Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 31.03.2014, 14:47   #1
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Hallo,

ich habe seit einigen Tagen das Problem, dass sich mein Laptop verselbstständigt. Dh. die eingebaute Webcam ging von alleine an, ich bekam Tage später einen Anruf auf den Rechner (!?) und der Rechner hielt alle paar Sekunden an wenn ich im Internet war (der Curser bewegte sich auch nicht mehr).

Malware Protection hat 18 Infektionen gefunden, ich habe schon mal ein paar Logfiles erstellt, mit FRST und malware protector:

malware:

Code:
ATTFilter
Code:
ATTFilter
<?xml version="1.0" encoding="utf-8" standalone="yes"?><?xml-stylesheet type='text/xsl' href='C:\ProgramData\Nico Mak Computing\WinZip Malware Protector\log.xslt'?

><info><LangStrings><string1>Datum der Überprüfung</string1><string2>Datenbankversion</string2><string3>Gefundene Elemente insgesamt</string3><string4>Überprüfte 

Objekte:</string4><string5>Abgelaufene Zeit:</string5><string6>Name</string6><string7>Gefundene Elemente</string7><string8>Name der 

Infektion</string8><string9>Kategorie</string9><string10>Bedrohungsstufe</string10><string11>Durchgeführte Aktion</string11><string12>Elemente 

gefunden</string12><string13>Gefundener 

Bereich</string13><string14>Details</string14><string15>Dateiname</string15><string16>MD5</string16><string17>Signatur</string17><string18>Registrierungsschlüssel</string18><st

ring19>Keine Infektionen entdeckt.</string19><string20 /></LangStrings><loginfo><date>31.03.2014 14:56:37</date><key /><istrial>True</istrial><system>HASUFEL-

PC|192.168.2.103|00-21-5D-0D-E8-28</system><scantype>QuickScan</scantype><os>Windows Vista 32 Bit, Version : Microsoft Windows NT 6.0.6002 Service Pack 

2</os><dbversion>1735</dbversion><time>00:17:48</time><objectscanned>279963</objectscanned><objectfound>18</objectfound><cultureinfo>German (Germany)

</cultureinfo><version>2.1.1000.10798</version></loginfo><companyinfo><companyname>Nico Mak Computing</companyname><productname>WinZip Malware 

Protector</productname><copyright>© 2013 WinZip International LLC. All rights reserved.</copyright></companyinfo><log logdate="Montag, 31. März 2014" databaseversion="1735" 

objectscanned="279963" 

timeelapsed="00:17:48"><SerializableDictionaryOfStringListOfcFoundItems><Item><Key><string>roguesecurityprogram.multiviruscleaner</string></Key><Value><ArrayOfFI><FI><C>Rogue 

Antispyware Program</C><TL>Severe</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\internet 

explorer\main</V2><V3>iewatsondisabled</V3><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>213112</ID></FI></ArrayOfFI></Value></Item><Item><Key><string>surveillance.1avmonitor</string></Key><Value><ArrayOfFI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_classes_root</V1><V2>clsid\{083863f1-70de-11d0-bd40-00a0c911ce86}

\instance\{d616f350-d622-11ce-aac5-0020af0b99a3}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_classes_root</V1><V2>clsid\{083863f1-70de-11d0-bd40-00a0c911ce86}

\instance\{d616f350-d622-11ce-aac5-0020af0b99a3}</V2><V3>friendlyname</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_classes_root</V1><V2>clsid\{083863f1-70de-11d0-bd40-00a0c911ce86}

\instance\{d616f350-d622-11ce-aac5-0020af0b99a3}</V2><V3>clsid</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_classes_root</V1><V2>clsid\{083863f1-70de-11d0-bd40-00a0c911ce86}

\instance\{d616f350-d622-11ce-aac5-0020af0b99a3}</V2><V3>filterdata</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_classes_root</V1><V2>clsid\{d616f350-d622-11ce-aac5-0020af0b99a3}

\inprocserver32</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_classes_root</V1><V2>clsid\{d616f350-d622-11ce-aac5-0020af0b99a3}

\inprocserver32</V2><V3>threadingmodel</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_classes_root</V1><V2>clsid\{d616f350-d622-11ce-aac5-0020af0b99a3}

</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_classes_root</V1><V2>clsid\{d616f351-d622-11ce-aac5-0020af0b99a3}

\inprocserver32</V2><V3>threadingmodel</V3><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{083863f1-70de-11d0-

bd40-00a0c911ce86}\instance\{d616f350-d622-11ce-aac5-0020af0b99a3}</V2><V3>clsid</V3><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{083863f1-70de-11d0-

bd40-00a0c911ce86}\instance\{d616f350-d622-11ce-aac5-0020af0b99a3}</V2><V3>filterdata</V3><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{083863f1-70de-11d0-

bd40-00a0c911ce86}\instance\{d616f350-d622-11ce-aac5-0020af0b99a3}</V2><V3>friendlyname</V3><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{d616f350-d622-11ce-

aac5-0020af0b99a3}\inprocserver32</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{d616f350-d622-11ce-

aac5-0020af0b99a3}\inprocserver32</V2><V3>threadingmodel</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{d616f350-d622-11ce-

aac5-0020af0b99a3}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{d616f351-d622-11ce-

aac5-0020af0b99a3}\inprocserver32</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{d616f351-d622-11ce-

aac5-0020af0b99a3}\inprocserver32</V2><V3>threadingmodel</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Surveillance 

Tool</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{d616f351-d622-11ce-

aac5-0020af0b99a3}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV 

/><FA>Registry</FA><RBT>None</RBT><ID>212582</ID></FI></ArrayOfFI></Value></Item></SerializableDictionaryOfStringListOfcFoundItems></log></info>
         

FRST:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01
Ran by Hasufel (administrator) on HASUFEL-PC on 31-03-2014 15:06:45
Running from C:\Users\Hasufel\Downloads
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
() C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
() C:\Windows\system32\PnkBstrA.exe
(Cognizance Corporation) C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
() C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
() C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
() C:\Program Files\P4P\P4P.exe
(ASUS) C:\Windows\AsScrPro.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
() C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
() C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynAsus.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Nico Mak Computing) C:\Program Files\WinZip Malware Protector\WinZipMalwareProtector.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [98304 2008-01-11] ()
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [7651328 2008-07-15] (ASUS)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6183456 2008-06-13] (Realtek Semiconductor)
HKLM\...\Run: [CognizanceTS] - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASTSVCC.dll [17920 2003-12-21] (Cognizance Corporation)
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [159744 2008-06-24] (ASUS)
HKLM\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3054136 2012-07-16] (ASUS)
HKLM\...\Run: [ASUS Camera ScreenSaver] - C:\Windows\AsScrProlog.exe [47672 2012-07-16] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-11-16] (Synaptics, Inc.)
HKLM\...\Run: [Acrobat Assistant 8.0] - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems Inc.)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\MountPoints2: I - I:\LaunchU3.exe -a
HKU\S-1-5-21-4087618416-3944343460-3664847585-1001\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
AppInit_DLLs: APSHook.dll => C:\Windows\system32\APSHook.dll [56832 2006-07-12] (Cognizance Corporation)
Lsa: [Notification Packages] scecli ASWLNPkg

==================== Internet (Whitelisted) ====================

ProxyServer: 192.168.1.2:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hasufel\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Hasufel\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions:  - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-04-20]

Chrome: 
=======
CHR HomePage: 
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.477_0\plugin/npUrlAdvisor.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.477_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2012-08-05]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-04-20]
CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2013-04-20]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2012-08-05]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-27]
CHR Extension: (Google Wallet) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-04]
CHR Extension: (Anti-Banner) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2012-08-05]
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2012-10-25]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Hasufel\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-27]

========================== Services (Whitelisted) =================

S3 Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [153792 2007-03-20] (Adobe Systems Incorporated)
R2 ASBroker; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [74240 2007-02-06] (Cognizance Corporation)
R2 ASChannel; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll [131584 2006-06-21] (Cognizance Corporation)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] ()
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2014-03-07] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] ()

==================== Drivers (Whitelisted) ====================

R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [281760 2013-03-28] ()
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146824 2007-06-16] (AuthenTec, Inc.)
R3 DCamUSBET; C:\Windows\System32\DRIVERS\etDevice.sys [474624 2007-09-06] (eMPIA Technology, Inc.)
R3 FiltUSBET; C:\Windows\System32\DRIVERS\etFilter.sys [206464 2008-02-05] (eMPIA Technology Inc.)
R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [20936 2007-08-03] ()
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-18] (ITE Tech. Inc. )
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-12-15] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [595552 2013-10-10] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2013-12-15] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-06-18] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-23] (Kaspersky Lab ZAO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2013-03-28] ()
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R3 ScanUSBET; C:\Windows\System32\DRIVERS\etScan.sys [6528 2008-01-31] (eMPIA Technology, Inc.)
S3 ASUSProcObsrv; \??\G:\I386\AsProcOb.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-04-23] (Kaspersky Lab ZAO)
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-31 15:06 - 2014-03-31 15:07 - 00023703 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-03-31 15:06 - 2014-03-31 15:06 - 00000000 ____D () C:\FRST
2014-03-31 15:05 - 2014-03-31 15:06 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:56 - 2014-03-31 14:56 - 00008340 _____ () C:\Users\Hasufel\Desktop\log.xml
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:34 - 2013-03-15 17:01 - 00016384 _____ () C:\Windows\system32\wsusnative32.exe
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-27 20:59 - 2014-03-31 11:32 - 00000644 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-03-27 20:59 - 2014-03-31 11:31 - 00000616 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-03-27 20:59 - 2014-03-31 11:31 - 00000446 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-03-27 20:59 - 2014-03-27 20:59 - 00001965 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-03-27 20:59 - 2014-03-27 20:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-03-27 20:59 - 2013-09-20 11:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2014-03-27 20:50 - 2014-03-27 20:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-13 13:55 - 2014-02-23 07:50 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 13:55 - 2014-02-23 07:47 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 13:55 - 2014-02-23 07:43 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 13:55 - 2014-02-23 07:41 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 13:55 - 2014-02-23 07:40 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 13:55 - 2014-02-23 07:39 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 13:55 - 2014-02-23 07:38 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-13 13:55 - 2014-02-23 07:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 13:55 - 2014-02-23 07:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-13 13:55 - 2014-02-23 07:36 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 13:55 - 2014-02-23 07:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-13 13:55 - 2014-02-23 07:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 11:05 - 2014-02-07 12:38 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 11:05 - 2014-02-03 12:37 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 11:05 - 2014-01-30 09:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 11:05 - 2013-11-13 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-03-07 20:32 - 2014-03-07 20:43 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS

==================== One Month Modified Files and Folders =======

2014-03-31 15:07 - 2014-03-31 15:06 - 00023703 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-03-31 15:06 - 2014-03-31 15:06 - 00000000 ____D () C:\FRST
2014-03-31 15:06 - 2014-03-31 15:05 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:58 - 2012-08-05 20:53 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-31 14:56 - 2014-03-31 14:56 - 00008340 _____ () C:\Users\Hasufel\Desktop\log.xml
2014-03-31 14:41 - 2012-07-27 14:56 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-31 14:39 - 2012-07-17 02:09 - 01990278 _____ () C:\Windows\WindowsUpdate.log
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-31 14:20 - 2012-08-05 21:04 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job
2014-03-31 14:11 - 2012-07-16 19:39 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-03-31 13:31 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-31 13:31 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-31 12:10 - 2013-02-03 18:50 - 00000000 ____D () C:\Windows\pss
2014-03-31 11:41 - 2012-07-27 14:56 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-31 11:39 - 2006-11-02 12:33 - 01566088 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-31 11:32 - 2014-03-27 20:59 - 00000644 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-03-31 11:31 - 2014-03-27 20:59 - 00000616 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-03-31 11:31 - 2014-03-27 20:59 - 00000446 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-03-31 11:31 - 2012-10-07 20:17 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-03-31 11:31 - 2012-07-16 18:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-31 11:31 - 2008-01-21 04:47 - 00071148 _____ () C:\Windows\PFRO.log
2014-03-31 11:31 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-28 00:57 - 2012-07-17 02:09 - 00000012 _____ () C:\Windows\bthservsdp.dat
2014-03-28 00:57 - 2006-11-02 15:01 - 00032514 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-27 21:06 - 2012-10-07 20:17 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-27 20:59 - 2014-03-27 20:59 - 00001965 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-03-27 20:59 - 2014-03-27 20:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-03-27 20:52 - 2014-03-27 20:50 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-27 20:26 - 2013-03-27 14:17 - 00000000 ____D () C:\Users\Hasufel\Documents\Eigene Scans
2014-03-24 16:19 - 2012-08-05 21:04 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job
2014-03-23 15:51 - 2012-07-16 21:54 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-03-19 17:50 - 2013-10-04 16:19 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-19 17:48 - 2006-11-02 12:24 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-03-16 20:37 - 2012-08-05 21:05 - 00002051 _____ () C:\Users\Hasufel\Desktop\Google Chrome.lnk
2014-03-15 09:57 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache
2014-03-15 09:41 - 2006-11-02 14:47 - 01737456 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-15 09:38 - 2012-07-20 22:48 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-13 13:57 - 2012-07-17 12:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-13 13:53 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-03-12 22:58 - 2012-07-24 16:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-12 22:58 - 2012-07-24 16:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-07 23:16 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-03-07 20:43 - 2014-03-07 20:32 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-07 19:08 - 2013-03-29 15:01 - 00189248 _____ () C:\Windows\system32\PnkBstrB.exe
2014-03-07 19:08 - 2013-03-29 15:01 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-07 19:08 - 2012-08-25 19:57 - 00000000 ____D () C:\Program Files\Ubisoft
2014-03-07 19:08 - 2012-07-16 18:30 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-03-07 19:03 - 2012-09-03 11:08 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\Ubisoft Game Launcher
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS
2014-03-06 14:51 - 2012-07-16 18:54 - 00000000 ____D () C:\ProgramData\ASUS

Some content of TEMP:
====================
C:\Users\Hasufel\AppData\Local\Temp\ose00000.exe
C:\Users\Hasufel\AppData\Local\Temp\_is4FE3.exe
C:\Users\Hasufel\AppData\Local\Temp\_is685.exe
C:\Users\Hasufel\AppData\Local\Temp\_isB5B7.exe
C:\Users\Hasufel\AppData\Local\Temp\_isC4E4.exe
C:\Users\Hasufel\AppData\Local\Temp\_isCC05.exe
C:\Users\Hasufel\AppData\Local\Temp\_isEAAC.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-31 11:39

==================== End Of Log ============================
         

Addition:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014  01
Ran by Hasufel at 2014-03-31 15:07:45
Running from C:\Users\Hasufel\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky Internet Security (Enabled - Up to date) {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AS: Kaspersky Internet Security (Enabled - Up to date) {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}

==================== Installed Programs ======================

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
4500_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
Adobe Acrobat 8 Professional - English, Français, Deutsch (Version: 8.1.0 - Adobe Systems) Hidden
Adobe After Effects CS3 (Version: 8 - Adobe Systems Incorporated) Hidden
Adobe After Effects CS3 Presets (Version: 8 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.5.0.1060 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.5.0.1060 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS3 (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Bridge Start Meeting (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe BridgeTalk Plugin CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Camera Raw 4.0 (Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color Common Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Recommended Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Extra Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Contribute CS3 (Version: 4.1 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 3 Master Collection (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 3 Master Collection hinzufügen oder entfernen (HKLM\...\Adobe_67a7fb1e97aa14ee9ef0950eb6fd757) (Version: 1.0 - Adobe Systems Incorporated)
Adobe Default Language CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CS3 (Version: 9 - Adobe Systems Incorporated) Hidden
Adobe Encore CS3 (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Encore CS3 Codecs (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit 2 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS3 (Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Fireworks CS3 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS3 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 9 ActiveX (HKLM\...\{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}) (Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Flash Video Encoder (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Fonts All (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS3 (Version: 13.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS3 (Version: 5.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS3 Icon Handler (Version: 5.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS3 (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe MotionPicture Color Files (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (Version: 10 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CS3 (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CS3 Functional Content (Version: 8 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CS3 Third Party Content (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Reader 8.1.2 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A81200000003}) (Version: 8.1.2 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Adobe Setup (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe SING CS3 (Version: 0.1 - Adobe Systems Incorporated) Hidden
Adobe Soundbooth CS3 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Soundbooth CS3 Codecs (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Stock Photos CS3 (Version: 1.5 - Adobe Systems Incorporated) Hidden
Adobe Type Support (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS3 (Version: 5.1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Server (Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe Video Profiles (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WAS CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP DVA Panels CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Agere Systems HDA Modem (HKLM\...\Agere Systems Soft Modem) (Version:  - Agere Systems)
AHV content for Acrobat and Flash (Version: 1 - Adobe Systems Incorporated) Hidden
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin's Creed Brotherhood (HKLM\...\{BE4BA698-8533-4F77-9559-C7F3F78C0B05}) (Version: 1.03 - Ubisoft)
Assassin's Creed II (HKLM\...\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}) (Version: 1.01 - Ubisoft)
Assassin's Creed Revelations 1.03 (HKLM\...\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}) (Version: 1.03 - Ubisoft)
Assassin's Creed(R) III v1.06 (HKLM\...\{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}) (Version: 1.06 - Ubisoft)
ASUS CopyProtect (HKLM\...\{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}) (Version: 1.0.0007 - ASUS)
ASUS LifeFrame3 (HKLM\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.9 - ASUS)
ASUS Live Update (HKLM\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.6 - ASUS)
ASUS MultiFrame (HKLM\...\{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0017 - )
ASUS Power4Gear eXtreme (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.0.19 - ASUS)
ASUS Security Protect Manager (HKLM\...\{D8D4AF9A-6ADE-4B14-A7F5-BA858792729E}) (Version: 2.1.0.880.20 - ASUSTeK Computer Inc.)
ASUS SmartLogon (HKLM\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0005 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0021 - ASUS)
ASUS Virtual Camera (HKLM\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.11 - ASUS)
Asus_Camera_ScreenSaver (HKLM\...\Asus_Camera_ScreenSaver) (Version: 2.0.0008 - ASUS)
ATK Generic Function Service (HKLM\...\{D3D54F3E-C5C3-443D-978F-87A72E5616E8}) (Version: 1.00.0008 - ATK)
ATK Hotkey (HKLM\...\{7C05592D-424B-46CB-B505-E0013E8E75C9}) (Version: 1.0.0038 - ASUS)
ATK Media (HKLM\...\{D1E5870E-E3E5-4475-98A6-ADD614524ADF}) (Version: 2.0.0000 - ASUS)
ATKOSD2 (HKLM\...\{3B05F2FB-745B-4012-ADF2-439F36B2E70B}) (Version: 7.0.0001 - ASUS)
AuthenTec Fingerprint Sensor Minimum Install (Version: 7.8.1 - AuthenTec, Inc.) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BPD_HPSU (Version: 1.00.0000 - Hewlett-Packard) Hidden
bpd_scan (Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (Version: 100.0.170.000 - Hewlett-Packard) Hidden
ChkMail (HKLM\...\{250F0996-1830-40C8-9B1D-6874D808DD95}) (Version: 2.0.0.16 - ChkMail)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{92C42EDD-6524-4577-B2EB-6C68C63B6D4A}) (Version:  - Microsoft)
Destination Component (Version: 100.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DocMgr (Version: 100.0.201.000 - Hewlett-Packard) Hidden
DocProc (Version: 11.0.0.0 - Hewlett-Packard) Hidden
DocProcQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Dolby Control Center (HKLM\...\{DE66EFAD-B9CC-4FD4-9157-6C18E5100161}) (Version: 1.1.0503 - Dolby)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Express Gate (HKLM\...\{27D51A76-371D-48B6-B06E-4137A15B7583}) (Version: 0.8.0.3 - Ihr Firmenname)
Extensis Suitcase 11.0.1 (HKLM\...\{7451C9B5-3E10-4E59-AD37-AB7438D84288}) (Version: 11.0.1 - Extensis)
Fax (Version: 100.0.187.000 - Hewlett-Packard) Hidden
FileZilla Client 3.7.3 (HKLM\...\FileZilla Client) (Version: 3.7.3 - Tim Kosse)
Free Studio version 5.7.4.918 (HKLM\...\Free Studio_is1) (Version: 5.7.4.918 - DVDVideoSoft Ltd.)
Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
GPBaseService (Version: 100.0.187.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP)
HP Document Manager 1.0 (HKLM\...\HP Document Manager) (Version: 1.0 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HP Officejet J4500 Series (HKLM\...\{CD0773D5-C18E-495c-B39B-21A96415EDD5}) (Version: 1.0 - HP)
HP Smart Web Printing (HKLM\...\HP Smart Web Printing) (Version: 3.5 - HP)
HP Solution Center 10.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 10.0 - HP)
HP Update (HKLM\...\{11B83AD3-7A46-4C2E-A568-9505981D4C6F}) (Version: 4.000.007.003 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
HPProductAssistant (Version: 100.0.170.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 100.0.170.000 - Hewlett-Packard) Hidden
ITECIR (HKLM\...\{40580068-9B10-40B5-9548-536CE88AB23C}) (Version: 1.00.0000 - ITE)
iTunes (HKLM\...\{E05D82D8-FE70-4228-B073-B0C07FE27595}) (Version: 11.1.1.11 - Apple Inc.)
J4500 (Version: 50.0.165.000 - Ihr Firmenname) Hidden
Jacquie Lawson Alpine Advent Calendar (HKLM\...\JLAdventCalendarAlpine2012) (Version: 1.0.2 - MicroCourt Limited)
Jacquie Lawson Alpine Advent Calendar (Version: 1.0.2 - MicroCourt Limited) Hidden
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Kaspersky Internet Security 2013 (HKLM\...\InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab)
Kaspersky Internet Security 2013 (Version: 13.0.1.4190 - Kaspersky Lab) Hidden
MarketResearch (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 25.0.1 (x86 de) (HKLM\...\Mozilla Firefox 25.0.1 (x86 de)) (Version: 25.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 25.0.1 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NB Probe (HKLM\...\{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}) (Version:  - )
NVIDIA 3D Vision Treiber 310.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 310.70 - NVIDIA Corporation)
NVIDIA Grafiktreiber 310.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 310.70 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.95.599 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1070 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 310.70 (Version: 310.70 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
OCR Software by I.R.I.S. 10.0 (HKLM\...\HPOCR) (Version: 10.0 - HP)
P4P (HKLM\...\{FC3D290D-79BE-44B7-ABF9-FDD110925930}) (Version: 1.0.0.17 - P4P)
PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
ProductContext (Version: 50.0.165.000 - Hewlett-Packard) Hidden
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5645 - Realtek Semiconductor Corp.)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.01 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.55.01 - )
Risen (HKLM\...\{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}) (Version: 1.00.0000 - Deep Silver)
Sacred 2 - Elite (HKLM\...\{2BB047B7-E613-4686-BE0C-E63BB26BE121}) (Version: 1.00.0000 -  )
Sacred 2 (HKLM\...\{1023383E-D9F6-478C-A965-23A4657B3C9A}) (Version: 2.0.2.0 - Deep Silver)
Scan (Version: 10.1.0.0 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version:  - Microsoft) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 10.0 - HP)
SmartWebPrintingOC (Version: 100.0.189.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Status (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.1.6.0 - Synaptics)
Toolbox (Version: 100.0.170.000 - Hewlett-Packard) Hidden
TrayApp (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2878227) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5D357893-40BA-4323-86BA-D97C66CD72F4}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version:  - Microsoft)
USB2.0 1.3M UVC WebCam (HKLM\...\USB2.0 1.3M UVC WebCam) (Version:  - )
WebReg (Version: 100.0.170.000 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 5.2.0.500 - Broadcom Corporation)
WinFlash (HKLM\...\{DE10AB76-4756-4913-BE25-55D1C1051F9A}) (Version:  - )
WinRAR 4.20 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinZip Malware Protector (HKLM\...\WinZip Malware Protector_is1) (Version: 2.1.1000.10798 - WinZip International LLC)
Wireless Console 2 (HKLM\...\{83F73CB1-7705-49D1-9852-84D839CA2A45}) (Version: 2.0.10 - ATK)

==================== Restore Points  =========================

18-03-2014 12:30:15 Windows Update
19-03-2014 14:07:01 Geplanter Prüfpunkt
19-03-2014 15:48:06 Windows Update
23-03-2014 13:57:36 Windows Update
24-03-2014 15:35:05 Geplanter Prüfpunkt
27-03-2014 22:43:41 Geplanter Prüfpunkt
31-03-2014 09:39:37 Windows Update

==================== Hosts content: ==========================

2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {010F0C3A-F019-4B2E-96C1-AD25FD7E9FAA} - System32\Tasks\Refresh immunization (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {0C4872EC-7955-438A-B9F6-FBAA8015DD29} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {0F78C8A7-B54B-4E49-A6BC-7488597F3874} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {13485182-D459-4625-A6C4-6D4089A87EBF} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2008-01-21] (Microsoft Corporation)
Task: {1818478A-EEBE-48C7-8B5D-0B8FD080CA62} - System32\Tasks\Scan the system (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {6A284455-E32F-44CD-AF7C-A09222D02009} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core => C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-27] (Google Inc.)
Task: {6BFF4512-D900-43DC-96BF-2C0700041F57} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Hasufel => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-10] (Microsoft Corporation)
Task: {6F8D0D18-8DF0-4264-A845-2D93A5DBEB52} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {757C8EE9-A6F1-4F3A-B5EB-C4E7128C6AE5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA => C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-27] (Google Inc.)
Task: {81F93B87-E9F9-4689-BAF0-18019B621902} - System32\Tasks\Check for updates (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {8466B438-95EE-45E6-A925-DC4F41E5236B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-27] (Google Inc.)
Task: {A495236B-243E-4BC2-A630-AF66BC0F8D46} - System32\Tasks\WinZip Malware Protector_startup => C:\Program Files\WinZip Malware Protector\WinZipMalwareProtector.exe [2013-07-15] (Nico Mak Computing)
Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => Rundll32.exe %windir%\system32\pla.dll,PlaConvertLogEntries
Task: {BE788D82-3534-45A5-B1A4-BAD0A17342FE} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files\ASUS\SmartLogon\sensorsrv.exe [2008-06-17] (ASUS)
Task: {C53F87A7-7209-4A1A-90B5-77AF388CBEDA} - System32\Tasks\ASUS Live Update => C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {C71BE890-7876-4395-BCB5-5B99F023FE8E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-27] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job => C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job => C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe

==================== Loaded Modules (whitelisted) =============

2007-10-02 21:53 - 2007-10-02 21:53 - 00094208 _____ () C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
2012-07-16 18:30 - 2007-08-08 00:08 - 00094208 _____ () C:\Program Files\ATKGFNEX\GFNEXSrv.exe
2012-07-16 22:32 - 2007-05-11 01:31 - 00921600 _____ () C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdistRes.DEU
2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-08-17 21:39 - 2013-04-20 20:44 - 01310136 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\kpcengine.2.2.dll
2013-03-29 15:01 - 2014-03-07 19:08 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2008-04-10 11:25 - 2008-04-10 11:25 - 00126976 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2014-03-27 20:59 - 2013-05-16 11:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-03-27 20:59 - 2013-05-16 11:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2012-07-16 18:54 - 2007-11-30 11:20 - 00051768 _____ () C:\Program Files\ASUS\ASUS Live Update\ALU.exe
2007-11-04 19:48 - 2007-11-04 19:48 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
2008-01-11 22:40 - 2008-01-11 22:40 - 00098304 _____ () C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
2007-11-12 15:41 - 2007-11-12 15:41 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\MsgTran.dll
2004-05-27 18:13 - 2004-05-27 18:13 - 00057344 _____ () C:\Program Files\ASUS\ATK Hotkey\CMSSC.dll
2012-07-16 18:39 - 2007-07-05 16:53 - 01040384 _____ () C:\Program Files\Wireless Console 2\wcourier.exe
2007-07-09 22:48 - 2007-07-09 22:48 - 00009216 _____ () C:\Program Files\ASUS\Splendid\GLCDdll.dll
2012-07-16 18:55 - 2008-01-25 18:32 - 00778240 _____ () C:\Program Files\P4P\P4P.exe
2012-08-17 21:38 - 2012-08-17 21:38 - 00479160 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll
2012-07-16 18:54 - 2007-08-03 12:24 - 00125496 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
2012-07-16 18:54 - 2007-09-14 10:00 - 00147456 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdiskex.dll
2012-07-16 18:54 - 2003-11-28 02:11 - 00135168 _____ () C:\Program Files\ASUS\NB Probe\SPM\spos.dll
2012-07-16 18:54 - 2005-08-29 15:24 - 00081920 _____ () C:\Program Files\ASUS\NB Probe\SPM\spnbacpi.dll
2012-07-16 18:54 - 2003-09-09 16:08 - 00049152 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdmi.dll
2012-07-16 18:54 - 2006-04-04 10:24 - 00036864 _____ () C:\Program Files\ASUS\NB Probe\SPM\ghadmi.dll
2012-07-16 18:54 - 2005-04-07 19:25 - 00077824 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmemory.dll
2014-03-27 20:59 - 2013-05-16 11:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2007-08-15 11:20 - 2007-08-15 11:20 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
2008-01-23 10:51 - 2008-01-23 10:51 - 00151552 _____ () C:\Program Files\ASUS\ATK Hotkey\WDC.exe
2014-03-27 20:59 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-03-27 20:59 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 00051016 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 01647432 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 13637448 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 04061000 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 00394568 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll
2014-03-31 14:34 - 2013-02-28 16:53 - 00886272 _____ () C:\Program Files\WinZip Malware Protector\System.Data.SQLite.dll
2014-03-31 14:34 - 2013-07-15 16:53 - 01717936 _____ () C:\Program Files\WinZip Malware Protector\aspsys.dll
2014-03-31 14:34 - 2013-02-28 16:53 - 00168448 _____ () C:\Program Files\WinZip Malware Protector\UNRAR.DLL

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Suitcase 11.0.lnk => C:\Windows\pss\Suitcase 11.0.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Hasufel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^JL Alpine Advent Calendar.lnk => C:\Windows\pss\JL Alpine Advent Calendar.lnk.Startup
MSCONFIG\startupreg: Adobe_ID0EYTHM => C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
MSCONFIG\startupreg: Google Update => "C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: PowerForPhone => "C:\Program Files\P4P\P4P.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11733210

Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11733210

Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11717610

Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11717610

Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11702009

Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11702009

Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/19/2014 09:56:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11686409


System errors:
=============
Error: (03/31/2014 11:35:56 AM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032

Error: (03/31/2014 11:33:49 AM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (03/31/2014 11:32:15 AM) (Source: Service Control Manager) (User: )
Description: Spybot-S&D 2 Scanner Service%%1053

Error: (03/31/2014 11:32:15 AM) (Source: Service Control Manager) (User: )
Description: 30000Spybot-S&D 2 Scanner Service

Error: (03/27/2014 08:59:44 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032

Error: (03/27/2014 08:57:19 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (03/27/2014 08:55:45 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 27.03.2014 um 19:53:25 unerwartet heruntergefahren.

Error: (03/27/2014 08:06:09 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032

Error: (03/27/2014 08:04:49 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (03/25/2014 02:34:24 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032


Microsoft Office Sessions:
=========================
Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11733210

Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11733210

Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11717610

Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11717610

Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11702009

Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11702009

Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/19/2014 09:56:51 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11686409


CodeIntegrity Errors:
===================================
  Date: 2014-03-31 15:07:26.519
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kneps.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:26.376
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kneps.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:26.233
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kneps.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:26.091
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kneps.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:25.937
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kltdi.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:25.793
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kltdi.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:25.651
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kltdi.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:25.419
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kltdi.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:25.200
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\klmouflt.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-03-31 15:07:25.045
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\klmouflt.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 65%
Total physical RAM: 3070.17 MB
Available physical RAM: 1046.01 MB
Total Pagefile: 6341.25 MB
Available Pagefile: 4020.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1893.37 MB

==================== Drives ================================

Drive c: (VistaOS) (Fixed) (Total:149.04 GB) (Free:35.51 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:149.04 GB) (Free:44.01 GB) NTFS
Drive e: (DATA) (Fixed) (Total:139.28 GB) (Free:73.57 GB) NTFS
Drive f: () (Fixed) (Total:149.04 GB) (Free:33.34 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 97646C29)
Partition 1: (Not Active) - (Size=10 GB) - (Type=1C)
Partition 2: (Active) - (Size=149 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=139 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 298 GB) (Disk ID: DF3905D1)

Partition: GPT Partition Type.

==================== End Of Log ============================
         

Vielen Dank schon mal für die Hilfe!

LG

Alt 31.03.2014, 17:47   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



hi,

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________

__________________

Alt 31.03.2014, 21:23   #3
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Hey,

vielen vielen Dank für die schnelle Hilfe!

MalwareBytes hat allerdings nichts gefunden.
__________________

Alt 01.04.2014, 12:44   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 01.04.2014, 15:41   #5
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Hey,

tut mir leid, hier der erste Teil von TDSSKiller:

Code:
ATTFilter
21:19:19.0459 0x0f68  TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
21:19:30.0520 0x0f68  ============================================================
21:19:30.0520 0x0f68  Current date / time: 2014/03/31 21:19:30.0520
21:19:30.0520 0x0f68  SystemInfo:
21:19:30.0520 0x0f68  
21:19:30.0520 0x0f68  OS Version: 6.0.6002 ServicePack: 2.0
21:19:30.0520 0x0f68  Product type: Workstation
21:19:30.0520 0x0f68  ComputerName: HASUFEL-PC
21:19:30.0520 0x0f68  UserName: Hasufel
21:19:30.0520 0x0f68  Windows directory: C:\Windows
21:19:30.0520 0x0f68  System windows directory: C:\Windows
21:19:30.0520 0x0f68  Processor architecture: Intel x86
21:19:30.0520 0x0f68  Number of processors: 2
21:19:30.0520 0x0f68  Page size: 0x1000
21:19:30.0520 0x0f68  Boot type: Normal boot
21:19:30.0520 0x0f68  ============================================================
21:19:50.0771 0x0f68  KLMD registered as C:\Windows\system32\drivers\27719891.sys
21:19:51.0239 0x0f68  System UUID: {990693BB-593F-37F4-54DB-E177D1C1CBCC}
21:19:52.0182 0x0f68  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:19:52.0498 0x0f68  Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x97695, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000050
21:19:52.0500 0x0f68  ============================================================
21:19:52.0500 0x0f68  \Device\Harddisk0\DR0:
21:19:52.0515 0x0f68  MBR partitions:
21:19:52.0516 0x0f68  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388B3B, BlocksNum 0x12A14C00
21:19:52.0581 0x0f68  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13D9D77A, BlocksNum 0x1168FF47
21:19:52.0581 0x0f68  \Device\Harddisk1\DR1:
21:19:52.0581 0x0f68  MBR partitions:
21:19:52.0581 0x0f68  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12A17000
21:19:52.0581 0x0f68  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x12A17800, BlocksNum 0x12A17000
21:19:52.0581 0x0f68  ============================================================
21:19:52.0704 0x0f68  C: <-> \Device\Harddisk0\DR0\Partition1
21:19:52.0732 0x0f68  D: <-> \Device\Harddisk1\DR1\Partition1
21:19:52.0789 0x0f68  E: <-> \Device\Harddisk0\DR0\Partition2
21:19:52.0839 0x0f68  F: <-> \Device\Harddisk1\DR1\Partition2
21:19:52.0839 0x0f68  ============================================================
21:19:52.0839 0x0f68  Initialize success
21:19:52.0839 0x0f68  ============================================================
21:19:58.0306 0x1114  ============================================================
21:19:58.0306 0x1114  Scan started
21:19:58.0306 0x1114  Mode: Manual; 
21:19:58.0306 0x1114  ============================================================
21:19:58.0306 0x1114  KSN ping started
21:19:58.0512 0x1114  KSN ping finished: true
21:20:00.0913 0x1114  ================ Scan system memory ========================
21:20:00.0913 0x1114  System memory - ok
21:20:00.0914 0x1114  ================ Scan services =============================
21:20:01.0407 0x1114  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
21:20:01.0501 0x1114  ACPI - ok
21:20:01.0831 0x1114  [ 14C23516C990DCD6052152CF034DDE40, 1EC8AAD6AA6D68A17A9D04AECDB716BD0DD4BFF93641BD96D01855AF1232A5FB ] Adobe Version Cue CS3 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
21:20:01.0836 0x1114  Adobe Version Cue CS3 - ok
21:20:02.0064 0x1114  [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:20:02.0065 0x1114  AdobeARMservice - ok
21:20:02.0274 0x1114  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:20:02.0283 0x1114  AdobeFlashPlayerUpdateSvc - ok
21:20:02.0598 0x1114  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:20:02.0655 0x1114  adp94xx - ok
21:20:02.0755 0x1114  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:20:02.0834 0x1114  adpahci - ok
21:20:02.0855 0x1114  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
21:20:02.0860 0x1114  adpu160m - ok
21:20:02.0896 0x1114  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:20:02.0902 0x1114  adpu320 - ok
21:20:03.0080 0x1114  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:20:03.0124 0x1114  AeLookupSvc - ok
21:20:03.0251 0x1114  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
21:20:03.0256 0x1114  AFD - ok
21:20:03.0339 0x1114  [ EFBC44FBD75E4F80BD927AEBF6E7EADE, 0A1ACFE5D007DF8ABB97081C93111A1F18D90CB34093CD5784588971BFE86AE7 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
21:20:03.0340 0x1114  AgereModemAudio - ok
21:20:03.0497 0x1114  [ 1CFEBA39FC613E45B49D3EDDFBCDA289, 15E8102FD9C50DBC16DDC523FC9C17DBE21F2C5C4E081C54901379C0D99277AA ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
21:20:03.0745 0x1114  AgereSoftModem - ok
21:20:03.0839 0x1114  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:20:03.0843 0x1114  agp440 - ok
21:20:03.0890 0x1114  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
21:20:03.0894 0x1114  aic78xx - ok
21:20:03.0904 0x1114  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
21:20:03.0906 0x1114  ALG - ok
21:20:03.0938 0x1114  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys
21:20:03.0948 0x1114  aliide - ok
21:20:04.0046 0x1114  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
21:20:04.0049 0x1114  amdagp - ok
21:20:04.0078 0x1114  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys
21:20:04.0083 0x1114  amdide - ok
21:20:04.0178 0x1114  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
21:20:04.0180 0x1114  AmdK7 - ok
21:20:04.0232 0x1114  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:20:04.0239 0x1114  AmdK8 - ok
21:20:04.0334 0x1114  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
21:20:04.0335 0x1114  Appinfo - ok
21:20:04.0615 0x1114  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:20:04.0622 0x1114  Apple Mobile Device - ok
21:20:04.0652 0x1114  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys
21:20:04.0659 0x1114  arc - ok
21:20:04.0735 0x1114  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:20:04.0740 0x1114  arcsas - ok
21:20:04.0932 0x1114  [ 2EEDA27C19259C2340324EF7180D086B, 5426BF8EED7F87CEEA4D3EE1E721305A3703B0C490E01DE97DE5AFA0003C93D6 ] ASBroker        C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
21:20:04.0933 0x1114  ASBroker - ok
21:20:05.0093 0x1114  [ BB3C0521ECCA4BB17AC55EB640DF0FA5, 125B285960B45E0384EB1770B10488BEBB87F6CD1785EA83C0C24CDD9B9EDEAF ] ASChannel       C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
21:20:05.0096 0x1114  ASChannel - ok
21:20:05.0266 0x1114  [ 5A055A4777CBBC8845DD598CB2EEBF69, AF58FF2D58DA807869531A645ED4AD078FC411554EE18366949D27FF0C28829D ] ASLDRService    C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
21:20:05.0268 0x1114  ASLDRService - ok
21:20:05.0307 0x1114  [ 7B4D08D2017AC06689D422E06C43F0AA, 42BACCEA0FCEB60B79F78098163147A8DD1DED24CB2F0DBB93EDC07DAB66135C ] ASMMAP          C:\Program Files\ATKGFNEX\ASMMAP.sys
21:20:05.0307 0x1114  ASMMAP - ok
21:20:05.0768 0x1114  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:20:05.0865 0x1114  aspnet_state - ok
21:20:05.0893 0x1114  ASUSProcObsrv - ok
21:20:05.0978 0x1114  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:20:05.0985 0x1114  AsyncMac - ok
21:20:06.0012 0x1114  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
21:20:06.0015 0x1114  atapi - ok
21:20:06.0133 0x1114  [ 7C157574A181B19B9DCF5F339E25337E, 7CA78363CD420BFE4BFE9A38683CA9E31023AC573D9092666CDAEE6AF4998B60 ] ATKGFNEXSrv     C:\Program Files\ATKGFNEX\GFNEXSrv.exe
21:20:06.0135 0x1114  ATKGFNEXSrv - ok
21:20:06.0270 0x1114  [ F0D933B42CD0594048E4D5200AE9E417, FF53E843A99948568515964C3C97107FA875BBC3F2906BADEE0B29ACE5532F0D ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
21:20:06.0275 0x1114  atksgt - ok
21:20:06.0322 0x1114  [ F70D2392158CB68E775F8C4CD3D12FBB, C4D8274D34CFAD1DA9166C35BA41E063B9A085834E014A014E17A26C7DD216DE ] ATSWPDRV        C:\Windows\system32\DRIVERS\ATSwpDrv.sys
21:20:06.0330 0x1114  ATSWPDRV - ok
21:20:06.0414 0x1114  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:20:06.0420 0x1114  AudioEndpointBuilder - ok
21:20:06.0431 0x1114  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:20:06.0437 0x1114  Audiosrv - ok
21:20:06.0669 0x1114  [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] AVP             C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:20:06.0677 0x1114  AVP - ok
21:20:06.0833 0x1114  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:20:06.0833 0x1114  Beep - ok
21:20:06.0958 0x1114  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
21:20:06.0964 0x1114  BFE - ok
21:20:07.0181 0x1114  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
21:20:07.0259 0x1114  BITS - ok
21:20:07.0384 0x1114  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:20:07.0392 0x1114  blbdrive - ok
21:20:07.0510 0x1114  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:20:07.0516 0x1114  Bonjour Service - ok
21:20:07.0572 0x1114  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:20:07.0573 0x1114  bowser - ok
21:20:07.0630 0x1114  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
21:20:07.0632 0x1114  BrFiltLo - ok
21:20:07.0647 0x1114  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
21:20:07.0649 0x1114  BrFiltUp - ok
21:20:07.0674 0x1114  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
21:20:07.0676 0x1114  Browser - ok
21:20:07.0707 0x1114  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
21:20:07.0718 0x1114  Brserid - ok
21:20:07.0749 0x1114  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
21:20:07.0753 0x1114  BrSerWdm - ok
21:20:07.0808 0x1114  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
21:20:07.0811 0x1114  BrUsbMdm - ok
21:20:07.0837 0x1114  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
21:20:07.0844 0x1114  BrUsbSer - ok
21:20:07.0937 0x1114  [ 6D39C954799B63BA866910234CF7D726, 1D807C3410C01C76E5810D626F23C1CCED3C9C5A65F39267B770C494C8D64114 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
21:20:07.0939 0x1114  BthEnum - ok
21:20:08.0051 0x1114  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:20:08.0055 0x1114  BTHMODEM - ok
21:20:08.0172 0x1114  [ 5904EFA25F829BF84EA6FB045134A1D8, 66E4160CC404744576BA6E9DD606B533F42B3D4A3E2FDD457DAA016CC72A81CC ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
21:20:08.0176 0x1114  BthPan - ok
21:20:08.0358 0x1114  [ 611FF3F2F095C8D4A6D4CFD9DCC09793, 2F27A1287ABCDB9C316EB720D1855100666240959CF969D5B2679C9ABCBD6050 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
21:20:08.0423 0x1114  BTHPORT - ok
21:20:08.0522 0x1114  [ A4C8377FA4A994E07075107DBE2E3DCE, C3CDAA7B83D130100044341C23897CC6C257FA075A8D08B8551F4A28AE8CE6C4 ] BthServ         C:\Windows\System32\bthserv.dll
21:20:08.0523 0x1114  BthServ - ok
21:20:08.0628 0x1114  [ D330803EAB2A15CAEC7F011F1D4CB30E, 240FFF317C90AD8966DA9666F2748F98CEC3CB99C486F399D1C68FE0E393EE68 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
21:20:08.0631 0x1114  BTHUSB - ok
21:20:08.0806 0x1114  [ F2F7342742180D5060285499DEE50F99, 48EEDB0BEE52924E5FA3BE4FF21058C6FDB5987486A5AF138453F186AB3FD2C1 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
21:20:08.0813 0x1114  btwaudio - ok
21:20:08.0862 0x1114  [ 32F59F26A30CFC508DA11DB3EA0F8B77, 0B8B2B8799891D783AF1C3D84F4D86BE3235865CF639AF131249661FD9E610B9 ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
21:20:08.0868 0x1114  btwavdt - ok
21:20:09.0090 0x1114  [ 09CB316DB9D61ED9FC9A7B07A1A301F6, BCB2750469F6A9980A1A32FB883BE67FEB9C82FA17A36C27C55A8D28E0D5D0EC ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:20:09.0136 0x1114  btwdins - ok
21:20:09.0180 0x1114  [ ECB98391C756A7B9CFBAE89D9D1235E1, 0A639D2187BDCD64320A7FB72627ED8AF2AF7CC8AAEF6E0991BDEF28BA080442 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
21:20:09.0184 0x1114  btwl2cap - ok
21:20:09.0269 0x1114  [ 03658734EF7D0F3B3F4636D3E8A38964, 514E42B4D13A740BD8125E9947D9B9ADC3A2DDA5AF4F0CC07B515839E9F3848A ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
21:20:09.0297 0x1114  btwrchid - ok
21:20:09.0363 0x1114  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:20:09.0370 0x1114  cdfs - ok
21:20:09.0422 0x1114  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:20:09.0428 0x1114  cdrom - ok
21:20:09.0712 0x1114  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
21:20:09.0713 0x1114  CertPropSvc - ok
21:20:09.0784 0x1114  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:20:09.0787 0x1114  circlass - ok
21:20:09.0807 0x1114  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
21:20:09.0812 0x1114  CLFS - ok
21:20:09.0958 0x1114  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:20:09.0967 0x1114  clr_optimization_v2.0.50727_32 - ok
21:20:10.0047 0x1114  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:20:10.0316 0x1114  clr_optimization_v4.0.30319_32 - ok
21:20:10.0370 0x1114  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:20:10.0373 0x1114  CmBatt - ok
21:20:10.0462 0x1114  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:20:10.0468 0x1114  cmdide - ok
21:20:10.0536 0x1114  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:20:10.0537 0x1114  Compbatt - ok
21:20:10.0541 0x1114  COMSysApp - ok
21:20:10.0545 0x1114  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:20:10.0546 0x1114  crcdisk - ok
21:20:10.0678 0x1114  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
21:20:10.0682 0x1114  Crusoe - ok
21:20:10.0721 0x1114  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:20:10.0724 0x1114  CryptSvc - ok
21:20:10.0980 0x1114  [ 699CE24FE6B5120AF709A0B91582A02D, CADD9583A3A728F8E71C67F00EF24435DA689CF35434693B0BBA99367B4A8BA0 ] DCamUSBET       C:\Windows\system32\DRIVERS\etDevice.sys
21:20:11.0245 0x1114  DCamUSBET - ok
21:20:11.0622 0x1114  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:20:11.0773 0x1114  DcomLaunch - ok
21:20:11.0895 0x1114  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:20:11.0896 0x1114  DfsC - ok
21:20:12.0307 0x1114  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
21:20:12.0981 0x1114  DFSR - ok
21:20:13.0144 0x1114  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
21:20:13.0149 0x1114  Dhcp - ok
21:20:13.0184 0x1114  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
21:20:13.0188 0x1114  disk - ok
21:20:13.0344 0x1114  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:20:13.0346 0x1114  Dnscache - ok
21:20:13.0465 0x1114  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
21:20:13.0469 0x1114  dot3svc - ok
21:20:13.0569 0x1114  [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
21:20:13.0574 0x1114  Dot4 - ok
21:20:13.0626 0x1114  [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:20:13.0627 0x1114  Dot4Print - ok
21:20:13.0753 0x1114  [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
21:20:13.0758 0x1114  dot4usb - ok
21:20:13.0903 0x1114  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
21:20:13.0906 0x1114  DPS - ok
21:20:14.0131 0x1114  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:20:14.0133 0x1114  drmkaud - ok
21:20:14.0212 0x1114  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:20:14.0295 0x1114  DXGKrnl - ok
21:20:14.0454 0x1114  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
21:20:14.0459 0x1114  E1G60 - ok
21:20:14.0588 0x1114  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
21:20:14.0590 0x1114  EapHost - ok
21:20:14.0711 0x1114  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
21:20:14.0714 0x1114  Ecache - ok
21:20:14.0885 0x1114  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:20:14.0892 0x1114  ehRecvr - ok
21:20:14.0952 0x1114  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
21:20:14.0955 0x1114  ehSched - ok
21:20:15.0108 0x1114  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
21:20:15.0109 0x1114  ehstart - ok
21:20:15.0261 0x1114  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:20:15.0318 0x1114  elxstor - ok
21:20:15.0533 0x1114  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
21:20:15.0546 0x1114  EMDMgmt - ok
21:20:15.0639 0x1114  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:20:15.0642 0x1114  ErrDev - ok
21:20:15.0864 0x1114  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
21:20:15.0930 0x1114  EventSystem - ok
21:20:16.0059 0x1114  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:20:16.0081 0x1114  exfat - ok
21:20:16.0192 0x1114  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:20:16.0195 0x1114  fastfat - ok
21:20:16.0222 0x1114  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:20:16.0225 0x1114  fdc - ok
21:20:16.0443 0x1114  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
21:20:16.0444 0x1114  fdPHost - ok
21:20:16.0449 0x1114  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:20:16.0450 0x1114  FDResPub - ok
21:20:16.0530 0x1114  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:20:16.0531 0x1114  FileInfo - ok
21:20:16.0547 0x1114  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:20:16.0583 0x1114  Filetrace - ok
21:20:16.0731 0x1114  [ FD7CB14845A7F91BE11F80635B2CD8A6, CBAAE671814281AE305C47A06D23B3E1C54B0BCFFDA7CF092F0B1C198CFF51A8 ] FiltUSBET       C:\Windows\system32\DRIVERS\etFilter.sys
21:20:16.0738 0x1114  FiltUSBET - ok
21:20:16.0813 0x1114  [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:20:17.0046 0x1114  FLEXnet Licensing Service - ok
21:20:17.0107 0x1114  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:20:17.0111 0x1114  flpydisk - ok
21:20:17.0178 0x1114  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:20:17.0182 0x1114  FltMgr - ok
21:20:17.0331 0x1114  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
21:20:17.0388 0x1114  FontCache - ok
21:20:17.0569 0x1114  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:20:17.0580 0x1114  FontCache3.0.0.0 - ok
21:20:17.0647 0x1114  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:20:17.0648 0x1114  Fs_Rec - ok
21:20:17.0728 0x1114  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:20:17.0730 0x1114  gagp30kx - ok
21:20:17.0849 0x1114  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:20:17.0852 0x1114  GEARAspiWDM - ok
21:20:18.0075 0x1114  [ 31B40F40E09513ADDC460F6A297AD474, C3A2A29E32F07BA6534380DE5A1EA7EFCB39B288B9541696DA65FA20DE20AFC4 ] ghaio           C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:20:18.0076 0x1114  ghaio - ok
21:20:18.0189 0x1114  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
21:20:18.0253 0x1114  gpsvc - ok
21:20:18.0533 0x1114  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:20:18.0536 0x1114  gupdate - ok
21:20:18.0542 0x1114  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:20:18.0544 0x1114  gupdatem - ok
21:20:18.0690 0x1114  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:20:18.0697 0x1114  HdAudAddService - ok
21:20:18.0803 0x1114  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:20:18.0995 0x1114  HDAudBus - ok
21:20:19.0213 0x1114  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:20:19.0220 0x1114  HidBth - ok
21:20:19.0244 0x1114  [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
21:20:19.0246 0x1114  HidIr - ok
21:20:19.0301 0x1114  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\system32\hidserv.dll
21:20:19.0303 0x1114  hidserv - ok
21:20:19.0712 0x1114  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:20:19.0715 0x1114  HidUsb - ok
21:20:19.0856 0x1114  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:20:19.0858 0x1114  hkmsvc - ok
21:20:19.0975 0x1114  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
21:20:19.0978 0x1114  HpCISSs - ok
21:20:20.0629 0x1114  [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:20:20.0636 0x1114  hpqcxs08 - ok
21:20:20.0703 0x1114  [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:20:20.0705 0x1114  hpqddsvc - ok
21:20:20.0844 0x1114  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:20:20.0851 0x1114  HTTP - ok
21:20:20.0880 0x1114  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
21:20:20.0884 0x1114  i2omp - ok
21:20:21.0056 0x1114  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:20:21.0066 0x1114  i8042prt - ok
21:20:21.0254 0x1114  [ 80C633722DA72E97F3F5B3B11325696D, 1255DC28801438E21AA9D3EAE6F40A9625FCEA99709A7ABCBBEA906DB34AFB6C ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
21:20:21.0260 0x1114  iaStor - ok
21:20:21.0365 0x1114  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
21:20:21.0373 0x1114  iaStorV - ok
21:20:21.0646 0x1114  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:20:22.0031 0x1114  idsvc - ok
21:20:22.0118 0x1114  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:20:22.0127 0x1114  iirsp - ok
21:20:22.0316 0x1114  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:20:22.0385 0x1114  IKEEXT - ok
21:20:22.0900 0x1114  [ 58072F5FD95ECE78F9FA7BDA1210A9E7, 2AC11995689239C861763EC665C7EF6CA37CFAFD6893AEB3296B77F3D70B9E82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:20:23.0422 0x1114  IntcAzAudAddService - ok
21:20:23.0564 0x1114  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
21:20:23.0567 0x1114  intelide - ok
21:20:23.0678 0x1114  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:20:23.0679 0x1114  intelppm - ok
21:20:23.0853 0x1114  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:20:23.0856 0x1114  IPBusEnum - ok
21:20:23.0917 0x1114  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:20:23.0924 0x1114  IpFilterDriver - ok
21:20:24.0082 0x1114  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:20:24.0088 0x1114  iphlpsvc - ok
21:20:24.0092 0x1114  IpInIp - ok
21:20:24.0139 0x1114  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
21:20:24.0148 0x1114  IPMIDRV - ok
21:20:24.0160 0x1114  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
21:20:24.0177 0x1114  IPNAT - ok
21:20:24.0428 0x1114  [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:20:24.0608 0x1114  iPod Service - ok
21:20:24.0649 0x1114  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:20:24.0657 0x1114  IRENUM - ok
21:20:24.0716 0x1114  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:20:24.0719 0x1114  isapnp - ok
21:20:24.0872 0x1114  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:20:24.0943 0x1114  iScsiPrt - ok
21:20:25.0138 0x1114  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
21:20:25.0150 0x1114  iteatapi - ok
21:20:25.0243 0x1114  [ 8BCD857C7932AD005D5F9C89329DA2E1, B2091CEA5D3D0D06E49D71E7D40E993D5653A0D8F5DC5CE5C9CEFB1242887E0D ] itecir          C:\Windows\system32\DRIVERS\itecir.sys
21:20:25.0246 0x1114  itecir - ok
21:20:25.0307 0x1114  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
21:20:25.0390 0x1114  iteraid - ok
21:20:25.0449 0x1114  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:20:25.0458 0x1114  kbdclass - ok
21:20:25.0482 0x1114  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:20:25.0488 0x1114  kbdhid - ok
21:20:25.0506 0x1114  [ 27BD4AC228EF6C0D490617C32E86A672, A2259B4E78AE5D3158B0FC4F3694EEF9825B9FF782F09ED828E80E7B23E07D16 ] kbfiltr         C:\Windows\system32\DRIVERS\kbfiltr.sys
21:20:25.0508 0x1114  kbfiltr - ok
21:20:25.0693 0x1114  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
21:20:25.0695 0x1114  KeyIso - ok
21:20:25.0863 0x1114  [ 871C226234A48C24DFE7478F36C0050C, 657CAB49387E0E40311D4DEC93D9860B2DAC2C05F223698CFA2F9BB50B5F3022 ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
21:20:25.0865 0x1114  kl1 - ok
21:20:26.0303 0x1114  [ 8C547EB6709BF41E0625EFCDF13C63CE, ECD36806745748D110964C8D332D5FED235C5423885A6E33C733568AEC15FD80 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
21:20:26.0636 0x1114  KLIF - ok
21:20:26.0843 0x1114  [ 039FB019C92A16A54FE527D93B0CFB96, 080897B377511FD2439EB651086390CD72B822E8222C79AB0569FAFAA14BA0AE ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
21:20:26.0844 0x1114  KLIM6 - ok
21:20:26.0873 0x1114  [ 249A266AF74ADE44AE8424E78D145E09, 2D83543DFD9E3C1060E231D776E1755E2041CFD0245139C2041D560956165C0E ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
21:20:26.0874 0x1114  klkbdflt - ok
21:20:26.0914 0x1114  [ 035724BA6D5676B76FD3AFB66AB4F1E3, 81B30112B96DD3E7250420EEFF2ACECD424A2BE155E83C44434321CEA7DBE117 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
21:20:26.0915 0x1114  klmouflt - ok
21:20:26.0963 0x1114  [ 8FD802F86D4AB3FB329B8E51517BFF2A, 321750DC0C664FE5580C855D7B70AC74753DDD881F0C4482A2B4505BB2D88345 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
21:20:26.0964 0x1114  kltdi - ok
21:20:27.0062 0x1114  [ 8F932DF10408BCABA2FCF6163C843F8E, 26BB4E2A2562CF6C687EC9F61C7B3C80992C1D57C47BBAEA8ED2AB6643A91C0E ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
21:20:27.0065 0x1114  kneps - ok
21:20:27.0109 0x1114  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:20:27.0117 0x1114  KSecDD - ok
21:20:27.0293 0x1114  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:20:27.0383 0x1114  KtmRm - ok
21:20:27.0475 0x1114  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:20:27.0485 0x1114  LanmanServer - ok
21:20:27.0605 0x1114  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:20:27.0610 0x1114  LanmanWorkstation - ok
21:20:27.0684 0x1114  [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
21:20:27.0684 0x1114  lirsgt - ok
21:20:27.0759 0x1114  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:20:27.0760 0x1114  lltdio - ok
21:20:27.0888 0x1114  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:20:27.0930 0x1114  lltdsvc - ok
21:20:28.0020 0x1114  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:20:28.0022 0x1114  lmhosts - ok
21:20:28.0178 0x1114  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:20:28.0182 0x1114  LSI_FC - ok
21:20:28.0205 0x1114  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:20:28.0296 0x1114  LSI_SAS - ok
21:20:28.0319 0x1114  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:20:28.0322 0x1114  LSI_SCSI - ok
21:20:28.0368 0x1114  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:20:28.0370 0x1114  luafv - ok
21:20:28.0422 0x1114  [ 8039F480C192DD99FED4EBC71FFBF795, D02A1E4AAD5413B8F154E21C5B2C8FDD18F10A01197F44792BBDC1651E06F2A8 ] lullaby         C:\Windows\system32\DRIVERS\lullaby.sys
21:20:28.0423 0x1114  lullaby - ok
21:20:28.0527 0x1114  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:20:28.0536 0x1114  Mcx2Svc - ok
21:20:28.0630 0x1114  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys
21:20:28.0634 0x1114  megasas - ok
21:20:28.0927 0x1114  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
21:20:29.0060 0x1114  MegaSR - ok
21:20:29.0103 0x1114  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
21:20:29.0105 0x1114  MMCSS - ok
21:20:29.0125 0x1114  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
21:20:29.0126 0x1114  Modem - ok
21:20:29.0151 0x1114  [ CBB59C41F19EFEA1A000793E08070A62, 4C3C01210DF9D00C05FA14FF5CEFB60C444CAEBFF3F49409EDE434D63F19B9F2 ] MODEMCSA        C:\Windows\system32\drivers\MODEMCSA.sys
21:20:29.0156 0x1114  MODEMCSA - ok
21:20:29.0180 0x1114  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:20:29.0181 0x1114  monitor - ok
21:20:29.0273 0x1114  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:20:29.0281 0x1114  mouclass - ok
21:20:29.0339 0x1114  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:20:29.0347 0x1114  mouhid - ok
21:20:29.0405 0x1114  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
21:20:29.0407 0x1114  MountMgr - ok
21:20:29.0496 0x1114  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:20:29.0501 0x1114  MozillaMaintenance - ok
21:20:29.0584 0x1114  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:20:29.0588 0x1114  mpio - ok
21:20:29.0633 0x1114  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:20:29.0635 0x1114  mpsdrv - ok
21:20:29.0748 0x1114  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:20:29.0833 0x1114  MpsSvc - ok
21:20:29.0981 0x1114  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
21:20:29.0985 0x1114  Mraid35x - ok
21:20:30.0092 0x1114  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:20:30.0094 0x1114  MRxDAV - ok
21:20:30.0130 0x1114  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:20:30.0132 0x1114  mrxsmb - ok
21:20:30.0244 0x1114  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:20:30.0248 0x1114  mrxsmb10 - ok
21:20:30.0255 0x1114  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:20:30.0257 0x1114  mrxsmb20 - ok
21:20:30.0381 0x1114  [ DE77526BDE93142BDC90CFA9F5CEAD36, 783A6991982C077D8C3218E507CE098F6112809282633B0280E1228115572153 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:20:30.0382 0x1114  msahci - ok
21:20:30.0402 0x1114  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:20:30.0406 0x1114  msdsm - ok
21:20:30.0471 0x1114  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
21:20:30.0518 0x1114  MSDTC - ok
21:20:30.0684 0x1114  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:20:30.0685 0x1114  Msfs - ok
21:20:30.0767 0x1114  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:20:30.0768 0x1114  msisadrv - ok
21:20:30.0795 0x1114  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:20:30.0837 0x1114  MSiSCSI - ok
21:20:30.0840 0x1114  msiserver - ok
21:20:30.0896 0x1114  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:20:30.0903 0x1114  MSKSSRV - ok
21:20:30.0971 0x1114  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:20:30.0985 0x1114  MSPCLOCK - ok
21:20:31.0051 0x1114  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:20:31.0059 0x1114  MSPQM - ok
21:20:31.0151 0x1114  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:20:31.0154 0x1114  MsRPC - ok
21:20:31.0166 0x1114  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:20:31.0167 0x1114  mssmbios - ok
21:20:31.0186 0x1114  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:20:31.0357 0x1114  MSTEE - ok
21:20:31.0430 0x1114  [ 97AFFA9D95FFE20EEE6229BC6BE166CF, 6E13230AF96A3A5C518EFA21B9B1833E3DE9D6DA05A6E664E305EF18B162E1B9 ] MTsensor        C:\Windows\system32\DRIVERS\ATKACPI.sys
21:20:31.0435 0x1114  MTsensor - ok
21:20:31.0507 0x1114  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:20:31.0508 0x1114  Mup - ok
21:20:31.0812 0x1114  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
21:20:31.0818 0x1114  napagent - ok
21:20:32.0083 0x1114  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:20:32.0086 0x1114  NativeWifiP - ok
21:20:32.0412 0x1114  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:20:32.0422 0x1114  NDIS - ok
21:20:32.0545 0x1114  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:20:32.0554 0x1114  NdisTapi - ok
21:20:32.0575 0x1114  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:20:32.0575 0x1114  Ndisuio - ok
21:20:32.0694 0x1114  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:20:32.0704 0x1114  NdisWan - ok
21:20:32.0866 0x1114  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:20:32.0874 0x1114  NDProxy - ok
21:20:33.0098 0x1114  [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:20:33.0100 0x1114  Net Driver HPZ12 - ok
21:20:33.0139 0x1114  [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl.sys
21:20:33.0148 0x1114  Netaapl - ok
21:20:33.0215 0x1114  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:20:33.0216 0x1114  NetBIOS - ok
21:20:33.0294 0x1114  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
21:20:33.0297 0x1114  netbt - ok
21:20:33.0312 0x1114  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
21:20:33.0313 0x1114  Netlogon - ok
21:20:33.0572 0x1114  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
21:20:33.0578 0x1114  Netman - ok
21:20:33.0686 0x1114  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:20:33.0976 0x1114  NetMsmqActivator - ok
21:20:34.0032 0x1114  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:20:34.0035 0x1114  NetPipeActivator - ok
21:20:34.0068 0x1114  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
21:20:34.0074 0x1114  netprofm - ok
21:20:34.0080 0x1114  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:20:34.0083 0x1114  NetTcpActivator - ok
21:20:34.0089 0x1114  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:20:34.0092 0x1114  NetTcpPortSharing - ok
21:20:34.0635 0x1114  [ F0C42E0CDCE558D658FA53A222B4CCB1, 50AC8D9CCFB319EC03AB0F6AC2F70ED2EF3D746B8A8C7CC7A0606B592A3042DC ] NETw5v32        C:\Windows\system32\DRIVERS\NETw5v32.sys
21:20:35.0382 0x1114  NETw5v32 - ok
21:20:35.0447 0x1114  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:20:35.0451 0x1114  nfrd960 - ok
21:20:35.0629 0x1114  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:20:35.0634 0x1114  NlaSvc - ok
21:20:35.0691 0x1114  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:20:35.0693 0x1114  Npfs - ok
21:20:35.0731 0x1114  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
21:20:35.0733 0x1114  nsi - ok
21:20:35.0895 0x1114  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:20:35.0896 0x1114  nsiproxy - ok
21:20:36.0119 0x1114  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:20:36.0138 0x1114  Ntfs - ok
21:20:36.0277 0x1114  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
21:20:36.0282 0x1114  ntrigdigi - ok
21:20:36.0372 0x1114  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
21:20:36.0372 0x1114  Null - ok
21:20:36.0417 0x1114  [ 77F9F9A199B87FE3F852E12F5419240B, BE9C05F2AC12BB41EC71A596039F2116E5A0F454D32E5A618112296721001473 ] NVHDA           C:\Windows\system32\drivers\nvhda32v.sys
21:20:36.0421 0x1114  NVHDA - ok
21:20:38.0219 0x1114  [ C1E661888C719FC2E12C057F233FB238, FAC74D6644686F3A6CC4852BFC0EC1AD36212F6E45F466CDEF9A36C2FD23316C ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:20:39.0866 0x1114  nvlddmkm - ok
21:20:39.0961 0x1114  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:20:39.0967 0x1114  nvraid - ok
21:20:39.0984 0x1114  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:20:39.0987 0x1114  nvstor - ok
21:20:40.0154 0x1114  [ 31D7E63B62BC4680B5D1358F91DA104E, 8DF37F4AD73CBA597783E272603C17336C48F7BFFD7DDE55B0736F9A52BDFEDB ] nvsvc           C:\Windows\system32\nvvsvc.exe
21:20:40.0454 0x1114  nvsvc - ok
21:20:40.0930 0x1114  [ 143B429F2D19A0F123ED8E4BCA8DB751, F0CC7D4C6AF1557E70CC6D5C2CD03BBBDBE27B3AC6D95962A8722C75850FF627 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:20:41.0577 0x1114  nvUpdatusService - ok
21:20:41.0625 0x1114  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:20:41.0629 0x1114  nv_agp - ok
21:20:41.0633 0x1114  NwlnkFlt - ok
21:20:41.0636 0x1114  NwlnkFwd - ok
21:20:41.0710 0x1114  [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
21:20:41.0711 0x1114  ohci1394 - ok
21:20:41.0793 0x1114  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:20:41.0798 0x1114  ose - ok
21:20:42.0868 0x1114  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:20:44.0135 0x1114  osppsvc - ok
21:20:44.0502 0x1114  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
21:20:44.0892 0x1114  p2pimsvc - ok
21:20:45.0333 0x1114  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:20:45.0345 0x1114  p2psvc - ok
21:20:45.0418 0x1114  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
21:20:45.0423 0x1114  Parport - ok
21:20:45.0501 0x1114  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:20:45.0502 0x1114  partmgr - ok
21:20:45.0557 0x1114  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
21:20:45.0559 0x1114  Parvdm - ok
21:20:45.0664 0x1114  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:20:45.0667 0x1114  PcaSvc - ok
21:20:45.0718 0x1114  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
21:20:45.0723 0x1114  pci - ok
21:20:45.0747 0x1114  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:20:45.0751 0x1114  pciide - ok
21:20:45.0843 0x1114  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:20:45.0909 0x1114  pcmcia - ok
21:20:46.0071 0x1114  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:20:46.0086 0x1114  PEAUTH - ok
21:20:46.0532 0x1114  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
21:20:46.0668 0x1114  pla - ok
21:20:46.0884 0x1114  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:20:46.0894 0x1114  PlugPlay - ok
21:20:47.0068 0x1114  [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:20:47.0070 0x1114  Pml Driver HPZ12 - ok
21:20:47.0297 0x1114  [ 3A2BDD76E7D2A5F40A7174793D1BA794, 029EE2C2F71AEC7906600EEC4F855DC5648C1ECF53F11426079B04591F24D067 ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
21:20:47.0300 0x1114  PnkBstrA - ok
21:20:47.0385 0x1114  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
21:20:47.0398 0x1114  PNRPAutoReg - ok
21:20:47.0459 0x1114  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
21:20:47.0472 0x1114  PNRPsvc - ok
21:20:47.0591 0x1114  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:20:47.0601 0x1114  PolicyAgent - ok
21:20:47.0670 0x1114  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:20:47.0681 0x1114  PptpMiniport - ok
21:20:47.0717 0x1114  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys
21:20:47.0732 0x1114  Processor - ok
21:20:47.0787 0x1114  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
21:20:47.0793 0x1114  ProfSvc - ok
21:20:47.0859 0x1114  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
21:20:47.0865 0x1114  ProtectedStorage - ok
21:20:48.0009 0x1114  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
21:20:48.0011 0x1114  PSched - ok
21:20:48.0312 0x1114  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:20:48.0736 0x1114  ql2300 - ok
21:20:48.0801 0x1114  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:20:48.0806 0x1114  ql40xx - ok
21:20:48.0853 0x1114  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
21:20:48.0859 0x1114  QWAVE - ok
21:20:48.0949 0x1114  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:20:48.0950 0x1114  QWAVEdrv - ok
21:20:48.0972 0x1114  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:20:48.0973 0x1114  RasAcd - ok
21:20:48.0993 0x1114  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
21:20:48.0996 0x1114  RasAuto - ok
21:20:49.0025 0x1114  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:20:49.0085 0x1114  Rasl2tp - ok
21:20:49.0196 0x1114  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
21:20:49.0204 0x1114  RasMan - ok
21:20:49.0237 0x1114  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:20:49.0255 0x1114  RasPppoe - ok
21:20:49.0282 0x1114  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:20:49.0293 0x1114  RasSstp - ok
21:20:49.0387 0x1114  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:20:49.0391 0x1114  rdbss - ok
21:20:49.0421 0x1114  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:20:49.0421 0x1114  RDPCDD - ok
21:20:49.0517 0x1114  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
21:20:49.0597 0x1114  rdpdr - ok
21:20:49.0606 0x1114  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:20:49.0607 0x1114  RDPENCDD - ok
21:20:49.0743 0x1114  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:20:49.0761 0x1114  RDPWD - ok
21:20:49.0829 0x1114  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:20:49.0832 0x1114  RemoteAccess - ok
21:20:49.0859 0x1114  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:20:49.0863 0x1114  RemoteRegistry - ok
21:20:49.0961 0x1114  [ 6482707F9F4DA0ECBAB43B2E0398A101, 7D57FC36577121D7E26A4F2D46DCA8725D55EC9F75B91DF994DB742BC4FB89C2 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
21:20:49.0966 0x1114  RFCOMM - ok
21:20:49.0986 0x1114  [ A5B12A4B3B774432DB9B9FA221190E59, 1DAAB43A2429035BAB8403E5D24F50F82BD41B5B478B344C3C58D49F1E15C2AE ] rimmptsk        C:\Windows\system32\DRIVERS\rimmptsk.sys
21:20:49.0989 0x1114  rimmptsk - ok
21:20:50.0172 0x1114  [ C398BCA91216755B098679A8DA8A2300, 1FDDC3D927509AB10C3B0B7900DCE78DEC6B1C3CAE80F78EFCFBB628673B2143 ] rimsptsk        C:\Windows\system32\DRIVERS\rimsptsk.sys
21:20:50.0184 0x1114  rimsptsk - ok
21:20:50.0304 0x1114  [ 2A2554CB24506E0A0508FC395C4A1B42, B989AE65727C971D508E7284707258FCCC9213B510F4C2A257D3069A3DABE20B ] rismxdp         C:\Windows\system32\DRIVERS\rixdptsk.sys
21:20:50.0311 0x1114  rismxdp - ok
21:20:50.0454 0x1114  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
21:20:50.0456 0x1114  RpcLocator - ok
21:20:50.0647 0x1114  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
21:20:50.0658 0x1114  RpcSs - ok
21:20:50.0843 0x1114  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:20:50.0844 0x1114  rspndr - ok
21:20:50.0947 0x1114  [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
21:20:50.0955 0x1114  RTL8169 - ok
21:20:51.0091 0x1114  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
21:20:51.0095 0x1114  SamSs - ok
21:20:51.0145 0x1114  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:20:51.0149 0x1114  sbp2port - ok
21:20:51.0219 0x1114  [ 2393ED056AE02F5DBB3A7D6E40A5FDC2, AC73452C892ABE7B98A0762BC7BD26CD712FF2E899E157F2A5119335E3E41B49 ] ScanUSBET       C:\Windows\system32\DRIVERS\etScan.sys
21:20:51.0226 0x1114  ScanUSBET - ok
21:20:51.0294 0x1114  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:20:51.0297 0x1114  SCardSvr - ok
21:20:51.0461 0x1114  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
21:20:51.0575 0x1114  Schedule - ok
21:20:51.0670 0x1114  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:20:51.0670 0x1114  SCPolicySvc - ok
21:20:51.0721 0x1114  [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
21:20:51.0725 0x1114  sdbus - ok
21:20:51.0811 0x1114  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:20:51.0814 0x1114  SDRSVC - ok
21:20:52.0960 0x1114  [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
21:20:53.0029 0x1114  SDScannerService - ok
21:20:53.0404 0x1114  [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:20:53.0422 0x1114  SDUpdateService - ok
21:20:53.0493 0x1114  [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService    C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:20:53.0496 0x1114  SDWSCService - ok
21:20:53.0545 0x1114  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:20:53.0546 0x1114  secdrv - ok
21:20:53.0623 0x1114  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
21:20:53.0625 0x1114  seclogon - ok
21:20:53.0690 0x1114  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
21:20:53.0692 0x1114  SENS - ok
21:20:53.0743 0x1114  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:20:53.0747 0x1114  Serenum - ok
21:20:53.0784 0x1114  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
21:20:53.0789 0x1114  Serial - ok
21:20:53.0844 0x1114  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:20:53.0849 0x1114  sermouse - ok
21:20:53.0884 0x1114  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:20:53.0888 0x1114  SessionEnv - ok
21:20:53.0959 0x1114  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
21:20:54.0126 0x1114  sffdisk - ok
21:20:54.0165 0x1114  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:20:54.0169 0x1114  sffp_mmc - ok
21:20:54.0187 0x1114  [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
21:20:54.0190 0x1114  sffp_sd - ok
21:20:54.0252 0x1114  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
21:20:54.0258 0x1114  sfloppy - ok
21:20:54.0350 0x1114  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:20:54.0505 0x1114  SharedAccess - ok
21:20:54.0600 0x1114  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:20:54.0606 0x1114  ShellHWDetection - ok
21:20:54.0657 0x1114  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
21:20:54.0662 0x1114  sisagp - ok
21:20:54.0743 0x1114  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
21:20:54.0743 0x1114  SiSRaid2 - ok
21:20:54.0747 0x1114  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:20:54.0753 0x1114  SiSRaid4 - ok
21:20:55.0329 0x1114  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
21:20:56.0049 0x1114  slsvc - ok
21:20:56.0161 0x1114  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
21:20:56.0164 0x1114  SLUINotify - ok
21:20:56.0192 0x1114  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:20:56.0193 0x1114  Smb - ok
21:20:56.0417 0x1114  [ C8A58FC905C9184FA70E37F71060C64D, 3D913E0F7B02EEAC15971DB15608912A96E4FD9BDFBF09E8F8FA4B6390A9B4DE ] smserial        C:\Windows\system32\DRIVERS\smserial.sys
21:20:56.0752 0x1114  smserial - ok
21:20:56.0868 0x1114  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:20:56.0871 0x1114  SNMPTRAP - ok
21:20:56.0939 0x1114  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:20:56.0940 0x1114  spldr - ok
21:20:56.0974 0x1114  [ 739DB668DBD812285ECC553E64A5E212, 08E99CD042232CEB20BB5A808E914C9F2F0C154099BF921BA40E661B08472CF5 ] spmgr           C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
21:20:56.0976 0x1114  spmgr - ok
21:20:56.0990 0x1114  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
21:20:56.0994 0x1114  Spooler - ok
21:20:57.0127 0x1114  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:20:57.0133 0x1114  srv - ok
21:20:57.0495 0x1114  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:20:57.0498 0x1114  srv2 - ok
21:20:57.0688 0x1114  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:20:57.0690 0x1114  srvnet - ok
21:20:57.0904 0x1114  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:20:57.0909 0x1114  SSDPSRV - ok
21:20:58.0140 0x1114  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:20:58.0144 0x1114  SstpSvc - ok
21:20:58.0615 0x1114  [ 0632004181860960CF6E10DE8DDEF78B, FB4714CB6C795C106C4777835490DC9F68FA656107DDB54A425666BE293FDC0B ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:20:58.0624 0x1114  Stereo Service - ok
21:20:58.0789 0x1114  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
21:20:58.0800 0x1114  stisvc - ok
21:20:58.0977 0x1114  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:20:58.0990 0x1114  swenum - ok
21:20:59.0201 0x1114  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
21:20:59.0209 0x1114  swprv - ok
21:20:59.0278 0x1114  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
21:20:59.0282 0x1114  Symc8xx - ok
21:20:59.0349 0x1114  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
21:20:59.0352 0x1114  Sym_hi - ok
21:20:59.0431 0x1114  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
21:20:59.0656 0x1114  Sym_u3 - ok
21:20:59.0782 0x1114  [ A59457258DC236F63D6EAC759EF6C08B, C407AF5171A3F2C8F7E1F68E472D4F9E835BDEC50A8E0D4D8F2A6854F2AE0346 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
21:20:59.0790 0x1114  SynTP - ok
21:20:59.0853 0x1114  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
21:20:59.0866 0x1114  SysMain - ok
21:21:00.0041 0x1114  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:21:00.0044 0x1114  TabletInputService - ok
21:21:00.0172 0x1114  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:21:00.0178 0x1114  TapiSrv - ok
21:21:00.0238 0x1114  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
21:21:00.0241 0x1114  TBS - ok
21:21:00.0546 0x1114  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:21:00.0562 0x1114  Tcpip - ok
21:21:00.0735 0x1114  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
21:21:00.0751 0x1114  Tcpip6 - ok
21:21:00.0780 0x1114  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:21:00.0781 0x1114  tcpipreg - ok
21:21:00.0886 0x1114  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:21:00.0890 0x1114  TDPIPE - ok
21:21:01.0087 0x1114  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:21:01.0104 0x1114  TDTCP - ok
21:21:01.0233 0x1114  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:21:01.0235 0x1114  tdx - ok
21:21:01.0347 0x1114  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:21:01.0357 0x1114  TermDD - ok
21:21:01.0464 0x1114  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
21:21:01.0474 0x1114  TermService - ok
21:21:01.0529 0x1114  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
21:21:01.0538 0x1114  Themes - ok
21:21:01.0730 0x1114  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
21:21:01.0735 0x1114  THREADORDER - ok
21:21:01.0866 0x1114  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
21:21:01.0869 0x1114  TrkWks - ok
21:21:02.0026 0x1114  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:21:02.0027 0x1114  TrustedInstaller - ok
21:21:02.0053 0x1114  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:21:02.0067 0x1114  tssecsrv - ok
21:21:02.0267 0x1114  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
21:21:02.0292 0x1114  tunmp - ok
21:21:02.0410 0x1114  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:21:02.0429 0x1114  tunnel - ok
21:21:02.0467 0x1114  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:21:02.0473 0x1114  uagp35 - ok
21:21:02.0663 0x1114  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:21:02.0679 0x1114  udfs - ok
21:21:02.0767 0x1114  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:21:02.0770 0x1114  UI0Detect - ok
21:21:02.0790 0x1114  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:21:02.0796 0x1114  uliagpkx - ok
21:21:02.0831 0x1114  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
21:21:02.0852 0x1114  uliahci - ok
21:21:02.0896 0x1114  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
21:21:02.0912 0x1114  UlSata - ok
21:21:03.0104 0x1114  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
21:21:03.0109 0x1114  ulsata2 - ok
21:21:03.0173 0x1114  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:21:03.0177 0x1114  umbus - ok
21:21:03.0179 0x1114  Scan was interrupted by user!
21:21:03.0180 0x1114  Waiting for KSN requests completion. In queue: 126
21:21:04.0246 0x1114  AV detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
21:21:04.0274 0x1114  FW detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmifw.exe ( 13.0.1.4190 ), 0x41010 ( enabled )
21:21:04.0473 0x1114  ============================================================
21:21:04.0473 0x1114  Scan finished
21:21:04.0473 0x1114  ============================================================
21:21:04.0482 0x14a4  Detected object count: 0
21:21:04.0482 0x14a4  Actual detected object count: 0
21:21:28.0994 0x0aa4  ============================================================
21:21:28.0994 0x0aa4  Scan started
21:21:28.0994 0x0aa4  Mode: Manual; SigCheck; TDLFS; 
21:21:28.0994 0x0aa4  ============================================================
21:21:28.0994 0x0aa4  KSN ping started
21:21:29.0160 0x0aa4  KSN ping finished: true
21:21:34.0143 0x0aa4  ================ Scan system memory ========================
21:21:34.0143 0x0aa4  System memory - ok
21:21:34.0144 0x0aa4  ================ Scan services =============================
21:21:34.0515 0x0aa4  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
21:21:34.0599 0x0aa4  ACPI - ok
21:21:35.0313 0x0aa4  [ 14C23516C990DCD6052152CF034DDE40, 1EC8AAD6AA6D68A17A9D04AECDB716BD0DD4BFF93641BD96D01855AF1232A5FB ] Adobe Version Cue CS3 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
21:21:35.0326 0x0aa4  Adobe Version Cue CS3 - ok
21:21:35.0458 0x0aa4  [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:21:35.0468 0x0aa4  AdobeARMservice - ok
21:21:35.0613 0x0aa4  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:21:35.0656 0x0aa4  AdobeFlashPlayerUpdateSvc - ok
21:21:35.0797 0x0aa4  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:21:35.0812 0x0aa4  adp94xx - ok
21:21:35.0906 0x0aa4  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:21:35.0921 0x0aa4  adpahci - ok
21:21:35.0953 0x0aa4  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
21:21:35.0968 0x0aa4  adpu160m - ok
21:21:36.0015 0x0aa4  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:21:36.0031 0x0aa4  adpu320 - ok
21:21:36.0124 0x0aa4  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:21:36.0748 0x0aa4  AeLookupSvc - ok
21:21:36.0920 0x0aa4  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
21:21:36.0982 0x0aa4  AFD - ok
21:21:37.0060 0x0aa4  [ EFBC44FBD75E4F80BD927AEBF6E7EADE, 0A1ACFE5D007DF8ABB97081C93111A1F18D90CB34093CD5784588971BFE86AE7 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
21:21:37.0263 0x0aa4  AgereModemAudio - ok
21:21:37.0575 0x0aa4  [ 1CFEBA39FC613E45B49D3EDDFBCDA289, 15E8102FD9C50DBC16DDC523FC9C17DBE21F2C5C4E081C54901379C0D99277AA ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
21:21:37.0731 0x0aa4  AgereSoftModem - ok
21:21:37.0809 0x0aa4  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:21:37.0825 0x0aa4  agp440 - ok
21:21:37.0903 0x0aa4  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
21:21:37.0918 0x0aa4  aic78xx - ok
21:21:37.0981 0x0aa4  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
21:21:39.0224 0x0aa4  ALG - ok
21:21:39.0376 0x0aa4  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys
21:21:39.0386 0x0aa4  aliide - ok
21:21:39.0461 0x0aa4  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
21:21:39.0472 0x0aa4  amdagp - ok
21:21:39.0504 0x0aa4  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys
21:21:39.0514 0x0aa4  amdide - ok
21:21:39.0549 0x0aa4  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
21:21:39.0751 0x0aa4  AmdK7 - ok
21:21:40.0002 0x0aa4  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:21:40.0092 0x0aa4  AmdK8 - ok
21:21:40.0231 0x0aa4  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
21:21:40.0324 0x0aa4  Appinfo - ok
21:21:40.0480 0x0aa4  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:21:40.0496 0x0aa4  Apple Mobile Device - ok
21:21:40.0527 0x0aa4  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys
21:21:40.0543 0x0aa4  arc - ok
21:21:40.0652 0x0aa4  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:21:40.0667 0x0aa4  arcsas - ok
21:21:40.0855 0x0aa4  [ 2EEDA27C19259C2340324EF7180D086B, 5426BF8EED7F87CEEA4D3EE1E721305A3703B0C490E01DE97DE5AFA0003C93D6 ] ASBroker        C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
21:21:40.0964 0x0aa4  ASBroker - detected UnsignedFile.Multi.Generic ( 1 )
21:21:40.0964 0x0aa4  Detect skipped due to KSN trusted
21:21:40.0964 0x0aa4  ASBroker - ok
21:21:40.0979 0x0aa4  [ BB3C0521ECCA4BB17AC55EB640DF0FA5, 125B285960B45E0384EB1770B10488BEBB87F6CD1785EA83C0C24CDD9B9EDEAF ] ASChannel       C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
21:21:41.0089 0x0aa4  ASChannel - detected UnsignedFile.Multi.Generic ( 1 )
21:21:41.0089 0x0aa4  Detect skipped due to KSN trusted
21:21:41.0089 0x0aa4  ASChannel - ok
21:21:41.0198 0x0aa4  [ 5A055A4777CBBC8845DD598CB2EEBF69, AF58FF2D58DA807869531A645ED4AD078FC411554EE18366949D27FF0C28829D ] ASLDRService    C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
21:21:41.0323 0x0aa4  ASLDRService - detected UnsignedFile.Multi.Generic ( 1 )
21:21:41.0323 0x0aa4  Detect skipped due to KSN trusted
21:21:41.0323 0x0aa4  ASLDRService - ok
21:21:41.0385 0x0aa4  [ 7B4D08D2017AC06689D422E06C43F0AA, 42BACCEA0FCEB60B79F78098163147A8DD1DED24CB2F0DBB93EDC07DAB66135C ] ASMMAP          C:\Program Files\ATKGFNEX\ASMMAP.sys
21:21:41.0385 0x0aa4  ASMMAP - ok
21:21:42.0290 0x0aa4  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:21:42.0290 0x0aa4  aspnet_state - ok
21:21:42.0305 0x0aa4  ASUSProcObsrv - ok
21:21:42.0337 0x0aa4  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:21:42.0461 0x0aa4  AsyncMac - ok
21:21:42.0524 0x0aa4  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
21:21:42.0539 0x0aa4  atapi - ok
21:21:42.0586 0x0aa4  [ 7C157574A181B19B9DCF5F339E25337E, 7CA78363CD420BFE4BFE9A38683CA9E31023AC573D9092666CDAEE6AF4998B60 ] ATKGFNEXSrv     C:\Program Files\ATKGFNEX\GFNEXSrv.exe
21:21:42.0664 0x0aa4  ATKGFNEXSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:21:42.0664 0x0aa4  Detect skipped due to KSN trusted
21:21:42.0664 0x0aa4  ATKGFNEXSrv - ok
21:21:42.0883 0x0aa4  [ F0D933B42CD0594048E4D5200AE9E417, FF53E843A99948568515964C3C97107FA875BBC3F2906BADEE0B29ACE5532F0D ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
21:21:42.0898 0x0aa4  atksgt - ok
21:21:42.0976 0x0aa4  [ F70D2392158CB68E775F8C4CD3D12FBB, C4D8274D34CFAD1DA9166C35BA41E063B9A085834E014A014E17A26C7DD216DE ] ATSWPDRV        C:\Windows\system32\DRIVERS\ATSwpDrv.sys
21:21:42.0992 0x0aa4  ATSWPDRV - ok
21:21:43.0148 0x0aa4  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:21:43.0226 0x0aa4  AudioEndpointBuilder - ok
21:21:43.0460 0x0aa4  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:21:43.0631 0x0aa4  Audiosrv - ok
21:21:44.0068 0x0aa4  [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] AVP             C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:21:44.0099 0x0aa4  AVP - ok
21:21:44.0162 0x0aa4  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:21:44.0209 0x0aa4  Beep - ok
21:21:44.0349 0x0aa4  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
21:21:44.0474 0x0aa4  BFE - ok
21:21:44.0833 0x0aa4  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
21:21:45.0035 0x0aa4  BITS - ok
21:21:45.0113 0x0aa4  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:21:45.0176 0x0aa4  blbdrive - ok
21:21:45.0706 0x0aa4  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:21:45.0737 0x0aa4  Bonjour Service - ok
21:21:45.0831 0x0aa4  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:21:45.0956 0x0aa4  bowser - ok
21:21:45.0971 0x0aa4  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
21:21:46.0034 0x0aa4  BrFiltLo - ok
21:21:46.0096 0x0aa4  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
21:21:46.0159 0x0aa4  BrFiltUp - ok
21:21:46.0190 0x0aa4  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
21:21:46.0221 0x0aa4  Browser - ok
21:21:46.0315 0x0aa4  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
21:21:48.0094 0x0aa4  Brserid - ok
21:21:48.0174 0x0aa4  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
21:21:48.0243 0x0aa4  BrSerWdm - ok
21:21:48.0266 0x0aa4  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
21:21:48.0302 0x0aa4  BrUsbMdm - ok
21:21:48.0428 0x0aa4  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
21:21:48.0693 0x0aa4  BrUsbSer - ok
21:21:48.0828 0x0aa4  [ 6D39C954799B63BA866910234CF7D726, 1D807C3410C01C76E5810D626F23C1CCED3C9C5A65F39267B770C494C8D64114 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
21:21:48.0923 0x0aa4  BthEnum - ok
21:21:48.0964 0x0aa4  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:21:49.0093 0x0aa4  BTHMODEM - ok
21:21:49.0175 0x0aa4  [ 5904EFA25F829BF84EA6FB045134A1D8, 66E4160CC404744576BA6E9DD606B533F42B3D4A3E2FDD457DAA016CC72A81CC ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
21:21:49.0213 0x0aa4  BthPan - ok
21:21:49.0365 0x0aa4  [ 611FF3F2F095C8D4A6D4CFD9DCC09793, 2F27A1287ABCDB9C316EB720D1855100666240959CF969D5B2679C9ABCBD6050 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
21:21:49.0455 0x0aa4  BTHPORT - ok
21:21:49.0490 0x0aa4  [ A4C8377FA4A994E07075107DBE2E3DCE, C3CDAA7B83D130100044341C23897CC6C257FA075A8D08B8551F4A28AE8CE6C4 ] BthServ         C:\Windows\System32\bthserv.dll
21:21:49.0603 0x0aa4  BthServ - ok
21:21:49.0706 0x0aa4  [ D330803EAB2A15CAEC7F011F1D4CB30E, 240FFF317C90AD8966DA9666F2748F98CEC3CB99C486F399D1C68FE0E393EE68 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
21:21:49.0815 0x0aa4  BTHUSB - ok
21:21:49.0940 0x0aa4  [ F2F7342742180D5060285499DEE50F99, 48EEDB0BEE52924E5FA3BE4FF21058C6FDB5987486A5AF138453F186AB3FD2C1 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
21:21:49.0956 0x0aa4  btwaudio - ok
21:21:49.0987 0x0aa4  [ 32F59F26A30CFC508DA11DB3EA0F8B77, 0B8B2B8799891D783AF1C3D84F4D86BE3235865CF639AF131249661FD9E610B9 ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
21:21:50.0002 0x0aa4  btwavdt - ok
21:21:50.0096 0x0aa4  [ 09CB316DB9D61ED9FC9A7B07A1A301F6, BCB2750469F6A9980A1A32FB883BE67FEB9C82FA17A36C27C55A8D28E0D5D0EC ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:21:50.0112 0x0aa4  btwdins - ok
21:21:50.0190 0x0aa4  [ ECB98391C756A7B9CFBAE89D9D1235E1, 0A639D2187BDCD64320A7FB72627ED8AF2AF7CC8AAEF6E0991BDEF28BA080442 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
21:21:50.0205 0x0aa4  btwl2cap - ok
21:21:50.0221 0x0aa4  [ 03658734EF7D0F3B3F4636D3E8A38964, 514E42B4D13A740BD8125E9947D9B9ADC3A2DDA5AF4F0CC07B515839E9F3848A ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
21:21:50.0221 0x0aa4  btwrchid - ok
21:21:50.0268 0x0aa4  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:21:50.0377 0x0aa4  cdfs - ok
21:21:50.0408 0x0aa4  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:21:50.0517 0x0aa4  cdrom - ok
21:21:50.0564 0x0aa4  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
21:21:50.0611 0x0aa4  CertPropSvc - ok
21:21:50.0704 0x0aa4  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:21:50.0767 0x0aa4  circlass - ok
21:21:50.0845 0x0aa4  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
21:21:50.0860 0x0aa4  CLFS - ok
21:21:51.0032 0x0aa4  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:21:51.0032 0x0aa4  clr_optimization_v2.0.50727_32 - ok
21:21:51.0110 0x0aa4  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:21:51.0126 0x0aa4  clr_optimization_v4.0.30319_32 - ok
21:21:51.0157 0x0aa4  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:21:51.0188 0x0aa4  CmBatt - ok
21:21:51.0360 0x0aa4  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:21:51.0360 0x0aa4  cmdide - ok
21:21:51.0375 0x0aa4  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:21:51.0391 0x0aa4  Compbatt - ok
21:21:51.0391 0x0aa4  COMSysApp - ok
21:21:51.0438 0x0aa4  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:21:51.0453 0x0aa4  crcdisk - ok
21:21:51.0484 0x0aa4  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
21:21:51.0547 0x0aa4  Crusoe - ok
21:21:51.0625 0x0aa4  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:21:51.0687 0x0aa4  CryptSvc - ok
21:21:51.0874 0x0aa4  [ 699CE24FE6B5120AF709A0B91582A02D, CADD9583A3A728F8E71C67F00EF24435DA689CF35434693B0BBA99367B4A8BA0 ] DCamUSBET       C:\Windows\system32\DRIVERS\etDevice.sys
21:21:51.0937 0x0aa4  DCamUSBET - ok
21:21:51.0999 0x0aa4  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:21:52.0233 0x0aa4  DcomLaunch - ok
21:21:52.0296 0x0aa4  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:21:52.0374 0x0aa4  DfsC - ok
21:21:52.0842 0x0aa4  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
21:21:53.0138 0x0aa4  DFSR - ok
21:21:53.0185 0x0aa4  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
21:21:53.0247 0x0aa4  Dhcp - ok
21:21:53.0278 0x0aa4  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
21:21:53.0294 0x0aa4  disk - ok
21:21:53.0450 0x0aa4  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:21:53.0559 0x0aa4  Dnscache - ok
21:21:53.0606 0x0aa4  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
21:21:53.0622 0x0aa4  dot3svc - ok
21:21:53.0778 0x0aa4  [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
21:21:53.0824 0x0aa4  Dot4 - ok
21:21:53.0918 0x0aa4  [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:21:53.0980 0x0aa4  Dot4Print - ok
21:21:53.0996 0x0aa4  [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
21:21:54.0027 0x0aa4  dot4usb - ok
21:21:54.0058 0x0aa4  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
21:21:54.0090 0x0aa4  DPS - ok
21:21:54.0152 0x0aa4  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:21:54.0183 0x0aa4  drmkaud - ok
21:21:54.0292 0x0aa4  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:21:54.0324 0x0aa4  DXGKrnl - ok
21:21:54.0386 0x0aa4  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
21:21:54.0495 0x0aa4  E1G60 - ok
21:21:54.0511 0x0aa4  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
21:21:54.0542 0x0aa4  EapHost - ok
21:21:54.0573 0x0aa4  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
21:21:54.0589 0x0aa4  Ecache - ok
21:21:54.0760 0x0aa4  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:21:54.0838 0x0aa4  ehRecvr - ok
21:21:54.0854 0x0aa4  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
21:21:54.0901 0x0aa4  ehSched - ok
21:21:54.0948 0x0aa4  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
21:21:55.0026 0x0aa4  ehstart - ok
21:21:55.0057 0x0aa4  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:21:55.0072 0x0aa4  elxstor - ok
21:21:55.0213 0x0aa4  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
21:21:55.0384 0x0aa4  EMDMgmt - ok
21:21:55.0416 0x0aa4  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:21:55.0462 0x0aa4  ErrDev - ok
21:21:55.0494 0x0aa4  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
21:21:55.0556 0x0aa4  EventSystem - ok
21:21:55.0603 0x0aa4  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:21:55.0681 0x0aa4  exfat - ok
21:21:55.0712 0x0aa4  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:21:55.0790 0x0aa4  fastfat - ok
21:21:55.0821 0x0aa4  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:21:55.0852 0x0aa4  fdc - ok
21:21:55.0884 0x0aa4  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
         


Alt 01.04.2014, 15:43   #6
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Hier der zweite Teil von TDSSKiller:

Code:
ATTFilter
21:21:55.0899 0x0aa4  fdPHost - ok
21:21:55.0899 0x0aa4  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:21:55.0993 0x0aa4  FDResPub - ok
21:21:55.0993 0x0aa4  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:21:56.0008 0x0aa4  FileInfo - ok
21:21:56.0024 0x0aa4  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:21:56.0102 0x0aa4  Filetrace - ok
21:21:56.0133 0x0aa4  [ FD7CB14845A7F91BE11F80635B2CD8A6, CBAAE671814281AE305C47A06D23B3E1C54B0BCFFDA7CF092F0B1C198CFF51A8 ] FiltUSBET       C:\Windows\system32\DRIVERS\etFilter.sys
21:21:56.0164 0x0aa4  FiltUSBET - ok
21:21:56.0211 0x0aa4  [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:21:56.0289 0x0aa4  FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
21:21:56.0289 0x0aa4  Detect skipped due to KSN trusted
21:21:56.0289 0x0aa4  FLEXnet Licensing Service - ok
21:21:56.0320 0x0aa4  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:21:56.0336 0x0aa4  flpydisk - ok
21:21:56.0476 0x0aa4  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:21:56.0492 0x0aa4  FltMgr - ok
21:21:56.0726 0x0aa4  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
21:21:56.0820 0x0aa4  FontCache - ok
21:21:56.0913 0x0aa4  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:21:56.0929 0x0aa4  FontCache3.0.0.0 - ok
21:21:57.0007 0x0aa4  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:21:57.0085 0x0aa4  Fs_Rec - ok
21:21:57.0267 0x0aa4  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:21:57.0279 0x0aa4  gagp30kx - ok
21:21:57.0386 0x0aa4  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:21:57.0394 0x0aa4  GEARAspiWDM - ok
21:21:57.0490 0x0aa4  [ 31B40F40E09513ADDC460F6A297AD474, C3A2A29E32F07BA6534380DE5A1EA7EFCB39B288B9541696DA65FA20DE20AFC4 ] ghaio           C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:21:57.0500 0x0aa4  ghaio - ok
21:21:57.0737 0x0aa4  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
21:21:57.0811 0x0aa4  gpsvc - ok
21:21:57.0881 0x0aa4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:21:57.0890 0x0aa4  gupdate - ok
21:21:57.0895 0x0aa4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:21:57.0904 0x0aa4  gupdatem - ok
21:21:57.0938 0x0aa4  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:21:58.0041 0x0aa4  HdAudAddService - ok
21:21:58.0194 0x0aa4  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:21:58.0297 0x0aa4  HDAudBus - ok
21:21:58.0361 0x0aa4  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:21:58.0410 0x0aa4  HidBth - ok
21:21:58.0459 0x0aa4  [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
21:21:58.0519 0x0aa4  HidIr - ok
21:21:58.0560 0x0aa4  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\system32\hidserv.dll
21:21:58.0585 0x0aa4  hidserv - ok
21:21:58.0605 0x0aa4  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:21:58.0634 0x0aa4  HidUsb - ok
21:21:58.0715 0x0aa4  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:21:58.0752 0x0aa4  hkmsvc - ok
21:21:58.0801 0x0aa4  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
21:21:58.0813 0x0aa4  HpCISSs - ok
21:21:59.0033 0x0aa4  [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:21:59.0079 0x0aa4  hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
21:21:59.0079 0x0aa4  Detect skipped due to KSN trusted
21:21:59.0079 0x0aa4  hpqcxs08 - ok
21:21:59.0153 0x0aa4  [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:21:59.0222 0x0aa4  hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
21:21:59.0222 0x0aa4  Detect skipped due to KSN trusted
21:21:59.0222 0x0aa4  hpqddsvc - ok
21:21:59.0427 0x0aa4  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:21:59.0551 0x0aa4  HTTP - ok
21:21:59.0567 0x0aa4  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
21:21:59.0583 0x0aa4  i2omp - ok
21:21:59.0598 0x0aa4  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:21:59.0661 0x0aa4  i8042prt - ok
21:21:59.0832 0x0aa4  [ 80C633722DA72E97F3F5B3B11325696D, 1255DC28801438E21AA9D3EAE6F40A9625FCEA99709A7ABCBBEA906DB34AFB6C ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
21:21:59.0973 0x0aa4  iaStor - ok
21:22:00.0019 0x0aa4  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
21:22:00.0035 0x0aa4  iaStorV - ok
21:22:00.0300 0x0aa4  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:22:00.0363 0x0aa4  idsvc - ok
21:22:00.0394 0x0aa4  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:22:00.0409 0x0aa4  iirsp - ok
21:22:00.0597 0x0aa4  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:22:00.0675 0x0aa4  IKEEXT - ok
21:22:01.0065 0x0aa4  [ 58072F5FD95ECE78F9FA7BDA1210A9E7, 2AC11995689239C861763EC665C7EF6CA37CFAFD6893AEB3296B77F3D70B9E82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:22:01.0361 0x0aa4  IntcAzAudAddService - ok
21:22:01.0408 0x0aa4  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
21:22:01.0423 0x0aa4  intelide - ok
21:22:01.0455 0x0aa4  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:22:01.0564 0x0aa4  intelppm - ok
21:22:01.0657 0x0aa4  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:22:01.0735 0x0aa4  IPBusEnum - ok
21:22:01.0751 0x0aa4  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:22:01.0813 0x0aa4  IpFilterDriver - ok
21:22:01.0829 0x0aa4  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:22:01.0891 0x0aa4  iphlpsvc - ok
21:22:01.0907 0x0aa4  IpInIp - ok
21:22:01.0938 0x0aa4  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
21:22:02.0001 0x0aa4  IPMIDRV - ok
21:22:02.0047 0x0aa4  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
21:22:02.0063 0x0aa4  IPNAT - ok
21:22:02.0125 0x0aa4  [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:22:02.0157 0x0aa4  iPod Service - ok
21:22:02.0235 0x0aa4  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:22:02.0250 0x0aa4  IRENUM - ok
21:22:02.0313 0x0aa4  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:22:02.0328 0x0aa4  isapnp - ok
21:22:02.0469 0x0aa4  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:22:02.0515 0x0aa4  iScsiPrt - ok
21:22:02.0547 0x0aa4  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
21:22:02.0562 0x0aa4  iteatapi - ok
21:22:02.0609 0x0aa4  [ 8BCD857C7932AD005D5F9C89329DA2E1, B2091CEA5D3D0D06E49D71E7D40E993D5653A0D8F5DC5CE5C9CEFB1242887E0D ] itecir          C:\Windows\system32\DRIVERS\itecir.sys
21:22:02.0718 0x0aa4  itecir - ok
21:22:02.0749 0x0aa4  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
21:22:02.0765 0x0aa4  iteraid - ok
21:22:02.0781 0x0aa4  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:22:02.0796 0x0aa4  kbdclass - ok
21:22:02.0812 0x0aa4  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:22:02.0937 0x0aa4  kbdhid - ok
21:22:02.0952 0x0aa4  [ 27BD4AC228EF6C0D490617C32E86A672, A2259B4E78AE5D3158B0FC4F3694EEF9825B9FF782F09ED828E80E7B23E07D16 ] kbfiltr         C:\Windows\system32\DRIVERS\kbfiltr.sys
21:22:02.0968 0x0aa4  kbfiltr - ok
21:22:03.0030 0x0aa4  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
21:22:03.0124 0x0aa4  KeyIso - ok
21:22:03.0155 0x0aa4  [ 871C226234A48C24DFE7478F36C0050C, 657CAB49387E0E40311D4DEC93D9860B2DAC2C05F223698CFA2F9BB50B5F3022 ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
21:22:03.0171 0x0aa4  kl1 - ok
21:22:03.0249 0x0aa4  [ 8C547EB6709BF41E0625EFCDF13C63CE, ECD36806745748D110964C8D332D5FED235C5423885A6E33C733568AEC15FD80 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
21:22:03.0389 0x0aa4  KLIF - ok
21:22:03.0451 0x0aa4  [ 039FB019C92A16A54FE527D93B0CFB96, 080897B377511FD2439EB651086390CD72B822E8222C79AB0569FAFAA14BA0AE ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
21:22:03.0467 0x0aa4  KLIM6 - ok
21:22:03.0529 0x0aa4  [ 249A266AF74ADE44AE8424E78D145E09, 2D83543DFD9E3C1060E231D776E1755E2041CFD0245139C2041D560956165C0E ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
21:22:03.0529 0x0aa4  klkbdflt - ok
21:22:03.0607 0x0aa4  [ 035724BA6D5676B76FD3AFB66AB4F1E3, 81B30112B96DD3E7250420EEFF2ACECD424A2BE155E83C44434321CEA7DBE117 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
21:22:03.0623 0x0aa4  klmouflt - ok
21:22:03.0654 0x0aa4  [ 8FD802F86D4AB3FB329B8E51517BFF2A, 321750DC0C664FE5580C855D7B70AC74753DDD881F0C4482A2B4505BB2D88345 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
21:22:03.0670 0x0aa4  kltdi - ok
21:22:03.0717 0x0aa4  [ 8F932DF10408BCABA2FCF6163C843F8E, 26BB4E2A2562CF6C687EC9F61C7B3C80992C1D57C47BBAEA8ED2AB6643A91C0E ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
21:22:03.0732 0x0aa4  kneps - ok
21:22:03.0857 0x0aa4  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:22:03.0951 0x0aa4  KSecDD - ok
21:22:04.0091 0x0aa4  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:22:04.0185 0x0aa4  KtmRm - ok
21:22:04.0247 0x0aa4  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:22:04.0309 0x0aa4  LanmanServer - ok
21:22:04.0356 0x0aa4  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:22:04.0481 0x0aa4  LanmanWorkstation - ok
21:22:04.0528 0x0aa4  [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
21:22:04.0543 0x0aa4  lirsgt - ok
21:22:04.0590 0x0aa4  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:22:04.0653 0x0aa4  lltdio - ok
21:22:04.0715 0x0aa4  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:22:04.0793 0x0aa4  lltdsvc - ok
21:22:04.0809 0x0aa4  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:22:04.0840 0x0aa4  lmhosts - ok
21:22:04.0855 0x0aa4  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:22:04.0855 0x0aa4  LSI_FC - ok
21:22:04.0871 0x0aa4  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:22:04.0887 0x0aa4  LSI_SAS - ok
21:22:04.0918 0x0aa4  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:22:04.0933 0x0aa4  LSI_SCSI - ok
21:22:04.0965 0x0aa4  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:22:05.0043 0x0aa4  luafv - ok
21:22:05.0121 0x0aa4  [ 8039F480C192DD99FED4EBC71FFBF795, D02A1E4AAD5413B8F154E21C5B2C8FDD18F10A01197F44792BBDC1651E06F2A8 ] lullaby         C:\Windows\system32\DRIVERS\lullaby.sys
21:22:05.0121 0x0aa4  lullaby - ok
21:22:05.0199 0x0aa4  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:22:05.0230 0x0aa4  Mcx2Svc - ok
21:22:05.0245 0x0aa4  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys
21:22:05.0261 0x0aa4  megasas - ok
21:22:05.0292 0x0aa4  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
21:22:05.0370 0x0aa4  MegaSR - ok
21:22:05.0448 0x0aa4  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
21:22:05.0511 0x0aa4  MMCSS - ok
21:22:05.0620 0x0aa4  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
21:22:05.0667 0x0aa4  Modem - ok
21:22:05.0682 0x0aa4  [ CBB59C41F19EFEA1A000793E08070A62, 4C3C01210DF9D00C05FA14FF5CEFB60C444CAEBFF3F49409EDE434D63F19B9F2 ] MODEMCSA        C:\Windows\system32\drivers\MODEMCSA.sys
21:22:05.0745 0x0aa4  MODEMCSA - ok
21:22:05.0823 0x0aa4  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:22:05.0869 0x0aa4  monitor - ok
21:22:05.0901 0x0aa4  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:22:05.0947 0x0aa4  mouclass - ok
21:22:05.0963 0x0aa4  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:22:05.0994 0x0aa4  mouhid - ok
21:22:06.0010 0x0aa4  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
21:22:06.0072 0x0aa4  MountMgr - ok
21:22:06.0119 0x0aa4  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:22:06.0135 0x0aa4  MozillaMaintenance - ok
21:22:06.0197 0x0aa4  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:22:06.0213 0x0aa4  mpio - ok
21:22:06.0275 0x0aa4  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:22:06.0322 0x0aa4  mpsdrv - ok
21:22:06.0415 0x0aa4  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:22:06.0509 0x0aa4  MpsSvc - ok
21:22:06.0556 0x0aa4  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
21:22:06.0571 0x0aa4  Mraid35x - ok
21:22:06.0727 0x0aa4  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:22:06.0837 0x0aa4  MRxDAV - ok
21:22:06.0883 0x0aa4  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:22:06.0930 0x0aa4  mrxsmb - ok
21:22:06.0961 0x0aa4  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:22:06.0993 0x0aa4  mrxsmb10 - ok
21:22:07.0008 0x0aa4  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:22:07.0055 0x0aa4  mrxsmb20 - ok
21:22:07.0102 0x0aa4  [ DE77526BDE93142BDC90CFA9F5CEAD36, 783A6991982C077D8C3218E507CE098F6112809282633B0280E1228115572153 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:22:07.0117 0x0aa4  msahci - ok
21:22:07.0180 0x0aa4  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:22:07.0195 0x0aa4  msdsm - ok
21:22:07.0242 0x0aa4  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
21:22:07.0289 0x0aa4  MSDTC - ok
21:22:07.0367 0x0aa4  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:22:07.0429 0x0aa4  Msfs - ok
21:22:07.0554 0x0aa4  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:22:07.0570 0x0aa4  msisadrv - ok
21:22:07.0663 0x0aa4  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:22:07.0726 0x0aa4  MSiSCSI - ok
21:22:07.0726 0x0aa4  msiserver - ok
21:22:07.0741 0x0aa4  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:22:07.0773 0x0aa4  MSKSSRV - ok
21:22:07.0788 0x0aa4  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:22:07.0804 0x0aa4  MSPCLOCK - ok
21:22:07.0819 0x0aa4  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:22:07.0851 0x0aa4  MSPQM - ok
21:22:07.0882 0x0aa4  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:22:07.0897 0x0aa4  MsRPC - ok
21:22:07.0944 0x0aa4  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:22:07.0975 0x0aa4  mssmbios - ok
21:22:08.0007 0x0aa4  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:22:08.0022 0x0aa4  MSTEE - ok
21:22:08.0053 0x0aa4  [ 97AFFA9D95FFE20EEE6229BC6BE166CF, 6E13230AF96A3A5C518EFA21B9B1833E3DE9D6DA05A6E664E305EF18B162E1B9 ] MTsensor        C:\Windows\system32\DRIVERS\ATKACPI.sys
21:22:08.0100 0x0aa4  MTsensor - ok
21:22:08.0116 0x0aa4  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:22:08.0131 0x0aa4  Mup - ok
21:22:08.0163 0x0aa4  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
21:22:08.0194 0x0aa4  napagent - ok
21:22:08.0241 0x0aa4  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:22:08.0303 0x0aa4  NativeWifiP - ok
21:22:08.0443 0x0aa4  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:22:08.0490 0x0aa4  NDIS - ok
21:22:08.0521 0x0aa4  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:22:08.0553 0x0aa4  NdisTapi - ok
21:22:08.0631 0x0aa4  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:22:08.0662 0x0aa4  Ndisuio - ok
21:22:08.0787 0x0aa4  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:22:08.0802 0x0aa4  NdisWan - ok
21:22:08.0865 0x0aa4  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:22:08.0896 0x0aa4  NDProxy - ok
21:22:08.0943 0x0aa4  [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:22:08.0958 0x0aa4  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:22:08.0958 0x0aa4  Detect skipped due to KSN trusted
21:22:08.0958 0x0aa4  Net Driver HPZ12 - ok
21:22:08.0989 0x0aa4  [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl.sys
21:22:09.0083 0x0aa4  Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
21:22:09.0083 0x0aa4  Detect skipped due to KSN trusted
21:22:09.0083 0x0aa4  Netaapl - ok
21:22:09.0114 0x0aa4  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:22:09.0161 0x0aa4  NetBIOS - ok
21:22:09.0192 0x0aa4  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
21:22:09.0208 0x0aa4  netbt - ok
21:22:09.0223 0x0aa4  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
21:22:09.0223 0x0aa4  Netlogon - ok
21:22:09.0317 0x0aa4  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
21:22:09.0457 0x0aa4  Netman - ok
21:22:09.0551 0x0aa4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:22:09.0613 0x0aa4  NetMsmqActivator - ok
21:22:09.0613 0x0aa4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:22:09.0629 0x0aa4  NetPipeActivator - ok
21:22:09.0645 0x0aa4  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
21:22:09.0738 0x0aa4  netprofm - ok
21:22:09.0738 0x0aa4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:22:09.0754 0x0aa4  NetTcpActivator - ok
21:22:09.0754 0x0aa4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:22:09.0769 0x0aa4  NetTcpPortSharing - ok
21:22:10.0581 0x0aa4  [ F0C42E0CDCE558D658FA53A222B4CCB1, 50AC8D9CCFB319EC03AB0F6AC2F70ED2EF3D746B8A8C7CC7A0606B592A3042DC ] NETw5v32        C:\Windows\system32\DRIVERS\NETw5v32.sys
21:22:10.0846 0x0aa4  NETw5v32 - ok
21:22:10.0893 0x0aa4  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:22:10.0893 0x0aa4  nfrd960 - ok
21:22:10.0986 0x0aa4  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:22:11.0095 0x0aa4  NlaSvc - ok
21:22:11.0189 0x0aa4  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:22:11.0267 0x0aa4  Npfs - ok
21:22:11.0314 0x0aa4  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
21:22:11.0361 0x0aa4  nsi - ok
21:22:11.0376 0x0aa4  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:22:11.0423 0x0aa4  nsiproxy - ok
21:22:11.0517 0x0aa4  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:22:11.0579 0x0aa4  Ntfs - ok
21:22:11.0626 0x0aa4  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
21:22:11.0735 0x0aa4  ntrigdigi - ok
21:22:11.0782 0x0aa4  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
21:22:11.0860 0x0aa4  Null - ok
21:22:11.0907 0x0aa4  [ 77F9F9A199B87FE3F852E12F5419240B, BE9C05F2AC12BB41EC71A596039F2116E5A0F454D32E5A618112296721001473 ] NVHDA           C:\Windows\system32\drivers\nvhda32v.sys
21:22:11.0907 0x0aa4  NVHDA - ok
21:22:13.0045 0x0aa4  [ C1E661888C719FC2E12C057F233FB238, FAC74D6644686F3A6CC4852BFC0EC1AD36212F6E45F466CDEF9A36C2FD23316C ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:22:13.0591 0x0aa4  nvlddmkm - ok
21:22:13.0669 0x0aa4  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:22:13.0685 0x0aa4  nvraid - ok
21:22:13.0701 0x0aa4  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:22:13.0716 0x0aa4  nvstor - ok
21:22:13.0810 0x0aa4  [ 31D7E63B62BC4680B5D1358F91DA104E, 8DF37F4AD73CBA597783E272603C17336C48F7BFFD7DDE55B0736F9A52BDFEDB ] nvsvc           C:\Windows\system32\nvvsvc.exe
21:22:13.0888 0x0aa4  nvsvc - ok
21:22:14.0184 0x0aa4  [ 143B429F2D19A0F123ED8E4BCA8DB751, F0CC7D4C6AF1557E70CC6D5C2CD03BBBDBE27B3AC6D95962A8722C75850FF627 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:22:14.0215 0x0aa4  nvUpdatusService - ok
21:22:14.0559 0x0aa4  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:22:14.0574 0x0aa4  nv_agp - ok
21:22:14.0574 0x0aa4  NwlnkFlt - ok
21:22:14.0574 0x0aa4  NwlnkFwd - ok
21:22:14.0605 0x0aa4  [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
21:22:14.0652 0x0aa4  ohci1394 - ok
21:22:14.0730 0x0aa4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:22:14.0746 0x0aa4  ose - ok
21:22:15.0619 0x0aa4  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:22:15.0963 0x0aa4  osppsvc - ok
21:22:16.0087 0x0aa4  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
21:22:16.0384 0x0aa4  p2pimsvc - ok
21:22:16.0477 0x0aa4  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:22:16.0618 0x0aa4  p2psvc - ok
21:22:16.0711 0x0aa4  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
21:22:16.0821 0x0aa4  Parport - ok
21:22:16.0883 0x0aa4  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:22:16.0899 0x0aa4  partmgr - ok
21:22:16.0961 0x0aa4  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
21:22:17.0039 0x0aa4  Parvdm - ok
21:22:17.0101 0x0aa4  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:22:17.0195 0x0aa4  PcaSvc - ok
21:22:17.0242 0x0aa4  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
21:22:17.0257 0x0aa4  pci - ok
21:22:17.0273 0x0aa4  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:22:17.0289 0x0aa4  pciide - ok
21:22:17.0304 0x0aa4  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:22:17.0320 0x0aa4  pcmcia - ok
21:22:17.0429 0x0aa4  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:22:17.0538 0x0aa4  PEAUTH - ok
21:22:17.0796 0x0aa4  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
21:22:18.0078 0x0aa4  pla - ok
21:22:18.0115 0x0aa4  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:22:18.0182 0x0aa4  PlugPlay - ok
21:22:18.0221 0x0aa4  [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:22:18.0227 0x0aa4  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:22:18.0227 0x0aa4  Detect skipped due to KSN trusted
21:22:18.0227 0x0aa4  Pml Driver HPZ12 - ok
21:22:18.0283 0x0aa4  [ 3A2BDD76E7D2A5F40A7174793D1BA794, 029EE2C2F71AEC7906600EEC4F855DC5648C1ECF53F11426079B04591F24D067 ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
21:22:18.0303 0x0aa4  PnkBstrA - ok
21:22:18.0380 0x0aa4  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
21:22:18.0431 0x0aa4  PNRPAutoReg - ok
21:22:18.0530 0x0aa4  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
21:22:18.0561 0x0aa4  PNRPsvc - ok
21:22:18.0775 0x0aa4  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:22:19.0084 0x0aa4  PolicyAgent - ok
21:22:19.0156 0x0aa4  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:22:19.0179 0x0aa4  PptpMiniport - ok
21:22:19.0315 0x0aa4  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys
21:22:19.0651 0x0aa4  Processor - ok
21:22:19.0718 0x0aa4  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
21:22:19.0741 0x0aa4  ProfSvc - ok
21:22:19.0757 0x0aa4  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
21:22:19.0769 0x0aa4  ProtectedStorage - ok
21:22:19.0862 0x0aa4  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
21:22:19.0909 0x0aa4  PSched - ok
21:22:20.0001 0x0aa4  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:22:20.0044 0x0aa4  ql2300 - ok
21:22:20.0121 0x0aa4  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:22:20.0132 0x0aa4  ql40xx - ok
21:22:20.0207 0x0aa4  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
21:22:20.0230 0x0aa4  QWAVE - ok
21:22:20.0258 0x0aa4  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:22:20.0342 0x0aa4  QWAVEdrv - ok
21:22:20.0373 0x0aa4  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:22:20.0466 0x0aa4  RasAcd - ok
21:22:20.0498 0x0aa4  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
21:22:20.0529 0x0aa4  RasAuto - ok
21:22:20.0576 0x0aa4  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:22:20.0622 0x0aa4  Rasl2tp - ok
21:22:20.0685 0x0aa4  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
21:22:20.0732 0x0aa4  RasMan - ok
21:22:20.0856 0x0aa4  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:22:20.0888 0x0aa4  RasPppoe - ok
21:22:20.0903 0x0aa4  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:22:20.0919 0x0aa4  RasSstp - ok
21:22:21.0029 0x0aa4  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:22:21.0101 0x0aa4  rdbss - ok
21:22:21.0152 0x0aa4  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:22:21.0176 0x0aa4  RDPCDD - ok
21:22:21.0292 0x0aa4  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
21:22:21.0318 0x0aa4  rdpdr - ok
21:22:21.0412 0x0aa4  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:22:21.0474 0x0aa4  RDPENCDD - ok
21:22:21.0507 0x0aa4  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:22:21.0566 0x0aa4  RDPWD - ok
21:22:21.0649 0x0aa4  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:22:21.0699 0x0aa4  RemoteAccess - ok
21:22:21.0723 0x0aa4  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:22:21.0763 0x0aa4  RemoteRegistry - ok
21:22:21.0878 0x0aa4  [ 6482707F9F4DA0ECBAB43B2E0398A101, 7D57FC36577121D7E26A4F2D46DCA8725D55EC9F75B91DF994DB742BC4FB89C2 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
21:22:21.0916 0x0aa4  RFCOMM - ok
21:22:22.0001 0x0aa4  [ A5B12A4B3B774432DB9B9FA221190E59, 1DAAB43A2429035BAB8403E5D24F50F82BD41B5B478B344C3C58D49F1E15C2AE ] rimmptsk        C:\Windows\system32\DRIVERS\rimmptsk.sys
21:22:22.0079 0x0aa4  rimmptsk - ok
21:22:22.0110 0x0aa4  [ C398BCA91216755B098679A8DA8A2300, 1FDDC3D927509AB10C3B0B7900DCE78DEC6B1C3CAE80F78EFCFBB628673B2143 ] rimsptsk        C:\Windows\system32\DRIVERS\rimsptsk.sys
21:22:22.0141 0x0aa4  rimsptsk - ok
21:22:22.0157 0x0aa4  [ 2A2554CB24506E0A0508FC395C4A1B42, B989AE65727C971D508E7284707258FCCC9213B510F4C2A257D3069A3DABE20B ] rismxdp         C:\Windows\system32\DRIVERS\rixdptsk.sys
21:22:22.0188 0x0aa4  rismxdp - ok
21:22:22.0204 0x0aa4  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
21:22:22.0235 0x0aa4  RpcLocator - ok
21:22:22.0266 0x0aa4  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
21:22:22.0297 0x0aa4  RpcSs - ok
21:22:22.0329 0x0aa4  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:22:22.0360 0x0aa4  rspndr - ok
21:22:22.0453 0x0aa4  [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
21:22:22.0469 0x0aa4  RTL8169 - ok
21:22:22.0531 0x0aa4  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
21:22:22.0547 0x0aa4  SamSs - ok
21:22:22.0578 0x0aa4  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:22:22.0578 0x0aa4  sbp2port - ok
21:22:22.0656 0x0aa4  [ 2393ED056AE02F5DBB3A7D6E40A5FDC2, AC73452C892ABE7B98A0762BC7BD26CD712FF2E899E157F2A5119335E3E41B49 ] ScanUSBET       C:\Windows\system32\DRIVERS\etScan.sys
21:22:22.0719 0x0aa4  ScanUSBET - ok
21:22:22.0781 0x0aa4  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:22:22.0797 0x0aa4  SCardSvr - ok
21:22:23.0031 0x0aa4  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
21:22:23.0077 0x0aa4  Schedule - ok
21:22:23.0124 0x0aa4  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:22:23.0140 0x0aa4  SCPolicySvc - ok
21:22:23.0171 0x0aa4  [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
21:22:23.0249 0x0aa4  sdbus - ok
21:22:23.0358 0x0aa4  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:22:23.0421 0x0aa4  SDRSVC - ok
21:22:23.0998 0x0aa4  [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
21:22:24.0310 0x0aa4  SDScannerService - ok
21:22:24.0481 0x0aa4  [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:22:24.0793 0x0aa4  SDUpdateService - ok
21:22:24.0918 0x0aa4  [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService    C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:22:24.0934 0x0aa4  SDWSCService - ok
21:22:25.0031 0x0aa4  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:22:25.0146 0x0aa4  secdrv - ok
21:22:25.0342 0x0aa4  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
21:22:25.0380 0x0aa4  seclogon - ok
21:22:25.0398 0x0aa4  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
21:22:25.0529 0x0aa4  SENS - ok
21:22:25.0563 0x0aa4  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:22:25.0603 0x0aa4  Serenum - ok
21:22:25.0904 0x0aa4  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
21:22:26.0047 0x0aa4  Serial - ok
21:22:26.0078 0x0aa4  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:22:26.0109 0x0aa4  sermouse - ok
21:22:26.0140 0x0aa4  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:22:26.0218 0x0aa4  SessionEnv - ok
21:22:26.0281 0x0aa4  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
21:22:26.0296 0x0aa4  sffdisk - ok
21:22:26.0327 0x0aa4  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:22:26.0390 0x0aa4  sffp_mmc - ok
21:22:26.0421 0x0aa4  [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
21:22:26.0499 0x0aa4  sffp_sd - ok
21:22:26.0515 0x0aa4  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
21:22:26.0561 0x0aa4  sfloppy - ok
21:22:26.0671 0x0aa4  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:22:26.0780 0x0aa4  SharedAccess - ok
21:22:26.0811 0x0aa4  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:22:26.0873 0x0aa4  ShellHWDetection - ok
21:22:26.0905 0x0aa4  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
21:22:26.0920 0x0aa4  sisagp - ok
21:22:26.0998 0x0aa4  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
21:22:27.0014 0x0aa4  SiSRaid2 - ok
21:22:27.0033 0x0aa4  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:22:27.0045 0x0aa4  SiSRaid4 - ok
21:22:27.0811 0x0aa4  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
21:22:28.0174 0x0aa4  slsvc - ok
21:22:28.0190 0x0aa4  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
21:22:28.0206 0x0aa4  SLUINotify - ok
21:22:28.0221 0x0aa4  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:22:28.0237 0x0aa4  Smb - ok
21:22:28.0408 0x0aa4  [ C8A58FC905C9184FA70E37F71060C64D, 3D913E0F7B02EEAC15971DB15608912A96E4FD9BDFBF09E8F8FA4B6390A9B4DE ] smserial        C:\Windows\system32\DRIVERS\smserial.sys
21:22:28.0486 0x0aa4  smserial - ok
21:22:28.0627 0x0aa4  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:22:28.0658 0x0aa4  SNMPTRAP - ok
21:22:28.0674 0x0aa4  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:22:28.0705 0x0aa4  spldr - ok
21:22:28.0876 0x0aa4  [ 739DB668DBD812285ECC553E64A5E212, 08E99CD042232CEB20BB5A808E914C9F2F0C154099BF921BA40E661B08472CF5 ] spmgr           C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
21:22:28.0876 0x0aa4  spmgr - ok
21:22:28.0970 0x0aa4  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
21:22:29.0045 0x0aa4  Spooler - ok
21:22:29.0364 0x0aa4  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:22:29.0509 0x0aa4  srv - ok
21:22:29.0524 0x0aa4  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:22:29.0581 0x0aa4  srv2 - ok
21:22:29.0663 0x0aa4  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:22:29.0687 0x0aa4  srvnet - ok
21:22:29.0781 0x0aa4  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:22:29.0826 0x0aa4  SSDPSRV - ok
21:22:29.0859 0x0aa4  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:22:29.0893 0x0aa4  SstpSvc - ok
21:22:30.0286 0x0aa4  [ 0632004181860960CF6E10DE8DDEF78B, FB4714CB6C795C106C4777835490DC9F68FA656107DDB54A425666BE293FDC0B ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:22:30.0379 0x0aa4  Stereo Service - ok
21:22:30.0520 0x0aa4  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
21:22:30.0644 0x0aa4  stisvc - ok
21:22:30.0676 0x0aa4  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:22:30.0691 0x0aa4  swenum - ok
21:22:30.0769 0x0aa4  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
21:22:30.0811 0x0aa4  swprv - ok
21:22:30.0830 0x0aa4  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
21:22:30.0840 0x0aa4  Symc8xx - ok
21:22:30.0857 0x0aa4  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
21:22:30.0867 0x0aa4  Sym_hi - ok
21:22:30.0894 0x0aa4  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
21:22:30.0905 0x0aa4  Sym_u3 - ok
21:22:30.0979 0x0aa4  [ A59457258DC236F63D6EAC759EF6C08B, C407AF5171A3F2C8F7E1F68E472D4F9E835BDEC50A8E0D4D8F2A6854F2AE0346 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
21:22:30.0997 0x0aa4  SynTP - ok
21:22:31.0327 0x0aa4  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
21:22:31.0546 0x0aa4  SysMain - ok
21:22:31.0582 0x0aa4  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:22:31.0608 0x0aa4  TabletInputService - ok
21:22:31.0708 0x0aa4  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:22:31.0789 0x0aa4  TapiSrv - ok
21:22:31.0824 0x0aa4  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
21:22:31.0847 0x0aa4  TBS - ok
21:22:32.0143 0x0aa4  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:22:32.0218 0x0aa4  Tcpip - ok
21:22:32.0391 0x0aa4  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
21:22:32.0454 0x0aa4  Tcpip6 - ok
21:22:32.0488 0x0aa4  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:22:32.0523 0x0aa4  tcpipreg - ok
21:22:32.0594 0x0aa4  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:22:32.0634 0x0aa4  TDPIPE - ok
21:22:32.0707 0x0aa4  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:22:32.0754 0x0aa4  TDTCP - ok
21:22:32.0830 0x0aa4  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:22:32.0873 0x0aa4  tdx - ok
21:22:32.0911 0x0aa4  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:22:32.0930 0x0aa4  TermDD - ok
21:22:33.0136 0x0aa4  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
21:22:33.0238 0x0aa4  TermService - ok
21:22:33.0282 0x0aa4  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
21:22:33.0300 0x0aa4  Themes - ok
21:22:33.0349 0x0aa4  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
21:22:33.0371 0x0aa4  THREADORDER - ok
21:22:33.0496 0x0aa4  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
21:22:33.0606 0x0aa4  TrkWks - ok
21:22:33.0734 0x0aa4  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:22:33.0806 0x0aa4  TrustedInstaller - ok
21:22:33.0849 0x0aa4  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:22:33.0920 0x0aa4  tssecsrv - ok
21:22:33.0937 0x0aa4  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
21:22:33.0987 0x0aa4  tunmp - ok
21:22:34.0002 0x0aa4  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:22:34.0019 0x0aa4  tunnel - ok
21:22:34.0031 0x0aa4  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:22:34.0042 0x0aa4  uagp35 - ok
21:22:34.0077 0x0aa4  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:22:34.0098 0x0aa4  udfs - ok
21:22:34.0210 0x0aa4  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:22:34.0316 0x0aa4  UI0Detect - ok
21:22:34.0344 0x0aa4  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:22:34.0355 0x0aa4  uliagpkx - ok
21:22:34.0460 0x0aa4  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
21:22:34.0474 0x0aa4  uliahci - ok
21:22:34.0494 0x0aa4  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
21:22:34.0506 0x0aa4  UlSata - ok
21:22:34.0625 0x0aa4  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
21:22:34.0636 0x0aa4  ulsata2 - ok
21:22:34.0727 0x0aa4  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:22:34.0768 0x0aa4  umbus - ok
21:22:34.0804 0x0aa4  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
21:22:34.0879 0x0aa4  upnphost - ok
21:22:34.0933 0x0aa4  [ 8BF5D980CDCE35FB26F05047144BB57E, 8A770DD649FA0D6F574651E5525B983261B823C5778764598D89C453E68ED3F1 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
21:22:34.0953 0x0aa4  USBAAPL - detected UnsignedFile.Multi.Generic ( 1 )
21:22:35.0231 0x0aa4  Detect skipped due to KSN trusted
21:22:35.0231 0x0aa4  USBAAPL - ok
21:22:35.0681 0x0aa4  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:22:35.0770 0x0aa4  usbaudio - ok
21:22:35.0914 0x0aa4  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:22:35.0930 0x0aa4  usbccgp - ok
21:22:36.0504 0x0aa4  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:22:36.0589 0x0aa4  usbcir - ok
21:22:36.0666 0x0aa4  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:22:36.0679 0x0aa4  usbehci - ok
21:22:36.0761 0x0aa4  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:22:36.0873 0x0aa4  usbhub - ok
21:22:36.0903 0x0aa4  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:22:36.0988 0x0aa4  usbohci - ok
21:22:37.0016 0x0aa4  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:22:37.0121 0x0aa4  usbprint - ok
21:22:37.0152 0x0aa4  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
21:22:37.0168 0x0aa4  usbscan - ok
21:22:37.0230 0x0aa4  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:22:37.0308 0x0aa4  USBSTOR - ok
21:22:37.0339 0x0aa4  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:22:37.0355 0x0aa4  usbuhci - ok
21:22:37.0433 0x0aa4  [ E67998E8F14CB0627A769F6530BCB352, 60982F168E9BF13954328C728F55F4D3ADDC572CACB65289B0E895A63DAA08C1 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
21:22:37.0464 0x0aa4  usbvideo - ok
21:22:37.0495 0x0aa4  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
21:22:37.0526 0x0aa4  UxSms - ok
21:22:37.0651 0x0aa4  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
21:22:37.0682 0x0aa4  vds - ok
21:22:37.0745 0x0aa4  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:22:37.0792 0x0aa4  vga - ok
21:22:37.0838 0x0aa4  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:22:37.0854 0x0aa4  VgaSave - ok
21:22:37.0901 0x0aa4  [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
21:22:37.0901 0x0aa4  viaagp - ok
21:22:37.0948 0x0aa4  [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
21:22:37.0963 0x0aa4  ViaC7 - ok
21:22:37.0994 0x0aa4  [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide          C:\Windows\system32\drivers\viaide.sys
21:22:38.0010 0x0aa4  viaide - ok
21:22:38.0010 0x0aa4  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:22:38.0026 0x0aa4  volmgr - ok
21:22:38.0166 0x0aa4  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:22:38.0182 0x0aa4  volmgrx - ok
21:22:38.0572 0x0aa4  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:22:38.0587 0x0aa4  volsnap - ok
21:22:38.0650 0x0aa4  [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:22:38.0665 0x0aa4  vsmraid - ok
21:22:38.0962 0x0aa4  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
21:22:39.0164 0x0aa4  VSS - ok
21:22:39.0274 0x0aa4  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
21:22:39.0367 0x0aa4  W32Time - ok
21:22:39.0398 0x0aa4  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:22:39.0445 0x0aa4  WacomPen - ok
21:22:39.0492 0x0aa4  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
21:22:39.0570 0x0aa4  Wanarp - ok
21:22:39.0570 0x0aa4  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:22:39.0586 0x0aa4  Wanarpv6 - ok
21:22:39.0664 0x0aa4  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:22:39.0742 0x0aa4  wcncsvc - ok
21:22:39.0773 0x0aa4  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:22:39.0866 0x0aa4  WcsPlugInService - ok
21:22:39.0913 0x0aa4  [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd              C:\Windows\system32\drivers\wd.sys
21:22:39.0944 0x0aa4  Wd - ok
21:22:40.0054 0x0aa4  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:22:40.0069 0x0aa4  Wdf01000 - ok
21:22:40.0085 0x0aa4  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:22:40.0132 0x0aa4  WdiServiceHost - ok
21:22:40.0132 0x0aa4  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:22:40.0163 0x0aa4  WdiSystemHost - ok
21:22:40.0381 0x0aa4  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
21:22:40.0397 0x0aa4  WebClient - ok
21:22:40.0459 0x0aa4  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:22:40.0537 0x0aa4  Wecsvc - ok
21:22:40.0568 0x0aa4  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:22:40.0584 0x0aa4  wercplsupport - ok
21:22:40.0646 0x0aa4  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:22:40.0662 0x0aa4  WerSvc - ok
21:22:40.0849 0x0aa4  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
21:22:40.0880 0x0aa4  WinDefend - ok
21:22:40.0880 0x0aa4  WinHttpAutoProxySvc - ok
21:22:41.0146 0x0aa4  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:22:41.0161 0x0aa4  Winmgmt - ok
21:22:41.0380 0x0aa4  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:22:41.0520 0x0aa4  WinRM - ok
21:22:41.0785 0x0aa4  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:22:42.0097 0x0aa4  Wlansvc - ok
21:22:42.0175 0x0aa4  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
21:22:42.0206 0x0aa4  WmiAcpi - ok
21:22:42.0238 0x0aa4  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:22:42.0316 0x0aa4  wmiApSrv - ok
21:22:42.0503 0x0aa4  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
21:22:42.0643 0x0aa4  WMPNetworkSvc - ok
21:22:42.0721 0x0aa4  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:22:42.0846 0x0aa4  WPCSvc - ok
21:22:42.0893 0x0aa4  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:22:42.0908 0x0aa4  WPDBusEnum - ok
21:22:42.0955 0x0aa4  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
21:22:42.0971 0x0aa4  WpdUsb - ok
21:22:43.0267 0x0aa4  [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:22:43.0454 0x0aa4  WPFFontCache_v0400 - ok
21:22:43.0470 0x0aa4  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:22:43.0579 0x0aa4  ws2ifsl - ok
21:22:43.0610 0x0aa4  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\System32\wscsvc.dll
21:22:43.0688 0x0aa4  wscsvc - ok
21:22:43.0688 0x0aa4  WSearch - ok
21:22:44.0032 0x0aa4  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:22:44.0203 0x0aa4  wuauserv - ok
21:22:44.0250 0x0aa4  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:22:44.0266 0x0aa4  WudfPf - ok
21:22:44.0328 0x0aa4  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:22:44.0359 0x0aa4  WUDFRd - ok
21:22:44.0390 0x0aa4  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:22:44.0406 0x0aa4  wudfsvc - ok
21:22:44.0468 0x0aa4  [ 7D1F3B131D503EF43EE594B5A2B9B427, 307DEC572FBC171D68ED098D73CB6F06754F26E51F8F7DB48035A8CF97AB37D0 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
21:22:44.0609 0x0aa4  yukonwlh - ok
21:22:44.0609 0x0aa4  ================ Scan global ===============================
21:22:44.0671 0x0aa4  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
21:22:44.0843 0x0aa4  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:22:44.0983 0x0aa4  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:22:45.0108 0x0aa4  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
21:22:45.0202 0x0aa4  [ Global ] - ok
21:22:45.0202 0x0aa4  ================ Scan MBR ==================================
21:22:45.0217 0x0aa4  [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
21:22:46.0817 0x0aa4  \Device\Harddisk0\DR0 - ok
21:22:47.0137 0x0aa4  [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk1\DR1
21:22:47.0314 0x0aa4  \Device\Harddisk1\DR1 - ok
21:22:47.0314 0x0aa4  ================ Scan VBR ==================================
21:22:47.0361 0x0aa4  [ B5E8C5FD67063E8018CA1B4A2508A485 ] \Device\Harddisk0\DR0\Partition1
21:22:47.0392 0x0aa4  \Device\Harddisk0\DR0\Partition1 - ok
21:22:47.0439 0x0aa4  [ B4F9E8484D792D6D5F37CF57E4F80AE1 ] \Device\Harddisk0\DR0\Partition2
21:22:47.0454 0x0aa4  \Device\Harddisk0\DR0\Partition2 - ok
21:22:47.0454 0x0aa4  [ 6599E8079B52BFC8A1BED094B1D60C87 ] \Device\Harddisk1\DR1\Partition1
21:22:47.0502 0x0aa4  \Device\Harddisk1\DR1\Partition1 - ok
21:22:47.0502 0x0aa4  [ 67175C26A39AEE28EDEBB2BAFA46F08E ] \Device\Harddisk1\DR1\Partition2
21:22:47.0544 0x0aa4  \Device\Harddisk1\DR1\Partition2 - ok
21:22:47.0550 0x0aa4  AV detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
21:22:47.0552 0x0aa4  FW detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmifw.exe ( 13.0.1.4190 ), 0x41010 ( enabled )
21:22:47.0745 0x0aa4  ============================================================
21:22:47.0745 0x0aa4  Scan finished
21:22:47.0745 0x0aa4  ============================================================
21:22:47.0751 0x0f30  Detected object count: 0
21:22:47.0751 0x0f30  Actual detected object count: 0
21:23:35.0860 0x0e4c  ============================================================
21:23:35.0860 0x0e4c  Scan started
21:23:35.0860 0x0e4c  Mode: Manual; SigCheck; TDLFS; 
21:23:35.0860 0x0e4c  ============================================================
21:23:35.0860 0x0e4c  KSN ping started
21:23:39.0332 0x0e4c  KSN ping finished: true
21:23:41.0434 0x0e4c  ================ Scan system memory ========================
21:23:41.0434 0x0e4c  System memory - ok
21:23:41.0434 0x0e4c  ================ Scan services =============================
21:23:42.0092 0x0e4c  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
21:23:42.0133 0x0e4c  ACPI - ok
21:23:42.0482 0x0e4c  [ 14C23516C990DCD6052152CF034DDE40, 1EC8AAD6AA6D68A17A9D04AECDB716BD0DD4BFF93641BD96D01855AF1232A5FB ] Adobe Version Cue CS3 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
21:23:42.0535 0x0e4c  Adobe Version Cue CS3 - ok
21:23:42.0638 0x0e4c  [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:23:42.0647 0x0e4c  AdobeARMservice - ok
21:23:42.0792 0x0e4c  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:23:42.0813 0x0e4c  AdobeFlashPlayerUpdateSvc - ok
21:23:42.0850 0x0e4c  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:23:42.0876 0x0e4c  adp94xx - ok
21:23:42.0951 0x0e4c  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:23:43.0017 0x0e4c  adpahci - ok
21:23:43.0040 0x0e4c  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
21:23:43.0054 0x0e4c  adpu160m - ok
21:23:43.0080 0x0e4c  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:23:43.0095 0x0e4c  adpu320 - ok
21:23:43.0154 0x0e4c  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:23:43.0174 0x0e4c  AeLookupSvc - ok
21:23:43.0237 0x0e4c  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
21:23:43.0278 0x0e4c  AFD - ok
21:23:43.0302 0x0e4c  [ EFBC44FBD75E4F80BD927AEBF6E7EADE, 0A1ACFE5D007DF8ABB97081C93111A1F18D90CB34093CD5784588971BFE86AE7 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
21:23:43.0328 0x0e4c  AgereModemAudio - ok
21:23:43.0424 0x0e4c  [ 1CFEBA39FC613E45B49D3EDDFBCDA289, 15E8102FD9C50DBC16DDC523FC9C17DBE21F2C5C4E081C54901379C0D99277AA ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
21:23:43.0471 0x0e4c  AgereSoftModem - ok
21:23:43.0547 0x0e4c  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:23:43.0558 0x0e4c  agp440 - ok
21:23:43.0609 0x0e4c  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
21:23:43.0619 0x0e4c  aic78xx - ok
21:23:43.0689 0x0e4c  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
21:23:43.0716 0x0e4c  ALG - ok
21:23:43.0735 0x0e4c  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys
21:23:43.0745 0x0e4c  aliide - ok
21:23:43.0765 0x0e4c  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
21:23:43.0777 0x0e4c  amdagp - ok
21:23:43.0797 0x0e4c  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys
21:23:43.0808 0x0e4c  amdide - ok
21:23:43.0819 0x0e4c  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
21:23:43.0840 0x0e4c  AmdK7 - ok
21:23:43.0873 0x0e4c  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:23:43.0895 0x0e4c  AmdK8 - ok
21:23:43.0942 0x0e4c  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
21:23:43.0961 0x0e4c  Appinfo - ok
21:23:44.0023 0x0e4c  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:23:44.0033 0x0e4c  Apple Mobile Device - ok
21:23:44.0082 0x0e4c  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys
21:23:44.0095 0x0e4c  arc - ok
21:23:44.0120 0x0e4c  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:23:44.0133 0x0e4c  arcsas - ok
21:23:44.0162 0x0e4c  [ 2EEDA27C19259C2340324EF7180D086B, 5426BF8EED7F87CEEA4D3EE1E721305A3703B0C490E01DE97DE5AFA0003C93D6 ] ASBroker        C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
21:23:44.0168 0x0e4c  ASBroker - detected UnsignedFile.Multi.Generic ( 1 )
21:23:44.0228 0x0e4c  ASBroker ( UnsignedFile.Multi.Generic ) - warning
21:23:44.0228 0x0e4c  Force sending object to P2P due to detect: C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
21:23:55.0293 0x0e4c  Object send P2P result: true
21:23:55.0574 0x0e4c  [ BB3C0521ECCA4BB17AC55EB640DF0FA5, 125B285960B45E0384EB1770B10488BEBB87F6CD1785EA83C0C24CDD9B9EDEAF ] ASChannel       C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
21:23:55.0574 0x0e4c  ASChannel - detected UnsignedFile.Multi.Generic ( 1 )
21:23:55.0574 0x0e4c  ASChannel ( UnsignedFile.Multi.Generic ) - warning
21:23:55.0574 0x0e4c  Force sending object to P2P due to detect: C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
21:24:07.0742 0x0e4c  Object send P2P result: true
21:24:08.0428 0x0e4c  [ 5A055A4777CBBC8845DD598CB2EEBF69, AF58FF2D58DA807869531A645ED4AD078FC411554EE18366949D27FF0C28829D ] ASLDRService    C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
21:24:08.0428 0x0e4c  ASLDRService - detected UnsignedFile.Multi.Generic ( 1 )
21:24:08.0428 0x0e4c  ASLDRService ( UnsignedFile.Multi.Generic ) - warning
21:24:08.0428 0x0e4c  Force sending object to P2P due to detect: C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
21:24:16.0025 0x0e4c  Object send P2P result: true
21:24:16.0259 0x0e4c  [ 7B4D08D2017AC06689D422E06C43F0AA, 42BACCEA0FCEB60B79F78098163147A8DD1DED24CB2F0DBB93EDC07DAB66135C ] ASMMAP          C:\Program Files\ATKGFNEX\ASMMAP.sys
21:24:16.0275 0x0e4c  ASMMAP - ok
21:24:16.0368 0x0e4c  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:24:16.0446 0x0e4c  aspnet_state - ok
21:24:16.0446 0x0e4c  ASUSProcObsrv - ok
21:24:16.0478 0x0e4c  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:24:16.0493 0x0e4c  AsyncMac - ok
21:24:16.0509 0x0e4c  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
21:24:16.0524 0x0e4c  atapi - ok
21:24:16.0556 0x0e4c  [ 7C157574A181B19B9DCF5F339E25337E, 7CA78363CD420BFE4BFE9A38683CA9E31023AC573D9092666CDAEE6AF4998B60 ] ATKGFNEXSrv     C:\Program Files\ATKGFNEX\GFNEXSrv.exe
21:24:16.0556 0x0e4c  ATKGFNEXSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:24:16.0556 0x0e4c  ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
21:24:16.0805 0x0e4c  [ F0D933B42CD0594048E4D5200AE9E417, FF53E843A99948568515964C3C97107FA875BBC3F2906BADEE0B29ACE5532F0D ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
21:24:16.0821 0x0e4c  atksgt - ok
21:24:16.0868 0x0e4c  [ F70D2392158CB68E775F8C4CD3D12FBB, C4D8274D34CFAD1DA9166C35BA41E063B9A085834E014A014E17A26C7DD216DE ] ATSWPDRV        C:\Windows\system32\DRIVERS\ATSwpDrv.sys
21:24:16.0883 0x0e4c  ATSWPDRV - ok
21:24:16.0899 0x0e4c  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:24:16.0930 0x0e4c  AudioEndpointBuilder - ok
21:24:16.0946 0x0e4c  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:24:16.0961 0x0e4c  Audiosrv - ok
21:24:17.0055 0x0e4c  [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] AVP             C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:24:17.0070 0x0e4c  AVP - ok
21:24:17.0102 0x0e4c  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:24:17.0117 0x0e4c  Beep - ok
21:24:17.0164 0x0e4c  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
21:24:17.0195 0x0e4c  BFE - ok
21:24:17.0289 0x0e4c  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
21:24:17.0336 0x0e4c  BITS - ok
21:24:17.0382 0x0e4c  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:24:17.0414 0x0e4c  blbdrive - ok
21:24:17.0476 0x0e4c  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:24:17.0492 0x0e4c  Bonjour Service - ok
21:24:17.0538 0x0e4c  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:24:17.0601 0x0e4c  bowser - ok
21:24:17.0616 0x0e4c  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
21:24:17.0648 0x0e4c  BrFiltLo - ok
21:24:17.0663 0x0e4c  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
21:24:17.0679 0x0e4c  BrFiltUp - ok
21:24:17.0694 0x0e4c  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
21:24:17.0726 0x0e4c  Browser - ok
21:24:17.0804 0x0e4c  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
21:24:17.0850 0x0e4c  Brserid - ok
21:24:17.0882 0x0e4c  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
21:24:17.0913 0x0e4c  BrSerWdm - ok
21:24:17.0944 0x0e4c  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
21:24:18.0038 0x0e4c  BrUsbMdm - ok
21:24:18.0069 0x0e4c  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
21:24:18.0100 0x0e4c  BrUsbSer - ok
21:24:18.0131 0x0e4c  [ 6D39C954799B63BA866910234CF7D726, 1D807C3410C01C76E5810D626F23C1CCED3C9C5A65F39267B770C494C8D64114 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
21:24:18.0162 0x0e4c  BthEnum - ok
21:24:18.0162 0x0e4c  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:24:18.0209 0x0e4c  BTHMODEM - ok
21:24:18.0225 0x0e4c  [ 5904EFA25F829BF84EA6FB045134A1D8, 66E4160CC404744576BA6E9DD606B533F42B3D4A3E2FDD457DAA016CC72A81CC ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
21:24:18.0256 0x0e4c  BthPan - ok
21:24:18.0287 0x0e4c  [ 611FF3F2F095C8D4A6D4CFD9DCC09793, 2F27A1287ABCDB9C316EB720D1855100666240959CF969D5B2679C9ABCBD6050 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
21:24:18.0334 0x0e4c  BTHPORT - ok
21:24:18.0365 0x0e4c  [ A4C8377FA4A994E07075107DBE2E3DCE, C3CDAA7B83D130100044341C23897CC6C257FA075A8D08B8551F4A28AE8CE6C4 ] BthServ         C:\Windows\System32\bthserv.dll
21:24:18.0381 0x0e4c  BthServ - ok
21:24:18.0428 0x0e4c  [ D330803EAB2A15CAEC7F011F1D4CB30E, 240FFF317C90AD8966DA9666F2748F98CEC3CB99C486F399D1C68FE0E393EE68 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
21:24:18.0428 0x0e4c  BTHUSB - ok
21:24:18.0459 0x0e4c  [ F2F7342742180D5060285499DEE50F99, 48EEDB0BEE52924E5FA3BE4FF21058C6FDB5987486A5AF138453F186AB3FD2C1 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
21:24:18.0474 0x0e4c  btwaudio - ok
21:24:18.0506 0x0e4c  [ 32F59F26A30CFC508DA11DB3EA0F8B77, 0B8B2B8799891D783AF1C3D84F4D86BE3235865CF639AF131249661FD9E610B9 ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
21:24:18.0506 0x0e4c  btwavdt - ok
21:24:18.0552 0x0e4c  [ 09CB316DB9D61ED9FC9A7B07A1A301F6, BCB2750469F6A9980A1A32FB883BE67FEB9C82FA17A36C27C55A8D28E0D5D0EC ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:24:18.0584 0x0e4c  btwdins - ok
21:24:18.0599 0x0e4c  [ ECB98391C756A7B9CFBAE89D9D1235E1, 0A639D2187BDCD64320A7FB72627ED8AF2AF7CC8AAEF6E0991BDEF28BA080442 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
21:24:18.0599 0x0e4c  btwl2cap - ok
21:24:18.0646 0x0e4c  [ 03658734EF7D0F3B3F4636D3E8A38964, 514E42B4D13A740BD8125E9947D9B9ADC3A2DDA5AF4F0CC07B515839E9F3848A ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
21:24:18.0662 0x0e4c  btwrchid - ok
21:24:18.0677 0x0e4c  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:24:18.0708 0x0e4c  cdfs - ok
21:24:18.0724 0x0e4c  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:24:18.0740 0x0e4c  cdrom - ok
21:24:18.0755 0x0e4c  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
21:24:18.0771 0x0e4c  CertPropSvc - ok
21:24:18.0802 0x0e4c  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:24:18.0818 0x0e4c  circlass - ok
21:24:18.0849 0x0e4c  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
21:24:18.0864 0x0e4c  CLFS - ok
21:24:18.0911 0x0e4c  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:24:18.0911 0x0e4c  clr_optimization_v2.0.50727_32 - ok
21:24:18.0942 0x0e4c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:24:18.0958 0x0e4c  clr_optimization_v4.0.30319_32 - ok
21:24:18.0958 0x0e4c  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:24:19.0036 0x0e4c  CmBatt - ok
21:24:19.0052 0x0e4c  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:24:19.0067 0x0e4c  cmdide - ok
21:24:19.0083 0x0e4c  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:24:19.0098 0x0e4c  Compbatt - ok
21:24:19.0098 0x0e4c  COMSysApp - ok
21:24:19.0114 0x0e4c  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:24:19.0114 0x0e4c  crcdisk - ok
21:24:19.0145 0x0e4c  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
21:24:19.0161 0x0e4c  Crusoe - ok
21:24:19.0192 0x0e4c  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:24:19.0223 0x0e4c  CryptSvc - ok
21:24:19.0254 0x0e4c  [ 699CE24FE6B5120AF709A0B91582A02D, CADD9583A3A728F8E71C67F00EF24435DA689CF35434693B0BBA99367B4A8BA0 ] DCamUSBET       C:\Windows\system32\DRIVERS\etDevice.sys
21:24:19.0286 0x0e4c  DCamUSBET - ok
21:24:19.0317 0x0e4c  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:24:19.0364 0x0e4c  DcomLaunch - ok
21:24:19.0395 0x0e4c  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:24:19.0426 0x0e4c  DfsC - ok
21:24:19.0520 0x0e4c  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
21:24:19.0878 0x0e4c  DFSR - ok
21:24:19.0956 0x0e4c  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
21:24:19.0988 0x0e4c  Dhcp - ok
21:24:20.0034 0x0e4c  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
21:24:20.0050 0x0e4c  disk - ok
21:24:20.0066 0x0e4c  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:24:20.0097 0x0e4c  Dnscache - ok
21:24:20.0112 0x0e4c  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
21:24:20.0144 0x0e4c  dot3svc - ok
21:24:20.0159 0x0e4c  [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
21:24:20.0190 0x0e4c  Dot4 - ok
21:24:20.0206 0x0e4c  [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:24:20.0237 0x0e4c  Dot4Print - ok
21:24:20.0253 0x0e4c  [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
21:24:20.0268 0x0e4c  dot4usb - ok
21:24:20.0300 0x0e4c  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
21:24:20.0331 0x0e4c  DPS - ok
21:24:20.0346 0x0e4c  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:24:20.0378 0x0e4c  drmkaud - ok
21:24:20.0424 0x0e4c  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:24:20.0471 0x0e4c  DXGKrnl - ok
21:24:20.0487 0x0e4c  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
21:24:20.0502 0x0e4c  E1G60 - ok
21:24:20.0518 0x0e4c  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
21:24:20.0534 0x0e4c  EapHost - ok
21:24:20.0565 0x0e4c  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
21:24:20.0580 0x0e4c  Ecache - ok
21:24:20.0643 0x0e4c  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:24:20.0674 0x0e4c  ehRecvr - ok
21:24:20.0705 0x0e4c  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
21:24:20.0721 0x0e4c  ehSched - ok
21:24:20.0721 0x0e4c  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
21:24:20.0736 0x0e4c  ehstart - ok
21:24:20.0768 0x0e4c  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:24:20.0783 0x0e4c  elxstor - ok
21:24:20.0830 0x0e4c  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
21:24:20.0892 0x0e4c  EMDMgmt - ok
21:24:20.0924 0x0e4c  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
         

Alt 01.04.2014, 15:45   #7
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Und hier ist der letzte Teil:

Code:
ATTFilter
21:24:20.0939 0x0e4c  ErrDev - ok
21:24:20.0970 0x0e4c  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
21:24:20.0986 0x0e4c  EventSystem - ok
21:24:21.0033 0x0e4c  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:24:21.0048 0x0e4c  exfat - ok
21:24:21.0080 0x0e4c  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:24:21.0111 0x0e4c  fastfat - ok
21:24:21.0111 0x0e4c  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:24:21.0142 0x0e4c  fdc - ok
21:24:21.0158 0x0e4c  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
21:24:21.0189 0x0e4c  fdPHost - ok
21:24:21.0204 0x0e4c  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:24:21.0236 0x0e4c  FDResPub - ok
21:24:21.0236 0x0e4c  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:24:21.0251 0x0e4c  FileInfo - ok
21:24:21.0282 0x0e4c  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:24:21.0298 0x0e4c  Filetrace - ok
21:24:21.0329 0x0e4c  [ FD7CB14845A7F91BE11F80635B2CD8A6, CBAAE671814281AE305C47A06D23B3E1C54B0BCFFDA7CF092F0B1C198CFF51A8 ] FiltUSBET       C:\Windows\system32\DRIVERS\etFilter.sys
21:24:21.0345 0x0e4c  FiltUSBET - ok
21:24:21.0392 0x0e4c  [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:24:21.0423 0x0e4c  FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
21:24:21.0423 0x0e4c  FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
21:24:21.0641 0x0e4c  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:24:21.0672 0x0e4c  flpydisk - ok
21:24:21.0704 0x0e4c  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:24:21.0719 0x0e4c  FltMgr - ok
21:24:21.0844 0x0e4c  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
21:24:21.0906 0x0e4c  FontCache - ok
21:24:21.0984 0x0e4c  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:24:22.0000 0x0e4c  FontCache3.0.0.0 - ok
21:24:22.0062 0x0e4c  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:24:22.0094 0x0e4c  Fs_Rec - ok
21:24:22.0125 0x0e4c  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:24:22.0140 0x0e4c  gagp30kx - ok
21:24:22.0172 0x0e4c  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:24:22.0172 0x0e4c  GEARAspiWDM - ok
21:24:22.0203 0x0e4c  [ 31B40F40E09513ADDC460F6A297AD474, C3A2A29E32F07BA6534380DE5A1EA7EFCB39B288B9541696DA65FA20DE20AFC4 ] ghaio           C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:24:22.0218 0x0e4c  ghaio - ok
21:24:22.0250 0x0e4c  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
21:24:22.0296 0x0e4c  gpsvc - ok
21:24:22.0374 0x0e4c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:24:22.0390 0x0e4c  gupdate - ok
21:24:22.0390 0x0e4c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:24:22.0406 0x0e4c  gupdatem - ok
21:24:22.0437 0x0e4c  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:24:22.0484 0x0e4c  HdAudAddService - ok
21:24:22.0515 0x0e4c  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:24:22.0562 0x0e4c  HDAudBus - ok
21:24:22.0608 0x0e4c  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:24:22.0640 0x0e4c  HidBth - ok
21:24:22.0671 0x0e4c  [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
21:24:22.0686 0x0e4c  HidIr - ok
21:24:22.0702 0x0e4c  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\system32\hidserv.dll
21:24:22.0718 0x0e4c  hidserv - ok
21:24:22.0733 0x0e4c  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:24:22.0749 0x0e4c  HidUsb - ok
21:24:22.0764 0x0e4c  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:24:22.0780 0x0e4c  hkmsvc - ok
21:24:22.0811 0x0e4c  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
21:24:22.0827 0x0e4c  HpCISSs - ok
21:24:22.0920 0x0e4c  [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:24:22.0936 0x0e4c  hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
21:24:22.0936 0x0e4c  hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
21:24:23.0154 0x0e4c  [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:24:23.0170 0x0e4c  hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
21:24:23.0170 0x0e4c  hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
21:24:23.0404 0x0e4c  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:24:23.0466 0x0e4c  HTTP - ok
21:24:23.0513 0x0e4c  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
21:24:23.0529 0x0e4c  i2omp - ok
21:24:23.0529 0x0e4c  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:24:23.0544 0x0e4c  i8042prt - ok
21:24:23.0592 0x0e4c  [ 80C633722DA72E97F3F5B3B11325696D, 1255DC28801438E21AA9D3EAE6F40A9625FCEA99709A7ABCBBEA906DB34AFB6C ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
21:24:23.0592 0x0e4c  iaStor - ok
21:24:23.0623 0x0e4c  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
21:24:23.0639 0x0e4c  iaStorV - ok
21:24:23.0717 0x0e4c  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:24:23.0764 0x0e4c  idsvc - ok
21:24:23.0811 0x0e4c  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:24:23.0811 0x0e4c  iirsp - ok
21:24:23.0904 0x0e4c  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:24:23.0935 0x0e4c  IKEEXT - ok
21:24:24.0060 0x0e4c  [ 58072F5FD95ECE78F9FA7BDA1210A9E7, 2AC11995689239C861763EC665C7EF6CA37CFAFD6893AEB3296B77F3D70B9E82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:24:24.0216 0x0e4c  IntcAzAudAddService - ok
21:24:24.0294 0x0e4c  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
21:24:24.0310 0x0e4c  intelide - ok
21:24:24.0325 0x0e4c  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:24:24.0357 0x0e4c  intelppm - ok
21:24:24.0372 0x0e4c  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:24:24.0403 0x0e4c  IPBusEnum - ok
21:24:24.0419 0x0e4c  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:24:24.0435 0x0e4c  IpFilterDriver - ok
21:24:24.0466 0x0e4c  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:24:24.0481 0x0e4c  iphlpsvc - ok
21:24:24.0497 0x0e4c  IpInIp - ok
21:24:24.0497 0x0e4c  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
21:24:24.0528 0x0e4c  IPMIDRV - ok
21:24:24.0544 0x0e4c  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
21:24:24.0560 0x0e4c  IPNAT - ok
21:24:24.0623 0x0e4c  [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:24:24.0654 0x0e4c  iPod Service - ok
21:24:24.0670 0x0e4c  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:24:24.0701 0x0e4c  IRENUM - ok
21:24:24.0732 0x0e4c  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:24:24.0732 0x0e4c  isapnp - ok
21:24:24.0763 0x0e4c  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:24:24.0779 0x0e4c  iScsiPrt - ok
21:24:24.0810 0x0e4c  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
21:24:24.0810 0x0e4c  iteatapi - ok
21:24:24.0826 0x0e4c  [ 8BCD857C7932AD005D5F9C89329DA2E1, B2091CEA5D3D0D06E49D71E7D40E993D5653A0D8F5DC5CE5C9CEFB1242887E0D ] itecir          C:\Windows\system32\DRIVERS\itecir.sys
21:24:24.0857 0x0e4c  itecir - ok
21:24:24.0857 0x0e4c  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
21:24:24.0872 0x0e4c  iteraid - ok
21:24:24.0888 0x0e4c  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:24:24.0888 0x0e4c  kbdclass - ok
21:24:24.0919 0x0e4c  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:24:24.0935 0x0e4c  kbdhid - ok
21:24:24.0950 0x0e4c  [ 27BD4AC228EF6C0D490617C32E86A672, A2259B4E78AE5D3158B0FC4F3694EEF9825B9FF782F09ED828E80E7B23E07D16 ] kbfiltr         C:\Windows\system32\DRIVERS\kbfiltr.sys
21:24:24.0950 0x0e4c  kbfiltr - ok
21:24:24.0966 0x0e4c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
21:24:24.0997 0x0e4c  KeyIso - ok
21:24:25.0028 0x0e4c  [ 871C226234A48C24DFE7478F36C0050C, 657CAB49387E0E40311D4DEC93D9860B2DAC2C05F223698CFA2F9BB50B5F3022 ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
21:24:25.0044 0x0e4c  kl1 - ok
21:24:25.0075 0x0e4c  [ 8C547EB6709BF41E0625EFCDF13C63CE, ECD36806745748D110964C8D332D5FED235C5423885A6E33C733568AEC15FD80 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
21:24:25.0153 0x0e4c  KLIF - ok
21:24:25.0169 0x0e4c  [ 039FB019C92A16A54FE527D93B0CFB96, 080897B377511FD2439EB651086390CD72B822E8222C79AB0569FAFAA14BA0AE ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
21:24:25.0169 0x0e4c  KLIM6 - ok
21:24:25.0200 0x0e4c  [ 249A266AF74ADE44AE8424E78D145E09, 2D83543DFD9E3C1060E231D776E1755E2041CFD0245139C2041D560956165C0E ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
21:24:25.0216 0x0e4c  klkbdflt - ok
21:24:25.0231 0x0e4c  [ 035724BA6D5676B76FD3AFB66AB4F1E3, 81B30112B96DD3E7250420EEFF2ACECD424A2BE155E83C44434321CEA7DBE117 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
21:24:25.0231 0x0e4c  klmouflt - ok
21:24:25.0247 0x0e4c  [ 8FD802F86D4AB3FB329B8E51517BFF2A, 321750DC0C664FE5580C855D7B70AC74753DDD881F0C4482A2B4505BB2D88345 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
21:24:25.0262 0x0e4c  kltdi - ok
21:24:25.0278 0x0e4c  [ 8F932DF10408BCABA2FCF6163C843F8E, 26BB4E2A2562CF6C687EC9F61C7B3C80992C1D57C47BBAEA8ED2AB6643A91C0E ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
21:24:25.0294 0x0e4c  kneps - ok
21:24:25.0340 0x0e4c  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:24:25.0356 0x0e4c  KSecDD - ok
21:24:25.0387 0x0e4c  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:24:25.0434 0x0e4c  KtmRm - ok
21:24:25.0465 0x0e4c  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:24:25.0481 0x0e4c  LanmanServer - ok
21:24:25.0512 0x0e4c  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:24:25.0543 0x0e4c  LanmanWorkstation - ok
21:24:25.0574 0x0e4c  [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
21:24:25.0574 0x0e4c  lirsgt - ok
21:24:25.0607 0x0e4c  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:24:25.0622 0x0e4c  lltdio - ok
21:24:25.0653 0x0e4c  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:24:25.0716 0x0e4c  lltdsvc - ok
21:24:25.0747 0x0e4c  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:24:25.0872 0x0e4c  lmhosts - ok
21:24:25.0887 0x0e4c  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:24:25.0903 0x0e4c  LSI_FC - ok
21:24:25.0919 0x0e4c  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:24:25.0934 0x0e4c  LSI_SAS - ok
21:24:25.0950 0x0e4c  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:24:25.0965 0x0e4c  LSI_SCSI - ok
21:24:25.0997 0x0e4c  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:24:26.0012 0x0e4c  luafv - ok
21:24:26.0043 0x0e4c  [ 8039F480C192DD99FED4EBC71FFBF795, D02A1E4AAD5413B8F154E21C5B2C8FDD18F10A01197F44792BBDC1651E06F2A8 ] lullaby         C:\Windows\system32\DRIVERS\lullaby.sys
21:24:26.0059 0x0e4c  lullaby - ok
21:24:26.0075 0x0e4c  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:24:26.0090 0x0e4c  Mcx2Svc - ok
21:24:26.0121 0x0e4c  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys
21:24:26.0137 0x0e4c  megasas - ok
21:24:26.0153 0x0e4c  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
21:24:26.0184 0x0e4c  MegaSR - ok
21:24:26.0246 0x0e4c  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
21:24:26.0262 0x0e4c  MMCSS - ok
21:24:26.0277 0x0e4c  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
21:24:26.0309 0x0e4c  Modem - ok
21:24:26.0324 0x0e4c  [ CBB59C41F19EFEA1A000793E08070A62, 4C3C01210DF9D00C05FA14FF5CEFB60C444CAEBFF3F49409EDE434D63F19B9F2 ] MODEMCSA        C:\Windows\system32\drivers\MODEMCSA.sys
21:24:26.0355 0x0e4c  MODEMCSA - ok
21:24:26.0371 0x0e4c  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:24:26.0387 0x0e4c  monitor - ok
21:24:26.0402 0x0e4c  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:24:26.0418 0x0e4c  mouclass - ok
21:24:26.0433 0x0e4c  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:24:26.0465 0x0e4c  mouhid - ok
21:24:26.0465 0x0e4c  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
21:24:26.0480 0x0e4c  MountMgr - ok
21:24:26.0543 0x0e4c  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:24:26.0558 0x0e4c  MozillaMaintenance - ok
21:24:26.0574 0x0e4c  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:24:26.0589 0x0e4c  mpio - ok
21:24:26.0590 0x0e4c  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:24:26.0622 0x0e4c  mpsdrv - ok
21:24:26.0653 0x0e4c  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:24:26.0684 0x0e4c  MpsSvc - ok
21:24:26.0715 0x0e4c  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
21:24:26.0731 0x0e4c  Mraid35x - ok
21:24:26.0762 0x0e4c  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:24:26.0778 0x0e4c  MRxDAV - ok
21:24:26.0824 0x0e4c  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:24:26.0840 0x0e4c  mrxsmb - ok
21:24:26.0856 0x0e4c  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:24:26.0871 0x0e4c  mrxsmb10 - ok
21:24:26.0871 0x0e4c  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:24:26.0887 0x0e4c  mrxsmb20 - ok
21:24:26.0918 0x0e4c  [ DE77526BDE93142BDC90CFA9F5CEAD36, 783A6991982C077D8C3218E507CE098F6112809282633B0280E1228115572153 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:24:26.0918 0x0e4c  msahci - ok
21:24:26.0949 0x0e4c  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:24:26.0965 0x0e4c  msdsm - ok
21:24:26.0980 0x0e4c  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
21:24:27.0012 0x0e4c  MSDTC - ok
21:24:27.0027 0x0e4c  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:24:27.0043 0x0e4c  Msfs - ok
21:24:27.0058 0x0e4c  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:24:27.0074 0x0e4c  msisadrv - ok
21:24:27.0090 0x0e4c  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:24:27.0121 0x0e4c  MSiSCSI - ok
21:24:27.0121 0x0e4c  msiserver - ok
21:24:27.0152 0x0e4c  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:24:27.0168 0x0e4c  MSKSSRV - ok
21:24:27.0183 0x0e4c  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:24:27.0199 0x0e4c  MSPCLOCK - ok
21:24:27.0214 0x0e4c  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:24:27.0246 0x0e4c  MSPQM - ok
21:24:27.0261 0x0e4c  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:24:27.0277 0x0e4c  MsRPC - ok
21:24:27.0292 0x0e4c  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:24:27.0292 0x0e4c  mssmbios - ok
21:24:27.0308 0x0e4c  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:24:27.0324 0x0e4c  MSTEE - ok
21:24:27.0370 0x0e4c  [ 97AFFA9D95FFE20EEE6229BC6BE166CF, 6E13230AF96A3A5C518EFA21B9B1833E3DE9D6DA05A6E664E305EF18B162E1B9 ] MTsensor        C:\Windows\system32\DRIVERS\ATKACPI.sys
21:24:27.0386 0x0e4c  MTsensor - ok
21:24:27.0402 0x0e4c  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:24:27.0417 0x0e4c  Mup - ok
21:24:27.0448 0x0e4c  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
21:24:27.0480 0x0e4c  napagent - ok
21:24:27.0511 0x0e4c  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:24:27.0526 0x0e4c  NativeWifiP - ok
21:24:27.0542 0x0e4c  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:24:27.0573 0x0e4c  NDIS - ok
21:24:27.0589 0x0e4c  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:24:27.0605 0x0e4c  NdisTapi - ok
21:24:27.0637 0x0e4c  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:24:27.0652 0x0e4c  Ndisuio - ok
21:24:27.0668 0x0e4c  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:24:27.0683 0x0e4c  NdisWan - ok
21:24:27.0683 0x0e4c  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:24:27.0715 0x0e4c  NDProxy - ok
21:24:27.0730 0x0e4c  [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:24:27.0746 0x0e4c  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:24:27.0746 0x0e4c  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:24:27.0980 0x0e4c  [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl.sys
21:24:27.0995 0x0e4c  Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
21:24:27.0995 0x0e4c  Netaapl ( UnsignedFile.Multi.Generic ) - warning
21:24:28.0214 0x0e4c  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:24:28.0245 0x0e4c  NetBIOS - ok
21:24:28.0245 0x0e4c  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
21:24:28.0276 0x0e4c  netbt - ok
21:24:28.0276 0x0e4c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
21:24:28.0292 0x0e4c  Netlogon - ok
21:24:28.0323 0x0e4c  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
21:24:28.0354 0x0e4c  Netman - ok
21:24:28.0385 0x0e4c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:24:28.0401 0x0e4c  NetMsmqActivator - ok
21:24:28.0417 0x0e4c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:24:28.0432 0x0e4c  NetPipeActivator - ok
21:24:28.0463 0x0e4c  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
21:24:28.0479 0x0e4c  netprofm - ok
21:24:28.0495 0x0e4c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:24:28.0510 0x0e4c  NetTcpActivator - ok
21:24:28.0510 0x0e4c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:24:28.0526 0x0e4c  NetTcpPortSharing - ok
21:24:28.0697 0x0e4c  [ F0C42E0CDCE558D658FA53A222B4CCB1, 50AC8D9CCFB319EC03AB0F6AC2F70ED2EF3D746B8A8C7CC7A0606B592A3042DC ] NETw5v32        C:\Windows\system32\DRIVERS\NETw5v32.sys
21:24:28.0931 0x0e4c  NETw5v32 - ok
21:24:28.0963 0x0e4c  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:24:28.0978 0x0e4c  nfrd960 - ok
21:24:28.0994 0x0e4c  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:24:29.0025 0x0e4c  NlaSvc - ok
21:24:29.0056 0x0e4c  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:24:29.0072 0x0e4c  Npfs - ok
21:24:29.0072 0x0e4c  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
21:24:29.0103 0x0e4c  nsi - ok
21:24:29.0103 0x0e4c  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:24:29.0119 0x0e4c  nsiproxy - ok
21:24:29.0197 0x0e4c  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:24:29.0243 0x0e4c  Ntfs - ok
21:24:29.0243 0x0e4c  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
21:24:29.0290 0x0e4c  ntrigdigi - ok
21:24:29.0321 0x0e4c  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
21:24:29.0337 0x0e4c  Null - ok
21:24:29.0368 0x0e4c  [ 77F9F9A199B87FE3F852E12F5419240B, BE9C05F2AC12BB41EC71A596039F2116E5A0F454D32E5A618112296721001473 ] NVHDA           C:\Windows\system32\drivers\nvhda32v.sys
21:24:29.0384 0x0e4c  NVHDA - ok
21:24:29.0696 0x0e4c  [ C1E661888C719FC2E12C057F233FB238, FAC74D6644686F3A6CC4852BFC0EC1AD36212F6E45F466CDEF9A36C2FD23316C ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:24:30.0148 0x0e4c  nvlddmkm - ok
21:24:30.0211 0x0e4c  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:24:30.0226 0x0e4c  nvraid - ok
21:24:30.0242 0x0e4c  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:24:30.0257 0x0e4c  nvstor - ok
21:24:30.0320 0x0e4c  [ 31D7E63B62BC4680B5D1358F91DA104E, 8DF37F4AD73CBA597783E272603C17336C48F7BFFD7DDE55B0736F9A52BDFEDB ] nvsvc           C:\Windows\system32\nvvsvc.exe
21:24:30.0367 0x0e4c  nvsvc - ok
21:24:30.0476 0x0e4c  [ 143B429F2D19A0F123ED8E4BCA8DB751, F0CC7D4C6AF1557E70CC6D5C2CD03BBBDBE27B3AC6D95962A8722C75850FF627 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:24:30.0538 0x0e4c  nvUpdatusService - ok
21:24:30.0601 0x0e4c  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:24:30.0616 0x0e4c  nv_agp - ok
21:24:30.0616 0x0e4c  NwlnkFlt - ok
21:24:30.0616 0x0e4c  NwlnkFwd - ok
21:24:30.0632 0x0e4c  [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
21:24:30.0647 0x0e4c  ohci1394 - ok
21:24:30.0694 0x0e4c  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:24:30.0710 0x0e4c  ose - ok
21:24:30.0862 0x0e4c  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:24:31.0088 0x0e4c  osppsvc - ok
21:24:31.0140 0x0e4c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
21:24:31.0226 0x0e4c  p2pimsvc - ok
21:24:31.0262 0x0e4c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:24:31.0294 0x0e4c  p2psvc - ok
21:24:31.0326 0x0e4c  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
21:24:31.0368 0x0e4c  Parport - ok
21:24:31.0397 0x0e4c  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:24:31.0408 0x0e4c  partmgr - ok
21:24:31.0420 0x0e4c  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
21:24:31.0456 0x0e4c  Parvdm - ok
21:24:31.0482 0x0e4c  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:24:31.0496 0x0e4c  PcaSvc - ok
21:24:31.0514 0x0e4c  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
21:24:31.0530 0x0e4c  pci - ok
21:24:31.0554 0x0e4c  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:24:31.0565 0x0e4c  pciide - ok
21:24:31.0583 0x0e4c  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:24:31.0598 0x0e4c  pcmcia - ok
21:24:31.0641 0x0e4c  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:24:31.0701 0x0e4c  PEAUTH - ok
21:24:31.0761 0x0e4c  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
21:24:31.0959 0x0e4c  pla - ok
21:24:32.0003 0x0e4c  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:24:32.0029 0x0e4c  PlugPlay - ok
21:24:32.0054 0x0e4c  [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:24:32.0060 0x0e4c  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:24:32.0060 0x0e4c  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:24:32.0316 0x0e4c  [ 3A2BDD76E7D2A5F40A7174793D1BA794, 029EE2C2F71AEC7906600EEC4F855DC5648C1ECF53F11426079B04591F24D067 ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
21:24:32.0327 0x0e4c  PnkBstrA - ok
21:24:32.0362 0x0e4c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
21:24:32.0393 0x0e4c  PNRPAutoReg - ok
21:24:32.0473 0x0e4c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
21:24:32.0504 0x0e4c  PNRPsvc - ok
21:24:32.0532 0x0e4c  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:24:32.0565 0x0e4c  PolicyAgent - ok
21:24:32.0600 0x0e4c  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:24:32.0630 0x0e4c  PptpMiniport - ok
21:24:32.0647 0x0e4c  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys
21:24:32.0670 0x0e4c  Processor - ok
21:24:32.0705 0x0e4c  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
21:24:32.0729 0x0e4c  ProfSvc - ok
21:24:32.0745 0x0e4c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
21:24:32.0757 0x0e4c  ProtectedStorage - ok
21:24:32.0784 0x0e4c  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
21:24:32.0802 0x0e4c  PSched - ok
21:24:32.0855 0x0e4c  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:24:32.0921 0x0e4c  ql2300 - ok
21:24:32.0965 0x0e4c  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:24:32.0978 0x0e4c  ql40xx - ok
21:24:33.0017 0x0e4c  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
21:24:33.0038 0x0e4c  QWAVE - ok
21:24:33.0047 0x0e4c  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:24:33.0059 0x0e4c  QWAVEdrv - ok
21:24:33.0069 0x0e4c  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:24:33.0090 0x0e4c  RasAcd - ok
21:24:33.0101 0x0e4c  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
21:24:33.0133 0x0e4c  RasAuto - ok
21:24:33.0155 0x0e4c  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:24:33.0179 0x0e4c  Rasl2tp - ok
21:24:33.0216 0x0e4c  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
21:24:33.0244 0x0e4c  RasMan - ok
21:24:33.0268 0x0e4c  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:24:33.0287 0x0e4c  RasPppoe - ok
21:24:33.0302 0x0e4c  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:24:33.0332 0x0e4c  RasSstp - ok
21:24:33.0362 0x0e4c  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:24:33.0384 0x0e4c  rdbss - ok
21:24:33.0407 0x0e4c  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:24:33.0428 0x0e4c  RDPCDD - ok
21:24:33.0459 0x0e4c  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
21:24:33.0488 0x0e4c  rdpdr - ok
21:24:33.0491 0x0e4c  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:24:33.0512 0x0e4c  RDPENCDD - ok
21:24:33.0552 0x0e4c  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:24:33.0588 0x0e4c  RDPWD - ok
21:24:33.0616 0x0e4c  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:24:33.0640 0x0e4c  RemoteAccess - ok
21:24:33.0668 0x0e4c  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:24:33.0690 0x0e4c  RemoteRegistry - ok
21:24:33.0725 0x0e4c  [ 6482707F9F4DA0ECBAB43B2E0398A101, 7D57FC36577121D7E26A4F2D46DCA8725D55EC9F75B91DF994DB742BC4FB89C2 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
21:24:33.0751 0x0e4c  RFCOMM - ok
21:24:33.0772 0x0e4c  [ A5B12A4B3B774432DB9B9FA221190E59, 1DAAB43A2429035BAB8403E5D24F50F82BD41B5B478B344C3C58D49F1E15C2AE ] rimmptsk        C:\Windows\system32\DRIVERS\rimmptsk.sys
21:24:33.0875 0x0e4c  rimmptsk - ok
21:24:33.0892 0x0e4c  [ C398BCA91216755B098679A8DA8A2300, 1FDDC3D927509AB10C3B0B7900DCE78DEC6B1C3CAE80F78EFCFBB628673B2143 ] rimsptsk        C:\Windows\system32\DRIVERS\rimsptsk.sys
21:24:33.0918 0x0e4c  rimsptsk - ok
21:24:33.0935 0x0e4c  [ 2A2554CB24506E0A0508FC395C4A1B42, B989AE65727C971D508E7284707258FCCC9213B510F4C2A257D3069A3DABE20B ] rismxdp         C:\Windows\system32\DRIVERS\rixdptsk.sys
21:24:33.0961 0x0e4c  rismxdp - ok
21:24:33.0986 0x0e4c  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
21:24:33.0998 0x0e4c  RpcLocator - ok
21:24:34.0029 0x0e4c  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
21:24:34.0088 0x0e4c  RpcSs - ok
21:24:34.0107 0x0e4c  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:24:34.0130 0x0e4c  rspndr - ok
21:24:34.0178 0x0e4c  [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
21:24:34.0197 0x0e4c  RTL8169 - ok
21:24:34.0211 0x0e4c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
21:24:34.0224 0x0e4c  SamSs - ok
21:24:34.0254 0x0e4c  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:24:34.0266 0x0e4c  sbp2port - ok
21:24:34.0284 0x0e4c  [ 2393ED056AE02F5DBB3A7D6E40A5FDC2, AC73452C892ABE7B98A0762BC7BD26CD712FF2E899E157F2A5119335E3E41B49 ] ScanUSBET       C:\Windows\system32\DRIVERS\etScan.sys
21:24:34.0308 0x0e4c  ScanUSBET - ok
21:24:34.0336 0x0e4c  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:24:34.0358 0x0e4c  SCardSvr - ok
21:24:34.0421 0x0e4c  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
21:24:34.0484 0x0e4c  Schedule - ok
21:24:34.0546 0x0e4c  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:24:34.0562 0x0e4c  SCPolicySvc - ok
21:24:34.0577 0x0e4c  [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
21:24:34.0609 0x0e4c  sdbus - ok
21:24:34.0624 0x0e4c  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:24:34.0655 0x0e4c  SDRSVC - ok
21:24:34.0828 0x0e4c  [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
21:24:35.0040 0x0e4c  SDScannerService - ok
21:24:35.0134 0x0e4c  [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:24:35.0221 0x0e4c  SDUpdateService - ok
21:24:35.0236 0x0e4c  [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService    C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:24:35.0249 0x0e4c  SDWSCService - ok
21:24:35.0320 0x0e4c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:24:35.0355 0x0e4c  secdrv - ok
21:24:35.0376 0x0e4c  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
21:24:35.0399 0x0e4c  seclogon - ok
21:24:35.0410 0x0e4c  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
21:24:35.0434 0x0e4c  SENS - ok
21:24:35.0452 0x0e4c  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:24:35.0488 0x0e4c  Serenum - ok
21:24:35.0515 0x0e4c  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
21:24:35.0554 0x0e4c  Serial - ok
21:24:35.0575 0x0e4c  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:24:35.0597 0x0e4c  sermouse - ok
21:24:35.0616 0x0e4c  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:24:35.0641 0x0e4c  SessionEnv - ok
21:24:35.0657 0x0e4c  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
21:24:35.0676 0x0e4c  sffdisk - ok
21:24:35.0685 0x0e4c  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:24:35.0707 0x0e4c  sffp_mmc - ok
21:24:35.0730 0x0e4c  [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
21:24:35.0747 0x0e4c  sffp_sd - ok
21:24:35.0762 0x0e4c  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
21:24:35.0784 0x0e4c  sfloppy - ok
21:24:35.0881 0x0e4c  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:24:35.0912 0x0e4c  SharedAccess - ok
21:24:35.0953 0x0e4c  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:24:35.0991 0x0e4c  ShellHWDetection - ok
21:24:36.0011 0x0e4c  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
21:24:36.0023 0x0e4c  sisagp - ok
21:24:36.0037 0x0e4c  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
21:24:36.0049 0x0e4c  SiSRaid2 - ok
21:24:36.0068 0x0e4c  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:24:36.0081 0x0e4c  SiSRaid4 - ok
21:24:36.0231 0x0e4c  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
21:24:36.0465 0x0e4c  slsvc - ok
21:24:36.0543 0x0e4c  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
21:24:36.0558 0x0e4c  SLUINotify - ok
21:24:36.0590 0x0e4c  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:24:36.0605 0x0e4c  Smb - ok
21:24:36.0668 0x0e4c  [ C8A58FC905C9184FA70E37F71060C64D, 3D913E0F7B02EEAC15971DB15608912A96E4FD9BDFBF09E8F8FA4B6390A9B4DE ] smserial        C:\Windows\system32\DRIVERS\smserial.sys
21:24:36.0761 0x0e4c  smserial - ok
21:24:36.0824 0x0e4c  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:24:36.0839 0x0e4c  SNMPTRAP - ok
21:24:36.0855 0x0e4c  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:24:36.0855 0x0e4c  spldr - ok
21:24:36.0886 0x0e4c  [ 739DB668DBD812285ECC553E64A5E212, 08E99CD042232CEB20BB5A808E914C9F2F0C154099BF921BA40E661B08472CF5 ] spmgr           C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
21:24:36.0902 0x0e4c  spmgr - ok
21:24:36.0917 0x0e4c  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
21:24:36.0933 0x0e4c  Spooler - ok
21:24:36.0980 0x0e4c  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:24:36.0995 0x0e4c  srv - ok
21:24:37.0011 0x0e4c  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:24:37.0042 0x0e4c  srv2 - ok
21:24:37.0058 0x0e4c  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:24:37.0073 0x0e4c  srvnet - ok
21:24:37.0120 0x0e4c  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:24:37.0136 0x0e4c  SSDPSRV - ok
21:24:37.0167 0x0e4c  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:24:37.0182 0x0e4c  SstpSvc - ok
21:24:37.0229 0x0e4c  [ 0632004181860960CF6E10DE8DDEF78B, FB4714CB6C795C106C4777835490DC9F68FA656107DDB54A425666BE293FDC0B ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:24:37.0245 0x0e4c  Stereo Service - ok
21:24:37.0292 0x0e4c  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
21:24:37.0323 0x0e4c  stisvc - ok
21:24:37.0338 0x0e4c  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:24:37.0370 0x0e4c  swenum - ok
21:24:37.0416 0x0e4c  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
21:24:37.0448 0x0e4c  swprv - ok
21:24:37.0479 0x0e4c  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
21:24:37.0494 0x0e4c  Symc8xx - ok
21:24:37.0510 0x0e4c  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
21:24:37.0510 0x0e4c  Sym_hi - ok
21:24:37.0541 0x0e4c  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
21:24:37.0557 0x0e4c  Sym_u3 - ok
21:24:37.0588 0x0e4c  [ A59457258DC236F63D6EAC759EF6C08B, C407AF5171A3F2C8F7E1F68E472D4F9E835BDEC50A8E0D4D8F2A6854F2AE0346 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
21:24:37.0588 0x0e4c  SynTP - ok
21:24:37.0635 0x0e4c  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
21:24:37.0682 0x0e4c  SysMain - ok
21:24:37.0728 0x0e4c  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:24:37.0744 0x0e4c  TabletInputService - ok
21:24:37.0775 0x0e4c  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:24:37.0806 0x0e4c  TapiSrv - ok
21:24:37.0838 0x0e4c  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
21:24:37.0869 0x0e4c  TBS - ok
21:24:37.0962 0x0e4c  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:24:37.0994 0x0e4c  Tcpip - ok
21:24:38.0072 0x0e4c  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
21:24:38.0103 0x0e4c  Tcpip6 - ok
21:24:38.0118 0x0e4c  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:24:38.0196 0x0e4c  tcpipreg - ok
21:24:38.0228 0x0e4c  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:24:38.0259 0x0e4c  TDPIPE - ok
21:24:38.0259 0x0e4c  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:24:38.0290 0x0e4c  TDTCP - ok
21:24:38.0321 0x0e4c  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:24:38.0337 0x0e4c  tdx - ok
21:24:38.0368 0x0e4c  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:24:38.0384 0x0e4c  TermDD - ok
21:24:38.0430 0x0e4c  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
21:24:38.0462 0x0e4c  TermService - ok
21:24:38.0524 0x0e4c  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
21:24:38.0540 0x0e4c  Themes - ok
21:24:38.0555 0x0e4c  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
21:24:38.0571 0x0e4c  THREADORDER - ok
21:24:38.0602 0x0e4c  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
21:24:38.0618 0x0e4c  TrkWks - ok
21:24:38.0664 0x0e4c  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:24:38.0680 0x0e4c  TrustedInstaller - ok
21:24:38.0696 0x0e4c  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:24:38.0711 0x0e4c  tssecsrv - ok
21:24:38.0742 0x0e4c  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
21:24:38.0758 0x0e4c  tunmp - ok
21:24:38.0774 0x0e4c  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:24:38.0789 0x0e4c  tunnel - ok
21:24:38.0805 0x0e4c  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:24:38.0820 0x0e4c  uagp35 - ok
21:24:38.0852 0x0e4c  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:24:38.0867 0x0e4c  udfs - ok
21:24:38.0898 0x0e4c  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:24:38.0930 0x0e4c  UI0Detect - ok
21:24:38.0930 0x0e4c  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:24:38.0945 0x0e4c  uliagpkx - ok
21:24:38.0976 0x0e4c  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
21:24:38.0992 0x0e4c  uliahci - ok
21:24:39.0023 0x0e4c  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
21:24:39.0039 0x0e4c  UlSata - ok
21:24:39.0054 0x0e4c  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
21:24:39.0070 0x0e4c  ulsata2 - ok
21:24:39.0086 0x0e4c  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:24:39.0101 0x0e4c  umbus - ok
21:24:39.0132 0x0e4c  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
21:24:39.0164 0x0e4c  upnphost - ok
21:24:39.0210 0x0e4c  [ 8BF5D980CDCE35FB26F05047144BB57E, 8A770DD649FA0D6F574651E5525B983261B823C5778764598D89C453E68ED3F1 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
21:24:39.0210 0x0e4c  USBAAPL - detected UnsignedFile.Multi.Generic ( 1 )
21:24:39.0210 0x0e4c  USBAAPL ( UnsignedFile.Multi.Generic ) - warning
21:24:39.0444 0x0e4c  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:24:39.0460 0x0e4c  usbaudio - ok
21:24:39.0491 0x0e4c  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:24:39.0522 0x0e4c  usbccgp - ok
21:24:39.0554 0x0e4c  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:24:39.0585 0x0e4c  usbcir - ok
21:24:39.0616 0x0e4c  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:24:39.0632 0x0e4c  usbehci - ok
21:24:39.0647 0x0e4c  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:24:39.0663 0x0e4c  usbhub - ok
21:24:39.0678 0x0e4c  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:24:39.0725 0x0e4c  usbohci - ok
21:24:39.0756 0x0e4c  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:24:39.0772 0x0e4c  usbprint - ok
21:24:39.0803 0x0e4c  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
21:24:39.0819 0x0e4c  usbscan - ok
21:24:39.0850 0x0e4c  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:24:39.0866 0x0e4c  USBSTOR - ok
21:24:39.0912 0x0e4c  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:24:39.0928 0x0e4c  usbuhci - ok
21:24:39.0944 0x0e4c  [ E67998E8F14CB0627A769F6530BCB352, 60982F168E9BF13954328C728F55F4D3ADDC572CACB65289B0E895A63DAA08C1 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
21:24:39.0959 0x0e4c  usbvideo - ok
21:24:39.0990 0x0e4c  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
21:24:40.0006 0x0e4c  UxSms - ok
21:24:40.0022 0x0e4c  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
21:24:40.0068 0x0e4c  vds - ok
21:24:40.0115 0x0e4c  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:24:40.0146 0x0e4c  vga - ok
21:24:40.0146 0x0e4c  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:24:40.0162 0x0e4c  VgaSave - ok
21:24:40.0193 0x0e4c  [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
21:24:40.0193 0x0e4c  viaagp - ok
21:24:40.0224 0x0e4c  [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
21:24:40.0240 0x0e4c  ViaC7 - ok
21:24:40.0256 0x0e4c  [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide          C:\Windows\system32\drivers\viaide.sys
21:24:40.0271 0x0e4c  viaide - ok
21:24:40.0271 0x0e4c  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:24:40.0287 0x0e4c  volmgr - ok
21:24:40.0302 0x0e4c  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:24:40.0334 0x0e4c  volmgrx - ok
21:24:40.0349 0x0e4c  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:24:40.0365 0x0e4c  volsnap - ok
21:24:40.0396 0x0e4c  [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:24:40.0396 0x0e4c  vsmraid - ok
21:24:40.0458 0x0e4c  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
21:24:40.0521 0x0e4c  VSS - ok
21:24:40.0583 0x0e4c  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
21:24:40.0614 0x0e4c  W32Time - ok
21:24:40.0630 0x0e4c  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:24:40.0661 0x0e4c  WacomPen - ok
21:24:40.0692 0x0e4c  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
21:24:40.0708 0x0e4c  Wanarp - ok
21:24:40.0708 0x0e4c  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:24:40.0739 0x0e4c  Wanarpv6 - ok
21:24:40.0755 0x0e4c  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:24:40.0802 0x0e4c  wcncsvc - ok
21:24:40.0833 0x0e4c  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:24:40.0864 0x0e4c  WcsPlugInService - ok
21:24:40.0895 0x0e4c  [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd              C:\Windows\system32\drivers\wd.sys
21:24:40.0895 0x0e4c  Wd - ok
21:24:40.0926 0x0e4c  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:24:40.0973 0x0e4c  Wdf01000 - ok
21:24:40.0989 0x0e4c  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:24:41.0004 0x0e4c  WdiServiceHost - ok
21:24:41.0020 0x0e4c  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:24:41.0036 0x0e4c  WdiSystemHost - ok
21:24:41.0067 0x0e4c  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
21:24:41.0082 0x0e4c  WebClient - ok
21:24:41.0114 0x0e4c  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:24:41.0129 0x0e4c  Wecsvc - ok
21:24:41.0160 0x0e4c  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:24:41.0176 0x0e4c  wercplsupport - ok
21:24:41.0207 0x0e4c  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:24:41.0238 0x0e4c  WerSvc - ok
21:24:41.0285 0x0e4c  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
21:24:41.0301 0x0e4c  WinDefend - ok
21:24:41.0316 0x0e4c  WinHttpAutoProxySvc - ok
21:24:41.0348 0x0e4c  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:24:41.0379 0x0e4c  Winmgmt - ok
21:24:41.0426 0x0e4c  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:24:41.0550 0x0e4c  WinRM - ok
21:24:41.0597 0x0e4c  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:24:41.0691 0x0e4c  Wlansvc - ok
21:24:41.0706 0x0e4c  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
21:24:41.0722 0x0e4c  WmiAcpi - ok
21:24:41.0753 0x0e4c  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:24:41.0784 0x0e4c  wmiApSrv - ok
21:24:41.0847 0x0e4c  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
21:24:41.0956 0x0e4c  WMPNetworkSvc - ok
21:24:42.0034 0x0e4c  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:24:42.0050 0x0e4c  WPCSvc - ok
21:24:42.0081 0x0e4c  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:24:42.0096 0x0e4c  WPDBusEnum - ok
21:24:42.0128 0x0e4c  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
21:24:42.0143 0x0e4c  WpdUsb - ok
21:24:42.0221 0x0e4c  [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:24:42.0268 0x0e4c  WPFFontCache_v0400 - ok
21:24:42.0284 0x0e4c  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:24:42.0299 0x0e4c  ws2ifsl - ok
21:24:42.0330 0x0e4c  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\System32\wscsvc.dll
21:24:42.0346 0x0e4c  wscsvc - ok
21:24:42.0346 0x0e4c  WSearch - ok
21:24:42.0440 0x0e4c  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:24:42.0533 0x0e4c  wuauserv - ok
21:24:42.0580 0x0e4c  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:24:42.0596 0x0e4c  WudfPf - ok
21:24:42.0627 0x0e4c  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:24:42.0642 0x0e4c  WUDFRd - ok
21:24:42.0674 0x0e4c  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:24:42.0689 0x0e4c  wudfsvc - ok
21:24:42.0705 0x0e4c  [ 7D1F3B131D503EF43EE594B5A2B9B427, 307DEC572FBC171D68ED098D73CB6F06754F26E51F8F7DB48035A8CF97AB37D0 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
21:24:42.0752 0x0e4c  yukonwlh - ok
21:24:42.0767 0x0e4c  ================ Scan global ===============================
21:24:42.0783 0x0e4c  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
21:24:42.0830 0x0e4c  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:24:42.0861 0x0e4c  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:24:42.0908 0x0e4c  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
21:24:42.0923 0x0e4c  [ Global ] - ok
21:24:42.0923 0x0e4c  ================ Scan MBR ==================================
21:24:42.0939 0x0e4c  [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
21:24:43.0407 0x0e4c  \Device\Harddisk0\DR0 - ok
21:24:43.0719 0x0e4c  [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk1\DR1
21:24:43.0890 0x0e4c  \Device\Harddisk1\DR1 - ok
21:24:43.0890 0x0e4c  ================ Scan VBR ==================================
21:24:43.0890 0x0e4c  [ B5E8C5FD67063E8018CA1B4A2508A485 ] \Device\Harddisk0\DR0\Partition1
21:24:43.0984 0x0e4c  \Device\Harddisk0\DR0\Partition1 - ok
21:24:43.0984 0x0e4c  [ B4F9E8484D792D6D5F37CF57E4F80AE1 ] \Device\Harddisk0\DR0\Partition2
21:24:43.0984 0x0e4c  \Device\Harddisk0\DR0\Partition2 - ok
21:24:43.0984 0x0e4c  [ 6599E8079B52BFC8A1BED094B1D60C87 ] \Device\Harddisk1\DR1\Partition1
21:24:44.0046 0x0e4c  \Device\Harddisk1\DR1\Partition1 - ok
21:24:44.0046 0x0e4c  [ 67175C26A39AEE28EDEBB2BAFA46F08E ] \Device\Harddisk1\DR1\Partition2
21:24:44.0093 0x0e4c  \Device\Harddisk1\DR1\Partition2 - ok
21:24:44.0109 0x0e4c  AV detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
21:24:44.0109 0x0e4c  FW detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmifw.exe ( 13.0.1.4190 ), 0x41010 ( enabled )
21:24:44.0764 0x0e4c  ============================================================
21:24:44.0764 0x0e4c  Scan finished
21:24:44.0764 0x0e4c  ============================================================
21:24:44.0764 0x09e8  Detected object count: 11
21:24:44.0764 0x09e8  Actual detected object count: 11
21:25:14.0144 0x09e8  ASBroker ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0144 0x09e8  ASBroker ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0144 0x09e8  ASChannel ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0144 0x09e8  ASChannel ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  ASLDRService ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  ASLDRService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  Netaapl ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  Netaapl ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
21:25:14.0159 0x09e8  USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8  USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
         
Hier noch das Logfile von mbar:

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org

Database version: v2014.03.31.08

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Hasufel :: HASUFEL-PC [administrator]

31.03.2014 21:32:33
mbar-log-2014-03-31 (21-32-33).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 263947
Time elapsed: 17 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
Vielen Dank für Deine Hilfe und Mühe!!!

LG

Alt 02.04.2014, 11:52   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 02.04.2014, 19:39   #9
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Hey,

hier ist das Logfile:

Code:
ATTFilter
ComboFix 14-03-24.01 - Hasufel 02.04.2014  20:11:01.1.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.49.1031.18.3070.1805 [GMT 2:00]
ausgeführt von:: c:\users\Hasufel\Downloads\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
FW: Kaspersky Internet Security *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
SP: Kaspersky Internet Security *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Common Files\ASPG_icon.ico
c:\windows\msvcr71.dll
c:\windows\wininit.ini
.
Infizierte Kopie von c:\windows\system32\userinit.exe wurde gefunden und desinfiziert 
Kopie von - c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe wurde wiederhergestellt 
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-03-02 bis 2014-04-02  ))))))))))))))))))))))))))))))
.
.
2014-04-01 07:33 . 2014-03-07 04:35	7969936	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{8610321D-882F-4A1C-BEFF-340D02B8A0A8}\mpengine.dll
2014-03-31 19:52 . 2014-03-31 19:52	107224	----a-w-	c:\windows\system32\drivers\48230029.sys
2014-03-31 19:52 . 2014-03-31 19:52	75480	----a-w-	c:\windows\system32\drivers\4B647691.sys
2014-03-31 19:32 . 2014-03-31 19:32	--------	d-----w-	c:\programdata\Malwarebytes
2014-03-31 19:32 . 2014-03-31 20:44	--------	d-----w-	c:\programdata\Malwarebytes' Anti-Malware (portable)
2014-03-31 19:32 . 2014-03-31 19:32	107224	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-03-31 19:30 . 2014-03-31 19:30	75480	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2014-03-31 13:06 . 2014-03-31 13:17	--------	d-----w-	C:\FRST
2014-03-31 12:34 . 2014-03-31 12:34	--------	d-----w-	c:\users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 12:34 . 2014-03-31 12:34	--------	d-----w-	c:\program files\WinZip Malware Protector
2014-03-31 12:34 . 2014-03-31 12:34	--------	d-----w-	c:\programdata\Nico Mak Computing
2014-03-31 12:34 . 2013-03-15 15:01	16384	----a-w-	c:\windows\system32\wsusnative32.exe
2014-03-27 18:59 . 2014-04-02 18:22	--------	d-----w-	c:\program files\Spybot - Search & Destroy 2
2014-03-13 09:05 . 2014-02-07 10:38	2050560	----a-w-	c:\windows\system32\win32k.sys
2014-03-13 09:05 . 2014-02-03 10:37	505344	----a-w-	c:\windows\system32\qedit.dll
2014-03-13 09:05 . 2014-01-30 07:46	876032	----a-w-	c:\windows\system32\wer.dll
2014-03-13 09:05 . 2013-11-13 00:30	2048	----a-w-	c:\windows\system32\tzres.dll
2014-03-06 12:51 . 2014-03-06 12:51	--------	d-----w-	c:\users\Hasufel\AppData\Local\ASUS
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-02 18:23 . 2012-07-16 19:54	45056	----a-w-	c:\windows\system32\acovcnt.exe
2014-03-12 20:58 . 2012-07-24 14:11	71048	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 20:58 . 2012-07-24 14:11	692616	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2014-03-07 17:08 . 2013-03-29 13:01	189248	----a-w-	c:\windows\system32\PnkBstrB.exe
2014-03-07 17:08 . 2013-03-29 13:01	75136	----a-w-	c:\windows\system32\PnkBstrA.exe
2008-07-01 17:28 . 2008-07-01 17:28	61440	----a-w-	c:\program files\Common Files\CPInstallAction.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"="c:\program files\ASUS\ATK Hotkey\HControlUser.exe" [2008-01-11 98304]
"ATKOSD2"="c:\program files\ASUS\ATKOSD2\ATKOSD2.exe" [2008-07-15 7651328]
"RtHDVCpl"="RtHDVCpl.exe" [2008-06-13 6183456]
"CognizanceTS"="c:\progra~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll" [2003-12-21 17920]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMedia.exe" [2008-06-24 159744]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2012-07-16 3054136]
"ASUS Camera ScreenSaver"="c:\windows\AsScrProlog.exe" [2012-07-16 47672]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-11-16 1029416]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2007-05-10 624248]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [2013-10-10 356128]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-4-10 752168]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0\0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Suitcase 11.0.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Suitcase 11.0.lnk
backup=c:\windows\pss\Suitcase 11.0.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^Hasufel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^JL Alpine Advent Calendar.lnk]
path=c:\users\Hasufel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\JL Alpine Advent Calendar.lnk
backup=c:\windows\pss\JL Alpine Advent Calendar.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe_ID0EYTHM]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2012-07-27 13:01	116648	----atw-	c:\users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-10-14 20:17	49152	----a-w-	c:\program files\HP\HP Software Update\hpwuSchd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2013-10-01 00:23	152392	----a-w-	c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerForPhone]
2008-01-25 16:32	778240	----a-w-	c:\program files\P4P\P4P.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
2007-11-20 10:15	1826816	----a-w-	c:\windows\SkyTel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs	REG_MULTI_SZ   	BthServ
Cognizance	REG_MULTI_SZ   	ASBroker ASChannel
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	FontCache
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
.
Inhalt des "geplante Tasks" Ordners
.
2014-04-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-24 20:58]
.
2014-04-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-07-27 12:56]
.
2014-04-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-07-27 12:56]
.
2014-03-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job
- c:\users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-05 13:01]
.
2014-04-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job
- c:\users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-05 13:01]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
mStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: An OneNote s&enden - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: An vorhandenes PDF anfügen - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Auswahl in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Auswahl in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Free YouTube Download - c:\users\Hasufel\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\users\Hasufel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: In Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Verknüpfungsziel in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-SDTray - c:\program files\Spybot - Search & Destroy 2\SDTray.exe
MSConfigStartUp-SpybotSD TeaTimer - c:\program files\Spybot - Search & Destroy\TeaTimer.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2014-04-02 20:25
Windows 6.0.6002 Service Pack 2 NTFS
.
Scanne versteckte Prozesse... 
.
Scanne versteckte Autostarteinträge... 
.
Scanne versteckte Dateien... 
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-4087618416-3944343460-3664847585-1000\Software\SecuROM\License information*]
"datasecu"=hex:92,33,cd,f3,65,6e,9a,9d,29,dd,26,17,47,67,81,4e,7e,a8,dc,29,40,
   a3,a1,69,37,d3,34,b8,ca,58,8c,e8,19,42,e8,0b,8d,26,40,b2,03,d9,f8,b6,0b,cd,\
"rkeysecu"=hex:d8,49,c7,cc,6c,f4,d5,b5,c3,fd,d0,c2,d9,41,ae,6c
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'lsass.exe'(876)
c:\program files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
c:\program files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItMsg.dll
.
- - - - - - - > 'Explorer.exe'(6428)
c:\windows\system32\APSHook.dll
c:\program files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItClient.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
c:\program files\ASUS\ATK Hotkey\ASLDRSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\windows\System32\lpksetup.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\agrsmsvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\ASUS\NB Probe\SPM\spmgr.exe
c:\program files\Kaspersky Lab\Kaspersky Internet Security 2013\wmi32.exe
c:\program files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
c:\program files\WinZip Malware Protector\WinZipMalwareProtector.exe
c:\program files\ASUS\SmartLogon\sensorsrv.exe
c:\program files\ASUS\ATK Hotkey\MsgTranAgt.exe
c:\program files\ASUS\ATK Hotkey\HControl.exe
c:\program files\Wireless Console 2\wcourier.exe
c:\program files\P4G\BatteryLife.exe
c:\program files\ASUS\Splendid\ACMON.exe
c:\program files\ASUS\ASUS CopyProtect\aspg.exe
c:\windows\System32\ACEngSvr.exe
c:\program files\ASUS\ATK Hotkey\ATKOSD.exe
c:\program files\ASUS\ATK Hotkey\KBFiltr.exe
c:\program files\ASUS\ATK Hotkey\WDC.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\system32\conime.exe
c:\program files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-04-02  20:30:04 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-04-02 18:30
.
Vor Suchlauf: 8 Verzeichnis(se), 38.280.192.000 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 38.058.819.584 Bytes frei
.
- - End Of File - - FCFD71C420748EA1E36E02BBD4FE2E5F
64B1E91C5C6C2157642651010728F90F
         
Ist damit der Laptop wieder virenfrei??

LG und vielen vielen Dank!!!

Alt 03.04.2014, 11:13   #10
schrauber
/// the machine
/// TB-Ausbilder
 

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



nee wir haben noch Arbeit.


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 03.04.2014, 21:52   #11
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Hey,

hier die neuen logfiles:

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 03.04.2014
Suchlauf-Zeit: 22:10:07
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.0.1000
Malware Datenbank: v2014.04.03.08
Rootkit Datenbank: v2014.03.27.01
Lizenz: Testversion
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Aktiviert
Chameleon: Deaktiviert

Betriebssystem: Windows Vista Service Pack 2
CPU: x86
Dateisystem: NTFS
Benutzer: Hasufel

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 274591
Verstrichene Zeit: 18 Min, 49 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Shuriken: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)
         
AdwCleaner:

Code:
ATTFilter
# AdwCleaner v3.023 - Bericht erstellt am 03/04/2014 um 22:15:48
# Aktualisiert 01/04/2014 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzername : Hasufel - HASUFEL-PC
# Gestartet von : C:\Users\Hasufel\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Program Files\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Users\Hasufel\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Hasufel\AppData\Roaming\OpenCandy
Datei Gelöscht : C:\Windows\Uninstall.exe

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\Software\DeviceVM

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16540


-\\ Mozilla Firefox v25.0.1 (de)

[ Datei : C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\prefs.js ]


-\\ Google Chrome v

[ Datei : C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1223 octets] - [03/04/2014 22:11:55]
AdwCleaner[S0].txt - [1150 octets] - [03/04/2014 22:15:48]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1210 octets] ##########
         

JRT:

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows Vista (TM) Home Premium x86
Ran by Hasufel on 03.04.2014 at 22:35:42,80
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Hasufel\AppData\Roaming\mozilla\firefox\profiles\1iouri8t.default\minidumps [7 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.04.2014 at 22:39:53,16
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

Und das neue FRST Logfile:



FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01
Ran by Hasufel (administrator) on HASUFEL-PC on 03-04-2014 22:44:22
Running from C:\Users\Hasufel\Downloads
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
() C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe
() C:\Windows\system32\PnkBstrA.exe
() C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe
(Cognizance Corporation) C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
() C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
() C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(Nico Mak Computing) C:\Program Files\WinZip Malware Protector\WinZipMalwareProtector.exe
() C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUS) C:\Windows\AsScrPro.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynAsus.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [98304 2008-01-11] ()
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [7651328 2008-07-15] (ASUS)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6183456 2008-06-13] (Realtek Semiconductor)
HKLM\...\Run: [CognizanceTS] - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASTSVCC.dll [17920 2003-12-21] (Cognizance Corporation)
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [159744 2008-06-24] (ASUS)
HKLM\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3054136 2012-07-16] (ASUS)
HKLM\...\Run: [ASUS Camera ScreenSaver] - C:\Windows\AsScrProlog.exe [47672 2012-07-16] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-11-16] (Synaptics, Inc.)
HKLM\...\Run: [Acrobat Assistant 8.0] - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems Inc.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1001\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hasufel\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll No File
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions:  - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-04-20]

Chrome: 
=======
CHR HomePage: 
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.477_0\plugin/npUrlAdvisor.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.477_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2012-08-05]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-04-20]
CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2013-04-20]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2012-08-05]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-27]
CHR Extension: (Google Wallet) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-04]
CHR Extension: (Anti-Banner) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2012-08-05]
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2012-10-25]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Hasufel\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-27]

========================== Services (Whitelisted) =================

S3 Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [153792 2007-03-20] (Adobe Systems Incorporated)
R2 ASBroker; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [74240 2007-02-06] (Cognizance Corporation)
R2 ASChannel; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll [131584 2006-06-21] (Cognizance Corporation)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] ()
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2014-03-07] ()
R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] ()

==================== Drivers (Whitelisted) ====================

R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [281760 2013-03-28] ()
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146824 2007-06-16] (AuthenTec, Inc.)
R3 DCamUSBET; C:\Windows\System32\DRIVERS\etDevice.sys [474624 2007-09-06] (eMPIA Technology, Inc.)
R3 FiltUSBET; C:\Windows\System32\DRIVERS\etFilter.sys [206464 2008-02-05] (eMPIA Technology Inc.)
R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [20936 2007-08-03] ()
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-18] (ITE Tech. Inc. )
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-12-15] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [595552 2013-10-10] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2013-12-15] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-06-18] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-23] (Kaspersky Lab ZAO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2013-03-28] ()
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-03-05] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [107736 2014-04-03] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51416 2014-03-05] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R3 ScanUSBET; C:\Windows\System32\DRIVERS\etScan.sys [6528 2008-01-31] (eMPIA Technology, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 ASUSProcObsrv; \??\G:\I386\AsProcOb.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-04-23] (Kaspersky Lab ZAO)
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-03 22:39 - 2014-04-03 22:39 - 00000769 _____ () C:\Users\Hasufel\Desktop\JRT.txt
2014-04-03 22:26 - 2014-04-03 22:26 - 00000000 ____D () C:\Windows\ERUNT
2014-04-03 22:24 - 2014-04-03 22:24 - 01038974 _____ (Thisisu) C:\Users\Hasufel\Downloads\JRT.exe
2014-04-03 22:20 - 2014-04-03 22:20 - 00001290 _____ () C:\Users\Hasufel\Desktop\AdwCleaner[S0].txt
2014-04-03 22:11 - 2014-04-03 22:15 - 00000000 ____D () C:\AdwCleaner
2014-04-03 22:10 - 2014-04-03 22:10 - 01426178 _____ () C:\Users\Hasufel\Downloads\adwcleaner.exe
2014-04-03 22:10 - 2014-04-03 22:10 - 00001153 _____ () C:\Users\Hasufel\Desktop\mbam.txt
2014-04-03 21:48 - 2014-04-03 21:48 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-03 21:48 - 2014-04-03 21:48 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-04-03 21:48 - 2014-03-05 09:26 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 21:48 - 2014-03-05 09:26 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-03 21:46 - 2014-04-03 21:47 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Hasufel\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-03 21:46 - 2014-04-03 21:46 - 00000000 ____D () C:\Users\Hasufel\Desktop\alte Logfiles
2014-04-02 20:30 - 2014-04-02 20:30 - 00014806 _____ () C:\ComboFix.txt
2014-04-02 20:08 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-04-02 20:08 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-04-02 20:08 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-04-02 20:01 - 2014-04-02 20:30 - 00000000 ____D () C:\Qoobox
2014-04-02 20:01 - 2014-04-02 20:29 - 00000000 ____D () C:\Windows\erdnt
2014-04-02 19:59 - 2014-04-02 20:00 - 05192353 ____R (Swearware) C:\Users\Hasufel\Downloads\ComboFix.exe
2014-03-31 22:22 - 2014-03-31 22:22 - 00128888 _____ () C:\Users\Hasufel\Downloads\Logfiles.zip
2014-03-31 21:52 - 2014-03-31 21:52 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-03-31 21:52 - 2014-03-31 21:52 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4B647691.sys
2014-03-31 21:32 - 2014-04-03 22:31 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-03-31 21:32 - 2014-04-03 21:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-31 21:32 - 2014-03-31 22:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-03-31 21:30 - 2014-03-05 09:26 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-03-31 21:27 - 2014-03-31 21:27 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Hasufel\Downloads\mbar-1.07.0.1009.exe
2014-03-31 21:18 - 2014-03-31 21:18 - 04113320 _____ () C:\Users\Hasufel\Downloads\tdsskiller.zip
2014-03-31 21:17 - 2014-03-31 21:18 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Hasufel\Downloads\tdsskiller.exe
2014-03-31 15:18 - 2014-03-31 15:18 - 00000476 _____ () C:\Windows\system32\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000476 _____ () C:\Users\Hasufel\Downloads\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000000 _____ () C:\Users\Hasufel\defogger_reenable
2014-03-31 15:13 - 2014-03-31 15:13 - 00050477 _____ () C:\Users\Hasufel\Downloads\Defogger.exe
2014-03-31 15:07 - 2014-03-31 15:08 - 00043603 _____ () C:\Users\Hasufel\Downloads\Addition.txt
2014-03-31 15:06 - 2014-04-03 22:44 - 00022254 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-03-31 15:06 - 2014-04-03 22:44 - 00000000 ____D () C:\FRST
2014-03-31 15:05 - 2014-03-31 15:06 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:34 - 2013-03-15 17:01 - 00016384 _____ () C:\Windows\system32\wsusnative32.exe
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-27 20:59 - 2014-04-02 20:22 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-03-27 20:50 - 2014-03-27 20:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-13 13:55 - 2014-02-23 07:50 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 13:55 - 2014-02-23 07:47 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 13:55 - 2014-02-23 07:43 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 13:55 - 2014-02-23 07:41 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 13:55 - 2014-02-23 07:40 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 13:55 - 2014-02-23 07:39 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 13:55 - 2014-02-23 07:38 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-13 13:55 - 2014-02-23 07:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 13:55 - 2014-02-23 07:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-13 13:55 - 2014-02-23 07:36 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 13:55 - 2014-02-23 07:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-13 13:55 - 2014-02-23 07:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 11:05 - 2014-02-07 12:38 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 11:05 - 2014-02-03 12:37 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 11:05 - 2014-01-30 09:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 11:05 - 2013-11-13 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-03-07 20:32 - 2014-03-07 20:43 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS

==================== One Month Modified Files and Folders =======

2014-04-03 22:44 - 2014-03-31 15:06 - 00022254 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-04-03 22:44 - 2014-03-31 15:06 - 00000000 ____D () C:\FRST
2014-04-03 22:41 - 2012-07-27 14:56 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-03 22:39 - 2014-04-03 22:39 - 00000769 _____ () C:\Users\Hasufel\Desktop\JRT.txt
2014-04-03 22:34 - 2006-11-02 12:33 - 01566088 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-03 22:31 - 2014-03-31 21:32 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-03 22:31 - 2012-07-16 19:39 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-04-03 22:29 - 2012-07-27 14:56 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-03 22:28 - 2012-07-16 21:54 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-04-03 22:28 - 2012-07-16 18:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-03 22:28 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-03 22:28 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-03 22:28 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-03 22:27 - 2012-08-05 21:04 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job
2014-04-03 22:27 - 2012-07-17 02:09 - 01076867 _____ () C:\Windows\WindowsUpdate.log
2014-04-03 22:27 - 2012-07-17 02:09 - 00000012 _____ () C:\Windows\bthservsdp.dat
2014-04-03 22:27 - 2006-11-02 15:01 - 00032584 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-03 22:26 - 2014-04-03 22:26 - 00000000 ____D () C:\Windows\ERUNT
2014-04-03 22:24 - 2014-04-03 22:24 - 01038974 _____ (Thisisu) C:\Users\Hasufel\Downloads\JRT.exe
2014-04-03 22:20 - 2014-04-03 22:20 - 00001290 _____ () C:\Users\Hasufel\Desktop\AdwCleaner[S0].txt
2014-04-03 22:15 - 2014-04-03 22:11 - 00000000 ____D () C:\AdwCleaner
2014-04-03 22:15 - 2012-09-27 16:23 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-04-03 22:10 - 2014-04-03 22:10 - 01426178 _____ () C:\Users\Hasufel\Downloads\adwcleaner.exe
2014-04-03 22:10 - 2014-04-03 22:10 - 00001153 _____ () C:\Users\Hasufel\Desktop\mbam.txt
2014-04-03 21:58 - 2012-08-05 20:53 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-03 21:48 - 2014-04-03 21:48 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-03 21:48 - 2014-04-03 21:48 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-04-03 21:48 - 2014-03-31 21:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-03 21:47 - 2014-04-03 21:46 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Hasufel\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-03 21:46 - 2014-04-03 21:46 - 00000000 ____D () C:\Users\Hasufel\Desktop\alte Logfiles
2014-04-02 21:27 - 2012-08-05 21:04 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job
2014-04-02 20:30 - 2014-04-02 20:30 - 00014806 _____ () C:\ComboFix.txt
2014-04-02 20:30 - 2014-04-02 20:01 - 00000000 ____D () C:\Qoobox
2014-04-02 20:30 - 2006-11-02 13:18 - 00000000 __RHD () C:\Users\Default
2014-04-02 20:30 - 2006-11-02 13:18 - 00000000 ___RD () C:\Users\Public
2014-04-02 20:29 - 2014-04-02 20:01 - 00000000 ____D () C:\Windows\erdnt
2014-04-02 20:24 - 2006-11-02 12:23 - 00000215 _____ () C:\Windows\system.ini
2014-04-02 20:22 - 2014-03-27 20:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-04-02 20:22 - 2008-01-21 04:47 - 00074968 _____ () C:\Windows\PFRO.log
2014-04-02 20:21 - 2006-11-02 12:22 - 72876032 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 58982400 _____ () C:\Windows\system32\config\COMPON~1.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 57671680 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-04-02 20:07 - 2012-10-07 20:17 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-02 20:00 - 2014-04-02 19:59 - 05192353 ____R (Swearware) C:\Users\Hasufel\Downloads\ComboFix.exe
2014-04-01 18:24 - 2013-12-08 13:46 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-01 18:24 - 2012-07-16 20:28 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-03-31 22:44 - 2014-03-31 21:32 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-03-31 22:22 - 2014-03-31 22:22 - 00128888 _____ () C:\Users\Hasufel\Downloads\Logfiles.zip
2014-03-31 21:52 - 2014-03-31 21:52 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-03-31 21:52 - 2014-03-31 21:52 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4B647691.sys
2014-03-31 21:27 - 2014-03-31 21:27 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Hasufel\Downloads\mbar-1.07.0.1009.exe
2014-03-31 21:18 - 2014-03-31 21:18 - 04113320 _____ () C:\Users\Hasufel\Downloads\tdsskiller.zip
2014-03-31 21:18 - 2014-03-31 21:17 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Hasufel\Downloads\tdsskiller.exe
2014-03-31 15:18 - 2014-03-31 15:18 - 00000476 _____ () C:\Windows\system32\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000476 _____ () C:\Users\Hasufel\Downloads\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000000 _____ () C:\Users\Hasufel\defogger_reenable
2014-03-31 15:15 - 2012-07-16 17:34 - 00000000 ____D () C:\Users\Hasufel
2014-03-31 15:13 - 2014-03-31 15:13 - 00050477 _____ () C:\Users\Hasufel\Downloads\Defogger.exe
2014-03-31 15:08 - 2014-03-31 15:07 - 00043603 _____ () C:\Users\Hasufel\Downloads\Addition.txt
2014-03-31 15:06 - 2014-03-31 15:05 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-31 12:10 - 2013-02-03 18:50 - 00000000 ____D () C:\Windows\pss
2014-03-31 11:31 - 2012-10-07 20:17 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-03-27 20:52 - 2014-03-27 20:50 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-27 20:26 - 2013-03-27 14:17 - 00000000 ____D () C:\Users\Hasufel\Documents\Eigene Scans
2014-03-19 17:50 - 2013-10-04 16:19 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-19 17:48 - 2006-11-02 12:24 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-03-16 20:37 - 2012-08-05 21:05 - 00002051 _____ () C:\Users\Hasufel\Desktop\Google Chrome.lnk
2014-03-15 09:57 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache
2014-03-15 09:41 - 2006-11-02 14:47 - 01737456 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-15 09:38 - 2012-07-20 22:48 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-13 13:57 - 2012-07-17 12:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-13 13:53 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-03-12 22:58 - 2012-07-24 16:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-12 22:58 - 2012-07-24 16:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-07 23:16 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-03-07 20:43 - 2014-03-07 20:32 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-07 19:08 - 2013-03-29 15:01 - 00189248 _____ () C:\Windows\system32\PnkBstrB.exe
2014-03-07 19:08 - 2013-03-29 15:01 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-07 19:08 - 2012-08-25 19:57 - 00000000 ____D () C:\Program Files\Ubisoft
2014-03-07 19:08 - 2012-07-16 18:30 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-03-07 19:03 - 2012-09-03 11:08 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\Ubisoft Game Launcher
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS
2014-03-06 14:51 - 2012-07-16 18:54 - 00000000 ____D () C:\ProgramData\ASUS
2014-03-05 09:26 - 2014-04-03 21:48 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-03-05 09:26 - 2014-04-03 21:48 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-05 09:26 - 2014-03-31 21:30 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

Some content of TEMP:
====================
C:\Users\Hasufel\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-03 22:35

==================== End Of Log ============================
         
--- --- ---

--- --- ---

--- --- ---


Danke für Deine Mühe!!!

LG

Alt 04.04.2014, 11:53   #12
schrauber
/// the machine
/// TB-Ausbilder
 

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 04.04.2014, 17:09   #13
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Hey,

puh da hab ich mir ja ganz schön was eingefangen...

Logfile von ESET:

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=4e3ecdc75d2f9b4a9c188365f10df292
# engine=17754
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-04-04 03:34:20
# local_time=2014-04-04 05:34:20 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1286 16777213 100 98 24449 51395582 0 0
# compatibility_mode=5892 16776574 100 100 288058 234158388 0 0
# scanned=455324
# found=1
# cleaned=1
# scan_time=15600
sh=9CD00DC38A2F5C8DC131AD18A19B7AACB121CE19 ft=1 fh=5615e6591fd23565 vn="a variant of Win32/Adware.CiDHelp application (cleaned by deleting - quarantined)" ac=C fn="F:\Festplatte\Nina\Alles vom Dell\sämtliche exe Dateien\MsgPlusLive-460326.exe"
         
Checkup:

Code:
ATTFilter
 Results of screen317's Security Check version 0.99.80  
 Windows Vista Service Pack 2 x86 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:`````````````` 
Kaspersky Internet Security   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 Java 7 Update 51  
 Adobe Flash Player 9 Flash Player out of Date! 
 Adobe Flash Player 	12.0.0.77  
 Adobe Reader 8 Adobe Reader out of Date! 
 Mozilla Firefox 25.0.1 Firefox out of Date!  
 Google Chrome 33.0.1750.146  
 Google Chrome 33.0.1750.154  
````````Process Check: objlist.exe by Laurent````````  
 ESET ESET Online Scanner OnlineScannerApp.exe  
 ESET ESET Online Scanner OnlineCmdLineScanner.exe  
 Kaspersky Lab Kaspersky Internet Security 2013 avp.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
         
FRST:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01
Ran by Hasufel (administrator) on HASUFEL-PC on 04-04-2014 18:02:49
Running from C:\Users\Hasufel\Downloads
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
() C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
() C:\Windows\system32\PnkBstrA.exe
() C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
(Cognizance Corporation) C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
() C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
() C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
() C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ASUS) C:\Windows\AsScrPro.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynAsus.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Users\Hasufel\Downloads\SecurityCheck.exe
(Microsoft Corporation) C:\Windows\system32\cmd.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [98304 2008-01-11] ()
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [7651328 2008-07-15] (ASUS)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6183456 2008-06-13] (Realtek Semiconductor)
HKLM\...\Run: [CognizanceTS] - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASTSVCC.dll [17920 2003-12-21] (Cognizance Corporation)
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [159744 2008-06-24] (ASUS)
HKLM\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3054136 2012-07-16] (ASUS)
HKLM\...\Run: [ASUS Camera ScreenSaver] - C:\Windows\AsScrProlog.exe [47672 2012-07-16] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-11-16] (Synaptics, Inc.)
HKLM\...\Run: [Acrobat Assistant 8.0] - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems Inc.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1001\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hasufel\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll No File
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions:  - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-04-20]

Chrome: 
=======
CHR HomePage: 
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.477_0\plugin/npUrlAdvisor.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.477_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2012-08-05]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-04-20]
CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2013-04-20]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2012-08-05]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-27]
CHR Extension: (Google Wallet) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-04]
CHR Extension: (Anti-Banner) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2012-08-05]
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2012-10-25]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Hasufel\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-27]

========================== Services (Whitelisted) =================

S3 Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [153792 2007-03-20] (Adobe Systems Incorporated)
R2 ASBroker; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [74240 2007-02-06] (Cognizance Corporation)
R2 ASChannel; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll [131584 2006-06-21] (Cognizance Corporation)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] ()
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
S2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2014-03-07] ()
R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] ()

==================== Drivers (Whitelisted) ====================

R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [281760 2013-03-28] ()
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146824 2007-06-16] (AuthenTec, Inc.)
R3 DCamUSBET; C:\Windows\System32\DRIVERS\etDevice.sys [474624 2007-09-06] (eMPIA Technology, Inc.)
R3 FiltUSBET; C:\Windows\System32\DRIVERS\etFilter.sys [206464 2008-02-05] (eMPIA Technology Inc.)
R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [20936 2007-08-03] ()
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-18] (ITE Tech. Inc. )
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-12-15] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [595552 2013-10-10] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2013-12-15] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-06-18] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-23] (Kaspersky Lab ZAO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2013-03-28] ()
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-03-05] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R3 ScanUSBET; C:\Windows\System32\DRIVERS\etScan.sys [6528 2008-01-31] (eMPIA Technology, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 ASUSProcObsrv; \??\G:\I386\AsProcOb.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-04-23] (Kaspersky Lab ZAO)
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-04 18:02 - 2014-04-04 18:02 - 00001146 _____ () C:\Users\Hasufel\Desktop\checkup.txt
2014-04-04 17:53 - 2014-04-04 17:53 - 00987442 _____ () C:\Users\Hasufel\Downloads\SecurityCheck.exe
2014-04-04 13:11 - 2014-04-04 13:11 - 02347384 _____ (ESET) C:\Users\Hasufel\Downloads\esetsmartinstaller_enu.exe
2014-04-04 13:11 - 2014-04-04 13:11 - 00000000 ____D () C:\Program Files\ESET
2014-04-03 22:45 - 2014-04-03 22:45 - 00039937 _____ () C:\Users\Hasufel\Desktop\FRST.txt
2014-04-03 22:39 - 2014-04-03 22:39 - 00000769 _____ () C:\Users\Hasufel\Desktop\JRT.txt
2014-04-03 22:26 - 2014-04-03 22:26 - 00000000 ____D () C:\Windows\ERUNT
2014-04-03 22:24 - 2014-04-03 22:24 - 01038974 _____ (Thisisu) C:\Users\Hasufel\Downloads\JRT.exe
2014-04-03 22:20 - 2014-04-03 22:20 - 00001290 _____ () C:\Users\Hasufel\Desktop\AdwCleaner[S0].txt
2014-04-03 22:11 - 2014-04-03 22:15 - 00000000 ____D () C:\AdwCleaner
2014-04-03 22:10 - 2014-04-03 22:10 - 01426178 _____ () C:\Users\Hasufel\Downloads\adwcleaner.exe
2014-04-03 22:10 - 2014-04-03 22:10 - 00001153 _____ () C:\Users\Hasufel\Desktop\mbam.txt
2014-04-03 21:48 - 2014-04-03 21:48 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-03 21:48 - 2014-04-03 21:48 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-04-03 21:48 - 2014-03-05 09:26 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 21:48 - 2014-03-05 09:26 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-03 21:46 - 2014-04-03 21:47 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Hasufel\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-03 21:46 - 2014-04-03 21:46 - 00000000 ____D () C:\Users\Hasufel\Desktop\alte Logfiles
2014-04-02 20:30 - 2014-04-02 20:30 - 00014806 _____ () C:\ComboFix.txt
2014-04-02 20:08 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-04-02 20:08 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-04-02 20:08 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-04-02 20:01 - 2014-04-02 20:30 - 00000000 ____D () C:\Qoobox
2014-04-02 20:01 - 2014-04-02 20:29 - 00000000 ____D () C:\Windows\erdnt
2014-04-02 19:59 - 2014-04-02 20:00 - 05192353 ____R (Swearware) C:\Users\Hasufel\Downloads\ComboFix.exe
2014-03-31 22:22 - 2014-03-31 22:22 - 00128888 _____ () C:\Users\Hasufel\Downloads\Logfiles.zip
2014-03-31 21:52 - 2014-03-31 21:52 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-03-31 21:52 - 2014-03-31 21:52 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4B647691.sys
2014-03-31 21:32 - 2014-04-04 10:55 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-03-31 21:32 - 2014-04-03 21:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-31 21:32 - 2014-03-31 22:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-03-31 21:30 - 2014-03-05 09:26 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-03-31 21:27 - 2014-03-31 21:27 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Hasufel\Downloads\mbar-1.07.0.1009.exe
2014-03-31 21:18 - 2014-03-31 21:18 - 04113320 _____ () C:\Users\Hasufel\Downloads\tdsskiller.zip
2014-03-31 21:17 - 2014-03-31 21:18 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Hasufel\Downloads\tdsskiller.exe
2014-03-31 15:18 - 2014-03-31 15:18 - 00000476 _____ () C:\Windows\system32\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000476 _____ () C:\Users\Hasufel\Downloads\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000000 _____ () C:\Users\Hasufel\defogger_reenable
2014-03-31 15:13 - 2014-03-31 15:13 - 00050477 _____ () C:\Users\Hasufel\Downloads\Defogger.exe
2014-03-31 15:07 - 2014-03-31 15:08 - 00043603 _____ () C:\Users\Hasufel\Downloads\Addition.txt
2014-03-31 15:06 - 2014-04-04 18:02 - 00021988 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-03-31 15:06 - 2014-04-04 18:02 - 00000000 ____D () C:\FRST
2014-03-31 15:05 - 2014-03-31 15:06 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:34 - 2013-03-15 17:01 - 00016384 _____ () C:\Windows\system32\wsusnative32.exe
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-27 20:59 - 2014-04-02 20:22 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-03-27 20:50 - 2014-03-27 20:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-13 13:55 - 2014-02-23 07:50 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 13:55 - 2014-02-23 07:47 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 13:55 - 2014-02-23 07:43 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 13:55 - 2014-02-23 07:41 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 13:55 - 2014-02-23 07:40 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 13:55 - 2014-02-23 07:39 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 13:55 - 2014-02-23 07:38 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-13 13:55 - 2014-02-23 07:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 13:55 - 2014-02-23 07:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-13 13:55 - 2014-02-23 07:36 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 13:55 - 2014-02-23 07:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-13 13:55 - 2014-02-23 07:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 11:05 - 2014-02-07 12:38 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 11:05 - 2014-02-03 12:37 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 11:05 - 2014-01-30 09:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 11:05 - 2013-11-13 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-03-07 20:32 - 2014-03-07 20:43 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS

==================== One Month Modified Files and Folders =======

2014-04-04 18:03 - 2014-03-31 15:06 - 00021988 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-04-04 18:02 - 2014-04-04 18:02 - 00001146 _____ () C:\Users\Hasufel\Desktop\checkup.txt
2014-04-04 18:02 - 2014-03-31 15:06 - 00000000 ____D () C:\FRST
2014-04-04 17:58 - 2012-08-05 20:53 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-04 17:53 - 2014-04-04 17:53 - 00987442 _____ () C:\Users\Hasufel\Downloads\SecurityCheck.exe
2014-04-04 17:41 - 2012-07-27 14:56 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-04 17:27 - 2012-08-05 21:04 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job
2014-04-04 17:08 - 2012-07-16 19:39 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-04-04 16:46 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-04 16:46 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-04 16:44 - 2012-07-17 02:09 - 01120820 _____ () C:\Windows\WindowsUpdate.log
2014-04-04 13:11 - 2014-04-04 13:11 - 02347384 _____ (ESET) C:\Users\Hasufel\Downloads\esetsmartinstaller_enu.exe
2014-04-04 13:11 - 2014-04-04 13:11 - 00000000 ____D () C:\Program Files\ESET
2014-04-04 11:41 - 2012-07-27 14:56 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-04 10:55 - 2014-03-31 21:32 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-04 10:54 - 2006-11-02 12:33 - 01566088 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-04 10:47 - 2012-07-16 21:54 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-04-04 10:46 - 2012-07-16 18:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-04 10:46 - 2006-11-02 15:01 - 00032578 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-04 10:46 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-03 22:55 - 2012-07-17 02:09 - 00000012 _____ () C:\Windows\bthservsdp.dat
2014-04-03 22:45 - 2014-04-03 22:45 - 00039937 _____ () C:\Users\Hasufel\Desktop\FRST.txt
2014-04-03 22:39 - 2014-04-03 22:39 - 00000769 _____ () C:\Users\Hasufel\Desktop\JRT.txt
2014-04-03 22:26 - 2014-04-03 22:26 - 00000000 ____D () C:\Windows\ERUNT
2014-04-03 22:24 - 2014-04-03 22:24 - 01038974 _____ (Thisisu) C:\Users\Hasufel\Downloads\JRT.exe
2014-04-03 22:20 - 2014-04-03 22:20 - 00001290 _____ () C:\Users\Hasufel\Desktop\AdwCleaner[S0].txt
2014-04-03 22:15 - 2014-04-03 22:11 - 00000000 ____D () C:\AdwCleaner
2014-04-03 22:15 - 2012-09-27 16:23 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-04-03 22:10 - 2014-04-03 22:10 - 01426178 _____ () C:\Users\Hasufel\Downloads\adwcleaner.exe
2014-04-03 22:10 - 2014-04-03 22:10 - 00001153 _____ () C:\Users\Hasufel\Desktop\mbam.txt
2014-04-03 21:48 - 2014-04-03 21:48 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-03 21:48 - 2014-04-03 21:48 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-04-03 21:48 - 2014-03-31 21:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-03 21:47 - 2014-04-03 21:46 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Hasufel\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-03 21:46 - 2014-04-03 21:46 - 00000000 ____D () C:\Users\Hasufel\Desktop\alte Logfiles
2014-04-02 21:27 - 2012-08-05 21:04 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job
2014-04-02 20:30 - 2014-04-02 20:30 - 00014806 _____ () C:\ComboFix.txt
2014-04-02 20:30 - 2014-04-02 20:01 - 00000000 ____D () C:\Qoobox
2014-04-02 20:30 - 2006-11-02 13:18 - 00000000 __RHD () C:\Users\Default
2014-04-02 20:30 - 2006-11-02 13:18 - 00000000 ___RD () C:\Users\Public
2014-04-02 20:29 - 2014-04-02 20:01 - 00000000 ____D () C:\Windows\erdnt
2014-04-02 20:24 - 2006-11-02 12:23 - 00000215 _____ () C:\Windows\system.ini
2014-04-02 20:22 - 2014-03-27 20:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-04-02 20:22 - 2008-01-21 04:47 - 00074968 _____ () C:\Windows\PFRO.log
2014-04-02 20:21 - 2006-11-02 12:22 - 72876032 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 58982400 _____ () C:\Windows\system32\config\COMPON~1.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 57671680 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-04-02 20:07 - 2012-10-07 20:17 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-02 20:00 - 2014-04-02 19:59 - 05192353 ____R (Swearware) C:\Users\Hasufel\Downloads\ComboFix.exe
2014-04-01 18:24 - 2013-12-08 13:46 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-01 18:24 - 2012-07-16 20:28 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-03-31 22:44 - 2014-03-31 21:32 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-03-31 22:22 - 2014-03-31 22:22 - 00128888 _____ () C:\Users\Hasufel\Downloads\Logfiles.zip
2014-03-31 21:52 - 2014-03-31 21:52 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-03-31 21:52 - 2014-03-31 21:52 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4B647691.sys
2014-03-31 21:27 - 2014-03-31 21:27 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Hasufel\Downloads\mbar-1.07.0.1009.exe
2014-03-31 21:18 - 2014-03-31 21:18 - 04113320 _____ () C:\Users\Hasufel\Downloads\tdsskiller.zip
2014-03-31 21:18 - 2014-03-31 21:17 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Hasufel\Downloads\tdsskiller.exe
2014-03-31 15:18 - 2014-03-31 15:18 - 00000476 _____ () C:\Windows\system32\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000476 _____ () C:\Users\Hasufel\Downloads\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000000 _____ () C:\Users\Hasufel\defogger_reenable
2014-03-31 15:15 - 2012-07-16 17:34 - 00000000 ____D () C:\Users\Hasufel
2014-03-31 15:13 - 2014-03-31 15:13 - 00050477 _____ () C:\Users\Hasufel\Downloads\Defogger.exe
2014-03-31 15:08 - 2014-03-31 15:07 - 00043603 _____ () C:\Users\Hasufel\Downloads\Addition.txt
2014-03-31 15:06 - 2014-03-31 15:05 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-31 12:10 - 2013-02-03 18:50 - 00000000 ____D () C:\Windows\pss
2014-03-31 11:31 - 2012-10-07 20:17 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-03-27 20:52 - 2014-03-27 20:50 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-27 20:26 - 2013-03-27 14:17 - 00000000 ____D () C:\Users\Hasufel\Documents\Eigene Scans
2014-03-19 17:50 - 2013-10-04 16:19 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-19 17:48 - 2006-11-02 12:24 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-03-16 20:37 - 2012-08-05 21:05 - 00002051 _____ () C:\Users\Hasufel\Desktop\Google Chrome.lnk
2014-03-15 09:57 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache
2014-03-15 09:41 - 2006-11-02 14:47 - 01737456 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-15 09:38 - 2012-07-20 22:48 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-13 13:57 - 2012-07-17 12:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-13 13:53 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-03-12 22:58 - 2012-07-24 16:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-12 22:58 - 2012-07-24 16:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-07 23:16 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-03-07 20:43 - 2014-03-07 20:32 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-07 19:08 - 2013-03-29 15:01 - 00189248 _____ () C:\Windows\system32\PnkBstrB.exe
2014-03-07 19:08 - 2013-03-29 15:01 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-07 19:08 - 2012-08-25 19:57 - 00000000 ____D () C:\Program Files\Ubisoft
2014-03-07 19:08 - 2012-07-16 18:30 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-03-07 19:03 - 2012-09-03 11:08 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\Ubisoft Game Launcher
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS
2014-03-06 14:51 - 2012-07-16 18:54 - 00000000 ____D () C:\ProgramData\ASUS
2014-03-05 09:26 - 2014-04-03 21:48 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-03-05 09:26 - 2014-04-03 21:48 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-05 09:26 - 2014-03-31 21:30 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

Some content of TEMP:
====================
C:\Users\Hasufel\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-04 10:58

==================== End Of Log ============================
         
--- --- ---

--- --- ---



So wie ich das sehe war Kaspersky hier nicht ganz so hilfreich, gibt es ein Programm, dass Du eher empfehlen würdest??

Und tausend Dank für die ganze Arbeit und Mühe, ich hätte nicht gedacht, dass das so viel ist...

LG

Alt 05.04.2014, 10:54   #14
schrauber
/// the machine
/// TB-Ausbilder
 

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Ich empfehle immer Emsisoft

Java, Adobe und Firefox updaten.


Fertig

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.



Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun

Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 07.04.2014, 22:09   #15
Valyria
 
Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Standard

Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet



Vielen vielen Dank!!!!!

Ich habe alles fertig gemacht, ich danke Dir sehr für Deine Hilfe und für die ganze Mühe. Ich wäre alleine mehr als aufgeschmissen gewesen!!

LG

Antwort

Themen zu Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet
bonjour, browser, desktop, device driver, dvdvideosoft ltd., ebanking, entfernen, excel, flash player, google, home, homepage, installation, internet, kaspersky, mozilla, mp3, officejet, problem, realtek, refresh, registry, safer networking, scan, sekunden, software, svchost.exe, system, tastatur, vista, windows, winzip malware protector



Ähnliche Themen: Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet


  1. Windows 7: PC stockt und hängt sich auf bei Benutzung von Browsern (Firefox, Chrome)
    Log-Analyse und Auswertung - 02.12.2014 (21)
  2. SD Karte zeigt nur Verknüpfen, Internet langsam, Computer schaltet sich aus
    Log-Analyse und Auswertung - 17.11.2014 (17)
  3. Windos XP: Nach spätestens 2 Stunden Internet schaltet sich der Computer aus.
    Plagegeister aller Art und deren Bekämpfung - 26.11.2013 (3)
  4. Internet stockt, häbgt usw nach download
    Plagegeister aller Art und deren Bekämpfung - 29.10.2012 (2)
  5. Internet stockt beim Laden
    Log-Analyse und Auswertung - 18.10.2010 (21)
  6. Mein Internet stockt
    Log-Analyse und Auswertung - 16.10.2010 (3)
  7. Internet Explorer öffnet sich, wave sond schaltet ab
    Plagegeister aller Art und deren Bekämpfung - 26.07.2010 (12)
  8. Internet Explorer öffnet Fenster, Wave schaltet sich alleine aus
    Plagegeister aller Art und deren Bekämpfung - 25.07.2010 (33)
  9. Internet Explorer öffnet sich, wave sond schaltet ab
    Plagegeister aller Art und deren Bekämpfung - 25.07.2010 (25)
  10. Internet Explorer öffnet sich mit Werbung und Wave-Sound schaltet ab
    Plagegeister aller Art und deren Bekämpfung - 22.07.2010 (2)
  11. Internet Explorer 8.0 (Vista) öffnet sich völlig unkontrolliert zigfach
    Log-Analyse und Auswertung - 07.07.2010 (14)
  12. Internet schaltet sich plötzlich aus!
    Log-Analyse und Auswertung - 31.03.2010 (0)
  13. Vista Internet Security ---> Keine .exe datei lassen sich nun öffnen
    Plagegeister aller Art und deren Bekämpfung - 05.03.2010 (7)
  14. Internet bei Anruf weg
    Netzwerk und Hardware - 18.08.2009 (21)
  15. NAV Internet Security 2007 : Virenscanner schaltet sich aus
    Log-Analyse und Auswertung - 20.11.2008 (3)
  16. cOMPUTER SPINNT GEHT LANGSAM UND INTERNET SCHALTET SICH STÄNIG AUS UND EIN
    Mülltonne - 17.12.2007 (1)
  17. laptop schaltet sich nach einiger zeit im internet einfach aus..???
    Mülltonne - 05.06.2007 (1)

Zum Thema Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet - Hallo, ich habe seit einigen Tagen das Problem, dass sich mein Laptop verselbstständigt. Dh. die eingebaute Webcam ging von alleine an, ich bekam Tage später einen Anruf auf den Rechner - Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet...
Archiv
Du betrachtest: Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.