| |
| |||||||
Log-Analyse und Auswertung: PC hängt sich ständig beim gaming auf! Verdacht auf Virus!Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
17.03.2013, 12:52
| #1 |
| |  PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Hallo Leute, Seit geraumer Zeit hängt sich mein Rechner beim spielen von PC-Games auf. Das Problem zeigt sich so: Ich spiele ganze normal Battlefield 3 und skype nebenbei mit einem Freund. Dann bleibt Battlefield 3 plötzlich stehen, aber der Ton und Skype laufen normal weiter. Per Windows-Taste komme ich noch auf den Desktop und mit dem Affengriff kann ich grade noch so den Taskmanager öffnen. Mehr passiert dann auch nicht mehr. Dann setzt auf der Ton von Battlefield aus. Skype läuft trotzdem noch. Nach 1-2 Minuten hängt auch Skype und das ganze System. Ich habe mich auch schon an das pcgh-forum gewendet, da ich erst vermutete die Hardware könnte daran Schuld sein. Doch die Hardware läuft eigentlich problemlos. Es treten auch keine Überhitzungen auf. Erst nach ein paar Neustarts läuft das System wieder stabil. Beim Booten kommt manchmal auch eine Error-Meldung, "Disk read failure. Press ctrl+alt+delete to reboot". Wie gesagt, das System hängt sich nur beim "zocken" auf. Beim Installieren von Spielen oder größeren Anwendungen hängt er auch ab und zu. Bei den "Hängern" bleibt denn 2-5 Minuten lang das gesamt System stehen und dann läuft er wieder ganz normal weiter. Und das ein paar mal während der Installation. Gelegentlich kommt es dabei auch zu willkürlichen Neustarts. Ich weiß absolut nicht mehr weiter. Ich als Gamer bin mit meinem Latein am Ende. Beim ausführen des GMER-Scans kommt folgende Meldung: "C:\Windows\system32\config\system: Der Prozess kann nicht auf die Datei zureifen, da sie von einem anderen Prozess verwendet wird." naja hier trotzdem der GMER-Log: GMER 2.1.19155 - hxxp://www.gmer.net Rootkit scan 2013-03-17 11:59:50 Windows 6.1.7600 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2 SAMSUNG_HD155UI rev.1AQ10001 1397,27GB Running: gmer_2.1.19155.exe; Driver: C:\Users\...\AppData\Local\Temp\uwldypow.sys ---- User code sections - GMER 2.1 ---- .text C:\Windows\SysWOW64\PnkBstrA.exe[1952] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322 0000000072791a22 2 bytes [79, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1952] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496 0000000072791ad0 2 bytes [79, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1952] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552 0000000072791b08 2 bytes [79, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1952] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730 0000000072791bba 2 bytes [79, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1952] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762 0000000072791bda 2 bytes [79, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1952] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076f01465 2 bytes [F0, 76] .text C:\Windows\SysWOW64\PnkBstrA.exe[1952] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076f014bb 2 bytes [F0, 76] .text ... * 2 .text C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe[1008] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076f01465 2 bytes [F0, 76] .text C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe[1008] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076f014bb 2 bytes [F0, 76] .text ... * 2 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4796] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076f01465 2 bytes [F0, 76] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[4796] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076f014bb 2 bytes [F0, 76] .text ... * 2 ? C:\Windows\system32\mssprxy.dll [4796] entry point in ".rdata" section 000000006e6271e6 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 0000000076f4f941 7 bytes {MOV EDX, 0x690228; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 0000000076f4fb85 7 bytes {MOV EDX, 0x690268; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 0000000076f4fbb5 7 bytes {MOV EDX, 0x6901a8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 0000000076f4fbcd 7 bytes {MOV EDX, 0x690128; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 0000000076f4fbe5 7 bytes {MOV EDX, 0x690328; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 0000000076f4fc15 7 bytes {MOV EDX, 0x690368; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 0000000076f4fc95 7 bytes {MOV EDX, 0x6902e8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 0000000076f4fcad 7 bytes {MOV EDX, 0x6902a8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 0000000076f4fcf9 7 bytes {MOV EDX, 0x690068; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 0000000076f4fdf1 7 bytes {MOV EDX, 0x6900a8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 0000000076f50049 7 bytes {MOV EDX, 0x690028; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 0000000076f51055 7 bytes {MOV EDX, 0x6901e8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 0000000076f510cd 7 bytes {MOV EDX, 0x690168; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 0000000076f512d1 7 bytes {MOV EDX, 0x6900e8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076f01465 2 bytes [F0, 76] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2720] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076f014bb 2 bytes [F0, 76] .text ... * 2 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 0000000076f4f941 7 bytes {MOV EDX, 0x101ce28; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 0000000076f4fb85 7 bytes {MOV EDX, 0x101ce68; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 0000000076f4fbb5 7 bytes {MOV EDX, 0x101cda8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 0000000076f4fbcd 7 bytes {MOV EDX, 0x101cd28; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 0000000076f4fbe5 7 bytes {MOV EDX, 0x101cf28; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 0000000076f4fc15 7 bytes {MOV EDX, 0x101cf68; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 0000000076f4fc95 7 bytes {MOV EDX, 0x101cee8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 0000000076f4fcad 7 bytes {MOV EDX, 0x101cea8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 0000000076f4fcf9 7 bytes {MOV EDX, 0x101cc68; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 0000000076f4fdf1 7 bytes {MOV EDX, 0x101cca8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 0000000076f50049 7 bytes {MOV EDX, 0x101cc28; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 0000000076f51055 7 bytes {MOV EDX, 0x101cde8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 0000000076f510cd 7 bytes {MOV EDX, 0x101cd68; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 0000000076f512d1 7 bytes {MOV EDX, 0x101cce8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076f01465 2 bytes [F0, 76] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[2012] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076f014bb 2 bytes [F0, 76] .text ... * 2 .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 0000000076f4f941 7 bytes {MOV EDX, 0x804628; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 0000000076f4fb85 7 bytes {MOV EDX, 0x804668; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 0000000076f4fbb5 7 bytes {MOV EDX, 0x8045a8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 0000000076f4fbcd 7 bytes {MOV EDX, 0x804528; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 0000000076f4fbe5 7 bytes {MOV EDX, 0x804728; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 0000000076f4fc15 7 bytes {MOV EDX, 0x804768; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 0000000076f4fc95 7 bytes {MOV EDX, 0x8046e8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 0000000076f4fcad 7 bytes {MOV EDX, 0x8046a8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 0000000076f4fcf9 7 bytes {MOV EDX, 0x804468; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 0000000076f4fdf1 7 bytes {MOV EDX, 0x8044a8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 0000000076f50049 7 bytes {MOV EDX, 0x804428; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 0000000076f51055 7 bytes {MOV EDX, 0x8045e8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 0000000076f510cd 7 bytes {MOV EDX, 0x804568; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 0000000076f512d1 7 bytes {MOV EDX, 0x8044e8; JMP RDX} .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076f01465 2 bytes [F0, 76] .text C:\Program Files (x86)\Google\Chrome\Application\chrome.exe[3844] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076f014bb 2 bytes [F0, 76] .text ... * 2 ---- EOF - GMER 2.1 ---- _____________________________________________________________________________ OTL-Log: OTL logfile created on: 17.03.2013 11:42:47 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\\Downloads 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 8,00 Gb Total Physical Memory | 6,63 Gb Available Physical Memory | 82,87% Memory free 15,99 Gb Paging File | 14,34 Gb Available in Paging File | 89,67% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 420,60 Gb Total Space | 267,28 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Drive D: | 976,56 Gb Total Space | 806,75 Gb Free Space | 82,61% Space Free | Partition Type: NTFS Drive E: | 6,51 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Computer Name: -PC | User Name: | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013.03.17 11:42:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\\Downloads\OTL.exe PRC - [2013.03.14 16:55:48 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2013.03.14 16:08:53 | 001,103,768 | ---- | M] (Spotify Ltd) -- C:\Users\Max\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe PRC - [2013.03.03 16:19:25 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2013.03.03 16:19:06 | 000,385,248 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2013.03.03 16:19:06 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2012.11.29 01:10:08 | 000,661,304 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech Gaming Software\Applets\LCDMedia.exe PRC - [2010.01.22 12:29:40 | 000,106,496 | ---- | M] (NEC Electronics Corporation) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe PRC - [2009.09.10 17:01:48 | 000,505,152 | ---- | M] (D-Link Corp.) -- C:\Program Files (x86)\D-Link\DWA-131 revA\wirelesscm.exe PRC - [2009.07.07 13:13:38 | 000,241,789 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe PRC - [2009.03.30 15:32:40 | 000,032,768 | R--- | M] () -- C:\Windows\DAODx.exe PRC - [2009.02.23 04:43:56 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe PRC - [2008.06.26 19:09:36 | 000,167,936 | ---- | M] () -- C:\Program Files (x86)\D-Link\DWA-131 revA\WlanWpsSvc.exe ========== Modules (No Company Name) ========== MOD - [2009.08.06 16:15:10 | 000,376,832 | ---- | M] () -- C:\Program Files (x86)\D-Link\DWA-131 revA\WlanDll.dll MOD - [2009.07.30 14:54:04 | 000,170,496 | ---- | M] () -- C:\Windows\SysWOW64\APOMngr.DLL MOD - [2009.03.30 15:32:40 | 000,032,768 | R--- | M] () -- C:\Windows\DAODx.exe MOD - [2009.02.06 18:52:24 | 000,073,728 | ---- | M] () -- C:\Windows\SysWOW64\CmdRtr.DLL ========== Services (SafeList) ========== SRV:64bit: - [2012.12.19 20:56:00 | 000,240,640 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2012.12.19 15:32:12 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service) SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2013.03.14 16:55:48 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2013.03.03 16:19:25 | 000,086,752 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2013.03.03 16:19:06 | 000,110,816 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2013.03.03 11:33:24 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service) SRV - [2013.03.03 11:32:39 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service) SRV - [2013.02.25 07:39:32 | 000,543,144 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2013.02.07 13:10:08 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2011.08.05 00:25:50 | 000,091,984 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2009.02.23 04:43:56 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService) SRV - [2008.06.26 19:09:36 | 000,167,936 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\D-Link\DWA-131 revA\WlanWpsSvc.exe -- (WlanWpsSvc) ========== Driver Services (SafeList) ========== DRV:64bit: - [2013.03.03 17:06:25 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2013.03.03 16:19:34 | 000,129,216 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb) DRV:64bit: - [2013.03.03 16:19:34 | 000,027,800 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr) DRV:64bit: - [2013.03.03 16:19:33 | 000,099,912 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:64bit: - [2012.12.19 21:48:48 | 011,278,336 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2012.12.19 20:32:54 | 000,552,960 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2012.11.06 12:11:52 | 000,096,256 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService) DRV:64bit: - [2012.03.01 07:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2011.03.11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.03.17 11:24:00 | 000,401,696 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:64bit: - [2010.03.02 12:30:20 | 001,301,504 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService) DRV:64bit: - [2010.02.18 09:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64) DRV:64bit: - [2010.01.22 12:22:22 | 000,180,224 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc) DRV:64bit: - [2010.01.22 12:22:18 | 000,077,824 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub) DRV:64bit: - [2009.11.24 02:38:00 | 000,016,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid) DRV:64bit: - [2009.11.24 02:37:50 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum) DRV:64bit: - [2009.10.29 09:14:38 | 000,115,824 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID) DRV:64bit: - [2009.10.19 14:45:54 | 000,039,480 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter) DRV:64bit: - [2009.08.20 11:00:10 | 000,664,576 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTL8192su.sys -- (RTL8192su) DRV:64bit: - [2009.07.31 04:40:34 | 000,025,600 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VMfilt64.sys -- (VMfilt) DRV:64bit: - [2009.07.16 04:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor) DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.07.01 20:54:54 | 000,030,728 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGPBTDD.sys -- (LGPBTDD) DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV - [2013.01.28 15:42:00 | 000,030,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 -- (AIDA64Driver) DRV - [2012.04.09 09:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Programme\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2) DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.3: C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll (ESN Social Software AB) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft) ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google  riginalQueryForSuggestion}{google:assistedQueryStats}{google:se archFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParam eter} CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\pdf.dll CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll CHR - plugin: Uplay PC (Enabled) = C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Programme\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices) O2 - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices) O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.) O4:64bit: - HKLM..\Run: [RunDLLEntry] C:\Windows\SysNative\AmbRunE.DLL (Creative Technology Ltd.) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.) O4 - HKLM..\Run: [VolPanel] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe (Creative Technology Ltd) O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Max\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{15627F9A-E6E5-475D-988A-0097CBDD9F78}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E320C894-2563-4868-80F9-96EB500B637B}: DhcpNameServer = 192.168.1.1 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18:64bit: - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Programme\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) O18:64bit: - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Programme\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) O18 - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) O18 - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011.10.27 13:34:24 | 000,000,044 | R--- | M] () - E:\autorun.inf -- [ UDF ] O33 - MountPoints2\{860ed83e-8414-11e2-8e09-bcaec5288f25}\Shell - "" = AutoRun O33 - MountPoints2\{860ed83e-8414-11e2-8e09-bcaec5288f25}\Shell\AutoRun\command - "" = G:\raf-cry3.exe O33 - MountPoints2\{c9e18ff9-83eb-11e2-a481-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{c9e18ff9-83eb-11e2-a481-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Setup.exe -- [2011.10.27 13:34:26 | 000,355,920 | R--- | M] (Valve Corporation) O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.03.16 20:34:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\D-Link [2013.03.16 20:34:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\D-Link [2013.03.16 20:33:15 | 000,000,000 | ---D | C] -- C:\Windows\pcidevice [2013.03.16 20:33:10 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\InstallShield [2013.03.16 20:32:55 | 000,000,000 | ---D | C] -- C:\Users\\Desktop\Setup [2013.03.16 20:32:55 | 000,000,000 | ---D | C] -- C:\Users\\Desktop\Driver [2013.03.15 23:39:49 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Theta [2013.03.15 23:39:49 | 000,000,000 | ---D | C] -- C:\Users\\Documents\Assassin's Creed III [2013.03.15 23:11:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire [2013.03.15 23:11:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FinalWire [2013.03.15 23:10:22 | 000,000,000 | ---D | C] -- C:\Users\Max\Desktop\AIDA64 - 2.80.2300 [2013.03.15 22:58:33 | 000,000,000 | ---D | C] -- C:\ProgramData\SoftSafe [2013.03.15 22:58:06 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate [2013.03.15 15:34:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys [2013.03.15 15:34:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys [2013.03.15 15:27:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo [2013.03.15 15:27:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CrystalDiskInfo [2013.03.15 14:04:05 | 000,000,000 | -HSD | C] -- C:\found.001 [2013.03.14 20:05:52 | 000,000,000 | ---D | C] -- C:\Users\\Desktop\Risen 2 [2013.03.14 20:04:59 | 000,000,000 | ---D | C] -- C:\Users\\Desktop\Risen 2 [2013.03.14 19:52:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2013.03.14 19:51:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard [2013.03.14 17:24:41 | 000,000,000 | -HSD | C] -- C:\found.000 [2013.03.14 16:50:30 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Core [2013.03.14 16:48:12 | 000,000,000 | ---D | C] -- C:\Users\\Documents\Battlefield 3 [2013.03.14 16:48:10 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Logs [2013.03.13 16:57:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3 [2013.03.13 16:57:52 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller [2013.03.13 16:01:09 | 000,000,000 | ---D | C] -- C:\Users\Max\Desktop\Phx_data [2013.03.13 16:01:04 | 015,707,433 | ---- | C] ($t@t!c_V()!D) -- C:\Users\Max\Desktop\Phoenix.exe [2013.03.12 15:53:49 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Skype [2013.03.12 15:53:43 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2013.03.12 15:53:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2013.03.12 15:53:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2013.03.12 15:53:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2013.03.12 14:53:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games [2013.03.12 14:53:59 | 000,000,000 | ---D | C] -- C:\Users\Max\AppData\Roaming\Origin [2013.03.12 14:53:54 | 000,000,000 | ---D | C] -- C:\Users\Max\AppData\Local\Origin [2013.03.12 14:53:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin [2013.03.12 14:53:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin [2013.03.12 14:52:49 | 000,000,000 | ---D | C] -- C:\Users\Max\AppData\Local\ESN [2013.03.12 14:52:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battlelog Web Plugins [2013.03.12 14:52:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin [2013.03.11 20:57:32 | 000,000,000 | ---D | C] -- C:\Users\\Desktop\Crysis 3 [2013.03.11 20:57:08 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\WinRAR [2013.03.11 20:57:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2013.03.11 20:57:07 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2013.03.11 20:57:06 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.03.11 20:06:34 | 000,000,000 | ---D | C] -- C:\Users\\Documents\EA Games [2013.03.11 20:06:13 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Local\EA Games [2013.03.11 20:03:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps [2013.03.11 20:03:25 | 000,000,000 | ---D | C] -- C:\Fraps [2013.03.11 19:15:19 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Local\PunkBuster [2013.03.11 19:15:05 | 000,000,000 | ---D | C] -- C:\Users\\Documents\My Games [2013.03.11 19:15:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Orbit [2013.03.11 17:19:48 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Local\ [2013.03.11 17:17:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts [2013.03.11 17:16:42 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Local\Ubisoft Game Launcher [2013.03.11 16:55:13 | 000,000,000 | ---D | C] -- C:\Users\\Desktop\Dead Space 3 [2013.03.11 16:54:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Crysis 3 [2013.03.11 16:53:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts [2013.03.11 16:43:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts [2013.03.11 16:39:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hulumuluch [2013.03.11 16:28:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\hulumuluch [2013.03.11 16:26:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2013.03.11 16:17:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft [2013.03.11 16:07:39 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Local\Programs [2013.03.07 16:11:06 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Dojotech Software [2013.03.07 16:05:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dojotech Software [2013.03.07 16:05:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dojotech Software [2013.03.06 10:13:28 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam [2013.03.06 09:55:01 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Local\Logitech [2013.03.06 09:55:00 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Leadertech [2013.03.06 09:54:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech [2013.03.06 09:54:20 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd [2013.03.06 09:54:15 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech Gaming Software [2013.03.06 09:53:27 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Logitech [2013.03.06 09:53:27 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Logishrd [2013.03.06 09:49:20 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2013.03.06 09:49:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT [2013.03.06 09:49:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP [2013.03.06 09:48:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center [2013.03.06 09:38:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam [2013.03.06 09:38:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam [2013.03.06 09:38:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam [2013.03.05 13:12:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2013.03.04 15:23:57 | 000,000,000 | ---D | C] -- C:\Program Files\Paint.NET [2013.03.04 15:23:46 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Local\Paint.NET [2013.03.03 17:23:26 | 000,000,000 | ---D | C] -- C:\Users\\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft [2013.03.03 17:23:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft [2013.03.03 17:06:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2013.03.03 17:06:25 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys [2013.03.03 17:06:23 | 000,000,000 | ---D | C] -- C:\Users\Max\AppData\Roaming\DAEMON Tools Lite [2013.03.03 17:06:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite [2013.03.03 17:05:27 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2013.03.03 16:59:11 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\Spotify [2013.03.03 16:53:30 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Roaming\Spotify [2013.03.03 16:26:18 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Roaming\Avira [2013.03.03 16:20:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2013.03.03 16:20:36 | 000,129,216 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys [2013.03.03 16:20:36 | 000,099,912 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys [2013.03.03 16:20:36 | 000,027,800 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avkmgr.sys [2013.03.03 16:20:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2013.03.03 16:20:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2013.03.03 16:15:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2013.03.03 16:14:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2013.03.03 16:14:04 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\Google [2013.03.03 16:13:56 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\Deployment [2013.03.03 16:13:56 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\Apps [2013.03.03 11:49:56 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\AMD [2013.03.03 11:49:47 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Roaming\ATI [2013.03.03 11:49:47 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\ATI [2013.03.03 11:48:00 | 000,000,000 | ---D | C] -- C:\Program Files\AMD [2013.03.03 11:47:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies [2013.03.03 11:47:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies [2013.03.03 11:47:19 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD [2013.03.03 11:46:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2013.03.03 11:46:35 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2013.03.03 11:45:51 | 000,000,000 | ---D | C] -- C:\AMD [2013.03.03 11:40:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEC Electronics [2013.03.03 11:40:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NEC Electronics [2013.03.03 11:39:55 | 000,000,000 | ---D | C] -- C:\Users\..\AppData\Local\Downloaded Installations [2013.03.03 11:35:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Marvell [2013.03.03 11:34:00 | 000,000,000 | ---D | C] -- C:\RaidTool [2013.03.03 11:33:53 | 000,000,000 | ---D | C] -- C:\Windows\RaidTool [2013.03.03 11:33:33 | 000,466,456 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll [2013.03.03 11:33:33 | 000,444,952 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll [2013.03.03 11:33:32 | 002,873,823 | ---- | C] (Creative) -- C:\Windows\SysWow64\Sens_oal.dll [2013.03.03 11:33:32 | 001,910,272 | ---- | C] (Creative) -- C:\Windows\SysNative\Sens_oal.dll [2013.03.03 11:33:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center [2013.03.03 11:32:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative [2013.03.03 11:32:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Creative Labs Shared [2013.03.03 11:32:33 | 000,000,000 | ---D | C] -- C:\Program Files\Creative [2013.03.03 11:32:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative [2013.03.03 11:32:02 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2013.03.03 11:31:49 | 000,242,176 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\Dts2APO.dll [2013.03.03 11:31:49 | 000,193,024 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\ViaMicArrayAPO.dll [2013.03.03 11:31:49 | 000,086,016 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\SysNative\nQPropPageExt.dll [2013.03.03 11:31:49 | 000,082,432 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\SysNative\nQAPO.dll [2013.03.03 11:31:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VIA [2013.03.03 11:31:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2013.03.03 11:31:20 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2013.03.03 11:31:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE [2013.03.03 11:31:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD [2013.03.03 11:31:11 | 000,000,000 | ---D | C] -- C:\Program Files\ATI [2013.03.03 11:30:45 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2013.03.03 11:27:29 | 000,000,000 | R--D | C] -- C:\Users\...\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2013.03.03 11:27:29 | 000,000,000 | R--D | C] -- C:\Users\...\Searches [2013.03.03 11:27:29 | 000,000,000 | R--D | C] -- C:\Users\...\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2013.03.03 11:27:18 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Roaming\Identities [2013.03.03 11:27:13 | 000,000,000 | R--D | C] -- C:\Users\...\Contacts [2013.03.03 11:27:10 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\VirtualStore [2013.03.03 11:26:53 | 000,000,000 | --SD | C] -- C:\Users\...\AppData\Roaming\Microsoft [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Videos [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Saved Games [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Pictures [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Music [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Links [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Favorites [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Downloads [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Documents [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\Desktop [2013.03.03 11:26:53 | 000,000,000 | R--D | C] -- C:\Users\...\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Vorlagen [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\AppData\Local\Verlauf [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\AppData\Local\Temporary Internet Files [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Startmenü [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\SendTo [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Recent [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Netzwerkumgebung [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Lokale Einstellungen [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Documents\Eigene Videos [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Documents\Eigene Musik [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Eigene Dateien [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Documents\Eigene Bilder [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Druckumgebung [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Cookies [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\AppData\Local\Anwendungsdaten [2013.03.03 11:26:53 | 000,000,000 | -HSD | C] -- C:\Users\...\Anwendungsdaten [2013.03.03 11:26:53 | 000,000,000 | -H-D | C] -- C:\Users\...\AppData [2013.03.03 11:26:53 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\Temp [2013.03.03 11:26:53 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Local\Microsoft [2013.03.03 11:26:53 | 000,000,000 | ---D | C] -- C:\Users\...\AppData\Roaming\Media Center Programs [2013.03.03 11:26:45 | 000,000,000 | -HSD | C] -- C:\Recovery [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\Programme [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2013.03.03 11:26:44 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2013.03.03 11:22:07 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2013.03.03 11:19:40 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2013.03.03 11:19:16 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013.03.03 11:18:23 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2013.03.03 11:18:10 | 000,000,000 | -HSD | C] -- C:\Boot [2013.02.26 07:55:24 | 000,071,680 | ---- | C] (Beepa P/L) -- C:\Windows\SysNative\frapsv64.dll [2013.02.26 07:55:22 | 000,065,536 | ---- | C] (Beepa P/L) -- C:\Windows\SysWow64\frapsvid.dll [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.03.17 11:42:13 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.03.17 11:42:13 | 000,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.03.17 11:41:32 | 000,000,000 | ---- | M] () -- C:\Users\Max\defogger_reenable [2013.03.17 11:38:08 | 001,610,444 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.03.17 11:38:08 | 000,695,598 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.03.17 11:38:08 | 000,651,882 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.03.17 11:38:08 | 000,147,030 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.03.17 11:38:08 | 000,120,814 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.03.17 11:33:25 | 000,001,100 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.03.17 11:33:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.03.17 11:33:09 | 2146,045,951 | -HS- | M] () -- C:\hiberfil.sys [2013.03.17 11:19:13 | 000,001,104 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.03.17 11:05:30 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013.03.17 11:05:30 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013.03.16 20:34:25 | 000,000,958 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Connection Manager.lnk [2013.03.16 20:34:25 | 000,000,952 | ---- | M] () -- C:\Users\Public\Desktop\Wireless Connection Manager.lnk [2013.03.16 12:38:51 | 000,291,088 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013.03.15 23:11:43 | 000,001,235 | ---- | M] () -- C:\Users\\Desktop\AIDA64 Extreme Edition.lnk [2013.03.15 16:01:27 | 000,001,885 | ---- | M] () -- C:\Users\\Desktop\Phx_settings.ini [2013.03.15 15:27:35 | 000,001,984 | ---- | M] () -- C:\Users\\Desktop\CrystalDiskInfo.lnk [2013.03.15 14:19:33 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013.03.14 17:25:19 | 000,006,704 | ---- | M] () -- C:\bootsqm.dat [2013.03.14 16:55:48 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2013.03.13 16:57:54 | 000,001,174 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield 3.lnk [2013.03.12 16:02:36 | 000,001,788 | ---- | M] () -- C:\Users\...\Desktop\Day of Defeat Source.lnk [2013.03.12 16:02:36 | 000,001,786 | ---- | M] () -- C:\Users\\Desktop\Half-Life 2 Deathmatch.lnk [2013.03.12 16:02:36 | 000,001,786 | ---- | M] () -- C:\Users\\Desktop\Counter-Strike Source.lnk [2013.03.12 15:53:43 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2013.03.11 20:29:47 | 000,001,421 | ---- | M] () -- C:\Users\\Desktop\Dead Space 3.lnk [2013.03.11 20:03:26 | 000,001,406 | ---- | M] () -- C:\Users\\Desktop\Fraps.lnk [2013.03.11 16:53:08 | 000,001,330 | ---- | M] () -- C:\Users\Public\Desktop\Crysis 3.lnk [2013.03.11 16:39:44 | 000,002,085 | ---- | M] () -- C:\Users\\Desktop\Tomb Raider.lnk [2013.03.11 16:26:03 | 001,587,046 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013.03.11 16:17:41 | 000,001,300 | ---- | M] () -- C:\Users\Public\Desktop\Far Cry 3.lnk [2013.03.10 17:57:24 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2013.03.07 16:05:16 | 000,002,649 | ---- | M] () -- C:\Users\Public\Desktop\Dojotech Spotify Recorder.lnk [2013.03.06 10:13:28 | 000,000,222 | ---- | M] () -- C:\Users\\Desktop\Sleeping Dogs.url [2013.03.05 13:05:21 | 000,275,856 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.03.04 15:42:56 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf [2013.03.04 15:42:56 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf [2013.03.04 15:27:21 | 000,251,771 | ---- | M] () -- C:\Users\\Desktop\Escobar.jpg [2013.03.03 17:06:25 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys [2013.03.03 16:59:11 | 000,001,757 | ---- | M] () -- C:\Users\\Desktop\Spotify.lnk [2013.03.03 16:19:34 | 000,129,216 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys [2013.03.03 16:19:34 | 000,027,800 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avkmgr.sys [2013.03.03 16:19:33 | 000,099,912 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys [2013.03.03 11:51:57 | 000,000,000 | RHS- | M] () -- C:\winx.ld [2013.03.03 11:51:55 | 000,203,836 | RHS- | M] () -- C:\grldr [2013.03.03 11:49:07 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin [2013.03.03 11:40:25 | 000,046,993 | ---- | M] () -- C:\Windows\Ascd_log.ini [2013.03.03 11:33:37 | 000,000,159 | RH-- | M] () -- C:\Windows\ctfile.rfc [2013.03.03 11:33:33 | 000,466,456 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll [2013.03.03 11:33:33 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll [2013.03.03 11:30:06 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini [2013.03.03 11:29:42 | 000,033,927 | ---- | M] () -- C:\Windows\Ascd_tmp.ini [2013.03.03 11:23:34 | 000,057,050 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2013.03.03 11:23:34 | 000,057,050 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2013.03.03 11:18:11 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2013.02.26 07:55:24 | 000,071,680 | ---- | M] (Beepa P/L) -- C:\Windows\SysNative\frapsv64.dll [2013.02.26 07:55:22 | 000,065,536 | ---- | M] (Beepa P/L) -- C:\Windows\SysWow64\frapsvid.dll [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.03.17 11:41:32 | 000,000,000 | ---- | C] () -- C:\Users\\defogger_reenable [2013.03.16 20:34:25 | 000,000,958 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Connection Manager.lnk [2013.03.16 20:34:25 | 000,000,952 | ---- | C] () -- C:\Users\Public\Desktop\Wireless Connection Manager.lnk [2013.03.15 23:11:43 | 000,001,235 | ---- | C] () -- C:\Users\\Desktop\AIDA64 Extreme Edition.lnk [2013.03.15 15:27:35 | 000,001,984 | ---- | C] () -- C:\Users\\Desktop\CrystalDiskInfo.lnk [2013.03.14 17:25:19 | 000,006,704 | ---- | C] () -- C:\bootsqm.dat [2013.03.13 16:57:54 | 000,001,174 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield 3.lnk [2013.03.13 16:01:10 | 000,001,885 | ---- | C] () -- C:\Users\\Desktop\Phx_settings.ini [2013.03.12 16:02:36 | 000,001,788 | ---- | C] () -- C:\Users\\Desktop\Day of Defeat Source.lnk [2013.03.12 16:02:36 | 000,001,786 | ---- | C] () -- C:\Users\\Desktop\Half-Life 2 Deathmatch.lnk [2013.03.12 16:02:36 | 000,001,786 | ---- | C] () -- C:\Users\\Desktop\Counter-Strike Source.lnk [2013.03.12 15:53:43 | 000,002,517 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2013.03.11 20:29:47 | 000,001,421 | ---- | C] () -- C:\Users\\Desktop\Dead Space 3.lnk [2013.03.11 20:03:26 | 000,001,406 | ---- | C] () -- C:\Users\\Desktop\Fraps.lnk [2013.03.11 19:15:27 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013.03.11 16:53:08 | 000,001,330 | ---- | C] () -- C:\Users\Public\Desktop\Crysis 3.lnk [2013.03.11 16:39:44 | 000,002,085 | ---- | C] () -- C:\Users\\Desktop\Tomb Raider.lnk [2013.03.11 16:21:41 | 001,587,046 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013.03.11 16:17:41 | 000,001,300 | ---- | C] () -- C:\Users\Public\Desktop\Far Cry 3.lnk [2013.03.10 17:57:24 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2013.03.07 16:05:16 | 000,002,649 | ---- | C] () -- C:\Users\Public\Desktop\Dojotech Spotify Recorder.lnk [2013.03.06 10:13:27 | 000,000,222 | ---- | C] () -- C:\Users\\Desktop\Sleeping Dogs.url [2013.03.04 15:55:01 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf [2013.03.04 15:42:56 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf [2013.03.04 15:42:56 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf [2013.03.04 15:34:15 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf [2013.03.04 15:27:16 | 000,251,771 | ---- | C] () -- C:\Users\\Desktop\Escobar.jpg [2013.03.04 15:25:17 | 000,001,300 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paint.NET.lnk [2013.03.03 17:23:28 | 000,291,088 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013.03.03 17:23:28 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013.03.03 17:23:28 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2013.03.03 16:59:11 | 000,001,757 | ---- | C] () -- C:\Users\\Desktop\Spotify.lnk [2013.03.03 16:59:11 | 000,001,743 | ---- | C] () -- C:\Users\\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk [2013.03.03 16:15:10 | 000,002,183 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013.03.03 16:14:16 | 000,001,104 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.03.03 16:14:13 | 000,001,100 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.03.03 11:51:57 | 000,000,000 | RHS- | C] () -- C:\winx.ld [2013.03.03 11:51:55 | 000,203,836 | RHS- | C] () -- C:\grldr [2013.03.03 11:49:07 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2013.03.03 11:33:37 | 000,219,136 | ---- | C] () -- C:\Windows\SysNative\APOMgr64.DLL [2013.03.03 11:33:37 | 000,170,496 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL [2013.03.03 11:33:37 | 000,089,088 | ---- | C] () -- C:\Windows\SysNative\CmdRtr64.DLL [2013.03.03 11:33:37 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL [2013.03.03 11:33:37 | 000,005,037 | ---- | C] () -- C:\Windows\SysNative\cfgfx.ini [2013.03.03 11:33:37 | 000,002,773 | ---- | C] () -- C:\Windows\FF08_Render_Spk_Hp.ini [2013.03.03 11:33:37 | 000,001,650 | ---- | C] () -- C:\Windows\FF08_Capture.ini [2013.03.03 11:33:37 | 000,001,540 | ---- | C] () -- C:\Windows\FF08_Render.ini [2013.03.03 11:33:37 | 000,000,159 | RH-- | C] () -- C:\Windows\ctfile.rfc [2013.03.03 11:30:10 | 000,046,993 | ---- | C] () -- C:\Windows\Ascd_log.ini [2013.03.03 11:29:28 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2013.03.03 11:29:24 | 000,033,927 | ---- | C] () -- C:\Windows\Ascd_tmp.ini [2013.03.03 11:27:34 | 000,001,409 | ---- | C] () -- C:\Users\\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk [2013.03.03 11:27:31 | 000,001,443 | ---- | C] () -- C:\Users\\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2013.03.03 11:23:24 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk [2013.03.03 11:23:14 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk [2013.03.03 11:19:16 | 2146,045,951 | -HS- | C] () -- C:\hiberfil.sys [2013.03.03 11:18:11 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK [2013.03.03 11:18:10 | 000,383,562 | RHS- | C] () -- C:\bootmgr [2012.11.21 14:10:20 | 003,123,272 | R--- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2012.06.11 17:50:16 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat [2012.06.11 17:50:16 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat [2012.05.02 13:58:10 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll [2011.09.12 23:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat ========== ZeroAccess Check ========== [2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2013.03.03 17:10:40 | 000,000,000 | ---D | M] -- C:\Users\\AppData\Roaming\DAEMON Tools Lite [2013.03.07 16:11:06 | 000,000,000 | ---D | M] -- C:\Users\\AppData\Roaming\Dojotech Software [2013.03.06 09:55:00 | 000,000,000 | ---D | M] -- C:\Users\\AppData\Roaming\Leadertech [2013.03.12 15:50:23 | 000,000,000 | ---D | M] -- C:\Users\\AppData\Roaming\Origin [2013.03.14 20:47:25 | 000,000,000 | ---D | M] -- C:\Users\\AppData\Roaming\Spotify [2013.03.15 23:39:49 | 000,000,000 | ---D | M] -- C:\Users\\AppData\Roaming\Theta ========== Purity Check ========== < End of report > _____________________________________________________________________________ Extra-Log OTL Extras logfile created on: 17.03.2013 11:42:47 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\\Downloads 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 8,00 Gb Total Physical Memory | 6,63 Gb Available Physical Memory | 82,87% Memory free 15,99 Gb Paging File | 14,34 Gb Available in Paging File | 89,67% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 420,60 Gb Total Space | 267,28 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Drive D: | 976,56 Gb Total Space | 806,75 Gb Free Space | 82,61% Space Free | Partition Type: NTFS Drive E: | 6,51 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Computer Name: -PC | User Name: | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0381FB27-6382-43EE-B8E1-16B0187CD447}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe | "{0788976C-A0D8-4CC4-A9E6-1C6898151E53}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe | "{17C7B2E0-5798-4820-AA64-9DEDC6B413EE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{47B6C3F4-AF53-41C8-BCB2-9522E0285442}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\munkymo\day of defeat source\hl2.exe | "{47C3B3B9-7A75-4327-85C9-963BA5C68777}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{6A14CD21-1E34-4482-90AC-C4E9A3451341}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\munkymo\day of defeat source\hl2.exe | "{73C0AEBE-EE22-4BBF-BFB2-598D7D4D7B35}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sleepingdogs\hkship.exe | "{761A2A7B-CFD1-44DA-BFFA-8A80E258A6B9}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{9D2E2F3B-A620-4067-8696-A4F040CD5B62}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{BDE22F64-2B03-4D66-BE26-598F87246CAA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sleepingdogs\hkship.exe | "{D219004E-0D14-4209-967F-6CF5DFA3083C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{D3772E24-2D9B-45D7-A6AD-D8F94881DD99}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{D7E2DD45-C27B-4FC6-A000-0FC125AF3737}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{EDE993E0-0063-49B7-BA57-1C382E17C8C6}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe | "{F469F472-B516-4AC1-91D1-044BDD6D5EB5}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe | "TCP Query User{2B5661D2-33E3-4EB3-B3D9-4EDF4732D166}C:\program files (x86)\ubisoft\far cry 3\bin\farcry3_d3d11.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 3\bin\farcry3_d3d11.exe | "TCP Query User{929F507A-E563-4791-8301-AACB49AFDFC5}C:\users\\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\\appdata\roaming\spotify\spotify.exe | "TCP Query User{FA262C67-5E10-4186-95EB-54EDA3DB1FCF}D:\games\assassins creed 3\ac3sp.exe" = protocol=6 | dir=in | app=d:\games\assassins creed 3\ac3sp.exe | "UDP Query User{2AA38EB9-6769-41D8-BEDD-8883EA1C67FB}C:\program files (x86)\ubisoft\far cry 3\bin\farcry3_d3d11.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 3\bin\farcry3_d3d11.exe | "UDP Query User{7DC3E670-415B-47DF-A304-92B939F4FB9F}C:\users\\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\max\appdata\roaming\spotify\spotify.exe | "UDP Query User{979BBA9C-2E4C-43AD-8326-27717BA0D5A1}D:\games\assassins creed 3\ac3sp.exe" = protocol=17 | dir=in | app=d:\games\assassins creed 3\ac3sp.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{06BBDE5E-6B09-36CD-B5C3-E537E3F49051}" = Microsoft .NET Framework 4.5 Extended Developer Preview "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "{2C3E0F57-547A-3AF4-B6DB-2CA5969518D1}" = Microsoft .NET Framework 4.5 Client Profile Developer Preview "{3145731D-C578-70ED-899F-7A670D2A6662}" = AMD Fuel "{338CE2A1-7BD6-AC18-0069-4A90F7C3D836}" = AMD Steady Video Plug-In "{4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}" = AMD Media Foundation Decoders "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime "{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10 "{5E03A267-415E-5383-FA8F-3CE4145663B9}" = AMD Catalyst Install Manager "{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{82EE86D9-60B9-1025-9960-97E9B7C7B4B4}" = AMD Drag and Drop Transcoding "{89EE4A30-080F-2C95-6F78-C98D18FBD74D}" = AMD Accelerated Video Transcoding "{9CF11D16-ECEB-90A5-A028-CA9E068D848B}" = ccc-utility64 "{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 "{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 "{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 "Logitech Gaming Software" = Logitech Gaming Software 8.40 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4.5 Client Profile Developer Preview "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4.5 Extended Developer Preview "WinRAR archiver" = WinRAR 4.20 (64-Bit) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{017F8447-2A1D-0DDB-B5D7-CA2BFACE2886}" = CCC Help French "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{054E9A1C-3EA2-C657-E787-FD8DCF5C3D3B}" = CCC Help Czech "{1DE2BD51-0300-772D-5E18-F337D95D5687}" = CCC Help German "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{224E8FEB-5C1F-077F-6FC5-602AC1AE644D}" = CCC Help Danish "{275E9C49-C72F-D754-DEB7-77F10A9C00D8}" = CCC Help Japanese "{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 "{30049739-BE95-6591-B504-E6D7057D49CC}" = CCC Help Spanish "{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver "{3E7F5A51-7657-43D6-A9B3-C3A21473834B}_is1" = Far Cry 3 "{3F1EB155-F96E-EB7B-2EF2-7375490E0FA9}" = CCC Help English "{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX "{4B023D7B-9E67-795D-FB31-B5E1F6DCA451}" = CCC Help Italian "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.2 "{55F6C486-8C75-2A72-DAFE-CE78A624C9F7}" = CCC Help Russian "{5AF23993-7152-1620-E43F-1B4542FB4F84}" = CCC Help Thai "{5BDA2F58-1F21-4D10-9910-92B01EBCC958}" = AMD USB Filter Driver "{63326924-3CAF-C858-3A8F-8598C87019D7}" = AMD VISION Engine Control Center "{63822E89-11AA-F8EC-D433-F72A85799EC0}" = CCC Help Greek "{66361420-4905-AEB8-17AE-172FDD164A7E}" = CCC Help Polish "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™ "{769F2A4B-84A3-9486-ADD2-9E5AB4B4E1E3}" = Catalyst Control Center InstallProxy "{818690C7-8DA5-4623-BBA8-A73CFBD44077}" = Sound Blaster X-Fi MB "{8773DD1C-5FB2-95B5-5A93-0EFEAC900A4D}" = CCC Help Norwegian "{8CCBB0BF-9CC1-1A65-BB93-56012A460EE6}" = CCC Help Portuguese "{9580813D-94B1-4C28-9426-A441E2BB29A5}" = Counter-Strike: Source "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A0A3CE05-96CB-52E9-434E-074F3BB7807E}" = CCC Help Turkish "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9C64319-932F-D02B-B14C-FFFC3EC49E77}" = CCC Help Chinese Standard "{ac3600d2-e1b3-4573-bef7-73f9409d6393}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 "{aec97477-921a-4289-985a-9e29506625b6}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 "{B5EB0EC0-7AD1-4A8F-B672-8E9F7A2738E6}_is1" = Crysis 3 "{C09DB932-7619-7B56-30E3-C0454811D6D7}" = CCC Help Korean "{C22A4697-BD77-ACB1-744F-1FD0A0BFF798}" = CCC Help Swedish "{D149DB2E-392E-48CC-8036-88BECC09C50A}" = Dojotech Spotify Recorder "{D4B457B2-260F-C561-CA87-703BD3B724CA}" = Catalyst Control Center Graphics Previews Common "{D6CDB506-297D-AE70-0EF6-DE5185F961BE}" = CCC Help Chinese Traditional "{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver "{D9198056-A296-4583-A790-C0E73694CFE8}" = D-Link DWA-131 Wireless N Nano USB Adapter "{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding "{ECFD508E-68A2-91B2-46DD-1D03D783D94B}" = Catalyst Control Center Localization All "{EDE361D5-35A5-DA7D-3462-C3DABD24029B}" = CCC Help Hungarian "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F1E7DD6A-AE2D-D706-BEB3-937F76CA6AE9}" = CCC Help Finnish "{F56F54DD-BCB2-1221-2CB7-E983A5CF9D15}" = CCC Help Dutch "{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 "AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v2.80 "Avira AntiVir Desktop" = Avira Free Antivirus "Battlelog Web Plugins" = Battlelog Web Plugins "CrystalDiskInfo_is1" = CrystalDiskInfo 5.4.2 "DAEMON Tools Lite" = DAEMON Tools Lite "ESN Sonar-0.70.4" = ESN Sonar "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Fraps" = Fraps "Google Chrome" = Google Chrome "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Plattform-Geräte-Manager "InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver "Marvell Miniport Driver" = Marvell Miniport Driver "Origin" = Origin "PunkBusterSvc" = PunkBuster Services "Steam App 202170" = Sleeping Dogs™ "Steam App 240" = Counter-Strike: Source "Steam App 260" = Counter-Strike: Source Beta "Steam App 300" = Day of Defeat: Source "Steam App 320" = Half-Life 2: Deathmatch "Steam App 340" = Half-Life 2: Lost Coast "Tomb Raider_is1" = Tomb Raider "Uplay" = Uplay ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Spotify" = Spotify ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 06.03.2013 04:16:02 | Computer Name = Max-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x4fd626ed Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000000000033c1 ID des fehlerhaften Prozesses: 0x588 Startzeit der fehlerhaften Anwendung: 0x01ce1a42b352f2b2 Pfad der fehlerhaften Anwendung: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Pfad des fehlerhaften Moduls: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll Berichtskennung: 14e61e8c-8636-11e2-bb22-bcaec5288f25 Error - 06.03.2013 04:47:41 | Computer Name = -PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 0.0.0.0, Zeitstempel: 0x4fd626ed Name des fehlerhaften Moduls: Device.dll, Version: 0.0.0.0, Zeitstempel: 0x4f55e10b Ausnahmecode: 0xc0000005 Fehleroffset: 0x00000000000033c1 ID des fehlerhaften Prozesses: 0x5a0 Startzeit der fehlerhaften Anwendung: 0x01ce1a430c552580 Pfad der fehlerhaften Anwendung: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe Pfad des fehlerhaften Moduls: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll Berichtskennung: 813b24f9-863a-11e2-b6a5-bcaec5288f25 Error - 12.03.2013 09:52:30 | Computer Name = -PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: Setup.exe_Origin, Version: 9.1.13.85, Zeitstempel: 0x4f29728a Name des fehlerhaften Moduls: System.dll, Version: 0.0.0.0, Zeitstempel: 0x4ebd6eed Ausnahmecode: 0xc0000005 Fehleroffset: 0x000018cb ID des fehlerhaften Prozesses: 0x850 Startzeit der fehlerhaften Anwendung: 0x01ce1f28c8539e8f Pfad der fehlerhaften Anwendung: C:\Users\\AppData\Local\Temp\Origin\Setup.exe Pfad des fehlerhaften Moduls: C:\Users\\AppData\Local\Temp\Origin\nsxEE17.tmp\System.dll Berichtskennung: 1466a6f3-8b1c-11e2-848a-bcaec5288f25 Error - 17.03.2013 06:17:12 | Computer Name = -PC | Source = ESENT | ID = 482 Description = Catalog Database (1148) Catalog Database: Versuch, in Datei "C:\Windows\system32\CatRoot2\edb.chk" bei Offset 0 (0x0000000000000000) für 4096 (0x00001000) Bytes zu schreiben, ist nach 8 Sekunden mit Systemfehler 1117 (0x0000045d): "Die Anforderung konnte wegen eines E/A-Gerätefehlers nicht ausgeführt werden. " fehlgeschlagen. Fehler -1022 (0xfffffc02) bei Schreiboperation. Wenn dieser Zustand andauert, ist die Datei möglicherweise beschädigt und muss aus einer vorherigen Sicherung wiederhergestellt werden. Error - 17.03.2013 06:17:14 | Computer Name = -PC | Source = ESENT | ID = 439 Description = Catalog Database (1148) Catalog Database: Die Shadowkopfzeile für Datei C:\Windows\system32\CatRoot2\edb.chk konnte nicht geschrieben werden. Fehler -1022. Error - 17.03.2013 06:17:14 | Computer Name = -PC | Source = ESENT | ID = 454 Description = Catalog Database (1148) Catalog Database: Bei Datenbankwiederherstellung trat ein unerwarteter Fehler -510 auf. Error - 17.03.2013 06:17:17 | Computer Name = -PC | Source = Microsoft-Windows-CAPI2 | ID = 257 Description = Vom Kryptografiedienst konnte die Katalogdatenbank nicht initialisiert werden. "ESENT"-Fehler: -510. Error - 17.03.2013 06:34:57 | Computer Name = -PC | Source = ESENT | ID = 419 Description = Catalog Database (1148) Catalog Database: Seite 2017 der Datenbank C:\Windows\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb konnte nicht gelesen werden. Fehler -1018. Error - 17.03.2013 06:34:57 | Computer Name = -PC | Source = ESENT | ID = 454 Description = Catalog Database (1148) Catalog Database: Bei Datenbankwiederherstellung trat ein unerwarteter Fehler -1018 auf. Error - 17.03.2013 06:34:57 | Computer Name = -PC | Source = Microsoft-Windows-CAPI2 | ID = 257 Description = Vom Kryptografiedienst konnte die Katalogdatenbank nicht initialisiert werden. "ESENT"-Fehler: -1018. [ System Events ] Error - 15.03.2013 17:44:24 | Computer Name = -PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?15.?03.?2013 um 17:00:28 unerwartet heruntergefahren. Error - 16.03.2013 05:29:36 | Computer Name = -PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?15.?03.?2013 um 23:55:14 unerwartet heruntergefahren. Error - 16.03.2013 06:58:05 | Computer Name = -PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?16.?03.?2013 um 11:40:57 unerwartet heruntergefahren. Error - 16.03.2013 07:59:19 | Computer Name = -PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?16.?03.?2013 um 12:44:25 unerwartet heruntergefahren. Error - 16.03.2013 08:01:45 | Computer Name = -PC | Source = Service Control Manager | ID = 7023 Description = Der Dienst "Sicherheitscenter" wurde mit folgendem Fehler beendet: %%1747 Error - 16.03.2013 08:01:47 | Computer Name = -PC | Source = Service Control Manager | ID = 7023 Description = Der Dienst "Windows Update" wurde mit folgendem Fehler beendet: %%-2147467243 Error - 17.03.2013 06:15:25 | Computer Name = -PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?17.?03.?2013 um 11:11:12 unerwartet heruntergefahren. Error - 17.03.2013 06:15:59 | Computer Name = -PC | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst AMD External Events Utility erreicht. Error - 17.03.2013 06:16:29 | Computer Name = -PC | Source = Service Control Manager | ID = 7011 Description = Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst AudioEndpointBuilder erreicht. Error - 17.03.2013 06:33:14 | Computer Name = -PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?17.?03.?2013 um 11:27:56 unerwartet heruntergefahren. < End of report > Mein System: CPU: AMD Phaenom II X6 1090T GPU: Radeon HD 7970 Ram: 8gb DDR3 1333 Mainboard: Asus Crosshair IV Formular Vielen Dank im voraus. |
|
17.03.2013, 17:35
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Hallo und
__________________ Zitat:
Oder ist das rein zufällig ein Büro-/Firmen-PC? Oder ein Uni-Rechner? Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs posten!  Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
17.03.2013, 18:01
| #3 |
| | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Ich hab sonst nur noch ein HijackThis Log.
__________________Ich hab aber hier im FAQ gelesen, dass man diese besser nicht postet sollte. Dazu hab ich auch keine Ahnung ob in den Logs irgendwo Malware oder sonstiges aufgelistet wird. |
|
17.03.2013, 19:04
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Es geht um deine Virenscanner. Hat jemals einer einen Fund gemeldet? Wenn ja die Logs dazu posten. Und bitte auch erklären warum du eine ultimate edition hast
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
17.03.2013, 19:12
| #5 |
| | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Nein mein Virenscan hat keinen Virus gefunden. Das ist mein privater eigener Rechner. Hauptsächlich nur fürs gaming. Das Windows war schon auf dem PC drauf, da ich ihn vom einem kumpel vor 2 jahren abgekauft habe. Habe nur vor 3 wochen eine andere Grafikkarte verbaut. |
|
17.03.2013, 19:35
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Bitte die drei Tools MBAR / aswMBR / TDSSkiller nun ausführen und die Logs in CODE-Tags posten MBAR (Malwarebytes Anti-Rootkit) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers aswMBR Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ --> PC hängt sich ständig beim gaming auf! Verdacht auf Virus! |
|
18.03.2013, 15:57
| #7 |
| | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! So, hier mal die Log's von MBAR / aswMBR / TDSSkiller MBAR Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.01.0.1021
www.malwarebytes.org
Database version: v2013.03.18.09
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
:: -PC [administrator]
18.03.2013 15:27:40
mbar-log-2013-03-18 (15-27-40).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 232756
Time elapsed: 8 minute(s), 29 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-18 15:40:14
-----------------------------
15:40:14.683 OS Version: Windows x64 6.1.7600
15:40:14.683 Number of processors: 6 586 0xA00
15:40:14.683 ComputerName: -PC UserName:
15:40:15.232 Initialize success
15:42:28.255 AVAST engine defs: 13031800
15:43:01.130 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
15:43:01.131 Disk 0 Vendor: SAMSUNG_HD155UI 1AQ10001 Size: 1430799MB BusType: 3
15:43:01.139 Disk 0 MBR read successfully
15:43:01.140 Disk 0 MBR scan
15:43:01.144 Disk 0 Windows 7 default MBR code
15:43:01.155 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 430698 MB offset 206848
15:43:01.178 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 999999 MB offset 882276352
15:43:01.199 Disk 0 scanning C:\Windows\system32\drivers
15:43:07.058 Service scanning
15:43:21.656 Modules scanning
15:43:21.660 Disk 0 trace - called modules:
15:43:21.671 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
15:43:21.673 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007b0a060]
15:43:21.999 3 CLASSPNP.SYS[fffff880018a043f] -> nt!IofCallDriver -> [0xfffffa800782a520]
15:43:22.002 5 ACPI.sys[fffff88000ee2781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa800782c060]
15:43:22.545 AVAST engine scan C:\Windows
15:43:23.758 AVAST engine scan C:\Windows\system32
15:45:52.094 AVAST engine scan C:\Windows\system32\drivers
15:45:59.587 AVAST engine scan C:\Users\
15:47:53.652 AVAST engine scan C:\ProgramData
15:48:04.223 Scan finished successfully
15:48:25.847 Disk 0 MBR has been saved successfully to "C:\Users\\Desktop\MBR.dat"
15:48:25.850 The log file has been saved successfully to "C:\Users\\Desktop\aswMBR.txt"
und TDSSkiller Code:
ATTFilter
15:48:52.0925 4416 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:48:53.0073 4416 ============================================================
15:48:53.0073 4416 Current date / time: 2013/03/18 15:48:53.0073
15:48:53.0073 4416 SystemInfo:
15:48:53.0073 4416
15:48:53.0073 4416 OS Version: 6.1.7600 ServicePack: 0.0
15:48:53.0073 4416 Product type: Workstation
15:48:53.0073 4416 ComputerName: -PC
15:48:53.0073 4416 UserName:
15:48:53.0073 4416 Windows directory: C:\Windows
15:48:53.0073 4416 System windows directory: C:\Windows
15:48:53.0073 4416 Running under WOW64
15:48:53.0073 4416 Processor architecture: Intel x64
15:48:53.0073 4416 Number of processors: 6
15:48:53.0073 4416 Page size: 0x1000
15:48:53.0073 4416 Boot type: Normal boot
15:48:53.0073 4416 ============================================================
15:48:54.0083 4416 Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:48:54.0086 4416 ============================================================
15:48:54.0086 4416 \Device\Harddisk0\DR0:
15:48:54.0086 4416 MBR partitions:
15:48:54.0086 4416 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x34935000
15:48:54.0086 4416 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x34967800, BlocksNum 0x7A11F800
15:48:54.0086 4416 ============================================================
15:48:54.0123 4416 C: <-> \Device\Harddisk0\DR0\Partition1
15:48:54.0152 4416 D: <-> \Device\Harddisk0\DR0\Partition2
15:48:54.0152 4416 ============================================================
15:48:54.0152 4416 Initialize success
15:48:54.0152 4416 ============================================================
15:48:56.0888 4748 ============================================================
15:48:56.0888 4748 Scan started
15:48:56.0888 4748 Mode: Manual;
15:48:56.0888 4748 ============================================================
15:48:58.0316 4748 ================ Scan system memory ========================
15:48:58.0316 4748 System memory - ok
15:48:58.0316 4748 ================ Scan services =============================
15:48:58.0804 4748 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
15:48:58.0812 4748 1394ohci - ok
15:48:58.0963 4748 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
15:48:59.0009 4748 ACPI - ok
15:48:59.0115 4748 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
15:48:59.0116 4748 AcpiPmi - ok
15:48:59.0190 4748 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:48:59.0192 4748 adp94xx - ok
15:48:59.0206 4748 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:48:59.0208 4748 adpahci - ok
15:48:59.0213 4748 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:48:59.0214 4748 adpu320 - ok
15:48:59.0237 4748 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:48:59.0238 4748 AeLookupSvc - ok
15:48:59.0293 4748 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
15:48:59.0295 4748 AFD - ok
15:48:59.0305 4748 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
15:48:59.0306 4748 agp440 - ok
15:48:59.0376 4748 [ 0E64D7144478027F427F601D9D569EC9 ] AIDA64Driver C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64
15:48:59.0377 4748 AIDA64Driver - ok
15:48:59.0407 4748 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:48:59.0408 4748 ALG - ok
15:48:59.0414 4748 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
15:48:59.0415 4748 aliide - ok
15:48:59.0447 4748 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:48:59.0449 4748 AMD External Events Utility - ok
15:48:59.0500 4748 AMD FUEL Service - ok
15:48:59.0504 4748 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
15:48:59.0505 4748 amdide - ok
15:48:59.0536 4748 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
15:48:59.0537 4748 amdiox64 - ok
15:48:59.0560 4748 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:48:59.0561 4748 AmdK8 - ok
15:48:59.0710 4748 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:48:59.0767 4748 amdkmdag - ok
15:48:59.0803 4748 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:48:59.0805 4748 amdkmdap - ok
15:48:59.0823 4748 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:48:59.0824 4748 AmdPPM - ok
15:48:59.0873 4748 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:48:59.0874 4748 amdsata - ok
15:48:59.0918 4748 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:48:59.0919 4748 amdsbs - ok
15:48:59.0933 4748 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:48:59.0934 4748 amdxata - ok
15:49:00.0099 4748 [ 459465DA28E49B358ECFE0D788F328F4 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:49:00.0100 4748 AntiVirSchedulerService - ok
15:49:00.0128 4748 [ BCDD17E8469D647A71B347C4B6F86685 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:49:00.0129 4748 AntiVirService - ok
15:49:00.0164 4748 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:49:00.0164 4748 AODDriver4.2 - ok
15:49:00.0188 4748 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
15:49:00.0189 4748 AppID - ok
15:49:00.0207 4748 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:49:00.0208 4748 AppIDSvc - ok
15:49:00.0211 4748 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
15:49:00.0212 4748 Appinfo - ok
15:49:00.0256 4748 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
15:49:00.0258 4748 AppMgmt - ok
15:49:00.0299 4748 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:49:00.0300 4748 arc - ok
15:49:00.0319 4748 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:49:00.0319 4748 arcsas - ok
15:49:00.0593 4748 [ FDB98C34BB26C59D5E550A734168E4C5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:49:00.0594 4748 aspnet_state - ok
15:49:00.0605 4748 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:49:00.0606 4748 AsyncMac - ok
15:49:00.0609 4748 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
15:49:00.0609 4748 atapi - ok
15:49:00.0686 4748 [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:49:00.0687 4748 AtiHDAudioService - ok
15:49:00.0705 4748 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:49:00.0708 4748 AudioEndpointBuilder - ok
15:49:00.0716 4748 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:49:00.0719 4748 AudioSrv - ok
15:49:00.0732 4748 [ BFE9598EBC3934CF8D876A303849C896 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:49:00.0733 4748 avgntflt - ok
15:49:00.0746 4748 [ F74D86A9FB35FA5F24627B8DBBF3A9A4 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:49:00.0746 4748 avipbb - ok
15:49:00.0763 4748 [ CD0E732347BF09717E0BDDC0C66699AB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
15:49:00.0764 4748 avkmgr - ok
15:49:00.0787 4748 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:49:00.0788 4748 AxInstSV - ok
15:49:00.0818 4748 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:49:00.0820 4748 b06bdrv - ok
15:49:00.0835 4748 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:49:00.0836 4748 b57nd60a - ok
15:49:00.0873 4748 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:49:00.0874 4748 BDESVC - ok
15:49:00.0878 4748 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:49:00.0878 4748 Beep - ok
15:49:00.0920 4748 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
15:49:00.0923 4748 BFE - ok
15:49:00.0962 4748 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
15:49:00.0966 4748 BITS - ok
15:49:00.0969 4748 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:49:00.0970 4748 blbdrive - ok
15:49:01.0001 4748 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:49:01.0002 4748 bowser - ok
15:49:01.0004 4748 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:49:01.0005 4748 BrFiltLo - ok
15:49:01.0009 4748 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:49:01.0009 4748 BrFiltUp - ok
15:49:01.0056 4748 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
15:49:01.0057 4748 Browser - ok
15:49:01.0075 4748 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:49:01.0076 4748 Brserid - ok
15:49:01.0079 4748 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:49:01.0080 4748 BrSerWdm - ok
15:49:01.0083 4748 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:49:01.0083 4748 BrUsbMdm - ok
15:49:01.0086 4748 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:49:01.0086 4748 BrUsbSer - ok
15:49:01.0090 4748 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:49:01.0090 4748 BTHMODEM - ok
15:49:01.0102 4748 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:49:01.0103 4748 bthserv - ok
15:49:01.0106 4748 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:49:01.0107 4748 cdfs - ok
15:49:01.0115 4748 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:49:01.0116 4748 cdrom - ok
15:49:01.0138 4748 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
15:49:01.0139 4748 CertPropSvc - ok
15:49:01.0142 4748 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:49:01.0142 4748 circlass - ok
15:49:01.0163 4748 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:49:01.0164 4748 CLFS - ok
15:49:01.0283 4748 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:49:01.0284 4748 clr_optimization_v2.0.50727_32 - ok
15:49:01.0488 4748 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:49:01.0489 4748 clr_optimization_v2.0.50727_64 - ok
15:49:01.0668 4748 [ 637245588A4BFDE03AA621DCC5AEFD4A ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:49:01.0669 4748 clr_optimization_v4.0.30319_32 - ok
15:49:01.0682 4748 [ 6C85BD0F605014CA2277DA5518F35DBA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:49:01.0683 4748 clr_optimization_v4.0.30319_64 - ok
15:49:01.0706 4748 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:49:01.0723 4748 CmBatt - ok
15:49:01.0739 4748 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
15:49:01.0740 4748 cmdide - ok
15:49:01.0776 4748 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
15:49:01.0778 4748 CNG - ok
15:49:01.0800 4748 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:49:01.0801 4748 Compbatt - ok
15:49:01.0830 4748 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:49:01.0831 4748 CompositeBus - ok
15:49:01.0834 4748 COMSysApp - ok
15:49:01.0837 4748 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:49:01.0838 4748 crcdisk - ok
15:49:01.0885 4748 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
15:49:01.0886 4748 Creative ALchemy AL6 Licensing Service - ok
15:49:01.0912 4748 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
15:49:01.0913 4748 Creative Audio Engine Licensing Service - ok
15:49:01.0976 4748 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:49:01.0977 4748 CryptSvc - ok
15:49:02.0000 4748 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
15:49:02.0002 4748 CSC - ok
15:49:02.0030 4748 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
15:49:02.0033 4748 CscService - ok
15:49:02.0135 4748 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
15:49:02.0137 4748 CTAudSvcService - ok
15:49:02.0159 4748 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:49:02.0162 4748 DcomLaunch - ok
15:49:02.0220 4748 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:49:02.0221 4748 defragsvc - ok
15:49:02.0244 4748 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:49:02.0244 4748 DfsC - ok
15:49:02.0262 4748 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
15:49:02.0264 4748 Dhcp - ok
15:49:02.0278 4748 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:49:02.0279 4748 discache - ok
15:49:02.0303 4748 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:49:02.0304 4748 Disk - ok
15:49:02.0341 4748 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:49:02.0343 4748 Dnscache - ok
15:49:02.0369 4748 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
15:49:02.0370 4748 dot3svc - ok
15:49:02.0376 4748 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
15:49:02.0377 4748 DPS - ok
15:49:02.0407 4748 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:49:02.0407 4748 drmkaud - ok
15:49:02.0466 4748 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
15:49:02.0469 4748 dtsoftbus01 - ok
15:49:02.0513 4748 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:49:02.0517 4748 DXGKrnl - ok
15:49:02.0546 4748 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:49:02.0547 4748 EapHost - ok
15:49:02.0594 4748 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:49:02.0608 4748 ebdrv - ok
15:49:02.0633 4748 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
15:49:02.0634 4748 EFS - ok
15:49:02.0737 4748 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:49:02.0741 4748 ehRecvr - ok
15:49:02.0767 4748 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:49:02.0767 4748 ehSched - ok
15:49:02.0783 4748 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:49:02.0786 4748 elxstor - ok
15:49:02.0789 4748 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
15:49:02.0789 4748 ErrDev - ok
15:49:02.0820 4748 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:49:02.0822 4748 EventSystem - ok
15:49:02.0827 4748 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:49:02.0828 4748 exfat - ok
15:49:02.0832 4748 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:49:02.0833 4748 fastfat - ok
15:49:02.0871 4748 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
15:49:02.0874 4748 Fax - ok
15:49:02.0878 4748 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:49:02.0878 4748 fdc - ok
15:49:02.0887 4748 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:49:02.0888 4748 fdPHost - ok
15:49:02.0901 4748 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:49:02.0902 4748 FDResPub - ok
15:49:02.0906 4748 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:49:02.0906 4748 FileInfo - ok
15:49:02.0909 4748 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:49:02.0910 4748 Filetrace - ok
15:49:02.0913 4748 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:49:02.0914 4748 flpydisk - ok
15:49:02.0919 4748 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:49:02.0921 4748 FltMgr - ok
15:49:02.0958 4748 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
15:49:02.0963 4748 FontCache - ok
15:49:03.0033 4748 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:49:03.0033 4748 FontCache3.0.0.0 - ok
15:49:03.0037 4748 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:49:03.0038 4748 FsDepends - ok
15:49:03.0052 4748 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:49:03.0053 4748 Fs_Rec - ok
15:49:03.0086 4748 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:49:03.0087 4748 fvevol - ok
15:49:03.0090 4748 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:49:03.0091 4748 gagp30kx - ok
15:49:03.0106 4748 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
15:49:03.0110 4748 gpsvc - ok
15:49:03.0177 4748 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:49:03.0178 4748 gupdate - ok
15:49:03.0181 4748 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:49:03.0182 4748 gupdatem - ok
15:49:03.0190 4748 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:49:03.0191 4748 hcw85cir - ok
15:49:03.0236 4748 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:49:03.0238 4748 HdAudAddService - ok
15:49:03.0292 4748 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:49:03.0293 4748 HDAudBus - ok
15:49:03.0300 4748 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:49:03.0301 4748 HidBatt - ok
15:49:03.0304 4748 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:49:03.0305 4748 HidBth - ok
15:49:03.0318 4748 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:49:03.0319 4748 HidIr - ok
15:49:03.0329 4748 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:49:03.0330 4748 hidserv - ok
15:49:03.0353 4748 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:49:03.0353 4748 HidUsb - ok
15:49:03.0395 4748 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:49:03.0396 4748 hkmsvc - ok
15:49:03.0405 4748 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:49:03.0406 4748 HomeGroupListener - ok
15:49:03.0432 4748 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:49:03.0433 4748 HomeGroupProvider - ok
15:49:03.0441 4748 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
15:49:03.0442 4748 HpSAMD - ok
15:49:03.0470 4748 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:49:03.0474 4748 HTTP - ok
15:49:03.0477 4748 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:49:03.0477 4748 hwpolicy - ok
15:49:03.0481 4748 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:49:03.0482 4748 i8042prt - ok
15:49:03.0511 4748 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:49:03.0513 4748 iaStorV - ok
15:49:03.0561 4748 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:49:03.0565 4748 idsvc - ok
15:49:03.0620 4748 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:49:03.0621 4748 iirsp - ok
15:49:03.0644 4748 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
15:49:03.0648 4748 IKEEXT - ok
15:49:03.0652 4748 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
15:49:03.0653 4748 intelide - ok
15:49:03.0656 4748 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:49:03.0657 4748 intelppm - ok
15:49:03.0677 4748 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:49:03.0678 4748 IPBusEnum - ok
15:49:03.0682 4748 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:49:03.0683 4748 IpFilterDriver - ok
15:49:03.0701 4748 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:49:03.0704 4748 iphlpsvc - ok
15:49:03.0708 4748 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:49:03.0709 4748 IPMIDRV - ok
15:49:03.0745 4748 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:49:03.0746 4748 IPNAT - ok
15:49:03.0749 4748 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:49:03.0750 4748 IRENUM - ok
15:49:03.0753 4748 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
15:49:03.0754 4748 isapnp - ok
15:49:03.0776 4748 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:49:03.0777 4748 iScsiPrt - ok
15:49:03.0850 4748 [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
15:49:03.0851 4748 JRAID - ok
15:49:03.0854 4748 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:49:03.0855 4748 kbdclass - ok
15:49:03.0858 4748 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:49:03.0858 4748 kbdhid - ok
15:49:03.0869 4748 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
15:49:03.0870 4748 KeyIso - ok
15:49:03.0898 4748 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:49:03.0899 4748 KSecDD - ok
15:49:03.0906 4748 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:49:03.0907 4748 KSecPkg - ok
15:49:03.0932 4748 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:49:03.0932 4748 ksthunk - ok
15:49:04.0014 4748 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:49:04.0016 4748 KtmRm - ok
15:49:04.0146 4748 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:49:04.0148 4748 LanmanServer - ok
15:49:04.0251 4748 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:49:04.0252 4748 LanmanWorkstation - ok
15:49:04.0301 4748 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
15:49:04.0301 4748 LGBusEnum - ok
15:49:04.0315 4748 [ F705A641C18DF31B48B5DBDA94B425E4 ] LGPBTDD C:\Windows\system32\Drivers\LGPBTDD.sys
15:49:04.0315 4748 LGPBTDD - ok
15:49:04.0366 4748 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
15:49:04.0367 4748 LGVirHid - ok
15:49:04.0380 4748 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:49:04.0381 4748 lltdio - ok
15:49:04.0386 4748 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:49:04.0388 4748 lltdsvc - ok
15:49:04.0391 4748 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:49:04.0392 4748 lmhosts - ok
15:49:04.0397 4748 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:49:04.0398 4748 LSI_FC - ok
15:49:04.0410 4748 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:49:04.0411 4748 LSI_SAS - ok
15:49:04.0414 4748 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:49:04.0415 4748 LSI_SAS2 - ok
15:49:04.0418 4748 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:49:04.0419 4748 LSI_SCSI - ok
15:49:04.0471 4748 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:49:04.0472 4748 luafv - ok
15:49:04.0526 4748 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:49:04.0527 4748 Mcx2Svc - ok
15:49:04.0530 4748 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:49:04.0531 4748 megasas - ok
15:49:04.0541 4748 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:49:04.0543 4748 MegaSR - ok
15:49:04.0566 4748 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:49:04.0567 4748 MMCSS - ok
15:49:04.0570 4748 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:49:04.0571 4748 Modem - ok
15:49:04.0581 4748 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:49:04.0582 4748 monitor - ok
15:49:04.0585 4748 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:49:04.0585 4748 mouclass - ok
15:49:04.0588 4748 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:49:04.0589 4748 mouhid - ok
15:49:04.0599 4748 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:49:04.0600 4748 mountmgr - ok
15:49:04.0604 4748 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
15:49:04.0605 4748 mpio - ok
15:49:04.0635 4748 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:49:04.0635 4748 mpsdrv - ok
15:49:04.0655 4748 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:49:04.0659 4748 MpsSvc - ok
15:49:04.0663 4748 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:49:04.0664 4748 MRxDAV - ok
15:49:04.0692 4748 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:49:04.0693 4748 mrxsmb - ok
15:49:04.0708 4748 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:49:04.0710 4748 mrxsmb10 - ok
15:49:04.0714 4748 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:49:04.0714 4748 mrxsmb20 - ok
15:49:04.0730 4748 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
15:49:04.0731 4748 msahci - ok
15:49:04.0735 4748 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
15:49:04.0735 4748 msdsm - ok
15:49:04.0750 4748 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:49:04.0751 4748 MSDTC - ok
15:49:04.0757 4748 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:49:04.0758 4748 Msfs - ok
15:49:04.0760 4748 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:49:04.0761 4748 mshidkmdf - ok
15:49:04.0763 4748 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
15:49:04.0764 4748 msisadrv - ok
15:49:04.0772 4748 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:49:04.0773 4748 MSiSCSI - ok
15:49:04.0776 4748 msiserver - ok
15:49:04.0794 4748 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:49:04.0794 4748 MSKSSRV - ok
15:49:04.0797 4748 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:49:04.0798 4748 MSPCLOCK - ok
15:49:04.0801 4748 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:49:04.0801 4748 MSPQM - ok
15:49:04.0820 4748 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:49:04.0822 4748 MsRPC - ok
15:49:04.0827 4748 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:49:04.0827 4748 mssmbios - ok
15:49:04.0830 4748 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:49:04.0830 4748 MSTEE - ok
15:49:04.0833 4748 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:49:04.0833 4748 MTConfig - ok
15:49:04.0877 4748 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
15:49:04.0878 4748 MTsensor - ok
15:49:04.0902 4748 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:49:04.0902 4748 Mup - ok
15:49:04.0903 4748 Scan interrupted by user!
15:49:04.0903 4748 ================ Scan global ===============================
15:49:04.0903 4748 Scan interrupted by user!
15:49:04.0903 4748 ================ Scan MBR ==================================
15:49:04.0903 4748 Scan interrupted by user!
15:49:04.0903 4748 ================ Scan VBR ==================================
15:49:04.0903 4748 Scan interrupted by user!
15:49:04.0903 4748 ============================================================
15:49:04.0903 4748 Scan finished
15:49:04.0903 4748 ============================================================
15:49:04.0909 4444 Detected object count: 0
15:49:04.0909 4444 Actual detected object count: 0
15:49:22.0722 3116 ============================================================
15:49:22.0722 3116 Scan started
15:49:22.0722 3116 Mode: Manual; SigCheck; TDLFS;
15:49:22.0722 3116 ============================================================
15:49:23.0375 3116 ================ Scan system memory ========================
15:49:23.0375 3116 System memory - ok
15:49:23.0375 3116 ================ Scan services =============================
15:49:23.0707 3116 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
15:49:23.0780 3116 1394ohci - ok
15:49:23.0800 3116 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
15:49:23.0811 3116 ACPI - ok
15:49:23.0814 3116 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
15:49:23.0871 3116 AcpiPmi - ok
15:49:23.0883 3116 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:49:23.0895 3116 adp94xx - ok
15:49:23.0911 3116 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:49:23.0921 3116 adpahci - ok
15:49:23.0925 3116 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:49:23.0934 3116 adpu320 - ok
15:49:23.0964 3116 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:49:24.0029 3116 AeLookupSvc - ok
15:49:24.0053 3116 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
15:49:24.0086 3116 AFD - ok
15:49:24.0098 3116 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
15:49:24.0105 3116 agp440 - ok
15:49:24.0180 3116 [ 0E64D7144478027F427F601D9D569EC9 ] AIDA64Driver C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64
15:49:24.0192 3116 AIDA64Driver - ok
15:49:24.0200 3116 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:49:24.0234 3116 ALG - ok
15:49:24.0236 3116 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
15:49:24.0243 3116 aliide - ok
15:49:24.0262 3116 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:49:24.0306 3116 AMD External Events Utility - ok
15:49:24.0348 3116 AMD FUEL Service - ok
15:49:24.0351 3116 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
15:49:24.0358 3116 amdide - ok
15:49:24.0373 3116 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
15:49:24.0379 3116 amdiox64 - ok
15:49:24.0383 3116 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:49:24.0403 3116 AmdK8 - ok
15:49:24.0577 3116 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:49:24.0669 3116 amdkmdag - ok
15:49:24.0794 3116 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:49:24.0837 3116 amdkmdap - ok
15:49:24.0841 3116 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:49:24.0869 3116 AmdPPM - ok
15:49:24.0920 3116 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:49:24.0928 3116 amdsata - ok
15:49:24.0943 3116 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:49:24.0952 3116 amdsbs - ok
15:49:24.0969 3116 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:49:24.0976 3116 amdxata - ok
15:49:25.0123 3116 [ 459465DA28E49B358ECFE0D788F328F4 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:49:25.0130 3116 AntiVirSchedulerService - ok
15:49:25.0152 3116 [ BCDD17E8469D647A71B347C4B6F86685 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:49:25.0159 3116 AntiVirService - ok
15:49:25.0177 3116 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
15:49:25.0183 3116 AODDriver4.2 - ok
15:49:25.0187 3116 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
15:49:25.0197 3116 AppID - ok
15:49:25.0221 3116 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:49:25.0291 3116 AppIDSvc - ok
15:49:25.0294 3116 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
15:49:25.0314 3116 Appinfo - ok
15:49:25.0347 3116 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
15:49:25.0361 3116 AppMgmt - ok
15:49:25.0365 3116 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:49:25.0373 3116 arc - ok
15:49:25.0387 3116 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:49:25.0395 3116 arcsas - ok
15:49:25.0607 3116 [ FDB98C34BB26C59D5E550A734168E4C5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:49:25.0614 3116 aspnet_state - ok
15:49:25.0617 3116 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:49:25.0670 3116 AsyncMac - ok
15:49:25.0672 3116 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
15:49:25.0680 3116 atapi - ok
15:49:25.0711 3116 [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:49:25.0726 3116 AtiHDAudioService - ok
15:49:25.0752 3116 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:49:25.0830 3116 AudioEndpointBuilder - ok
15:49:25.0838 3116 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:49:25.0864 3116 AudioSrv - ok
15:49:25.0878 3116 [ BFE9598EBC3934CF8D876A303849C896 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:49:25.0885 3116 avgntflt - ok
15:49:25.0903 3116 [ F74D86A9FB35FA5F24627B8DBBF3A9A4 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:49:25.0910 3116 avipbb - ok
15:49:25.0920 3116 [ CD0E732347BF09717E0BDDC0C66699AB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
15:49:25.0927 3116 avkmgr - ok
15:49:25.0944 3116 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:49:25.0986 3116 AxInstSV - ok
15:49:26.0008 3116 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:49:26.0018 3116 b06bdrv - ok
15:49:26.0036 3116 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:49:26.0052 3116 b57nd60a - ok
15:49:26.0086 3116 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:49:26.0126 3116 BDESVC - ok
15:49:26.0129 3116 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:49:26.0176 3116 Beep - ok
15:49:26.0198 3116 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
15:49:26.0238 3116 BFE - ok
15:49:26.0284 3116 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
15:49:26.0329 3116 BITS - ok
15:49:26.0333 3116 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:49:26.0355 3116 blbdrive - ok
15:49:26.0390 3116 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:49:26.0398 3116 bowser - ok
15:49:26.0400 3116 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:49:26.0417 3116 BrFiltLo - ok
15:49:26.0420 3116 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:49:26.0439 3116 BrFiltUp - ok
15:49:26.0468 3116 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
15:49:26.0476 3116 Browser - ok
15:49:26.0508 3116 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:49:26.0518 3116 Brserid - ok
15:49:26.0521 3116 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:49:26.0530 3116 BrSerWdm - ok
15:49:26.0533 3116 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:49:26.0542 3116 BrUsbMdm - ok
15:49:26.0545 3116 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:49:26.0553 3116 BrUsbSer - ok
15:49:26.0556 3116 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:49:26.0566 3116 BTHMODEM - ok
15:49:26.0579 3116 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:49:26.0617 3116 bthserv - ok
15:49:26.0621 3116 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:49:26.0650 3116 cdfs - ok
15:49:26.0654 3116 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:49:26.0678 3116 cdrom - ok
15:49:26.0704 3116 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
15:49:26.0773 3116 CertPropSvc - ok
15:49:26.0777 3116 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:49:26.0810 3116 circlass - ok
15:49:26.0827 3116 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:49:26.0838 3116 CLFS - ok
15:49:26.0937 3116 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:49:26.0944 3116 clr_optimization_v2.0.50727_32 - ok
15:49:27.0043 3116 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:49:27.0049 3116 clr_optimization_v2.0.50727_64 - ok
15:49:27.0233 3116 [ 637245588A4BFDE03AA621DCC5AEFD4A ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:49:27.0240 3116 clr_optimization_v4.0.30319_32 - ok
15:49:27.0247 3116 [ 6C85BD0F605014CA2277DA5518F35DBA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:49:27.0254 3116 clr_optimization_v4.0.30319_64 - ok
15:49:27.0272 3116 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:49:27.0279 3116 CmBatt - ok
15:49:27.0282 3116 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
15:49:27.0289 3116 cmdide - ok
15:49:27.0342 3116 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
15:49:27.0357 3116 CNG - ok
15:49:27.0366 3116 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:49:27.0373 3116 Compbatt - ok
15:49:27.0377 3116 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:49:27.0401 3116 CompositeBus - ok
15:49:27.0404 3116 COMSysApp - ok
15:49:27.0407 3116 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:49:27.0415 3116 crcdisk - ok
15:49:27.0473 3116 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
15:49:27.0488 3116 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
15:49:27.0488 3116 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
15:49:27.0511 3116 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
15:49:27.0527 3116 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
15:49:27.0527 3116 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
15:49:27.0553 3116 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:49:27.0562 3116 CryptSvc - ok
15:49:27.0598 3116 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
15:49:27.0615 3116 CSC - ok
15:49:27.0629 3116 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
15:49:27.0668 3116 CscService - ok
15:49:27.0766 3116 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
15:49:27.0772 3116 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
15:49:27.0772 3116 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
15:49:27.0824 3116 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:49:27.0877 3116 DcomLaunch - ok
15:49:27.0906 3116 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:49:27.0973 3116 defragsvc - ok
15:49:27.0997 3116 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:49:28.0016 3116 DfsC - ok
15:49:28.0037 3116 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
15:49:28.0083 3116 Dhcp - ok
15:49:28.0097 3116 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:49:28.0147 3116 discache - ok
15:49:28.0151 3116 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:49:28.0159 3116 Disk - ok
15:49:28.0183 3116 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:49:28.0202 3116 Dnscache - ok
15:49:28.0232 3116 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
15:49:28.0272 3116 dot3svc - ok
15:49:28.0295 3116 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
15:49:28.0320 3116 DPS - ok
15:49:28.0337 3116 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:49:28.0354 3116 drmkaud - ok
15:49:28.0385 3116 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
15:49:28.0394 3116 dtsoftbus01 - ok
15:49:28.0432 3116 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:49:28.0449 3116 DXGKrnl - ok
15:49:28.0465 3116 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:49:28.0529 3116 EapHost - ok
15:49:28.0580 3116 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:49:28.0623 3116 ebdrv - ok
15:49:28.0651 3116 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
15:49:28.0675 3116 EFS - ok
15:49:28.0789 3116 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:49:28.0812 3116 ehRecvr - ok
15:49:28.0851 3116 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:49:28.0873 3116 ehSched - ok
15:49:28.0890 3116 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:49:28.0901 3116 elxstor - ok
15:49:28.0904 3116 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
15:49:28.0918 3116 ErrDev - ok
15:49:28.0981 3116 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:49:29.0059 3116 EventSystem - ok
15:49:29.0116 3116 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:49:29.0139 3116 exfat - ok
15:49:29.0164 3116 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:49:29.0196 3116 fastfat - ok
15:49:29.0231 3116 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
15:49:29.0260 3116 Fax - ok
15:49:29.0263 3116 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:49:29.0280 3116 fdc - ok
15:49:29.0292 3116 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:49:29.0325 3116 fdPHost - ok
15:49:29.0339 3116 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:49:29.0376 3116 FDResPub - ok
15:49:29.0380 3116 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:49:29.0387 3116 FileInfo - ok
15:49:29.0390 3116 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:49:29.0426 3116 Filetrace - ok
15:49:29.0429 3116 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:49:29.0448 3116 flpydisk - ok
15:49:29.0464 3116 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:49:29.0474 3116 FltMgr - ok
15:49:29.0506 3116 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
15:49:29.0521 3116 FontCache - ok
15:49:29.0592 3116 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:49:29.0598 3116 FontCache3.0.0.0 - ok
15:49:29.0602 3116 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:49:29.0609 3116 FsDepends - ok
15:49:29.0622 3116 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:49:29.0629 3116 Fs_Rec - ok
15:49:29.0711 3116 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:49:29.0722 3116 fvevol - ok
15:49:29.0725 3116 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:49:29.0733 3116 gagp30kx - ok
15:49:29.0753 3116 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
15:49:29.0776 3116 gpsvc - ok
15:49:29.0846 3116 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:49:29.0856 3116 gupdate - ok
15:49:29.0863 3116 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:49:29.0869 3116 gupdatem - ok
15:49:29.0882 3116 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:49:29.0918 3116 hcw85cir - ok
15:49:29.0949 3116 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:49:29.0972 3116 HdAudAddService - ok
15:49:29.0976 3116 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:49:29.0986 3116 HDAudBus - ok
15:49:29.0988 3116 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:49:29.0996 3116 HidBatt - ok
15:49:30.0008 3116 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:49:30.0034 3116 HidBth - ok
15:49:30.0037 3116 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:49:30.0068 3116 HidIr - ok
15:49:30.0087 3116 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:49:30.0125 3116 hidserv - ok
15:49:30.0128 3116 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:49:30.0143 3116 HidUsb - ok
15:49:30.0165 3116 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:49:30.0198 3116 hkmsvc - ok
15:49:30.0218 3116 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:49:30.0244 3116 HomeGroupListener - ok
15:49:30.0268 3116 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:49:30.0277 3116 HomeGroupProvider - ok
15:49:30.0289 3116 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
15:49:30.0296 3116 HpSAMD - ok
15:49:30.0317 3116 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:49:30.0343 3116 HTTP - ok
15:49:30.0347 3116 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:49:30.0354 3116 hwpolicy - ok
15:49:30.0358 3116 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:49:30.0366 3116 i8042prt - ok
15:49:30.0391 3116 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:49:30.0402 3116 iaStorV - ok
15:49:30.0441 3116 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:49:30.0455 3116 idsvc - ok
15:49:30.0467 3116 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:49:30.0475 3116 iirsp - ok
15:49:30.0502 3116 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
15:49:30.0539 3116 IKEEXT - ok
15:49:30.0543 3116 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
15:49:30.0551 3116 intelide - ok
15:49:30.0554 3116 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:49:30.0568 3116 intelppm - ok
15:49:30.0580 3116 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:49:30.0616 3116 IPBusEnum - ok
15:49:30.0620 3116 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:49:30.0656 3116 IpFilterDriver - ok
15:49:30.0680 3116 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:49:30.0715 3116 iphlpsvc - ok
15:49:30.0719 3116 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:49:30.0734 3116 IPMIDRV - ok
15:49:30.0747 3116 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:49:30.0800 3116 IPNAT - ok
15:49:30.0803 3116 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:49:30.0813 3116 IRENUM - ok
15:49:30.0816 3116 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
15:49:30.0823 3116 isapnp - ok
15:49:30.0843 3116 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:49:30.0853 3116 iScsiPrt - ok
15:49:30.0873 3116 [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
15:49:30.0881 3116 JRAID - ok
15:49:30.0884 3116 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:49:30.0891 3116 kbdclass - ok
15:49:30.0894 3116 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:49:30.0914 3116 kbdhid - ok
15:49:30.0926 3116 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
15:49:30.0933 3116 KeyIso - ok
15:49:30.0955 3116 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:49:30.0962 3116 KSecDD - ok
15:49:30.0974 3116 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:49:30.0983 3116 KSecPkg - ok
15:49:31.0022 3116 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:49:31.0050 3116 ksthunk - ok
15:49:31.0070 3116 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:49:31.0096 3116 KtmRm - ok
15:49:31.0125 3116 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:49:31.0135 3116 LanmanServer - ok
15:49:31.0164 3116 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:49:31.0187 3116 LanmanWorkstation - ok
15:49:31.0214 3116 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
15:49:31.0220 3116 LGBusEnum - ok
15:49:31.0239 3116 [ F705A641C18DF31B48B5DBDA94B425E4 ] LGPBTDD C:\Windows\system32\Drivers\LGPBTDD.sys
15:49:31.0245 3116 LGPBTDD - ok
15:49:31.0279 3116 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
15:49:31.0285 3116 LGVirHid - ok
15:49:31.0288 3116 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:49:31.0317 3116 lltdio - ok
15:49:31.0323 3116 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:49:31.0359 3116 lltdsvc - ok
15:49:31.0362 3116 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:49:31.0394 3116 lmhosts - ok
15:49:31.0399 3116 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:49:31.0407 3116 LSI_FC - ok
15:49:31.0422 3116 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:49:31.0430 3116 LSI_SAS - ok
15:49:31.0433 3116 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:49:31.0441 3116 LSI_SAS2 - ok
15:49:31.0444 3116 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:49:31.0452 3116 LSI_SCSI - ok
15:49:31.0461 3116 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:49:31.0486 3116 luafv - ok
15:49:31.0517 3116 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:49:31.0545 3116 Mcx2Svc - ok
15:49:31.0548 3116 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:49:31.0555 3116 megasas - ok
15:49:31.0576 3116 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:49:31.0586 3116 MegaSR - ok
15:49:31.0612 3116 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:49:31.0650 3116 MMCSS - ok
15:49:31.0653 3116 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:49:31.0746 3116 Modem - ok
15:49:31.0749 3116 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:49:31.0830 3116 monitor - ok
15:49:31.0833 3116 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:49:31.0841 3116 mouclass - ok
15:49:31.0844 3116 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:49:31.0861 3116 mouhid - ok
15:49:31.0864 3116 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:49:31.0872 3116 mountmgr - ok
15:49:31.0889 3116 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
15:49:31.0898 3116 mpio - ok
15:49:31.0901 3116 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:49:31.0939 3116 mpsdrv - ok
15:49:32.0043 3116 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:49:32.0085 3116 MpsSvc - ok
15:49:32.0103 3116 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:49:32.0122 3116 MRxDAV - ok
15:49:32.0168 3116 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:49:32.0189 3116 mrxsmb - ok
15:49:32.0206 3116 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:49:32.0227 3116 mrxsmb10 - ok
15:49:32.0230 3116 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:49:32.0238 3116 mrxsmb20 - ok
15:49:32.0251 3116 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
15:49:32.0258 3116 msahci - ok
15:49:32.0262 3116 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
15:49:32.0270 3116 msdsm - ok
15:49:32.0281 3116 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:49:32.0300 3116 MSDTC - ok
15:49:32.0306 3116 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:49:32.0329 3116 Msfs - ok
15:49:32.0331 3116 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:49:32.0354 3116 mshidkmdf - ok
15:49:32.0357 3116 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
15:49:32.0364 3116 msisadrv - ok
15:49:32.0392 3116 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:49:32.0415 3116 MSiSCSI - ok
15:49:32.0418 3116 msiserver - ok
15:49:32.0432 3116 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:49:32.0467 3116 MSKSSRV - ok
15:49:32.0470 3116 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:49:32.0498 3116 MSPCLOCK - ok
15:49:32.0501 3116 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:49:32.0522 3116 MSPQM - ok
15:49:32.0539 3116 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:49:32.0550 3116 MsRPC - ok
15:49:32.0555 3116 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:49:32.0562 3116 mssmbios - ok
15:49:32.0565 3116 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:49:32.0587 3116 MSTEE - ok
15:49:32.0590 3116 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:49:32.0598 3116 MTConfig - ok
15:49:32.0618 3116 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
15:49:32.0624 3116 MTsensor - ok
15:49:32.0632 3116 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:49:32.0640 3116 Mup - ok
15:49:32.0673 3116 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
15:49:32.0698 3116 napagent - ok
15:49:32.0745 3116 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:49:32.0768 3116 NativeWifiP - ok
15:49:32.0810 3116 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
15:49:32.0826 3116 NDIS - ok
15:49:32.0864 3116 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:49:32.0901 3116 NdisCap - ok
15:49:32.0915 3116 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:49:32.0937 3116 NdisTapi - ok
15:49:32.0940 3116 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:49:32.0963 3116 Ndisuio - ok
15:49:32.0967 3116 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:49:32.0991 3116 NdisWan - ok
15:49:32.0994 3116 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:49:33.0023 3116 NDProxy - ok
15:49:33.0026 3116 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:49:33.0054 3116 NetBIOS - ok
15:49:33.0059 3116 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:49:33.0093 3116 NetBT - ok
15:49:33.0100 3116 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
15:49:33.0108 3116 Netlogon - ok
15:49:33.0124 3116 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:49:33.0162 3116 Netman - ok
15:49:33.0209 3116 [ 536BAF64228AD71305C50FB6B5C2DC6F ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:49:33.0217 3116 NetMsmqActivator - ok
15:49:33.0220 3116 [ 536BAF64228AD71305C50FB6B5C2DC6F ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:49:33.0227 3116 NetPipeActivator - ok
15:49:33.0243 3116 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:49:33.0284 3116 netprofm - ok
15:49:33.0288 3116 [ 536BAF64228AD71305C50FB6B5C2DC6F ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:49:33.0295 3116 NetTcpActivator - ok
15:49:33.0298 3116 [ 536BAF64228AD71305C50FB6B5C2DC6F ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:49:33.0305 3116 NetTcpPortSharing - ok
15:49:33.0308 3116 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:49:33.0316 3116 nfrd960 - ok
15:49:33.0335 3116 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:49:33.0360 3116 NlaSvc - ok
15:49:33.0363 3116 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:49:33.0385 3116 Npfs - ok
15:49:33.0397 3116 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:49:33.0444 3116 nsi - ok
15:49:33.0447 3116 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:49:33.0486 3116 nsiproxy - ok
15:49:33.0529 3116 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:49:33.0553 3116 Ntfs - ok
15:49:33.0563 3116 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:49:33.0593 3116 Null - ok
15:49:33.0628 3116 [ 8EBCB9165EE7F1571842F4D9D624A74C ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
15:49:33.0641 3116 nusb3hub - ok
15:49:33.0692 3116 [ 5D54DBB12BBFE07CC283FD39F2CD6D63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
15:49:33.0718 3116 nusb3xhc - ok
15:49:33.0742 3116 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:49:33.0750 3116 nvraid - ok
15:49:33.0771 3116 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:49:33.0779 3116 nvstor - ok
15:49:33.0800 3116 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
15:49:33.0808 3116 nv_agp - ok
15:49:33.0812 3116 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:49:33.0820 3116 ohci1394 - ok
15:49:33.0842 3116 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:49:33.0859 3116 p2pimsvc - ok
15:49:33.0877 3116 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:49:33.0902 3116 p2psvc - ok
15:49:33.0918 3116 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:49:33.0941 3116 Parport - ok
15:49:33.0966 3116 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:49:33.0974 3116 partmgr - ok
15:49:33.0978 3116 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:49:34.0070 3116 PcaSvc - ok
15:49:34.0087 3116 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
15:49:34.0096 3116 pci - ok
15:49:34.0099 3116 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
15:49:34.0106 3116 pciide - ok
15:49:34.0114 3116 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:49:34.0123 3116 pcmcia - ok
15:49:34.0126 3116 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:49:34.0134 3116 pcw - ok
15:49:34.0153 3116 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:49:34.0189 3116 PEAUTH - ok
15:49:34.0232 3116 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
15:49:34.0264 3116 PeerDistSvc - ok
15:49:34.0497 3116 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:49:34.0512 3116 PerfHost - ok
15:49:34.0553 3116 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
15:49:34.0591 3116 pla - ok
15:49:34.0631 3116 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:49:34.0643 3116 PlugPlay - ok
15:49:34.0720 3116 PnkBstrA - ok
15:49:34.0733 3116 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:49:34.0752 3116 PNRPAutoReg - ok
15:49:34.0770 3116 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:49:34.0779 3116 PNRPsvc - ok
15:49:34.0827 3116 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:49:34.0869 3116 PolicyAgent - ok
15:49:34.0933 3116 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:49:34.0989 3116 Power - ok
15:49:35.0075 3116 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:49:35.0098 3116 PptpMiniport - ok
15:49:35.0195 3116 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:49:35.0258 3116 Processor - ok
15:49:35.0319 3116 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
15:49:35.0337 3116 ProfSvc - ok
15:49:35.0352 3116 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:49:35.0360 3116 ProtectedStorage - ok
15:49:35.0385 3116 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:49:35.0414 3116 Psched - ok
15:49:35.0448 3116 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:49:35.0470 3116 ql2300 - ok
15:49:35.0475 3116 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:49:35.0483 3116 ql40xx - ok
15:49:35.0498 3116 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:49:35.0510 3116 QWAVE - ok
15:49:35.0514 3116 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:49:35.0535 3116 QWAVEdrv - ok
15:49:35.0538 3116 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:49:35.0572 3116 RasAcd - ok
15:49:35.0622 3116 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:49:35.0658 3116 RasAgileVpn - ok
15:49:35.0672 3116 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:49:35.0702 3116 RasAuto - ok
15:49:35.0706 3116 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:49:35.0745 3116 Rasl2tp - ok
15:49:35.0769 3116 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
15:49:35.0795 3116 RasMan - ok
15:49:35.0799 3116 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:49:35.0827 3116 RasPppoe - ok
15:49:35.0831 3116 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:49:35.0862 3116 RasSstp - ok
15:49:35.0867 3116 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:49:35.0898 3116 rdbss - ok
15:49:35.0901 3116 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:49:35.0922 3116 rdpbus - ok
15:49:35.0925 3116 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:49:35.0955 3116 RDPCDD - ok
15:49:35.0985 3116 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
15:49:36.0001 3116 RDPDR - ok
15:49:36.0013 3116 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:49:36.0041 3116 RDPENCDD - ok
15:49:36.0046 3116 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:49:36.0068 3116 RDPREFMP - ok
15:49:36.0090 3116 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:49:36.0105 3116 RDPWD - ok
15:49:36.0118 3116 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:49:36.0128 3116 rdyboost - ok
15:49:36.0167 3116 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:49:36.0206 3116 RemoteAccess - ok
15:49:36.0219 3116 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:49:36.0255 3116 RemoteRegistry - ok
15:49:36.0274 3116 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:49:36.0298 3116 RpcEptMapper - ok
15:49:36.0313 3116 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:49:36.0332 3116 RpcLocator - ok
15:49:36.0346 3116 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
15:49:36.0372 3116 RpcSs - ok
15:49:36.0389 3116 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:49:36.0411 3116 rspndr - ok
15:49:36.0461 3116 [ 3C85058541D55BFCEFD9177A68A507C6 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
15:49:36.0488 3116 RTL8192su - ok
15:49:36.0515 3116 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
15:49:36.0523 3116 s3cap - ok
15:49:36.0533 3116 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
15:49:36.0541 3116 SamSs - ok
15:49:36.0544 3116 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
15:49:36.0552 3116 sbp2port - ok
15:49:36.0563 3116 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:49:36.0597 3116 SCardSvr - ok
15:49:36.0600 3116 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:49:36.0637 3116 scfilter - ok
15:49:36.0671 3116 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
15:49:36.0686 3116 Schedule - ok
15:49:36.0738 3116 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:49:36.0762 3116 SCPolicySvc - ok
15:49:36.0780 3116 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:49:36.0789 3116 SDRSVC - ok
15:49:36.0812 3116 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:49:36.0834 3116 secdrv - ok
15:49:36.0850 3116 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
15:49:36.0873 3116 seclogon - ok
15:49:36.0905 3116 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:49:36.0943 3116 SENS - ok
15:49:36.0955 3116 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:49:36.0974 3116 SensrSvc - ok
15:49:36.0977 3116 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:49:36.0985 3116 Serenum - ok
15:49:36.0998 3116 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:49:37.0016 3116 Serial - ok
15:49:37.0059 3116 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:49:37.0076 3116 sermouse - ok
15:49:37.0096 3116 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
15:49:37.0119 3116 SessionEnv - ok
15:49:37.0122 3116 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
15:49:37.0131 3116 sffdisk - ok
15:49:37.0134 3116 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
15:49:37.0144 3116 sffp_mmc - ok
15:49:37.0147 3116 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
15:49:37.0166 3116 sffp_sd - ok
15:49:37.0169 3116 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:49:37.0186 3116 sfloppy - ok
15:49:37.0205 3116 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:49:37.0237 3116 SharedAccess - ok
15:49:37.0277 3116 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:49:37.0302 3116 ShellHWDetection - ok
15:49:37.0314 3116 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:49:37.0321 3116 SiSRaid2 - ok
15:49:37.0325 3116 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:49:37.0333 3116 SiSRaid4 - ok
15:49:37.0435 3116 [ 0A0A0183711EFB04F9BCC32BB44471F2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:49:37.0442 3116 SkypeUpdate - ok
15:49:37.0456 3116 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:49:37.0494 3116 Smb - ok
15:49:37.0515 3116 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:49:37.0523 3116 SNMPTRAP - ok
15:49:37.0527 3116 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:49:37.0534 3116 spldr - ok
15:49:37.0564 3116 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
15:49:37.0576 3116 Spooler - ok
15:49:37.0622 3116 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
15:49:37.0655 3116 sppsvc - ok
15:49:37.0659 3116 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:49:37.0691 3116 sppuinotify - ok
15:49:37.0719 3116 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:49:37.0741 3116 srv - ok
15:49:37.0757 3116 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:49:37.0776 3116 srv2 - ok
15:49:37.0791 3116 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:49:37.0800 3116 srvnet - ok
15:49:37.0814 3116 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:49:37.0854 3116 SSDPSRV - ok
15:49:37.0863 3116 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:49:37.0886 3116 SstpSvc - ok
15:49:37.0929 3116 Steam Client Service - ok
15:49:37.0937 3116 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:49:37.0944 3116 stexstor - ok
15:49:37.0977 3116 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
15:49:38.0010 3116 stisvc - ok
15:49:38.0042 3116 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
15:49:38.0049 3116 storflt - ok
15:49:38.0052 3116 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
15:49:38.0060 3116 storvsc - ok
15:49:38.0063 3116 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:49:38.0071 3116 swenum - ok
15:49:38.0098 3116 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:49:38.0137 3116 swprv - ok
15:49:38.0168 3116 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
15:49:38.0203 3116 SysMain - ok
15:49:38.0220 3116 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:49:38.0247 3116 TabletInputService - ok
15:49:38.0266 3116 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
15:49:38.0292 3116 TapiSrv - ok
15:49:38.0301 3116 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:49:38.0338 3116 TBS - ok
15:49:38.0389 3116 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:49:38.0414 3116 Tcpip - ok
15:49:38.0441 3116 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:49:38.0466 3116 TCPIP6 - ok
15:49:38.0518 3116 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:49:38.0547 3116 tcpipreg - ok
15:49:38.0552 3116 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:49:38.0559 3116 TDPIPE - ok
15:49:38.0586 3116 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:49:38.0603 3116 TDTCP - ok
15:49:38.0615 3116 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:49:38.0638 3116 tdx - ok
15:49:38.0655 3116 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:49:38.0662 3116 TermDD - ok
15:49:38.0689 3116 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
15:49:38.0726 3116 TermService - ok
15:49:38.0738 3116 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:49:38.0786 3116 Themes - ok
15:49:38.0809 3116 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:49:38.0832 3116 THREADORDER - ok
15:49:38.0844 3116 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:49:38.0868 3116 TrkWks - ok
15:49:38.0902 3116 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:49:38.0917 3116 TrustedInstaller - ok
15:49:38.0922 3116 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:49:38.0944 3116 tssecsrv - ok
15:49:38.0967 3116 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:49:38.0990 3116 tunnel - ok
15:49:38.0994 3116 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:49:39.0001 3116 uagp35 - ok
15:49:39.0015 3116 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:49:39.0039 3116 udfs - ok
15:49:39.0052 3116 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:49:39.0061 3116 UI0Detect - ok
15:49:39.0064 3116 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
15:49:39.0072 3116 uliagpkx - ok
15:49:39.0087 3116 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:49:39.0095 3116 umbus - ok
15:49:39.0127 3116 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:49:39.0143 3116 UmPass - ok
15:49:39.0169 3116 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
15:49:39.0179 3116 UmRdpService - ok
15:49:39.0198 3116 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:49:39.0224 3116 upnphost - ok
15:49:39.0259 3116 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:49:39.0282 3116 usbaudio - ok
15:49:39.0309 3116 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:49:39.0351 3116 usbccgp - ok
15:49:39.0363 3116 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
15:49:39.0382 3116 usbcir - ok
15:49:39.0405 3116 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:49:39.0425 3116 usbehci - ok
15:49:39.0447 3116 [ 858BE9C0E498C8E505E198E17EECE0D9 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
15:49:39.0453 3116 usbfilter - ok
15:49:39.0481 3116 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:49:39.0497 3116 usbhub - ok
15:49:39.0511 3116 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:49:39.0518 3116 usbohci - ok
15:49:39.0527 3116 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:49:39.0556 3116 usbprint - ok
15:49:39.0662 3116 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
15:49:39.0680 3116 USBSTOR - ok
15:49:39.0701 3116 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:49:39.0709 3116 usbuhci - ok
15:49:39.0721 3116 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:49:39.0758 3116 UxSms - ok
15:49:39.0767 3116 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
15:49:39.0775 3116 VaultSvc - ok
15:49:39.0795 3116 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
15:49:39.0803 3116 vdrvroot - ok
15:49:39.0833 3116 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
15:49:39.0852 3116 vds - ok
15:49:39.0855 3116 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:49:39.0864 3116 vga - ok
15:49:39.0867 3116 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:49:39.0896 3116 VgaSave - ok
15:49:39.0910 3116 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
15:49:39.0919 3116 vhdmp - ok
15:49:39.0971 3116 [ DFDF7F9CAA50EE72A633EA4BBD65A557 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
15:49:39.0988 3116 VIAHdAudAddService - ok
15:49:39.0991 3116 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
15:49:39.0999 3116 viaide - ok
15:49:40.0027 3116 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
15:49:40.0036 3116 vmbus - ok
15:49:40.0043 3116 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
15:49:40.0051 3116 VMBusHID - ok
15:49:40.0072 3116 [ 754C8BF43F0DD4B54865F174A62761E9 ] VMfilt C:\Windows\system32\drivers\VMfilt64.sys
15:49:40.0080 3116 VMfilt - ok
15:49:40.0083 3116 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
15:49:40.0091 3116 volmgr - ok
15:49:40.0105 3116 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:49:40.0116 3116 volmgrx - ok
15:49:40.0140 3116 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
15:49:40.0150 3116 volsnap - ok
15:49:40.0167 3116 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:49:40.0176 3116 vsmraid - ok
15:49:40.0206 3116 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
15:49:40.0235 3116 VSS - ok
15:49:40.0238 3116 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:49:40.0247 3116 vwifibus - ok
15:49:40.0262 3116 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:49:40.0296 3116 vwififlt - ok
15:49:40.0343 3116 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:49:40.0370 3116 W32Time - ok
15:49:40.0438 3116 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:49:40.0447 3116 WacomPen - ok
15:49:40.0524 3116 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:49:40.0559 3116 WANARP - ok
15:49:40.0562 3116 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:49:40.0585 3116 Wanarpv6 - ok
15:49:40.0615 3116 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
15:49:40.0634 3116 wbengine - ok
15:49:40.0639 3116 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:49:40.0666 3116 WbioSrvc - ok
15:49:40.0701 3116 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:49:40.0722 3116 wcncsvc - ok
15:49:40.0726 3116 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:49:40.0741 3116 WcsPlugInService - ok
15:49:40.0745 3116 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:49:40.0752 3116 Wd - ok
15:49:40.0781 3116 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:49:40.0798 3116 Wdf01000 - ok
15:49:40.0813 3116 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:49:40.0837 3116 WdiServiceHost - ok
15:49:40.0840 3116 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:49:40.0852 3116 WdiSystemHost - ok
15:49:40.0878 3116 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
15:49:40.0899 3116 WebClient - ok
15:49:40.0922 3116 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:49:40.0954 3116 Wecsvc - ok
15:49:40.0971 3116 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:49:41.0006 3116 wercplsupport - ok
15:49:41.0032 3116 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:49:41.0067 3116 WerSvc - ok
15:49:41.0081 3116 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:49:41.0103 3116 WfpLwf - ok
15:49:41.0106 3116 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:49:41.0114 3116 WIMMount - ok
15:49:41.0126 3116 WinDefend - ok
15:49:41.0132 3116 WinHttpAutoProxySvc - ok
15:49:41.0240 3116 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:49:41.0280 3116 Winmgmt - ok
15:49:41.0324 3116 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
15:49:41.0363 3116 WinRM - ok
15:49:41.0433 3116 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:49:41.0457 3116 WinUsb - ok
15:49:41.0478 3116 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:49:41.0508 3116 Wlansvc - ok
15:49:41.0559 3116 [ C71EE856C4F5B52E2D094F494CEE4936 ] WlanWpsSvc C:\Program Files (x86)\D-Link\DWA-131 revA\WlanWpsSvc.exe
15:49:41.0563 3116 WlanWpsSvc ( UnsignedFile.Multi.Generic ) - warning
15:49:41.0563 3116 WlanWpsSvc - detected UnsignedFile.Multi.Generic (1)
15:49:41.0571 3116 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:49:41.0579 3116 WmiAcpi - ok
15:49:41.0599 3116 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:49:41.0622 3116 wmiApSrv - ok
15:49:41.0636 3116 WMPNetworkSvc - ok
15:49:41.0648 3116 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:49:41.0656 3116 WPCSvc - ok
15:49:41.0660 3116 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:49:41.0670 3116 WPDBusEnum - ok
15:49:41.0673 3116 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:49:41.0700 3116 ws2ifsl - ok
15:49:41.0716 3116 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
15:49:41.0734 3116 wscsvc - ok
15:49:41.0736 3116 WSearch - ok
15:49:41.0797 3116 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:49:41.0829 3116 wuauserv - ok
15:49:41.0862 3116 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:49:41.0886 3116 WudfPf - ok
15:49:41.0911 3116 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:49:41.0936 3116 WUDFRd - ok
15:49:41.0949 3116 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:49:41.0957 3116 wudfsvc - ok
15:49:41.0970 3116 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:49:41.0995 3116 WwanSvc - ok
15:49:42.0040 3116 [ B2818BFAB7817F7E7EE886F58B15B35C ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
15:49:42.0050 3116 yukonw7 - ok
15:49:42.0054 3116 ================ Scan global ===============================
15:49:42.0074 3116 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:49:42.0090 3116 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
15:49:42.0095 3116 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
15:49:42.0119 3116 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:49:42.0139 3116 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:49:42.0141 3116 [Global] - ok
15:49:42.0141 3116 ================ Scan MBR ==================================
15:49:42.0158 3116 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:49:42.0468 3116 \Device\Harddisk0\DR0 - ok
15:49:42.0468 3116 ================ Scan VBR ==================================
15:49:42.0470 3116 [ 7E88AABC4A0DCCADED6BAC810491EFE1 ] \Device\Harddisk0\DR0\Partition1
15:49:42.0471 3116 \Device\Harddisk0\DR0\Partition1 - ok
15:49:42.0494 3116 [ 0508EA8F4C4FE5858E9F27E8D17C8364 ] \Device\Harddisk0\DR0\Partition2
15:49:42.0495 3116 \Device\Harddisk0\DR0\Partition2 - ok
15:49:42.0496 3116 ============================================================
15:49:42.0496 3116 Scan finished
15:49:42.0496 3116 ============================================================
15:49:42.0502 1700 Detected object count: 4
15:49:42.0502 1700 Actual detected object count: 4
15:50:00.0186 1700 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:00.0186 1700 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:00.0187 1700 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:00.0188 1700 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:00.0189 1700 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:00.0189 1700 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:00.0190 1700 WlanWpsSvc ( UnsignedFile.Multi.Generic ) - skipped by user
15:50:00.0190 1700 WlanWpsSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:50:09.0973 0872 Deinitialize success
|
|
18.03.2013, 16:01
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PC hängt sich ständig beim gaming auf! Verdacht auf Virus!Code:
ATTFilter 15:48:56.0888 4748 Scan started
15:48:56.0888 4748 Mode: Manual;
 du hast den TDSS-Killer falsch eingstellt
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.03.2013, 16:39
| #9 |
| | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Naja, eigentlich habe ich ihn so eingestellt wie es in der Anleitung steht. Hab denn Killer nochmal eingestellt, hier der Log: Code:
ATTFilter
16:35:47.0301 2632 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:35:47.0417 2632 ============================================================
16:35:47.0417 2632 Current date / time: 2013/03/18 16:35:47.0417
16:35:47.0417 2632 SystemInfo:
16:35:47.0417 2632
16:35:47.0417 2632 OS Version: 6.1.7600 ServicePack: 0.0
16:35:47.0417 2632 Product type: Workstation
16:35:47.0417 2632 ComputerName: -PC
16:35:47.0418 2632 UserName:
16:35:47.0418 2632 Windows directory: C:\Windows
16:35:47.0418 2632 System windows directory: C:\Windows
16:35:47.0418 2632 Running under WOW64
16:35:47.0418 2632 Processor architecture: Intel x64
16:35:47.0418 2632 Number of processors: 6
16:35:47.0418 2632 Page size: 0x1000
16:35:47.0418 2632 Boot type: Normal boot
16:35:47.0418 2632 ============================================================
16:35:48.0477 2632 Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:35:48.0480 2632 ============================================================
16:35:48.0480 2632 \Device\Harddisk0\DR0:
16:35:48.0480 2632 MBR partitions:
16:35:48.0480 2632 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x34935000
16:35:48.0480 2632 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x34967800, BlocksNum 0x7A11F800
16:35:48.0480 2632 ============================================================
16:35:48.0516 2632 C: <-> \Device\Harddisk0\DR0\Partition1
16:35:48.0545 2632 D: <-> \Device\Harddisk0\DR0\Partition2
16:35:48.0545 2632 ============================================================
16:35:48.0545 2632 Initialize success
16:35:48.0545 2632 ============================================================
16:36:14.0916 1448 ============================================================
16:36:14.0916 1448 Scan started
16:36:14.0916 1448 Mode: Manual; SigCheck; TDLFS;
16:36:14.0916 1448 ============================================================
16:36:15.0350 1448 ================ Scan system memory ========================
16:36:15.0350 1448 System memory - ok
16:36:15.0350 1448 ================ Scan services =============================
16:36:15.0661 1448 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
16:36:15.0691 1448 1394ohci - ok
16:36:15.0699 1448 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
16:36:15.0711 1448 ACPI - ok
16:36:15.0714 1448 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
16:36:15.0723 1448 AcpiPmi - ok
16:36:15.0749 1448 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:36:15.0762 1448 adp94xx - ok
16:36:15.0788 1448 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:36:15.0798 1448 adpahci - ok
16:36:15.0803 1448 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:36:15.0812 1448 adpu320 - ok
16:36:15.0841 1448 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:36:15.0864 1448 AeLookupSvc - ok
16:36:15.0885 1448 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
16:36:15.0896 1448 AFD - ok
16:36:15.0909 1448 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
16:36:15.0916 1448 agp440 - ok
16:36:16.0001 1448 [ 0E64D7144478027F427F601D9D569EC9 ] AIDA64Driver C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64
16:36:16.0013 1448 AIDA64Driver - ok
16:36:16.0022 1448 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:36:16.0030 1448 ALG - ok
16:36:16.0034 1448 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
16:36:16.0041 1448 aliide - ok
16:36:16.0073 1448 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:36:16.0085 1448 AMD External Events Utility - ok
16:36:16.0148 1448 AMD FUEL Service - ok
16:36:16.0151 1448 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
16:36:16.0158 1448 amdide - ok
16:36:16.0173 1448 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
16:36:16.0179 1448 amdiox64 - ok
16:36:16.0196 1448 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:36:16.0204 1448 AmdK8 - ok
16:36:16.0378 1448 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:36:16.0469 1448 amdkmdag - ok
16:36:16.0506 1448 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:36:16.0519 1448 amdkmdap - ok
16:36:16.0536 1448 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:36:16.0545 1448 AmdPPM - ok
16:36:16.0565 1448 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:36:16.0574 1448 amdsata - ok
16:36:16.0599 1448 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:36:16.0608 1448 amdsbs - ok
16:36:16.0625 1448 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:36:16.0632 1448 amdxata - ok
16:36:16.0746 1448 [ 459465DA28E49B358ECFE0D788F328F4 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
16:36:16.0754 1448 AntiVirSchedulerService - ok
16:36:16.0775 1448 [ BCDD17E8469D647A71B347C4B6F86685 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
16:36:16.0782 1448 AntiVirService - ok
16:36:16.0800 1448 [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:36:16.0807 1448 AODDriver4.2 - ok
16:36:16.0829 1448 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
16:36:16.0840 1448 AppID - ok
16:36:16.0866 1448 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:36:16.0889 1448 AppIDSvc - ok
16:36:16.0892 1448 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
16:36:16.0900 1448 Appinfo - ok
16:36:16.0948 1448 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
16:36:16.0957 1448 AppMgmt - ok
16:36:16.0969 1448 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:36:16.0977 1448 arc - ok
16:36:16.0988 1448 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:36:16.0997 1448 arcsas - ok
16:36:17.0219 1448 [ FDB98C34BB26C59D5E550A734168E4C5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:36:17.0226 1448 aspnet_state - ok
16:36:17.0242 1448 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:36:17.0265 1448 AsyncMac - ok
16:36:17.0268 1448 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
16:36:17.0276 1448 atapi - ok
16:36:17.0323 1448 [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
16:36:17.0330 1448 AtiHDAudioService - ok
16:36:17.0353 1448 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:36:17.0379 1448 AudioEndpointBuilder - ok
16:36:17.0387 1448 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:36:17.0414 1448 AudioSrv - ok
16:36:17.0435 1448 [ BFE9598EBC3934CF8D876A303849C896 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
16:36:17.0442 1448 avgntflt - ok
16:36:17.0459 1448 [ F74D86A9FB35FA5F24627B8DBBF3A9A4 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
16:36:17.0467 1448 avipbb - ok
16:36:17.0477 1448 [ CD0E732347BF09717E0BDDC0C66699AB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
16:36:17.0484 1448 avkmgr - ok
16:36:17.0512 1448 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:36:17.0523 1448 AxInstSV - ok
16:36:17.0543 1448 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:36:17.0553 1448 b06bdrv - ok
16:36:17.0571 1448 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:36:17.0579 1448 b57nd60a - ok
16:36:17.0609 1448 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:36:17.0617 1448 BDESVC - ok
16:36:17.0620 1448 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:36:17.0643 1448 Beep - ok
16:36:17.0678 1448 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
16:36:17.0706 1448 BFE - ok
16:36:17.0753 1448 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
16:36:17.0782 1448 BITS - ok
16:36:17.0785 1448 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:36:17.0793 1448 blbdrive - ok
16:36:17.0814 1448 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:36:17.0822 1448 bowser - ok
16:36:17.0824 1448 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:36:17.0833 1448 BrFiltLo - ok
16:36:17.0836 1448 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:36:17.0845 1448 BrFiltUp - ok
16:36:17.0869 1448 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
16:36:17.0877 1448 Browser - ok
16:36:17.0899 1448 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:36:17.0909 1448 Brserid - ok
16:36:17.0912 1448 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:36:17.0922 1448 BrSerWdm - ok
16:36:17.0925 1448 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:36:17.0934 1448 BrUsbMdm - ok
16:36:17.0937 1448 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:36:17.0944 1448 BrUsbSer - ok
16:36:17.0948 1448 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:36:17.0957 1448 BTHMODEM - ok
16:36:17.0970 1448 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:36:17.0994 1448 bthserv - ok
16:36:17.0998 1448 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:36:18.0021 1448 cdfs - ok
16:36:18.0039 1448 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:36:18.0047 1448 cdrom - ok
16:36:18.0073 1448 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
16:36:18.0096 1448 CertPropSvc - ok
16:36:18.0099 1448 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:36:18.0109 1448 circlass - ok
16:36:18.0119 1448 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:36:18.0130 1448 CLFS - ok
16:36:18.0218 1448 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:36:18.0225 1448 clr_optimization_v2.0.50727_32 - ok
16:36:18.0312 1448 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:36:18.0319 1448 clr_optimization_v2.0.50727_64 - ok
16:36:18.0459 1448 [ 637245588A4BFDE03AA621DCC5AEFD4A ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:36:18.0466 1448 clr_optimization_v4.0.30319_32 - ok
16:36:18.0473 1448 [ 6C85BD0F605014CA2277DA5518F35DBA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:36:18.0480 1448 clr_optimization_v4.0.30319_64 - ok
16:36:18.0497 1448 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:36:18.0505 1448 CmBatt - ok
16:36:18.0508 1448 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
16:36:18.0515 1448 cmdide - ok
16:36:18.0545 1448 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
16:36:18.0561 1448 CNG - ok
16:36:18.0570 1448 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:36:18.0577 1448 Compbatt - ok
16:36:18.0588 1448 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
16:36:18.0597 1448 CompositeBus - ok
16:36:18.0601 1448 COMSysApp - ok
16:36:18.0604 1448 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:36:18.0611 1448 crcdisk - ok
16:36:18.0654 1448 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
16:36:18.0657 1448 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
16:36:18.0657 1448 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
16:36:18.0681 1448 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
16:36:18.0684 1448 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
16:36:18.0684 1448 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
16:36:18.0723 1448 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:36:18.0731 1448 CryptSvc - ok
16:36:18.0758 1448 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
16:36:18.0772 1448 CSC - ok
16:36:18.0788 1448 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
16:36:18.0802 1448 CscService - ok
16:36:18.0882 1448 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
16:36:18.0887 1448 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
16:36:18.0887 1448 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
16:36:18.0917 1448 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:36:18.0943 1448 DcomLaunch - ok
16:36:18.0978 1448 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:36:19.0002 1448 defragsvc - ok
16:36:19.0024 1448 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:36:19.0032 1448 DfsC - ok
16:36:19.0064 1448 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
16:36:19.0076 1448 Dhcp - ok
16:36:19.0091 1448 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:36:19.0114 1448 discache - ok
16:36:19.0130 1448 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:36:19.0138 1448 Disk - ok
16:36:19.0166 1448 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:36:19.0174 1448 Dnscache - ok
16:36:19.0204 1448 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
16:36:19.0229 1448 dot3svc - ok
16:36:19.0245 1448 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
16:36:19.0269 1448 DPS - ok
16:36:19.0297 1448 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:36:19.0307 1448 drmkaud - ok
16:36:19.0346 1448 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
16:36:19.0354 1448 dtsoftbus01 - ok
16:36:19.0392 1448 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:36:19.0409 1448 DXGKrnl - ok
16:36:19.0437 1448 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:36:19.0460 1448 EapHost - ok
16:36:19.0507 1448 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:36:19.0538 1448 ebdrv - ok
16:36:19.0557 1448 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
16:36:19.0565 1448 EFS - ok
16:36:19.0650 1448 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:36:19.0662 1448 ehRecvr - ok
16:36:19.0690 1448 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:36:19.0699 1448 ehSched - ok
16:36:19.0718 1448 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:36:19.0731 1448 elxstor - ok
16:36:19.0734 1448 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
16:36:19.0741 1448 ErrDev - ok
16:36:19.0765 1448 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:36:19.0791 1448 EventSystem - ok
16:36:19.0796 1448 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:36:19.0820 1448 exfat - ok
16:36:19.0825 1448 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:36:19.0849 1448 fastfat - ok
16:36:19.0894 1448 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
16:36:19.0906 1448 Fax - ok
16:36:19.0909 1448 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:36:19.0917 1448 fdc - ok
16:36:19.0943 1448 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:36:19.0966 1448 fdPHost - ok
16:36:19.0979 1448 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:36:20.0002 1448 FDResPub - ok
16:36:20.0006 1448 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:36:20.0013 1448 FileInfo - ok
16:36:20.0016 1448 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:36:20.0039 1448 Filetrace - ok
16:36:20.0042 1448 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:36:20.0049 1448 flpydisk - ok
16:36:20.0055 1448 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:36:20.0064 1448 FltMgr - ok
16:36:20.0102 1448 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
16:36:20.0118 1448 FontCache - ok
16:36:20.0166 1448 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:36:20.0172 1448 FontCache3.0.0.0 - ok
16:36:20.0176 1448 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:36:20.0183 1448 FsDepends - ok
16:36:20.0197 1448 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:36:20.0204 1448 Fs_Rec - ok
16:36:20.0230 1448 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:36:20.0241 1448 fvevol - ok
16:36:20.0245 1448 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:36:20.0253 1448 gagp30kx - ok
16:36:20.0273 1448 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
16:36:20.0289 1448 gpsvc - ok
16:36:20.0344 1448 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:36:20.0351 1448 gupdate - ok
16:36:20.0354 1448 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:36:20.0360 1448 gupdatem - ok
16:36:20.0379 1448 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:36:20.0386 1448 hcw85cir - ok
16:36:20.0424 1448 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:36:20.0435 1448 HdAudAddService - ok
16:36:20.0446 1448 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:36:20.0456 1448 HDAudBus - ok
16:36:20.0459 1448 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:36:20.0466 1448 HidBatt - ok
16:36:20.0484 1448 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:36:20.0493 1448 HidBth - ok
16:36:20.0496 1448 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:36:20.0506 1448 HidIr - ok
16:36:20.0517 1448 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:36:20.0539 1448 hidserv - ok
16:36:20.0553 1448 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:36:20.0560 1448 HidUsb - ok
16:36:20.0584 1448 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:36:20.0608 1448 hkmsvc - ok
16:36:20.0626 1448 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:36:20.0635 1448 HomeGroupListener - ok
16:36:20.0653 1448 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:36:20.0662 1448 HomeGroupProvider - ok
16:36:20.0674 1448 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
16:36:20.0682 1448 HpSAMD - ok
16:36:20.0703 1448 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:36:20.0731 1448 HTTP - ok
16:36:20.0734 1448 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:36:20.0741 1448 hwpolicy - ok
16:36:20.0745 1448 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:36:20.0753 1448 i8042prt - ok
16:36:20.0788 1448 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:36:20.0799 1448 iaStorV - ok
16:36:20.0838 1448 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:36:20.0852 1448 idsvc - ok
16:36:20.0875 1448 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:36:20.0883 1448 iirsp - ok
16:36:20.0899 1448 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
16:36:20.0928 1448 IKEEXT - ok
16:36:20.0933 1448 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
16:36:20.0940 1448 intelide - ok
16:36:20.0951 1448 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:36:20.0959 1448 intelppm - ok
16:36:20.0976 1448 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:36:20.0999 1448 IPBusEnum - ok
16:36:21.0003 1448 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:36:21.0026 1448 IpFilterDriver - ok
16:36:21.0044 1448 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:36:21.0070 1448 iphlpsvc - ok
16:36:21.0074 1448 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
16:36:21.0082 1448 IPMIDRV - ok
16:36:21.0110 1448 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:36:21.0133 1448 IPNAT - ok
16:36:21.0136 1448 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:36:21.0147 1448 IRENUM - ok
16:36:21.0149 1448 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
16:36:21.0157 1448 isapnp - ok
16:36:21.0185 1448 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:36:21.0194 1448 iScsiPrt - ok
16:36:21.0237 1448 [ 75DDB94A2A24F9F7037D10A2DDA06D36 ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
16:36:21.0244 1448 JRAID - ok
16:36:21.0253 1448 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:36:21.0261 1448 kbdclass - ok
16:36:21.0264 1448 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:36:21.0271 1448 kbdhid - ok
16:36:21.0290 1448 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
16:36:21.0297 1448 KeyIso - ok
16:36:21.0318 1448 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:36:21.0327 1448 KSecDD - ok
16:36:21.0339 1448 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:36:21.0348 1448 KSecPkg - ok
16:36:21.0407 1448 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:36:21.0431 1448 ksthunk - ok
16:36:21.0467 1448 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:36:21.0492 1448 KtmRm - ok
16:36:21.0566 1448 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:36:21.0575 1448 LanmanServer - ok
16:36:21.0594 1448 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:36:21.0618 1448 LanmanWorkstation - ok
16:36:21.0666 1448 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
16:36:21.0672 1448 LGBusEnum - ok
16:36:21.0691 1448 [ F705A641C18DF31B48B5DBDA94B425E4 ] LGPBTDD C:\Windows\system32\Drivers\LGPBTDD.sys
16:36:21.0697 1448 LGPBTDD - ok
16:36:21.0731 1448 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
16:36:21.0738 1448 LGVirHid - ok
16:36:21.0761 1448 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:36:21.0784 1448 lltdio - ok
16:36:21.0790 1448 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:36:21.0814 1448 lltdsvc - ok
16:36:21.0818 1448 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:36:21.0840 1448 lmhosts - ok
16:36:21.0846 1448 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:36:21.0854 1448 LSI_FC - ok
16:36:21.0863 1448 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:36:21.0872 1448 LSI_SAS - ok
16:36:21.0875 1448 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:36:21.0883 1448 LSI_SAS2 - ok
16:36:21.0887 1448 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:36:21.0895 1448 LSI_SCSI - ok
16:36:21.0913 1448 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:36:21.0936 1448 luafv - ok
16:36:21.0969 1448 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:36:21.0977 1448 Mcx2Svc - ok
16:36:21.0980 1448 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:36:21.0988 1448 megasas - ok
16:36:22.0017 1448 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:36:22.0026 1448 MegaSR - ok
16:36:22.0042 1448 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:36:22.0066 1448 MMCSS - ok
16:36:22.0069 1448 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:36:22.0091 1448 Modem - ok
16:36:22.0101 1448 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:36:22.0110 1448 monitor - ok
16:36:22.0120 1448 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:36:22.0128 1448 mouclass - ok
16:36:22.0132 1448 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:36:22.0140 1448 mouhid - ok
16:36:22.0143 1448 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:36:22.0151 1448 mountmgr - ok
16:36:22.0165 1448 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
16:36:22.0174 1448 mpio - ok
16:36:22.0177 1448 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:36:22.0199 1448 mpsdrv - ok
16:36:22.0219 1448 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:36:22.0248 1448 MpsSvc - ok
16:36:22.0253 1448 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:36:22.0264 1448 MRxDAV - ok
16:36:22.0289 1448 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:36:22.0297 1448 mrxsmb - ok
16:36:22.0327 1448 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:36:22.0336 1448 mrxsmb10 - ok
16:36:22.0340 1448 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:36:22.0348 1448 mrxsmb20 - ok
16:36:22.0361 1448 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
16:36:22.0368 1448 msahci - ok
16:36:22.0372 1448 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
16:36:22.0380 1448 msdsm - ok
16:36:22.0394 1448 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:36:22.0404 1448 MSDTC - ok
16:36:22.0410 1448 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:36:22.0433 1448 Msfs - ok
16:36:22.0436 1448 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:36:22.0458 1448 mshidkmdf - ok
16:36:22.0461 1448 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
16:36:22.0469 1448 msisadrv - ok
16:36:22.0480 1448 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:36:22.0504 1448 MSiSCSI - ok
16:36:22.0507 1448 msiserver - ok
16:36:22.0524 1448 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:36:22.0547 1448 MSKSSRV - ok
16:36:22.0550 1448 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:36:22.0572 1448 MSPCLOCK - ok
16:36:22.0575 1448 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:36:22.0598 1448 MSPQM - ok
16:36:22.0616 1448 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:36:22.0627 1448 MsRPC - ok
16:36:22.0633 1448 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:36:22.0640 1448 mssmbios - ok
16:36:22.0643 1448 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:36:22.0665 1448 MSTEE - ok
16:36:22.0668 1448 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:36:22.0676 1448 MTConfig - ok
16:36:22.0706 1448 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
16:36:22.0712 1448 MTsensor - ok
16:36:22.0716 1448 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:36:22.0724 1448 Mup - ok
16:36:22.0750 1448 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
16:36:22.0776 1448 napagent - ok
16:36:22.0811 1448 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:36:22.0823 1448 NativeWifiP - ok
16:36:22.0864 1448 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
16:36:22.0880 1448 NDIS - ok
16:36:22.0884 1448 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:36:22.0907 1448 NdisCap - ok
16:36:22.0910 1448 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:36:22.0933 1448 NdisTapi - ok
16:36:22.0936 1448 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:36:22.0959 1448 Ndisuio - ok
16:36:22.0963 1448 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:36:22.0987 1448 NdisWan - ok
16:36:22.0990 1448 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:36:23.0012 1448 NDProxy - ok
16:36:23.0016 1448 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:36:23.0039 1448 NetBIOS - ok
16:36:23.0044 1448 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:36:23.0068 1448 NetBT - ok
16:36:23.0078 1448 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
16:36:23.0085 1448 Netlogon - ok
16:36:23.0101 1448 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:36:23.0126 1448 Netman - ok
16:36:23.0176 1448 [ 536BAF64228AD71305C50FB6B5C2DC6F ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:36:23.0183 1448 NetMsmqActivator - ok
16:36:23.0186 1448 [ 536BAF64228AD71305C50FB6B5C2DC6F ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:36:23.0193 1448 NetPipeActivator - ok
16:36:23.0210 1448 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:36:23.0235 1448 netprofm - ok
16:36:23.0239 1448 [ 536BAF64228AD71305C50FB6B5C2DC6F ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:36:23.0246 1448 NetTcpActivator - ok
16:36:23.0249 1448 [ 536BAF64228AD71305C50FB6B5C2DC6F ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:36:23.0257 1448 NetTcpPortSharing - ok
16:36:23.0260 1448 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:36:23.0268 1448 nfrd960 - ok
16:36:23.0291 1448 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:36:23.0316 1448 NlaSvc - ok
16:36:23.0319 1448 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:36:23.0341 1448 Npfs - ok
16:36:23.0363 1448 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:36:23.0386 1448 nsi - ok
16:36:23.0389 1448 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:36:23.0412 1448 nsiproxy - ok
16:36:23.0451 1448 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:36:23.0474 1448 Ntfs - ok
16:36:23.0485 1448 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:36:23.0507 1448 Null - ok
16:36:23.0550 1448 [ 8EBCB9165EE7F1571842F4D9D624A74C ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
16:36:23.0557 1448 nusb3hub - ok
16:36:23.0570 1448 [ 5D54DBB12BBFE07CC283FD39F2CD6D63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
16:36:23.0577 1448 nusb3xhc - ok
16:36:23.0609 1448 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:36:23.0617 1448 nvraid - ok
16:36:23.0638 1448 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:36:23.0647 1448 nvstor - ok
16:36:23.0665 1448 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
16:36:23.0674 1448 nv_agp - ok
16:36:23.0678 1448 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
16:36:23.0685 1448 ohci1394 - ok
16:36:23.0710 1448 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:36:23.0720 1448 p2pimsvc - ok
16:36:23.0733 1448 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:36:23.0744 1448 p2psvc - ok
16:36:23.0752 1448 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:36:23.0760 1448 Parport - ok
16:36:23.0789 1448 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:36:23.0797 1448 partmgr - ok
16:36:23.0801 1448 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:36:23.0813 1448 PcaSvc - ok
16:36:23.0821 1448 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
16:36:23.0830 1448 pci - ok
16:36:23.0833 1448 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
16:36:23.0841 1448 pciide - ok
16:36:23.0849 1448 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:36:23.0858 1448 pcmcia - ok
16:36:23.0862 1448 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:36:23.0869 1448 pcw - ok
16:36:23.0888 1448 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:36:23.0916 1448 PEAUTH - ok
16:36:23.0977 1448 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
16:36:23.0994 1448 PeerDistSvc - ok
16:36:24.0187 1448 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:36:24.0196 1448 PerfHost - ok
16:36:24.0233 1448 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
16:36:24.0266 1448 pla - ok
16:36:24.0310 1448 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:36:24.0321 1448 PlugPlay - ok
16:36:24.0377 1448 PnkBstrA - ok
16:36:24.0390 1448 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:36:24.0397 1448 PNRPAutoReg - ok
16:36:24.0403 1448 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:36:24.0412 1448 PNRPsvc - ok
16:36:24.0440 1448 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:36:24.0466 1448 PolicyAgent - ok
16:36:24.0491 1448 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:36:24.0515 1448 Power - ok
16:36:24.0555 1448 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:36:24.0578 1448 PptpMiniport - ok
16:36:24.0582 1448 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:36:24.0590 1448 Processor - ok
16:36:24.0612 1448 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
16:36:24.0621 1448 ProfSvc - ok
16:36:24.0634 1448 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:36:24.0642 1448 ProtectedStorage - ok
16:36:24.0667 1448 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:36:24.0690 1448 Psched - ok
16:36:24.0730 1448 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:36:24.0752 1448 ql2300 - ok
16:36:24.0757 1448 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:36:24.0765 1448 ql40xx - ok
16:36:24.0780 1448 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:36:24.0792 1448 QWAVE - ok
16:36:24.0796 1448 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:36:24.0806 1448 QWAVEdrv - ok
16:36:24.0809 1448 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:36:24.0831 1448 RasAcd - ok
16:36:24.0860 1448 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:36:24.0882 1448 RasAgileVpn - ok
16:36:24.0899 1448 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:36:24.0923 1448 RasAuto - ok
16:36:24.0927 1448 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:36:24.0950 1448 Rasl2tp - ok
16:36:24.0975 1448 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
16:36:25.0000 1448 RasMan - ok
16:36:25.0004 1448 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:36:25.0028 1448 RasPppoe - ok
16:36:25.0032 1448 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:36:25.0056 1448 RasSstp - ok
16:36:25.0061 1448 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:36:25.0085 1448 rdbss - ok
16:36:25.0089 1448 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:36:25.0098 1448 rdpbus - ok
16:36:25.0101 1448 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:36:25.0124 1448 RDPCDD - ok
16:36:25.0147 1448 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
16:36:25.0155 1448 RDPDR - ok
16:36:25.0163 1448 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:36:25.0186 1448 RDPENCDD - ok
16:36:25.0190 1448 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:36:25.0212 1448 RDPREFMP - ok
16:36:25.0230 1448 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:36:25.0238 1448 RDPWD - ok
16:36:25.0243 1448 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:36:25.0252 1448 rdyboost - ok
16:36:25.0274 1448 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:36:25.0297 1448 RemoteAccess - ok
16:36:25.0315 1448 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:36:25.0339 1448 RemoteRegistry - ok
16:36:25.0358 1448 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:36:25.0381 1448 RpcEptMapper - ok
16:36:25.0397 1448 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:36:25.0405 1448 RpcLocator - ok
16:36:25.0419 1448 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
16:36:25.0446 1448 RpcSs - ok
16:36:25.0462 1448 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:36:25.0485 1448 rspndr - ok
16:36:25.0535 1448 [ 3C85058541D55BFCEFD9177A68A507C6 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
16:36:25.0546 1448 RTL8192su - ok
16:36:25.0566 1448 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
16:36:25.0574 1448 s3cap - ok
16:36:25.0576 1448 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
16:36:25.0584 1448 SamSs - ok
16:36:25.0588 1448 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
16:36:25.0596 1448 sbp2port - ok
16:36:25.0614 1448 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:36:25.0637 1448 SCardSvr - ok
16:36:25.0641 1448 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:36:25.0664 1448 scfilter - ok
16:36:25.0700 1448 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
16:36:25.0717 1448 Schedule - ok
16:36:25.0745 1448 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:36:25.0768 1448 SCPolicySvc - ok
16:36:25.0798 1448 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:36:25.0807 1448 SDRSVC - ok
16:36:25.0830 1448 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:36:25.0852 1448 secdrv - ok
16:36:25.0868 1448 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
16:36:25.0891 1448 seclogon - ok
16:36:25.0912 1448 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:36:25.0935 1448 SENS - ok
16:36:25.0940 1448 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:36:25.0948 1448 SensrSvc - ok
16:36:25.0951 1448 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:36:25.0958 1448 Serenum - ok
16:36:25.0972 1448 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:36:25.0980 1448 Serial - ok
16:36:25.0983 1448 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:36:25.0991 1448 sermouse - ok
16:36:26.0014 1448 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
16:36:26.0038 1448 SessionEnv - ok
16:36:26.0041 1448 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
16:36:26.0050 1448 sffdisk - ok
16:36:26.0053 1448 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
16:36:26.0062 1448 sffp_mmc - ok
16:36:26.0065 1448 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
16:36:26.0074 1448 sffp_sd - ok
16:36:26.0077 1448 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:36:26.0085 1448 sfloppy - ok
16:36:26.0113 1448 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:36:26.0139 1448 SharedAccess - ok
16:36:26.0173 1448 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:36:26.0187 1448 ShellHWDetection - ok
16:36:26.0199 1448 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:36:26.0207 1448 SiSRaid2 - ok
16:36:26.0222 1448 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:36:26.0230 1448 SiSRaid4 - ok
16:36:26.0320 1448 [ 0A0A0183711EFB04F9BCC32BB44471F2 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:36:26.0328 1448 SkypeUpdate - ok
16:36:26.0342 1448 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:36:26.0364 1448 Smb - ok
16:36:26.0378 1448 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:36:26.0387 1448 SNMPTRAP - ok
16:36:26.0390 1448 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:36:26.0397 1448 spldr - ok
16:36:26.0428 1448 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
16:36:26.0440 1448 Spooler - ok
16:36:26.0497 1448 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
16:36:26.0532 1448 sppsvc - ok
16:36:26.0536 1448 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:36:26.0559 1448 sppuinotify - ok
16:36:26.0593 1448 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:36:26.0604 1448 srv - ok
16:36:26.0631 1448 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:36:26.0641 1448 srv2 - ok
16:36:26.0655 1448 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:36:26.0663 1448 srvnet - ok
16:36:26.0689 1448 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:36:26.0713 1448 SSDPSRV - ok
16:36:26.0727 1448 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:36:26.0750 1448 SstpSvc - ok
16:36:26.0792 1448 Steam Client Service - ok
16:36:26.0800 1448 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:36:26.0808 1448 stexstor - ok
16:36:26.0841 1448 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
16:36:26.0856 1448 stisvc - ok
16:36:26.0884 1448 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
16:36:26.0892 1448 storflt - ok
16:36:26.0895 1448 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
16:36:26.0903 1448 storvsc - ok
16:36:26.0906 1448 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:36:26.0913 1448 swenum - ok
16:36:26.0939 1448 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:36:26.0966 1448 swprv - ok
16:36:27.0009 1448 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
16:36:27.0034 1448 SysMain - ok
16:36:27.0050 1448 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:36:27.0062 1448 TabletInputService - ok
16:36:27.0075 1448 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
16:36:27.0099 1448 TapiSrv - ok
16:36:27.0109 1448 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:36:27.0132 1448 TBS - ok
16:36:27.0176 1448 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:36:27.0202 1448 Tcpip - ok
16:36:27.0228 1448 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:36:27.0253 1448 TCPIP6 - ok
16:36:27.0282 1448 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:36:27.0305 1448 tcpipreg - ok
16:36:27.0310 1448 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:36:27.0317 1448 TDPIPE - ok
16:36:27.0350 1448 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:36:27.0357 1448 TDTCP - ok
16:36:27.0361 1448 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:36:27.0383 1448 tdx - ok
16:36:27.0387 1448 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:36:27.0395 1448 TermDD - ok
16:36:27.0420 1448 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
16:36:27.0448 1448 TermService - ok
16:36:27.0458 1448 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:36:27.0469 1448 Themes - ok
16:36:27.0496 1448 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:36:27.0519 1448 THREADORDER - ok
16:36:27.0542 1448 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:36:27.0565 1448 TrkWks - ok
16:36:27.0600 1448 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:36:27.0608 1448 TrustedInstaller - ok
16:36:27.0618 1448 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:36:27.0640 1448 tssecsrv - ok
16:36:27.0665 1448 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:36:27.0689 1448 tunnel - ok
16:36:27.0693 1448 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:36:27.0701 1448 uagp35 - ok
16:36:27.0713 1448 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:36:27.0738 1448 udfs - ok
16:36:27.0761 1448 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:36:27.0770 1448 UI0Detect - ok
16:36:27.0784 1448 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
16:36:27.0792 1448 uliagpkx - ok
16:36:27.0806 1448 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:36:27.0813 1448 umbus - ok
16:36:27.0816 1448 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:36:27.0824 1448 UmPass - ok
16:36:27.0845 1448 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
16:36:27.0854 1448 UmRdpService - ok
16:36:27.0885 1448 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:36:27.0911 1448 upnphost - ok
16:36:27.0946 1448 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:36:27.0955 1448 usbaudio - ok
16:36:27.0985 1448 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:36:27.0992 1448 usbccgp - ok
16:36:28.0017 1448 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
16:36:28.0026 1448 usbcir - ok
16:36:28.0047 1448 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:36:28.0055 1448 usbehci - ok
16:36:28.0079 1448 [ 858BE9C0E498C8E505E198E17EECE0D9 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
16:36:28.0085 1448 usbfilter - ok
16:36:28.0113 1448 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:36:28.0122 1448 usbhub - ok
16:36:28.0132 1448 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
16:36:28.0139 1448 usbohci - ok
16:36:28.0147 1448 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:36:28.0156 1448 usbprint - ok
16:36:28.0184 1448 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
16:36:28.0191 1448 USBSTOR - ok
16:36:28.0211 1448 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:36:28.0218 1448 usbuhci - ok
16:36:28.0231 1448 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:36:28.0254 1448 UxSms - ok
16:36:28.0267 1448 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
16:36:28.0275 1448 VaultSvc - ok
16:36:28.0286 1448 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
16:36:28.0294 1448 vdrvroot - ok
16:36:28.0310 1448 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
16:36:28.0322 1448 vds - ok
16:36:28.0340 1448 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:36:28.0349 1448 vga - ok
16:36:28.0352 1448 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:36:28.0374 1448 VgaSave - ok
16:36:28.0379 1448 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
16:36:28.0388 1448 vhdmp - ok
16:36:28.0448 1448 [ DFDF7F9CAA50EE72A633EA4BBD65A557 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
16:36:28.0464 1448 VIAHdAudAddService - ok
16:36:28.0475 1448 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
16:36:28.0482 1448 viaide - ok
16:36:28.0504 1448 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
16:36:28.0513 1448 vmbus - ok
16:36:28.0520 1448 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
16:36:28.0527 1448 VMBusHID - ok
16:36:28.0550 1448 [ 754C8BF43F0DD4B54865F174A62761E9 ] VMfilt C:\Windows\system32\drivers\VMfilt64.sys
16:36:28.0557 1448 VMfilt - ok
16:36:28.0561 1448 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
16:36:28.0569 1448 volmgr - ok
16:36:28.0582 1448 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:36:28.0593 1448 volmgrx - ok
16:36:28.0617 1448 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
16:36:28.0627 1448 volsnap - ok
16:36:28.0644 1448 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:36:28.0653 1448 vsmraid - ok
16:36:28.0684 1448 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
16:36:28.0705 1448 VSS - ok
16:36:28.0709 1448 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:36:28.0719 1448 vwifibus - ok
16:36:28.0726 1448 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:36:28.0737 1448 vwififlt - ok
16:36:28.0743 1448 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:36:28.0769 1448 W32Time - ok
16:36:28.0774 1448 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:36:28.0782 1448 WacomPen - ok
16:36:28.0803 1448 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:36:28.0825 1448 WANARP - ok
16:36:28.0828 1448 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:36:28.0851 1448 Wanarpv6 - ok
16:36:28.0883 1448 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
16:36:28.0902 1448 wbengine - ok
16:36:28.0908 1448 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:36:28.0920 1448 WbioSrvc - ok
16:36:28.0946 1448 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:36:28.0957 1448 wcncsvc - ok
16:36:28.0960 1448 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:36:28.0968 1448 WcsPlugInService - ok
16:36:28.0971 1448 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:36:28.0979 1448 Wd - ok
16:36:29.0016 1448 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:36:29.0032 1448 Wdf01000 - ok
16:36:29.0047 1448 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:36:29.0059 1448 WdiServiceHost - ok
16:36:29.0062 1448 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:36:29.0073 1448 WdiSystemHost - ok
16:36:29.0102 1448 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
16:36:29.0111 1448 WebClient - ok
16:36:29.0123 1448 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:36:29.0147 1448 Wecsvc - ok
16:36:29.0161 1448 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:36:29.0184 1448 wercplsupport - ok
16:36:29.0211 1448 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:36:29.0235 1448 WerSvc - ok
16:36:29.0249 1448 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:36:29.0271 1448 WfpLwf - ok
16:36:29.0282 1448 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:36:29.0290 1448 WIMMount - ok
16:36:29.0306 1448 WinDefend - ok
16:36:29.0311 1448 WinHttpAutoProxySvc - ok
16:36:29.0419 1448 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:36:29.0443 1448 Winmgmt - ok
16:36:29.0492 1448 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
16:36:29.0530 1448 WinRM - ok
16:36:29.0579 1448 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:36:29.0588 1448 WinUsb - ok
16:36:29.0613 1448 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:36:29.0630 1448 Wlansvc - ok
16:36:29.0683 1448 [ C71EE856C4F5B52E2D094F494CEE4936 ] WlanWpsSvc C:\Program Files (x86)\D-Link\DWA-131 revA\WlanWpsSvc.exe
16:36:29.0687 1448 WlanWpsSvc ( UnsignedFile.Multi.Generic ) - warning
16:36:29.0687 1448 WlanWpsSvc - detected UnsignedFile.Multi.Generic (1)
16:36:29.0695 1448 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:36:29.0703 1448 WmiAcpi - ok
16:36:29.0724 1448 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:36:29.0733 1448 wmiApSrv - ok
16:36:29.0749 1448 WMPNetworkSvc - ok
16:36:29.0761 1448 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:36:29.0769 1448 WPCSvc - ok
16:36:29.0773 1448 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:36:29.0782 1448 WPDBusEnum - ok
16:36:29.0785 1448 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:36:29.0808 1448 ws2ifsl - ok
16:36:29.0817 1448 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
16:36:29.0826 1448 wscsvc - ok
16:36:29.0829 1448 WSearch - ok
16:36:29.0888 1448 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:36:29.0920 1448 wuauserv - ok
16:36:29.0953 1448 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:36:29.0961 1448 WudfPf - ok
16:36:29.0991 1448 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:36:29.0999 1448 WUDFRd - ok
16:36:30.0006 1448 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:36:30.0015 1448 wudfsvc - ok
16:36:30.0028 1448 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:36:30.0040 1448 WwanSvc - ok
16:36:30.0065 1448 [ B2818BFAB7817F7E7EE886F58B15B35C ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
16:36:30.0074 1448 yukonw7 - ok
16:36:30.0078 1448 ================ Scan global ===============================
16:36:30.0098 1448 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:36:30.0114 1448 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
16:36:30.0119 1448 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
16:36:30.0144 1448 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:36:30.0163 1448 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:36:30.0165 1448 [Global] - ok
16:36:30.0166 1448 ================ Scan MBR ==================================
16:36:30.0182 1448 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:36:30.0492 1448 \Device\Harddisk0\DR0 - ok
16:36:30.0492 1448 ================ Scan VBR ==================================
16:36:30.0494 1448 [ 7E88AABC4A0DCCADED6BAC810491EFE1 ] \Device\Harddisk0\DR0\Partition1
16:36:30.0495 1448 \Device\Harddisk0\DR0\Partition1 - ok
16:36:30.0519 1448 [ 0508EA8F4C4FE5858E9F27E8D17C8364 ] \Device\Harddisk0\DR0\Partition2
16:36:30.0520 1448 \Device\Harddisk0\DR0\Partition2 - ok
16:36:30.0520 1448 ============================================================
16:36:30.0520 1448 Scan finished
16:36:30.0520 1448 ============================================================
16:36:30.0527 2324 Detected object count: 4
16:36:30.0527 2324 Actual detected object count: 4
16:36:43.0674 2324 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:43.0674 2324 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:36:43.0675 2324 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:43.0675 2324 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:36:43.0676 2324 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:43.0676 2324 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:36:43.0677 2324 WlanWpsSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:36:43.0677 2324 WlanWpsSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
18.03.2013, 16:42
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Jetzt isses richtig Dann bitte jetzt Combofix ausführen: Scan mit Combofix
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.03.2013, 20:20
| #11 |
| | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Ok, Combo fix Log: Code:
ATTFilter Combofix Logfile: |
|
18.03.2013, 23:51
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Im Anschluss: adwCleaner - Toolbars und ungewollte Start-/Suchseiten entfernen Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Danach eine Kontrolle mit OTL bitte:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.03.2013, 16:55
| #13 |
| | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Hier die Logs für JRT, AdwCleaner und OTL JRT Logfile: Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.7.2 (03.15.2013:1)
OS: Windows 7 Ultimate x64
Ran by on 19.03.2013 at 16:23:07,01
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\installmate"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 19.03.2013 at 16:27:08,26
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[/CODE] AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v2.115 - Datei am 19/03/2013 um 16:30:00 erstellt
# Aktualisiert am 17/03/2013 von Xplode
# Betriebssystem : Windows 7 Ultimate (64 bits)
# Benutzer : - -PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\\Downloads\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Ordner Gelöscht : C:\ProgramData\SoftSafe
***** [Registrierungsdatenbank] *****
***** [Internet Browser] *****
-\\ Internet Explorer v9.0.8112.16470
[OK] Die Registrierungsdatenbank ist sauber.
-\\ Google Chrome v25.0.1364.172
Datei : C:\Users\\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R1].txt - [860 octets] - [19/03/2013 16:29:10]
AdwCleaner[S1].txt - [794 octets] - [19/03/2013 16:30:00]
########## EOF - C:\AdwCleaner[S1].txt - [853 octets] ##########
EDIT: So hab ein Problem. Die Log's vom OTL sind zu groß für ein Post. Was nun? |
|
19.03.2013, 17:56
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! Zu große Logs bitte zippen und anhängen, wird hier beschrieben => http://www.trojaner-board.de/69886-a...tml#post566999
__________________ Logfiles bitte immer in CODE-Tags posten |
|
20.03.2013, 16:22
| #15 |
| | PC hängt sich ständig beim gaming auf! Verdacht auf Virus! oh hier die Logs. EDIT: BTW, dauert diese Prozedur immer so lange? also ich meine hier jeden einzelnen Cleaner etc. das System checken lassen? Weil bis jetzt hat sich da noch nichts wirklich getan. Geändert von De_Maksch (20.03.2013 um 16:44 Uhr) |
|
| Themen zu PC hängt sich ständig beim gaming auf! Verdacht auf Virus! |
| antivir, autorun, avg, avira, bho, booten, desktop, explorer, firefox, google, home, hängt, install.exe, launch, logfile, ntdll.dll, plug-in, problem, prozess, realtek, registry, security, sekunden, software, spielen, spotify web helper, system hängt, taskmanager, temp, udp, unerwarteter fehler, usb, verdacht auf virus, virus |
Linear-Darstellung
