Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Skype Trojaner/Malware

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 12.03.2013, 11:43   #1
mm939
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



Hallo,

ich habe folgenden Link per Skype bekommen:
hab ich dir das foto schon gezeigt?
hxxp://www.goo.gl/EcCSG?skype_image=IMG0540250.JPG

Habe das OTL Tool ausgeführt und die zwei TXT Dateien hat er mir angezeigt.

Danke für die Hilfe.OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 12.03.2013 11:44:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Mario´s\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16484)
Locale: 00000c07 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy
 
8,00 Gb Total Physical Memory | 6,36 Gb Available Physical Memory | 79,55% Memory free
16,00 Gb Paging File | 14,30 Gb Available in Paging File | 89,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,45 Gb Total Space | 13,79 Gb Free Space | 12,38% Space Free | Partition Type: NTFS
Drive D: | 2794,39 Gb Total Space | 1337,85 Gb Free Space | 47,88% Space Free | Partition Type: NTFS
 
Computer Name: MARIO | User Name: Mario´s | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013.03.12 11:32:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Mario´s\Downloads\OTL.exe
PRC - [2013.03.12 05:19:54 | 000,657,760 | RHS- | M] () -- C:\Users\Mario´s\S-80-5421-8975-4765\winmgr.exe
PRC - [2013.03.09 12:33:09 | 000,213,384 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
PRC - [2013.03.07 00:32:44 | 004,767,304 | ---- | M] (AVAST Software) -- C:\Programme\AVAST Software\Avast\AvastUI.exe
PRC - [2013.03.07 00:32:44 | 000,045,248 | ---- | M] (AVAST Software) -- C:\Programme\AVAST Software\Avast\AvastSvc.exe
PRC - [2012.12.29 09:55:32 | 000,068,608 | ---- | M] (IvoSoft) -- C:\Programme\Classic Shell\ClassicShellService.exe
PRC - [2012.12.19 09:49:34 | 000,732,648 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
PRC - [2012.12.19 09:49:12 | 000,149,480 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
PRC - [2012.12.18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2010.09.15 15:01:20 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
PRC - [2009.11.19 18:43:14 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Razer\Copperhead\razerhid.exe
PRC - [2007.01.09 09:48:58 | 000,147,456 | ---- | M] (Razer Inc.) -- C:\Program Files (x86)\Razer\Copperhead\razerofa.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2013.03.12 05:19:54 | 000,657,760 | RHS- | M] () -- C:\Users\Mario´s\S-80-5421-8975-4765\winmgr.exe
MOD - [2012.11.28 14:13:52 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012.11.28 14:13:30 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2009.11.19 18:43:14 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Razer\Copperhead\razerhid.exe
MOD - [2005.08.17 13:23:16 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\Razer\Copperhead\download.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2013.01.10 00:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013.01.10 00:22:53 | 000,464,384 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013.01.10 00:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2012.12.19 20:56:00 | 000,240,640 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2012.12.06 05:23:00 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2012.12.06 05:22:59 | 000,178,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2012.11.06 05:36:55 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2012.11.06 05:17:41 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2012.09.20 10:10:47 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2012.09.20 07:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2012.09.20 07:30:41 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2012.07.26 04:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012.07.26 04:07:42 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2012.07.26 04:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012.07.26 04:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012.07.26 04:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012.07.26 04:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012.07.26 04:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012.07.26 04:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012.07.26 04:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012.07.26 04:05:28 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2012.07.26 04:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012.07.26 04:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012.07.26 04:05:04 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2012.07.26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012.07.26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012.07.26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012.07.26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012.07.26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2012.07.26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV - [2013.03.09 10:03:15 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.03.07 00:32:44 | 000,045,248 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Programme\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2013.03.06 12:48:42 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.02.25 07:39:32 | 000,543,144 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012.12.29 09:55:32 | 000,068,608 | ---- | M] (IvoSoft) [Auto | Running] -- C:\Programme\Classic Shell\ClassicShellService.exe -- (ClassicShellService)
SRV - [2012.12.19 09:49:34 | 000,732,648 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012.12.18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.11.06 05:36:55 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012.10.23 14:03:56 | 000,492,032 | ---- | M] () [Auto | Running] -- C:\Programme\Bigfoot Networks\Killer Network Manager\BFNService.exe -- (Bigfoot Networks Killer Service)
SRV - [2012.07.26 04:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2010.09.15 15:01:20 | 000,065,536 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe -- (BRA_Scheduler)
SRV - [2010.06.25 18:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd)
SRV - [2010.01.09 21:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2008.12.27 03:55:28 | 000,068,760 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2013.SP1\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV - [2004.07.15 01:49:26 | 000,032,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe -- (aspnet_state)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2013.03.07 00:33:21 | 001,025,808 | ---- | M] (AVAST Software) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013.03.07 00:33:21 | 000,377,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013.03.07 00:33:21 | 000,178,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013.03.07 00:33:21 | 000,070,992 | ---- | M] (AVAST Software) [Kernel | System | Unknown] -- C:\Windows\SysNative\Drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013.03.07 00:33:21 | 000,068,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013.03.07 00:33:21 | 000,065,336 | ---- | M] () [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013.03.07 00:33:20 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\Drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013.03.07 00:33:20 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2013.02.06 07:42:10 | 000,203,544 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\ssudmdm.sys -- (ssudmdm)
DRV:64bit: - [2013.02.06 07:42:08 | 000,102,936 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\ssudbus.sys -- (dg_ssudbus)
DRV:64bit: - [2013.01.27 09:34:59 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.01.10 02:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013.01.10 02:39:29 | 000,194,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2012.12.19 21:48:48 | 011,278,336 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012.12.19 20:32:54 | 000,552,960 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012.11.27 04:56:29 | 000,031,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2012.11.27 04:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2012.11.20 05:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2012.11.09 15:33:30 | 000,171,008 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\nmwcdnsux64.sys -- (nmwcdnsux64)
DRV:64bit: - [2012.11.09 15:33:30 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2012.11.09 15:33:30 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2012.11.09 15:33:30 | 000,012,800 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\nmwcdnsucx64.sys -- (nmwcdnsucx64)
DRV:64bit: - [2012.11.09 15:33:30 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2012.11.09 15:33:30 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2012.11.06 08:52:07 | 000,445,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2012.11.06 08:36:23 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2012.11.06 04:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2012.10.23 14:04:48 | 000,157,288 | ---- | M] (Bigfoot Networks, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Xeno7x64.sys -- (BFN7x64)
DRV:64bit: - [2012.10.23 14:04:48 | 000,031,336 | ---- | M] (Bigfoot Networks, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Edge7x64.sys -- (BfEdge7x64)
DRV:64bit: - [2012.10.17 13:53:46 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2012.10.12 09:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.10.11 08:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2012.10.11 08:13:49 | 000,058,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2012.10.02 10:32:06 | 000,295,792 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\yk63x64.sys -- (yukonw8)
DRV:64bit: - [2012.09.28 10:32:56 | 000,053,760 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012.09.20 08:55:33 | 000,337,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2012.09.20 08:55:33 | 000,212,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2012.09.20 08:55:30 | 000,120,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2012.09.20 08:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2012.09.20 08:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2012.09.20 08:03:08 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2012.08.21 17:56:38 | 000,091,648 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AtihdW86.sys -- (AtiHDAudioService)
DRV:64bit: - [2012.08.21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012.07.26 06:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.07.26 06:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012.07.26 06:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012.07.26 06:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012.07.26 06:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012.07.26 06:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012.07.26 06:00:55 | 000,283,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2012.07.26 06:00:55 | 000,077,552 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2012.07.26 06:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012.07.26 06:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012.07.26 06:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012.07.26 06:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012.07.26 06:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012.07.26 06:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012.07.26 06:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012.07.26 06:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012.07.26 06:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012.07.26 06:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012.07.26 06:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012.07.26 05:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012.07.26 05:54:34 | 000,096,496 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2012.07.26 05:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012.07.26 05:44:30 | 000,258,288 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2012.07.26 05:36:15 | 000,034,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2012.07.26 04:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012.07.26 03:30:00 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbser.sys -- (usbser)
DRV:64bit: - [2012.07.26 03:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012.07.26 03:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012.07.26 03:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012.07.26 03:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012.07.26 03:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012.07.26 03:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012.07.26 03:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012.07.26 03:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012.07.26 03:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012.07.26 03:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012.07.26 03:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012.07.26 03:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012.07.26 03:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012.07.26 03:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012.07.26 03:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012.07.26 03:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012.07.26 03:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.07.26 03:25:26 | 000,203,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Vid.sys -- (Vid)
DRV:64bit: - [2012.07.26 03:25:22 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2012.07.26 03:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012.07.26 03:25:12 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2012.07.26 03:25:12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2012.07.26 03:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012.07.26 03:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012.07.26 03:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2011.04.11 21:01:00 | 000,341,832 | ---- | M] (Logitech) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\ladfGSRamd64.sys -- (LADF_RenderOnly)
DRV:64bit: - [2011.04.11 21:00:18 | 000,410,184 | ---- | M] (Logitech) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\ladfGSCamd64.sys -- (LADF_CaptureOnly)
DRV:64bit: - [2010.06.25 18:07:26 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\npf.sys -- (NPF)
DRV:64bit: - [2009.11.24 02:38:00 | 000,016,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\LGVirHid.sys -- (LGVirHid)
DRV:64bit: - [2009.11.24 02:37:50 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\LGBusEnum.sys -- (LGBusEnum)
DRV:64bit: - [2009.11.10 15:50:18 | 000,014,336 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\copperhd.sys -- (copperhd)
DRV:64bit: - [2005.03.29 01:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ASACPI.sys -- (MTsensor)
DRV - [2009.08.07 22:46:56 | 000,023,112 | ---- | M] (SiSoftware) [Kernel | On_Demand | Stopped] -- C:\Programme\SiSoftware\SiSoftware Sandra Lite 2013.SP1\WNt500x64\sandra.sys -- (SANDRA)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-AT
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 33 63 F2 74 97 1A CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledAddons: %7BACAA314B-EEBA-48e4-AD47-84E31C44796C%7D:4.2.1.9
FF - prefs.js..extensions.enabledAddons: anttoolbar%40ant.com:2.4.7.6
FF - prefs.js..extensions.enabledAddons: SkipScreen%40SkipScreen:0.7.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
 
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_171.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}: C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ [2012.12.26 17:56:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013.03.12 11:17:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.03.09 10:03:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2012.12.23 06:09:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Mario´s\AppData\Roaming\mozilla\Extensions
[2013.03.07 15:12:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Mario´s\AppData\Roaming\mozilla\Firefox\Profiles\k93bwter.default\extensions
[2013.03.04 13:14:00 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\Users\Mario´s\AppData\Roaming\mozilla\Firefox\Profiles\k93bwter.default\extensions\anttoolbar@ant.com
[2013.03.07 15:12:22 | 000,071,037 | ---- | M] () (No name found) -- C:\Users\Mario´s\AppData\Roaming\mozilla\firefox\profiles\k93bwter.default\extensions\SkipScreen@SkipScreen.xpi
[2013.02.14 13:22:55 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\Mario´s\AppData\Roaming\mozilla\firefox\profiles\k93bwter.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013.02.09 11:12:15 | 000,010,339 | ---- | M] () -- C:\Users\Mario´s\AppData\Roaming\mozilla\firefox\profiles\k93bwter.default\searchplugins\duckduckgo-1.xml
[2013.02.09 11:12:12 | 000,010,339 | ---- | M] () -- C:\Users\Mario´s\AppData\Roaming\mozilla\firefox\profiles\k93bwter.default\searchplugins\duckduckgo.xml
[2013.02.20 06:10:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012.12.26 17:56:23 | 000,000,000 | ---D | M] ("DVDVideoSoft YouTube MP3 and Video Download") -- C:\PROGRAM FILES (X86)\COMMON FILES\DVDVIDEOSOFT\PLUGINS\FF
File not found (No name found) -- C:\USERS\MARIO´S\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\K93BWTER.DEFAULT\EXTENSIONS\ANTTOOLBAR@ANT.COM
File not found (No name found) -- C:\USERS\MARIO´S\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\K93BWTER.DEFAULT\EXTENSIONS\SKIPSCREEN@SKIPSCREEN.XPI
[2013.03.09 10:03:15 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013.02.16 05:15:47 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2013.02.16 05:15:47 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2013.02.16 05:15:47 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2013.02.16 05:15:47 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2013.02.16 05:15:47 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2013.02.16 05:15:47 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
========== Chrome ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.160\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.160\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.160\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U10 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Nokia Suite Enabler Plugin (Enabled) = C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
CHR - plugin: Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
CHR - plugin: Java Deployment Toolkit 7.0.100.18 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - Extension: Docs = C:\Users\Mario´s\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: Google Drive = C:\Users\Mario´s\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: YouTube = C:\Users\Mario´s\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google-Suche = C:\Users\Mario´s\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Google Mail = C:\Users\Mario´s\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2012.07.26 06:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programme\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft)
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (ClassicIE9BHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Programme\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft)
O2 - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (ClassicIE9BHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Programme\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programme\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft)
O3 - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Copperhead] C:\Program Files (x86)\Razer\Copperhead\razerhid.exe ()
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [RoccatIsku] C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE (ROCCAT GmbH)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [] File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe (Samsung Electronics)
O4 - HKCU..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung)
O4 - HKCU..\Run: [Microsoft Windows Manager] C:\Users\Mario´s\S-80-5421-8975-4765\winmgr.exe ()
O4 - HKCU..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - Startup: C:\Users\Mario´s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Mario´s\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: Free YouTube Download - C:\Users\Mario´s\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm ()
O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Mario´s\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Free YouTube Download - C:\Users\Mario´s\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Mario´s\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000 File not found
O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Programme\Classic Shell\ClassicIE9_32.exe (IvoSoft)
O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Programme\Classic Shell\ClassicIE9_32.exe (IvoSoft)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\BfLLR.dll (Bigfoot Networks, Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\BfLLR.dll (Bigfoot Networks, Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\BfLLR.dll (Bigfoot Networks, Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\BfLLR.dll (Bigfoot Networks, Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000015 - C:\Windows\SysNative\BfLLR.dll (Bigfoot Networks, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\BfLLR.dll (Bigfoot Networks, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\BfLLR.dll (Bigfoot Networks, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\BfLLR.dll (Bigfoot Networks, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\BfLLR.dll (Bigfoot Networks, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\SysWOW64\BfLLR.dll (Bigfoot Networks, Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7032CAD2-0958-4EAC-A0D0-D4B95DD2D1A9}: DhcpNameServer = 10.0.0.138
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O27:64bit: - HKLM IFEO\sidebar.exe: Debugger - C:\Program Files (x86)\Windows Sidebar\8GadgetPack.exe ()
O27 - HKLM IFEO\sidebar.exe: Debugger - C:\Program Files (x86)\Windows Sidebar\8GadgetPack.exe ()
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.03.12 11:26:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2013.03.12 11:18:06 | 000,377,920 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013.03.12 11:18:06 | 000,070,992 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013.03.12 11:18:06 | 000,068,920 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013.03.12 11:18:06 | 000,033,400 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013.03.12 11:18:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013.03.12 11:18:05 | 001,025,808 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013.03.12 11:18:05 | 000,287,840 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013.03.12 11:18:05 | 000,080,816 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013.03.12 11:17:44 | 000,041,664 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013.03.12 11:17:22 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013.03.12 11:16:56 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2013.03.12 05:20:07 | 000,000,000 | RHSD | C] -- C:\Users\Mario´s\S-80-5421-8975-4765
[2013.03.11 09:41:14 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2013.03.09 12:33:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013.03.09 12:33:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2013.03.09 12:33:09 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Local\Google
[2013.03.07 14:06:33 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\Documents\Nokia Suite
[2013.03.07 14:05:43 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Local\NokiaAccount
[2013.03.07 14:05:43 | 000,000,000 | ---D | C] -- C:\Windows\LastGood
[2013.03.07 14:05:05 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Roaming\PC Suite
[2013.03.07 14:05:05 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Suite
[2013.03.07 14:05:05 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Local\Nokia
[2013.03.07 14:05:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia
[2013.03.07 14:04:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Nokia
[2013.03.07 14:04:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nokia
[2013.03.07 14:04:32 | 000,026,112 | ---- | C] (Nokia) -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys
[2013.03.07 14:04:32 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2013.03.07 14:04:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PC Connectivity Solution
[2013.03.07 14:02:29 | 000,000,000 | ---D | C] -- C:\ProgramData\NokiaInstallerCache
[2013.03.07 14:02:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nokia
[2013.03.06 10:57:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013.03.04 19:14:08 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Roaming\Canneverbe Limited
[2013.03.04 19:14:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Canneverbe Limited
[2013.03.04 14:30:25 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Roaming\mp3DirectCut
[2013.03.04 14:29:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\mp3DirectCut
[2013.03.04 10:27:32 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CrashDump
[2013.03.03 01:02:53 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\Documents\ArmA 2 OA Demo
[2013.03.03 01:02:53 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Local\ArmA 2 OA DEMO
[2013.02.28 13:26:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013.02.28 13:26:01 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013.02.28 13:26:00 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013.02.28 13:26:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2013.02.28 13:26:00 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013.02.28 07:39:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JDownloader
[2013.02.28 07:39:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2013.02.27 12:56:32 | 001,010,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\reseteng.dll
[2013.02.27 12:56:32 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2013.02.27 12:56:32 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2013.02.23 05:30:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
[2013.02.23 05:30:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinPcap
[2013.02.20 15:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2013.02.17 03:25:01 | 001,690,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GdiPlus.dll
[2013.02.17 03:25:00 | 001,437,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GdiPlus.dll
[2013.02.16 11:26:56 | 002,094,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmc.exe
[2013.02.16 11:26:56 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidsvc.dll
[2013.02.16 11:26:55 | 001,611,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmc.exe
[2013.02.16 11:26:55 | 000,820,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpprefcl.dll
[2013.02.16 11:26:54 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2013.02.16 11:26:54 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netprofmsvc.dll
[2013.02.16 11:26:54 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srmstormod.dll
[2013.02.16 11:26:53 | 001,886,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll
[2013.02.16 11:26:53 | 000,438,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.dll
[2013.02.16 11:26:53 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2013.02.16 11:26:53 | 000,028,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpiowin32.sys
[2013.02.16 11:26:52 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpprefcl.dll
[2013.02.16 11:26:50 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MP4SDECD.DLL
[2013.02.16 11:26:50 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll
[2013.02.16 11:26:50 | 000,303,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2013.02.16 11:26:50 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srmstormod.dll
[2013.02.16 11:26:50 | 000,194,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys
[2013.02.16 11:26:50 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll
[2013.02.16 11:26:50 | 000,124,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys
[2013.02.16 11:26:49 | 000,728,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2013.02.16 11:26:49 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll
[2013.02.16 11:26:49 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2013.02.16 11:26:49 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSDMon.dll
[2013.02.16 11:26:49 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncbservice.dll
[2013.02.16 11:26:49 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiaacmgr.exe
[2013.02.16 11:26:49 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiaacmgr.exe
[2013.02.16 11:26:48 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MP4SDECD.DLL
[2013.02.16 11:26:48 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srm.dll
[2013.02.16 11:26:48 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srm.dll
[2013.02.16 11:26:48 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxm.dll
[2013.02.16 11:26:48 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhsvc.dll
[2013.02.16 11:26:48 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adhapi.dll
[2013.02.16 11:26:48 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpprxp.dll
[2013.02.16 11:26:48 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\keepaliveprovider.dll
[2013.02.13 11:24:55 | 006,967,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013.02.13 11:24:47 | 003,966,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013.02.13 11:24:46 | 000,907,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll
[2013.02.13 11:24:46 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013.02.13 11:24:46 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013.02.13 11:24:45 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013.02.13 11:24:45 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013.02.13 11:24:45 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013.02.13 11:24:45 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013.02.13 11:24:45 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll
[2013.02.13 11:24:45 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013.02.13 11:24:45 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll
[2013.02.13 11:24:45 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013.02.12 15:21:50 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Roaming\WinRAR
[2013.02.12 15:21:50 | 000,000,000 | ---D | C] -- C:\Users\Mario´s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2013.02.12 15:21:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2013.02.12 15:21:44 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013.03.12 11:40:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.03.12 11:38:02 | 000,001,124 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.03.12 11:18:06 | 000,001,922 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013.03.12 11:18:05 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013.03.12 05:20:16 | 000,000,000 | -H-- | M] () -- C:\Users\Mario´s\AppData\Roaming\winsvcns.sys
[2013.03.11 15:41:07 | 001,893,860 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.03.11 15:41:07 | 000,807,236 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2013.03.11 15:41:07 | 000,756,298 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.03.11 15:41:07 | 000,179,504 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2013.03.11 15:41:07 | 000,151,668 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.03.11 12:38:00 | 000,001,120 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.03.11 09:43:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.03.11 09:41:14 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013.03.11 09:41:06 | 2576,183,295 | -HS- | M] () -- C:\hiberfil.sys
[2013.03.09 12:33:50 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013.03.07 00:33:21 | 001,025,808 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013.03.07 00:33:21 | 000,377,920 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013.03.07 00:33:21 | 000,178,624 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013.03.07 00:33:21 | 000,070,992 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013.03.07 00:33:21 | 000,068,920 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013.03.07 00:33:21 | 000,065,336 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013.03.07 00:33:20 | 000,080,816 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013.03.07 00:33:20 | 000,033,400 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013.03.07 00:32:51 | 000,041,664 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2013.03.07 00:32:22 | 000,287,840 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013.03.04 14:29:58 | 000,001,055 | ---- | M] () -- C:\Users\Mario´s\Desktop\mp3DirectCut.lnk
[2013.03.04 10:26:48 | 000,002,002 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
[2013.03.02 20:11:56 | 000,000,221 | ---- | M] () -- C:\Users\Mario´s\Desktop\Arma 2 Operation Arrowhead Demo.url
[2013.02.28 13:26:27 | 000,001,783 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013.02.26 21:40:36 | 016,473,456 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2013.02.21 08:29:31 | 000,078,168 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013.02.21 08:29:30 | 000,692,568 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013.02.20 15:04:02 | 000,001,658 | ---- | M] () -- C:\Users\Public\Desktop\Recuva.lnk
[2013.02.17 03:45:14 | 000,421,792 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013.03.12 11:18:06 | 000,001,922 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013.03.12 11:18:05 | 000,178,624 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013.03.12 11:18:05 | 000,065,336 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013.03.12 11:18:05 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2013.03.12 05:20:16 | 000,000,000 | -H-- | C] () -- C:\Users\Mario´s\AppData\Roaming\winsvcns.sys
[2013.03.09 12:33:50 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013.03.09 12:33:12 | 000,001,124 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.03.09 12:33:12 | 000,001,120 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.03.04 14:29:58 | 000,001,055 | ---- | C] () -- C:\Users\Mario´s\Desktop\mp3DirectCut.lnk
[2013.03.04 13:13:38 | 000,000,295 | ---- | C] () -- C:\Users\Mario´s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papierkorb (2).lnk
[2013.03.04 10:26:48 | 000,002,002 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
[2013.03.02 20:11:56 | 000,000,221 | ---- | C] () -- C:\Users\Mario´s\Desktop\Arma 2 Operation Arrowhead Demo.url
[2013.02.28 13:26:27 | 000,001,783 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013.02.20 15:04:02 | 000,001,658 | ---- | C] () -- C:\Users\Public\Desktop\Recuva.lnk
[2013.02.17 03:45:11 | 000,421,792 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.02.16 11:26:48 | 000,386,577 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2013.01.09 20:32:42 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013.01.09 06:25:44 | 000,015,873 | ---- | C] () -- C:\Windows\SysWow64\Inetde.dll
[2013.01.03 04:20:55 | 013,131,776 | ---- | C] () -- C:\Users\Mario´s\AppData\Roaming\Sandra.mdb
[2013.01.03 04:20:55 | 000,000,064 | ---- | C] () -- C:\Users\Mario´s\AppData\Roaming\Sandra.ldb
[2012.12.25 21:17:20 | 000,000,646 | ---- | C] () -- C:\Users\Mario´s\AppData\Roaming\GPU Monitor_GPU0_Settings.ini
[2012.12.25 17:15:02 | 000,001,800 | ---- | C] () -- C:\Users\Mario´s\AppData\Roaming\System Monitor II_CPU0_Settings.ini
[2012.12.24 03:42:23 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2012.12.24 03:10:35 | 000,000,543 | ---- | C] () -- C:\Users\Mario´s\AppData\Roaming\All CPU MeterV3_Settings.ini
[2012.12.23 06:50:37 | 000,000,283 | ---- | C] () -- C:\Users\Mario´s\AppData\Roaming\GPU MeterV2_Settings.ini
[2012.12.23 06:48:14 | 000,000,532 | ---- | C] () -- C:\Users\Mario´s\AppData\Roaming\All CPU MeterV2_Settings.ini
[2012.12.23 06:29:34 | 000,709,719 | ---- | C] () -- C:\Windows\unins002.exe
[2012.12.23 06:29:34 | 000,007,957 | ---- | C] () -- C:\Windows\unins002.dat
[2012.12.23 06:26:25 | 001,199,175 | ---- | C] () -- C:\Windows\unins001.exe
[2012.12.23 06:26:25 | 000,021,729 | ---- | C] () -- C:\Windows\unins001.dat
[2012.12.23 06:26:24 | 000,066,560 | ---- | C] () -- C:\Windows\SysWow64\zlib1.dll
[2012.12.23 06:26:23 | 000,162,304 | ---- | C] () -- C:\Windows\SysWow64\libpng13.dll
[2012.12.23 06:26:23 | 000,138,752 | ---- | C] () -- C:\Windows\SysWow64\libpng15.dll
[2012.12.23 06:26:21 | 001,187,609 | ---- | C] () -- C:\Windows\unins000.exe
[2012.12.23 06:26:21 | 000,010,920 | ---- | C] () -- C:\Windows\unins000.dat
[2012.12.23 06:18:50 | 001,827,172 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.12.23 06:11:17 | 000,000,425 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2012.12.23 06:11:17 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI
[2012.12.23 05:50:36 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012.11.28 14:17:24 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012.11.28 14:17:18 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2012.11.28 14:17:18 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2012.11.28 14:17:18 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2012.11.28 14:17:18 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012.09.28 02:29:54 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012.09.28 02:29:54 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012.07.26 09:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2012.07.26 09:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2012.07.26 08:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012.07.26 02:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2012.07.25 21:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012.07.25 21:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2012.06.02 15:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2012.05.02 13:58:10 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2011.09.12 23:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
 
========== ZeroAccess Check ==========
 
[2012.12.23 06:18:44 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.01.10 00:23:07 | 019,791,360 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.01.10 00:26:23 | 017,560,576 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012.07.26 04:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012.07.26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012.07.26 04:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
< End of report >
         
--- --- ---
OTL Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 12.03.2013 11:44:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Mario´s\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16484)
Locale: 00000c07 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy
 
8,00 Gb Total Physical Memory | 6,36 Gb Available Physical Memory | 79,55% Memory free
16,00 Gb Paging File | 14,30 Gb Available in Paging File | 89,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,45 Gb Total Space | 13,79 Gb Free Space | 12,38% Space Free | Partition Type: NTFS
Drive D: | 2794,39 Gb Total Space | 1337,85 Gb Free Space | 47,88% Space Free | Partition Type: NTFS
 
Computer Name: MARIO | User Name: Mario´s | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05A82A98-F25A-44F8-8DC2-E91133DC40B1}" = lport=rpc | protocol=6 | dir=in | app=c:\program files\sisoftware\sisoftware sandra lite 2013.sp1\wnt500x64\rpcsandrasrv.exe | 
"{1E362664-2631-4F5E-BBB2-A9E73F8483BC}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | 
"{1F4B71DC-D228-4E04-B93F-100E0BD20772}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe | 
"{86DB318B-E8FF-45D9-B99F-A3B128A98172}" = lport=rpc | protocol=6 | dir=in | app=c:\program files\sisoftware\sisoftware sandra lite 2013.sp1\rpcagentsrv.exe | 
"{D3F6DCD0-375F-40B5-A169-854CA8751358}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{002B6070-EE93-44CF-9E65-2333243A7D7E}" = dir=out | name=mahjong deluxe free | 
"{010D04C7-92F2-40E8-BB41-E5607962CE2B}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{01946BC2-0C99-44AC-8790-6AA4890CAF80}" = dir=out | name=microsoft solitaire collection | 
"{025C4877-865A-4BC8-8BF3-E58ED85C0E61}" = dir=out | name=@{microsoft.zunemusic_1.1.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} | 
"{04D41427-8F7E-49DC-980C-A5609F8C7AF3}" = protocol=17 | dir=in | app=c:\program files (x86)\brother\bradmin professional 3\bradminv3.exe | 
"{08980D85-281B-4CD9-A39B-AE5747C4A87F}" = dir=out | name=@{microsoft.bingfinance_1.7.0.26_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} | 
"{08E5C91E-3797-4BCD-B1CA-83F34BEC4DDE}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
"{10486E32-D51B-4A3A-98DD-0803B7933B58}" = dir=out | name=pro sudoku solver | 
"{133AD953-7624-4F58-969C-33E63F2318B6}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{14679B56-D875-478E-8E8A-46E4B35F45B2}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe | 
"{15F76BE7-DE1E-4D49-93E9-0A81D517024F}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | 
"{1D5596C7-75AC-4436-B2E5-A61DF3D4A2A3}" = dir=out | name=@{microsoft.bingmaps_1.5.1.240_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | 
"{20C697F7-556C-4CF3-8E5A-ABBED24ADFF6}" = dir=out | name=@{microsoft.zunevideo_1.1.134.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} | 
"{30FB2B4A-870A-4DFE-9739-1A4B69B7B18E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{34126C3C-A158-4D46-BC3D-B74D40DC0249}" = protocol=17 | dir=in | app=c:\program files (x86)\brother\bradmin professional 3\discover.exe | 
"{3BF86334-72F4-4A77-957B-BE47D32C10FD}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{3CC49467-CD54-49F9-AAD4-8C37A0D57B70}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{47477984-3DC2-427A-93DD-7C8FE111F01E}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe | 
"{4AF20226-761B-44F4-8902-6B4D5DB1A9D8}" = protocol=6 | dir=in | app=c:\program files (x86)\brother\bradmin professional 3\auditorserver.exe | 
"{56CD3ED0-FA0C-4D90-8B5A-A0D1755E0F38}" = protocol=6 | dir=in | app=c:\users\mario´s\appdata\roaming\dropbox\bin\dropbox.exe | 
"{576B7A31-34C5-409E-B3CC-D365E1F442C1}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"{5D7362FF-1217-4437-B716-39079C77959F}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | 
"{692808B2-758D-4B9A-8709-DF0A68CDC835}" = dir=out | name=@{microsoft.reader_6.2.9200.20523_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | 
"{783EFD71-91C5-40DF-8328-58E7E37044A0}" = dir=out | name=@{microsoft.bingtravel_1.7.0.26_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} | 
"{7CC12968-3EE5-452A-AD83-987AEF3531F6}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | 
"{7CC77A78-C382-43BD-B69E-F5A380A9313B}" = protocol=1 | dir=in | name=sisoftware sandra agent service (icmp-in) | 
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 
"{80DA97B4-6C44-4E53-9EC1-4C141C9BF9BC}" = dir=out | name=@{microsoft.xboxlivegames_1.1.134.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | 
"{8B15640F-1327-4DCF-A308-3755AC4491C8}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty black ops ii\t6mp.exe | 
"{8C5673FC-E238-4B1E-B003-5808D4B3A4FD}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty black ops ii\t6mp.exe | 
"{8DC547A0-39C3-4573-953D-F67DA377C59D}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | 
"{9153135B-0F04-4EE5-AF54-F82B78604F16}" = dir=in | name=@{microsoft.skypeapp_1.3.0.112_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} | 
"{97EF9297-A88E-4F4E-B2F0-BA28160965FE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead demo\arma2oa_demo.exe | 
"{99B95358-6B0A-4C51-9825-D7EE007CCFAB}" = dir=in | name=@{microsoft.reader_6.2.9200.20523_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | 
"{A04B3C67-475C-4D84-9327-B00ACA782748}" = protocol=1 | dir=in | name=sisoftware deployment agent service (icmp-in) | 
"{A67F79F2-4962-4B2C-9D2C-CE49410D7613}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 
"{ABC471F9-9AAA-44AC-BB45-AB233B0D9DE4}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | 
"{AC89E320-9E3F-4359-9B18-DE85BDD37AE0}" = dir=out | name=@{microsoft.bing_1.5.1.259_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | 
"{AEAEC6A2-11AE-4531-A10F-4431C37F3844}" = dir=out | name=@{microsoft.windowsphotos_16.4.4388.928_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | 
"{B164EBDC-CFF4-49D4-8EC0-5BD4866EF5F3}" = dir=out | name=@{microsoft.bingnews_1.7.0.27_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} | 
"{B41D60DE-45C2-4982-BF51-190E58059B59}" = dir=out | name=@{microsoft.bingsports_1.7.0.26_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} | 
"{BB3EE625-DD9B-4CF9-AB1A-ED4FC7A23767}" = protocol=6 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe | 
"{BF5853A0-5638-4C02-AEDD-7365C1042298}" = dir=in | name=@{microsoft.windowsphotos_16.4.4388.928_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | 
"{C06E405A-2DCB-48BE-A91B-8BEFB947DCDE}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{C1CBC64C-0E4D-440A-B180-1413E7ECE1CC}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | 
"{C3FE3CF0-D9E1-4EBE-96B1-A5B2B4784FDB}" = protocol=6 | dir=in | app=c:\program files (x86)\brother\bradmin light\bradmlight.exe | 
"{C92B0496-0DC4-4D8B-9AF5-960E6FDCFBFB}" = protocol=6 | dir=in | app=c:\program files (x86)\brother\bradmin professional 3\discover.exe | 
"{CE40C5AB-822F-4023-B660-ACC40278903F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead demo\arma2oa_demo.exe | 
"{D33D87EA-5DC4-46EF-9374-2671D8BBF17A}" = protocol=6 | dir=in | app=c:\program files (x86)\brother\bradmin professional 3\bradminv3.exe | 
"{D9B98879-CD72-459F-A521-C6936FEDC5B5}" = dir=out | name=@{microsoft.bingweather_1.7.0.26_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | 
"{D9DE19E6-F6D8-42FB-8ED0-0A195117E306}" = dir=out | name=@{microsoft.skypeapp_1.3.0.112_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} | 
"{E1F06CB2-E73F-4A2B-BEFF-B8215FE869E0}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4388.928_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} | 
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | 
"{E7B24E9C-8F87-48C0-A04F-F9272D253E4E}" = protocol=17 | dir=in | app=c:\users\mario´s\appdata\roaming\dropbox\bin\dropbox.exe | 
"{E95D128B-6A32-435A-956C-F2B47A58CE81}" = protocol=17 | dir=in | app=c:\program files (x86)\brother\bradmin professional 3\auditorserver.exe | 
"{E9C744E0-C91A-4A6E-BD5E-352271EBA020}" = protocol=17 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe | 
"{EBF999BD-84CF-41AA-98FA-10C6FECD4A07}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
"{EDC281CF-7709-4D80-B11A-E72DC062592E}" = protocol=17 | dir=in | app=c:\program files (x86)\brother\bradmin light\bradmlight.exe | 
"{F5D841ED-F48B-4C24-91A7-899F3E8A213D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"TCP Query User{4C390410-6623-4D98-839A-514245EA3FD8}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe | 
"TCP Query User{B0EB8DCB-3BF8-43F9-990D-4120C52465B3}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe | 
"TCP Query User{FC89C7DD-1DC7-4056-9033-AC0DEFDEA328}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
"UDP Query User{0C99D474-86A3-4AD3-90E6-32B809E2BF19}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | 
"UDP Query User{23A6B313-38A5-4E82-AD07-59D1BA0D784D}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe | 
"UDP Query User{A6BFCB48-0BF8-4922-B457-711A05E305EF}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0225AD21-F3E2-4916-BFF3-65D3F9052582}" = iTunes
"{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1" = Core Temp 1.0 RC4
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1" = Allgemeine Runtime Files (x86)
"{20384EBF-4F10-13F0-07C6-7A6C87FD83DF}" = AMD Catalyst Install Manager
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86417010FF}" = Java 7 Update 10 (64-bit)
"{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1" = MPC-HC 1.6.5.6366 (64-bit)
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{680EDA59-9266-44B4-949E-0C24F65DFF82}" = Microsoft_VC100_CRT_SP1_x64
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1" = DirectX 9.0c Extra Files (x86, x64)
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B0A5A6EE-F8BA-48B1-BB32-BAC17E96C2B4}" = Microsoft Visual J# 2.0 Redistributable Package - SE (x64)
"{C1ACBDBF-6F86-185A-E158-AB07893968FC}" = AMD Accelerated Video Transcoding
"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1" = SiSoftware Sandra Lite 2013.SP1
"{CB00799C-0E4F-4FD1-A046-BD24321BCDFF}" = Classic Shell
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 SP1
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D61EB116-6878-9676-F28F-54F6B647023C}" = ccc-utility64
"{DF446558-ADF7-4884-9B2D-281979CCE71F}" = Bigfoot Networks Killer Network Manager
"{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64
"{F6822EFD-3F7D-4B35-8845-757A26AEC8E2}" = Windows Live MIME IFilter
"{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1" = DirectX for Managed Code
"62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)
"Logitech Gaming Software" = Logitech Gaming Software 8.40
"M928366" = 
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 SP1
"Microsoft Visual J# 2.0 Redistributable Package - SE (x64)" = Microsoft Visual J# 2.0 Redistributable Package - SE (x64)
"Recuva" = Recuva
"VLC media player" = VLC media player 2.0.5
"Win8 x64Components_is1" = Win8 x64Components v1.3.4
"WinRAR archiver" = WinRAR 4.20 (64-Bit)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{009B1E9D-38AB-8B9E-DB07-8318DAAE1941}" = CCC Help Greek
"{022BC727-ACB7-4C1D-109C-177515714A32}" = Catalyst Control Center
"{03CC9D58-B132-4CC0-A521-4F3660AA43C7}" = Movie Maker
"{0454BB9A-2A7A-4214-BDFF-937F7A711A44}" = Windows Live Communications Platform
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{07E46A4A-F2BA-FE48-9464-E11250502C6A}" = CCC Help Swedish
"{07E5C16F-9194-E31B-BB6C-C3E8FBD79C30}" = CCC Help English
"{0F2CF890-D101-6CFA-8D99-0CFBF7EF4AD0}" = CCC Help Chinese Standard
"{10CFB5DF-985A-8320-B4D8-461CC1F83CBF}" = CCC Help Japanese
"{15F3A6F5-06AE-4332-AE3E-21CD0416827A}" = Windows Live Mail
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1" = World of Tanks
"{22D071EF-A06A-6341-DFDA-FE448659A63C}" = CCC Help Portuguese
"{26A24AE4-039D-4CA4-87B4-2F83217010FF}" = Java 7 Update 10
"{28A946E1-E83B-4662-BC7C-23451851489E}" = Razer Copperhead
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{30909F74-4B46-2842-DECF-1C66F355338C}" = CCC Help Turkish
"{30F99474-EBE3-4134-A02B-F6CD38CFE243}" = Photo Gallery
"{365E16A2-FE3B-EA13-4EE0-88D570F82497}" = CCC Help Korean
"{3CBD94C1-BA15-488C-888B-D8DD296CC6DC}" = Fotogalerie
"{3D8AB6C1-3932-F551-2AF0-ED0612AD4B26}" = CCC Help Dutch
"{400C31E4-796F-4E86-8FDC-C3C4FACC6847}" = Junk Mail filter update
"{40AD5E62-A31A-C414-01BA-310100577C7E}" = CCC Help Chinese Traditional
"{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}" = Apple Application Support
"{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}" = ROCCAT Isku Keyboard Driver
"{4CCBD1F4-CEEC-452A-9CB8-46564B501315}" = Windows Live UX Platform
"{4F9E0D27-5525-E8C8-43D0-BA15C1A22E03}" = CCC Help Czech
"{647E62F0-F1BC-E0C3-EDF5-67716EE75014}" = CCC Help Hungarian
"{667DB2C0-AF52-021A-7CF6-DA8DD27AC215}" = CCC Help Italian
"{690F5BA3-5DEB-42CD-962B-F687EE59FAA7}" = Windows Live Essentials
"{6A4C6C0F-8791-B753-742E-06C40A6E023C}" = CCC Help Polish
"{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}" = Windows Live PIMT Platform
"{6B722793-E77B-41F5-BAB3-6C9832274E75}" = PC Connectivity Solution
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6FE12C01-2FBC-42E2-AEB9-4CA2238C462F}" = Nokia Connectivity Cable Driver
"{70854FE6-3BF1-4C69-94D0-BEB821102E34}" = Windows Live Mail
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{75C885D4-C758-4896-A3B4-90DA34B44C31}" = BRAdmin Professional 3
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79C61902-F44E-4190-A2B9-9B467B0380CE}" = CCC Help French
"{83565935-4B7E-4F35-9A78-427316C80C98}" = 8GadgetPack
"{8913AC02-67B8-4B52-91B2-BBA7B9C265B5}" = Windows Live Writer Resources
"{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}" = Windows Live SOXE Definitions
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}" = Thrustmaster Force Feedback Driver
"{90140000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0015-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0016-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-0019-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001B-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-001F-0410-0000-0000000FF1CE}_Office14.SingleImage_{C0743197-FFEE-4C19-BAEB-8F7437DC4C8A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0407-1000-0000000FF1CE}_Office14.SingleImage_{594128C9-2CDF-43CE-8103-DC100CF013B6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-002C-0407-0000-0000000FF1CE}_Office14.SingleImage_{4275FB46-ABDF-4456-876C-17CF64294D9A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-006E-0407-0000-0000000FF1CE}_Office14.SingleImage_{98EDFD9F-EA76-40CC-BCE9-92C69413F65B}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00A1-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91A3CEFE-A2C1-3E83-3789-F2BF8EC82106}" = CCC Help Thai
"{96CAEB1D-7BFB-2A98-EBB2-414C894F694F}" = CCC Help Danish
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B92B20A-6A19-428F-8BD0-52DF859B1C61}" = Adobe Shockwave Player 11.6
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A393ED90-0DBD-40A8-8CD0-A2F75178DBF1}" = A1 WLAN Box Wechsel
"{A664A708-E454-4416-7D19-D0F10879522C}" = CCC Help German
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ac3600d2-e1b3-4573-bef7-73f9409d6393}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) - Deutsch
"{aec97477-921a-4289-985a-9e29506625b6}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B727564C-47D3-473A-AC9E-F4BE7B1BD5D3}" = Windows Live UX Platform Language Pack
"{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer
"{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}" = Windows Live Photo Common
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D2C146B1-948D-47EF-8387-5D1C6B980F7C}" = Windows Live Writer
"{D6F46E2D-4FE2-5FAB-5C30-230E99563DEE}" = Catalyst Control Center InstallProxy
"{D9DA23F5-CE0B-EE04-B498-7EC8AFC9F232}" = CCC Help Finnish
"{DB75941E-30C4-4D97-B000-D17C764B998C}" = Brother BRAdmin Light 1.22.0003
"{DF5182CB-192B-A6C8-9707-D7214557691C}" = CCC Help Norwegian
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1203F8C-FF34-4968-A4A5-B4F1F8533DAB}" = Photo Common
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E3A0C45A-7EDB-48EB-AB86-2445E74FBFBB}" = Nokia Suite
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E6757654-CE6A-0D0B-BBE6-F6247F05B7CD}" = Catalyst Control Center Localization All
"{E8759AD8-3A58-77F1-D16D-F3C8F9E98722}" = Catalyst Control Center Graphics Previews Common
"{ED6C77F9-4D7E-447C-9EC0-9A212D075535}" = Movie Maker
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F1C39CBE-4521-BEC8-5238-4A8B55FEB6B7}" = CCC Help Russian
"{FBFA39D2-C55A-56DC-7EBB-767FC31B04A3}" = CCC Help Spanish
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FE7C0B3D-50B9-4951-BE78-A321CBF86552}" = Windows Live SOXE
"A1 WLAN Box Wechsel" = A1 WLAN Box Wechsel
"ACE COMBAT ASSAULT HORIZON Enhanced Edition_is1" = ACE COMBAT ASSAULT HORIZON Enhanced Edition
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"avast" = avast! Free Antivirus
"Biet-O-Matic v2.14.12" = Biet-O-Matic v2.14.12
"Big Solitaires 3D 1.4_is1" = Big Solitaires 3D 1.4
"BitTorrent" = BitTorrent
"DAEMON Tools Lite" = DAEMON Tools Lite
"Free Studio_is1" = Free Studio version 5.9.0.1212
"Google Chrome" = Google Chrome
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"InstallShield_{DF446558-ADF7-4884-9B2D-281979CCE71F}" = Bigfoot Networks Killer Network Manager
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox 19.0.2 (x86 de)" = Mozilla Firefox 19.0.2 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Nokia Suite" = Nokia Suite
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"Steam App 202990" = Call of Duty: Black Ops II - Multiplayer
"Steam App 33970" = Arma 2: Operation Arrowhead Demo
"uTorrent" = µTorrent
"WinLiveSuite" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.2
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"MyFreeCodec" = MyFreeCodec
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 04.03.2013 06:36:25 | Computer Name = Mario | Source = .NET Runtime | ID = 1026
Description = 
 
Error - 04.03.2013 06:36:26 | Computer Name = Mario | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Kies.exe, Version: 1.0.0.1199, Zeitstempel:
0x511b6cb8 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451,
Zeitstempel: 0x50988950 Ausnahmecode: 0xe0434352 Fehleroffset: 0x00014b32 ID des fehlerhaften
Prozesses: 0xdec Startzeit der fehlerhaften Anwendung: 0x01ce18ba65c8f5eb Pfad der
fehlerhaften Anwendung: C:\Program Files (x86)\Samsung\Kies\Kies.exe Pfad des fehlerhaften
Moduls: C:\Windows\SYSTEM32\KERNELBASE.dll Berichtskennung: 5d1e632a-84b7-11e2-be77-90e6ba69f435
Vollständiger
Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket
ist: 
 
Error - 04.03.2013 09:29:27 | Computer Name = Mario | Source = SideBySide | ID = 16842830
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Mario´s\Downloads\SoftonicDownloader_fuer_cryptload.exe".
Fehler in Manifest- oder Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche
Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In
Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
 
Error - 05.03.2013 07:55:19 | Computer Name = Mario | Source = SideBySide | ID = 16842830
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Mario´s\Downloads\SoftonicDownloader_fuer_cryptload.exe".
Fehler in Manifest- oder Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche
Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In
Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.
Komponente
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
 
Error - 05.03.2013 13:14:28 | Computer Name = Mario | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: WorldOfTanks_ModManager.exe, Version:
0.0.0.0, Zeitstempel: 0x50da6552 Name des fehlerhaften Moduls: QtGui4.dll, Version:
4.8.0.0, Zeitstempel: 0x4ee5999c Ausnahmecode: 0xc0000005 Fehleroffset: 0x00008ecf
ID
des fehlerhaften Prozesses: 0xd9c Startzeit der fehlerhaften Anwendung: 0x01ce19c4b5f527c8
Pfad
der fehlerhaften Anwendung: C:\Users\Mario´s\Downloads\WoTMM by Inathero\WorldOfTanks_ModManager.exe
Pfad
des fehlerhaften Moduls: C:\Users\Mario´s\Downloads\WoTMM by Inathero\QtGui4.dll
Berichtskennung:
229803d2-85b8-11e2-be78-90e6ba69f435 Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: 
 
Error - 06.03.2013 05:00:30 | Computer Name = Mario | Source = Application Hang | ID = 1002
Description = Programm vlc.exe, Version 2.0.5.0 kann nicht mehr unter Windows ausgeführt
werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 13c4 Startzeit:
01ce1a48ff1ddda2 Endzeit: 6 Anwendungspfad: C:\Program Files\VideoLAN\VLC\vlc.exe
 
Berichts-ID:
48c5b9af-863c-11e2-be78-90e6ba69f435 Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: 
 
Error - 09.03.2013 09:43:48 | Computer Name = Mario | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.0.9200.16384,
Zeitstempel: 0x5010a938 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000050c21b2f21
ID
des fehlerhaften Prozesses: 0x770 Startzeit der fehlerhaften Anwendung: 0x01ce18d192f3b748
Pfad
der fehlerhaften Anwendung: C:\Program Files\Windows Defender\MsMpEng.exe Pfad des
fehlerhaften Moduls: unknown Berichtskennung: 5e052776-88bf-11e2-be78-90e6ba69f435
Vollständiger
Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket
ist: 
 
Error - 09.03.2013 22:00:34 | Computer Name = Mario | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.0.9200.16384,
Zeitstempel: 0x5010a938 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000cfc7d0c708
ID
des fehlerhaften Prozesses: 0x2278 Startzeit der fehlerhaften Anwendung: 0x01ce1ccc44a4d036
Pfad
der fehlerhaften Anwendung: C:\Program Files\Windows Defender\MsMpEng.exe Pfad des
fehlerhaften Moduls: unknown Berichtskennung: 4aff5563-8926-11e2-be78-90e6ba69f435
Vollständiger
Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket
ist: 
 
Error - 10.03.2013 11:46:29 | Computer Name = Mario | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: MsMpEng.exe, Version: 4.0.9200.16384,
Zeitstempel: 0x5010a938 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000d412d94357
ID
des fehlerhaften Prozesses: 0x2718 Startzeit der fehlerhaften Anwendung: 0x01ce1d333195d627
Pfad
der fehlerhaften Anwendung: C:\Program Files\Windows Defender\MsMpEng.exe Pfad des
fehlerhaften Moduls: unknown Berichtskennung: ac3f220e-8999-11e2-be78-90e6ba69f435
Vollständiger
Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket
ist: 
 
Error - 10.03.2013 12:25:07 | Computer Name = Mario | Source = Microsoft-Windows-Immersive-Shell | ID = 2486
Description = Die App „Microsoft.ZuneMusic_8wekyb3d8bbwe!Microsoft.ZuneMusic“ wurde
nicht innerhalb der vorgesehenen Zeit gestartet.
 
[ System Events ]
Error - 11.03.2013 04:41:15 | Computer Name = MARIO | Source = BugCheck | ID = 1001
Description = 
 
Error - 11.03.2013 04:45:07 | Computer Name = Mario | Source = Service Control Manager | ID = 7000
Description = Der Dienst "WinRing0_1_2_0" wurde aufgrund folgenden Fehlers nicht
gestartet: %%2
 
Error - 11.03.2013 10:28:35 | Computer Name = Mario | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800f0217 fehlgeschlagen: Brother - Printing, Scanner, Storage - Brother
MFC-6890CDW Remote Setup Port
 
Error - 11.03.2013 10:33:08 | Computer Name = Mario | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800f0217 fehlgeschlagen: Brother - Printing, Scanner, Storage - Brother
MFC-6890CDW Remote Setup Port
 
Error - 11.03.2013 10:41:51 | Computer Name = Mario | Source = Application Popup | ID = 1060
Description = 
 
Error - 11.03.2013 10:41:51 | Computer Name = Mario | Source = Service Control Manager | ID = 7000
Description = Der Dienst "PCI Utility" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
 
Error - 11.03.2013 10:41:55 | Computer Name = Mario | Source = Application Popup | ID = 1060
Description = 
 
Error - 11.03.2013 10:41:55 | Computer Name = Mario | Source = Service Control Manager | ID = 7000
Description = Der Dienst "PCI Utility" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
 
Error - 11.03.2013 10:48:21 | Computer Name = Mario | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800f0217 fehlgeschlagen: Brother - Printing, Scanner, Storage - Brother
MFC-6890CDW Remote Setup Port
 
Error - 11.03.2013 22:00:32 | Computer Name = Mario | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installationsfehler: Die Installation des folgenden Updates ist mit
Fehler 0x800f0217 fehlgeschlagen: Brother - Printing, Scanner, Storage - Brother
MFC-6890CDW Remote Setup Port
 
 
< End of report >
         
--- --- ---

Alt 12.03.2013, 12:29   #2
markusg
/// Malware-holic
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



Hi,


otl fix

Fixen mit OTL

  • Starte bitte die OTL.exe.
  • Kopiere nun den Inhalt aus der Codebox in die Textbox.

Code:
ATTFilter
:OTL
O4 - HKCU..\Run: [Microsoft Windows Manager] C:\Users\Mario´s\S-80-5421-8975-4765\winmgr.exe ()
:files
C:\Users\Mario´s\S-80-5421-8975-4765
:Commands
[emptytemp]
         
  • Solltest du deinen Benutzernamen z. B. durch "*****" unkenntlich gemacht haben, so füge an entsprechender Stelle deinen richtigen Benutzernamen ein. Andernfalls wird der Fix nicht funktionieren.
  • Schließe bitte nun alle Programme.
  • Klicke nun bitte auf den Fix Button.
  • OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen.
  • Nach dem Neustart findest Du ein Textdokument auf deinem Desktop.
    ( Auch zu finden unter C:\_OTL\MovedFiles\<Uhrzeit_Datum>.txt)
    Kopiere nun den Inhalt hier in Deinen Thread
__________________

__________________

Alt 12.03.2013, 12:53   #3
mm939
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Microsoft Windows Manager not found.
File C:\Users\Mario´s\S-80-5421-8975-4765\winmgr.exe not found.
========== FILES ==========
C:\Users\Mario´s\S-80-5421-8975-4765 folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Mario´s
->Temp folder emptied: 432531490 bytes
->Temporary Internet Files folder emptied: 233210 bytes
->Java cache emptied: 2520088 bytes
->FireFox cache emptied: 382967464 bytes
->Google Chrome cache emptied: 33615998 bytes
->Flash cache emptied: 140880 bytes

User: Marioïs

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 203104 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 43836056 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 855,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 03122013_134722

Files\Folders moved on Reboot...
C:\Users\Mario´s\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Users\Mario´s\AppData\Local\Mozilla\Firefox\Profiles\k93bwter.default\Cache\_CACHE_001_ moved successfully.
C:\Users\Mario´s\AppData\Local\Mozilla\Firefox\Profiles\k93bwter.default\Cache\_CACHE_002_ moved successfully.
C:\Users\Mario´s\AppData\Local\Mozilla\Firefox\Profiles\k93bwter.default\Cache\_CACHE_003_ moved successfully.
C:\Users\Mario´s\AppData\Local\Mozilla\Firefox\Profiles\k93bwter.default\Cache\_CACHE_MAP_ moved successfully.
C:\Users\Mario´s\AppData\Local\Mozilla\Firefox\Profiles\k93bwter.default\_CACHE_CLEAN_ moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
__________________

Alt 12.03.2013, 14:28   #4
markusg
/// Malware-holic
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



Hi,
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 12.03.2013, 18:09   #5
mm939
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



17:21:40.0381 6976 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:21:40.0639 6976 ============================================================
17:21:40.0639 6976 Current date / time: 2013/03/12 17:21:40.0639
17:21:40.0639 6976 SystemInfo:
17:21:40.0639 6976
17:21:40.0639 6976 OS Version: 6.2.9200 ServicePack: 0.0
17:21:40.0639 6976 Product type: Workstation
17:21:40.0639 6976 ComputerName: MARIO
17:21:40.0639 6976 UserName: Mario´s
17:21:40.0639 6976 Windows directory: C:\Windows
17:21:40.0639 6976 System windows directory: C:\Windows
17:21:40.0639 6976 Running under WOW64
17:21:40.0639 6976 Processor architecture: Intel x64
17:21:40.0639 6976 Number of processors: 4
17:21:40.0639 6976 Page size: 0x1000
17:21:40.0639 6976 Boot type: Normal boot
17:21:40.0639 6976 ============================================================
17:21:40.0971 6976 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x10A5F, SectorsPerTrack: 0x12, TracksPerCylinder: 0xBF, Type 'K0', Flags 0x00000040
17:21:47.0782 6976 Drive \Device\Harddisk1\DR1 - Size: 0x2BAA1476000 (2794.52 Gb), SectorSize: 0x200, Cylinders: 0x59101, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:21:47.0924 6976 Drive \Device\Harddisk8\DR8 - Size: 0x75400000 (1.83 Gb), SectorSize: 0x200, Cylinders: 0xEF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:21:47.0926 6976 ============================================================
17:21:47.0926 6976 \Device\Harddisk0\DR0:
17:21:47.0926 6976 MBR partitions:
17:21:47.0926 6976 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAF000
17:21:47.0926 6976 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xAF800, BlocksNum 0xDEE4800
17:21:47.0926 6976 \Device\Harddisk1\DR1:
17:21:47.0926 6976 GPT partitions:
17:21:47.0926 6976 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {03422340-333F-4D10-9D07-3FA470F4CD80}, Name: Microsoft reserved partition, StartLBA 0x22, BlocksNum 0x40000
17:21:47.0926 6976 \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {03A7CBEE-A25E-4BBA-9F47-1DE9500125F4}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0x5D4C9800
17:21:47.0927 6976 MBR partitions:
17:21:47.0927 6976 \Device\Harddisk8\DR8:
17:21:47.0927 6976 MBR partitions:
17:21:47.0927 6976 \Device\Harddisk8\DR8\Partition1: MBR, Type 0x6, StartLBA 0x89, BlocksNum 0x3A9F77
17:21:47.0928 6976 ============================================================
17:21:47.0929 6976 C: <-> \Device\Harddisk0\DR0\Partition2
17:21:47.0952 6976 D: <-> \Device\Harddisk1\DR1\Partition2
17:21:47.0952 6976 ============================================================
17:21:47.0952 6976 Initialize success
17:21:47.0952 6976 ============================================================
17:21:54.0099 2536 ============================================================
17:21:54.0099 2536 Scan started
17:21:54.0099 2536 Mode: Manual;
17:21:54.0099 2536 ============================================================
17:21:54.0294 2536 ================ Scan system memory ========================
17:21:54.0294 2536 System memory - ok
17:21:54.0294 2536 ================ Scan services =============================
17:21:54.0347 2536 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
17:21:54.0349 2536 1394ohci - ok
17:21:54.0354 2536 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\Windows\system32\drivers\3ware.sys
17:21:54.0364 2536 3ware - ok
17:21:54.0375 2536 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:21:54.0378 2536 ACPI - ok
17:21:54.0384 2536 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\Windows\system32\Drivers\acpiex.sys
17:21:54.0385 2536 acpiex - ok
17:21:54.0390 2536 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
17:21:54.0392 2536 acpipagr - ok
17:21:54.0396 2536 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
17:21:54.0402 2536 AcpiPmi - ok
17:21:54.0407 2536 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\Windows\System32\drivers\acpitime.sys
17:21:54.0409 2536 acpitime - ok
17:21:54.0414 2536 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:21:54.0416 2536 AdobeARMservice - ok
17:21:54.0443 2536 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:21:54.0444 2536 AdobeFlashPlayerUpdateSvc - ok
17:21:54.0454 2536 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:21:54.0461 2536 adp94xx - ok
17:21:54.0470 2536 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:21:54.0475 2536 adpahci - ok
17:21:54.0482 2536 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:21:54.0493 2536 adpu320 - ok
17:21:54.0501 2536 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:21:54.0503 2536 AeLookupSvc - ok
17:21:54.0513 2536 [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD C:\Windows\system32\drivers\afd.sys
17:21:54.0528 2536 AFD - ok
17:21:54.0534 2536 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:21:54.0543 2536 agp440 - ok
17:21:54.0548 2536 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\Windows\System32\alg.exe
17:21:54.0557 2536 ALG - ok
17:21:54.0563 2536 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
17:21:54.0573 2536 AllUserInstallAgent - ok
17:21:54.0580 2536 ALSysIO - ok
17:21:54.0586 2536 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:21:54.0599 2536 AMD External Events Utility - ok
17:21:54.0605 2536 [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
17:21:54.0608 2536 AmdK8 - ok
17:21:54.0731 2536 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:21:54.0860 2536 amdkmdag - ok
17:21:54.0872 2536 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:21:54.0888 2536 amdkmdap - ok
17:21:54.0894 2536 [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
17:21:54.0902 2536 AmdPPM - ok
17:21:54.0908 2536 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:21:54.0917 2536 amdsata - ok
17:21:54.0925 2536 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:21:54.0937 2536 amdsbs - ok
17:21:54.0942 2536 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:21:54.0949 2536 amdxata - ok
17:21:54.0954 2536 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\Windows\system32\drivers\appid.sys
17:21:54.0956 2536 AppID - ok
17:21:54.0961 2536 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:21:54.0970 2536 AppIDSvc - ok
17:21:54.0976 2536 [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo C:\Windows\System32\appinfo.dll
17:21:54.0985 2536 Appinfo - ok
17:21:54.0992 2536 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:21:54.0994 2536 Apple Mobile Device - ok
17:21:55.0000 2536 [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt C:\Windows\System32\appmgmts.dll
17:21:55.0003 2536 AppMgmt - ok
17:21:55.0011 2536 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\Windows\system32\drivers\arc.sys
17:21:55.0021 2536 arc - ok
17:21:55.0027 2536 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:21:55.0030 2536 arcsas - ok
17:21:55.0045 2536 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
17:21:55.0060 2536 aspnet_state - ok
17:21:55.0065 2536 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:21:55.0066 2536 AsyncMac - ok
17:21:55.0072 2536 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\Windows\system32\drivers\atapi.sys
17:21:55.0072 2536 atapi - ok
17:21:55.0080 2536 [ 87DAD8D354E312DB16636DC71EB39E5E ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys
17:21:55.0083 2536 AtiHDAudioService - ok
17:21:55.0090 2536 [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
17:21:55.0102 2536 AudioEndpointBuilder - ok
17:21:55.0115 2536 [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv C:\Windows\System32\Audiosrv.dll
17:21:55.0134 2536 Audiosrv - ok
17:21:55.0146 2536 [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
17:21:55.0148 2536 AVP - ok
17:21:55.0154 2536 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:21:55.0165 2536 AxInstSV - ok
17:21:55.0175 2536 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:21:55.0190 2536 b06bdrv - ok
17:21:55.0195 2536 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
17:21:55.0197 2536 BasicDisplay - ok
17:21:55.0202 2536 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
17:21:55.0210 2536 BasicRender - ok
17:21:55.0218 2536 [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC C:\Windows\System32\bdesvc.dll
17:21:55.0230 2536 BDESVC - ok
17:21:55.0235 2536 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\Windows\system32\drivers\Beep.sys
17:21:55.0243 2536 Beep - ok
17:21:55.0255 2536 [ 9E6A544F465C582AB42444A217CF04DC ] BFE C:\Windows\System32\bfe.dll
17:21:55.0273 2536 BFE - ok
17:21:55.0278 2536 [ 07132255ADCB05CD7078B6C7B7215058 ] BfEdge7x64 C:\Windows\system32\DRIVERS\Edge7x64.sys
17:21:55.0289 2536 BfEdge7x64 - ok
17:21:55.0297 2536 [ 33B114FC0394358DB521828B6F6ACC54 ] BFN7x64 C:\Windows\System32\drivers\Xeno7x64.sys
17:21:55.0299 2536 BFN7x64 - ok
17:21:55.0312 2536 [ E2CCAB21A9A0BFC05C329A4B181BF0C6 ] Bigfoot Networks Killer Service C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
17:21:55.0316 2536 Bigfoot Networks Killer Service - ok
17:21:55.0330 2536 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\Windows\System32\qmgr.dll
17:21:55.0349 2536 BITS - ok
17:21:55.0358 2536 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:21:55.0362 2536 Bonjour Service - ok
17:21:55.0369 2536 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:21:55.0370 2536 bowser - ok
17:21:55.0378 2536 [ 05C9416889B03877781712EBB41CAFEE ] BRA_Scheduler C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
17:21:55.0403 2536 BRA_Scheduler - ok
17:21:55.0413 2536 [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
17:21:55.0417 2536 BrokerInfrastructure - ok
17:21:55.0425 2536 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\Windows\System32\browser.dll
17:21:55.0436 2536 Browser - ok
17:21:55.0442 2536 [ 3AA4309EBD9491E516F13FE3DC752FEE ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
17:21:55.0443 2536 BthAvrcpTg - ok
17:21:55.0449 2536 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
17:21:55.0450 2536 BthHFEnum - ok
17:21:55.0456 2536 [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
17:21:55.0464 2536 bthhfhid - ok
17:21:55.0469 2536 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
17:21:55.0479 2536 BTHMODEM - ok
17:21:55.0486 2536 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\Windows\system32\bthserv.dll
17:21:55.0496 2536 bthserv - ok
17:21:55.0502 2536 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:21:55.0511 2536 cdfs - ok
17:21:55.0518 2536 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\Windows\System32\drivers\cdrom.sys
17:21:55.0528 2536 cdrom - ok
17:21:55.0534 2536 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\Windows\System32\certprop.dll
17:21:55.0538 2536 CertPropSvc - ok
17:21:55.0543 2536 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\Windows\System32\drivers\circlass.sys
17:21:55.0545 2536 circlass - ok
17:21:55.0549 2536 [ 93C7703442C7CBD4053FC7DE07D9C896 ] ClassicShellService C:\Program Files\Classic Shell\ClassicShellService.exe
17:21:55.0569 2536 ClassicShellService - ok
17:21:55.0578 2536 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\Windows\system32\drivers\CLFS.sys
17:21:55.0580 2536 CLFS - ok
17:21:55.0593 2536 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
17:21:55.0595 2536 CmBatt - ok
17:21:55.0608 2536 [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG C:\Windows\system32\Drivers\cng.sys
17:21:55.0613 2536 CNG - ok
17:21:55.0620 2536 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
17:21:55.0629 2536 CompositeBus - ok
17:21:55.0634 2536 COMSysApp - ok
17:21:55.0641 2536 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\Windows\system32\drivers\condrv.sys
17:21:55.0648 2536 condrv - ok
17:21:55.0653 2536 [ 44622785D2D2DD8B13E6DC969B6E34A4 ] copperhd C:\Windows\system32\drivers\copperhd.sys
17:21:55.0665 2536 copperhd - ok
17:21:55.0673 2536 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:21:55.0683 2536 CryptSvc - ok
17:21:55.0694 2536 [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC C:\Windows\system32\drivers\csc.sys
17:21:55.0708 2536 CSC - ok
17:21:55.0720 2536 [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService C:\Windows\System32\cscsvc.dll
17:21:55.0736 2536 CscService - ok
17:21:55.0742 2536 [ C4D01BD86D6B207275FC143EEA951D75 ] dam C:\Windows\system32\drivers\dam.sys
17:21:55.0743 2536 dam - ok
17:21:55.0760 2536 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\Windows\system32\rpcss.dll
17:21:55.0769 2536 DcomLaunch - ok
17:21:55.0777 2536 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\Windows\System32\defragsvc.dll
17:21:55.0791 2536 defragsvc - ok
17:21:55.0800 2536 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
17:21:55.0814 2536 DeviceAssociationService - ok
17:21:55.0820 2536 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
17:21:55.0823 2536 DeviceInstall - ok
17:21:55.0828 2536 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
17:21:55.0829 2536 Dfsc - ok
17:21:55.0834 2536 [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
17:21:55.0844 2536 dg_ssudbus - ok
17:21:55.0852 2536 [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp C:\Windows\system32\dhcpcore.dll
17:21:55.0866 2536 Dhcp - ok
17:21:55.0872 2536 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\Windows\system32\drivers\discache.sys
17:21:55.0879 2536 discache - ok
17:21:55.0884 2536 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\Windows\system32\drivers\disk.sys
17:21:55.0885 2536 disk - ok
17:21:55.0891 2536 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
17:21:55.0892 2536 dmvsc - ok
17:21:55.0898 2536 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:21:55.0910 2536 Dnscache - ok
17:21:55.0917 2536 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\Windows\System32\dot3svc.dll
17:21:55.0930 2536 dot3svc - ok
17:21:55.0937 2536 [ 27069CFFF29B7F04F4B1BB10154BE52B ] dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:21:55.0940 2536 dot4 - ok
17:21:55.0945 2536 [ 0BD906A79F9CE3013F7D9D0AC45F9F9D ] Dot4Print C:\Windows\System32\drivers\Dot4Prt.sys
17:21:55.0953 2536 Dot4Print - ok
17:21:55.0959 2536 [ B7D595F2F464F7B628AD53F06547792C ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:21:55.0960 2536 dot4usb - ok
17:21:55.0967 2536 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\Windows\system32\dps.dll
17:21:55.0971 2536 DPS - ok
17:21:55.0976 2536 [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:21:55.0977 2536 drmkaud - ok
17:21:55.0983 2536 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
17:21:55.0985 2536 DsmSvc - ok
17:21:55.0993 2536 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\System32\drivers\dtsoftbus01.sys
17:21:55.0995 2536 dtsoftbus01 - ok
17:21:56.0014 2536 [ ED120AA770A78B5079F8C7BB5AF8A035 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:21:56.0039 2536 DXGKrnl - ok
17:21:56.0044 2536 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\Windows\System32\eapsvc.dll
17:21:56.0054 2536 Eaphost - ok
17:21:56.0091 2536 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:21:56.0131 2536 ebdrv - ok
17:21:56.0137 2536 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\Windows\System32\lsass.exe
17:21:56.0146 2536 EFS - ok
17:21:56.0151 2536 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
17:21:56.0152 2536 EhStorClass - ok
17:21:56.0158 2536 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
17:21:56.0167 2536 EhStorTcgDrv - ok
17:21:56.0173 2536 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\Windows\System32\drivers\errdev.sys
17:21:56.0179 2536 ErrDev - ok
17:21:56.0194 2536 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\Windows\system32\es.dll
17:21:56.0208 2536 EventSystem - ok
17:21:56.0214 2536 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\Windows\system32\drivers\exfat.sys
17:21:56.0217 2536 exfat - ok
17:21:56.0224 2536 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:21:56.0227 2536 fastfat - ok
17:21:56.0238 2536 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\Windows\system32\fxssvc.exe
17:21:56.0254 2536 Fax - ok
17:21:56.0260 2536 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\Windows\System32\drivers\fdc.sys
17:21:56.0261 2536 fdc - ok
17:21:56.0265 2536 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\Windows\system32\fdPHost.dll
17:21:56.0274 2536 fdPHost - ok
17:21:56.0279 2536 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\Windows\system32\fdrespub.dll
17:21:56.0287 2536 FDResPub - ok
17:21:56.0293 2536 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\Windows\system32\fhsvc.dll
17:21:56.0303 2536 fhsvc - ok
17:21:56.0309 2536 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:21:56.0310 2536 FileInfo - ok
17:21:56.0316 2536 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:21:56.0325 2536 Filetrace - ok
17:21:56.0329 2536 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
17:21:56.0336 2536 flpydisk - ok
17:21:56.0345 2536 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:21:56.0348 2536 FltMgr - ok
17:21:56.0366 2536 [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache C:\Windows\system32\FntCache.dll
17:21:56.0391 2536 FontCache - ok
17:21:56.0396 2536 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:21:56.0399 2536 FontCache3.0.0.0 - ok
17:21:56.0406 2536 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:21:56.0414 2536 FsDepends - ok
17:21:56.0419 2536 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:21:56.0429 2536 Fs_Rec - ok
17:21:56.0439 2536 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:21:56.0444 2536 fvevol - ok
17:21:56.0450 2536 [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
17:21:56.0459 2536 FxPPM - ok
17:21:56.0464 2536 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:21:56.0474 2536 gagp30kx - ok
17:21:56.0479 2536 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:21:56.0481 2536 GEARAspiWDM - ok
17:21:56.0486 2536 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
17:21:56.0494 2536 gencounter - ok
17:21:56.0500 2536 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
17:21:56.0509 2536 GPIOClx0101 - ok
17:21:56.0528 2536 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\Windows\System32\gpsvc.dll
17:21:56.0540 2536 gpsvc - ok
17:21:56.0546 2536 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:21:56.0547 2536 gupdate - ok
17:21:56.0551 2536 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:21:56.0552 2536 gupdatem - ok
17:21:56.0561 2536 [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:21:56.0573 2536 HdAudAddService - ok
17:21:56.0579 2536 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
17:21:56.0579 2536 HDAudBus - ok
17:21:56.0584 2536 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
17:21:56.0592 2536 HidBatt - ok
17:21:56.0597 2536 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\Windows\System32\drivers\hidbth.sys
17:21:56.0599 2536 HidBth - ok
17:21:56.0605 2536 [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
17:21:56.0607 2536 hidi2c - ok
17:21:56.0611 2536 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\Windows\System32\drivers\hidir.sys
17:21:56.0613 2536 HidIr - ok
17:21:56.0618 2536 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\Windows\system32\hidserv.dll
17:21:56.0627 2536 hidserv - ok
17:21:56.0632 2536 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
17:21:56.0641 2536 HidUsb - ok
17:21:56.0647 2536 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:21:56.0660 2536 hkmsvc - ok
17:21:56.0667 2536 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:21:56.0682 2536 HomeGroupListener - ok
17:21:56.0694 2536 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:21:56.0710 2536 HomeGroupProvider - ok
17:21:56.0716 2536 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:21:56.0726 2536 HpSAMD - ok
17:21:56.0740 2536 [ 29CB98187BB5711F7759540976D295FC ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:21:56.0750 2536 HTTP - ok
17:21:56.0757 2536 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:21:56.0766 2536 hwpolicy - ok
17:21:56.0771 2536 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
17:21:56.0780 2536 hyperkbd - ok
17:21:56.0785 2536 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
17:21:56.0787 2536 HyperVideo - ok
17:21:56.0797 2536 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
17:21:56.0800 2536 i8042prt - ok
17:21:56.0809 2536 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:21:56.0825 2536 iaStorV - ok
17:21:56.0830 2536 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:21:56.0839 2536 iirsp - ok
17:21:56.0855 2536 [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT C:\Windows\System32\ikeext.dll
17:21:56.0876 2536 IKEEXT - ok
17:21:56.0884 2536 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\Windows\system32\drivers\intelide.sys
17:21:56.0892 2536 intelide - ok
17:21:56.0898 2536 [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm C:\Windows\System32\drivers\intelppm.sys
17:21:56.0899 2536 intelppm - ok
17:21:56.0905 2536 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:21:56.0913 2536 IpFilterDriver - ok
17:21:56.0927 2536 [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:21:56.0946 2536 iphlpsvc - ok
17:21:56.0952 2536 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
17:21:56.0961 2536 IPMIDRV - ok
17:21:56.0967 2536 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:21:56.0977 2536 IPNAT - ok
17:21:56.0988 2536 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:21:57.0005 2536 iPod Service - ok
17:21:57.0011 2536 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:21:57.0012 2536 IRENUM - ok
17:21:57.0017 2536 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:21:57.0026 2536 isapnp - ok
17:21:57.0033 2536 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
17:21:57.0039 2536 iScsiPrt - ok
17:21:57.0044 2536 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
17:21:57.0052 2536 kbdclass - ok
17:21:57.0058 2536 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
17:21:57.0066 2536 kbdhid - ok
17:21:57.0071 2536 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
17:21:57.0073 2536 kdnic - ok
17:21:57.0077 2536 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\Windows\system32\lsass.exe
17:21:57.0079 2536 KeyIso - ok
17:21:57.0089 2536 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
17:21:57.0094 2536 kl1 - ok
17:21:57.0099 2536 [ F2EB9202FCCC81E0902D3C5A70037A44 ] klelam C:\Windows\system32\DRIVERS\klelam.sys
17:21:57.0101 2536 klelam - ok
17:21:57.0115 2536 [ 5D0104D068AA740A4CD75158652EA986 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
17:21:57.0118 2536 KLIF - ok
17:21:57.0125 2536 [ 1B5B924D27399F41DECD1CC6D706429F ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
17:21:57.0133 2536 KLIM6 - ok
17:21:57.0140 2536 [ A0B1AE842D7C7F2FDF530A7049CB988D ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
17:21:57.0148 2536 klkbdflt - ok
17:21:57.0153 2536 [ A8FFD74947077D8BD9A80936EC24514D ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
17:21:57.0161 2536 klmouflt - ok
17:21:57.0166 2536 [ FE0F2B2F8B0EA185B572BD3082593600 ] klwfp C:\Windows\system32\DRIVERS\klwfp.sys
17:21:57.0168 2536 klwfp - ok
17:21:57.0174 2536 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
17:21:57.0186 2536 kneps - ok
17:21:57.0193 2536 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:21:57.0194 2536 KSecDD - ok
17:21:57.0200 2536 [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:21:57.0202 2536 KSecPkg - ok
17:21:57.0207 2536 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:21:57.0214 2536 ksthunk - ok
17:21:57.0223 2536 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\Windows\system32\msdtckrm.dll
17:21:57.0238 2536 KtmRm - ok
17:21:57.0247 2536 [ CE4347E2D90DB2E5517B6F2BC720A862 ] LADF_CaptureOnly C:\Windows\system32\DRIVERS\ladfGSCamd64.sys
17:21:57.0253 2536 LADF_CaptureOnly - ok
17:21:57.0263 2536 [ 85A9D21D3AE2EA963E111CB150895877 ] LADF_RenderOnly C:\Windows\system32\DRIVERS\ladfGSRamd64.sys
17:21:57.0277 2536 LADF_RenderOnly - ok
17:21:57.0285 2536 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\Windows\system32\srvsvc.dll
17:21:57.0301 2536 LanmanServer - ok
17:21:57.0308 2536 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:21:57.0321 2536 LanmanWorkstation - ok
17:21:57.0334 2536 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
17:21:57.0336 2536 LGBusEnum - ok
17:21:57.0342 2536 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
17:21:57.0350 2536 LGVirHid - ok
17:21:57.0356 2536 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:21:57.0358 2536 lltdio - ok
17:21:57.0366 2536 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:21:57.0380 2536 lltdsvc - ok
17:21:57.0385 2536 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:21:57.0395 2536 lmhosts - ok
17:21:57.0403 2536 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:21:57.0406 2536 LSI_SAS - ok
17:21:57.0412 2536 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:21:57.0414 2536 LSI_SAS2 - ok
17:21:57.0421 2536 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:21:57.0432 2536 LSI_SCSI - ok
17:21:57.0441 2536 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
17:21:57.0450 2536 LSI_SSS - ok
17:21:57.0461 2536 [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM C:\Windows\System32\lsm.dll
17:21:57.0478 2536 LSM - ok
17:21:57.0487 2536 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\Windows\system32\drivers\luafv.sys
17:21:57.0489 2536 luafv - ok
17:21:57.0496 2536 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\Windows\system32\drivers\megasas.sys
17:21:57.0506 2536 megasas - ok
17:21:57.0516 2536 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:21:57.0532 2536 MegaSR - ok
17:21:57.0549 2536 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\Windows\system32\mmcss.dll
17:21:57.0560 2536 MMCSS - ok
17:21:57.0565 2536 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\Windows\system32\drivers\modem.sys
17:21:57.0574 2536 Modem - ok
17:21:57.0579 2536 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:21:57.0580 2536 monitor - ok
17:21:57.0585 2536 [ 618446B98C79776654340CE27C73485E ] mouclass C:\Windows\System32\drivers\mouclass.sys
17:21:57.0594 2536 mouclass - ok
17:21:57.0599 2536 [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid C:\Windows\System32\drivers\mouhid.sys
17:21:57.0600 2536 mouhid - ok
17:21:57.0608 2536 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:21:57.0609 2536 mountmgr - ok
17:21:57.0618 2536 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:21:57.0644 2536 MozillaMaintenance - ok
17:21:57.0650 2536 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:21:57.0661 2536 mpsdrv - ok
17:21:57.0677 2536 [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:21:57.0699 2536 MpsSvc - ok
17:21:57.0708 2536 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:21:57.0719 2536 MRxDAV - ok
17:21:57.0730 2536 [ 877D60D6E4156EC4A2E0B6871D41BED9 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:21:57.0734 2536 mrxsmb - ok
17:21:57.0744 2536 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:21:57.0746 2536 mrxsmb10 - ok
17:21:57.0753 2536 [ E078446D4B8622AA6030C7B8A1A08962 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:21:57.0755 2536 mrxsmb20 - ok
17:21:57.0763 2536 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
17:21:57.0766 2536 MsBridge - ok
17:21:57.0773 2536 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\Windows\System32\msdtc.exe
17:21:57.0778 2536 MSDTC - ok
17:21:57.0789 2536 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:21:57.0790 2536 Msfs - ok
17:21:57.0797 2536 [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
17:21:57.0805 2536 msgpiowin32 - ok
17:21:57.0811 2536 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:21:57.0818 2536 mshidkmdf - ok
17:21:57.0824 2536 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
17:21:57.0833 2536 mshidumdf - ok
17:21:57.0838 2536 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:21:57.0839 2536 msisadrv - ok
17:21:57.0847 2536 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:21:57.0861 2536 MSiSCSI - ok
17:21:57.0866 2536 msiserver - ok
17:21:57.0872 2536 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:21:57.0880 2536 MSKSSRV - ok
17:21:57.0889 2536 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
17:21:57.0892 2536 MsLldp - ok
17:21:57.0896 2536 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:21:57.0904 2536 MSPCLOCK - ok
17:21:57.0910 2536 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:21:57.0917 2536 MSPQM - ok
17:21:57.0926 2536 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:21:57.0929 2536 MsRPC - ok
17:21:57.0980 2536 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
17:21:57.0980 2536 mssmbios - ok
17:21:57.0985 2536 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:21:57.0992 2536 MSTEE - ok
17:21:57.0997 2536 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
17:21:58.0005 2536 MTConfig - ok
17:21:58.0009 2536 [ 03B7145C889603537E9FFEABB1AD1089 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
17:21:58.0011 2536 MTsensor - ok
17:21:58.0015 2536 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\Windows\system32\Drivers\mup.sys
17:21:58.0016 2536 Mup - ok
17:21:58.0021 2536 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\Windows\system32\drivers\mvumis.sys
17:21:58.0024 2536 mvumis - ok
17:21:58.0032 2536 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\Windows\system32\qagentRT.dll
17:21:58.0036 2536 napagent - ok
17:21:58.0047 2536 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:21:58.0052 2536 NativeWifiP - ok
17:21:58.0060 2536 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\Windows\System32\ncasvc.dll
17:21:58.0065 2536 NcaSvc - ok
17:21:58.0070 2536 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
17:21:58.0080 2536 NcdAutoSetup - ok
17:21:58.0096 2536 [ 0F89AE618DBA5D8AB7A2DFCC375F4159 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:21:58.0105 2536 NDIS - ok
17:21:58.0110 2536 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:21:58.0117 2536 NdisCap - ok
17:21:58.0125 2536 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
17:21:58.0127 2536 NdisImPlatform - ok
17:21:58.0132 2536 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:21:58.0140 2536 NdisTapi - ok
17:21:58.0145 2536 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:21:58.0153 2536 Ndisuio - ok
17:21:58.0160 2536 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:21:58.0170 2536 NdisWan - ok
17:21:58.0175 2536 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys
17:21:58.0177 2536 NDISWANLEGACY - ok
17:21:58.0181 2536 [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:21:58.0190 2536 NDProxy - ok
17:21:58.0194 2536 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\Windows\system32\drivers\Ndu.sys
17:21:58.0203 2536 Ndu - ok
17:21:58.0207 2536 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:21:58.0208 2536 NetBIOS - ok
17:21:58.0215 2536 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:21:58.0220 2536 NetBT - ok
17:21:58.0225 2536 [ F702AB6181513303AB0FC8D59E52708B ] Netlogon C:\Windows\system32\lsass.exe
17:21:58.0227 2536 Netlogon - ok
17:21:58.0233 2536 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\Windows\System32\netman.dll
17:21:58.0246 2536 Netman - ok
17:21:58.0255 2536 [ C166E3CD90AB0781ECDF10EC765B083A ] netprofm C:\Windows\System32\netprofmsvc.dll
17:21:58.0270 2536 netprofm - ok
17:21:58.0277 2536 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:21:58.0290 2536 NetTcpPortSharing - ok
17:21:58.0295 2536 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:21:58.0303 2536 nfrd960 - ok
17:21:58.0311 2536 [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:21:58.0326 2536 NlaSvc - ok
17:21:58.0332 2536 [ 4903177FC90E77ABEB19021451E9475E ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
17:21:58.0339 2536 nmwcd - ok
17:21:58.0345 2536 [ E6844A4C97E5409BBE24BB4ED000320D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
17:21:58.0348 2536 nmwcdc - ok
17:21:58.0352 2536 [ F59F8CF59F7905622686637177E2A828 ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
17:21:58.0354 2536 nmwcdnsucx64 - ok
17:21:58.0361 2536 [ A0E7F80157AF77B1CEAA8ADD3A3E7D85 ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
17:21:58.0373 2536 nmwcdnsux64 - ok
17:21:58.0378 2536 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\Windows\system32\drivers\npf.sys
17:21:58.0385 2536 NPF - ok
17:21:58.0390 2536 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:21:58.0391 2536 Npfs - ok
17:21:58.0395 2536 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
17:21:58.0397 2536 npsvctrig - ok
17:21:58.0402 2536 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\Windows\system32\nsisvc.dll
17:21:58.0411 2536 nsi - ok
17:21:58.0416 2536 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:21:58.0424 2536 nsiproxy - ok
17:21:58.0451 2536 [ 11D7A4A4A1DA60F394F53B413DCDF0DE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:21:58.0470 2536 Ntfs - ok
17:21:58.0476 2536 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\Windows\system32\drivers\Null.sys
17:21:58.0482 2536 Null - ok
17:21:58.0488 2536 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:21:58.0499 2536 nvraid - ok
17:21:58.0505 2536 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:21:58.0515 2536 nvstor - ok
17:21:58.0521 2536 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:21:58.0532 2536 nv_agp - ok
17:21:58.0538 2536 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:21:58.0565 2536 ose - ok
17:21:58.0624 2536 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:21:58.0647 2536 osppsvc - ok
17:21:58.0659 2536 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:21:58.0674 2536 p2pimsvc - ok
17:21:58.0683 2536 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\Windows\system32\p2psvc.dll
17:21:58.0698 2536 p2psvc - ok
17:21:58.0707 2536 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\Windows\System32\drivers\parport.sys
17:21:58.0709 2536 Parport - ok
17:21:58.0715 2536 [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:21:58.0716 2536 partmgr - ok
17:21:58.0724 2536 [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:21:58.0738 2536 PcaSvc - ok
17:21:58.0744 2536 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
17:21:58.0745 2536 pccsmcfd - ok
17:21:58.0752 2536 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\Windows\system32\drivers\pci.sys
17:21:58.0754 2536 pci - ok
17:21:58.0759 2536 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\Windows\system32\drivers\pciide.sys
17:21:58.0760 2536 pciide - ok
17:21:58.0766 2536 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:21:58.0778 2536 pcmcia - ok
17:21:58.0783 2536 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\Windows\system32\drivers\pcw.sys
17:21:58.0784 2536 pcw - ok
17:21:58.0789 2536 [ EF9B4F3136B4C45F421ADE6871659FB6 ] pdc C:\Windows\system32\drivers\pdc.sys
17:21:58.0790 2536 pdc - ok
17:21:58.0803 2536 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:21:58.0823 2536 PEAUTH - ok
17:21:58.0853 2536 [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
17:21:58.0888 2536 PeerDistSvc - ok
17:21:58.0916 2536 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:21:58.0926 2536 PerfHost - ok
17:21:58.0950 2536 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\Windows\system32\pla.dll
17:21:58.0974 2536 pla - ok
17:21:58.0983 2536 [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:21:58.0985 2536 PlugPlay - ok
17:21:58.0991 2536 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:21:58.0994 2536 PNRPAutoReg - ok
17:21:59.0003 2536 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:21:59.0006 2536 PNRPsvc - ok
17:21:59.0016 2536 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:21:59.0030 2536 PolicyAgent - ok
17:21:59.0037 2536 [ F1E067F56373F11EA4B785CAE823740A ] Power C:\Windows\system32\umpo.dll
17:21:59.0048 2536 Power - ok
17:21:59.0054 2536 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:21:59.0056 2536 PptpMiniport - ok
17:21:59.0089 2536 [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
17:21:59.0127 2536 PrintNotify - ok
17:21:59.0133 2536 [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor C:\Windows\System32\drivers\processr.sys
17:21:59.0136 2536 Processor - ok
17:21:59.0142 2536 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\Windows\system32\profsvc.dll
17:21:59.0155 2536 ProfSvc - ok
17:21:59.0161 2536 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:21:59.0170 2536 Psched - ok
17:21:59.0178 2536 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\Windows\system32\qwave.dll
17:21:59.0192 2536 QWAVE - ok
17:21:59.0197 2536 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:21:59.0204 2536 QWAVEdrv - ok
17:21:59.0209 2536 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:21:59.0216 2536 RasAcd - ok
17:21:59.0220 2536 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:21:59.0229 2536 RasAgileVpn - ok
17:21:59.0234 2536 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\Windows\System32\rasauto.dll
17:21:59.0245 2536 RasAuto - ok
17:21:59.0250 2536 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:21:59.0252 2536 Rasl2tp - ok
17:21:59.0261 2536 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\Windows\System32\rasmans.dll
17:21:59.0276 2536 RasMan - ok
17:21:59.0282 2536 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:21:59.0291 2536 RasPppoe - ok
17:21:59.0296 2536 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:21:59.0305 2536 RasSstp - ok
17:21:59.0314 2536 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:21:59.0317 2536 rdbss - ok
17:21:59.0324 2536 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
17:21:59.0331 2536 rdpbus - ok
17:21:59.0337 2536 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
17:21:59.0347 2536 RDPDR - ok
17:21:59.0360 2536 [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:21:59.0368 2536 RdpVideoMiniport - ok
17:21:59.0375 2536 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:21:59.0378 2536 RDPWD - ok
17:21:59.0385 2536 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:21:59.0387 2536 rdyboost - ok
17:21:59.0393 2536 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:21:59.0403 2536 RemoteAccess - ok
17:21:59.0410 2536 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:21:59.0421 2536 RemoteRegistry - ok
17:21:59.0426 2536 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
17:21:59.0429 2536 rpcapd - ok
17:21:59.0434 2536 [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:21:59.0446 2536 RpcEptMapper - ok
17:21:59.0450 2536 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\Windows\system32\locator.exe
17:21:59.0458 2536 RpcLocator - ok
17:21:59.0472 2536 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\Windows\system32\rpcss.dll
17:21:59.0477 2536 RpcSs - ok
17:21:59.0483 2536 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:21:59.0484 2536 rspndr - ok
17:21:59.0489 2536 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\Windows\System32\drivers\vms3cap.sys
17:21:59.0496 2536 s3cap - ok
17:21:59.0500 2536 [ F702AB6181513303AB0FC8D59E52708B ] SamSs C:\Windows\system32\lsass.exe
17:21:59.0502 2536 SamSs - ok
17:21:59.0507 2536 [ 5EFBBFCC6ADAC121C8E2FE76641ED329 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP1\WNt500x64\Sandra.sys
17:21:59.0516 2536 SANDRA - ok
17:21:59.0520 2536 [ D5C3BE660BA6DB061C7D05BAFC1C4242 ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP1\RpcAgentSrv.exe
17:21:59.0546 2536 SandraAgentSrv - ok
17:21:59.0552 2536 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:21:59.0554 2536 sbp2port - ok
17:21:59.0561 2536 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:21:59.0575 2536 SCardSvr - ok
17:21:59.0580 2536 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:21:59.0581 2536 scfilter - ok
17:21:59.0600 2536 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\Windows\system32\schedsvc.dll
17:21:59.0617 2536 Schedule - ok
17:21:59.0624 2536 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:21:59.0626 2536 SCPolicySvc - ok
17:21:59.0633 2536 [ 12F06525912BBEF67837DE47D87C60A9 ] sdbus C:\Windows\System32\drivers\sdbus.sys
17:21:59.0644 2536 sdbus - ok
17:21:59.0649 2536 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:21:59.0661 2536 SDRSVC - ok
17:21:59.0666 2536 [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor C:\Windows\System32\drivers\sdstor.sys
17:21:59.0668 2536 sdstor - ok
17:21:59.0673 2536 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:21:59.0680 2536 secdrv - ok
17:21:59.0684 2536 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\Windows\system32\seclogon.dll
17:21:59.0694 2536 seclogon - ok
17:21:59.0700 2536 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\Windows\System32\sens.dll
17:21:59.0711 2536 SENS - ok
17:21:59.0717 2536 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:21:59.0730 2536 SensrSvc - ok
17:21:59.0736 2536 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\Windows\system32\drivers\SerCx.sys
17:21:59.0744 2536 SerCx - ok
17:21:59.0749 2536 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\Windows\System32\drivers\serenum.sys
17:21:59.0751 2536 Serenum - ok
17:21:59.0757 2536 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\Windows\System32\drivers\serial.sys
17:21:59.0765 2536 Serial - ok
17:21:59.0770 2536 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\Windows\System32\drivers\sermouse.sys
17:21:59.0772 2536 sermouse - ok
17:21:59.0783 2536 [ 289E853881E688286AD24299FCC485D8 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
17:21:59.0813 2536 ServiceLayer - ok
17:21:59.0827 2536 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\Windows\system32\sessenv.dll
17:21:59.0849 2536 SessionEnv - ok
17:21:59.0854 2536 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
17:21:59.0862 2536 sfloppy - ok
17:21:59.0871 2536 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:21:59.0884 2536 SharedAccess - ok
17:21:59.0895 2536 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:21:59.0914 2536 ShellHWDetection - ok
17:21:59.0919 2536 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:21:59.0921 2536 SiSRaid2 - ok
17:21:59.0926 2536 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:21:59.0929 2536 SiSRaid4 - ok
17:21:59.0934 2536 [ 0A0A0183711EFB04F9BCC32BB44471F2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:21:59.0936 2536 SkypeUpdate - ok
17:21:59.0944 2536 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:21:59.0953 2536 SNMPTRAP - ok
17:21:59.0960 2536 [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport C:\Windows\system32\drivers\spaceport.sys
17:21:59.0963 2536 spaceport - ok
17:21:59.0967 2536 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
17:21:59.0976 2536 SpbCx - ok
17:21:59.0988 2536 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\Windows\System32\spoolsv.exe
17:22:00.0007 2536 Spooler - ok
17:22:00.0066 2536 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\Windows\system32\sppsvc.exe
17:22:00.0129 2536 sppsvc - ok
17:22:00.0140 2536 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:22:00.0143 2536 srv - ok
17:22:00.0153 2536 [ C2106BB710AA34A046126AED7BCA6964 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:22:00.0159 2536 srv2 - ok
17:22:00.0166 2536 [ 9400C71F5A1A380B494B6922F007D485 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:22:00.0168 2536 srvnet - ok
17:22:00.0176 2536 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:22:00.0190 2536 SSDPSRV - ok
17:22:00.0195 2536 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:22:00.0205 2536 SstpSvc - ok
17:22:00.0211 2536 [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
17:22:00.0215 2536 ssudmdm - ok
17:22:00.0218 2536 Steam Client Service - ok
17:22:00.0224 2536 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:22:00.0232 2536 stexstor - ok
17:22:00.0242 2536 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\Windows\System32\wiaservc.dll
17:22:00.0257 2536 stisvc - ok
17:22:00.0262 2536 [ C588BBD37B432CE3204E5765B459E6B2 ] storahci C:\Windows\system32\drivers\storahci.sys
17:22:00.0264 2536 storahci - ok
17:22:00.0268 2536 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
17:22:00.0276 2536 storflt - ok
17:22:00.0280 2536 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\Windows\system32\storsvc.dll
17:22:00.0290 2536 StorSvc - ok
17:22:00.0294 2536 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\Windows\system32\drivers\storvsc.sys
17:22:00.0296 2536 storvsc - ok
17:22:00.0300 2536 [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp C:\Windows\System32\drivers\storvsp.sys
17:22:00.0309 2536 storvsp - ok
17:22:00.0313 2536 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\Windows\system32\svsvc.dll
17:22:00.0323 2536 svsvc - ok
17:22:00.0326 2536 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\Windows\System32\drivers\swenum.sys
17:22:00.0333 2536 swenum - ok
17:22:00.0344 2536 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\Windows\System32\swprv.dll
17:22:00.0361 2536 swprv - ok
17:22:00.0380 2536 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\Windows\system32\sysmain.dll
17:22:00.0395 2536 SysMain - ok
17:22:00.0402 2536 [ E219BF7BCCFE4881B0C053C7E0B47ECC ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
17:22:00.0407 2536 SystemEventsBroker - ok
17:22:00.0412 2536 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
17:22:00.0423 2536 TabletInputService - ok
17:22:00.0430 2536 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\Windows\System32\tapisrv.dll
17:22:00.0436 2536 TapiSrv - ok
17:22:00.0464 2536 [ D192288CE5FB395F0BBAFDD1A8B5285D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:22:00.0487 2536 Tcpip - ok
17:22:00.0514 2536 [ D192288CE5FB395F0BBAFDD1A8B5285D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:22:00.0525 2536 TCPIP6 - ok
17:22:00.0533 2536 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:22:00.0541 2536 tcpipreg - ok
17:22:00.0547 2536 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:22:00.0549 2536 tdx - ok
17:22:00.0554 2536 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\Windows\System32\drivers\terminpt.sys
17:22:00.0556 2536 terminpt - ok
17:22:00.0567 2536 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\Windows\System32\termsrv.dll
17:22:00.0586 2536 TermService - ok
17:22:00.0591 2536 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\Windows\system32\themeservice.dll
17:22:00.0601 2536 Themes - ok
17:22:00.0606 2536 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER C:\Windows\system32\mmcss.dll
17:22:00.0608 2536 THREADORDER - ok
17:22:00.0613 2536 [ FF4135424A79DCC2998276D8E39C9B4D ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
17:22:00.0628 2536 TimeBroker - ok
17:22:00.0634 2536 [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM C:\Windows\system32\drivers\tpm.sys
17:22:00.0646 2536 TPM - ok
17:22:00.0653 2536 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\Windows\System32\trkwks.dll
17:22:00.0659 2536 TrkWks - ok
17:22:00.0664 2536 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:22:00.0665 2536 TrustedInstaller - ok
17:22:00.0674 2536 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:22:00.0675 2536 TsUsbFlt - ok
17:22:00.0679 2536 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
17:22:00.0687 2536 TsUsbGD - ok
17:22:00.0694 2536 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:22:00.0703 2536 tunnel - ok
17:22:00.0709 2536 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:22:00.0717 2536 uagp35 - ok
17:22:00.0724 2536 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
17:22:00.0733 2536 UASPStor - ok
17:22:00.0740 2536 [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
17:22:00.0744 2536 UCX01000 - ok
17:22:00.0753 2536 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:22:00.0758 2536 udfs - ok
17:22:00.0767 2536 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:22:00.0777 2536 UI0Detect - ok
17:22:00.0782 2536 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:22:00.0783 2536 uliagpkx - ok
17:22:00.0788 2536 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\Windows\System32\drivers\umbus.sys
17:22:00.0797 2536 umbus - ok
17:22:00.0801 2536 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\Windows\System32\drivers\umpass.sys
17:22:00.0802 2536 UmPass - ok
17:22:00.0809 2536 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\Windows\System32\umrdp.dll
17:22:00.0823 2536 UmRdpService - ok
17:22:00.0833 2536 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\Windows\System32\upnphost.dll
17:22:00.0849 2536 upnphost - ok
17:22:00.0853 2536 [ 907F50B8695DAA65A9445D27AD306E65 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
17:22:00.0862 2536 upperdev - ok
17:22:00.0866 2536 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\System32\Drivers\usbaapl64.sys
17:22:00.0868 2536 USBAAPL64 - ok
17:22:00.0874 2536 [ 3FBE0784E42E7BA93FCC5201D2BAFE23 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:22:00.0875 2536 usbaudio - ok
17:22:00.0880 2536 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
17:22:00.0883 2536 usbccgp - ok
17:22:00.0888 2536 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\Windows\System32\drivers\usbcir.sys
17:22:00.0897 2536 usbcir - ok
17:22:00.0902 2536 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci C:\Windows\System32\drivers\usbehci.sys
17:22:00.0911 2536 usbehci - ok
17:22:00.0919 2536 [ FBB6794E3BBAD92D66D59D206C1F849F ] usbhub C:\Windows\System32\drivers\usbhub.sys
17:22:00.0927 2536 usbhub - ok
17:22:00.0935 2536 [ B7A948501424805571BF562BB0BFE31D ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
17:22:00.0942 2536 USBHUB3 - ok
17:22:00.0948 2536 [ 325F6179009B5A7F6118951A5BA422AB ] usbohci C:\Windows\System32\drivers\usbohci.sys
17:22:00.0955 2536 usbohci - ok
17:22:00.0960 2536 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\Windows\System32\drivers\usbprint.sys
17:22:00.0967 2536 usbprint - ok
17:22:00.0971 2536 [ A9858597B6DB695F78A37F6755A6FF98 ] usbscan C:\Windows\System32\drivers\usbscan.sys
17:22:00.0980 2536 usbscan - ok
17:22:00.0984 2536 [ 72334EC4B3FD4EB270623E32E701B57D ] usbser C:\Windows\system32\drivers\usbser.sys
17:22:00.0992 2536 usbser - ok
17:22:00.0996 2536 [ 3F7498527B48657091C355F683BEB0DD ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
17:22:00.0997 2536 UsbserFilt - ok
17:22:01.0002 2536 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
17:22:01.0011 2536 USBSTOR - ok
17:22:01.0016 2536 [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
17:22:01.0017 2536 usbuhci - ok
17:22:01.0025 2536 [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
17:22:01.0038 2536 USBXHCI - ok
17:22:01.0043 2536 [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc C:\Windows\system32\lsass.exe
17:22:01.0044 2536 VaultSvc - ok
17:22:01.0048 2536 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:22:01.0048 2536 vdrvroot - ok
17:22:01.0061 2536 [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds C:\Windows\System32\vds.exe
17:22:01.0071 2536 vds - ok
17:22:01.0076 2536 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
17:22:01.0085 2536 VerifierExt - ok
17:22:01.0095 2536 [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
17:22:01.0101 2536 vhdmp - ok
17:22:01.0106 2536 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\Windows\system32\drivers\viaide.sys
17:22:01.0113 2536 viaide - ok
17:22:01.0119 2536 [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid C:\Windows\System32\drivers\Vid.sys
17:22:01.0131 2536 Vid - ok
17:22:01.0137 2536 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\Windows\system32\drivers\vmbus.sys
17:22:01.0140 2536 vmbus - ok
17:22:01.0144 2536 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
17:22:01.0151 2536 VMBusHID - ok
17:22:01.0157 2536 [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr C:\Windows\System32\drivers\vmbusr.sys
17:22:01.0166 2536 vmbusr - ok
17:22:01.0174 2536 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
17:22:01.0189 2536 vmicheartbeat - ok
17:22:01.0195 2536 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
17:22:01.0197 2536 vmickvpexchange - ok
17:22:01.0203 2536 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\Windows\System32\ICSvc.dll
17:22:01.0207 2536 vmicrdv - ok
17:22:01.0213 2536 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\Windows\System32\ICSvc.dll
17:22:01.0215 2536 vmicshutdown - ok
17:22:01.0223 2536 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\Windows\System32\ICSvc.dll
17:22:01.0226 2536 vmictimesync - ok
17:22:01.0233 2536 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\Windows\System32\ICSvc.dll
17:22:01.0235 2536 vmicvss - ok
17:22:01.0241 2536 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:22:01.0241 2536 volmgr - ok
17:22:01.0250 2536 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:22:01.0253 2536 volmgrx - ok
17:22:01.0260 2536 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:22:01.0264 2536 volsnap - ok
17:22:01.0269 2536 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\Windows\System32\drivers\vpci.sys
17:22:01.0271 2536 vpci - ok
17:22:01.0276 2536 [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp C:\Windows\System32\drivers\vpcivsp.sys
17:22:01.0278 2536 vpcivsp - ok
17:22:01.0284 2536 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:22:01.0295 2536 vsmraid - ok
17:22:01.0313 2536 [ EA658570314042C914964FC72AB50E6B ] VSS C:\Windows\system32\vssvc.exe
17:22:01.0339 2536 VSS - ok
17:22:01.0347 2536 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
17:22:01.0361 2536 VSTXRAID - ok
17:22:01.0365 2536 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:22:01.0373 2536 vwifibus - ok
17:22:01.0382 2536 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\Windows\system32\w32time.dll
17:22:01.0390 2536 W32Time - ok
17:22:01.0395 2536 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\Windows\System32\drivers\wacompen.sys
17:22:01.0396 2536 WacomPen - ok
17:22:01.0403 2536 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
17:22:01.0413 2536 Wanarp - ok
17:22:01.0417 2536 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:22:01.0418 2536 Wanarpv6 - ok
17:22:01.0444 2536 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\Windows\system32\wbengine.exe
17:22:01.0473 2536 wbengine - ok
17:22:01.0482 2536 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:22:01.0490 2536 WbioSrvc - ok
17:22:01.0498 2536 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
17:22:01.0512 2536 Wcmsvc - ok
17:22:01.0520 2536 [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:22:01.0538 2536 wcncsvc - ok
17:22:01.0544 2536 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:22:01.0555 2536 WcsPlugInService - ok
17:22:01.0560 2536 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\Windows\system32\drivers\wd.sys
17:22:01.0567 2536 Wd - ok
17:22:01.0572 2536 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
17:22:01.0581 2536 WdBoot - ok
17:22:01.0595 2536 [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:22:01.0599 2536 Wdf01000 - ok
17:22:01.0608 2536 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
17:22:01.0612 2536 WdFilter - ok
17:22:01.0618 2536 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:22:01.0621 2536 WdiServiceHost - ok
17:22:01.0625 2536 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:22:01.0628 2536 WdiSystemHost - ok
17:22:01.0636 2536 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\Windows\System32\webclnt.dll
17:22:01.0650 2536 WebClient - ok
17:22:01.0657 2536 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:22:01.0671 2536 Wecsvc - ok
17:22:01.0678 2536 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:22:01.0693 2536 wercplsupport - ok
17:22:01.0700 2536 [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc C:\Windows\System32\WerSvc.dll
17:22:01.0717 2536 WerSvc - ok
17:22:01.0724 2536 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
17:22:01.0726 2536 WFPLWFS - ok
17:22:01.0736 2536 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\Windows\System32\wiarpc.dll
17:22:01.0749 2536 WiaRpc - ok
17:22:01.0753 2536 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:22:01.0756 2536 WIMMount - ok
17:22:01.0762 2536 WinDefend - ok
17:22:01.0781 2536 [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
17:22:01.0788 2536 WinHttpAutoProxySvc - ok
17:22:01.0799 2536 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:22:01.0803 2536 Winmgmt - ok
17:22:01.0809 2536 WinRing0_1_2_0 - ok
17:22:01.0844 2536 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\Windows\system32\WsmSvc.dll
17:22:01.0879 2536 WinRM - ok
17:22:01.0890 2536 [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:22:01.0898 2536 WinUsb - ok
17:22:01.0917 2536 [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc C:\Windows\System32\wlansvc.dll
17:22:01.0943 2536 WlanSvc - ok
17:22:01.0967 2536 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc C:\Windows\system32\wlidsvc.dll
17:22:01.0986 2536 wlidsvc - ok
17:22:01.0992 2536 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
17:22:01.0999 2536 WmiAcpi - ok
17:22:02.0008 2536 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:22:02.0010 2536 wmiApSrv - ok
17:22:02.0013 2536 WMPNetworkSvc - ok
17:22:02.0021 2536 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
17:22:02.0029 2536 wpcfltr - ok
17:22:02.0034 2536 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:22:02.0044 2536 WPCSvc - ok
17:22:02.0050 2536 [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:22:02.0066 2536 WPDBusEnum - ok
17:22:02.0071 2536 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
17:22:02.0073 2536 WpdUpFltr - ok
17:22:02.0087 2536 [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:22:02.0095 2536 ws2ifsl - ok
17:22:02.0100 2536 [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc C:\Windows\System32\wscsvc.dll
17:22:02.0112 2536 wscsvc - ok
17:22:02.0116 2536 WSearch - ok
17:22:02.0157 2536 [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService C:\Windows\System32\WSService.dll
17:22:02.0186 2536 WSService - ok
17:22:02.0226 2536 [ A8484C0CB54DB48180FB7CA00F1C3F8F ] wuauserv C:\Windows\system32\wuaueng.dll
17:22:02.0263 2536 wuauserv - ok
17:22:02.0269 2536 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:22:02.0278 2536 WudfPf - ok
17:22:02.0284 2536 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
17:22:02.0286 2536 WUDFRd - ok
17:22:02.0293 2536 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys
17:22:02.0294 2536 WUDFSensorLP - ok
17:22:02.0299 2536 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:22:02.0310 2536 wudfsvc - ok
17:22:02.0316 2536 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
17:22:02.0318 2536 WUDFWpdFs - ok
17:22:02.0324 2536 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp C:\Windows\system32\DRIVERS\WUDFRd.sys
17:22:02.0325 2536 WUDFWpdMtp - ok
17:22:02.0335 2536 [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc C:\Windows\System32\wwansvc.dll
17:22:02.0350 2536 WwanSvc - ok
17:22:02.0360 2536 [ 537319A784278409FF5353515A39DE38 ] yukonw8 C:\Windows\system32\DRIVERS\yk63x64.sys
17:22:02.0364 2536 yukonw8 - ok
17:22:02.0374 2536 ================ Scan global ===============================
17:22:02.0378 2536 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
17:22:02.0392 2536 [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll
17:22:02.0408 2536 [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
17:22:02.0424 2536 [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe
17:22:02.0431 2536 [Global] - ok
17:22:02.0432 2536 ================ Scan MBR ==================================
17:22:02.0434 2536 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:22:02.0536 2536 \Device\Harddisk0\DR0 - ok
17:22:02.0539 2536 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
17:22:02.0542 2536 \Device\Harddisk1\DR1 - ok
17:22:02.0549 2536 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk8\DR8
17:22:02.0582 2536 \Device\Harddisk8\DR8 - ok
17:22:02.0582 2536 ================ Scan VBR ==================================
17:22:02.0585 2536 [ 808BB109FA727A8AD45A3EA0D6090629 ] \Device\Harddisk0\DR0\Partition1
17:22:02.0586 2536 \Device\Harddisk0\DR0\Partition1 - ok
17:22:02.0589 2536 [ 9A9226B5081B928CCF799BFC7933320A ] \Device\Harddisk0\DR0\Partition2
17:22:02.0590 2536 \Device\Harddisk0\DR0\Partition2 - ok
17:22:02.0593 2536 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
17:22:02.0593 2536 \Device\Harddisk1\DR1\Partition1 - ok
17:22:02.0597 2536 [ BBB5C1551E141C25B6302ABBC6A95D3E ] \Device\Harddisk1\DR1\Partition2
17:22:02.0598 2536 \Device\Harddisk1\DR1\Partition2 - ok
17:22:02.0603 2536 [ 10B8BC3BFCDB510BA1AECB2436B9A38C ] \Device\Harddisk8\DR8\Partition1
17:22:02.0604 2536 \Device\Harddisk8\DR8\Partition1 - ok
17:22:02.0605 2536 ============================================================
17:22:02.0605 2536 Scan finished
17:22:02.0605 2536 ============================================================
17:22:02.0615 2336 Detected object count: 0
17:22:02.0615 2336 Actual detected object count: 0
17:22:15.0856 7108 Deinitialize success


Alt 12.03.2013, 19:42   #6
markusg
/// Malware-holic
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



prüfe bitte noch mal die anleitung zum tdss killer und konfiguriere ihn wie angegeben, dann noch mal scannen bitte
__________________
--> Skype Trojaner/Malware

Alt 13.03.2013, 04:25   #7
mm939
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



05:23:59.0649 10232 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
05:23:59.0921 10232 ============================================================
05:23:59.0921 10232 Current date / time: 2013/03/13 05:23:59.0921
05:23:59.0921 10232 SystemInfo:
05:23:59.0921 10232
05:23:59.0921 10232 OS Version: 6.2.9200 ServicePack: 0.0
05:23:59.0921 10232 Product type: Workstation
05:23:59.0921 10232 ComputerName: MARIO
05:23:59.0921 10232 UserName: Mario´s
05:23:59.0921 10232 Windows directory: C:\Windows
05:23:59.0921 10232 System windows directory: C:\Windows
05:23:59.0921 10232 Running under WOW64
05:23:59.0921 10232 Processor architecture: Intel x64
05:23:59.0921 10232 Number of processors: 4
05:23:59.0921 10232 Page size: 0x1000
05:23:59.0921 10232 Boot type: Normal boot
05:23:59.0921 10232 ============================================================
05:24:00.0135 10232 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x10A5F, SectorsPerTrack: 0x12, TracksPerCylinder: 0xBF, Type 'K0', Flags 0x00000040
05:24:06.0955 10232 Drive \Device\Harddisk1\DR1 - Size: 0x2BAA1476000 (2794.52 Gb), SectorSize: 0x200, Cylinders: 0x59101, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
05:24:07.0050 10232 ============================================================
05:24:07.0050 10232 \Device\Harddisk0\DR0:
05:24:07.0050 10232 MBR partitions:
05:24:07.0050 10232 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAF000
05:24:07.0050 10232 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xAF800, BlocksNum 0xDEE4800
05:24:07.0050 10232 \Device\Harddisk1\DR1:
05:24:07.0050 10232 GPT partitions:
05:24:07.0050 10232 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {03422340-333F-4D10-9D07-3FA470F4CD80}, Name: Microsoft reserved partition, StartLBA 0x22, BlocksNum 0x40000
05:24:07.0050 10232 \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {03A7CBEE-A25E-4BBA-9F47-1DE9500125F4}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0x5D4C9800
05:24:07.0051 10232 MBR partitions:
05:24:07.0051 10232 ============================================================
05:24:07.0052 10232 C: <-> \Device\Harddisk0\DR0\Partition2
05:24:07.0052 10232 D: <-> \Device\Harddisk1\DR1\Partition2
05:24:07.0052 10232 ============================================================
05:24:07.0053 10232 Initialize success
05:24:07.0053 10232 ============================================================
05:24:19.0961 10588 ============================================================
05:24:19.0961 10588 Scan started
05:24:19.0961 10588 Mode: Manual;
05:24:19.0961 10588 ============================================================
05:24:20.0188 10588 ================ Scan system memory ========================
05:24:20.0189 10588 System memory - ok
05:24:20.0189 10588 ================ Scan services =============================
05:24:20.0257 10588 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
05:24:20.0260 10588 1394ohci - ok
05:24:20.0268 10588 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\Windows\system32\drivers\3ware.sys
05:24:20.0270 10588 3ware - ok
05:24:20.0281 10588 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\Windows\system32\drivers\ACPI.sys
05:24:20.0284 10588 ACPI - ok
05:24:20.0291 10588 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\Windows\system32\Drivers\acpiex.sys
05:24:20.0293 10588 acpiex - ok
05:24:20.0298 10588 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
05:24:20.0300 10588 acpipagr - ok
05:24:20.0307 10588 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
05:24:20.0308 10588 AcpiPmi - ok
05:24:20.0314 10588 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\Windows\System32\drivers\acpitime.sys
05:24:20.0317 10588 acpitime - ok
05:24:20.0325 10588 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
05:24:20.0327 10588 AdobeARMservice - ok
05:24:20.0357 10588 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
05:24:20.0359 10588 AdobeFlashPlayerUpdateSvc - ok
05:24:20.0372 10588 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
05:24:20.0375 10588 adp94xx - ok
05:24:20.0385 10588 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\Windows\system32\drivers\adpahci.sys
05:24:20.0389 10588 adpahci - ok
05:24:20.0399 10588 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
05:24:20.0401 10588 adpu320 - ok
05:24:20.0412 10588 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
05:24:20.0414 10588 AeLookupSvc - ok
05:24:20.0434 10588 [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD C:\Windows\system32\drivers\afd.sys
05:24:20.0438 10588 AFD - ok
05:24:20.0453 10588 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\Windows\system32\drivers\agp440.sys
05:24:20.0454 10588 agp440 - ok
05:24:20.0462 10588 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\Windows\System32\alg.exe
05:24:20.0464 10588 ALG - ok
05:24:20.0470 10588 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
05:24:20.0473 10588 AllUserInstallAgent - ok
05:24:20.0480 10588 ALSysIO - ok
05:24:20.0491 10588 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
05:24:20.0495 10588 AMD External Events Utility - ok
05:24:20.0504 10588 [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
05:24:20.0505 10588 AmdK8 - ok
05:24:20.0645 10588 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
05:24:20.0708 10588 amdkmdag - ok
05:24:20.0724 10588 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
05:24:20.0730 10588 amdkmdap - ok
05:24:20.0740 10588 [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
05:24:20.0741 10588 AmdPPM - ok
05:24:20.0752 10588 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\Windows\system32\drivers\amdsata.sys
05:24:20.0754 10588 amdsata - ok
05:24:20.0764 10588 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
05:24:20.0767 10588 amdsbs - ok
05:24:20.0773 10588 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\Windows\system32\drivers\amdxata.sys
05:24:20.0774 10588 amdxata - ok
05:24:20.0782 10588 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\Windows\system32\drivers\appid.sys
05:24:20.0784 10588 AppID - ok
05:24:20.0791 10588 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\Windows\System32\appidsvc.dll
05:24:20.0794 10588 AppIDSvc - ok
05:24:20.0802 10588 [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo C:\Windows\System32\appinfo.dll
05:24:20.0804 10588 Appinfo - ok
05:24:20.0812 10588 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
05:24:20.0814 10588 Apple Mobile Device - ok
05:24:20.0821 10588 [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt C:\Windows\System32\appmgmts.dll
05:24:20.0823 10588 AppMgmt - ok
05:24:20.0829 10588 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\Windows\system32\drivers\arc.sys
05:24:20.0831 10588 arc - ok
05:24:20.0840 10588 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\Windows\system32\drivers\arcsas.sys
05:24:20.0841 10588 arcsas - ok
05:24:20.0858 10588 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
05:24:20.0860 10588 aspnet_state - ok
05:24:20.0867 10588 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
05:24:20.0868 10588 AsyncMac - ok
05:24:20.0873 10588 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\Windows\system32\drivers\atapi.sys
05:24:20.0874 10588 atapi - ok
05:24:20.0884 10588 [ 87DAD8D354E312DB16636DC71EB39E5E ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys
05:24:20.0887 10588 AtiHDAudioService - ok
05:24:20.0896 10588 [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
05:24:20.0898 10588 AudioEndpointBuilder - ok
05:24:20.0913 10588 [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv C:\Windows\System32\Audiosrv.dll
05:24:20.0918 10588 Audiosrv - ok
05:24:20.0932 10588 [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
05:24:20.0934 10588 AVP - ok
05:24:20.0942 10588 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\Windows\System32\AxInstSV.dll
05:24:20.0945 10588 AxInstSV - ok
05:24:20.0956 10588 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
05:24:20.0961 10588 b06bdrv - ok
05:24:20.0967 10588 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
05:24:20.0969 10588 BasicDisplay - ok
05:24:20.0975 10588 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
05:24:20.0979 10588 BasicRender - ok
05:24:20.0991 10588 [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC C:\Windows\System32\bdesvc.dll
05:24:20.0994 10588 BDESVC - ok
05:24:20.0999 10588 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\Windows\system32\drivers\Beep.sys
05:24:21.0001 10588 Beep - ok
05:24:21.0017 10588 [ 9E6A544F465C582AB42444A217CF04DC ] BFE C:\Windows\System32\bfe.dll
05:24:21.0025 10588 BFE - ok
05:24:21.0033 10588 [ 07132255ADCB05CD7078B6C7B7215058 ] BfEdge7x64 C:\Windows\system32\DRIVERS\Edge7x64.sys
05:24:21.0036 10588 BfEdge7x64 - ok
05:24:21.0045 10588 [ 33B114FC0394358DB521828B6F6ACC54 ] BFN7x64 C:\Windows\System32\drivers\Xeno7x64.sys
05:24:21.0046 10588 BFN7x64 - ok
05:24:21.0058 10588 [ E2CCAB21A9A0BFC05C329A4B181BF0C6 ] Bigfoot Networks Killer Service C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
05:24:21.0062 10588 Bigfoot Networks Killer Service - ok
05:24:21.0078 10588 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\Windows\System32\qmgr.dll
05:24:21.0086 10588 BITS - ok
05:24:21.0096 10588 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
05:24:21.0099 10588 Bonjour Service - ok
05:24:21.0105 10588 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
05:24:21.0107 10588 bowser - ok
05:24:21.0115 10588 [ 05C9416889B03877781712EBB41CAFEE ] BRA_Scheduler C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
05:24:21.0117 10588 BRA_Scheduler - ok
05:24:21.0124 10588 [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
05:24:21.0128 10588 BrokerInfrastructure - ok
05:24:21.0136 10588 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\Windows\System32\browser.dll
05:24:21.0138 10588 Browser - ok
05:24:21.0144 10588 [ 3AA4309EBD9491E516F13FE3DC752FEE ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
05:24:21.0145 10588 BthAvrcpTg - ok
05:24:21.0151 10588 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
05:24:21.0153 10588 BthHFEnum - ok
05:24:21.0159 10588 [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
05:24:21.0161 10588 bthhfhid - ok
05:24:21.0169 10588 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
05:24:21.0171 10588 BTHMODEM - ok
05:24:21.0179 10588 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\Windows\system32\bthserv.dll
05:24:21.0181 10588 bthserv - ok
05:24:21.0192 10588 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
05:24:21.0194 10588 cdfs - ok
05:24:21.0201 10588 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\Windows\System32\drivers\cdrom.sys
05:24:21.0205 10588 cdrom - ok
05:24:21.0212 10588 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\Windows\System32\certprop.dll
05:24:21.0215 10588 CertPropSvc - ok
05:24:21.0222 10588 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\Windows\System32\drivers\circlass.sys
05:24:21.0223 10588 circlass - ok
05:24:21.0230 10588 [ 93C7703442C7CBD4053FC7DE07D9C896 ] ClassicShellService C:\Program Files\Classic Shell\ClassicShellService.exe
05:24:21.0231 10588 ClassicShellService - ok
05:24:21.0241 10588 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\Windows\system32\drivers\CLFS.sys
05:24:21.0244 10588 CLFS - ok
05:24:21.0257 10588 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
05:24:21.0259 10588 CmBatt - ok
05:24:21.0271 10588 [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG C:\Windows\system32\Drivers\cng.sys
05:24:21.0276 10588 CNG - ok
05:24:21.0285 10588 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
05:24:21.0287 10588 CompositeBus - ok
05:24:21.0292 10588 COMSysApp - ok
05:24:21.0299 10588 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\Windows\system32\drivers\condrv.sys
05:24:21.0300 10588 condrv - ok
05:24:21.0306 10588 [ 44622785D2D2DD8B13E6DC969B6E34A4 ] copperhd C:\Windows\system32\drivers\copperhd.sys
05:24:21.0308 10588 copperhd - ok
05:24:21.0318 10588 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
05:24:21.0321 10588 CryptSvc - ok
05:24:21.0334 10588 [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC C:\Windows\system32\drivers\csc.sys
05:24:21.0338 10588 CSC - ok
05:24:21.0352 10588 [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService C:\Windows\System32\cscsvc.dll
05:24:21.0358 10588 CscService - ok
05:24:21.0365 10588 [ C4D01BD86D6B207275FC143EEA951D75 ] dam C:\Windows\system32\drivers\dam.sys
05:24:21.0367 10588 dam - ok
05:24:21.0384 10588 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\Windows\system32\rpcss.dll
05:24:21.0391 10588 DcomLaunch - ok
05:24:21.0401 10588 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\Windows\System32\defragsvc.dll
05:24:21.0405 10588 defragsvc - ok
05:24:21.0414 10588 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
05:24:21.0418 10588 DeviceAssociationService - ok
05:24:21.0425 10588 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
05:24:21.0429 10588 DeviceInstall - ok
05:24:21.0435 10588 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
05:24:21.0437 10588 Dfsc - ok
05:24:21.0445 10588 [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
05:24:21.0448 10588 dg_ssudbus - ok
05:24:21.0458 10588 [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp C:\Windows\system32\dhcpcore.dll
05:24:21.0461 10588 Dhcp - ok
05:24:21.0469 10588 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\Windows\system32\drivers\discache.sys
05:24:21.0471 10588 discache - ok
05:24:21.0480 10588 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\Windows\system32\drivers\disk.sys
05:24:21.0482 10588 disk - ok
05:24:21.0488 10588 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
05:24:21.0488 10588 dmvsc - ok
05:24:21.0496 10588 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\Windows\System32\dnsrslvr.dll
05:24:21.0501 10588 Dnscache - ok
05:24:21.0512 10588 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\Windows\System32\dot3svc.dll
05:24:21.0516 10588 dot3svc - ok
05:24:21.0523 10588 [ 27069CFFF29B7F04F4B1BB10154BE52B ] dot4 C:\Windows\system32\DRIVERS\Dot4.sys
05:24:21.0525 10588 dot4 - ok
05:24:21.0530 10588 [ 0BD906A79F9CE3013F7D9D0AC45F9F9D ] Dot4Print C:\Windows\System32\drivers\Dot4Prt.sys
05:24:21.0533 10588 Dot4Print - ok
05:24:21.0539 10588 [ B7D595F2F464F7B628AD53F06547792C ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
05:24:21.0541 10588 dot4usb - ok
05:24:21.0550 10588 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\Windows\system32\dps.dll
05:24:21.0552 10588 DPS - ok
05:24:21.0558 10588 [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
05:24:21.0560 10588 drmkaud - ok
05:24:21.0569 10588 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
05:24:21.0572 10588 DsmSvc - ok
05:24:21.0581 10588 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\System32\drivers\dtsoftbus01.sys
05:24:21.0583 10588 dtsoftbus01 - ok
05:24:21.0605 10588 [ ED120AA770A78B5079F8C7BB5AF8A035 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
05:24:21.0614 10588 DXGKrnl - ok
05:24:21.0620 10588 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\Windows\System32\eapsvc.dll
05:24:21.0623 10588 Eaphost - ok
05:24:21.0665 10588 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\Windows\system32\drivers\evbda.sys
05:24:21.0682 10588 ebdrv - ok
05:24:21.0691 10588 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\Windows\System32\lsass.exe
05:24:21.0694 10588 EFS - ok
05:24:21.0700 10588 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
05:24:21.0701 10588 EhStorClass - ok
05:24:21.0708 10588 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
05:24:21.0710 10588 EhStorTcgDrv - ok
05:24:21.0715 10588 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\Windows\System32\drivers\errdev.sys
05:24:21.0717 10588 ErrDev - ok
05:24:21.0735 10588 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\Windows\system32\es.dll
05:24:21.0740 10588 EventSystem - ok
05:24:21.0747 10588 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\Windows\system32\drivers\exfat.sys
05:24:21.0750 10588 exfat - ok
05:24:21.0757 10588 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\Windows\system32\drivers\fastfat.sys
05:24:21.0759 10588 fastfat - ok
05:24:21.0774 10588 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\Windows\system32\fxssvc.exe
05:24:21.0780 10588 Fax - ok
05:24:21.0787 10588 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\Windows\System32\drivers\fdc.sys
05:24:21.0789 10588 fdc - ok
05:24:21.0797 10588 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\Windows\system32\fdPHost.dll
05:24:21.0799 10588 fdPHost - ok
05:24:21.0805 10588 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\Windows\system32\fdrespub.dll
05:24:21.0808 10588 FDResPub - ok
05:24:21.0816 10588 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\Windows\system32\fhsvc.dll
05:24:21.0822 10588 fhsvc - ok
05:24:21.0830 10588 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
05:24:21.0832 10588 FileInfo - ok
05:24:21.0839 10588 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
05:24:21.0841 10588 Filetrace - ok
05:24:21.0851 10588 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
05:24:21.0853 10588 flpydisk - ok
05:24:21.0864 10588 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
05:24:21.0867 10588 FltMgr - ok
05:24:21.0888 10588 [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache C:\Windows\system32\FntCache.dll
05:24:21.0897 10588 FontCache - ok
05:24:21.0904 10588 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
05:24:21.0906 10588 FontCache3.0.0.0 - ok
05:24:21.0912 10588 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
05:24:21.0913 10588 FsDepends - ok
05:24:21.0920 10588 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
05:24:21.0923 10588 Fs_Rec - ok
05:24:21.0934 10588 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
05:24:21.0938 10588 fvevol - ok
05:24:21.0944 10588 [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
05:24:21.0945 10588 FxPPM - ok
05:24:21.0957 10588 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
05:24:21.0959 10588 gagp30kx - ok
05:24:21.0966 10588 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
05:24:21.0968 10588 GEARAspiWDM - ok
05:24:21.0975 10588 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
05:24:21.0979 10588 gencounter - ok
05:24:21.0988 10588 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
05:24:21.0990 10588 GPIOClx0101 - ok
05:24:22.0011 10588 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\Windows\System32\gpsvc.dll
05:24:22.0022 10588 gpsvc - ok
05:24:22.0030 10588 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
05:24:22.0032 10588 gupdate - ok
05:24:22.0036 10588 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
05:24:22.0038 10588 gupdatem - ok
05:24:22.0048 10588 [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
05:24:22.0051 10588 HdAudAddService - ok
05:24:22.0057 10588 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
05:24:22.0058 10588 HDAudBus - ok
05:24:22.0067 10588 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
05:24:22.0069 10588 HidBatt - ok
05:24:22.0078 10588 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\Windows\System32\drivers\hidbth.sys
05:24:22.0081 10588 HidBth - ok
05:24:22.0090 10588 [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
05:24:22.0091 10588 hidi2c - ok
05:24:22.0097 10588 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\Windows\System32\drivers\hidir.sys
05:24:22.0099 10588 HidIr - ok
05:24:22.0105 10588 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\Windows\system32\hidserv.dll
05:24:22.0107 10588 hidserv - ok
05:24:22.0113 10588 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
05:24:22.0115 10588 HidUsb - ok
05:24:22.0124 10588 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\Windows\system32\kmsvc.dll
05:24:22.0127 10588 hkmsvc - ok
05:24:22.0136 10588 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll
05:24:22.0140 10588 HomeGroupListener - ok
05:24:22.0152 10588 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
05:24:22.0157 10588 HomeGroupProvider - ok
05:24:22.0163 10588 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
05:24:22.0165 10588 HpSAMD - ok
05:24:22.0183 10588 [ 29CB98187BB5711F7759540976D295FC ] HTTP C:\Windows\system32\drivers\HTTP.sys
05:24:22.0189 10588 HTTP - ok
05:24:22.0196 10588 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
05:24:22.0198 10588 hwpolicy - ok
05:24:22.0204 10588 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
05:24:22.0205 10588 hyperkbd - ok
05:24:22.0211 10588 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
05:24:22.0215 10588 HyperVideo - ok
05:24:22.0222 10588 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
05:24:22.0224 10588 i8042prt - ok
05:24:22.0235 10588 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
05:24:22.0238 10588 iaStorV - ok
05:24:22.0244 10588 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\Windows\system32\drivers\iirsp.sys
05:24:22.0246 10588 iirsp - ok
05:24:22.0262 10588 [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT C:\Windows\System32\ikeext.dll
05:24:22.0269 10588 IKEEXT - ok
05:24:22.0277 10588 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\Windows\system32\drivers\intelide.sys
05:24:22.0282 10588 intelide - ok
05:24:22.0289 10588 [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm C:\Windows\System32\drivers\intelppm.sys
05:24:22.0290 10588 intelppm - ok
05:24:22.0297 10588 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
05:24:22.0299 10588 IpFilterDriver - ok
05:24:22.0316 10588 [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
05:24:22.0322 10588 iphlpsvc - ok
05:24:22.0328 10588 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
05:24:22.0333 10588 IPMIDRV - ok
05:24:22.0341 10588 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
05:24:22.0343 10588 IPNAT - ok
05:24:22.0356 10588 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
05:24:22.0361 10588 iPod Service - ok
05:24:22.0366 10588 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\Windows\system32\drivers\irenum.sys
05:24:22.0367 10588 IRENUM - ok
05:24:22.0372 10588 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
05:24:22.0373 10588 isapnp - ok
05:24:22.0384 10588 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
05:24:22.0387 10588 iScsiPrt - ok
05:24:22.0395 10588 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
05:24:22.0398 10588 kbdclass - ok
05:24:22.0404 10588 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
05:24:22.0406 10588 kbdhid - ok
05:24:22.0411 10588 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
05:24:22.0413 10588 kdnic - ok
05:24:22.0418 10588 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\Windows\system32\lsass.exe
05:24:22.0419 10588 KeyIso - ok
05:24:22.0428 10588 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
05:24:22.0433 10588 kl1 - ok
05:24:22.0440 10588 [ F2EB9202FCCC81E0902D3C5A70037A44 ] klelam C:\Windows\system32\DRIVERS\klelam.sys
05:24:22.0441 10588 klelam - ok
05:24:22.0455 10588 [ 5D0104D068AA740A4CD75158652EA986 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
05:24:22.0477 10588 KLIF - ok
05:24:22.0482 10588 [ 1B5B924D27399F41DECD1CC6D706429F ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
05:24:22.0484 10588 KLIM6 - ok
05:24:22.0493 10588 [ A0B1AE842D7C7F2FDF530A7049CB988D ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
05:24:22.0495 10588 klkbdflt - ok
05:24:22.0501 10588 [ A8FFD74947077D8BD9A80936EC24514D ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
05:24:22.0503 10588 klmouflt - ok
05:24:22.0511 10588 [ FE0F2B2F8B0EA185B572BD3082593600 ] klwfp C:\Windows\system32\DRIVERS\klwfp.sys
05:24:22.0514 10588 klwfp - ok
05:24:22.0523 10588 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
05:24:22.0526 10588 kneps - ok
05:24:22.0533 10588 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
05:24:22.0535 10588 KSecDD - ok
05:24:22.0544 10588 [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
05:24:22.0546 10588 KSecPkg - ok
05:24:22.0554 10588 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
05:24:22.0556 10588 ksthunk - ok
05:24:22.0567 10588 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\Windows\system32\msdtckrm.dll
05:24:22.0571 10588 KtmRm - ok
05:24:22.0583 10588 [ CE4347E2D90DB2E5517B6F2BC720A862 ] LADF_CaptureOnly C:\Windows\system32\DRIVERS\ladfGSCamd64.sys
05:24:22.0587 10588 LADF_CaptureOnly - ok
05:24:22.0597 10588 [ 85A9D21D3AE2EA963E111CB150895877 ] LADF_RenderOnly C:\Windows\system32\DRIVERS\ladfGSRamd64.sys
05:24:22.0600 10588 LADF_RenderOnly - ok
05:24:22.0611 10588 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\Windows\system32\srvsvc.dll
05:24:22.0616 10588 LanmanServer - ok
05:24:22.0624 10588 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
05:24:22.0629 10588 LanmanWorkstation - ok
05:24:22.0636 10588 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
05:24:22.0638 10588 LGBusEnum - ok
05:24:22.0645 10588 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
05:24:22.0648 10588 LGVirHid - ok
05:24:22.0654 10588 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
05:24:22.0656 10588 lltdio - ok
05:24:22.0664 10588 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\Windows\System32\lltdsvc.dll
05:24:22.0668 10588 lltdsvc - ok
05:24:22.0675 10588 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\Windows\System32\lmhsvc.dll
05:24:22.0678 10588 lmhosts - ok
05:24:22.0687 10588 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
05:24:22.0689 10588 LSI_SAS - ok
05:24:22.0697 10588 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
05:24:22.0699 10588 LSI_SAS2 - ok
05:24:22.0706 10588 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
05:24:22.0708 10588 LSI_SCSI - ok
05:24:22.0714 10588 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
05:24:22.0717 10588 LSI_SSS - ok
05:24:22.0730 10588 [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM C:\Windows\System32\lsm.dll
05:24:22.0735 10588 LSM - ok
05:24:22.0746 10588 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\Windows\system32\drivers\luafv.sys
05:24:22.0748 10588 luafv - ok
05:24:22.0755 10588 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\Windows\system32\drivers\megasas.sys
05:24:22.0756 10588 megasas - ok
05:24:22.0777 10588 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
05:24:22.0780 10588 MegaSR - ok
05:24:22.0788 10588 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\Windows\system32\mmcss.dll
05:24:22.0791 10588 MMCSS - ok
05:24:22.0799 10588 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\Windows\system32\drivers\modem.sys
05:24:22.0800 10588 Modem - ok
05:24:22.0806 10588 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
05:24:22.0807 10588 monitor - ok
05:24:22.0813 10588 [ 618446B98C79776654340CE27C73485E ] mouclass C:\Windows\System32\drivers\mouclass.sys
05:24:22.0815 10588 mouclass - ok
05:24:22.0820 10588 [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid C:\Windows\System32\drivers\mouhid.sys
05:24:22.0822 10588 mouhid - ok
05:24:22.0828 10588 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
05:24:22.0832 10588 mountmgr - ok
05:24:22.0838 10588 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
05:24:22.0839 10588 MozillaMaintenance - ok
05:24:22.0847 10588 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
05:24:22.0849 10588 mpsdrv - ok
05:24:22.0868 10588 [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc C:\Windows\system32\mpssvc.dll
05:24:22.0874 10588 MpsSvc - ok
05:24:22.0883 10588 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
05:24:22.0886 10588 MRxDAV - ok
05:24:22.0898 10588 [ 877D60D6E4156EC4A2E0B6871D41BED9 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
05:24:22.0901 10588 mrxsmb - ok
05:24:22.0912 10588 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
05:24:22.0915 10588 mrxsmb10 - ok
05:24:22.0923 10588 [ E078446D4B8622AA6030C7B8A1A08962 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
05:24:22.0925 10588 mrxsmb20 - ok
05:24:22.0933 10588 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
05:24:22.0936 10588 MsBridge - ok
05:24:22.0945 10588 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\Windows\System32\msdtc.exe
05:24:22.0948 10588 MSDTC - ok
05:24:22.0963 10588 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\Windows\system32\drivers\Msfs.sys
05:24:22.0964 10588 Msfs - ok
05:24:22.0969 10588 [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
05:24:22.0971 10588 msgpiowin32 - ok
05:24:22.0976 10588 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
05:24:22.0978 10588 mshidkmdf - ok
05:24:22.0985 10588 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
05:24:22.0987 10588 mshidumdf - ok
05:24:22.0995 10588 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
05:24:22.0998 10588 msisadrv - ok
05:24:23.0007 10588 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
05:24:23.0010 10588 MSiSCSI - ok
05:24:23.0017 10588 msiserver - ok
05:24:23.0024 10588 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
05:24:23.0027 10588 MSKSSRV - ok
05:24:23.0032 10588 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
05:24:23.0034 10588 MsLldp - ok
05:24:23.0040 10588 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
05:24:23.0043 10588 MSPCLOCK - ok
05:24:23.0053 10588 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
05:24:23.0055 10588 MSPQM - ok
05:24:23.0066 10588 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
05:24:23.0070 10588 MsRPC - ok
05:24:23.0082 10588 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
05:24:23.0083 10588 mssmbios - ok
05:24:23.0088 10588 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
05:24:23.0102 10588 MSTEE - ok
05:24:23.0108 10588 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
05:24:23.0110 10588 MTConfig - ok
05:24:23.0117 10588 [ 03B7145C889603537E9FFEABB1AD1089 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
05:24:23.0119 10588 MTsensor - ok
05:24:23.0126 10588 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\Windows\system32\Drivers\mup.sys
05:24:23.0128 10588 Mup - ok
05:24:23.0134 10588 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\Windows\system32\drivers\mvumis.sys
05:24:23.0137 10588 mvumis - ok
05:24:23.0148 10588 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\Windows\system32\qagentRT.dll
05:24:23.0156 10588 napagent - ok
05:24:23.0169 10588 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
05:24:23.0173 10588 NativeWifiP - ok
05:24:23.0181 10588 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\Windows\System32\ncasvc.dll
05:24:23.0185 10588 NcaSvc - ok
05:24:23.0192 10588 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
05:24:23.0195 10588 NcdAutoSetup - ok
05:24:23.0213 10588 [ 0F89AE618DBA5D8AB7A2DFCC375F4159 ] NDIS C:\Windows\system32\drivers\ndis.sys
05:24:23.0219 10588 NDIS - ok
05:24:23.0228 10588 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
05:24:23.0229 10588 NdisCap - ok
05:24:23.0237 10588 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
05:24:23.0239 10588 NdisImPlatform - ok
05:24:23.0246 10588 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
05:24:23.0248 10588 NdisTapi - ok
05:24:23.0254 10588 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
05:24:23.0256 10588 Ndisuio - ok
05:24:23.0263 10588 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
05:24:23.0265 10588 NdisWan - ok
05:24:23.0271 10588 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys
05:24:23.0272 10588 NDISWANLEGACY - ok
05:24:23.0278 10588 [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
05:24:23.0280 10588 NDProxy - ok
05:24:23.0286 10588 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\Windows\system32\drivers\Ndu.sys
05:24:23.0288 10588 Ndu - ok
05:24:23.0297 10588 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
05:24:23.0299 10588 NetBIOS - ok
05:24:23.0308 10588 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
05:24:23.0312 10588 NetBT - ok
05:24:23.0318 10588 [ F702AB6181513303AB0FC8D59E52708B ] Netlogon C:\Windows\system32\lsass.exe
05:24:23.0320 10588 Netlogon - ok
05:24:23.0329 10588 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\Windows\System32\netman.dll
05:24:23.0333 10588 Netman - ok
05:24:23.0345 10588 [ C166E3CD90AB0781ECDF10EC765B083A ] netprofm C:\Windows\System32\netprofmsvc.dll
05:24:23.0350 10588 netprofm - ok
05:24:23.0360 10588 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:24:23.0362 10588 NetTcpPortSharing - ok
05:24:23.0369 10588 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
05:24:23.0370 10588 nfrd960 - ok
05:24:23.0379 10588 [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc C:\Windows\System32\nlasvc.dll
05:24:23.0384 10588 NlaSvc - ok
05:24:23.0391 10588 [ 4903177FC90E77ABEB19021451E9475E ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
05:24:23.0393 10588 nmwcd - ok
05:24:23.0399 10588 [ E6844A4C97E5409BBE24BB4ED000320D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
05:24:23.0401 10588 nmwcdc - ok
05:24:23.0408 10588 [ F59F8CF59F7905622686637177E2A828 ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
05:24:23.0410 10588 nmwcdnsucx64 - ok
05:24:23.0418 10588 [ A0E7F80157AF77B1CEAA8ADD3A3E7D85 ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
05:24:23.0420 10588 nmwcdnsux64 - ok
05:24:23.0427 10588 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\Windows\system32\drivers\npf.sys
05:24:23.0428 10588 NPF - ok
05:24:23.0433 10588 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\Windows\system32\drivers\Npfs.sys
05:24:23.0435 10588 Npfs - ok
05:24:23.0441 10588 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
05:24:23.0443 10588 npsvctrig - ok
05:24:23.0452 10588 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\Windows\system32\nsisvc.dll
05:24:23.0455 10588 nsi - ok
05:24:23.0462 10588 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
05:24:23.0465 10588 nsiproxy - ok
05:24:23.0498 10588 [ 11D7A4A4A1DA60F394F53B413DCDF0DE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
05:24:23.0512 10588 Ntfs - ok
05:24:23.0520 10588 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\Windows\system32\drivers\Null.sys
05:24:23.0522 10588 Null - ok
05:24:23.0530 10588 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\Windows\system32\drivers\nvraid.sys
05:24:23.0532 10588 nvraid - ok
05:24:23.0541 10588 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
05:24:23.0543 10588 nvstor - ok
05:24:23.0551 10588 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
05:24:23.0553 10588 nv_agp - ok
05:24:23.0562 10588 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
05:24:23.0565 10588 ose - ok
05:24:23.0633 10588 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
05:24:23.0660 10588 osppsvc - ok
05:24:23.0674 10588 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
05:24:23.0680 10588 p2pimsvc - ok
05:24:23.0690 10588 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\Windows\system32\p2psvc.dll
05:24:23.0695 10588 p2psvc - ok
05:24:23.0705 10588 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\Windows\System32\drivers\parport.sys
05:24:23.0708 10588 Parport - ok
05:24:23.0717 10588 [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr C:\Windows\system32\drivers\partmgr.sys
05:24:23.0719 10588 partmgr - ok
05:24:23.0730 10588 [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc C:\Windows\System32\pcasvc.dll
05:24:23.0735 10588 PcaSvc - ok
05:24:23.0741 10588 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
05:24:23.0743 10588 pccsmcfd - ok
05:24:23.0752 10588 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\Windows\system32\drivers\pci.sys
05:24:23.0754 10588 pci - ok
05:24:23.0762 10588 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\Windows\system32\drivers\pciide.sys
05:24:23.0763 10588 pciide - ok
05:24:23.0775 10588 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
05:24:23.0778 10588 pcmcia - ok
05:24:23.0784 10588 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\Windows\system32\drivers\pcw.sys
05:24:23.0786 10588 pcw - ok
05:24:23.0795 10588 [ EF9B4F3136B4C45F421ADE6871659FB6 ] pdc C:\Windows\system32\drivers\pdc.sys
05:24:23.0797 10588 pdc - ok
05:24:23.0813 10588 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
05:24:23.0818 10588 PEAUTH - ok
05:24:23.0854 10588 [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
05:24:23.0872 10588 PeerDistSvc - ok
05:24:23.0901 10588 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\Windows\SysWow64\perfhost.exe
05:24:23.0904 10588 PerfHost - ok
05:24:23.0934 10588 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\Windows\system32\pla.dll
05:24:23.0946 10588 pla - ok
05:24:23.0955 10588 [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
05:24:23.0958 10588 PlugPlay - ok
05:24:23.0966 10588 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
05:24:23.0970 10588 PNRPAutoReg - ok
05:24:23.0980 10588 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
05:24:23.0984 10588 PNRPsvc - ok
05:24:23.0998 10588 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
05:24:24.0002 10588 PolicyAgent - ok
05:24:24.0017 10588 [ F1E067F56373F11EA4B785CAE823740A ] Power C:\Windows\system32\umpo.dll
05:24:24.0021 10588 Power - ok
05:24:24.0027 10588 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
05:24:24.0030 10588 PptpMiniport - ok
05:24:24.0068 10588 [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
05:24:24.0083 10588 PrintNotify - ok
05:24:24.0091 10588 [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor C:\Windows\System32\drivers\processr.sys
05:24:24.0096 10588 Processor - ok
05:24:24.0106 10588 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\Windows\system32\profsvc.dll
05:24:24.0112 10588 ProfSvc - ok
05:24:24.0119 10588 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\Windows\system32\DRIVERS\pacer.sys
05:24:24.0121 10588 Psched - ok
05:24:24.0130 10588 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\Windows\system32\qwave.dll
05:24:24.0134 10588 QWAVE - ok
05:24:24.0140 10588 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
05:24:24.0143 10588 QWAVEdrv - ok
05:24:24.0154 10588 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
05:24:24.0156 10588 RasAcd - ok
05:24:24.0163 10588 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
05:24:24.0164 10588 RasAgileVpn - ok
05:24:24.0171 10588 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\Windows\System32\rasauto.dll
05:24:24.0175 10588 RasAuto - ok
05:24:24.0181 10588 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
05:24:24.0183 10588 Rasl2tp - ok
05:24:24.0194 10588 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\Windows\System32\rasmans.dll
05:24:24.0199 10588 RasMan - ok
05:24:24.0206 10588 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
05:24:24.0208 10588 RasPppoe - ok
05:24:24.0214 10588 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
05:24:24.0216 10588 RasSstp - ok
05:24:24.0227 10588 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
05:24:24.0230 10588 rdbss - ok
05:24:24.0237 10588 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
05:24:24.0238 10588 rdpbus - ok
05:24:24.0245 10588 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
05:24:24.0247 10588 RDPDR - ok
05:24:24.0256 10588 [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
05:24:24.0259 10588 RdpVideoMiniport - ok
05:24:24.0269 10588 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
05:24:24.0271 10588 RDPWD - ok
05:24:24.0280 10588 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
05:24:24.0282 10588 rdyboost - ok
05:24:24.0288 10588 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\Windows\System32\mprdim.dll
05:24:24.0291 10588 RemoteAccess - ok
05:24:24.0298 10588 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\Windows\system32\regsvc.dll
05:24:24.0305 10588 RemoteRegistry - ok
05:24:24.0312 10588 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
05:24:24.0314 10588 rpcapd - ok
05:24:24.0322 10588 [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
05:24:24.0326 10588 RpcEptMapper - ok
05:24:24.0332 10588 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\Windows\system32\locator.exe
05:24:24.0334 10588 RpcLocator - ok
05:24:24.0349 10588 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\Windows\system32\rpcss.dll
05:24:24.0356 10588 RpcSs - ok
05:24:24.0363 10588 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
05:24:24.0365 10588 rspndr - ok
05:24:24.0372 10588 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\Windows\System32\drivers\vms3cap.sys
05:24:24.0374 10588 s3cap - ok
05:24:24.0380 10588 [ F702AB6181513303AB0FC8D59E52708B ] SamSs C:\Windows\system32\lsass.exe
05:24:24.0381 10588 SamSs - ok
05:24:24.0388 10588 [ 5EFBBFCC6ADAC121C8E2FE76641ED329 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP1\WNt500x64\Sandra.sys
05:24:24.0390 10588 SANDRA - ok
05:24:24.0396 10588 [ D5C3BE660BA6DB061C7D05BAFC1C4242 ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP1\RpcAgentSrv.exe
05:24:24.0398 10588 SandraAgentSrv - ok
05:24:24.0406 10588 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
05:24:24.0408 10588 sbp2port - ok
05:24:24.0415 10588 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\Windows\System32\SCardSvr.dll
05:24:24.0419 10588 SCardSvr - ok
05:24:24.0425 10588 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
05:24:24.0427 10588 scfilter - ok
05:24:24.0447 10588 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\Windows\system32\schedsvc.dll
05:24:24.0457 10588 Schedule - ok
05:24:24.0464 10588 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\Windows\System32\certprop.dll
05:24:24.0465 10588 SCPolicySvc - ok
05:24:24.0474 10588 [ 12F06525912BBEF67837DE47D87C60A9 ] sdbus C:\Windows\System32\drivers\sdbus.sys
05:24:24.0477 10588 sdbus - ok
05:24:24.0484 10588 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\Windows\System32\SDRSVC.dll
05:24:24.0489 10588 SDRSVC - ok
05:24:24.0497 10588 [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor C:\Windows\System32\drivers\sdstor.sys
05:24:24.0498 10588 sdstor - ok
05:24:24.0504 10588 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
05:24:24.0506 10588 secdrv - ok
05:24:24.0512 10588 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\Windows\system32\seclogon.dll
05:24:24.0515 10588 seclogon - ok
05:24:24.0521 10588 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\Windows\System32\sens.dll
05:24:24.0525 10588 SENS - ok
05:24:24.0533 10588 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\Windows\system32\sensrsvc.dll
05:24:24.0539 10588 SensrSvc - ok
05:24:24.0548 10588 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\Windows\system32\drivers\SerCx.sys
05:24:24.0550 10588 SerCx - ok
05:24:24.0559 10588 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\Windows\System32\drivers\serenum.sys
05:24:24.0561 10588 Serenum - ok
05:24:24.0568 10588 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\Windows\System32\drivers\serial.sys
05:24:24.0570 10588 Serial - ok
05:24:24.0577 10588 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\Windows\System32\drivers\sermouse.sys
05:24:24.0578 10588 sermouse - ok
05:24:24.0594 10588 [ 289E853881E688286AD24299FCC485D8 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
05:24:24.0599 10588 ServiceLayer - ok
05:24:24.0618 10588 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\Windows\system32\sessenv.dll
05:24:24.0623 10588 SessionEnv - ok
05:24:24.0628 10588 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
05:24:24.0630 10588 sfloppy - ok
05:24:24.0641 10588 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\Windows\System32\ipnathlp.dll
05:24:24.0645 10588 SharedAccess - ok
05:24:24.0659 10588 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
05:24:24.0665 10588 ShellHWDetection - ok
05:24:24.0671 10588 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
05:24:24.0673 10588 SiSRaid2 - ok
05:24:24.0679 10588 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
05:24:24.0683 10588 SiSRaid4 - ok
05:24:24.0690 10588 [ 0A0A0183711EFB04F9BCC32BB44471F2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
05:24:24.0692 10588 SkypeUpdate - ok
05:24:24.0705 10588 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
05:24:24.0708 10588 SNMPTRAP - ok
05:24:24.0717 10588 [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport C:\Windows\system32\drivers\spaceport.sys
05:24:24.0720 10588 spaceport - ok
05:24:24.0726 10588 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
05:24:24.0729 10588 SpbCx - ok
05:24:24.0747 10588 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\Windows\System32\spoolsv.exe
05:24:24.0754 10588 Spooler - ok
05:24:24.0819 10588 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\Windows\system32\sppsvc.exe
05:24:24.0849 10588 sppsvc - ok
05:24:24.0862 10588 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\Windows\system32\DRIVERS\srv.sys
05:24:24.0866 10588 srv - ok
05:24:24.0878 10588 [ C2106BB710AA34A046126AED7BCA6964 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
05:24:24.0882 10588 srv2 - ok
05:24:24.0891 10588 [ 9400C71F5A1A380B494B6922F007D485 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
05:24:24.0897 10588 srvnet - ok
05:24:24.0907 10588 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
05:24:24.0912 10588 SSDPSRV - ok
05:24:24.0918 10588 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\Windows\system32\sstpsvc.dll
05:24:24.0921 10588 SstpSvc - ok
05:24:24.0930 10588 [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
05:24:24.0932 10588 ssudmdm - ok
05:24:24.0936 10588 Steam Client Service - ok
05:24:24.0954 10588 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\Windows\system32\drivers\stexstor.sys
05:24:24.0955 10588 stexstor - ok
05:24:24.0968 10588 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\Windows\System32\wiaservc.dll
05:24:24.0975 10588 stisvc - ok
05:24:24.0983 10588 [ C588BBD37B432CE3204E5765B459E6B2 ] storahci C:\Windows\system32\drivers\storahci.sys
05:24:24.0984 10588 storahci - ok
05:24:24.0992 10588 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
05:24:24.0994 10588 storflt - ok
05:24:25.0008 10588 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\Windows\system32\storsvc.dll
05:24:25.0012 10588 StorSvc - ok
05:24:25.0018 10588 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\Windows\system32\drivers\storvsc.sys
05:24:25.0021 10588 storvsc - ok
05:24:25.0027 10588 [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp C:\Windows\System32\drivers\storvsp.sys
05:24:25.0029 10588 storvsp - ok
05:24:25.0035 10588 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\Windows\system32\svsvc.dll
05:24:25.0039 10588 svsvc - ok
05:24:25.0044 10588 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\Windows\System32\drivers\swenum.sys
05:24:25.0047 10588 swenum - ok
05:24:25.0062 10588 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\Windows\System32\swprv.dll
05:24:25.0068 10588 swprv - ok
05:24:25.0092 10588 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\Windows\system32\sysmain.dll
05:24:25.0103 10588 SysMain - ok
05:24:25.0113 10588 [ E219BF7BCCFE4881B0C053C7E0B47ECC ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
05:24:25.0118 10588 SystemEventsBroker - ok
05:24:25.0124 10588 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
05:24:25.0128 10588 TabletInputService - ok
05:24:25.0137 10588 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\Windows\System32\tapisrv.dll
05:24:25.0141 10588 TapiSrv - ok
05:24:25.0174 10588 [ D192288CE5FB395F0BBAFDD1A8B5285D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
05:24:25.0187 10588 Tcpip - ok
05:24:25.0221 10588 [ D192288CE5FB395F0BBAFDD1A8B5285D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
05:24:25.0233 10588 TCPIP6 - ok
05:24:25.0241 10588 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
05:24:25.0242 10588 tcpipreg - ok
05:24:25.0251 10588 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
05:24:25.0253 10588 tdx - ok
05:24:25.0260 10588 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\Windows\System32\drivers\terminpt.sys
05:24:25.0265 10588 terminpt - ok
05:24:25.0279 10588 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\Windows\System32\termsrv.dll
05:24:25.0285 10588 TermService - ok
05:24:25.0291 10588 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\Windows\system32\themeservice.dll
05:24:25.0295 10588 Themes - ok
05:24:25.0301 10588 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER C:\Windows\system32\mmcss.dll
05:24:25.0303 10588 THREADORDER - ok
05:24:25.0311 10588 [ FF4135424A79DCC2998276D8E39C9B4D ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
05:24:25.0315 10588 TimeBroker - ok
05:24:25.0326 10588 [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM C:\Windows\system32\drivers\tpm.sys
05:24:25.0329 10588 TPM - ok
05:24:25.0335 10588 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\Windows\System32\trkwks.dll
05:24:25.0339 10588 TrkWks - ok
05:24:25.0344 10588 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
05:24:25.0346 10588 TrustedInstaller - ok
05:24:25.0354 10588 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
05:24:25.0357 10588 TsUsbFlt - ok
05:24:25.0364 10588 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
05:24:25.0365 10588 TsUsbGD - ok
05:24:25.0373 10588 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
05:24:25.0376 10588 tunnel - ok
05:24:25.0391 10588 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\Windows\system32\drivers\uagp35.sys
05:24:25.0392 10588 uagp35 - ok
05:24:25.0399 10588 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
05:24:25.0402 10588 UASPStor - ok
05:24:25.0412 10588 [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
05:24:25.0415 10588 UCX01000 - ok
05:24:25.0425 10588 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
05:24:25.0429 10588 udfs - ok
05:24:25.0441 10588 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\Windows\system32\UI0Detect.exe
05:24:25.0444 10588 UI0Detect - ok
05:24:25.0453 10588 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
05:24:25.0457 10588 uliagpkx - ok
05:24:25.0466 10588 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\Windows\System32\drivers\umbus.sys
05:24:25.0468 10588 umbus - ok
05:24:25.0474 10588 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\Windows\System32\drivers\umpass.sys
05:24:25.0476 10588 UmPass - ok
05:24:25.0485 10588 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\Windows\System32\umrdp.dll
05:24:25.0489 10588 UmRdpService - ok
05:24:25.0503 10588 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\Windows\System32\upnphost.dll
05:24:25.0509 10588 upnphost - ok
05:24:25.0518 10588 [ 907F50B8695DAA65A9445D27AD306E65 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
05:24:25.0519 10588 upperdev - ok
05:24:25.0525 10588 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\System32\Drivers\usbaapl64.sys
05:24:25.0528 10588 USBAAPL64 - ok
05:24:25.0534 10588 [ 3FBE0784E42E7BA93FCC5201D2BAFE23 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
05:24:25.0535 10588 usbaudio - ok
05:24:25.0541 10588 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
05:24:25.0543 10588 usbccgp - ok
05:24:25.0553 10588 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\Windows\System32\drivers\usbcir.sys
05:24:25.0555 10588 usbcir - ok
05:24:25.0569 10588 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci C:\Windows\System32\drivers\usbehci.sys
05:24:25.0571 10588 usbehci - ok
05:24:25.0583 10588 [ FBB6794E3BBAD92D66D59D206C1F849F ] usbhub C:\Windows\System32\drivers\usbhub.sys
05:24:25.0587 10588 usbhub - ok
05:24:25.0597 10588 [ B7A948501424805571BF562BB0BFE31D ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
05:24:25.0603 10588 USBHUB3 - ok
05:24:25.0610 10588 [ 325F6179009B5A7F6118951A5BA422AB ] usbohci C:\Windows\System32\drivers\usbohci.sys
05:24:25.0613 10588 usbohci - ok
05:24:25.0619 10588 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\Windows\System32\drivers\usbprint.sys
05:24:25.0622 10588 usbprint - ok
05:24:25.0628 10588 [ A9858597B6DB695F78A37F6755A6FF98 ] usbscan C:\Windows\System32\drivers\usbscan.sys
05:24:25.0630 10588 usbscan - ok
05:24:25.0639 10588 [ 72334EC4B3FD4EB270623E32E701B57D ] usbser C:\Windows\system32\drivers\usbser.sys
05:24:25.0641 10588 usbser - ok
05:24:25.0650 10588 [ 3F7498527B48657091C355F683BEB0DD ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
05:24:25.0652 10588 UsbserFilt - ok
05:24:25.0658 10588 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
05:24:25.0660 10588 USBSTOR - ok
05:24:25.0670 10588 [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
05:24:25.0672 10588 usbuhci - ok
05:24:25.0682 10588 [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
05:24:25.0686 10588 USBXHCI - ok
05:24:25.0696 10588 [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc C:\Windows\system32\lsass.exe
05:24:25.0698 10588 VaultSvc - ok
05:24:25.0703 10588 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
05:24:25.0707 10588 vdrvroot - ok
05:24:25.0721 10588 [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds C:\Windows\System32\vds.exe
05:24:25.0728 10588 vds - ok
05:24:25.0736 10588 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
05:24:25.0738 10588 VerifierExt - ok
05:24:25.0749 10588 [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
05:24:25.0757 10588 vhdmp - ok
05:24:25.0765 10588 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\Windows\system32\drivers\viaide.sys
05:24:25.0768 10588 viaide - ok
05:24:25.0775 10588 [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid C:\Windows\System32\drivers\Vid.sys
05:24:25.0779 10588 Vid - ok
05:24:25.0785 10588 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\Windows\system32\drivers\vmbus.sys
05:24:25.0787 10588 vmbus - ok
05:24:25.0792 10588 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
05:24:25.0793 10588 VMBusHID - ok
05:24:25.0801 10588 [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr C:\Windows\System32\drivers\vmbusr.sys
05:24:25.0804 10588 vmbusr - ok
05:24:25.0815 10588 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
05:24:25.0819 10588 vmicheartbeat - ok
05:24:25.0829 10588 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
05:24:25.0831 10588 vmickvpexchange - ok
05:24:25.0840 10588 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\Windows\System32\ICSvc.dll
05:24:25.0842 10588 vmicrdv - ok
05:24:25.0850 10588 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\Windows\System32\ICSvc.dll
05:24:25.0854 10588 vmicshutdown - ok
05:24:25.0864 10588 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\Windows\System32\ICSvc.dll
05:24:25.0868 10588 vmictimesync - ok
05:24:25.0877 10588 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\Windows\System32\ICSvc.dll
05:24:25.0881 10588 vmicvss - ok
05:24:25.0887 10588 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\Windows\system32\drivers\volmgr.sys
05:24:25.0889 10588 volmgr - ok
05:24:25.0898 10588 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
05:24:25.0905 10588 volmgrx - ok
05:24:25.0916 10588 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\Windows\system32\drivers\volsnap.sys
05:24:25.0920 10588 volsnap - ok
05:24:25.0928 10588 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\Windows\System32\drivers\vpci.sys
05:24:25.0930 10588 vpci - ok
05:24:25.0937 10588 [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp C:\Windows\System32\drivers\vpcivsp.sys
05:24:25.0939 10588 vpcivsp - ok
05:24:25.0947 10588 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
05:24:25.0949 10588 vsmraid - ok
05:24:25.0971 10588 [ EA658570314042C914964FC72AB50E6B ] VSS C:\Windows\system32\vssvc.exe
05:24:25.0982 10588 VSS - ok
05:24:25.0993 10588 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
05:24:25.0997 10588 VSTXRAID - ok
05:24:26.0005 10588 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
05:24:26.0008 10588 vwifibus - ok
05:24:26.0022 10588 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\Windows\system32\w32time.dll
05:24:26.0028 10588 W32Time - ok
05:24:26.0033 10588 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\Windows\System32\drivers\wacompen.sys
05:24:26.0037 10588 WacomPen - ok
05:24:26.0042 10588 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
05:24:26.0045 10588 Wanarp - ok
05:24:26.0050 10588 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
05:24:26.0052 10588 Wanarpv6 - ok
05:24:26.0079 10588 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\Windows\system32\wbengine.exe
05:24:26.0092 10588 wbengine - ok
05:24:26.0102 10588 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
05:24:26.0112 10588 WbioSrvc - ok
05:24:26.0124 10588 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
05:24:26.0129 10588 Wcmsvc - ok
05:24:26.0142 10588 [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc C:\Windows\System32\wcncsvc.dll
05:24:26.0148 10588 wcncsvc - ok
05:24:26.0154 10588 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
05:24:26.0158 10588 WcsPlugInService - ok
05:24:26.0165 10588 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\Windows\system32\drivers\wd.sys
05:24:26.0168 10588 Wd - ok
05:24:26.0174 10588 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
05:24:26.0176 10588 WdBoot - ok
05:24:26.0193 10588 [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
05:24:26.0199 10588 Wdf01000 - ok
05:24:26.0208 10588 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
05:24:26.0211 10588 WdFilter - ok
05:24:26.0219 10588 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\Windows\system32\wdi.dll
05:24:26.0223 10588 WdiServiceHost - ok
05:24:26.0229 10588 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\Windows\system32\wdi.dll
05:24:26.0233 10588 WdiSystemHost - ok
05:24:26.0241 10588 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\Windows\System32\webclnt.dll
05:24:26.0245 10588 WebClient - ok
05:24:26.0253 10588 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\Windows\system32\wecsvc.dll
05:24:26.0257 10588 Wecsvc - ok
05:24:26.0263 10588 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\Windows\System32\wercplsupport.dll
05:24:26.0267 10588 wercplsupport - ok
05:24:26.0272 10588 [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc C:\Windows\System32\WerSvc.dll
05:24:26.0275 10588 WerSvc - ok
05:24:26.0281 10588 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
05:24:26.0283 10588 WFPLWFS - ok
05:24:26.0289 10588 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\Windows\System32\wiarpc.dll
05:24:26.0295 10588 WiaRpc - ok
05:24:26.0303 10588 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
05:24:26.0306 10588 WIMMount - ok
05:24:26.0312 10588 WinDefend - ok
05:24:26.0332 10588 [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
05:24:26.0339 10588 WinHttpAutoProxySvc - ok
05:24:26.0350 10588 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
05:24:26.0353 10588 Winmgmt - ok
05:24:26.0360 10588 WinRing0_1_2_0 - ok
05:24:26.0408 10588 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\Windows\system32\WsmSvc.dll
05:24:26.0428 10588 WinRM - ok
05:24:26.0441 10588 [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
05:24:26.0443 10588 WinUsb - ok
05:24:26.0464 10588 [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc C:\Windows\System32\wlansvc.dll
05:24:26.0477 10588 WlanSvc - ok
05:24:26.0506 10588 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc C:\Windows\system32\wlidsvc.dll
05:24:26.0520 10588 wlidsvc - ok
05:24:26.0528 10588 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
05:24:26.0529 10588 WmiAcpi - ok
05:24:26.0540 10588 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
05:24:26.0541 10588 wmiApSrv - ok
05:24:26.0546 10588 WMPNetworkSvc - ok
05:24:26.0554 10588 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
05:24:26.0558 10588 wpcfltr - ok
05:24:26.0565 10588 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\Windows\System32\wpcsvc.dll
05:24:26.0568 10588 WPCSvc - ok
05:24:26.0579 10588 [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
05:24:26.0583 10588 WPDBusEnum - ok
05:24:26.0591 10588 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
05:24:26.0592 10588 WpdUpFltr - ok
05:24:26.0598 10588 [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
05:24:26.0600 10588 ws2ifsl - ok
05:24:26.0606 10588 [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc C:\Windows\System32\wscsvc.dll
05:24:26.0613 10588 wscsvc - ok
05:24:26.0621 10588 WSearch - ok
05:24:26.0661 10588 [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService C:\Windows\System32\WSService.dll
05:24:26.0678 10588 WSService - ok
05:24:26.0722 10588 [ A8484C0CB54DB48180FB7CA00F1C3F8F ] wuauserv C:\Windows\system32\wuaueng.dll
05:24:26.0745 10588 wuauserv - ok
05:24:26.0753 10588 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
05:24:26.0755 10588 WudfPf - ok
05:24:26.0763 10588 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
05:24:26.0765 10588 WUDFRd - ok
05:24:26.0772 10588 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys
05:24:26.0774 10588 WUDFSensorLP - ok
05:24:26.0783 10588 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
05:24:26.0787 10588 wudfsvc - ok
05:24:26.0795 10588 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
05:24:26.0797 10588 WUDFWpdFs - ok
05:24:26.0803 10588 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp C:\Windows\system32\DRIVERS\WUDFRd.sys
05:24:26.0804 10588 WUDFWpdMtp - ok
05:24:26.0815 10588 [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc C:\Windows\System32\wwansvc.dll
05:24:26.0821 10588 WwanSvc - ok
05:24:26.0834 10588 [ 537319A784278409FF5353515A39DE38 ] yukonw8 C:\Windows\system32\DRIVERS\yk63x64.sys
05:24:26.0838 10588 yukonw8 - ok
05:24:26.0850 10588 ================ Scan global ===============================
05:24:26.0855 10588 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
05:24:26.0862 10588 [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll
05:24:26.0874 10588 [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
05:24:26.0885 10588 [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe
05:24:26.0890 10588 [Global] - ok
05:24:26.0891 10588 ================ Scan MBR ==================================
05:24:26.0894 10588 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
05:24:27.0004 10588 \Device\Harddisk0\DR0 - ok
05:24:27.0011 10588 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
05:24:27.0014 10588 \Device\Harddisk1\DR1 - ok
05:24:27.0015 10588 ================ Scan VBR ==================================
05:24:27.0018 10588 [ 808BB109FA727A8AD45A3EA0D6090629 ] \Device\Harddisk0\DR0\Partition1
05:24:27.0019 10588 \Device\Harddisk0\DR0\Partition1 - ok
05:24:27.0024 10588 [ 9A9226B5081B928CCF799BFC7933320A ] \Device\Harddisk0\DR0\Partition2
05:24:27.0025 10588 \Device\Harddisk0\DR0\Partition2 - ok
05:24:27.0031 10588 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
05:24:27.0032 10588 \Device\Harddisk1\DR1\Partition1 - ok
05:24:27.0036 10588 [ BBB5C1551E141C25B6302ABBC6A95D3E ] \Device\Harddisk1\DR1\Partition2
05:24:27.0037 10588 \Device\Harddisk1\DR1\Partition2 - ok
05:24:27.0038 10588 ============================================================
05:24:27.0038 10588 Scan finished
05:24:27.0038 10588 ============================================================
05:24:27.0055 8260 Detected object count: 0
05:24:27.0055 8260 Actual detected object count: 0
05:24:30.0195 6212 Deinitialize success

Alt 13.03.2013, 12:25   #8
markusg
/// Malware-holic
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



schau dir doch bitte mal die screenshots in der anleitung an, und konfiguriere den tdss killer danach
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 13.03.2013, 14:12   #9
mm939
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



Sorry, wer lesen kann ist klar im Vorteil^^
15:10:32.0773 3120 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:10:32.0903 3120 ============================================================
15:10:32.0903 3120 Current date / time: 2013/03/13 15:10:32.0903
15:10:32.0903 3120 SystemInfo:
15:10:32.0903 3120
15:10:32.0903 3120 OS Version: 6.2.9200 ServicePack: 0.0
15:10:32.0903 3120 Product type: Workstation
15:10:32.0903 3120 ComputerName: MARIO
15:10:32.0904 3120 UserName: Mario´s
15:10:32.0904 3120 Windows directory: C:\Windows
15:10:32.0904 3120 System windows directory: C:\Windows
15:10:32.0904 3120 Running under WOW64
15:10:32.0904 3120 Processor architecture: Intel x64
15:10:32.0904 3120 Number of processors: 4
15:10:32.0904 3120 Page size: 0x1000
15:10:32.0904 3120 Boot type: Normal boot
15:10:32.0904 3120 ============================================================
15:10:33.0135 3120 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x10A5F, SectorsPerTrack: 0x12, TracksPerCylinder: 0xBF, Type 'K0', Flags 0x00000040
15:10:33.0135 3120 Drive \Device\Harddisk1\DR1 - Size: 0x2BAA1476000 (2794.52 Gb), SectorSize: 0x200, Cylinders: 0x59101, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:10:33.0244 3120 ============================================================
15:10:33.0244 3120 \Device\Harddisk0\DR0:
15:10:33.0244 3120 MBR partitions:
15:10:33.0245 3120 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAF000
15:10:33.0245 3120 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xAF800, BlocksNum 0xDEE4800
15:10:33.0245 3120 \Device\Harddisk1\DR1:
15:10:33.0245 3120 GPT partitions:
15:10:33.0245 3120 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {03422340-333F-4D10-9D07-3FA470F4CD80}, Name: Microsoft reserved partition, StartLBA 0x22, BlocksNum 0x40000
15:10:33.0245 3120 \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {03A7CBEE-A25E-4BBA-9F47-1DE9500125F4}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0x5D4C9800
15:10:33.0245 3120 MBR partitions:
15:10:33.0245 3120 ============================================================
15:10:33.0246 3120 C: <-> \Device\Harddisk0\DR0\Partition2
15:10:33.0247 3120 D: <-> \Device\Harddisk1\DR1\Partition2
15:10:33.0247 3120 ============================================================
15:10:33.0247 3120 Initialize success
15:10:33.0247 3120 ============================================================
15:10:40.0814 0564 ============================================================
15:10:40.0814 0564 Scan started
15:10:40.0814 0564 Mode: Manual; SigCheck; TDLFS;
15:10:40.0814 0564 ============================================================
15:10:42.0128 0564 ================ Scan system memory ========================
15:10:42.0128 0564 System memory - ok
15:10:42.0128 0564 ================ Scan services =============================
15:10:42.0180 0564 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
15:10:42.0231 0564 1394ohci - ok
15:10:42.0236 0564 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\Windows\system32\drivers\3ware.sys
15:10:42.0253 0564 3ware - ok
15:10:42.0265 0564 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:10:42.0288 0564 ACPI - ok
15:10:42.0297 0564 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\Windows\system32\Drivers\acpiex.sys
15:10:42.0312 0564 acpiex - ok
15:10:42.0320 0564 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
15:10:42.0335 0564 acpipagr - ok
15:10:42.0340 0564 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
15:10:42.0354 0564 AcpiPmi - ok
15:10:42.0359 0564 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\Windows\System32\drivers\acpitime.sys
15:10:42.0372 0564 acpitime - ok
15:10:42.0378 0564 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:10:42.0389 0564 AdobeARMservice - ok
15:10:42.0417 0564 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:10:42.0431 0564 AdobeFlashPlayerUpdateSvc - ok
15:10:42.0443 0564 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:10:42.0467 0564 adp94xx - ok
15:10:42.0476 0564 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:10:42.0497 0564 adpahci - ok
15:10:42.0504 0564 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:10:42.0520 0564 adpu320 - ok
15:10:42.0529 0564 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:10:42.0546 0564 AeLookupSvc - ok
15:10:42.0557 0564 [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD C:\Windows\system32\drivers\afd.sys
15:10:42.0583 0564 AFD - ok
15:10:42.0589 0564 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:10:42.0601 0564 agp440 - ok
15:10:42.0607 0564 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\Windows\System32\alg.exe
15:10:42.0627 0564 ALG - ok
15:10:42.0634 0564 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
15:10:42.0651 0564 AllUserInstallAgent - ok
15:10:42.0659 0564 ALSysIO - ok
15:10:42.0666 0564 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:10:42.0691 0564 AMD External Events Utility - ok
15:10:42.0700 0564 [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
15:10:42.0715 0564 AmdK8 - ok
15:10:42.0842 0564 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:10:43.0030 0564 amdkmdag - ok
15:10:43.0067 0564 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:10:43.0092 0564 amdkmdap - ok
15:10:43.0099 0564 [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
15:10:43.0116 0564 AmdPPM - ok
15:10:43.0123 0564 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:10:43.0136 0564 amdsata - ok
15:10:43.0145 0564 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:10:43.0161 0564 amdsbs - ok
15:10:43.0165 0564 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:10:43.0176 0564 amdxata - ok
15:10:43.0181 0564 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\Windows\system32\drivers\appid.sys
15:10:43.0197 0564 AppID - ok
15:10:43.0202 0564 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:10:43.0220 0564 AppIDSvc - ok
15:10:43.0224 0564 [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo C:\Windows\System32\appinfo.dll
15:10:43.0242 0564 Appinfo - ok
15:10:43.0250 0564 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:10:43.0263 0564 Apple Mobile Device - ok
15:10:43.0270 0564 [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt C:\Windows\System32\appmgmts.dll
15:10:43.0286 0564 AppMgmt - ok
15:10:43.0293 0564 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\Windows\system32\drivers\arc.sys
15:10:43.0306 0564 arc - ok
15:10:43.0314 0564 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:10:43.0329 0564 arcsas - ok
15:10:43.0346 0564 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
15:10:43.0352 0564 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
15:10:43.0352 0564 aspnet_state - detected UnsignedFile.Multi.Generic (1)
15:10:43.0358 0564 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:10:43.0389 0564 AsyncMac - ok
15:10:43.0393 0564 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\Windows\system32\drivers\atapi.sys
15:10:43.0406 0564 atapi - ok
15:10:43.0417 0564 [ 87DAD8D354E312DB16636DC71EB39E5E ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys
15:10:43.0432 0564 AtiHDAudioService - ok
15:10:43.0439 0564 [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
15:10:43.0456 0564 AudioEndpointBuilder - ok
15:10:43.0470 0564 [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:10:43.0533 0564 Audiosrv - ok
15:10:43.0544 0564 [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
15:10:43.0577 0564 AVP - ok
15:10:43.0583 0564 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:10:43.0598 0564 AxInstSV - ok
15:10:43.0607 0564 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:10:43.0632 0564 b06bdrv - ok
15:10:43.0638 0564 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
15:10:43.0653 0564 BasicDisplay - ok
15:10:43.0659 0564 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
15:10:43.0672 0564 BasicRender - ok
15:10:43.0683 0564 [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC C:\Windows\System32\bdesvc.dll
15:10:43.0723 0564 BDESVC - ok
15:10:43.0729 0564 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\Windows\system32\drivers\Beep.sys
15:10:43.0745 0564 Beep - ok
15:10:43.0760 0564 [ 9E6A544F465C582AB42444A217CF04DC ] BFE C:\Windows\System32\bfe.dll
15:10:43.0789 0564 BFE - ok
15:10:43.0794 0564 [ 07132255ADCB05CD7078B6C7B7215058 ] BfEdge7x64 C:\Windows\system32\DRIVERS\Edge7x64.sys
15:10:43.0803 0564 BfEdge7x64 - ok
15:10:43.0811 0564 [ 33B114FC0394358DB521828B6F6ACC54 ] BFN7x64 C:\Windows\System32\drivers\Xeno7x64.sys
15:10:43.0821 0564 BFN7x64 - ok
15:10:43.0833 0564 [ E2CCAB21A9A0BFC05C329A4B181BF0C6 ] Bigfoot Networks Killer Service C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
15:10:43.0847 0564 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - warning
15:10:43.0847 0564 Bigfoot Networks Killer Service - detected UnsignedFile.Multi.Generic (1)
15:10:43.0862 0564 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\Windows\System32\qmgr.dll
15:10:43.0894 0564 BITS - ok
15:10:43.0908 0564 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:10:43.0929 0564 Bonjour Service - ok
15:10:43.0935 0564 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:10:43.0952 0564 bowser - ok
15:10:43.0958 0564 [ 05C9416889B03877781712EBB41CAFEE ] BRA_Scheduler C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
15:10:43.0965 0564 BRA_Scheduler ( UnsignedFile.Multi.Generic ) - warning
15:10:43.0965 0564 BRA_Scheduler - detected UnsignedFile.Multi.Generic (1)
15:10:43.0973 0564 [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
15:10:43.0992 0564 BrokerInfrastructure - ok
15:10:44.0001 0564 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\Windows\System32\browser.dll
15:10:44.0036 0564 Browser - ok
15:10:44.0045 0564 [ 3AA4309EBD9491E516F13FE3DC752FEE ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
15:10:44.0064 0564 BthAvrcpTg - ok
15:10:44.0076 0564 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
15:10:44.0112 0564 BthHFEnum - ok
15:10:44.0119 0564 [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
15:10:44.0134 0564 bthhfhid - ok
15:10:44.0140 0564 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
15:10:44.0187 0564 BTHMODEM - ok
15:10:44.0199 0564 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\Windows\system32\bthserv.dll
15:10:44.0215 0564 bthserv - ok
15:10:44.0222 0564 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:10:44.0239 0564 cdfs - ok
15:10:44.0246 0564 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\Windows\System32\drivers\cdrom.sys
15:10:44.0262 0564 cdrom - ok
15:10:44.0270 0564 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\Windows\System32\certprop.dll
15:10:44.0289 0564 CertPropSvc - ok
15:10:44.0294 0564 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\Windows\System32\drivers\circlass.sys
15:10:44.0325 0564 circlass - ok
15:10:44.0332 0564 [ 93C7703442C7CBD4053FC7DE07D9C896 ] ClassicShellService C:\Program Files\Classic Shell\ClassicShellService.exe
15:10:44.0340 0564 ClassicShellService ( UnsignedFile.Multi.Generic ) - warning
15:10:44.0340 0564 ClassicShellService - detected UnsignedFile.Multi.Generic (1)
15:10:44.0351 0564 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\Windows\system32\drivers\CLFS.sys
15:10:44.0372 0564 CLFS - ok
15:10:44.0393 0564 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
15:10:44.0409 0564 CmBatt - ok
15:10:44.0422 0564 [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG C:\Windows\system32\Drivers\cng.sys
15:10:44.0451 0564 CNG - ok
15:10:44.0464 0564 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
15:10:44.0497 0564 CompositeBus - ok
15:10:44.0503 0564 COMSysApp - ok
15:10:44.0510 0564 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\Windows\system32\drivers\condrv.sys
15:10:44.0526 0564 condrv - ok
15:10:44.0533 0564 [ 44622785D2D2DD8B13E6DC969B6E34A4 ] copperhd C:\Windows\system32\drivers\copperhd.sys
15:10:44.0546 0564 copperhd - ok
15:10:44.0555 0564 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:10:44.0572 0564 CryptSvc - ok
15:10:44.0584 0564 [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC C:\Windows\system32\drivers\csc.sys
15:10:44.0614 0564 CSC - ok
15:10:44.0630 0564 [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService C:\Windows\System32\cscsvc.dll
15:10:44.0659 0564 CscService - ok
15:10:44.0666 0564 [ C4D01BD86D6B207275FC143EEA951D75 ] dam C:\Windows\system32\drivers\dam.sys
15:10:44.0680 0564 dam - ok
15:10:44.0698 0564 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\Windows\system32\rpcss.dll
15:10:44.0729 0564 DcomLaunch - ok
15:10:44.0743 0564 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\Windows\System32\defragsvc.dll
15:10:44.0773 0564 defragsvc - ok
15:10:44.0785 0564 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
15:10:44.0811 0564 DeviceAssociationService - ok
15:10:44.0818 0564 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
15:10:44.0835 0564 DeviceInstall - ok
15:10:44.0841 0564 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
15:10:44.0856 0564 Dfsc - ok
15:10:44.0863 0564 [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
15:10:44.0874 0564 dg_ssudbus - ok
15:10:44.0884 0564 [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:10:44.0905 0564 Dhcp - ok
15:10:44.0913 0564 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\Windows\system32\drivers\discache.sys
15:10:44.0934 0564 discache - ok
15:10:44.0941 0564 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\Windows\system32\drivers\disk.sys
15:10:44.0955 0564 disk - ok
15:10:44.0960 0564 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
15:10:44.0975 0564 dmvsc - ok
15:10:44.0984 0564 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:10:45.0002 0564 Dnscache - ok
15:10:45.0010 0564 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\Windows\System32\dot3svc.dll
15:10:45.0032 0564 dot3svc - ok
15:10:45.0040 0564 [ 27069CFFF29B7F04F4B1BB10154BE52B ] dot4 C:\Windows\system32\DRIVERS\Dot4.sys
15:10:45.0052 0564 dot4 - ok
15:10:45.0057 0564 [ 0BD906A79F9CE3013F7D9D0AC45F9F9D ] Dot4Print C:\Windows\System32\drivers\Dot4Prt.sys
15:10:45.0065 0564 Dot4Print - ok
15:10:45.0071 0564 [ B7D595F2F464F7B628AD53F06547792C ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
15:10:45.0080 0564 dot4usb - ok
15:10:45.0087 0564 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\Windows\system32\dps.dll
15:10:45.0110 0564 DPS - ok
15:10:45.0118 0564 [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:10:45.0137 0564 drmkaud - ok
15:10:45.0147 0564 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
15:10:45.0170 0564 DsmSvc - ok
15:10:45.0180 0564 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\System32\drivers\dtsoftbus01.sys
15:10:45.0192 0564 dtsoftbus01 - ok
15:10:45.0213 0564 [ ED120AA770A78B5079F8C7BB5AF8A035 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:10:45.0255 0564 DXGKrnl - ok
15:10:45.0261 0564 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\Windows\System32\eapsvc.dll
15:10:45.0279 0564 Eaphost - ok
15:10:45.0320 0564 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\Windows\system32\drivers\evbda.sys
15:10:45.0405 0564 ebdrv - ok
15:10:45.0411 0564 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\Windows\System32\lsass.exe
15:10:45.0432 0564 EFS - ok
15:10:45.0441 0564 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
15:10:45.0458 0564 EhStorClass - ok
15:10:45.0465 0564 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
15:10:45.0479 0564 EhStorTcgDrv - ok
15:10:45.0485 0564 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\Windows\System32\drivers\errdev.sys
15:10:45.0497 0564 ErrDev - ok
15:10:45.0511 0564 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\Windows\system32\es.dll
15:10:45.0531 0564 EventSystem - ok
15:10:45.0537 0564 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\Windows\system32\drivers\exfat.sys
15:10:45.0559 0564 exfat - ok
15:10:45.0567 0564 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:10:45.0582 0564 fastfat - ok
15:10:45.0594 0564 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\Windows\system32\fxssvc.exe
15:10:45.0619 0564 Fax - ok
15:10:45.0624 0564 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\Windows\System32\drivers\fdc.sys
15:10:45.0637 0564 fdc - ok
15:10:45.0642 0564 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\Windows\system32\fdPHost.dll
15:10:45.0662 0564 fdPHost - ok
15:10:45.0668 0564 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\Windows\system32\fdrespub.dll
15:10:45.0690 0564 FDResPub - ok
15:10:45.0698 0564 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\Windows\system32\fhsvc.dll
15:10:45.0715 0564 fhsvc - ok
15:10:45.0722 0564 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:10:45.0736 0564 FileInfo - ok
15:10:45.0742 0564 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:10:45.0762 0564 Filetrace - ok
15:10:45.0768 0564 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
15:10:45.0782 0564 flpydisk - ok
15:10:45.0792 0564 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:10:45.0812 0564 FltMgr - ok
15:10:45.0833 0564 [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache C:\Windows\system32\FntCache.dll
15:10:45.0872 0564 FontCache - ok
15:10:45.0878 0564 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:10:45.0893 0564 FontCache3.0.0.0 - ok
15:10:45.0899 0564 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:10:45.0911 0564 FsDepends - ok
15:10:45.0919 0564 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:10:45.0931 0564 Fs_Rec - ok
15:10:45.0942 0564 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:10:45.0965 0564 fvevol - ok
15:10:45.0972 0564 [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
15:10:45.0986 0564 FxPPM - ok
15:10:45.0993 0564 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:10:46.0006 0564 gagp30kx - ok
15:10:46.0012 0564 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:10:46.0022 0564 GEARAspiWDM - ok
15:10:46.0028 0564 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
15:10:46.0041 0564 gencounter - ok
15:10:46.0051 0564 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
15:10:46.0065 0564 GPIOClx0101 - ok
15:10:46.0086 0564 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\Windows\System32\gpsvc.dll
15:10:46.0125 0564 gpsvc - ok
15:10:46.0131 0564 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:10:46.0140 0564 gupdate - ok
15:10:46.0144 0564 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:10:46.0153 0564 gupdatem - ok
15:10:46.0162 0564 [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:10:46.0180 0564 HdAudAddService - ok
15:10:46.0187 0564 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
15:10:46.0201 0564 HDAudBus - ok
15:10:46.0206 0564 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
15:10:46.0220 0564 HidBatt - ok
15:10:46.0226 0564 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\Windows\System32\drivers\hidbth.sys
15:10:46.0257 0564 HidBth - ok
15:10:46.0264 0564 [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
15:10:46.0280 0564 hidi2c - ok
15:10:46.0285 0564 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\Windows\System32\drivers\hidir.sys
15:10:46.0310 0564 HidIr - ok
15:10:46.0315 0564 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\Windows\system32\hidserv.dll
15:10:46.0331 0564 hidserv - ok
15:10:46.0336 0564 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
15:10:46.0349 0564 HidUsb - ok
15:10:46.0355 0564 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:10:46.0374 0564 hkmsvc - ok
15:10:46.0382 0564 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:10:46.0400 0564 HomeGroupListener - ok
15:10:46.0409 0564 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:10:46.0429 0564 HomeGroupProvider - ok
15:10:46.0435 0564 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:10:46.0447 0564 HpSAMD - ok
15:10:46.0462 0564 [ 29CB98187BB5711F7759540976D295FC ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:10:46.0491 0564 HTTP - ok
15:10:46.0499 0564 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:10:46.0512 0564 hwpolicy - ok
15:10:46.0519 0564 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
15:10:46.0532 0564 hyperkbd - ok
15:10:46.0536 0564 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
15:10:46.0550 0564 HyperVideo - ok
15:10:46.0555 0564 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
15:10:46.0569 0564 i8042prt - ok
15:10:46.0578 0564 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:10:46.0599 0564 iaStorV - ok
15:10:46.0605 0564 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:10:46.0619 0564 iirsp - ok
15:10:46.0639 0564 [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT C:\Windows\System32\ikeext.dll
15:10:46.0669 0564 IKEEXT - ok
15:10:46.0677 0564 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\Windows\system32\drivers\intelide.sys
15:10:46.0690 0564 intelide - ok
15:10:46.0696 0564 [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm C:\Windows\System32\drivers\intelppm.sys
15:10:46.0711 0564 intelppm - ok
15:10:46.0717 0564 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:10:46.0734 0564 IpFilterDriver - ok
15:10:46.0749 0564 [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:10:46.0782 0564 iphlpsvc - ok
15:10:46.0789 0564 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
15:10:46.0804 0564 IPMIDRV - ok
15:10:46.0811 0564 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:10:46.0831 0564 IPNAT - ok
15:10:46.0841 0564 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:10:46.0862 0564 iPod Service - ok
15:10:46.0869 0564 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:10:46.0884 0564 IRENUM - ok
15:10:46.0890 0564 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:10:46.0902 0564 isapnp - ok
15:10:46.0913 0564 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
15:10:46.0934 0564 iScsiPrt - ok
15:10:46.0939 0564 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
15:10:46.0952 0564 kbdclass - ok
15:10:46.0957 0564 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
15:10:46.0971 0564 kbdhid - ok
15:10:46.0975 0564 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
15:10:46.0989 0564 kdnic - ok
15:10:46.0994 0564 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\Windows\system32\lsass.exe
15:10:47.0008 0564 KeyIso - ok
15:10:47.0018 0564 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
15:10:47.0036 0564 kl1 - ok
15:10:47.0043 0564 [ F2EB9202FCCC81E0902D3C5A70037A44 ] klelam C:\Windows\system32\DRIVERS\klelam.sys
15:10:47.0058 0564 klelam - ok
15:10:47.0079 0564 [ 5D0104D068AA740A4CD75158652EA986 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
15:10:47.0096 0564 KLIF - ok
15:10:47.0102 0564 [ 1B5B924D27399F41DECD1CC6D706429F ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
15:10:47.0114 0564 KLIM6 - ok
15:10:47.0121 0564 [ A0B1AE842D7C7F2FDF530A7049CB988D ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
15:10:47.0132 0564 klkbdflt - ok
15:10:47.0137 0564 [ A8FFD74947077D8BD9A80936EC24514D ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
15:10:47.0146 0564 klmouflt - ok
15:10:47.0153 0564 [ FE0F2B2F8B0EA185B572BD3082593600 ] klwfp C:\Windows\system32\DRIVERS\klwfp.sys
15:10:47.0163 0564 klwfp - ok
15:10:47.0172 0564 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
15:10:47.0183 0564 kneps - ok
15:10:47.0190 0564 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:10:47.0203 0564 KSecDD - ok
15:10:47.0209 0564 [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:10:47.0223 0564 KSecPkg - ok
15:10:47.0228 0564 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:10:47.0242 0564 ksthunk - ok
15:10:47.0251 0564 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:10:47.0270 0564 KtmRm - ok
15:10:47.0280 0564 [ CE4347E2D90DB2E5517B6F2BC720A862 ] LADF_CaptureOnly C:\Windows\system32\DRIVERS\ladfGSCamd64.sys
15:10:47.0296 0564 LADF_CaptureOnly - ok
15:10:47.0306 0564 [ 85A9D21D3AE2EA963E111CB150895877 ] LADF_RenderOnly C:\Windows\system32\DRIVERS\ladfGSRamd64.sys
15:10:47.0321 0564 LADF_RenderOnly - ok
15:10:47.0330 0564 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\Windows\system32\srvsvc.dll
15:10:47.0349 0564 LanmanServer - ok
15:10:47.0355 0564 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:10:47.0373 0564 LanmanWorkstation - ok
15:10:47.0379 0564 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
15:10:47.0388 0564 LGBusEnum - ok
15:10:47.0393 0564 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
15:10:47.0401 0564 LGVirHid - ok
15:10:47.0407 0564 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:10:47.0424 0564 lltdio - ok
15:10:47.0434 0564 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:10:47.0460 0564 lltdsvc - ok
15:10:47.0465 0564 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:10:47.0481 0564 lmhosts - ok
15:10:47.0489 0564 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:10:47.0501 0564 LSI_SAS - ok
15:10:47.0506 0564 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:10:47.0520 0564 LSI_SAS2 - ok
15:10:47.0526 0564 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:10:47.0543 0564 LSI_SCSI - ok
15:10:47.0551 0564 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
15:10:47.0569 0564 LSI_SSS - ok
15:10:47.0582 0564 [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM C:\Windows\System32\lsm.dll
15:10:47.0608 0564 LSM - ok
15:10:47.0617 0564 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\Windows\system32\drivers\luafv.sys
15:10:47.0640 0564 luafv - ok
15:10:47.0645 0564 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\Windows\system32\drivers\megasas.sys
15:10:47.0659 0564 megasas - ok
15:10:47.0669 0564 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:10:47.0689 0564 MegaSR - ok
15:10:47.0697 0564 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\Windows\system32\mmcss.dll
15:10:47.0719 0564 MMCSS - ok
15:10:47.0727 0564 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\Windows\system32\drivers\modem.sys
15:10:47.0750 0564 Modem - ok
15:10:47.0756 0564 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:10:47.0771 0564 monitor - ok
15:10:47.0778 0564 [ 618446B98C79776654340CE27C73485E ] mouclass C:\Windows\System32\drivers\mouclass.sys
15:10:47.0792 0564 mouclass - ok
15:10:47.0799 0564 [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid C:\Windows\System32\drivers\mouhid.sys
15:10:47.0813 0564 mouhid - ok
15:10:47.0820 0564 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:10:47.0833 0564 mountmgr - ok
15:10:47.0839 0564 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:10:47.0851 0564 MozillaMaintenance - ok
15:10:47.0857 0564 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:10:47.0871 0564 mpsdrv - ok
15:10:47.0887 0564 [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:10:47.0914 0564 MpsSvc - ok
15:10:47.0921 0564 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:10:47.0937 0564 MRxDAV - ok
15:10:48.0162 0564 [ 877D60D6E4156EC4A2E0B6871D41BED9 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:10:48.0181 0564 mrxsmb - ok
15:10:48.0189 0564 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:10:48.0207 0564 mrxsmb10 - ok
15:10:48.0215 0564 [ E078446D4B8622AA6030C7B8A1A08962 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:10:48.0230 0564 mrxsmb20 - ok
15:10:48.0237 0564 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
15:10:48.0255 0564 MsBridge - ok
15:10:48.0264 0564 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\Windows\System32\msdtc.exe
15:10:48.0281 0564 MSDTC - ok
15:10:48.0291 0564 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:10:48.0305 0564 Msfs - ok
15:10:48.0311 0564 [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
15:10:48.0323 0564 msgpiowin32 - ok
15:10:48.0328 0564 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:10:48.0341 0564 mshidkmdf - ok
15:10:48.0346 0564 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
15:10:48.0359 0564 mshidumdf - ok
15:10:48.0364 0564 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:10:48.0376 0564 msisadrv - ok
15:10:48.0385 0564 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:10:48.0406 0564 MSiSCSI - ok
15:10:48.0412 0564 msiserver - ok
15:10:48.0418 0564 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:10:48.0431 0564 MSKSSRV - ok
15:10:48.0437 0564 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
15:10:48.0452 0564 MsLldp - ok
15:10:48.0458 0564 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:10:48.0471 0564 MSPCLOCK - ok
15:10:48.0479 0564 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:10:48.0492 0564 MSPQM - ok
15:10:48.0501 0564 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:10:48.0524 0564 MsRPC - ok
15:10:48.0532 0564 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
15:10:48.0544 0564 mssmbios - ok
15:10:48.0549 0564 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:10:48.0563 0564 MSTEE - ok
15:10:48.0570 0564 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
15:10:48.0584 0564 MTConfig - ok
15:10:48.0590 0564 [ 03B7145C889603537E9FFEABB1AD1089 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
15:10:48.0603 0564 MTsensor - ok
15:10:48.0609 0564 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\Windows\system32\Drivers\mup.sys
15:10:48.0623 0564 Mup - ok
15:10:48.0630 0564 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\Windows\system32\drivers\mvumis.sys
15:10:48.0644 0564 mvumis - ok
15:10:48.0685 0564 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\Windows\system32\qagentRT.dll
15:10:48.0710 0564 napagent - ok
15:10:48.0721 0564 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:10:48.0740 0564 NativeWifiP - ok
15:10:48.0746 0564 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\Windows\System32\ncasvc.dll
15:10:48.0763 0564 NcaSvc - ok
15:10:48.0768 0564 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
15:10:48.0785 0564 NcdAutoSetup - ok
15:10:48.0802 0564 [ 0F89AE618DBA5D8AB7A2DFCC375F4159 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:10:48.0840 0564 NDIS - ok
15:10:48.0846 0564 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:10:48.0863 0564 NdisCap - ok
15:10:48.0870 0564 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
15:10:48.0887 0564 NdisImPlatform - ok
15:10:48.0894 0564 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:10:48.0907 0564 NdisTapi - ok
15:10:48.0912 0564 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:10:48.0926 0564 Ndisuio - ok
15:10:48.0932 0564 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:10:48.0955 0564 NdisWan - ok
15:10:48.0962 0564 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys
15:10:48.0979 0564 NDISWANLEGACY - ok
15:10:48.0985 0564 [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:10:49.0000 0564 NDProxy - ok
15:10:49.0005 0564 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\Windows\system32\drivers\Ndu.sys
15:10:49.0021 0564 Ndu - ok
15:10:49.0026 0564 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:10:49.0043 0564 NetBIOS - ok
15:10:49.0051 0564 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:10:49.0070 0564 NetBT - ok
15:10:49.0076 0564 [ F702AB6181513303AB0FC8D59E52708B ] Netlogon C:\Windows\system32\lsass.exe
15:10:49.0092 0564 Netlogon - ok
15:10:49.0100 0564 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\Windows\System32\netman.dll
15:10:49.0120 0564 Netman - ok
15:10:49.0129 0564 [ C166E3CD90AB0781ECDF10EC765B083A ] netprofm C:\Windows\System32\netprofmsvc.dll
15:10:49.0151 0564 netprofm - ok
15:10:49.0158 0564 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:10:49.0173 0564 NetTcpPortSharing - ok
15:10:49.0178 0564 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:10:49.0189 0564 nfrd960 - ok
15:10:49.0199 0564 [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:10:49.0222 0564 NlaSvc - ok
15:10:49.0226 0564 [ 4903177FC90E77ABEB19021451E9475E ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
15:10:49.0250 0564 nmwcd - ok
15:10:49.0257 0564 [ E6844A4C97E5409BBE24BB4ED000320D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
15:10:49.0281 0564 nmwcdc - ok
15:10:49.0285 0564 [ F59F8CF59F7905622686637177E2A828 ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
15:10:49.0309 0564 nmwcdnsucx64 - ok
15:10:49.0315 0564 [ A0E7F80157AF77B1CEAA8ADD3A3E7D85 ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
15:10:49.0344 0564 nmwcdnsux64 - ok
15:10:49.0349 0564 [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF C:\Windows\system32\drivers\npf.sys
15:10:49.0357 0564 NPF - ok
15:10:49.0361 0564 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:10:49.0375 0564 Npfs - ok
15:10:49.0379 0564 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
15:10:49.0398 0564 npsvctrig - ok
15:10:49.0402 0564 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\Windows\system32\nsisvc.dll
15:10:49.0418 0564 nsi - ok
15:10:49.0422 0564 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:10:49.0435 0564 nsiproxy - ok
15:10:49.0463 0564 [ 11D7A4A4A1DA60F394F53B413DCDF0DE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:10:49.0520 0564 Ntfs - ok
15:10:49.0525 0564 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\Windows\system32\drivers\Null.sys
15:10:49.0538 0564 Null - ok
15:10:49.0544 0564 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:10:49.0558 0564 nvraid - ok
15:10:49.0564 0564 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:10:49.0579 0564 nvstor - ok
15:10:49.0586 0564 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:10:49.0599 0564 nv_agp - ok
15:10:49.0607 0564 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:10:49.0619 0564 ose - ok
15:10:49.0678 0564 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:10:49.0782 0564 osppsvc - ok
15:10:49.0795 0564 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:10:49.0814 0564 p2pimsvc - ok
15:10:49.0824 0564 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\Windows\system32\p2psvc.dll
15:10:49.0848 0564 p2psvc - ok
15:10:49.0859 0564 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\Windows\System32\drivers\parport.sys
15:10:49.0873 0564 Parport - ok
15:10:49.0879 0564 [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:10:49.0892 0564 partmgr - ok
15:10:49.0900 0564 [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:10:49.0920 0564 PcaSvc - ok
15:10:49.0925 0564 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
15:10:49.0936 0564 pccsmcfd - ok
15:10:49.0943 0564 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\Windows\system32\drivers\pci.sys
15:10:49.0959 0564 pci - ok
15:10:49.0963 0564 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\Windows\system32\drivers\pciide.sys
15:10:49.0974 0564 pciide - ok
15:10:49.0981 0564 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:10:49.0999 0564 pcmcia - ok
15:10:50.0006 0564 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\Windows\system32\drivers\pcw.sys
15:10:50.0017 0564 pcw - ok
15:10:50.0024 0564 [ EF9B4F3136B4C45F421ADE6871659FB6 ] pdc C:\Windows\system32\drivers\pdc.sys
15:10:50.0037 0564 pdc - ok
15:10:50.0050 0564 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:10:50.0079 0564 PEAUTH - ok
15:10:50.0111 0564 [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
15:10:50.0160 0564 PeerDistSvc - ok
15:10:50.0187 0564 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:10:50.0200 0564 PerfHost - ok
15:10:50.0224 0564 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\Windows\system32\pla.dll
15:10:50.0265 0564 pla - ok
15:10:50.0271 0564 [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:10:50.0286 0564 PlugPlay - ok
15:10:50.0292 0564 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:10:50.0307 0564 PNRPAutoReg - ok
15:10:50.0314 0564 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:10:50.0330 0564 PNRPsvc - ok
15:10:50.0341 0564 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:10:50.0364 0564 PolicyAgent - ok
15:10:50.0372 0564 [ F1E067F56373F11EA4B785CAE823740A ] Power C:\Windows\system32\umpo.dll
15:10:50.0389 0564 Power - ok
15:10:50.0394 0564 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:10:50.0410 0564 PptpMiniport - ok
15:10:50.0443 0564 [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
15:10:50.0497 0564 PrintNotify - ok
15:10:50.0505 0564 [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor C:\Windows\System32\drivers\processr.sys
15:10:50.0521 0564 Processor - ok
15:10:50.0527 0564 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\Windows\system32\profsvc.dll
15:10:50.0544 0564 ProfSvc - ok
15:10:50.0551 0564 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:10:50.0569 0564 Psched - ok
15:10:50.0576 0564 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\Windows\system32\qwave.dll
15:10:50.0595 0564 QWAVE - ok
15:10:50.0600 0564 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:10:50.0612 0564 QWAVEdrv - ok
15:10:50.0620 0564 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:10:50.0636 0564 RasAcd - ok
15:10:50.0641 0564 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:10:50.0657 0564 RasAgileVpn - ok
15:10:50.0662 0564 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\Windows\System32\rasauto.dll
15:10:50.0683 0564 RasAuto - ok
15:10:50.0688 0564 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:10:50.0704 0564 Rasl2tp - ok
15:10:50.0714 0564 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\Windows\System32\rasmans.dll
15:10:50.0739 0564 RasMan - ok
15:10:50.0747 0564 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:10:50.0771 0564 RasPppoe - ok
15:10:50.0778 0564 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:10:50.0805 0564 RasSstp - ok
15:10:50.0817 0564 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:10:50.0838 0564 rdbss - ok
15:10:50.0849 0564 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
15:10:50.0864 0564 rdpbus - ok
15:10:50.0872 0564 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
15:10:50.0889 0564 RDPDR - ok
15:10:50.0900 0564 [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:10:50.0913 0564 RdpVideoMiniport - ok
15:10:50.0925 0564 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:10:50.0943 0564 RDPWD - ok
15:10:50.0951 0564 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:10:50.0969 0564 rdyboost - ok
15:10:50.0976 0564 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:10:50.0996 0564 RemoteAccess - ok
15:10:51.0003 0564 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:10:51.0027 0564 RemoteRegistry - ok
15:10:51.0033 0564 [ B60F58F175DE20A6739194E85B035178 ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
15:10:51.0044 0564 rpcapd - ok
15:10:51.0054 0564 [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:10:51.0072 0564 RpcEptMapper - ok
15:10:51.0079 0564 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\Windows\system32\locator.exe
15:10:51.0095 0564 RpcLocator - ok
15:10:51.0110 0564 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\Windows\system32\rpcss.dll
15:10:51.0133 0564 RpcSs - ok
15:10:51.0139 0564 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:10:51.0159 0564 rspndr - ok
15:10:51.0164 0564 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\Windows\System32\drivers\vms3cap.sys
15:10:51.0178 0564 s3cap - ok
15:10:51.0188 0564 [ F702AB6181513303AB0FC8D59E52708B ] SamSs C:\Windows\system32\lsass.exe
15:10:51.0206 0564 SamSs - ok
15:10:51.0214 0564 [ 5EFBBFCC6ADAC121C8E2FE76641ED329 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP1\WNt500x64\Sandra.sys
15:10:51.0222 0564 SANDRA - ok
15:10:51.0227 0564 [ D5C3BE660BA6DB061C7D05BAFC1C4242 ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP1\RpcAgentSrv.exe
15:10:51.0236 0564 SandraAgentSrv ( UnsignedFile.Multi.Generic ) - warning
15:10:51.0236 0564 SandraAgentSrv - detected UnsignedFile.Multi.Generic (1)
15:10:51.0242 0564 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:10:51.0256 0564 sbp2port - ok
15:10:51.0263 0564 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:10:51.0285 0564 SCardSvr - ok
15:10:51.0291 0564 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:10:51.0308 0564 scfilter - ok
15:10:51.0330 0564 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\Windows\system32\schedsvc.dll
15:10:51.0369 0564 Schedule - ok
15:10:51.0376 0564 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:10:51.0393 0564 SCPolicySvc - ok
15:10:51.0400 0564 [ 12F06525912BBEF67837DE47D87C60A9 ] sdbus C:\Windows\System32\drivers\sdbus.sys
15:10:51.0417 0564 sdbus - ok
15:10:51.0426 0564 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:10:51.0443 0564 SDRSVC - ok
15:10:51.0450 0564 [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor C:\Windows\System32\drivers\sdstor.sys
15:10:51.0465 0564 sdstor - ok
15:10:51.0473 0564 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:10:51.0488 0564 secdrv - ok
15:10:51.0494 0564 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\Windows\system32\seclogon.dll
15:10:51.0512 0564 seclogon - ok
15:10:51.0518 0564 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\Windows\System32\sens.dll
15:10:51.0541 0564 SENS - ok
15:10:51.0549 0564 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:10:51.0568 0564 SensrSvc - ok
15:10:51.0575 0564 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\Windows\system32\drivers\SerCx.sys
15:10:51.0595 0564 SerCx - ok
15:10:51.0601 0564 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\Windows\System32\drivers\serenum.sys
15:10:51.0616 0564 Serenum - ok
15:10:51.0622 0564 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\Windows\System32\drivers\serial.sys
15:10:51.0637 0564 Serial - ok
15:10:51.0642 0564 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\Windows\System32\drivers\sermouse.sys
15:10:51.0656 0564 sermouse - ok
15:10:51.0669 0564 [ 289E853881E688286AD24299FCC485D8 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
15:10:51.0692 0564 ServiceLayer - ok
15:10:51.0707 0564 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\Windows\system32\sessenv.dll
15:10:51.0728 0564 SessionEnv - ok
15:10:51.0733 0564 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
15:10:51.0751 0564 sfloppy - ok
15:10:51.0763 0564 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:10:51.0790 0564 SharedAccess - ok
15:10:51.0803 0564 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:10:51.0838 0564 ShellHWDetection - ok
15:10:51.0843 0564 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
15:10:51.0855 0564 SiSRaid2 - ok
15:10:51.0860 0564 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:10:51.0872 0564 SiSRaid4 - ok
15:10:51.0879 0564 [ 0A0A0183711EFB04F9BCC32BB44471F2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:10:51.0889 0564 SkypeUpdate - ok
15:10:51.0902 0564 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:10:51.0919 0564 SNMPTRAP - ok
15:10:51.0928 0564 [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport C:\Windows\system32\drivers\spaceport.sys
15:10:51.0946 0564 spaceport - ok
15:10:51.0953 0564 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
15:10:51.0969 0564 SpbCx - ok
15:10:51.0983 0564 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\Windows\System32\spoolsv.exe
15:10:52.0012 0564 Spooler - ok
15:10:52.0077 0564 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\Windows\system32\sppsvc.exe
15:10:52.0173 0564 sppsvc - ok
15:10:52.0184 0564 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:10:52.0203 0564 srv - ok
15:10:52.0215 0564 [ C2106BB710AA34A046126AED7BCA6964 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:10:52.0238 0564 srv2 - ok
15:10:52.0246 0564 [ 9400C71F5A1A380B494B6922F007D485 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:10:52.0269 0564 srvnet - ok
15:10:52.0277 0564 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:10:52.0300 0564 SSDPSRV - ok
15:10:52.0306 0564 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:10:52.0325 0564 SstpSvc - ok
15:10:52.0333 0564 [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
15:10:52.0344 0564 ssudmdm - ok
15:10:52.0349 0564 Steam Client Service - ok
15:10:52.0358 0564 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\Windows\system32\drivers\stexstor.sys
15:10:52.0369 0564 stexstor - ok
15:10:52.0381 0564 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\Windows\System32\wiaservc.dll
15:10:52.0409 0564 stisvc - ok
15:10:52.0416 0564 [ C588BBD37B432CE3204E5765B459E6B2 ] storahci C:\Windows\system32\drivers\storahci.sys
15:10:52.0429 0564 storahci - ok
15:10:52.0434 0564 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
15:10:52.0447 0564 storflt - ok
15:10:52.0452 0564 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\Windows\system32\storsvc.dll
15:10:52.0469 0564 StorSvc - ok
15:10:52.0475 0564 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\Windows\system32\drivers\storvsc.sys
15:10:52.0487 0564 storvsc - ok
15:10:52.0493 0564 [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp C:\Windows\System32\drivers\storvsp.sys
15:10:52.0507 0564 storvsp - ok
15:10:52.0512 0564 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\Windows\system32\svsvc.dll
15:10:52.0539 0564 svsvc - ok
15:10:52.0547 0564 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\Windows\System32\drivers\swenum.sys
15:10:52.0561 0564 swenum - ok
15:10:52.0573 0564 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\Windows\System32\swprv.dll
15:10:52.0603 0564 swprv - ok
15:10:52.0623 0564 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\Windows\system32\sysmain.dll
15:10:52.0658 0564 SysMain - ok
15:10:52.0666 0564 [ E219BF7BCCFE4881B0C053C7E0B47ECC ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
15:10:52.0684 0564 SystemEventsBroker - ok
15:10:52.0690 0564 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
15:10:52.0706 0564 TabletInputService - ok
15:10:52.0713 0564 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\Windows\System32\tapisrv.dll
15:10:52.0732 0564 TapiSrv - ok
15:10:52.0762 0564 [ D192288CE5FB395F0BBAFDD1A8B5285D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:10:52.0826 0564 Tcpip - ok
15:10:52.0860 0564 [ D192288CE5FB395F0BBAFDD1A8B5285D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:10:52.0910 0564 TCPIP6 - ok
15:10:52.0918 0564 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:10:52.0934 0564 tcpipreg - ok
15:10:52.0944 0564 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:10:52.0960 0564 tdx - ok
15:10:52.0965 0564 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\Windows\System32\drivers\terminpt.sys
15:10:52.0976 0564 terminpt - ok
15:10:52.0988 0564 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\Windows\System32\termsrv.dll
15:10:53.0013 0564 TermService - ok
15:10:53.0018 0564 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\Windows\system32\themeservice.dll
15:10:53.0038 0564 Themes - ok
15:10:53.0043 0564 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER C:\Windows\system32\mmcss.dll
15:10:53.0056 0564 THREADORDER - ok
15:10:53.0062 0564 [ FF4135424A79DCC2998276D8E39C9B4D ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
15:10:53.0081 0564 TimeBroker - ok
15:10:53.0088 0564 [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM C:\Windows\system32\drivers\tpm.sys
15:10:53.0102 0564 TPM - ok
15:10:53.0108 0564 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\Windows\System32\trkwks.dll
15:10:53.0124 0564 TrkWks - ok
15:10:53.0128 0564 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:10:53.0141 0564 TrustedInstaller - ok
15:10:53.0150 0564 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:10:53.0163 0564 TsUsbFlt - ok
15:10:53.0167 0564 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
15:10:53.0180 0564 TsUsbGD - ok
15:10:53.0185 0564 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:10:53.0205 0564 tunnel - ok
15:10:53.0211 0564 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:10:53.0224 0564 uagp35 - ok
15:10:53.0230 0564 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
15:10:53.0243 0564 UASPStor - ok
15:10:53.0250 0564 [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
15:10:53.0266 0564 UCX01000 - ok
15:10:53.0274 0564 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:10:53.0295 0564 udfs - ok
15:10:53.0303 0564 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:10:53.0323 0564 UI0Detect - ok
15:10:53.0329 0564 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:10:53.0343 0564 uliagpkx - ok
15:10:53.0348 0564 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\Windows\System32\drivers\umbus.sys
15:10:53.0361 0564 umbus - ok
15:10:53.0365 0564 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\Windows\System32\drivers\umpass.sys
15:10:53.0378 0564 UmPass - ok
15:10:53.0384 0564 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\Windows\System32\umrdp.dll
15:10:53.0402 0564 UmRdpService - ok
15:10:53.0413 0564 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\Windows\System32\upnphost.dll
15:10:53.0438 0564 upnphost - ok
15:10:53.0443 0564 [ 907F50B8695DAA65A9445D27AD306E65 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
15:10:53.0465 0564 upperdev - ok
15:10:53.0471 0564 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\System32\Drivers\usbaapl64.sys
15:10:53.0476 0564 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
15:10:53.0476 0564 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
15:10:53.0482 0564 [ 3FBE0784E42E7BA93FCC5201D2BAFE23 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:10:53.0505 0564 usbaudio - ok
15:10:53.0512 0564 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
15:10:53.0525 0564 usbccgp - ok
15:10:53.0531 0564 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\Windows\System32\drivers\usbcir.sys
15:10:53.0555 0564 usbcir - ok
15:10:53.0560 0564 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci C:\Windows\System32\drivers\usbehci.sys
15:10:53.0572 0564 usbehci - ok
15:10:53.0583 0564 [ FBB6794E3BBAD92D66D59D206C1F849F ] usbhub C:\Windows\System32\drivers\usbhub.sys
15:10:53.0608 0564 usbhub - ok
15:10:53.0622 0564 [ B7A948501424805571BF562BB0BFE31D ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
15:10:53.0644 0564 USBHUB3 - ok
15:10:53.0649 0564 [ 325F6179009B5A7F6118951A5BA422AB ] usbohci C:\Windows\System32\drivers\usbohci.sys
15:10:53.0661 0564 usbohci - ok
15:10:53.0666 0564 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\Windows\System32\drivers\usbprint.sys
15:10:53.0681 0564 usbprint - ok
15:10:53.0685 0564 [ A9858597B6DB695F78A37F6755A6FF98 ] usbscan C:\Windows\System32\drivers\usbscan.sys
15:10:53.0698 0564 usbscan - ok
15:10:53.0703 0564 [ 72334EC4B3FD4EB270623E32E701B57D ] usbser C:\Windows\system32\drivers\usbser.sys
15:10:53.0716 0564 usbser - ok
15:10:53.0720 0564 [ 3F7498527B48657091C355F683BEB0DD ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
15:10:53.0744 0564 UsbserFilt - ok
15:10:53.0751 0564 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
15:10:53.0779 0564 USBSTOR - ok
15:10:53.0784 0564 [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
15:10:53.0798 0564 usbuhci - ok
15:10:53.0806 0564 [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
15:10:53.0825 0564 USBXHCI - ok
15:10:53.0831 0564 [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc C:\Windows\system32\lsass.exe
15:10:53.0844 0564 VaultSvc - ok
15:10:53.0850 0564 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:10:53.0863 0564 vdrvroot - ok
15:10:53.0878 0564 [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds C:\Windows\System32\vds.exe
15:10:53.0906 0564 vds - ok
15:10:53.0913 0564 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
15:10:53.0928 0564 VerifierExt - ok
15:10:53.0938 0564 [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
15:10:53.0961 0564 vhdmp - ok
15:10:53.0966 0564 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\Windows\system32\drivers\viaide.sys
15:10:53.0979 0564 viaide - ok
15:10:53.0986 0564 [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid C:\Windows\System32\drivers\Vid.sys
15:10:54.0001 0564 Vid - ok
15:10:54.0010 0564 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\Windows\system32\drivers\vmbus.sys
15:10:54.0025 0564 vmbus - ok
15:10:54.0031 0564 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
15:10:54.0044 0564 VMBusHID - ok
15:10:54.0050 0564 [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr C:\Windows\System32\drivers\vmbusr.sys
15:10:54.0065 0564 vmbusr - ok
15:10:54.0074 0564 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
15:10:54.0093 0564 vmicheartbeat - ok
15:10:54.0099 0564 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
15:10:54.0114 0564 vmickvpexchange - ok
15:10:54.0121 0564 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\Windows\System32\ICSvc.dll
15:10:54.0137 0564 vmicrdv - ok
15:10:54.0145 0564 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\Windows\System32\ICSvc.dll
15:10:54.0160 0564 vmicshutdown - ok
15:10:54.0169 0564 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\Windows\System32\ICSvc.dll
15:10:54.0184 0564 vmictimesync - ok
15:10:54.0191 0564 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\Windows\System32\ICSvc.dll
15:10:54.0206 0564 vmicvss - ok
15:10:54.0211 0564 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:10:54.0389 0564 volmgr - ok
15:10:54.0398 0564 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:10:54.0417 0564 volmgrx - ok
15:10:54.0425 0564 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:10:54.0444 0564 volsnap - ok
15:10:54.0449 0564 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\Windows\System32\drivers\vpci.sys
15:10:54.0461 0564 vpci - ok
15:10:54.0465 0564 [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp C:\Windows\System32\drivers\vpcivsp.sys
15:10:54.0478 0564 vpcivsp - ok
15:10:54.0486 0564 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:10:54.0500 0564 vsmraid - ok
15:10:54.0520 0564 [ EA658570314042C914964FC72AB50E6B ] VSS C:\Windows\system32\vssvc.exe
15:10:54.0561 0564 VSS - ok
15:10:54.0571 0564 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
15:10:54.0590 0564 VSTXRAID - ok
15:10:54.0595 0564 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:10:54.0608 0564 vwifibus - ok
15:10:54.0617 0564 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\Windows\system32\w32time.dll
15:10:54.0640 0564 W32Time - ok
15:10:54.0645 0564 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\Windows\System32\drivers\wacompen.sys
15:10:54.0660 0564 WacomPen - ok
15:10:54.0665 0564 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:10:54.0680 0564 Wanarp - ok
15:10:54.0683 0564 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:10:54.0695 0564 Wanarpv6 - ok
15:10:54.0718 0564 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\Windows\system32\wbengine.exe
15:10:54.0757 0564 wbengine - ok
15:10:54.0765 0564 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:10:54.0788 0564 WbioSrvc - ok
15:10:54.0798 0564 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
15:10:54.0818 0564 Wcmsvc - ok
15:10:54.0827 0564 [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:10:54.0849 0564 wcncsvc - ok
15:10:54.0854 0564 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:10:54.0869 0564 WcsPlugInService - ok
15:10:54.0874 0564 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\Windows\system32\drivers\wd.sys
15:10:54.0885 0564 Wd - ok
15:10:54.0891 0564 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
15:10:54.0903 0564 WdBoot - ok
15:10:54.0917 0564 [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:10:54.0947 0564 Wdf01000 - ok
15:10:54.0956 0564 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
15:10:54.0975 0564 WdFilter - ok
15:10:54.0981 0564 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:10:55.0004 0564 WdiServiceHost - ok
15:10:55.0009 0564 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:10:55.0029 0564 WdiSystemHost - ok
15:10:55.0035 0564 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\Windows\System32\webclnt.dll
15:10:55.0057 0564 WebClient - ok
15:10:55.0064 0564 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:10:55.0084 0564 Wecsvc - ok
15:10:55.0089 0564 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:10:55.0122 0564 wercplsupport - ok
15:10:55.0127 0564 [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc C:\Windows\System32\WerSvc.dll
15:10:55.0152 0564 WerSvc - ok
15:10:55.0158 0564 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
15:10:55.0170 0564 WFPLWFS - ok
15:10:55.0179 0564 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\Windows\System32\wiarpc.dll
15:10:55.0197 0564 WiaRpc - ok
15:10:55.0204 0564 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:10:55.0218 0564 WIMMount - ok
15:10:55.0221 0564 WinDefend - ok
15:10:55.0240 0564 [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
15:10:55.0266 0564 WinHttpAutoProxySvc - ok
15:10:55.0276 0564 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:10:55.0294 0564 Winmgmt - ok
15:10:55.0334 0564 WinRing0_1_2_0 - ok
15:10:55.0376 0564 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\Windows\system32\WsmSvc.dll
15:10:55.0450 0564 WinRM - ok
15:10:55.0461 0564 [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:10:55.0484 0564 WinUsb - ok
15:10:55.0508 0564 [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc C:\Windows\System32\wlansvc.dll
15:10:55.0547 0564 WlanSvc - ok
15:10:55.0577 0564 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc C:\Windows\system32\wlidsvc.dll
15:10:55.0626 0564 wlidsvc - ok
15:10:55.0632 0564 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
15:10:55.0644 0564 WmiAcpi - ok
15:10:55.0653 0564 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:10:55.0670 0564 wmiApSrv - ok
15:10:55.0674 0564 WMPNetworkSvc - ok
15:10:55.0682 0564 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
15:10:55.0695 0564 wpcfltr - ok
15:10:55.0703 0564 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:10:55.0720 0564 WPCSvc - ok
15:10:55.0726 0564 [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:10:55.0745 0564 WPDBusEnum - ok
15:10:55.0750 0564 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
15:10:55.0763 0564 WpdUpFltr - ok
15:10:55.0767 0564 [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:10:55.0780 0564 ws2ifsl - ok
15:10:55.0785 0564 [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc C:\Windows\System32\wscsvc.dll
15:10:55.0802 0564 wscsvc - ok
15:10:55.0806 0564 WSearch - ok
15:10:55.0839 0564 [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService C:\Windows\System32\WSService.dll
15:10:55.0910 0564 WSService - ok
15:10:55.0950 0564 [ A8484C0CB54DB48180FB7CA00F1C3F8F ] wuauserv C:\Windows\system32\wuaueng.dll
15:10:56.0019 0564 wuauserv - ok
15:10:56.0027 0564 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:10:56.0043 0564 WudfPf - ok
15:10:56.0050 0564 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
15:10:56.0066 0564 WUDFRd - ok
15:10:56.0074 0564 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys
15:10:56.0087 0564 WUDFSensorLP - ok
15:10:56.0093 0564 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:10:56.0110 0564 wudfsvc - ok
15:10:56.0117 0564 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
15:10:56.0133 0564 WUDFWpdFs - ok
15:10:56.0138 0564 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp C:\Windows\system32\DRIVERS\WUDFRd.sys
15:10:56.0152 0564 WUDFWpdMtp - ok
15:10:56.0162 0564 [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc C:\Windows\System32\wwansvc.dll
15:10:56.0183 0564 WwanSvc - ok
15:10:56.0194 0564 [ 537319A784278409FF5353515A39DE38 ] yukonw8 C:\Windows\system32\DRIVERS\yk63x64.sys
15:10:56.0207 0564 yukonw8 - ok
15:10:56.0218 0564 ================ Scan global ===============================
15:10:56.0223 0564 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
15:10:56.0231 0564 [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll
15:10:56.0241 0564 [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
15:10:56.0252 0564 [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe
15:10:56.0260 0564 [Global] - ok
15:10:56.0261 0564 ================ Scan MBR ==================================
15:10:56.0264 0564 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:10:56.0383 0564 \Device\Harddisk0\DR0 - ok
15:10:56.0387 0564 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
15:10:57.0073 0564 \Device\Harddisk1\DR1 - ok
15:10:57.0073 0564 ================ Scan VBR ==================================
15:10:57.0077 0564 [ 808BB109FA727A8AD45A3EA0D6090629 ] \Device\Harddisk0\DR0\Partition1
15:10:57.0079 0564 \Device\Harddisk0\DR0\Partition1 - ok
15:10:57.0083 0564 [ 9A9226B5081B928CCF799BFC7933320A ] \Device\Harddisk0\DR0\Partition2
15:10:57.0085 0564 \Device\Harddisk0\DR0\Partition2 - ok
15:10:57.0089 0564 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
15:10:57.0089 0564 \Device\Harddisk1\DR1\Partition1 - ok
15:10:57.0096 0564 [ BBB5C1551E141C25B6302ABBC6A95D3E ] \Device\Harddisk1\DR1\Partition2
15:10:57.0098 0564 \Device\Harddisk1\DR1\Partition2 - ok
15:10:57.0099 0564 ============================================================
15:10:57.0099 0564 Scan finished
15:10:57.0099 0564 ============================================================
15:10:57.0111 5948 Detected object count: 6
15:10:57.0111 5948 Actual detected object count: 6
15:11:35.0851 5948 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
15:11:35.0851 5948 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:11:35.0851 5948 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:11:35.0851 5948 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:11:35.0853 5948 BRA_Scheduler ( UnsignedFile.Multi.Generic ) - skipped by user
15:11:35.0853 5948 BRA_Scheduler ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:11:35.0855 5948 ClassicShellService ( UnsignedFile.Multi.Generic ) - skipped by user
15:11:35.0855 5948 ClassicShellService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:11:35.0857 5948 SandraAgentSrv ( UnsignedFile.Multi.Generic ) - skipped by user
15:11:35.0857 5948 SandraAgentSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:11:35.0859 5948 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
15:11:35.0859 5948 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip

Alt 13.03.2013, 18:25   #10
markusg
/// Malware-holic
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



Hi, macht nichts.
Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 14.03.2013, 05:44   #11
mm939
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



leider funktioniert das Programm nicht unter Win 8 64bit

Alt 14.03.2013, 14:42   #12
markusg
/// Malware-holic
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



sorry
http://www.trojaner-board.de/125889-...en-posten.html
malwarebytes Logs mit Fundne posten bitte
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 14.03.2013, 15:01   #13
mm939
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



Malwarebytes Anti-Malware 1.70.0.1100
Malwarebytes : Free Anti-Malware download

Datenbank Version: v2013.03.14.06

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16484
Mario´s :: MARIO [Administrator]

14.03.2013 15:58:13
mbam-log-2013-03-14 (15-58-13).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 212275
Laufzeit: 2 Minute(n), 46 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Alt 15.03.2013, 12:39   #14
markusg
/// Malware-holic
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



Hi,

lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 15.03.2013, 14:14   #15
mm939
 
Skype Trojaner/Malware - Standard

Skype Trojaner/Malware



7-Zip 9.20 (x64 edition) Igor Pavlov 23.12.2012 4,53MB 9.20.00.0 notwendig
8GadgetPack Helmut Buhler 23.12.2012 34,8MB 4.1.0 unnötig
A1 WLAN Box Wechsel A1 Telekom Austria AG 03.02.2013 30,3MB 3.2.0.69 unnötig
ACE COMBAT ASSAULT HORIZON Enhanced Edition 27.01.2013 11,3GB unnötig
Adobe Flash Player 11 Plugin Adobe Systems Incorporated 12.03.2013 6,00MB 11.6.602.180 notwendig
Adobe Reader XI (11.0.02) - Deutsch Adobe Systems Incorporated 03.03.2013 133MB 11.0.02 notwendig
Adobe Shockwave Player 11.6 Adobe Systems, Inc 23.12.2012 34,8MB 11.6.8.638 notwendig
Allgemeine Runtime Files (x86) Sereby Corporation 23.12.2012 39,3MB 1.0.3.5 notwendig
AMD Catalyst Install Manager Advanced Micro Devices, Inc. 18.01.2013 26,3MB 8.0.903.0 notwendig
Apple Application Support Apple Inc. 28.02.2013 62,7MB 2.3.3 notwendig
Apple Mobile Device Support Apple Inc. 28.02.2013 25,2MB 6.1.0.13 notwendig
Apple Software Update Apple Inc. 23.12.2012 2,38MB 2.1.3.127 notwendig
Arma 2: Operation Arrowhead Demo Bohemia Interactive 02.03.2013 unnötig
Biet-O-Matic v2.14.12 BOM Development Team 09.01.2013 6,83MB 2.14.12 notwendig
Big Solitaires 3D 1.4 Felix Jose Cladellas 24.12.2012 unnötig
Bigfoot Networks Killer Network Manager Bigfoot Networks 24.12.2012 64,7MB 6.1.0.440 notwendig
BitTorrent BitTorrent Inc. 04.01.2013 7.7.3.28706 notwendig
Bonjour Apple Inc. 23.12.2012 2,00MB 3.0.0.10 unbekannt
BRAdmin Professional 3 Brother 23.12.2012 3.47.0005 notwendig
Brother BRAdmin Light 1.22.0003 Brother 23.12.2012 1.22.0003 notwendig
Call of Duty: Black Ops II - Multiplayer 23.12.2012 notwendig
CCleaner Piriform 25.02.2013 3.28 notwendig
CDBurnerXP CDBurnerXP 23.12.2012 13,1MB 4.5.0.3685 notwendig
Classic Shell IvoSoft 01.01.2013 8,38MB 3.6.5 notwendig
Core Temp 1.0 RC4 Alcpu 03.01.2013 2,44MB 1.0 notwendig
DAEMON Tools Lite DT Soft Ltd 27.01.2013 4.46.1.0327 notwendig
DirectX 9.0c Extra Files (x86, x64) Sereby Corporation 23.12.2012 224MB 1.10.06.0 notwendig
DirectX for Managed Code Sereby Corporation 23.12.2012 1.0.0.0 notwendig
Dropbox Dropbox, Inc. 23.12.2012 1.6.10 notwendig
Free Studio version 5.9.0.1212 DVDVideoSoft Ltd. 26.12.2012 550MB 5.9.0.1212 notwendig
Google Chrome Google Inc. 09.03.2013 25.0.1364.172 notwendig
iTunes Apple Inc. 28.02.2013 187MB 11.0.2.26 notwendig
Java 7 Update 10 Oracle 23.12.2012 130MB 7.0.100 notwendig
Java 7 Update 10 (64-bit) Oracle 23.12.2012 127MB 7.0.100 notwendig
Kaspersky Internet Security 2013 Kaspersky Lab 12.03.2013 13.0.1.4190 notwendig
Logitech Gaming Software 8.40 Logitech Inc. 27.12.2012 89,7MB 8.40.83 unnötig
Malwarebytes Anti-Malware Version 1.70.0.1100 Malwarebytes Corporation 14.03.2013 18,5MB 1.70.0.1100 notwendig
Microsoft .NET Framework 1.1 23.12.2012 unbekannt
Microsoft .NET Framework 1.1 23.12.2012 unbekannt
Microsoft Office Home and Student 2010 Microsoft Corporation 23.12.2012 14.0.6029.1000 notwendig
Microsoft Silverlight Microsoft Corporation 14.03.2013 100MB 5.1.20125.0 unbekannt
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 23.12.2012 1,92MB 3.1.0000 unbekannt
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 23.12.2012 3,22MB 8.0.61001 unbekannt
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 23.12.2012 6,83MB 8.0.61000 unbekannt
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 27.12.2012 12,4MB 9.0.30729 unbekannt
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 23.12.2012 13,2MB 9.0.30729.6161 unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 07.02.2013 8,20MB 9.0.30729 unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 23.12.2012 10,1MB 9.0.30729.6161 unbekannt
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 23.12.2012 13,8MB 10.0.40219 unbekannt
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 23.12.2012 11,1MB 10.0.40219 unbekannt
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 Microsoft Corporation 23.12.2012 20,4MB 11.0.50727.1 unbekannt
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 Microsoft Corporation 23.12.2012 17,3MB 11.0.50727.1 unbekannt
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) Microsoft Corporation 23.12.2012
Mozilla Firefox 19.0.2 (x86 de) Mozilla 09.03.2013 43,6MB 19.0.2 notwendig
Mozilla Maintenance Service Mozilla 09.03.2013 330KB 19.0.2 unbekannt
MPC-HC 1.6.5.6366 (64-bit) MPC-HC Team 24.12.2012 23,8MB 1.6.5.6366 unbekannt
MyFreeCodec 25.12.2012 unbekannt
Nokia Connectivity Cable Driver Nokia 07.03.2013 3,96MB 7.1.101.0 unnötig
Nokia Suite Nokia 07.03.2013 3.7.22.0 unnötig
PC Connectivity Solution Nokia 07.03.2013 21,2MB 12.0.76.0 unbekannt
Razer Copperhead Razer USA Ltd. 29.12.2012 6.10 notwendig
Recuva Piriform 20.02.2013 1.45 unbekannt
ROCCAT Isku Keyboard Driver Roccat GmbH 27.12.2012 13,0MB notwendig
Samsung Kies Samsung Electronics Co., Ltd. 25.12.2012 184MB 2.5.0.12114_1 notwendig
SAMSUNG USB Driver for Mobile Phones SAMSUNG Electronics Co., Ltd. 04.03.2013 24,1MB 1.5.18.0 notwendig
SiSoftware Sandra Lite 2013.SP1 SiSoftware 03.01.2013 94,4MB 19.23.2013.1 unnötig
Skype™ 6.2 Skype Technologies S.A. 12.03.2013 20,2MB 6.2.106 notwendig
Steam Valve Corporation 23.12.2012 35,4MB 1.0.0.0 notwendig
Thrustmaster Force Feedback Driver Thrustmaster 05.02.2013 2.FFD.2009 unnötig
VLC media player 2.0.5 VideoLAN 23.12.2012 2.0.5 notwendig
Win8 x64Components v1.3.4 Shark007 24.12.2012 37,0MB 1.3.4
Windows Live Essentials Microsoft Corporation 23.12.2012 16.4.3505.0912 notwendig
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) Nokia 07.03.2013 05/31/2012 7.1.2.0 unnötig
WinPcap 4.1.2 CACE Technologies 23.02.2013 4.1.0.2001 unbekannt
WinRAR 4.20 (64-Bit) win.rar GmbH 12.02.2013 4.20.0 notwendig
World of Tanks Wargaming.net 07.02.2013 notwendig
µTorrent BitTorrent Inc. 23.12.2012 3.2.3.28705 notwendig

Antwort

Themen zu Skype Trojaner/Malware
7-zip, adobe reader xi, antivirus, aswrvrt.sys, autorun, bho, black, bonjour, converter, desktop, downloader, error, feedback, firefox, flash player, google, helper, homepage, iexplore.exe, install.exe, launch, logfile, mozilla, mp3, msvcrt, popup, registry, richtlinie, rundll, samsung kies, scan, security, senden, software, tarma, windows



Ähnliche Themen: Skype Trojaner/Malware


  1. Skype Malware/ Spam
    Plagegeister aller Art und deren Bekämpfung - 16.08.2015 (22)
  2. Skype Virus "Your skype does not support extended icons"
    Log-Analyse und Auswertung - 10.10.2014 (15)
  3. Windows 7 - Skype Update - Umleitung auf skype.gmw.cn
    Alles rund um Windows - 12.08.2014 (9)
  4. Skype Zertifikat Problem a248.e.akamai.net wegen Werbung in Skype?
    Plagegeister aller Art und deren Bekämpfung - 05.03.2014 (3)
  5. Skype.exe wird ausgeführt obwohl Skype gar nicht installiert ist
    Plagegeister aller Art und deren Bekämpfung - 28.01.2014 (4)
  6. Avira Meldet "C:\WINDOWS\system32\Skype.scr\Skype.exe" und kommt immer wieder
    Plagegeister aller Art und deren Bekämpfung - 14.05.2013 (11)
  7. GVU Trojaner / Skype. dat
    Log-Analyse und Auswertung - 10.04.2013 (9)
  8. Probleme mit Skype, Dev-C ++ und Internet, z.B. friert der Bildschirm während der Benutzung von Skype ein
    Plagegeister aller Art und deren Bekämpfung - 21.03.2013 (17)
  9. TR/Crypt.ZPACK.Gen2 Virus in Program Files (x86)/Skype/Phone/Skype.exe
    Plagegeister aller Art und deren Bekämpfung - 10.03.2013 (1)
  10. TR/Crypt.ZPACK.Gen 2 in C:\Programm Files (x86)\Skype\Phone\Skype.exe
    Log-Analyse und Auswertung - 27.02.2013 (15)
  11. Avira meldet: 'TR/Crypt.ZPACK.Gen2' [trojan] in der Datei 'C:\Program Files\Skype\Phone\Skype.exe'
    Plagegeister aller Art und deren Bekämpfung - 08.12.2012 (2)
  12. Skype Trojaner
    Plagegeister aller Art und deren Bekämpfung - 30.09.2012 (1)
  13. TR/Crypt.ZPACK.Gen2 in C:\Program Files\Skype\Phone\Skype.exe
    Plagegeister aller Art und deren Bekämpfung - 27.07.2012 (2)
  14. Avira meldet skype.exe als Malware - Rechner deutlich langsamer - Logfiles fehlerfrei
    Plagegeister aller Art und deren Bekämpfung - 15.01.2012 (2)
  15. TR/Crypt.ZPACK.Gen2 - in Programme/Skype/Phone/Skype.exe
    Plagegeister aller Art und deren Bekämpfung - 12.10.2011 (9)
  16. TR/Crypt.XPACK.Gen in C:\Programme\Skype\Phone\Skype.exe
    Plagegeister aller Art und deren Bekämpfung - 24.10.2010 (2)
  17. Malware.Packer.Gen nach Skype Installation
    Plagegeister aller Art und deren Bekämpfung - 30.09.2010 (1)

Zum Thema Skype Trojaner/Malware - Hallo, ich habe folgenden Link per Skype bekommen: hab ich dir das foto schon gezeigt? hxxp://www.goo.gl/EcCSG?skype_image=IMG0540250.JPG Habe das OTL Tool ausgeführt und die zwei TXT Dateien hat er mir angezeigt. - Skype Trojaner/Malware...
Archiv
Du betrachtest: Skype Trojaner/Malware auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.