk0\DR0\Partition3 20:28:10.0134 0x16fc ============================================================ 20:28:10.0134 0x16fc Initialize success 20:28:10.0134 0x16fc ============================================================ 20:28:14.0304 0x1244 ============================================================ 20:28:14.0304 0x1244 Scan started 20:28:14.0304 0x1244 Mode: Manual; 20:28:14.0304 0x1244 ============================================================ 20:28:14.0304 0x1244 KSN ping started 20:28:16.0844 0x1244 KSN ping finished: true 20:28:17.0544 0x1244 ================ Scan system memory ======================== 20:28:17.0544 0x1244 System memory - ok 20:28:17.0544 0x1244 ================ Scan services ============================= 20:28:17.0674 0x1244 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 20:28:17.0674 0x1244 1394ohci - ok 20:28:17.0694 0x1244 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 20:28:17.0704 0x1244 ACPI - ok 20:28:17.0714 0x1244 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 20:28:17.0714 0x1244 AcpiPmi - ok 20:28:17.0794 0x1244 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 20:28:17.0794 0x1244 AdobeARMservice - ok 20:28:17.0924 0x1244 [ 8C194A201698B4B4F77D974549819D1F, 081A2496FE1CE519E48677D99A831FF1FEEB1B33C75224CF288FA52F3E0E5FF0 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 20:28:17.0934 0x1244 AdobeFlashPlayerUpdateSvc - ok 20:28:17.0974 0x1244 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 20:28:17.0984 0x1244 adp94xx - ok 20:28:18.0024 0x1244 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys 20:28:18.0034 0x1244 adpahci - ok 20:28:18.0044 0x1244 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 20:28:18.0054 0x1244 adpu320 - ok 20:28:18.0074 0x1244 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 20:28:18.0074 0x1244 AeLookupSvc - ok 20:28:18.0124 0x1244 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys 20:28:18.0134 0x1244 AFD - ok 20:28:18.0144 0x1244 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 20:28:18.0144 0x1244 agp440 - ok 20:28:18.0154 0x1244 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 20:28:18.0154 0x1244 ALG - ok 20:28:18.0184 0x1244 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 20:28:18.0184 0x1244 aliide - ok 20:28:18.0194 0x1244 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 20:28:18.0194 0x1244 amdide - ok 20:28:18.0214 0x1244 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 20:28:18.0214 0x1244 AmdK8 - ok 20:28:18.0234 0x1244 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 20:28:18.0234 0x1244 AmdPPM - ok 20:28:18.0264 0x1244 [ 53D8D46D51D390ABDB54ECA623165CB7, D16A3604412D0DC3EA68320FB6980D146ED60D587AAB6B65810C038AFF1EC237 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys 20:28:18.0264 0x1244 amdsata - ok 20:28:18.0284 0x1244 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 20:28:18.0284 0x1244 amdsbs - ok 20:28:18.0304 0x1244 [ 75C51148154E34EB3D7BB84749A758D5, 8865F223CBAE166A9BF6CBCDA66F63369F151CCB449A28E95560C36AD45D0C85 ] amdxata C:\Windows\system32\drivers\amdxata.sys 20:28:18.0304 0x1244 amdxata - ok 20:28:18.0314 0x1244 [ EBECBA1E37CE98BA2BD64A22A788DAC5, 247C474DAF9FFFF7FB46EB6185088B94B886A7685F98CABE1983EFEAEE1A8338 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys 20:28:18.0324 0x1244 amd_sata - ok 20:28:18.0344 0x1244 [ 7F1B42E70FAE147B14B28B83E003F039, 093C2B57AFDC93E667A3AB1F74442DBA42B0DE2132388E73BDC3D09FDBB1B3D0 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys 20:28:18.0344 0x1244 amd_xata - ok 20:28:18.0374 0x1244 [ E21DECAFC572EEF6F63D9513BA8F8817, 64A5A1F4B089F9AEBABE0430447C58E5D9DF2CD7997F557849796ACF356A8B0D ] AODDriver4.3.0 C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys 20:28:18.0374 0x1244 AODDriver4.3.0 - ok 20:28:18.0384 0x1244 [ A5CF81BA864AD5F63231AD84A6CFBE51, 5E22B443F3CD97DE4D2296556EA35944BC100775083D1CB0304FEF4445552A88 ] AODService C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe 20:28:18.0384 0x1244 AODService - ok 20:28:18.0414 0x1244 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys 20:28:18.0414 0x1244 AppID - ok 20:28:18.0434 0x1244 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll 20:28:18.0434 0x1244 AppIDSvc - ok 20:28:18.0474 0x1244 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll 20:28:18.0474 0x1244 Appinfo - ok 20:28:18.0484 0x1244 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys 20:28:18.0484 0x1244 arc - ok 20:28:18.0494 0x1244 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys 20:28:18.0504 0x1244 arcsas - ok 20:28:18.0584 0x1244 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 20:28:18.0584 0x1244 aspnet_state - ok 20:28:18.0594 0x1244 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 20:28:18.0604 0x1244 AsyncMac - ok 20:28:18.0624 0x1244 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 20:28:18.0624 0x1244 atapi - ok 20:28:18.0654 0x1244 atillk64 - ok 20:28:18.0704 0x1244 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 20:28:18.0724 0x1244 AudioEndpointBuilder - ok 20:28:18.0734 0x1244 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll 20:28:18.0744 0x1244 AudioSrv - ok 20:28:18.0944 0x1244 [ EAC923325937602A24994969F00788B5, 254913759B6159398A452E81707D97C3BAC45D749904F5A220DB964D9ED4036C ] AVKProxy C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe 20:28:18.0984 0x1244 AVKProxy - ok 20:28:19.0084 0x1244 [ BCC79D1E0605ABE4B58A9DEE696982A5, 7619EDBB1ABEE4A1B3476D42BCD718876C5BE7F7A4B972414D45F2540F17C665 ] AVKService C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe 20:28:19.0094 0x1244 AVKService - ok 20:28:19.0254 0x1244 [ 89774771ECD5869ED9E1EB6D448D8FF6, BB914E238E23C7F6695FF30C475DC7A92CBAA51F68E433DF3D5C86F7972DB81C ] AVKWCtl C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe 20:28:19.0314 0x1244 AVKWCtl - ok 20:28:19.0354 0x1244 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 20:28:19.0354 0x1244 AxInstSV - ok 20:28:19.0394 0x1244 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 20:28:19.0404 0x1244 b06bdrv - ok 20:28:19.0434 0x1244 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 20:28:19.0434 0x1244 b57nd60a - ok 20:28:19.0464 0x1244 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 20:28:19.0464 0x1244 BDESVC - ok 20:28:19.0474 0x1244 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 20:28:19.0474 0x1244 Beep - ok 20:28:19.0524 0x1244 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll 20:28:19.0534 0x1244 BFE - ok 20:28:19.0574 0x1244 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll 20:28:19.0594 0x1244 BITS - ok 20:28:19.0614 0x1244 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 20:28:19.0614 0x1244 blbdrive - ok 20:28:19.0644 0x1244 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 20:28:19.0644 0x1244 bowser - ok 20:28:19.0654 0x1244 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 20:28:19.0654 0x1244 BrFiltLo - ok 20:28:19.0654 0x1244 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 20:28:19.0654 0x1244 BrFiltUp - ok 20:28:19.0684 0x1244 [ C711ED965009BDCFF9AA62CEB6FF1AAD, 083E981F983653329C2B8361963CA81D5D88E164C7738035F701A10CCB1C85CC ] Brother XP spl Service C:\Windows\SysWOW64\brsvc01a.exe 20:28:19.0694 0x1244 Brother XP spl Service - ok 20:28:19.0704 0x1244 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 20:28:19.0714 0x1244 Browser - ok 20:28:19.0734 0x1244 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 20:28:19.0734 0x1244 Brserid - ok 20:28:19.0744 0x1244 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 20:28:19.0744 0x1244 BrSerWdm - ok 20:28:19.0744 0x1244 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 20:28:19.0744 0x1244 BrUsbMdm - ok 20:28:19.0754 0x1244 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 20:28:19.0754 0x1244 BrUsbSer - ok 20:28:19.0764 0x1244 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 20:28:19.0764 0x1244 BTHMODEM - ok 20:28:19.0784 0x1244 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 20:28:19.0784 0x1244 bthserv - ok 20:28:19.0794 0x1244 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 20:28:19.0804 0x1244 cdfs - ok 20:28:19.0824 0x1244 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 20:28:19.0824 0x1244 cdrom - ok 20:28:19.0854 0x1244 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 20:28:19.0854 0x1244 CertPropSvc - ok 20:28:19.0884 0x1244 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys 20:28:19.0884 0x1244 circlass - ok 20:28:19.0924 0x1244 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys 20:28:19.0924 0x1244 CLFS - ok 20:28:19.0974 0x1244 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 20:28:19.0974 0x1244 clr_optimization_v2.0.50727_32 - ok 20:28:19.0994 0x1244 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 20:28:19.0994 0x1244 clr_optimization_v2.0.50727_64 - ok 20:28:20.0044 0x1244 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 20:28:20.0054 0x1244 clr_optimization_v4.0.30319_32 - ok 20:28:20.0064 0x1244 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 20:28:20.0074 0x1244 clr_optimization_v4.0.30319_64 - ok 20:28:20.0084 0x1244 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys 20:28:20.0084 0x1244 CmBatt - ok 20:28:20.0114 0x1244 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 20:28:20.0114 0x1244 cmdide - ok 20:28:20.0154 0x1244 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys 20:28:20.0164 0x1244 CNG - ok 20:28:20.0174 0x1244 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 20:28:20.0184 0x1244 Compbatt - ok 20:28:20.0204 0x1244 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 20:28:20.0204 0x1244 CompositeBus - ok 20:28:20.0204 0x1244 COMSysApp - ok 20:28:20.0224 0x1244 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 20:28:20.0224 0x1244 crcdisk - ok 20:28:20.0254 0x1244 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll 20:28:20.0254 0x1244 CryptSvc - ok 20:28:20.0284 0x1244 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll 20:28:20.0294 0x1244 DcomLaunch - ok 20:28:20.0324 0x1244 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 20:28:20.0334 0x1244 defragsvc - ok 20:28:20.0344 0x1244 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys 20:28:20.0344 0x1244 DfsC - ok 20:28:20.0364 0x1244 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll 20:28:20.0374 0x1244 Dhcp - ok 20:28:20.0434 0x1244 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll 20:28:20.0464 0x1244 DiagTrack - ok 20:28:20.0484 0x1244 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 20:28:20.0484 0x1244 discache - ok 20:28:20.0514 0x1244 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys 20:28:20.0514 0x1244 Disk - ok 20:28:20.0544 0x1244 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 20:28:20.0544 0x1244 Dnscache - ok 20:28:20.0574 0x1244 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll 20:28:20.0584 0x1244 dot3svc - ok 20:28:20.0594 0x1244 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 20:28:20.0594 0x1244 DPS - ok 20:28:20.0624 0x1244 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 20:28:20.0624 0x1244 drmkaud - ok 20:28:20.0664 0x1244 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 20:28:20.0684 0x1244 DXGKrnl - ok 20:28:20.0694 0x1244 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 20:28:20.0694 0x1244 EapHost - ok 20:28:20.0784 0x1244 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys 20:28:20.0854 0x1244 ebdrv - ok 20:28:20.0884 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] EFS C:\Windows\System32\lsass.exe 20:28:20.0884 0x1244 EFS - ok 20:28:20.0934 0x1244 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 20:28:20.0944 0x1244 ehRecvr - ok 20:28:20.0954 0x1244 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 20:28:20.0954 0x1244 ehSched - ok 20:28:21.0004 0x1244 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys 20:28:21.0014 0x1244 elxstor - ok 20:28:21.0024 0x1244 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 20:28:21.0024 0x1244 ErrDev - ok 20:28:21.0044 0x1244 EtronHub3 - ok 20:28:21.0054 0x1244 EtronXHCI - ok 20:28:21.0084 0x1244 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 20:28:21.0094 0x1244 EventSystem - ok 20:28:21.0114 0x1244 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 20:28:21.0124 0x1244 exfat - ok 20:28:21.0134 0x1244 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 20:28:21.0134 0x1244 fastfat - ok 20:28:21.0164 0x1244 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe 20:28:21.0174 0x1244 Fax - ok 20:28:21.0194 0x1244 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys 20:28:21.0194 0x1244 fdc - ok 20:28:21.0204 0x1244 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 20:28:21.0214 0x1244 fdPHost - ok 20:28:21.0214 0x1244 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 20:28:21.0224 0x1244 FDResPub - ok 20:28:21.0234 0x1244 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 20:28:21.0234 0x1244 FileInfo - ok 20:28:21.0244 0x1244 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 20:28:21.0244 0x1244 Filetrace - ok 20:28:21.0264 0x1244 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 20:28:21.0264 0x1244 flpydisk - ok 20:28:21.0284 0x1244 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 20:28:21.0284 0x1244 FltMgr - ok 20:28:21.0334 0x1244 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll 20:28:21.0364 0x1244 FontCache - ok 20:28:21.0404 0x1244 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 20:28:21.0404 0x1244 FontCache3.0.0.0 - ok 20:28:21.0414 0x1244 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 20:28:21.0414 0x1244 FsDepends - ok 20:28:21.0444 0x1244 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 20:28:21.0444 0x1244 Fs_Rec - ok 20:28:21.0474 0x1244 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 20:28:21.0474 0x1244 fvevol - ok 20:28:21.0484 0x1244 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 20:28:21.0494 0x1244 gagp30kx - ok 20:28:21.0534 0x1244 [ 22F1DEC206A6756884ED0740DBCB31AF, D1766BDE07CF24809A39264DEF6534552C6919684FB811CA4F3BE63E60250AA4 ] GDBehave C:\Windows\system32\drivers\GDBehave.sys 20:28:21.0534 0x1244 GDBehave - ok 20:28:21.0724 0x1244 [ 73F5C62BBE0CDCDFFDC3C0B71F24E4FD, 8BB0796DF4BC6C11AEC33ECDECCAF85946C3BB19C85F1700020AA353000B4361 ] GDFwSvc C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe 20:28:21.0774 0x1244 GDFwSvc - ok 20:28:21.0804 0x1244 [ FF5543CDA6B06E3D29A5F312BE5C4919, 91E0BB934EFD01576C94FDA967340563BB92ECE7C5389978FBC9587A9D21B9CF ] GDKBB C:\Windows\system32\drivers\GDKBB64.sys 20:28:21.0804 0x1244 GDKBB - ok 20:28:21.0834 0x1244 [ 1543775197DD1A27D16C0FA0FF73CAFB, B149282AFA5A60CEC797B643207F2541722C360989148FBC7A06DA0EB501ABED ] GDKBFlt C:\Windows\system32\drivers\GDKBFlt64.sys 20:28:21.0834 0x1244 GDKBFlt - ok 20:28:21.0844 0x1244 [ EBA67BDB064A0A86CE318E8D1B7FD16A, 6C1B7F851EE1D7CE2BEC7C1743E070646CC8E6895135D6B3E176AD6FC82E81D6 ] GDMnIcpt C:\Windows\system32\drivers\MiniIcpt.sys 20:28:21.0844 0x1244 GDMnIcpt - ok 20:28:21.0884 0x1244 [ D2926C79862A47121DA29AF474E9A180, 6AB99579C40A84D84C18E0F1E48DEFEEFD8CFEDD01D6A1FAABBD4CE481950695 ] GDPkIcpt C:\Windows\system32\drivers\PktIcpt.sys 20:28:21.0884 0x1244 GDPkIcpt - ok 20:28:21.0904 0x1244 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys 20:28:21.0904 0x1244 gdrv - ok 20:28:22.0004 0x1244 [ 2FC204FF990827303D9184B390F5C15E, A194ACE75ADD2E105C1C5555621A2E4292617C37BA17070F88D4CA56B24D9291 ] GDScan C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe 20:28:22.0014 0x1244 GDScan - ok 20:28:22.0054 0x1244 [ 4A4433764913FC43BABB2EB61DB6C1D3, BD1E569CD94E2B3F2354EE647811772EFAE21255D4892FB0A3663C16A17E6C35 ] gdwfpcd C:\Windows\system32\drivers\gdwfpcd64.sys 20:28:22.0054 0x1244 gdwfpcd - ok 20:28:22.0104 0x1244 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll 20:28:22.0114 0x1244 gpsvc - ok 20:28:22.0194 0x1244 [ CC708C622ECD93248158682AF088830E, C7FCF70E284F095E2D400BC0E7F807F772F385916C258E5F4F05C8CDACCF8754 ] GRD C:\Windows\system32\drivers\GRD.sys 20:28:22.0204 0x1244 GRD - ok 20:28:22.0264 0x1244 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:28:22.0264 0x1244 gupdate - ok 20:28:22.0284 0x1244 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:28:22.0284 0x1244 gupdatem - ok 20:28:22.0304 0x1244 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 20:28:22.0314 0x1244 hcw85cir - ok 20:28:22.0344 0x1244 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 20:28:22.0354 0x1244 HdAudAddService - ok 20:28:22.0364 0x1244 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 20:28:22.0374 0x1244 HDAudBus - ok 20:28:22.0374 0x1244 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 20:28:22.0374 0x1244 HidBatt - ok 20:28:22.0384 0x1244 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys 20:28:22.0394 0x1244 HidBth - ok 20:28:22.0394 0x1244 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys 20:28:22.0394 0x1244 HidIr - ok 20:28:22.0404 0x1244 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll 20:28:22.0404 0x1244 hidserv - ok 20:28:22.0434 0x1244 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 20:28:22.0434 0x1244 HidUsb - ok 20:28:22.0454 0x1244 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 20:28:22.0454 0x1244 hkmsvc - ok 20:28:22.0464 0x1244 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 20:28:22.0474 0x1244 HomeGroupListener - ok 20:28:22.0504 0x1244 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 20:28:22.0504 0x1244 HomeGroupProvider - ok 20:28:22.0554 0x1244 [ 20A8E34FE6FD617598E3B90C596D9557, 12A4EEDDB0479300122C32141C0646E48609AFFAF59608B7D7CC8C067C7AC7BB ] HookCentre C:\Windows\system32\drivers\HookCentre.sys 20:28:22.0554 0x1244 HookCentre - ok 20:28:22.0574 0x1244 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 20:28:22.0574 0x1244 HpSAMD - ok 20:28:22.0614 0x1244 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys 20:28:22.0624 0x1244 HTTP - ok 20:28:22.0714 0x1244 [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS 20:28:22.0724 0x1244 HWiNFO32 - ok 20:28:22.0734 0x1244 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 20:28:22.0744 0x1244 hwpolicy - ok 20:28:22.0754 0x1244 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys 20:28:22.0764 0x1244 i8042prt - ok 20:28:22.0794 0x1244 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 20:28:22.0804 0x1244 iaStorV - ok 20:28:22.0854 0x1244 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 20:28:22.0864 0x1244 idsvc - ok 20:28:22.0874 0x1244 IEEtwCollectorService - ok 20:28:22.0894 0x1244 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys 20:28:22.0894 0x1244 iirsp - ok 20:28:22.0934 0x1244 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll 20:28:22.0954 0x1244 IKEEXT - ok 20:28:22.0964 0x1244 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 20:28:22.0964 0x1244 intelide - ok 20:28:22.0994 0x1244 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys 20:28:23.0004 0x1244 intelppm - ok 20:28:23.0024 0x1244 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 20:28:23.0024 0x1244 IPBusEnum - ok 20:28:23.0034 0x1244 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 20:28:23.0034 0x1244 IpFilterDriver - ok 20:28:23.0074 0x1244 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 20:28:23.0084 0x1244 iphlpsvc - ok 20:28:23.0084 0x1244 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 20:28:23.0094 0x1244 IPMIDRV - ok 20:28:23.0094 0x1244 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 20:28:23.0094 0x1244 IPNAT - ok 20:28:23.0114 0x1244 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 20:28:23.0114 0x1244 IRENUM - ok 20:28:23.0124 0x1244 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 20:28:23.0124 0x1244 isapnp - ok 20:28:23.0154 0x1244 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 20:28:23.0154 0x1244 iScsiPrt - ok 20:28:23.0174 0x1244 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 20:28:23.0184 0x1244 kbdclass - ok 20:28:23.0194 0x1244 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 20:28:23.0194 0x1244 kbdhid - ok 20:28:23.0214 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] KeyIso C:\Windows\system32\lsass.exe 20:28:23.0214 0x1244 KeyIso - ok 20:28:23.0234 0x1244 [ 3A8C03156C3E31E70EF84E48CA179B46, E25E43D53BB6EE1B5F34C95B4FAD111B37A36367B8D047B10FC614DEE13658E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 20:28:23.0234 0x1244 KSecDD - ok 20:28:23.0244 0x1244 [ C6330F7C2E92A00E6773E82F79078AFC, D8B851BF4FCE85F2A269F0B46BC7EC5A118FCFDACE8460E7B54C1A7CE306774A ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 20:28:23.0254 0x1244 KSecPkg - ok 20:28:23.0264 0x1244 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 20:28:23.0274 0x1244 ksthunk - ok 20:28:23.0294 0x1244 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 20:28:23.0304 0x1244 KtmRm - ok 20:28:23.0334 0x1244 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll 20:28:23.0334 0x1244 LanmanServer - ok 20:28:23.0354 0x1244 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 20:28:23.0354 0x1244 LanmanWorkstation - ok 20:28:23.0404 0x1244 LiveUpdateSvc - ok 20:28:23.0444 0x1244 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 20:28:23.0444 0x1244 lltdio - ok 20:28:23.0464 0x1244 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 20:28:23.0464 0x1244 lltdsvc - ok 20:28:23.0484 0x1244 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 20:28:23.0484 0x1244 lmhosts - ok 20:28:23.0504 0x1244 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 20:28:23.0514 0x1244 LSI_FC - ok 20:28:23.0524 0x1244 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 20:28:23.0524 0x1244 LSI_SAS - ok 20:28:23.0534 0x1244 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 20:28:23.0534 0x1244 LSI_SAS2 - ok 20:28:23.0554 0x1244 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 20:28:23.0554 0x1244 LSI_SCSI - ok 20:28:23.0574 0x1244 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 20:28:23.0574 0x1244 luafv - ok 20:28:23.0614 0x1244 [ 47701ECA633574E122687693B5C5D35C, 1DB12767462347504956450FAD0D90B6E682E2E8959A6C5DF3792C3C3DA289B1 ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys 20:28:23.0614 0x1244 mbamchameleon - ok 20:28:23.0654 0x1244 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 20:28:23.0654 0x1244 MBAMProtector - ok 20:28:23.0694 0x1244 [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe 20:28:23.0714 0x1244 MBAMService - ok 20:28:23.0734 0x1244 [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys 20:28:23.0734 0x1244 MBAMWebAccessControl - ok 20:28:23.0754 0x1244 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 20:28:23.0754 0x1244 Mcx2Svc - ok 20:28:23.0774 0x1244 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys 20:28:23.0784 0x1244 megasas - ok 20:28:23.0814 0x1244 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 20:28:23.0824 0x1244 MegaSR - ok 20:28:23.0854 0x1244 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 20:28:23.0854 0x1244 MMCSS - ok 20:28:23.0874 0x1244 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys 20:28:23.0874 0x1244 Modem - ok 20:28:23.0894 0x1244 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 20:28:23.0894 0x1244 monitor - ok 20:28:23.0904 0x1244 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 20:28:23.0904 0x1244 mouclass - ok 20:28:23.0924 0x1244 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 20:28:23.0934 0x1244 mouhid - ok 20:28:23.0974 0x1244 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 20:28:23.0984 0x1244 mountmgr - ok 20:28:24.0034 0x1244 [ 2FDF943C2CAA486F9912CEC99BE27683, 01A59E6AAA6A86A1282B569911A71FE7B584CAB822E1DF42B07A91D5D711B4C1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 20:28:24.0044 0x1244 MozillaMaintenance - ok 20:28:24.0054 0x1244 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 20:28:24.0064 0x1244 mpio - ok 20:28:24.0074 0x1244 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 20:28:24.0074 0x1244 mpsdrv - ok 20:28:24.0104 0x1244 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 20:28:24.0124 0x1244 MpsSvc - ok 20:28:24.0164 0x1244 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 20:28:24.0164 0x1244 MRxDAV - ok 20:28:24.0224 0x1244 [ ACB6782973BD93760D597FC7BB37E692, 9B6EC2858D236DCE61FD5E0247F4D947A5DC484C9C0AABFDAF8270ABA392E787 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 20:28:24.0224 0x1244 mrxsmb - ok 20:28:24.0254 0x1244 [ 262BF7BB7D0E44CFAA9B12A1E0A6EDF1, CCC3A4CE929C7C8B07C1038BBE8425590CE14F5C37E1D5608978A3AD2F41519C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 20:28:24.0254 0x1244 mrxsmb10 - ok 20:28:24.0274 0x1244 [ 8C0376974AA28398FF501E78C04ACB30, 81CE67BE933F67F760A72BF9B581F33BC151D98970765FE4425450A2EF450409 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 20:28:24.0274 0x1244 mrxsmb20 - ok 20:28:24.0294 0x1244 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 20:28:24.0294 0x1244 msahci - ok 20:28:24.0344 0x1244 [ 41FB1D61DF09C36CCAB0B04EEC66F6D5, C6D0F6B8429656C56A142F95AF0B4A85DD4B78A735664C8775F49C3B04C564B7 ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS64.exe 20:28:24.0344 0x1244 MSCamSvc - ok 20:28:24.0364 0x1244 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 20:28:24.0364 0x1244 msdsm - ok 20:28:24.0374 0x1244 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 20:28:24.0384 0x1244 MSDTC - ok 20:28:24.0414 0x1244 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 20:28:24.0414 0x1244 Msfs - ok 20:28:24.0424 0x1244 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 20:28:24.0424 0x1244 mshidkmdf - ok 20:28:24.0434 0x1244 [ BB590070D606AE6F008341FC9A7B2AD7, CF1073A093E679C5BCA19681789FBB85A8286E356F2C0609E0B446DF65A86E29 ] MSHUSBVideo C:\Windows\system32\Drivers\nx6000.sys 20:28:24.0444 0x1244 MSHUSBVideo - ok 20:28:24.0444 0x1244 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 20:28:24.0454 0x1244 msisadrv - ok 20:28:24.0474 0x1244 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 20:28:24.0474 0x1244 MSiSCSI - ok 20:28:24.0484 0x1244 msiserver - ok 20:28:24.0494 0x1244 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 20:28:24.0494 0x1244 MSKSSRV - ok 20:28:24.0504 0x1244 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 20:28:24.0504 0x1244 MSPCLOCK - ok 20:28:24.0504 0x1244 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 20:28:24.0504 0x1244 MSPQM - ok 20:28:24.0524 0x1244 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 20:28:24.0524 0x1244 MsRPC - ok 20:28:24.0544 0x1244 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 20:28:24.0544 0x1244 mssmbios - ok 20:28:24.0564 0x1244 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 20:28:24.0564 0x1244 MSTEE - ok 20:28:24.0564 0x1244 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 20:28:24.0564 0x1244 MTConfig - ok 20:28:24.0574 0x1244 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 20:28:24.0584 0x1244 Mup - ok 20:28:24.0614 0x1244 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 20:28:24.0624 0x1244 napagent - ok 20:28:24.0644 0x1244 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 20:28:24.0654 0x1244 NativeWifiP - ok 20:28:24.0704 0x1244 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys 20:28:24.0724 0x1244 NDIS - ok 20:28:24.0734 0x1244 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 20:28:24.0734 0x1244 NdisCap - ok 20:28:24.0754 0x1244 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 20:28:24.0754 0x1244 NdisTapi - ok 20:28:24.0764 0x1244 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 20:28:24.0774 0x1244 Ndisuio - ok 20:28:24.0784 0x1244 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 20:28:24.0794 0x1244 NdisWan - ok 20:28:24.0804 0x1244 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 20:28:24.0804 0x1244 NDProxy - ok 20:28:24.0814 0x1244 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 20:28:24.0814 0x1244 NetBIOS - ok 20:28:24.0824 0x1244 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 20:28:24.0834 0x1244 NetBT - ok 20:28:24.0854 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] Netlogon C:\Windows\system32\lsass.exe 20:28:24.0854 0x1244 Netlogon - ok 20:28:24.0884 0x1244 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 20:28:24.0894 0x1244 Netman - ok 20:28:24.0944 0x1244 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:28:24.0954 0x1244 NetMsmqActivator - ok 20:28:24.0954 0x1244 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:28:24.0964 0x1244 NetPipeActivator - ok 20:28:24.0984 0x1244 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 20:28:24.0994 0x1244 netprofm - ok 20:28:25.0004 0x1244 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:28:25.0004 0x1244 NetTcpActivator - ok 20:28:25.0004 0x1244 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:28:25.0014 0x1244 NetTcpPortSharing - ok 20:28:25.0034 0x1244 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 20:28:25.0034 0x1244 nfrd960 - ok 20:28:25.0064 0x1244 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll 20:28:25.0064 0x1244 NlaSvc - ok 20:28:25.0074 0x1244 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 20:28:25.0074 0x1244 Npfs - ok 20:28:25.0094 0x1244 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 20:28:25.0094 0x1244 nsi - ok 20:28:25.0114 0x1244 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 20:28:25.0114 0x1244 nsiproxy - ok 20:28:25.0174 0x1244 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 20:28:25.0204 0x1244 Ntfs - ok 20:28:25.0224 0x1244 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 20:28:25.0224 0x1244 Null - ok 20:28:25.0254 0x1244 [ B9E5A80F646DDFEF158773722A466EA3, 028979FE600D17DA70445F44D81FAE4EDA3478FCC81FA5506133CCAC37C4E2BF ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 20:28:25.0254 0x1244 NVHDA - ok 20:28:25.0544 0x1244 [ 36BAB895547EA82892292F05FA02142E, 224D165CE3ECB0EF35C18D09507AB43ADC4A7AD12E507F31230012943C83BEDB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 20:28:25.0774 0x1244 nvlddmkm - ok 20:28:25.0824 0x1244 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 20:28:25.0824 0x1244 nvraid - ok 20:28:25.0844 0x1244 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 20:28:25.0854 0x1244 nvstor - ok 20:28:25.0914 0x1244 [ 6B245B7F96F901891636814B5A7A9088, BC6DF13929AEBA2CF5DC8449FF9D5F73497DF8E9760AFA93B56543D86BE940C3 ] nvsvc C:\Windows\system32\nvvsvc.exe 20:28:25.0934 0x1244 nvsvc - ok 20:28:25.0954 0x1244 [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys 20:28:25.0954 0x1244 nvvad_WaveExtensible - ok 20:28:25.0974 0x1244 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 20:28:25.0984 0x1244 nv_agp - ok 20:28:25.0994 0x1244 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 20:28:25.0994 0x1244 ohci1394 - ok 20:28:26.0024 0x1244 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 20:28:26.0024 0x1244 p2pimsvc - ok 20:28:26.0054 0x1244 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 20:28:26.0064 0x1244 p2psvc - ok 20:28:26.0064 0x1244 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys 20:28:26.0074 0x1244 Parport - ok 20:28:26.0094 0x1244 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 20:28:26.0094 0x1244 partmgr - ok 20:28:26.0124 0x1244 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll 20:28:26.0124 0x1244 PcaSvc - ok 20:28:26.0144 0x1244 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 20:28:26.0144 0x1244 pci - ok 20:28:26.0164 0x1244 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 20:28:26.0164 0x1244 pciide - ok 20:28:26.0174 0x1244 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 20:28:26.0184 0x1244 pcmcia - ok 20:28:26.0194 0x1244 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 20:28:26.0194 0x1244 pcw - ok 20:28:26.0214 0x1244 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys 20:28:26.0234 0x1244 PEAUTH - ok 20:28:26.0254 0x1244 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 20:28:26.0254 0x1244 PerfHost - ok 20:28:26.0304 0x1244 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 20:28:26.0334 0x1244 pla - ok 20:28:26.0384 0x1244 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 20:28:26.0394 0x1244 PlugPlay - ok 20:28:26.0404 0x1244 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 20:28:26.0404 0x1244 PNRPAutoReg - ok 20:28:26.0424 0x1244 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 20:28:26.0434 0x1244 PNRPsvc - ok 20:28:26.0464 0x1244 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 20:28:26.0474 0x1244 PolicyAgent - ok 20:28:26.0494 0x1244 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll 20:28:26.0504 0x1244 Power - ok 20:28:26.0534 0x1244 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 20:28:26.0534 0x1244 PptpMiniport - ok 20:28:26.0534 0x1244 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys 20:28:26.0544 0x1244 Processor - ok 20:28:26.0564 0x1244 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll 20:28:26.0574 0x1244 ProfSvc - ok 20:28:26.0584 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] ProtectedStorage C:\Windows\system32\lsass.exe 20:28:26.0584 0x1244 ProtectedStorage - ok 20:28:26.0604 0x1244 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 20:28:26.0604 0x1244 Psched - ok 20:28:26.0654 0x1244 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 20:28:26.0694 0x1244 ql2300 - ok 20:28:26.0714 0x1244 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 20:28:26.0714 0x1244 ql40xx - ok 20:28:26.0734 0x1244 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 20:28:26.0744 0x1244 QWAVE - ok 20:28:26.0754 0x1244 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 20:28:26.0754 0x1244 QWAVEdrv - ok 20:28:26.0764 0x1244 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 20:28:26.0764 0x1244 RasAcd - ok 20:28:26.0784 0x1244 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 20:28:26.0784 0x1244 RasAgileVpn - ok 20:28:26.0794 0x1244 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 20:28:26.0804 0x1244 RasAuto - ok 20:28:26.0814 0x1244 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 20:28:26.0814 0x1244 Rasl2tp - ok 20:28:26.0834 0x1244 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 20:28:26.0844 0x1244 RasMan - ok 20:28:26.0864 0x1244 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 20:28:26.0864 0x1244 RasPppoe - ok 20:28:26.0884 0x1244 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 20:28:26.0884 0x1244 RasSstp - ok 20:28:26.0894 0x1244 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 20:28:26.0904 0x1244 rdbss - ok 20:28:26.0914 0x1244 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 20:28:26.0924 0x1244 rdpbus - ok 20:28:26.0934 0x1244 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 20:28:26.0934 0x1244 RDPCDD - ok 20:28:26.0954 0x1244 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 20:28:26.0954 0x1244 RDPENCDD - ok 20:28:26.0964 0x1244 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 20:28:26.0964 0x1244 RDPREFMP - ok 20:28:27.0024 0x1244 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 20:28:27.0024 0x1244 RdpVideoMiniport - ok 20:28:27.0054 0x1244 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 20:28:27.0054 0x1244 RDPWD - ok 20:28:27.0074 0x1244 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 20:28:27.0084 0x1244 rdyboost - ok 20:28:27.0104 0x1244 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll 20:28:27.0104 0x1244 RemoteAccess - ok 20:28:27.0134 0x1244 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 20:28:27.0134 0x1244 RemoteRegistry - ok 20:28:27.0154 0x1244 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 20:28:27.0154 0x1244 RpcEptMapper - ok 20:28:27.0164 0x1244 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 20:28:27.0164 0x1244 RpcLocator - ok 20:28:27.0194 0x1244 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll 20:28:27.0204 0x1244 RpcSs - ok 20:28:27.0214 0x1244 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 20:28:27.0214 0x1244 rspndr - ok 20:28:27.0264 0x1244 [ 66E06E5B77F2323B1F11EB4C70B78328, D14A6DFF95EC897EA737623A8E60D6DEF12077A54648AC78FBD19BA11985CD77 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 20:28:27.0284 0x1244 RTL8167 - ok 20:28:27.0304 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] SamSs C:\Windows\system32\lsass.exe 20:28:27.0304 0x1244 SamSs - ok 20:28:27.0314 0x1244 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 20:28:27.0324 0x1244 sbp2port - ok 20:28:27.0334 0x1244 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 20:28:27.0344 0x1244 SCardSvr - ok 20:28:27.0364 0x1244 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 20:28:27.0364 0x1244 scfilter - ok 20:28:27.0414 0x1244 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll 20:28:27.0434 0x1244 Schedule - ok 20:28:27.0464 0x1244 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 20:28:27.0464 0x1244 SCPolicySvc - ok 20:28:27.0484 0x1244 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 20:28:27.0494 0x1244 SDRSVC - ok 20:28:27.0504 0x1244 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 20:28:27.0504 0x1244 secdrv - ok 20:28:27.0514 0x1244 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll 20:28:27.0524 0x1244 seclogon - ok 20:28:27.0534 0x1244 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll 20:28:27.0534 0x1244 SENS - ok 20:28:27.0584 0x1244 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 20:28:27.0584 0x1244 SensrSvc - ok 20:28:27.0614 0x1244 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 20:28:27.0614 0x1244 Serenum - ok 20:28:27.0634 0x1244 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys 20:28:27.0634 0x1244 Serial - ok 20:28:27.0644 0x1244 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys 20:28:27.0644 0x1244 sermouse - ok 20:28:27.0664 0x1244 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll 20:28:27.0674 0x1244 SessionEnv - ok 20:28:27.0674 0x1244 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 20:28:27.0674 0x1244 sffdisk - ok 20:28:27.0684 0x1244 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 20:28:27.0684 0x1244 sffp_mmc - ok 20:28:27.0684 0x1244 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 20:28:27.0684 0x1244 sffp_sd - ok 20:28:27.0694 0x1244 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 20:28:27.0694 0x1244 sfloppy - ok 20:28:27.0714 0x1244 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 20:28:27.0724 0x1244 SharedAccess - ok 20:28:27.0744 0x1244 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 20:28:27.0754 0x1244 ShellHWDetection - ok 20:28:27.0764 0x1244 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 20:28:27.0764 0x1244 SiSRaid2 - ok 20:28:27.0774 0x1244 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 20:28:27.0774 0x1244 SiSRaid4 - ok 20:28:27.0864 0x1244 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 20:28:27.0874 0x1244 SkypeUpdate - ok 20:28:27.0894 0x1244 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 20:28:27.0904 0x1244 Smb - ok 20:28:27.0914 0x1244 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 20:28:27.0914 0x1244 SNMPTRAP - ok 20:28:27.0934 0x1244 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys 20:28:27.0944 0x1244 speedfan - ok 20:28:27.0954 0x1244 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 20:28:27.0954 0x1244 spldr - ok 20:28:27.0984 0x1244 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe 20:28:27.0994 0x1244 Spooler - ok 20:28:28.0104 0x1244 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 20:28:28.0174 0x1244 sppsvc - ok 20:28:28.0204 0x1244 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 20:28:28.0204 0x1244 sppuinotify - ok 20:28:28.0234 0x1244 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys 20:28:28.0244 0x1244 srv - ok 20:28:28.0264 0x1244 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 20:28:28.0274 0x1244 srv2 - ok 20:28:28.0284 0x1244 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 20:28:28.0294 0x1244 srvnet - ok 20:28:28.0304 0x1244 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 20:28:28.0304 0x1244 SSDPSRV - ok 20:28:28.0324 0x1244 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 20:28:28.0324 0x1244 SstpSvc - ok 20:28:28.0384 0x1244 [ D31201BD8782752BD69DBE1E5DDF9AC5, 98B72690B4E6CC1B694C655DD31CB1FB56B76B62A32CFB748AF78F4C072D9740 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe 20:28:28.0394 0x1244 Steam Client Service - ok 20:28:28.0464 0x1244 [ C368FAF3084E3978462159F1DDAFF54F, F7DD88038E002EF3D2BCA648FE7CF0F92347E901C5F495D8D8E4D24076E895CD ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 20:28:28.0464 0x1244 Stereo Service - ok 20:28:28.0484 0x1244 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys 20:28:28.0484 0x1244 stexstor - ok 20:28:28.0524 0x1244 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 20:28:28.0544 0x1244 stisvc - ok 20:28:28.0554 0x1244 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 20:28:28.0554 0x1244 swenum - ok 20:28:28.0584 0x1244 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 20:28:28.0594 0x1244 swprv - ok 20:28:28.0684 0x1244 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll 20:28:28.0724 0x1244 SysMain - ok 20:28:28.0734 0x1244 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 20:28:28.0744 0x1244 TabletInputService - ok 20:28:28.0774 0x1244 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys 20:28:28.0774 0x1244 tap0901t - ok 20:28:28.0784 0x1244 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 20:28:28.0794 0x1244 TapiSrv - ok 20:28:28.0814 0x1244 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll 20:28:28.0814 0x1244 TBS - ok 20:28:28.0884 0x1244 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 20:28:28.0924 0x1244 Tcpip - ok 20:28:28.0984 0x1244 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 20:28:29.0014 0x1244 TCPIP6 - ok 20:28:29.0034 0x1244 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 20:28:29.0044 0x1244 tcpipreg - ok 20:28:29.0064 0x1244 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 20:28:29.0064 0x1244 TDPIPE - ok 20:28:29.0084 0x1244 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 20:28:29.0084 0x1244 TDTCP - ok 20:28:29.0114 0x1244 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys 20:28:29.0114 0x1244 tdx - ok 20:28:29.0134 0x1244 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 20:28:29.0134 0x1244 TermDD - ok 20:28:29.0174 0x1244 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll 20:28:29.0194 0x1244 TermService - ok 20:28:29.0214 0x1244 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 20:28:29.0214 0x1244 Themes - ok 20:28:29.0234 0x1244 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 20:28:29.0234 0x1244 THREADORDER - ok 20:28:29.0254 0x1244 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 20:28:29.0254 0x1244 TrkWks - ok 20:28:29.0284 0x1244 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 20:28:29.0294 0x1244 TrustedInstaller - ok 20:28:29.0314 0x1244 [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 20:28:29.0314 0x1244 tssecsrv - ok 20:28:29.0334 0x1244 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 20:28:29.0334 0x1244 TsUsbFlt - ok 20:28:29.0354 0x1244 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 20:28:29.0364 0x1244 TsUsbGD - ok 20:28:29.0394 0x1244 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 20:28:29.0394 0x1244 tunnel - ok 20:28:29.0464 0x1244 [ FB72C65414AF62E2C1678261F556D77C, 32C6DB37B5EFCB68D1D37A73002A76DFC41A4A2120862ED8390524A37D506E30 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe 20:28:29.0484 0x1244 TunngleService - ok 20:28:29.0504 0x1244 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 20:28:29.0514 0x1244 uagp35 - ok 20:28:29.0534 0x1244 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 20:28:29.0534 0x1244 udfs - ok 20:28:29.0554 0x1244 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 20:28:29.0564 0x1244 UI0Detect - ok 20:28:29.0584 0x1244 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 20:28:29.0584 0x1244 uliagpkx - ok 20:28:29.0604 0x1244 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 20:28:29.0604 0x1244 umbus - ok 20:28:29.0604 0x1244 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys 20:28:29.0614 0x1244 UmPass - ok 20:28:29.0634 0x1244 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 20:28:29.0644 0x1244 upnphost - ok 20:28:29.0674 0x1244 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 20:28:29.0674 0x1244 usbaudio - ok 20:28:29.0704 0x1244 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 20:28:29.0704 0x1244 usbccgp - ok 20:28:29.0734 0x1244 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 20:28:29.0734 0x1244 usbcir - ok 20:28:29.0754 0x1244 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 20:28:29.0754 0x1244 usbehci - ok 20:28:29.0774 0x1244 [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys 20:28:29.0774 0x1244 usbfilter - ok 20:28:29.0804 0x1244 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 20:28:29.0814 0x1244 usbhub - ok 20:28:29.0824 0x1244 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 20:28:29.0824 0x1244 usbohci - ok 20:28:29.0844 0x1244 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 20:28:29.0854 0x1244 usbprint - ok 20:28:29.0884 0x1244 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 20:28:29.0884 0x1244 usbscan - ok 20:28:29.0904 0x1244 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 20:28:29.0914 0x1244 USBSTOR - ok 20:28:29.0924 0x1244 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 20:28:29.0924 0x1244 usbuhci - ok 20:28:29.0954 0x1244 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 20:28:29.0954 0x1244 usbvideo - ok 20:28:29.0974 0x1244 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 20:28:29.0974 0x1244 UxSms - ok 20:28:29.0984 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] VaultSvc C:\Windows\system32\lsass.exe 20:28:29.0984 0x1244 VaultSvc - ok 20:28:29.0994 0x1244 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 20:28:30.0004 0x1244 vdrvroot - ok 20:28:30.0024 0x1244 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 20:28:30.0034 0x1244 vds - ok 20:28:30.0054 0x1244 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 20:28:30.0054 0x1244 vga - ok 20:28:30.0064 0x1244 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 20:28:30.0064 0x1244 VgaSave - ok 20:28:30.0084 0x1244 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 20:28:30.0094 0x1244 vhdmp - ok 20:28:30.0134 0x1244 [ F109FCCC5F041796D183BED37F5007D5, 4061A7436649752F4650A1674051333A06F76BAAD1A3C32EB21EBE19420D362D ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys 20:28:30.0154 0x1244 VIAHdAudAddService - ok 20:28:30.0174 0x1244 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 20:28:30.0174 0x1244 viaide - ok 20:28:30.0194 0x1244 [ 097A1A16F9F38715CEAA092DE626F517, 5D51D74C3264ADEA1A50F6620150B284E54C5294A548D1BC940B3B5FF5343998 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe 20:28:30.0204 0x1244 VIAKaraokeService - ok 20:28:30.0214 0x1244 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 20:28:30.0214 0x1244 volmgr - ok 20:28:30.0234 0x1244 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 20:28:30.0244 0x1244 volmgrx - ok 20:28:30.0254 0x1244 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys 20:28:30.0264 0x1244 volsnap - ok 20:28:30.0284 0x1244 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 20:28:30.0284 0x1244 vsmraid - ok 20:28:30.0344 0x1244 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 20:28:30.0374 0x1244 VSS - ok 20:28:30.0394 0x1244 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 20:28:30.0394 0x1244 vwifibus - ok 20:28:30.0414 0x1244 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 20:28:30.0424 0x1244 W32Time - ok 20:28:30.0444 0x1244 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 20:28:30.0444 0x1244 WacomPen - ok 20:28:30.0464 0x1244 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 20:28:30.0464 0x1244 WANARP - ok 20:28:30.0474 0x1244 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 20:28:30.0474 0x1244 Wanarpv6 - ok 20:28:30.0524 0x1244 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 20:28:30.0564 0x1244 wbengine - ok 20:28:30.0594 0x1244 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 20:28:30.0604 0x1244 WbioSrvc - ok 20:28:30.0614 0x1244 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 20:28:30.0624 0x1244 wcncsvc - ok 20:28:30.0644 0x1244 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 20:28:30.0644 0x1244 WcsPlugInService - ok 20:28:30.0664 0x1244 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys 20:28:30.0664 0x1244 Wd - ok 20:28:30.0694 0x1244 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 20:28:30.0714 0x1244 Wdf01000 - ok 20:28:30.0744 0x1244 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll 20:28:30.0744 0x1244 WdiServiceHost - ok 20:28:30.0754 0x1244 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll 20:28:30.0754 0x1244 WdiSystemHost - ok 20:28:30.0784 0x1244 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll 20:28:30.0794 0x1244 WebClient - ok 20:28:30.0824 0x1244 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll 20:28:30.0824 0x1244 Wecsvc - ok 20:28:30.0844 0x1244 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 20:28:30.0844 0x1244 wercplsupport - ok 20:28:30.0854 0x1244 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 20:28:30.0864 0x1244 WerSvc - ok 20:28:30.0874 0x1244 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 20:28:30.0874 0x1244 WfpLwf - ok 20:28:30.0884 0x1244 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 20:28:30.0884 0x1244 WIMMount - ok 20:28:30.0904 0x1244 WinDefend - ok 20:28:30.0924 0x1244 WinHttpAutoProxySvc - ok 20:28:30.0964 0x1244 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 20:28:30.0974 0x1244 Winmgmt - ok 20:28:31.0034 0x1244 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll 20:28:31.0084 0x1244 WinRM - ok 20:28:31.0124 0x1244 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 20:28:31.0124 0x1244 WinUsb - ok 20:28:31.0164 0x1244 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 20:28:31.0184 0x1244 Wlansvc - ok 20:28:31.0294 0x1244 [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 20:28:31.0334 0x1244 wlidsvc - ok 20:28:31.0354 0x1244 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 20:28:31.0354 0x1244 WmiAcpi - ok 20:28:31.0384 0x1244 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 20:28:31.0394 0x1244 wmiApSrv - ok 20:28:31.0414 0x1244 WMPNetworkSvc - ok 20:28:31.0434 0x1244 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 20:28:31.0434 0x1244 WPCSvc - ok 20:28:31.0454 0x1244 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 20:28:31.0454 0x1244 WPDBusEnum - ok 20:28:31.0474 0x1244 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 20:28:31.0474 0x1244 ws2ifsl - ok 20:28:31.0484 0x1244 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll 20:28:31.0494 0x1244 wscsvc - ok 20:28:31.0494 0x1244 WSearch - ok 20:28:31.0584 0x1244 [ 291778E1A36716182AFBC1731B2DFEAB, C0B928CCCE8C496C90C42E0D294BAB51DC67C02B0D20CFB6A16B0AE1F51CC497 ] wuauserv C:\Windows\system32\wuaueng.dll 20:28:31.0634 0x1244 wuauserv - ok 20:28:31.0664 0x1244 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 20:28:31.0664 0x1244 WudfPf - ok 20:28:31.0694 0x1244 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 20:28:31.0704 0x1244 WUDFRd - ok 20:28:31.0714 0x1244 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 20:28:31.0714 0x1244 wudfsvc - ok 20:28:31.0744 0x1244 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll 20:28:31.0754 0x1244 WwanSvc - ok 20:28:31.0794 0x1244 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys 20:28:31.0794 0x1244 xusb21 - ok 20:28:31.0824 0x1244 ================ Scan global =============================== 20:28:31.0844 0x1244 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll 20:28:31.0874 0x1244 [ 4AD1C61152A0199E3D7F9A82C07AC629, A4A42C7757EB084EE368A6BC4EBAB0C47BE41B0B4119A6AECD1B8E3332A7C5D5 ] C:\Windows\system32\winsrv.dll 20:28:31.0884 0x1244 [ 4AD1C61152A0199E3D7F9A82C07AC629, A4A42C7757EB084EE368A6BC4EBAB0C47BE41B0B4119A6AECD1B8E3332A7C5D5 ] C:\Windows\system32\winsrv.dll 20:28:31.0904 0x1244 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 20:28:31.0934 0x1244 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe 20:28:31.0934 0x1244 [ Global ] - ok 20:28:31.0934 0x1244 ================ Scan MBR ================================== 20:28:31.0944 0x1244 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 20:28:32.0144 0x1244 \Device\Harddisk0\DR0 - ok 20:28:32.0144 0x1244 ================ Scan VBR ================================== 20:28:32.0144 0x1244 [ E7C3907DBD9BB4DA40119478DB1648A8 ] \Device\Harddisk0\DR0\Partition1 20:28:32.0184 0x1244 \Device\Harddisk0\DR0\Partition1 - ok 20:28:32.0184 0x1244 [ 8C5315499438E4F2D6072D2A1940927C ] \Device\Harddisk0\DR0\Partition2 20:28:32.0214 0x1244 \Device\Harddisk0\DR0\Partition2 - ok 20:28:32.0214 0x1244 [ 950C3AA7D374E3D5438C9D32034FDE54 ] \Device\Harddisk0\DR0\Partition3 20:28:32.0244 0x1244 \Device\Harddisk0\DR0\Partition3 - ok 20:28:32.0244 0x1244 ================ Scan generic autorun ====================== 20:28:32.0414 0x1244 [ 791E0C3A4A8BDE574D44E5C2220051E6, 7F135E2C6B4B4C7EA86AD7A9036401E0F52480889B6BCE3D1911435778EBA37B ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe 20:28:32.0514 0x1244 HDAudDeck - ok 20:28:32.0634 0x1244 [ 442CC2A5247327548826D284B7CC7287, 8005CB98F7519EDC84FE88009EE354B753929DDA71761571E68BECCBC3D88D02 ] C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe 20:28:32.0664 0x1244 GDFirewallTray - ok 20:28:32.0724 0x1244 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 20:28:32.0754 0x1244 Sidebar - ok 20:28:32.0764 0x1244 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 20:28:32.0774 0x1244 mctadmin - ok 20:28:32.0794 0x1244 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 20:28:32.0814 0x1244 Sidebar - ok 20:28:32.0824 0x1244 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 20:28:32.0824 0x1244 mctadmin - ok 20:28:32.0824 0x1244 Waiting for KSN requests completion. In queue: 342 20:28:33.0414 0x1148 Object required for P2P: [ 6B245B7F96F901891636814B5A7A9088 ] nvsvc 20:28:33.0824 0x1244 Waiting for KSN requests completion. In queue: 186 20:28:34.0824 0x1244 Waiting for KSN requests completion. In queue: 186 20:28:35.0824 0x1244 Waiting for KSN requests completion. In queue: 155 20:28:36.0084 0x1148 Object send P2P result: true 20:28:36.0954 0x1244 AV detected via SS2: G DATA INTERNET SECURITY, C:\Program Files (x86)\G DATA\InternetSecurity\AVK\avkwscpe.exe ( 25.1.0.0 ), 0x41000 ( enabled : updated ) 20:28:36.0954 0x1244 FW detected via SS2: G*DATA Personal Firewall, C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe ( 22.0.0.1 ), 0x41010 ( enabled ) 20:28:39.0514 0x1244 ============================================================ 20:28:39.0514 0x1244 Scan finished 20:28:39.0514 0x1244 ============================================================ 20:28:39.0514 0x1318 Detected object count: 0 20:28:39.0514 0x1318 Actual detected object count: 0 |
|
01.11.2015, 07:29
| #9 |
| /// the machine /// TB-Ausbilder | Win7 friert in unregelmäßigen Zeiten ein So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.11.2015, 12:39
| #10 |
| | Win7 friert in unregelmäßigen Zeiten einCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.10.31.04
rootkit: v2015.10.28.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18059
Rudolf :: RUDOLF-PC [administrator]
31.10.2015 20:13:02
mbar-log-2015-10-31 (20-13-02).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 323595
Time elapsed: 11 minute(s), 25 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 20:28:00.0824 0x16fc TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
20:28:08.0804 0x16fc ============================================================
20:28:08.0804 0x16fc Current date / time: 2015/10/31 20:28:08.0804
20:28:08.0804 0x16fc SystemInfo:
20:28:08.0804 0x16fc
20:28:08.0804 0x16fc OS Version: 6.1.7601 ServicePack: 1.0
20:28:08.0804 0x16fc Product type: Workstation
20:28:08.0804 0x16fc ComputerName: RUDOLF-PC
20:28:08.0804 0x16fc UserName: Rudolf
20:28:08.0804 0x16fc Windows directory: C:\Windows
20:28:08.0804 0x16fc System windows directory: C:\Windows
20:28:08.0804 0x16fc Running under WOW64
20:28:08.0804 0x16fc Processor architecture: Intel x64
20:28:08.0804 0x16fc Number of processors: 4
20:28:08.0804 0x16fc Page size: 0x1000
20:28:08.0804 0x16fc Boot type: Normal boot
20:28:08.0804 0x16fc ============================================================
20:28:09.0014 0x16fc KLMD registered as C:\Windows\system32\drivers\13010856.sys
20:28:09.0544 0x16fc System UUID: {C5D4B623-59C6-A10F-E07F-65C91825F81B}
20:28:10.0064 0x16fc Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:28:10.0074 0x16fc ============================================================
20:28:10.0074 0x16fc \Device\Harddisk0\DR0:
20:28:10.0074 0x16fc MBR partitions:
20:28:10.0074 0x16fc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:28:10.0074 0x16fc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x18FCD800
20:28:10.0084 0x16fc \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x19000000, BlocksNum 0x5B706000
20:28:10.0084 0x16fc ============================================================
20:28:10.0104 0x16fc C: <-> \Device\Harddisk0\DR0\Partition2
20:28:10.0134 0x16fc D: <-> \Device\Harddisk0\DR0\Partition3
20:28:10.0134 0x16fc ============================================================
20:28:10.0134 0x16fc Initialize success
20:28:10.0134 0x16fc ============================================================
20:28:14.0304 0x1244 ============================================================
20:28:14.0304 0x1244 Scan started
20:28:14.0304 0x1244 Mode: Manual;
20:28:14.0304 0x1244 ============================================================
20:28:14.0304 0x1244 KSN ping started
20:28:16.0844 0x1244 KSN ping finished: true
20:28:17.0544 0x1244 ================ Scan system memory ========================
20:28:17.0544 0x1244 System memory - ok
20:28:17.0544 0x1244 ================ Scan services =============================
20:28:17.0674 0x1244 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
20:28:17.0674 0x1244 1394ohci - ok
20:28:17.0694 0x1244 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:28:17.0704 0x1244 ACPI - ok
20:28:17.0714 0x1244 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:28:17.0714 0x1244 AcpiPmi - ok
20:28:17.0794 0x1244 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:28:17.0794 0x1244 AdobeARMservice - ok
20:28:17.0924 0x1244 [ 8C194A201698B4B4F77D974549819D1F, 081A2496FE1CE519E48677D99A831FF1FEEB1B33C75224CF288FA52F3E0E5FF0 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:28:17.0934 0x1244 AdobeFlashPlayerUpdateSvc - ok
20:28:17.0974 0x1244 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:28:17.0984 0x1244 adp94xx - ok
20:28:18.0024 0x1244 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:28:18.0034 0x1244 adpahci - ok
20:28:18.0044 0x1244 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:28:18.0054 0x1244 adpu320 - ok
20:28:18.0074 0x1244 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:28:18.0074 0x1244 AeLookupSvc - ok
20:28:18.0124 0x1244 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
20:28:18.0134 0x1244 AFD - ok
20:28:18.0144 0x1244 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
20:28:18.0144 0x1244 agp440 - ok
20:28:18.0154 0x1244 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
20:28:18.0154 0x1244 ALG - ok
20:28:18.0184 0x1244 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
20:28:18.0184 0x1244 aliide - ok
20:28:18.0194 0x1244 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
20:28:18.0194 0x1244 amdide - ok
20:28:18.0214 0x1244 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:28:18.0214 0x1244 AmdK8 - ok
20:28:18.0234 0x1244 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:28:18.0234 0x1244 AmdPPM - ok
20:28:18.0264 0x1244 [ 53D8D46D51D390ABDB54ECA623165CB7, D16A3604412D0DC3EA68320FB6980D146ED60D587AAB6B65810C038AFF1EC237 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
20:28:18.0264 0x1244 amdsata - ok
20:28:18.0284 0x1244 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
20:28:18.0284 0x1244 amdsbs - ok
20:28:18.0304 0x1244 [ 75C51148154E34EB3D7BB84749A758D5, 8865F223CBAE166A9BF6CBCDA66F63369F151CCB449A28E95560C36AD45D0C85 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:28:18.0304 0x1244 amdxata - ok
20:28:18.0314 0x1244 [ EBECBA1E37CE98BA2BD64A22A788DAC5, 247C474DAF9FFFF7FB46EB6185088B94B886A7685F98CABE1983EFEAEE1A8338 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
20:28:18.0324 0x1244 amd_sata - ok
20:28:18.0344 0x1244 [ 7F1B42E70FAE147B14B28B83E003F039, 093C2B57AFDC93E667A3AB1F74442DBA42B0DE2132388E73BDC3D09FDBB1B3D0 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
20:28:18.0344 0x1244 amd_xata - ok
20:28:18.0374 0x1244 [ E21DECAFC572EEF6F63D9513BA8F8817, 64A5A1F4B089F9AEBABE0430447C58E5D9DF2CD7997F557849796ACF356A8B0D ] AODDriver4.3.0 C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys
20:28:18.0374 0x1244 AODDriver4.3.0 - ok
20:28:18.0384 0x1244 [ A5CF81BA864AD5F63231AD84A6CFBE51, 5E22B443F3CD97DE4D2296556EA35944BC100775083D1CB0304FEF4445552A88 ] AODService C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
20:28:18.0384 0x1244 AODService - ok
20:28:18.0414 0x1244 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
20:28:18.0414 0x1244 AppID - ok
20:28:18.0434 0x1244 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:28:18.0434 0x1244 AppIDSvc - ok
20:28:18.0474 0x1244 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
20:28:18.0474 0x1244 Appinfo - ok
20:28:18.0484 0x1244 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
20:28:18.0484 0x1244 arc - ok
20:28:18.0494 0x1244 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:28:18.0504 0x1244 arcsas - ok
20:28:18.0584 0x1244 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:28:18.0584 0x1244 aspnet_state - ok
20:28:18.0594 0x1244 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:28:18.0604 0x1244 AsyncMac - ok
20:28:18.0624 0x1244 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
20:28:18.0624 0x1244 atapi - ok
20:28:18.0654 0x1244 atillk64 - ok
20:28:18.0704 0x1244 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:28:18.0724 0x1244 AudioEndpointBuilder - ok
20:28:18.0734 0x1244 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:28:18.0744 0x1244 AudioSrv - ok
20:28:18.0944 0x1244 [ EAC923325937602A24994969F00788B5, 254913759B6159398A452E81707D97C3BAC45D749904F5A220DB964D9ED4036C ] AVKProxy C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
20:28:18.0984 0x1244 AVKProxy - ok
20:28:19.0084 0x1244 [ BCC79D1E0605ABE4B58A9DEE696982A5, 7619EDBB1ABEE4A1B3476D42BCD718876C5BE7F7A4B972414D45F2540F17C665 ] AVKService C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe
20:28:19.0094 0x1244 AVKService - ok
20:28:19.0254 0x1244 [ 89774771ECD5869ED9E1EB6D448D8FF6, BB914E238E23C7F6695FF30C475DC7A92CBAA51F68E433DF3D5C86F7972DB81C ] AVKWCtl C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe
20:28:19.0314 0x1244 AVKWCtl - ok
20:28:19.0354 0x1244 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:28:19.0354 0x1244 AxInstSV - ok
20:28:19.0394 0x1244 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
20:28:19.0404 0x1244 b06bdrv - ok
20:28:19.0434 0x1244 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:28:19.0434 0x1244 b57nd60a - ok
20:28:19.0464 0x1244 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
20:28:19.0464 0x1244 BDESVC - ok
20:28:19.0474 0x1244 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
20:28:19.0474 0x1244 Beep - ok
20:28:19.0524 0x1244 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
20:28:19.0534 0x1244 BFE - ok
20:28:19.0574 0x1244 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
20:28:19.0594 0x1244 BITS - ok
20:28:19.0614 0x1244 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:28:19.0614 0x1244 blbdrive - ok
20:28:19.0644 0x1244 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:28:19.0644 0x1244 bowser - ok
20:28:19.0654 0x1244 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
20:28:19.0654 0x1244 BrFiltLo - ok
20:28:19.0654 0x1244 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
20:28:19.0654 0x1244 BrFiltUp - ok
20:28:19.0684 0x1244 [ C711ED965009BDCFF9AA62CEB6FF1AAD, 083E981F983653329C2B8361963CA81D5D88E164C7738035F701A10CCB1C85CC ] Brother XP spl Service C:\Windows\SysWOW64\brsvc01a.exe
20:28:19.0694 0x1244 Brother XP spl Service - ok
20:28:19.0704 0x1244 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
20:28:19.0714 0x1244 Browser - ok
20:28:19.0734 0x1244 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:28:19.0734 0x1244 Brserid - ok
20:28:19.0744 0x1244 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:28:19.0744 0x1244 BrSerWdm - ok
20:28:19.0744 0x1244 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:28:19.0744 0x1244 BrUsbMdm - ok
20:28:19.0754 0x1244 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:28:19.0754 0x1244 BrUsbSer - ok
20:28:19.0764 0x1244 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
20:28:19.0764 0x1244 BTHMODEM - ok
20:28:19.0784 0x1244 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
20:28:19.0784 0x1244 bthserv - ok
20:28:19.0794 0x1244 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:28:19.0804 0x1244 cdfs - ok
20:28:19.0824 0x1244 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:28:19.0824 0x1244 cdrom - ok
20:28:19.0854 0x1244 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
20:28:19.0854 0x1244 CertPropSvc - ok
20:28:19.0884 0x1244 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
20:28:19.0884 0x1244 circlass - ok
20:28:19.0924 0x1244 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
20:28:19.0924 0x1244 CLFS - ok
20:28:19.0974 0x1244 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:28:19.0974 0x1244 clr_optimization_v2.0.50727_32 - ok
20:28:19.0994 0x1244 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:28:19.0994 0x1244 clr_optimization_v2.0.50727_64 - ok
20:28:20.0044 0x1244 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:28:20.0054 0x1244 clr_optimization_v4.0.30319_32 - ok
20:28:20.0064 0x1244 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:28:20.0074 0x1244 clr_optimization_v4.0.30319_64 - ok
20:28:20.0084 0x1244 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
20:28:20.0084 0x1244 CmBatt - ok
20:28:20.0114 0x1244 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:28:20.0114 0x1244 cmdide - ok
20:28:20.0154 0x1244 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
20:28:20.0164 0x1244 CNG - ok
20:28:20.0174 0x1244 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
20:28:20.0184 0x1244 Compbatt - ok
20:28:20.0204 0x1244 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:28:20.0204 0x1244 CompositeBus - ok
20:28:20.0204 0x1244 COMSysApp - ok
20:28:20.0224 0x1244 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:28:20.0224 0x1244 crcdisk - ok
20:28:20.0254 0x1244 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:28:20.0254 0x1244 CryptSvc - ok
20:28:20.0284 0x1244 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:28:20.0294 0x1244 DcomLaunch - ok
20:28:20.0324 0x1244 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
20:28:20.0334 0x1244 defragsvc - ok
20:28:20.0344 0x1244 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:28:20.0344 0x1244 DfsC - ok
20:28:20.0364 0x1244 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:28:20.0374 0x1244 Dhcp - ok
20:28:20.0434 0x1244 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
20:28:20.0464 0x1244 DiagTrack - ok
20:28:20.0484 0x1244 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
20:28:20.0484 0x1244 discache - ok
20:28:20.0514 0x1244 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
20:28:20.0514 0x1244 Disk - ok
20:28:20.0544 0x1244 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:28:20.0544 0x1244 Dnscache - ok
20:28:20.0574 0x1244 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
20:28:20.0584 0x1244 dot3svc - ok
20:28:20.0594 0x1244 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
20:28:20.0594 0x1244 DPS - ok
20:28:20.0624 0x1244 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:28:20.0624 0x1244 drmkaud - ok
20:28:20.0664 0x1244 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:28:20.0684 0x1244 DXGKrnl - ok
20:28:20.0694 0x1244 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
20:28:20.0694 0x1244 EapHost - ok
20:28:20.0784 0x1244 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
20:28:20.0854 0x1244 ebdrv - ok
20:28:20.0884 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] EFS C:\Windows\System32\lsass.exe
20:28:20.0884 0x1244 EFS - ok
20:28:20.0934 0x1244 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:28:20.0944 0x1244 ehRecvr - ok
20:28:20.0954 0x1244 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
20:28:20.0954 0x1244 ehSched - ok
20:28:21.0004 0x1244 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:28:21.0014 0x1244 elxstor - ok
20:28:21.0024 0x1244 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:28:21.0024 0x1244 ErrDev - ok
20:28:21.0044 0x1244 EtronHub3 - ok
20:28:21.0054 0x1244 EtronXHCI - ok
20:28:21.0084 0x1244 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
20:28:21.0094 0x1244 EventSystem - ok
20:28:21.0114 0x1244 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
20:28:21.0124 0x1244 exfat - ok
20:28:21.0134 0x1244 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:28:21.0134 0x1244 fastfat - ok
20:28:21.0164 0x1244 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
20:28:21.0174 0x1244 Fax - ok
20:28:21.0194 0x1244 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
20:28:21.0194 0x1244 fdc - ok
20:28:21.0204 0x1244 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
20:28:21.0214 0x1244 fdPHost - ok
20:28:21.0214 0x1244 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
20:28:21.0224 0x1244 FDResPub - ok
20:28:21.0234 0x1244 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:28:21.0234 0x1244 FileInfo - ok
20:28:21.0244 0x1244 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:28:21.0244 0x1244 Filetrace - ok
20:28:21.0264 0x1244 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
20:28:21.0264 0x1244 flpydisk - ok
20:28:21.0284 0x1244 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:28:21.0284 0x1244 FltMgr - ok
20:28:21.0334 0x1244 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
20:28:21.0364 0x1244 FontCache - ok
20:28:21.0404 0x1244 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:28:21.0404 0x1244 FontCache3.0.0.0 - ok
20:28:21.0414 0x1244 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:28:21.0414 0x1244 FsDepends - ok
20:28:21.0444 0x1244 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:28:21.0444 0x1244 Fs_Rec - ok
20:28:21.0474 0x1244 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:28:21.0474 0x1244 fvevol - ok
20:28:21.0484 0x1244 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:28:21.0494 0x1244 gagp30kx - ok
20:28:21.0534 0x1244 [ 22F1DEC206A6756884ED0740DBCB31AF, D1766BDE07CF24809A39264DEF6534552C6919684FB811CA4F3BE63E60250AA4 ] GDBehave C:\Windows\system32\drivers\GDBehave.sys
20:28:21.0534 0x1244 GDBehave - ok
20:28:21.0724 0x1244 [ 73F5C62BBE0CDCDFFDC3C0B71F24E4FD, 8BB0796DF4BC6C11AEC33ECDECCAF85946C3BB19C85F1700020AA353000B4361 ] GDFwSvc C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe
20:28:21.0774 0x1244 GDFwSvc - ok
20:28:21.0804 0x1244 [ FF5543CDA6B06E3D29A5F312BE5C4919, 91E0BB934EFD01576C94FDA967340563BB92ECE7C5389978FBC9587A9D21B9CF ] GDKBB C:\Windows\system32\drivers\GDKBB64.sys
20:28:21.0804 0x1244 GDKBB - ok
20:28:21.0834 0x1244 [ 1543775197DD1A27D16C0FA0FF73CAFB, B149282AFA5A60CEC797B643207F2541722C360989148FBC7A06DA0EB501ABED ] GDKBFlt C:\Windows\system32\drivers\GDKBFlt64.sys
20:28:21.0834 0x1244 GDKBFlt - ok
20:28:21.0844 0x1244 [ EBA67BDB064A0A86CE318E8D1B7FD16A, 6C1B7F851EE1D7CE2BEC7C1743E070646CC8E6895135D6B3E176AD6FC82E81D6 ] GDMnIcpt C:\Windows\system32\drivers\MiniIcpt.sys
20:28:21.0844 0x1244 GDMnIcpt - ok
20:28:21.0884 0x1244 [ D2926C79862A47121DA29AF474E9A180, 6AB99579C40A84D84C18E0F1E48DEFEEFD8CFEDD01D6A1FAABBD4CE481950695 ] GDPkIcpt C:\Windows\system32\drivers\PktIcpt.sys
20:28:21.0884 0x1244 GDPkIcpt - ok
20:28:21.0904 0x1244 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
20:28:21.0904 0x1244 gdrv - ok
20:28:22.0004 0x1244 [ 2FC204FF990827303D9184B390F5C15E, A194ACE75ADD2E105C1C5555621A2E4292617C37BA17070F88D4CA56B24D9291 ] GDScan C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
20:28:22.0014 0x1244 GDScan - ok
20:28:22.0054 0x1244 [ 4A4433764913FC43BABB2EB61DB6C1D3, BD1E569CD94E2B3F2354EE647811772EFAE21255D4892FB0A3663C16A17E6C35 ] gdwfpcd C:\Windows\system32\drivers\gdwfpcd64.sys
20:28:22.0054 0x1244 gdwfpcd - ok
20:28:22.0104 0x1244 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
20:28:22.0114 0x1244 gpsvc - ok
20:28:22.0194 0x1244 [ CC708C622ECD93248158682AF088830E, C7FCF70E284F095E2D400BC0E7F807F772F385916C258E5F4F05C8CDACCF8754 ] GRD C:\Windows\system32\drivers\GRD.sys
20:28:22.0204 0x1244 GRD - ok
20:28:22.0264 0x1244 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:28:22.0264 0x1244 gupdate - ok
20:28:22.0284 0x1244 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:28:22.0284 0x1244 gupdatem - ok
20:28:22.0304 0x1244 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:28:22.0314 0x1244 hcw85cir - ok
20:28:22.0344 0x1244 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:28:22.0354 0x1244 HdAudAddService - ok
20:28:22.0364 0x1244 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:28:22.0374 0x1244 HDAudBus - ok
20:28:22.0374 0x1244 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
20:28:22.0374 0x1244 HidBatt - ok
20:28:22.0384 0x1244 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:28:22.0394 0x1244 HidBth - ok
20:28:22.0394 0x1244 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
20:28:22.0394 0x1244 HidIr - ok
20:28:22.0404 0x1244 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
20:28:22.0404 0x1244 hidserv - ok
20:28:22.0434 0x1244 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:28:22.0434 0x1244 HidUsb - ok
20:28:22.0454 0x1244 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:28:22.0454 0x1244 hkmsvc - ok
20:28:22.0464 0x1244 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:28:22.0474 0x1244 HomeGroupListener - ok
20:28:22.0504 0x1244 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:28:22.0504 0x1244 HomeGroupProvider - ok
20:28:22.0554 0x1244 [ 20A8E34FE6FD617598E3B90C596D9557, 12A4EEDDB0479300122C32141C0646E48609AFFAF59608B7D7CC8C067C7AC7BB ] HookCentre C:\Windows\system32\drivers\HookCentre.sys
20:28:22.0554 0x1244 HookCentre - ok
20:28:22.0574 0x1244 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:28:22.0574 0x1244 HpSAMD - ok
20:28:22.0614 0x1244 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:28:22.0624 0x1244 HTTP - ok
20:28:22.0714 0x1244 [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
20:28:22.0724 0x1244 HWiNFO32 - ok
20:28:22.0734 0x1244 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:28:22.0744 0x1244 hwpolicy - ok
20:28:22.0754 0x1244 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:28:22.0764 0x1244 i8042prt - ok
20:28:22.0794 0x1244 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:28:22.0804 0x1244 iaStorV - ok
20:28:22.0854 0x1244 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:28:22.0864 0x1244 idsvc - ok
20:28:22.0874 0x1244 IEEtwCollectorService - ok
20:28:22.0894 0x1244 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:28:22.0894 0x1244 iirsp - ok
20:28:22.0934 0x1244 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
20:28:22.0954 0x1244 IKEEXT - ok
20:28:22.0964 0x1244 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
20:28:22.0964 0x1244 intelide - ok
20:28:22.0994 0x1244 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
20:28:23.0004 0x1244 intelppm - ok
20:28:23.0024 0x1244 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:28:23.0024 0x1244 IPBusEnum - ok
20:28:23.0034 0x1244 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:28:23.0034 0x1244 IpFilterDriver - ok
20:28:23.0074 0x1244 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:28:23.0084 0x1244 iphlpsvc - ok
20:28:23.0084 0x1244 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:28:23.0094 0x1244 IPMIDRV - ok
20:28:23.0094 0x1244 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:28:23.0094 0x1244 IPNAT - ok
20:28:23.0114 0x1244 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:28:23.0114 0x1244 IRENUM - ok
20:28:23.0124 0x1244 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:28:23.0124 0x1244 isapnp - ok
20:28:23.0154 0x1244 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:28:23.0154 0x1244 iScsiPrt - ok
20:28:23.0174 0x1244 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:28:23.0184 0x1244 kbdclass - ok
20:28:23.0194 0x1244 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:28:23.0194 0x1244 kbdhid - ok
20:28:23.0214 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] KeyIso C:\Windows\system32\lsass.exe
20:28:23.0214 0x1244 KeyIso - ok
20:28:23.0234 0x1244 [ 3A8C03156C3E31E70EF84E48CA179B46, E25E43D53BB6EE1B5F34C95B4FAD111B37A36367B8D047B10FC614DEE13658E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:28:23.0234 0x1244 KSecDD - ok
20:28:23.0244 0x1244 [ C6330F7C2E92A00E6773E82F79078AFC, D8B851BF4FCE85F2A269F0B46BC7EC5A118FCFDACE8460E7B54C1A7CE306774A ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:28:23.0254 0x1244 KSecPkg - ok
20:28:23.0264 0x1244 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:28:23.0274 0x1244 ksthunk - ok
20:28:23.0294 0x1244 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
20:28:23.0304 0x1244 KtmRm - ok
20:28:23.0334 0x1244 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:28:23.0334 0x1244 LanmanServer - ok
20:28:23.0354 0x1244 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:28:23.0354 0x1244 LanmanWorkstation - ok
20:28:23.0404 0x1244 LiveUpdateSvc - ok
20:28:23.0444 0x1244 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:28:23.0444 0x1244 lltdio - ok
20:28:23.0464 0x1244 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:28:23.0464 0x1244 lltdsvc - ok
20:28:23.0484 0x1244 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:28:23.0484 0x1244 lmhosts - ok
20:28:23.0504 0x1244 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:28:23.0514 0x1244 LSI_FC - ok
20:28:23.0524 0x1244 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:28:23.0524 0x1244 LSI_SAS - ok
20:28:23.0534 0x1244 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
20:28:23.0534 0x1244 LSI_SAS2 - ok
20:28:23.0554 0x1244 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:28:23.0554 0x1244 LSI_SCSI - ok
20:28:23.0574 0x1244 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
20:28:23.0574 0x1244 luafv - ok
20:28:23.0614 0x1244 [ 47701ECA633574E122687693B5C5D35C, 1DB12767462347504956450FAD0D90B6E682E2E8959A6C5DF3792C3C3DA289B1 ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
20:28:23.0614 0x1244 mbamchameleon - ok
20:28:23.0654 0x1244 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:28:23.0654 0x1244 MBAMProtector - ok
20:28:23.0694 0x1244 [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
20:28:23.0714 0x1244 MBAMService - ok
20:28:23.0734 0x1244 [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
20:28:23.0734 0x1244 MBAMWebAccessControl - ok
20:28:23.0754 0x1244 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:28:23.0754 0x1244 Mcx2Svc - ok
20:28:23.0774 0x1244 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
20:28:23.0784 0x1244 megasas - ok
20:28:23.0814 0x1244 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
20:28:23.0824 0x1244 MegaSR - ok
20:28:23.0854 0x1244 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
20:28:23.0854 0x1244 MMCSS - ok
20:28:23.0874 0x1244 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
20:28:23.0874 0x1244 Modem - ok
20:28:23.0894 0x1244 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:28:23.0894 0x1244 monitor - ok
20:28:23.0904 0x1244 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:28:23.0904 0x1244 mouclass - ok
20:28:23.0924 0x1244 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:28:23.0934 0x1244 mouhid - ok
20:28:23.0974 0x1244 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:28:23.0984 0x1244 mountmgr - ok
20:28:24.0034 0x1244 [ 2FDF943C2CAA486F9912CEC99BE27683, 01A59E6AAA6A86A1282B569911A71FE7B584CAB822E1DF42B07A91D5D711B4C1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:28:24.0044 0x1244 MozillaMaintenance - ok
20:28:24.0054 0x1244 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
20:28:24.0064 0x1244 mpio - ok
20:28:24.0074 0x1244 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:28:24.0074 0x1244 mpsdrv - ok
20:28:24.0104 0x1244 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:28:24.0124 0x1244 MpsSvc - ok
20:28:24.0164 0x1244 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:28:24.0164 0x1244 MRxDAV - ok
20:28:24.0224 0x1244 [ ACB6782973BD93760D597FC7BB37E692, 9B6EC2858D236DCE61FD5E0247F4D947A5DC484C9C0AABFDAF8270ABA392E787 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:28:24.0224 0x1244 mrxsmb - ok
20:28:24.0254 0x1244 [ 262BF7BB7D0E44CFAA9B12A1E0A6EDF1, CCC3A4CE929C7C8B07C1038BBE8425590CE14F5C37E1D5608978A3AD2F41519C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:28:24.0254 0x1244 mrxsmb10 - ok
20:28:24.0274 0x1244 [ 8C0376974AA28398FF501E78C04ACB30, 81CE67BE933F67F760A72BF9B581F33BC151D98970765FE4425450A2EF450409 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:28:24.0274 0x1244 mrxsmb20 - ok
20:28:24.0294 0x1244 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
20:28:24.0294 0x1244 msahci - ok
20:28:24.0344 0x1244 [ 41FB1D61DF09C36CCAB0B04EEC66F6D5, C6D0F6B8429656C56A142F95AF0B4A85DD4B78A735664C8775F49C3B04C564B7 ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS64.exe
20:28:24.0344 0x1244 MSCamSvc - ok
20:28:24.0364 0x1244 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:28:24.0364 0x1244 msdsm - ok
20:28:24.0374 0x1244 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
20:28:24.0384 0x1244 MSDTC - ok
20:28:24.0414 0x1244 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:28:24.0414 0x1244 Msfs - ok
20:28:24.0424 0x1244 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:28:24.0424 0x1244 mshidkmdf - ok
20:28:24.0434 0x1244 [ BB590070D606AE6F008341FC9A7B2AD7, CF1073A093E679C5BCA19681789FBB85A8286E356F2C0609E0B446DF65A86E29 ] MSHUSBVideo C:\Windows\system32\Drivers\nx6000.sys
20:28:24.0444 0x1244 MSHUSBVideo - ok
20:28:24.0444 0x1244 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:28:24.0454 0x1244 msisadrv - ok
20:28:24.0474 0x1244 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:28:24.0474 0x1244 MSiSCSI - ok
20:28:24.0484 0x1244 msiserver - ok
20:28:24.0494 0x1244 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:28:24.0494 0x1244 MSKSSRV - ok
20:28:24.0504 0x1244 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:28:24.0504 0x1244 MSPCLOCK - ok
20:28:24.0504 0x1244 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:28:24.0504 0x1244 MSPQM - ok
20:28:24.0524 0x1244 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:28:24.0524 0x1244 MsRPC - ok
20:28:24.0544 0x1244 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:28:24.0544 0x1244 mssmbios - ok
20:28:24.0564 0x1244 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:28:24.0564 0x1244 MSTEE - ok
20:28:24.0564 0x1244 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
20:28:24.0564 0x1244 MTConfig - ok
20:28:24.0574 0x1244 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
20:28:24.0584 0x1244 Mup - ok
20:28:24.0614 0x1244 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
20:28:24.0624 0x1244 napagent - ok
20:28:24.0644 0x1244 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:28:24.0654 0x1244 NativeWifiP - ok
20:28:24.0704 0x1244 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
20:28:24.0724 0x1244 NDIS - ok
20:28:24.0734 0x1244 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:28:24.0734 0x1244 NdisCap - ok
20:28:24.0754 0x1244 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:28:24.0754 0x1244 NdisTapi - ok
20:28:24.0764 0x1244 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:28:24.0774 0x1244 Ndisuio - ok
20:28:24.0784 0x1244 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:28:24.0794 0x1244 NdisWan - ok
20:28:24.0804 0x1244 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:28:24.0804 0x1244 NDProxy - ok
20:28:24.0814 0x1244 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:28:24.0814 0x1244 NetBIOS - ok
20:28:24.0824 0x1244 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:28:24.0834 0x1244 NetBT - ok
20:28:24.0854 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] Netlogon C:\Windows\system32\lsass.exe
20:28:24.0854 0x1244 Netlogon - ok
20:28:24.0884 0x1244 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
20:28:24.0894 0x1244 Netman - ok
20:28:24.0944 0x1244 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:28:24.0954 0x1244 NetMsmqActivator - ok
20:28:24.0954 0x1244 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:28:24.0964 0x1244 NetPipeActivator - ok
20:28:24.0984 0x1244 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
20:28:24.0994 0x1244 netprofm - ok
20:28:25.0004 0x1244 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:28:25.0004 0x1244 NetTcpActivator - ok
20:28:25.0004 0x1244 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:28:25.0014 0x1244 NetTcpPortSharing - ok
20:28:25.0034 0x1244 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:28:25.0034 0x1244 nfrd960 - ok
20:28:25.0064 0x1244 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
20:28:25.0064 0x1244 NlaSvc - ok
20:28:25.0074 0x1244 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:28:25.0074 0x1244 Npfs - ok
20:28:25.0094 0x1244 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
20:28:25.0094 0x1244 nsi - ok
20:28:25.0114 0x1244 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:28:25.0114 0x1244 nsiproxy - ok
20:28:25.0174 0x1244 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:28:25.0204 0x1244 Ntfs - ok
20:28:25.0224 0x1244 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
20:28:25.0224 0x1244 Null - ok
20:28:25.0254 0x1244 [ B9E5A80F646DDFEF158773722A466EA3, 028979FE600D17DA70445F44D81FAE4EDA3478FCC81FA5506133CCAC37C4E2BF ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:28:25.0254 0x1244 NVHDA - ok
20:28:25.0544 0x1244 [ 36BAB895547EA82892292F05FA02142E, 224D165CE3ECB0EF35C18D09507AB43ADC4A7AD12E507F31230012943C83BEDB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:28:25.0774 0x1244 nvlddmkm - ok
20:28:25.0824 0x1244 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:28:25.0824 0x1244 nvraid - ok
20:28:25.0844 0x1244 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:28:25.0854 0x1244 nvstor - ok
20:28:25.0914 0x1244 [ 6B245B7F96F901891636814B5A7A9088, BC6DF13929AEBA2CF5DC8449FF9D5F73497DF8E9760AFA93B56543D86BE940C3 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:28:25.0934 0x1244 nvsvc - ok
20:28:25.0954 0x1244 [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
20:28:25.0954 0x1244 nvvad_WaveExtensible - ok
20:28:25.0974 0x1244 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:28:25.0984 0x1244 nv_agp - ok
20:28:25.0994 0x1244 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:28:25.0994 0x1244 ohci1394 - ok
20:28:26.0024 0x1244 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:28:26.0024 0x1244 p2pimsvc - ok
20:28:26.0054 0x1244 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
20:28:26.0064 0x1244 p2psvc - ok
20:28:26.0064 0x1244 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
20:28:26.0074 0x1244 Parport - ok
20:28:26.0094 0x1244 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:28:26.0094 0x1244 partmgr - ok
20:28:26.0124 0x1244 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:28:26.0124 0x1244 PcaSvc - ok
20:28:26.0144 0x1244 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
20:28:26.0144 0x1244 pci - ok
20:28:26.0164 0x1244 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
20:28:26.0164 0x1244 pciide - ok
20:28:26.0174 0x1244 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:28:26.0184 0x1244 pcmcia - ok
20:28:26.0194 0x1244 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
20:28:26.0194 0x1244 pcw - ok
20:28:26.0214 0x1244 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:28:26.0234 0x1244 PEAUTH - ok
20:28:26.0254 0x1244 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:28:26.0254 0x1244 PerfHost - ok
20:28:26.0304 0x1244 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
20:28:26.0334 0x1244 pla - ok
20:28:26.0384 0x1244 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:28:26.0394 0x1244 PlugPlay - ok
20:28:26.0404 0x1244 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:28:26.0404 0x1244 PNRPAutoReg - ok
20:28:26.0424 0x1244 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:28:26.0434 0x1244 PNRPsvc - ok
20:28:26.0464 0x1244 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:28:26.0474 0x1244 PolicyAgent - ok
20:28:26.0494 0x1244 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
20:28:26.0504 0x1244 Power - ok
20:28:26.0534 0x1244 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:28:26.0534 0x1244 PptpMiniport - ok
20:28:26.0534 0x1244 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
20:28:26.0544 0x1244 Processor - ok
20:28:26.0564 0x1244 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
20:28:26.0574 0x1244 ProfSvc - ok
20:28:26.0584 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:28:26.0584 0x1244 ProtectedStorage - ok
20:28:26.0604 0x1244 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:28:26.0604 0x1244 Psched - ok
20:28:26.0654 0x1244 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:28:26.0694 0x1244 ql2300 - ok
20:28:26.0714 0x1244 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:28:26.0714 0x1244 ql40xx - ok
20:28:26.0734 0x1244 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
20:28:26.0744 0x1244 QWAVE - ok
20:28:26.0754 0x1244 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:28:26.0754 0x1244 QWAVEdrv - ok
20:28:26.0764 0x1244 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:28:26.0764 0x1244 RasAcd - ok
20:28:26.0784 0x1244 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:28:26.0784 0x1244 RasAgileVpn - ok
20:28:26.0794 0x1244 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
20:28:26.0804 0x1244 RasAuto - ok
20:28:26.0814 0x1244 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:28:26.0814 0x1244 Rasl2tp - ok
20:28:26.0834 0x1244 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
20:28:26.0844 0x1244 RasMan - ok
20:28:26.0864 0x1244 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:28:26.0864 0x1244 RasPppoe - ok
20:28:26.0884 0x1244 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:28:26.0884 0x1244 RasSstp - ok
20:28:26.0894 0x1244 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:28:26.0904 0x1244 rdbss - ok
20:28:26.0914 0x1244 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
20:28:26.0924 0x1244 rdpbus - ok
20:28:26.0934 0x1244 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:28:26.0934 0x1244 RDPCDD - ok
20:28:26.0954 0x1244 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:28:26.0954 0x1244 RDPENCDD - ok
20:28:26.0964 0x1244 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:28:26.0964 0x1244 RDPREFMP - ok
20:28:27.0024 0x1244 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:28:27.0024 0x1244 RdpVideoMiniport - ok
20:28:27.0054 0x1244 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:28:27.0054 0x1244 RDPWD - ok
20:28:27.0074 0x1244 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:28:27.0084 0x1244 rdyboost - ok
20:28:27.0104 0x1244 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:28:27.0104 0x1244 RemoteAccess - ok
20:28:27.0134 0x1244 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:28:27.0134 0x1244 RemoteRegistry - ok
20:28:27.0154 0x1244 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:28:27.0154 0x1244 RpcEptMapper - ok
20:28:27.0164 0x1244 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
20:28:27.0164 0x1244 RpcLocator - ok
20:28:27.0194 0x1244 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
20:28:27.0204 0x1244 RpcSs - ok
20:28:27.0214 0x1244 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:28:27.0214 0x1244 rspndr - ok
20:28:27.0264 0x1244 [ 66E06E5B77F2323B1F11EB4C70B78328, D14A6DFF95EC897EA737623A8E60D6DEF12077A54648AC78FBD19BA11985CD77 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:28:27.0284 0x1244 RTL8167 - ok
20:28:27.0304 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] SamSs C:\Windows\system32\lsass.exe
20:28:27.0304 0x1244 SamSs - ok
20:28:27.0314 0x1244 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:28:27.0324 0x1244 sbp2port - ok
20:28:27.0334 0x1244 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:28:27.0344 0x1244 SCardSvr - ok
20:28:27.0364 0x1244 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:28:27.0364 0x1244 scfilter - ok
20:28:27.0414 0x1244 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
20:28:27.0434 0x1244 Schedule - ok
20:28:27.0464 0x1244 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:28:27.0464 0x1244 SCPolicySvc - ok
20:28:27.0484 0x1244 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:28:27.0494 0x1244 SDRSVC - ok
20:28:27.0504 0x1244 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:28:27.0504 0x1244 secdrv - ok
20:28:27.0514 0x1244 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
20:28:27.0524 0x1244 seclogon - ok
20:28:27.0534 0x1244 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
20:28:27.0534 0x1244 SENS - ok
20:28:27.0584 0x1244 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:28:27.0584 0x1244 SensrSvc - ok
20:28:27.0614 0x1244 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:28:27.0614 0x1244 Serenum - ok
20:28:27.0634 0x1244 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:28:27.0634 0x1244 Serial - ok
20:28:27.0644 0x1244 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:28:27.0644 0x1244 sermouse - ok
20:28:27.0664 0x1244 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
20:28:27.0674 0x1244 SessionEnv - ok
20:28:27.0674 0x1244 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:28:27.0674 0x1244 sffdisk - ok
20:28:27.0684 0x1244 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:28:27.0684 0x1244 sffp_mmc - ok
20:28:27.0684 0x1244 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:28:27.0684 0x1244 sffp_sd - ok
20:28:27.0694 0x1244 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:28:27.0694 0x1244 sfloppy - ok
20:28:27.0714 0x1244 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:28:27.0724 0x1244 SharedAccess - ok
20:28:27.0744 0x1244 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:28:27.0754 0x1244 ShellHWDetection - ok
20:28:27.0764 0x1244 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
20:28:27.0764 0x1244 SiSRaid2 - ok
20:28:27.0774 0x1244 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:28:27.0774 0x1244 SiSRaid4 - ok
20:28:27.0864 0x1244 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:28:27.0874 0x1244 SkypeUpdate - ok
20:28:27.0894 0x1244 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:28:27.0904 0x1244 Smb - ok
20:28:27.0914 0x1244 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:28:27.0914 0x1244 SNMPTRAP - ok
20:28:27.0934 0x1244 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys
20:28:27.0944 0x1244 speedfan - ok
20:28:27.0954 0x1244 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
20:28:27.0954 0x1244 spldr - ok
20:28:27.0984 0x1244 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
20:28:27.0994 0x1244 Spooler - ok
20:28:28.0104 0x1244 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
20:28:28.0174 0x1244 sppsvc - ok
20:28:28.0204 0x1244 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:28:28.0204 0x1244 sppuinotify - ok
20:28:28.0234 0x1244 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:28:28.0244 0x1244 srv - ok
20:28:28.0264 0x1244 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:28:28.0274 0x1244 srv2 - ok
20:28:28.0284 0x1244 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:28:28.0294 0x1244 srvnet - ok
20:28:28.0304 0x1244 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:28:28.0304 0x1244 SSDPSRV - ok
20:28:28.0324 0x1244 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:28:28.0324 0x1244 SstpSvc - ok
20:28:28.0384 0x1244 [ D31201BD8782752BD69DBE1E5DDF9AC5, 98B72690B4E6CC1B694C655DD31CB1FB56B76B62A32CFB748AF78F4C072D9740 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
20:28:28.0394 0x1244 Steam Client Service - ok
20:28:28.0464 0x1244 [ C368FAF3084E3978462159F1DDAFF54F, F7DD88038E002EF3D2BCA648FE7CF0F92347E901C5F495D8D8E4D24076E895CD ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:28:28.0464 0x1244 Stereo Service - ok
20:28:28.0484 0x1244 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
20:28:28.0484 0x1244 stexstor - ok
20:28:28.0524 0x1244 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
20:28:28.0544 0x1244 stisvc - ok
20:28:28.0554 0x1244 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:28:28.0554 0x1244 swenum - ok
20:28:28.0584 0x1244 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
20:28:28.0594 0x1244 swprv - ok
20:28:28.0684 0x1244 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
20:28:28.0724 0x1244 SysMain - ok
20:28:28.0734 0x1244 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:28:28.0744 0x1244 TabletInputService - ok
20:28:28.0774 0x1244 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
20:28:28.0774 0x1244 tap0901t - ok
20:28:28.0784 0x1244 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
20:28:28.0794 0x1244 TapiSrv - ok
20:28:28.0814 0x1244 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
20:28:28.0814 0x1244 TBS - ok
20:28:28.0884 0x1244 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:28:28.0924 0x1244 Tcpip - ok
20:28:28.0984 0x1244 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:28:29.0014 0x1244 TCPIP6 - ok
20:28:29.0034 0x1244 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:28:29.0044 0x1244 tcpipreg - ok
20:28:29.0064 0x1244 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:28:29.0064 0x1244 TDPIPE - ok
20:28:29.0084 0x1244 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:28:29.0084 0x1244 TDTCP - ok
20:28:29.0114 0x1244 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:28:29.0114 0x1244 tdx - ok
20:28:29.0134 0x1244 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:28:29.0134 0x1244 TermDD - ok
20:28:29.0174 0x1244 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
20:28:29.0194 0x1244 TermService - ok
20:28:29.0214 0x1244 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
20:28:29.0214 0x1244 Themes - ok
20:28:29.0234 0x1244 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
20:28:29.0234 0x1244 THREADORDER - ok
20:28:29.0254 0x1244 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
20:28:29.0254 0x1244 TrkWks - ok
20:28:29.0284 0x1244 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:28:29.0294 0x1244 TrustedInstaller - ok
20:28:29.0314 0x1244 [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:28:29.0314 0x1244 tssecsrv - ok
20:28:29.0334 0x1244 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:28:29.0334 0x1244 TsUsbFlt - ok
20:28:29.0354 0x1244 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
20:28:29.0364 0x1244 TsUsbGD - ok
20:28:29.0394 0x1244 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:28:29.0394 0x1244 tunnel - ok
20:28:29.0464 0x1244 [ FB72C65414AF62E2C1678261F556D77C, 32C6DB37B5EFCB68D1D37A73002A76DFC41A4A2120862ED8390524A37D506E30 ] TunngleService C:\Program Files (x86)\Tunngle\TnglCtrl.exe
20:28:29.0484 0x1244 TunngleService - ok
20:28:29.0504 0x1244 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:28:29.0514 0x1244 uagp35 - ok
20:28:29.0534 0x1244 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:28:29.0534 0x1244 udfs - ok
20:28:29.0554 0x1244 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:28:29.0564 0x1244 UI0Detect - ok
20:28:29.0584 0x1244 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:28:29.0584 0x1244 uliagpkx - ok
20:28:29.0604 0x1244 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:28:29.0604 0x1244 umbus - ok
20:28:29.0604 0x1244 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
20:28:29.0614 0x1244 UmPass - ok
20:28:29.0634 0x1244 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
20:28:29.0644 0x1244 upnphost - ok
20:28:29.0674 0x1244 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:28:29.0674 0x1244 usbaudio - ok
20:28:29.0704 0x1244 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:28:29.0704 0x1244 usbccgp - ok
20:28:29.0734 0x1244 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:28:29.0734 0x1244 usbcir - ok
20:28:29.0754 0x1244 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:28:29.0754 0x1244 usbehci - ok
20:28:29.0774 0x1244 [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:28:29.0774 0x1244 usbfilter - ok
20:28:29.0804 0x1244 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:28:29.0814 0x1244 usbhub - ok
20:28:29.0824 0x1244 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:28:29.0824 0x1244 usbohci - ok
20:28:29.0844 0x1244 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:28:29.0854 0x1244 usbprint - ok
20:28:29.0884 0x1244 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:28:29.0884 0x1244 usbscan - ok
20:28:29.0904 0x1244 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:28:29.0914 0x1244 USBSTOR - ok
20:28:29.0924 0x1244 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:28:29.0924 0x1244 usbuhci - ok
20:28:29.0954 0x1244 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:28:29.0954 0x1244 usbvideo - ok
20:28:29.0974 0x1244 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
20:28:29.0974 0x1244 UxSms - ok
20:28:29.0984 0x1244 [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] VaultSvc C:\Windows\system32\lsass.exe
20:28:29.0984 0x1244 VaultSvc - ok
20:28:29.0994 0x1244 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:28:30.0004 0x1244 vdrvroot - ok
20:28:30.0024 0x1244 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
20:28:30.0034 0x1244 vds - ok
20:28:30.0054 0x1244 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:28:30.0054 0x1244 vga - ok
20:28:30.0064 0x1244 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:28:30.0064 0x1244 VgaSave - ok
20:28:30.0084 0x1244 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:28:30.0094 0x1244 vhdmp - ok
20:28:30.0134 0x1244 [ F109FCCC5F041796D183BED37F5007D5, 4061A7436649752F4650A1674051333A06F76BAAD1A3C32EB21EBE19420D362D ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
20:28:30.0154 0x1244 VIAHdAudAddService - ok
20:28:30.0174 0x1244 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
20:28:30.0174 0x1244 viaide - ok
20:28:30.0194 0x1244 [ 097A1A16F9F38715CEAA092DE626F517, 5D51D74C3264ADEA1A50F6620150B284E54C5294A548D1BC940B3B5FF5343998 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
20:28:30.0204 0x1244 VIAKaraokeService - ok
20:28:30.0214 0x1244 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:28:30.0214 0x1244 volmgr - ok
20:28:30.0234 0x1244 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:28:30.0244 0x1244 volmgrx - ok
20:28:30.0254 0x1244 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:28:30.0264 0x1244 volsnap - ok
20:28:30.0284 0x1244 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:28:30.0284 0x1244 vsmraid - ok
20:28:30.0344 0x1244 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
20:28:30.0374 0x1244 VSS - ok
20:28:30.0394 0x1244 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:28:30.0394 0x1244 vwifibus - ok
20:28:30.0414 0x1244 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
20:28:30.0424 0x1244 W32Time - ok
20:28:30.0444 0x1244 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:28:30.0444 0x1244 WacomPen - ok
20:28:30.0464 0x1244 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:28:30.0464 0x1244 WANARP - ok
20:28:30.0474 0x1244 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:28:30.0474 0x1244 Wanarpv6 - ok
20:28:30.0524 0x1244 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
20:28:30.0564 0x1244 wbengine - ok
20:28:30.0594 0x1244 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:28:30.0604 0x1244 WbioSrvc - ok
20:28:30.0614 0x1244 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:28:30.0624 0x1244 wcncsvc - ok
20:28:30.0644 0x1244 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:28:30.0644 0x1244 WcsPlugInService - ok
20:28:30.0664 0x1244 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
20:28:30.0664 0x1244 Wd - ok
20:28:30.0694 0x1244 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:28:30.0714 0x1244 Wdf01000 - ok
20:28:30.0744 0x1244 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:28:30.0744 0x1244 WdiServiceHost - ok
20:28:30.0754 0x1244 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:28:30.0754 0x1244 WdiSystemHost - ok
20:28:30.0784 0x1244 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
20:28:30.0794 0x1244 WebClient - ok
20:28:30.0824 0x1244 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:28:30.0824 0x1244 Wecsvc - ok
20:28:30.0844 0x1244 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:28:30.0844 0x1244 wercplsupport - ok
20:28:30.0854 0x1244 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
20:28:30.0864 0x1244 WerSvc - ok
20:28:30.0874 0x1244 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:28:30.0874 0x1244 WfpLwf - ok
20:28:30.0884 0x1244 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:28:30.0884 0x1244 WIMMount - ok
20:28:30.0904 0x1244 WinDefend - ok
20:28:30.0924 0x1244 WinHttpAutoProxySvc - ok
20:28:30.0964 0x1244 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:28:30.0974 0x1244 Winmgmt - ok
20:28:31.0034 0x1244 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
20:28:31.0084 0x1244 WinRM - ok
20:28:31.0124 0x1244 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:28:31.0124 0x1244 WinUsb - ok
20:28:31.0164 0x1244 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:28:31.0184 0x1244 Wlansvc - ok
20:28:31.0294 0x1244 [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:28:31.0334 0x1244 wlidsvc - ok
20:28:31.0354 0x1244 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:28:31.0354 0x1244 WmiAcpi - ok
20:28:31.0384 0x1244 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:28:31.0394 0x1244 wmiApSrv - ok
20:28:31.0414 0x1244 WMPNetworkSvc - ok
20:28:31.0434 0x1244 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:28:31.0434 0x1244 WPCSvc - ok
20:28:31.0454 0x1244 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:28:31.0454 0x1244 WPDBusEnum - ok
20:28:31.0474 0x1244 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:28:31.0474 0x1244 ws2ifsl - ok
20:28:31.0484 0x1244 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
20:28:31.0494 0x1244 wscsvc - ok
20:28:31.0494 0x1244 WSearch - ok
20:28:31.0584 0x1244 [ 291778E1A36716182AFBC1731B2DFEAB, C0B928CCCE8C496C90C42E0D294BAB51DC67C02B0D20CFB6A16B0AE1F51CC497 ] wuauserv C:\Windows\system32\wuaueng.dll
20:28:31.0634 0x1244 wuauserv - ok
20:28:31.0664 0x1244 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:28:31.0664 0x1244 WudfPf - ok
20:28:31.0694 0x1244 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:28:31.0704 0x1244 WUDFRd - ok
20:28:31.0714 0x1244 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:28:31.0714 0x1244 wudfsvc - ok
20:28:31.0744 0x1244 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
20:28:31.0754 0x1244 WwanSvc - ok
20:28:31.0794 0x1244 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
20:28:31.0794 0x1244 xusb21 - ok
20:28:31.0824 0x1244 ================ Scan global ===============================
20:28:31.0844 0x1244 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
20:28:31.0874 0x1244 [ 4AD1C61152A0199E3D7F9A82C07AC629, A4A42C7757EB084EE368A6BC4EBAB0C47BE41B0B4119A6AECD1B8E3332A7C5D5 ] C:\Windows\system32\winsrv.dll
20:28:31.0884 0x1244 [ 4AD1C61152A0199E3D7F9A82C07AC629, A4A42C7757EB084EE368A6BC4EBAB0C47BE41B0B4119A6AECD1B8E3332A7C5D5 ] C:\Windows\system32\winsrv.dll
20:28:31.0904 0x1244 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
20:28:31.0934 0x1244 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
20:28:31.0934 0x1244 [ Global ] - ok
20:28:31.0934 0x1244 ================ Scan MBR ==================================
20:28:31.0944 0x1244 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:28:32.0144 0x1244 \Device\Harddisk0\DR0 - ok
20:28:32.0144 0x1244 ================ Scan VBR ==================================
20:28:32.0144 0x1244 [ E7C3907DBD9BB4DA40119478DB1648A8 ] \Device\Harddisk0\DR0\Partition1
20:28:32.0184 0x1244 \Device\Harddisk0\DR0\Partition1 - ok
20:28:32.0184 0x1244 [ 8C5315499438E4F2D6072D2A1940927C ] \Device\Harddisk0\DR0\Partition2
20:28:32.0214 0x1244 \Device\Harddisk0\DR0\Partition2 - ok
20:28:32.0214 0x1244 [ 950C3AA7D374E3D5438C9D32034FDE54 ] \Device\Harddisk0\DR0\Partition3
20:28:32.0244 0x1244 \Device\Harddisk0\DR0\Partition3 - ok
20:28:32.0244 0x1244 ================ Scan generic autorun ======================
20:28:32.0414 0x1244 [ 791E0C3A4A8BDE574D44E5C2220051E6, 7F135E2C6B4B4C7EA86AD7A9036401E0F52480889B6BCE3D1911435778EBA37B ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
20:28:32.0514 0x1244 HDAudDeck - ok
20:28:32.0634 0x1244 [ 442CC2A5247327548826D284B7CC7287, 8005CB98F7519EDC84FE88009EE354B753929DDA71761571E68BECCBC3D88D02 ] C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe
20:28:32.0664 0x1244 GDFirewallTray - ok
20:28:32.0724 0x1244 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:28:32.0754 0x1244 Sidebar - ok
20:28:32.0764 0x1244 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
20:28:32.0774 0x1244 mctadmin - ok
20:28:32.0794 0x1244 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:28:32.0814 0x1244 Sidebar - ok
20:28:32.0824 0x1244 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
20:28:32.0824 0x1244 mctadmin - ok
20:28:32.0824 0x1244 Waiting for KSN requests completion. In queue: 342
20:28:33.0414 0x1148 Object required for P2P: [ 6B245B7F96F901891636814B5A7A9088 ] nvsvc
20:28:33.0824 0x1244 Waiting for KSN requests completion. In queue: 186
20:28:34.0824 0x1244 Waiting for KSN requests completion. In queue: 186
20:28:35.0824 0x1244 Waiting for KSN requests completion. In queue: 155
20:28:36.0084 0x1148 Object send P2P result: true
20:28:36.0954 0x1244 AV detected via SS2: G DATA INTERNET SECURITY, C:\Program Files (x86)\G DATA\InternetSecurity\AVK\avkwscpe.exe ( 25.1.0.0 ), 0x41000 ( enabled : updated )
20:28:36.0954 0x1244 FW detected via SS2: G*DATA Personal Firewall, C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe ( 22.0.0.1 ), 0x41010 ( enabled )
20:28:39.0514 0x1244 ============================================================
20:28:39.0514 0x1244 Scan finished
20:28:39.0514 0x1244 ============================================================
20:28:39.0514 0x1318 Detected object count: 0
20:28:39.0514 0x1318 Actual detected object count: 0
20:30:50.0184 0x15f4 Deinitialize success
|
|
01.11.2015, 13:15
| #11 |
| | Win7 friert in unregelmäßigen Zeiten einCode:
ATTFilter ComboFix 15-10-28.01 - Rudolf 01.11.2015 12:51:52.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.8173.6538 [GMT 1:00]
ausgeführt von:: c:\users\Rudolf\Desktop\ComboFix.exe
AV: G DATA INTERNET SECURITY *Disabled/Updated* {545C8713-0744-B079-87F8-349A6D5C8CF0}
FW: G*DATA Personal Firewall *Enabled* {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
SP: G DATA INTERNET SECURITY *Disabled/Updated* {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\IsUn0407.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2015-10-01 bis 2015-11-01 ))))))))))))))))))))))))))))))
.
.
2015-11-01 11:59 . 2015-11-01 11:59 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-11-01 11:55 . 2015-11-01 11:55 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{01B6A813-1105-4EC7-BE6C-8067D0EECE06}\offreg.3308.dll
2015-11-01 07:02 . 2015-11-01 07:41 -------- d-----w- c:\users\Rudolf\AppData\Roaming\MAGIX
2015-11-01 07:02 . 2015-11-01 07:02 -------- d-----w- c:\program files\Common Files\MAGIX Shared
2015-11-01 07:02 . 2015-11-01 07:02 -------- d-----w- c:\program files (x86)\Common Files\MAGIX Shared
2015-11-01 07:01 . 2015-11-01 07:01 -------- d-----w- c:\program files\Common Files\MAGIX Services
2015-11-01 07:01 . 2015-11-01 07:01 -------- d-----w- c:\program files\MAGIX
2015-11-01 07:01 . 2015-11-01 07:41 -------- d-----w- c:\programdata\MAGIX
2015-11-01 07:01 . 2015-11-01 07:01 -------- d-----w- c:\program files (x86)\Common Files\MAGIX Services
2015-11-01 07:01 . 2015-11-01 07:01 -------- d-----w- c:\program files (x86)\MAGIX
2015-11-01 07:01 . 2015-11-01 07:01 -------- d-----w- c:\program files (x86)\MSXML 4.0
2015-11-01 06:19 . 2015-11-01 06:19 -------- d-----w- c:\users\Rudolf\AppData\Local\threecubes
2015-11-01 06:12 . 2008-07-10 10:01 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
2015-11-01 02:53 . 2015-11-01 02:53 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{01B6A813-1105-4EC7-BE6C-8067D0EECE06}\offreg.1548.dll
2015-10-31 19:12 . 2015-11-01 11:34 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2015-10-30 18:23 . 2015-10-20 03:33 11140960 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{01B6A813-1105-4EC7-BE6C-8067D0EECE06}\mpengine.dll
2015-10-30 13:52 . 2015-10-30 21:08 -------- d-----w- C:\FRST
2015-10-29 14:57 . 2015-10-29 14:57 18160 ----a-w- c:\windows\system32\drivers\GdPhyMem.sys
2015-10-29 14:57 . 2015-10-29 14:57 106272 ----a-w- c:\windows\system32\drivers\GRD.sys
2015-10-29 14:51 . 2015-10-29 14:51 -------- d-----w- c:\program files (x86)\VS Revo Group
2015-10-29 12:50 . 2015-10-29 12:50 27648 ----a-w- c:\windows\system32\drivers\GDKBB64.sys
2015-10-29 12:50 . 2015-10-29 12:50 20992 ----a-w- c:\windows\system32\drivers\GDKBFlt64.sys
2015-10-29 12:50 . 2015-10-29 12:50 75776 ----a-w- c:\windows\system32\drivers\PktIcpt.sys
2015-10-29 12:50 . 2015-10-29 12:50 64512 ----a-w- c:\windows\system32\drivers\gdwfpcd64.sys
2015-10-29 12:49 . 2015-10-29 12:49 230400 ----a-w- c:\windows\system32\drivers\MiniIcpt.sys
2015-10-29 12:49 . 2015-10-29 12:49 124928 ----a-w- c:\windows\system32\drivers\HookCentre.sys
2015-10-29 12:49 . 2015-10-29 12:49 150016 ----a-w- c:\windows\system32\drivers\GDBehave.sys
2015-10-29 12:49 . 2015-10-29 12:49 -------- d-----w- c:\program files (x86)\Common Files\G Data
2015-10-28 16:31 . 2015-10-28 16:31 -------- d-----w- c:\program files (x86)\Free WMA to MP3 Converter
2015-10-28 14:27 . 2015-10-28 15:53 -------- d-----w- c:\users\Rudolf\AppData\Roaming\freac
2015-10-26 21:19 . 2015-10-26 21:19 986368 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2015-10-26 21:19 . 2015-10-26 21:19 100000 ----a-w- c:\windows\system32\RtNicProp64.dll
2015-10-26 21:12 . 2015-10-26 21:12 -------- d-----w- c:\program files\VIA
2015-10-26 21:12 . 2015-10-26 21:12 -------- d-----w- c:\windows\system32\SRSLabs
2015-10-26 21:03 . 2015-10-26 21:03 26528 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2015-10-25 17:19 . 2015-10-25 17:19 -------- d-----w- c:\users\Rudolf\AppData\Roaming\ProductData
2015-10-25 17:18 . 2015-10-25 17:18 -------- d-----w- c:\users\Rudolf\AppData\Roaming\Apple Computer
2015-10-25 17:18 . 2015-10-26 21:04 -------- d-----w- c:\programdata\ProductData
2015-10-25 17:18 . 2015-10-25 17:18 -------- d-----w- c:\programdata\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-10-25 17:18 . 2015-10-25 17:18 -------- d-----w- c:\program files (x86)\Common Files\IObit
2015-10-25 17:17 . 2015-10-26 21:03 -------- d-----w- c:\users\Rudolf\AppData\Roaming\IObit
2015-10-25 17:17 . 2015-10-29 20:26 -------- d-----w- c:\program files (x86)\IObit
2015-10-25 17:17 . 2015-10-26 21:03 -------- d-----w- c:\programdata\IObit
2015-10-25 15:15 . 2015-10-25 15:15 -------- d-----w- c:\program files\Speccy
2015-10-25 13:59 . 2015-10-25 13:59 -------- d-----w- c:\users\Rudolf\AppData\Local\www.rene-zeidler.de
2015-10-25 13:59 . 2015-10-25 13:59 -------- d-----w- c:\users\Rudolf\AppData\Roaming\www.rene-zeidler.de
2015-10-25 13:59 . 2015-10-25 13:59 -------- d-----w- c:\programdata\www.rene-zeidler.de
2015-10-25 03:55 . 2015-10-25 03:55 -------- d-----w- c:\users\Rudolf\AppData\Roaming\LibreOffice
2015-10-21 13:16 . 2015-10-21 13:16 -------- d-----w- c:\programdata\ISDNWatch
2015-10-21 12:39 . 2015-10-21 12:40 -------- d-----w- c:\program files (x86)\LibreOffice 5
2015-10-21 10:07 . 2015-09-14 19:45 3210240 ----a-w- c:\windows\system32\win32k.sys
2015-10-21 09:55 . 2015-10-21 09:55 -------- d-----w- c:\users\Rudolf\AppData\Local\Thunderbird
2015-10-21 09:55 . 2015-10-21 09:55 -------- d-----w- c:\users\Rudolf\AppData\Roaming\Thunderbird
2015-10-21 09:50 . 2015-10-21 09:50 -------- d-----w- c:\windows\SysWow64\wbem\Logs
2015-10-17 21:47 . 2015-10-17 21:47 -------- d-----w- C:\Intel
2015-10-17 15:01 . 2015-10-27 20:16 -------- d-----w- c:\programdata\Tunngle
2015-10-17 15:01 . 2009-09-16 06:02 31232 ----a-w- c:\windows\system32\drivers\tap0901t.sys
2015-10-17 15:01 . 2015-10-17 15:02 -------- d-----w- c:\program files (x86)\Tunngle
2015-10-17 14:33 . 2015-10-29 18:46 -------- d-----w- c:\users\Rudolf\AppData\Roaming\Tunngle
2015-10-16 21:26 . 2015-10-16 21:26 -------- d-----w- c:\program files (x86)\Common Files\Skype
2015-10-14 12:20 . 2015-08-06 18:04 14176768 ----a-w- c:\windows\system32\shell32.dll
2015-10-14 12:20 . 2015-08-06 18:03 1866752 ----a-w- c:\windows\system32\ExplorerFrame.dll
2015-10-14 12:20 . 2015-08-06 17:44 1498624 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll
2015-10-14 12:18 . 2015-09-01 18:14 503296 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-10-14 12:18 . 2015-09-01 18:14 1247232 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
2015-10-14 12:18 . 2015-09-01 18:14 110592 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipBand.dll
2015-10-14 12:18 . 2015-09-01 18:13 224768 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TabTip.exe
2015-10-14 12:18 . 2015-09-01 18:12 544768 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipRes.dll
2015-10-14 12:18 . 2015-09-01 17:52 348672 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-10-14 12:18 . 2015-09-01 17:52 10240 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe
2015-10-13 11:29 . 2015-10-13 11:29 -------- d-----w- c:\users\Rudolf\.android
2015-10-13 08:10 . 2015-10-13 08:10 -------- d-----w- c:\programdata\Oracle
2015-10-12 13:38 . 2015-10-12 13:38 -------- d-----w- c:\program files\Ghostgum
2015-10-12 13:38 . 2015-10-12 13:38 -------- d-----w- c:\program files\gs
2015-10-12 13:35 . 2015-10-12 13:35 -------- d-----r- c:\users\Rudolf\AppData\Roaming\Brother
2015-10-12 13:22 . 2015-10-12 13:22 -------- d-----w- c:\programdata\Brother
2015-10-12 12:52 . 2015-10-21 13:16 -------- d-----w- c:\users\Rudolf\AppData\Local\FRITZ!
2015-10-12 12:52 . 2015-10-12 12:57 -------- d-----w- c:\users\Rudolf\AppData\Roaming\FRITZ!
2015-10-12 12:52 . 2006-02-23 10:16 47616 ----a-w- c:\windows\system32\AvmColorFax.dll
2015-10-12 12:52 . 2006-02-23 09:35 20480 ----a-w- c:\windows\system32\FritzColorPort64.dll
2015-10-12 12:52 . 2006-02-22 08:53 43520 ----a-w- c:\windows\system32\AvmFax.dll
2015-10-12 12:52 . 2006-02-22 08:51 27136 ----a-w- c:\windows\system32\FriDru64.dll
2015-10-12 12:52 . 2006-02-22 08:39 20480 ----a-w- c:\windows\system32\FritzPort64.dll
2015-10-12 12:51 . 2015-10-21 13:16 -------- d-----w- c:\program files (x86)\FRITZ!
2015-10-12 12:51 . 2007-09-07 08:05 353584 ----a-w- c:\windows\SysWow64\msvcr71.dll
2015-10-12 12:51 . 2007-09-07 08:05 349488 ----a-w- c:\windows\SysWow64\msvcr70.dll
2015-10-12 12:51 . 2007-09-07 08:05 505136 ----a-w- c:\windows\SysWow64\msvcp71.dll
2015-10-12 12:51 . 2007-09-07 08:05 492848 ----a-w- c:\windows\SysWow64\msvcp70.dll
2015-10-12 12:51 . 2007-09-07 08:04 60208 ----a-w- c:\windows\SysWow64\msvci70.dll
2015-10-12 12:51 . 2007-09-07 08:04 70960 ----a-w- c:\windows\SysWow64\MFC71DEU.DLL
2015-10-12 12:51 . 2007-09-07 08:04 1066288 ----a-w- c:\windows\SysWow64\MFC71.dll
2015-10-12 12:51 . 2007-09-07 08:04 970032 ----a-w- c:\windows\SysWow64\mfc70u.dll
2015-10-12 12:51 . 2007-09-07 08:04 980272 ----a-w- c:\windows\SysWow64\mfc70.dll
2015-10-11 16:56 . 2015-10-11 16:56 -------- d-----w- c:\program files (x86)\Microsoft ASP.NET
2015-10-11 12:03 . 2015-10-11 12:03 -------- d-----w- c:\users\Rudolf\AppData\Roaming\de.devolo.dLAN.Cockpit
2015-10-11 11:31 . 2015-10-03 02:18 102520 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2015-10-11 11:31 . 2015-11-01 08:04 -------- d-----w- c:\programdata\NVIDIA
2015-10-11 11:31 . 2015-10-03 02:49 6358648 ----a-w- c:\windows\system32\nvcpl.dll
2015-10-11 11:31 . 2015-10-03 02:49 2982520 ----a-w- c:\windows\system32\nvsvc64.dll
2015-10-11 11:31 . 2015-10-03 02:49 938800 ----a-w- c:\windows\system32\nvvsvc.exe
2015-10-11 11:31 . 2015-10-03 02:49 62768 ----a-w- c:\windows\system32\nvshext.dll
2015-10-11 11:31 . 2015-10-03 02:49 385328 ----a-w- c:\windows\system32\nvmctray.dll
2015-10-11 11:31 . 2015-10-03 02:49 2554488 ----a-w- c:\windows\system32\nvsvcr.dll
2015-10-11 11:31 . 2015-10-01 09:33 5284082 ----a-w- c:\windows\system32\nvcoproc.bin
2015-10-11 11:31 . 2015-10-03 05:06 112944 ----a-w- c:\windows\system32\OpenCL.dll
2015-10-11 11:31 . 2015-10-03 05:06 105080 ----a-w- c:\windows\SysWow64\OpenCL.dll
2015-10-10 19:32 . 2015-10-10 19:32 -------- d-----w- c:\users\Rudolf\AppData\Local\Macromedia
2015-10-10 19:30 . 2015-10-10 19:30 -------- d-----w- c:\programdata\McAfee
2015-10-10 19:28 . 2015-10-12 14:46 -------- d-----w- c:\users\Rudolf\AppData\Local\Adobe
2015-10-10 17:51 . 2015-10-10 20:54 -------- d-----w- c:\program files (x86)\OpenLibraries
2015-10-10 17:51 . 2015-10-10 20:54 -------- d-----w- c:\program files (x86)\jahPlayer
2015-10-09 18:05 . 2015-10-09 18:05 -------- d-----w- c:\program files\Microsoft LifeCam
2015-10-09 18:05 . 2015-10-09 18:05 -------- d-----w- c:\program files (x86)\Microsoft LifeCam
2015-10-09 17:41 . 2015-10-09 17:41 -------- d-----w- c:\users\Rudolf\Tracing
2015-10-04 06:36 . 2015-07-11 13:15 429568 ----a-w- c:\windows\system32\wksprt.exe
2015-10-04 06:36 . 2015-07-16 19:12 856064 ----a-w- c:\windows\SysWow64\rdvidcrl.dll
2015-10-04 06:36 . 2015-07-16 19:12 53248 ----a-w- c:\windows\SysWow64\tsgqec.dll
2015-10-04 06:36 . 2015-07-16 19:12 6131200 ----a-w- c:\windows\SysWow64\mstscax.dll
2015-10-04 06:36 . 2015-07-16 19:11 62976 ----a-w- c:\windows\system32\tsgqec.dll
2015-10-04 06:36 . 2015-07-16 19:11 7077376 ----a-w- c:\windows\system32\mstscax.dll
2015-10-04 06:36 . 2015-07-16 19:11 1057792 ----a-w- c:\windows\system32\rdvidcrl.dll
2015-10-04 00:49 . 2015-11-01 11:34 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-10-04 00:49 . 2015-11-01 11:33 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-10-04 00:49 . 2015-10-16 23:08 -------- d-----w- c:\program files (x86)\ Malwarebytes Anti-Malware
2015-10-04 00:49 . 2015-10-05 07:50 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-10-26 21:19 . 2015-09-04 21:55 133760 ----a-w- c:\windows\system32\RTNUninst64.dll
2015-10-14 13:02 . 2015-09-05 09:39 143481208 ----a-w- c:\windows\system32\MRT.exe
2015-09-29 02:58 . 2015-10-14 12:16 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-09-13 00:09 . 2012-07-17 12:37 24288 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-09-05 11:13 . 2015-09-05 11:13 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2015-09-05 11:13 . 2015-09-05 11:13 942592 ----a-w- c:\windows\system32\jsIntl.dll
2015-09-05 11:13 . 2015-09-05 11:13 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2015-09-05 11:13 . 2015-09-05 11:13 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2015-09-05 11:13 . 2015-09-05 11:13 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2015-09-05 11:13 . 2015-09-05 11:13 81408 ----a-w- c:\windows\system32\icardie.dll
2015-09-05 11:13 . 2015-09-05 11:13 77312 ----a-w- c:\windows\system32\tdc.ocx
2015-09-05 11:13 . 2015-09-05 11:13 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2015-09-05 11:13 . 2015-09-05 11:13 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2015-09-05 11:13 . 2015-09-05 11:13 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2015-09-05 11:13 . 2015-09-05 11:13 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2015-09-05 11:13 . 2015-09-05 11:13 62464 ----a-w- c:\windows\system32\pngfilt.dll
2015-09-05 11:13 . 2015-09-05 11:13 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2015-09-05 11:13 . 2015-09-05 11:13 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2015-09-05 11:13 . 2015-09-05 11:13 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2015-09-05 11:13 . 2015-09-05 11:13 48640 ----a-w- c:\windows\system32\mshtmler.dll
2015-09-05 11:13 . 2015-09-05 11:13 48128 ----a-w- c:\windows\system32\imgutil.dll
2015-09-05 11:13 . 2015-09-05 11:13 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2015-09-05 11:13 . 2015-09-05 11:13 30208 ----a-w- c:\windows\system32\licmgr10.dll
2015-09-05 11:13 . 2015-09-05 11:13 247808 ----a-w- c:\windows\system32\msls31.dll
2015-09-05 11:13 . 2015-09-05 11:13 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2015-09-05 11:13 . 2015-09-05 11:13 235520 ----a-w- c:\windows\system32\url.dll
2015-09-05 11:13 . 2015-09-05 11:13 235008 ----a-w- c:\windows\system32\elshyph.dll
2015-09-05 11:13 . 2015-09-05 11:13 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2015-09-05 11:13 . 2015-09-05 11:13 167424 ----a-w- c:\windows\system32\iexpress.exe
2015-09-05 11:13 . 2015-09-05 11:13 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2015-09-05 11:13 . 2015-09-05 11:13 143872 ----a-w- c:\windows\system32\wextract.exe
2015-09-05 11:13 . 2015-09-05 11:13 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2015-09-05 11:13 . 2015-09-05 11:13 13824 ----a-w- c:\windows\system32\mshta.exe
2015-09-05 11:13 . 2015-09-05 11:13 135680 ----a-w- c:\windows\system32\iepeers.dll
2015-09-05 11:13 . 2015-09-05 11:13 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2015-09-05 11:13 . 2015-09-05 11:13 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2015-09-05 11:13 . 2015-09-05 11:13 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2015-09-05 11:13 . 2015-09-05 11:13 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2015-09-05 11:13 . 2015-09-05 11:13 105984 ----a-w- c:\windows\system32\iesysprep.dll
2015-09-05 11:13 . 2015-09-05 11:13 101376 ----a-w- c:\windows\system32\inseng.dll
2015-09-05 10:53 . 2015-09-05 10:53 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2015-09-05 10:53 . 2015-09-05 10:53 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2015-09-05 10:53 . 2015-09-05 10:53 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2015-09-05 10:53 . 2015-09-05 10:53 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2015-09-05 10:53 . 2015-09-05 10:53 363008 ----a-w- c:\windows\system32\dxgi.dll
2015-09-05 10:53 . 2015-09-05 10:53 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2015-09-05 10:53 . 2015-09-05 10:53 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 296960 ----a-w- c:\windows\system32\d3d10core.dll
2015-09-05 10:53 . 2015-09-05 10:53 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2015-09-05 10:53 . 2015-09-05 10:53 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2015-09-05 10:53 . 2015-09-05 10:53 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2015-09-05 10:53 . 2015-09-05 10:53 221184 ----a-w- c:\windows\system32\UIAnimation.dll
2015-09-05 10:53 . 2015-09-05 10:53 220160 ----a-w- c:\windows\SysWow64\d3d10core.dll
2015-09-05 10:53 . 2015-09-05 10:53 207872 ----a-w- c:\windows\SysWow64\WindowsCodecsExt.dll
2015-09-05 10:53 . 2015-09-05 10:53 194560 ----a-w- c:\windows\system32\d3d10_1.dll
2015-09-05 10:53 . 2015-09-05 10:53 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2015-09-05 10:53 . 2015-09-05 10:53 1682432 ----a-w- c:\windows\system32\XpsPrint.dll
2015-09-05 10:53 . 2015-09-05 10:53 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2015-09-05 10:53 . 2015-09-05 10:53 1238528 ----a-w- c:\windows\system32\d3d10.dll
2015-09-05 10:53 . 2015-09-05 10:53 1158144 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2015-09-05 10:53 . 2015-09-05 10:53 1080832 ----a-w- c:\windows\SysWow64\d3d10.dll
2015-09-05 10:53 . 2015-09-05 10:53 10752 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-09-05 10:53 . 2015-09-05 10:53 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-09-02 03:04 . 2015-09-11 17:28 41984 ----a-w- c:\windows\system32\lpk.dll
2015-09-02 03:04 . 2015-09-11 17:28 100864 ----a-w- c:\windows\system32\fontsub.dll
2015-09-02 03:04 . 2015-09-11 17:28 14336 ----a-w- c:\windows\system32\dciman32.dll
2015-09-02 03:04 . 2015-09-11 17:28 46080 ----a-w- c:\windows\system32\atmlib.dll
2015-09-02 02:48 . 2015-09-11 17:28 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2015-09-02 02:48 . 2015-09-11 17:28 10240 ----a-w- c:\windows\SysWow64\dciman32.dll
2015-09-02 02:48 . 2015-09-11 17:28 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2015-09-02 02:47 . 2015-09-11 17:28 25600 ----a-w- c:\windows\SysWow64\lpk.dll
2015-09-02 01:47 . 2015-09-11 17:28 372736 ----a-w- c:\windows\system32\atmfd.dll
2015-09-02 01:33 . 2015-09-11 17:28 299520 ----a-w- c:\windows\SysWow64\atmfd.dll
2015-08-27 18:18 . 2015-09-11 17:29 2004480 ----a-w- c:\windows\system32\msxml6.dll
2015-08-27 18:18 . 2015-09-11 17:29 1887232 ----a-w- c:\windows\system32\msxml3.dll
2015-08-27 18:13 . 2015-09-11 17:29 2048 ----a-w- c:\windows\system32\msxml6r.dll
2015-08-27 18:13 . 2015-09-11 17:29 2048 ----a-w- c:\windows\system32\msxml3r.dll
2015-08-27 17:58 . 2015-09-11 17:29 1391104 ----a-w- c:\windows\SysWow64\msxml6.dll
2015-08-27 17:58 . 2015-09-11 17:29 1241088 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-08-27 17:51 . 2015-09-11 17:29 2048 ----a-w- c:\windows\SysWow64\msxml6r.dll
2015-08-27 17:51 . 2015-09-11 17:29 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2015-08-17 15:29 . 2015-08-17 15:29 973128 ----a-w- c:\windows\system32\DLLAV64.dll
2015-08-17 15:29 . 2015-08-17 15:29 259912 ----a-w- c:\windows\system32\DLLDEV64.dll
2015-08-17 15:29 . 2015-08-17 15:29 240968 ----a-w- c:\windows\system32\DLLDRV64.dll
2015-08-17 15:29 . 2015-08-17 15:29 172872 ----a-w- c:\windows\system32\DLLCPY64.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2012-05-11 5119600]
"GDFirewallTray"="c:\program files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe" [2015-02-20 1855608]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 AODService;AODService;c:\program files (x86)\AMD\OverDrive\AODAssist.exe;c:\program files (x86)\AMD\OverDrive\AODAssist.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 atillk64;atillk64;c:\program files (x86)\AMD\System Monitor\atillk64.sys;c:\program files (x86)\AMD\System Monitor\atillk64.sys [x]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 GDBehave;GDBehave;c:\windows\system32\drivers\GDBehave.sys;c:\windows\SYSNATIVE\drivers\GDBehave.sys [x]
S1 GDMnIcpt;GDMnIcpt;c:\windows\system32\drivers\MiniIcpt.sys;c:\windows\SYSNATIVE\drivers\MiniIcpt.sys [x]
S1 gdwfpcd;G Data WFP CD;c:\windows\system32\drivers\gdwfpcd64.sys;c:\windows\SYSNATIVE\drivers\gdwfpcd64.sys [x]
S1 GRD;G Data Rootkit Detector Driver;c:\windows\system32\drivers\GRD.sys;c:\windows\SYSNATIVE\drivers\GRD.sys [x]
S1 HookCentre;HookCentre;c:\windows\system32\drivers\HookCentre.sys;c:\windows\SYSNATIVE\drivers\HookCentre.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 AODDriver4.3.0;AODDriver4.3.0;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [x]
S2 AVKProxy;G*DATA*ANTIVIRUS Proxy;c:\program files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe;c:\program files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [x]
S2 AVKService;G*DATA Scheduler;c:\program files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe;c:\program files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe [x]
S2 AVKWCtl;G*DATA Dateisystem Wächter;c:\program files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe;c:\program files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe;c:\windows\SYSNATIVE\viakaraokesrv.exe [x]
S3 GDFwSvc;G*DATA Personal Firewall;c:\program files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe;c:\program files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [x]
S3 GDKBB;G Data GDKBB Driver;c:\windows\system32\drivers\GDKBB64.sys;c:\windows\SYSNATIVE\drivers\GDKBB64.sys [x]
S3 GDKBFlt;G Data GDKBFlt Driver;c:\windows\system32\drivers\GDKBFlt64.sys;c:\windows\SYSNATIVE\drivers\GDKBFlt64.sys [x]
S3 GDPkIcpt;GDPkIcpt;c:\windows\system32\drivers\PktIcpt.sys;c:\windows\SYSNATIVE\drivers\PktIcpt.sys [x]
S3 GDScan;G*DATA Scanner;c:\program files (x86)\Common Files\G Data\GDScan\GDScan.exe;c:\program files (x86)\Common Files\G Data\GDScan\GDScan.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\Drivers\nx6000.sys;c:\windows\SYSNATIVE\Drivers\nx6000.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
2015-09-30 20:47 285880 ----a-w- c:\program files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll
.
Inhalt des "geplante Tasks" Ordners
.
2015-11-01 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-03 15:15]
.
2015-11-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05 16:41]
.
2015-11-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-09-05 16:41]
.
.
--------- X64 Entries -----------
.
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\h6t4hxe4.default\
FF - prefs.js: browser.startup.homepage - www.google.de
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: content.notify.ontimer - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.switch.threshold - 750000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-FRITZ! 2.0 - c:\windows\IsUn0407.exe
AddRemove-IObit Surfing Protection_is1 - c:\program files (x86)\IObit\Surfing Protection\unins000.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-3733161408-756724473-978087059-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:ac,13,33,46,d9,43,47,78,ea,24,f5,6a,20,47,ab,e5,44,e6,45,ba,de,92,67,
99,74,d9,97,82,1c,0c,18,6f,6b,13,78,64,c6,6d,4d,44,7c,62,e1,ba,5a,d6,fb,b0,\
"??"=hex:cb,d1,2f,38,60,0f,c0,e0,9a,0c,03,aa,c1,47,8a,b1
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_19_0_0_226_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_19_0_0_226_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_19_0_0_226_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_19_0_0_226_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_226.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.19"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_226.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_226.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_226.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2015-11-01 13:03:09
ComboFix-quarantined-files.txt 2015-11-01 12:03
.
Vor Suchlauf: 9 Verzeichnis(se), 103.388.561.408 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 105.816.543.232 Bytes frei
.
- - End Of File - - 148F40A04F5745758A70DC6DC16AFB3C
A36C5E4F47E84449FF07ED3517B43A31
|
|
02.11.2015, 19:06
| #12 |
| | Win7 friert in unregelmäßigen Zeiten ein Gestern und heute lief er reibungslos,ohne freezes, jetzt wieder passiert. ( |
|
03.11.2015, 20:51
| #13 |
| /// the machine /// TB-Ausbilder | Win7 friert in unregelmäßigen Zeiten ein Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.11.2015, 14:43
| #14 |
| | Win7 friert in unregelmäßigen Zeiten ein Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 04.11.2015 Suchlaufzeit: 13:50 Protokolldatei: mbam.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2015.11.04.03 Rootkit-Datenbank: v2015.10.28.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Rudolf Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 336626 Abgelaufene Zeit: 7 Min., 22 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v5.017 - Bericht erstellt am 04/11/2015 um 14:22:17
# Aktualisiert am 03/11/2015 von Xplode
# Datenbank : 2015-11-03.2 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Rudolf - RUDOLF-PC
# Gestartet von : C:\Users\Rudolf\Desktop\AdwCleaner_5.017.exe
# Option : Löschen
# Unterstützung : Forum - ToolsLib
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\f2z8a3w2.dev-edition-default\Extensions\ascsurfingprotection@iobit.com
***** [ Dateien ] *****
[-] Datei Gelöscht : C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\f2z8a3w2.dev-edition-default\user.js
[-] Datei Gelöscht : C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\f2z8a3w2.dev-edition-default\user.js
[-] Datei Gelöscht : C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\h6t4hxe4.default\user.js
[-] Datei Gelöscht : C:\Users\Rudolf\AppData\Roaming\Mozilla\Firefox\Profiles\h6t4hxe4.default\user.js
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Schlüssel Gelöscht : HKCU\Software\OCS
***** [ Internetbrowser ] *****
*************************
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1942 Bytes] ##########
Das mit dem Junkware Removal Tool scheint irgendwie net zu klappen( hab mein GData beendet/deaktiviert gehabt,aber meldet mir jedes ma wenn ich dieses Junkware tool starte ,das es ein bösartiges programm wäre? soll ich vielleicht GDATA deinstallieren? Will nur sicher gehen. Gruß, Plastikrudi |
|
04.11.2015, 20:44
| #15 |
| /// the machine /// TB-Ausbilder | Win7 friert in unregelmäßigen Zeiten ein Passt schon, aber bitte poste noch das frische FRST log
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Win7 friert in unregelmäßigen Zeiten ein |
| betriebssystem, bios, bli, computer, dringend, euro, fehler, festplatte, folge, friert, gdata, grafikkarte, hardware, laden, musik, neu, nicht mehr, programm, prozessor, prüfen, suche, unregelmäßige, viren, win, win7 |
Linear-Darstellung
