Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 11.08.2014, 11:13   #1
Kenny_sc2
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Guten Tag

Ich habe seit einigen Wochen folgendes Problem mit meinem Laptop:
Beim tippen erscheinen die Buchstaben oft erst ein wenig nach dem Anschlag. Jedoch ist das nicht immer so und die Verzögerung auch nicht immer gleich groß, sonder scheint es eher Zufällig zu sein.

Desweiteren hängt sich der Laptop hin und wieder einfach ohne erkennbaren Grund auf, sodass der Bildschirm einfriert und man nichts mehr tun kann ausser den Strom abzuschalten.

Ich verwende Windows 7 64-Bit

Ich habe mit Avira einen Systemcheck durchgeführt, jedoch hat Avira nichts gefunden.

Ausserdem habe ich die in der Anleitung geforderten Logs erstellt.

Vielen lieben Dank schonmal im Vorraus
LG Kenny
Angehängte Dateien
Dateityp: log defogger_disable.log (466 Bytes, 112x aufgerufen)
Dateityp: txt Addition.txt (36,8 KB, 114x aufgerufen)
Dateityp: log gmer.log (2,2 KB, 110x aufgerufen)

Alt 11.08.2014, 11:42   #2
Warlord711
/// TB-Ausbilder
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Hallo Kenny_sc2



Mein Name ist Timo und ich werde Dir bei deinem Problem behilflich sein.
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lese die Anleitungen sorgfältig. Sollte es Probleme geben, bitte stoppen und hier so gut es geht beschreiben.
  • Nur Scans durchführen zu denen Du von einem Helfer aufgefordert wirst.
  • Bitte kein Crossposting ( posten in mehreren Foren).
  • Installiere oder Deinstalliere während der Bereinigung keine Software ausser Du wurdest dazu aufgefordert.
  • Lese Dir die Anleitung zuerst vollständig durch. Sollte etwas unklar sein, frage bevor Du beginnst.
  • Poste die Logfiles direkt in deinen Thread. Nicht anhängen ausser ich fordere Dich dazu auf.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist immer der sicherste Weg.

Wir "arbeiten" hier alle freiwillig und in unserer Freizeit *hust*. Daher kann es bei Antworten zu Verzögerungen kommen.
Solltest du innerhalb 48 Std keine Antwort von mir erhalten, dann schreib mit eine PM
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis ich oder jemand vom Team sagt, dass Du clean bist.



So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.


Bitte alle Logs in CODE Klammern posten, notfalls aufteilen !
__________________

__________________

Alt 11.08.2014, 12:13   #3
Kenny_sc2
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Ohh, natürlich, hier sind nochmal die Logs:
defogger_disable.log
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 10:13 on 11/08/2014 (HP)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         
First.txt

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-08-2014 01
Ran by HP (administrator) on HP-PC on 11-08-2014 10:16:55
Running from C:\Users\HP\Desktop\Trojanerboard
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jusched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\ipmgui.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.4906\Battle.net.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\HP\Desktop\Trojanerboard\Defogger.exe
(Blizzard Entertainment, Inc.) C:\Program Files (x86)\StarCraft II\Versions\Base28667\SC2.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [RtkOSD] => C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe [995840 2009-10-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Java\jre6\bin\jusched.exe [172032 2010-01-20] (Sun Microsystems, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7573720 2014-05-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [750160 2014-07-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1957784 2014-07-31] (APN)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-05-13] (Hewlett-Packard)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT/4
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {B4C7B78A-45DE-452A-B281-4030C7C1260A} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=0e128f30000000000000f07bcb5249dd&r=717
BHO: Avira SearchFree Toolbar -> {41564952-412D-5637-00A7-7A786E7484D7} -> C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Avira SearchFree Toolbar -> {41564952-412D-5637-00A7-7A786E7484D7} -> C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} ->  No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: DownloadHelper - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-11-25]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-17]
FF Extension: Youtube playlist converter to MP3 - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\Extensions\jid0-oxBE8TGrmyDm30WPvO8i9EFHmtQ@jetpack.xpi [2014-07-17]

Chrome: 
=======
CHR HomePage: 
CHR Extension: (Google Docs) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-11]
CHR Extension: (Google Drive) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-11]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-11]
CHR Extension: (Google-Suche) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-11]
CHR Extension: (Google Wallet) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-11]
CHR Extension: (Google Mail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-07-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-07-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1030224 2014-07-15] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [165784 2014-06-23] (APN LLC.)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
R2 RtVOsdService; C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe [315392 2010-06-24] (Realtek Semiconductor Corp.) [File not signed]
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [821720 2012-11-25] (Mister Group)
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [581120 2013-03-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-06-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [42040 2014-07-15] (Avira Operations GmbH & Co. KG)
S3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [225280 2009-09-23] (Realtek Semiconductor Corp.)
S3 ALSysIO; \??\C:\Users\HP\AppData\Local\Temp\ALSysIO64.sys [X]
S3 cpuz136; \??\C:\Users\HP\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X]
S3 GPU-Z; \??\C:\Users\HP\AppData\Local\Temp\GPU-Z.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-11 10:16 - 2014-08-11 10:17 - 00000000 ____D () C:\FRST
2014-08-11 10:13 - 2014-08-11 10:13 - 00000000 _____ () C:\Users\HP\defogger_reenable
2014-08-11 10:12 - 2014-08-11 10:16 - 00000000 ____D () C:\Users\HP\Desktop\Trojanerboard
2014-07-24 00:04 - 2014-08-11 09:52 - 00000336 _____ () C:\Windows\setupact.log
2014-07-24 00:04 - 2014-07-24 00:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-23 12:48 - 2014-07-23 12:48 - 00291606 _____ () C:\Users\HP\Downloads\TCPView.zip
2014-07-23 12:42 - 2014-07-23 12:53 - 00000000 ____D () C:\ProgramData\SystemExplorer
2014-07-23 12:42 - 2014-07-23 12:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2014-07-23 12:42 - 2014-07-23 12:42 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2014-07-23 12:40 - 2014-07-23 12:41 - 02243952 _____ (Mister Group ) C:\Users\HP\Downloads\SystemExplorerSetup_590.exe
2014-07-17 20:41 - 2014-07-17 20:41 - 00527423 _____ ( ) C:\Users\HP\Downloads\Lame_v3.99.3_for_Windows.exe
2014-07-17 20:41 - 2014-07-17 20:41 - 00000000 ____D () C:\Program Files (x86)\Lame For Audacity
2014-07-17 20:35 - 2014-07-17 21:04 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Audacity
2014-07-17 20:34 - 2014-07-17 20:34 - 00000983 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-07-17 20:34 - 2014-07-17 20:34 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-07-17 20:30 - 2014-07-17 20:33 - 22180353 _____ (Audacity Team ) C:\Users\HP\Downloads\audacity-win-2.0.5.exe
2014-07-17 16:06 - 2014-07-17 16:06 - 00001496 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-07-17 16:03 - 2014-07-17 16:04 - 29521528 _____ (DVDVideoSoft Ltd. ) C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe
2014-07-17 15:59 - 2014-07-17 16:02 - 06262476 _____ (DVDVideoSoft Ltd. ) C:\Users\HP\Downloads\FreeStudio (1).exe
2014-07-17 15:52 - 2014-07-17 15:52 - 00552781 _____ () C:\Users\HP\Downloads\Alligatoah - Alligatoah Lady Gaga Remix(1).mp3.part
2014-07-17 15:46 - 2014-07-17 15:46 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Xilisoft
2014-07-17 15:38 - 2014-07-17 15:40 - 37526568 _____ () C:\Users\HP\Downloads\x-video-converter-standard7-de.exe
2014-07-17 15:10 - 2014-07-17 15:09 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-17 15:10 - 2014-07-17 15:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-17 15:10 - 2014-07-17 15:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-17 15:10 - 2014-07-17 15:09 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-17 15:09 - 2014-07-17 15:09 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-17 14:54 - 2014-07-17 14:55 - 00004698 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 19:38 - 2014-07-16 19:38 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-14 12:37 - 2014-07-14 12:37 - 00000000 _____ () C:\Users\HP\Desktop\alligatoah.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-11 10:19 - 2014-01-20 23:15 - 00000000 ____D () C:\Users\HP\AppData\Local\Battle.net
2014-08-11 10:17 - 2014-08-11 10:16 - 00000000 ____D () C:\FRST
2014-08-11 10:16 - 2014-08-11 10:12 - 00000000 ____D () C:\Users\HP\Desktop\Trojanerboard
2014-08-11 10:13 - 2014-08-11 10:13 - 00000000 _____ () C:\Users\HP\defogger_reenable
2014-08-11 10:13 - 2011-10-26 10:05 - 00000000 ____D () C:\Users\HP
2014-08-11 10:02 - 2014-01-20 23:15 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-08-11 10:00 - 2014-01-23 21:44 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-08-11 09:57 - 2011-10-26 09:09 - 01325896 _____ () C:\Windows\WindowsUpdate.log
2014-08-11 09:56 - 2009-07-14 06:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-11 09:56 - 2009-07-14 06:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-11 09:54 - 2014-06-11 22:06 - 00000000 ____D () C:\Users\HP\AppData\Roaming\TS3Client
2014-08-11 09:52 - 2014-07-24 00:04 - 00000336 _____ () C:\Windows\setupact.log
2014-08-11 09:48 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-09 13:44 - 2013-11-25 22:19 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-08 20:59 - 2013-10-01 01:26 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-08 20:59 - 2013-10-01 01:26 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-05 09:20 - 2013-09-11 23:54 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-07-25 11:39 - 2013-10-01 01:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-24 00:20 - 2013-09-12 22:22 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Skype
2014-07-24 00:04 - 2014-07-24 00:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-23 13:49 - 2010-01-20 12:19 - 00699666 _____ () C:\Windows\system32\perfh007.dat
2014-07-23 13:49 - 2010-01-20 12:19 - 00149774 _____ () C:\Windows\system32\perfc007.dat
2014-07-23 13:49 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-23 12:53 - 2014-07-23 12:42 - 00000000 ____D () C:\ProgramData\SystemExplorer
2014-07-23 12:48 - 2014-07-23 12:48 - 00291606 _____ () C:\Users\HP\Downloads\TCPView.zip
2014-07-23 12:42 - 2014-07-23 12:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2014-07-23 12:42 - 2014-07-23 12:42 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2014-07-23 12:41 - 2014-07-23 12:40 - 02243952 _____ (Mister Group ) C:\Users\HP\Downloads\SystemExplorerSetup_590.exe
2014-07-23 12:23 - 2013-09-23 16:52 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-22 19:10 - 2013-12-09 21:01 - 00000166 _____ () C:\Users\HP\Desktop\Liste.txt
2014-07-22 17:14 - 2013-09-11 20:01 - 00000000 ____D () C:\Users\HP\Documents\StarCraft II
2014-07-21 13:32 - 2013-09-11 20:00 - 00002135 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-18 14:41 - 2013-11-25 21:43 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-18 14:41 - 2013-09-11 20:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-17 21:04 - 2014-07-17 20:35 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Audacity
2014-07-17 20:41 - 2014-07-17 20:41 - 00527423 _____ ( ) C:\Users\HP\Downloads\Lame_v3.99.3_for_Windows.exe
2014-07-17 20:41 - 2014-07-17 20:41 - 00000000 ____D () C:\Program Files (x86)\Lame For Audacity
2014-07-17 20:34 - 2014-07-17 20:34 - 00000983 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-07-17 20:34 - 2014-07-17 20:34 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-07-17 20:33 - 2014-07-17 20:30 - 22180353 _____ (Audacity Team ) C:\Users\HP\Downloads\audacity-win-2.0.5.exe
2014-07-17 16:54 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-07-17 16:06 - 2014-07-17 16:06 - 00001496 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-07-17 16:06 - 2013-11-25 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-07-17 16:06 - 2013-11-25 22:38 - 00000000 ____D () C:\Users\HP\AppData\Roaming\DVDVideoSoft
2014-07-17 16:06 - 2013-11-25 22:38 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-07-17 16:04 - 2014-07-17 16:03 - 29521528 _____ (DVDVideoSoft Ltd. ) C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe
2014-07-17 16:02 - 2014-07-17 15:59 - 06262476 _____ (DVDVideoSoft Ltd. ) C:\Users\HP\Downloads\FreeStudio (1).exe
2014-07-17 15:52 - 2014-07-17 15:52 - 00552781 _____ () C:\Users\HP\Downloads\Alligatoah - Alligatoah Lady Gaga Remix(1).mp3.part
2014-07-17 15:46 - 2014-07-17 15:46 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Xilisoft
2014-07-17 15:40 - 2014-07-17 15:38 - 37526568 _____ () C:\Users\HP\Downloads\x-video-converter-standard7-de.exe
2014-07-17 15:10 - 2013-09-11 19:54 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-17 15:09 - 2014-07-17 15:10 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-17 15:09 - 2014-07-17 15:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-17 15:09 - 2014-07-17 15:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-17 15:09 - 2014-07-17 15:10 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-17 15:09 - 2014-07-17 15:09 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-17 14:55 - 2014-07-17 14:54 - 00004698 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 19:38 - 2014-07-16 19:38 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-15 14:19 - 2013-09-11 19:56 - 00042040 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-07-14 12:37 - 2014-07-14 12:37 - 00000000 _____ () C:\Users\HP\Desktop\alligatoah.txt

Some content of TEMP:
====================
C:\Users\HP\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-09 00:13

==================== End Of Log ============================
         
--- --- ---


Addition.txt
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-08-2014 01
Ran by HP at 2014-08-11 10:19:09
Running from C:\Users\HP\Desktop\Trojanerboard
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}) (Version: 11.5.1.601 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{3FAEEEBE-48F4-84C1-2B49-96AE73E67E3E}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.0 - Atheros)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.5.464 - Avira)
Avira SearchFree Toolbar (HKLM-x32\...\{41564952-412D-5637-00A7-A758B70C0F05}) (Version: 12.15.5.1034 - APN, LLC)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version:  - )
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version:  - )
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version:  - Infinity Ward)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.1124.2131.38610 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.3.4746 - CDBurnerXP)
Commander Keen 1: Marooned on Mars (HKLM-x32\...\Commander Keen 1: Marooned on Mars - Install) (Version:  - )
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CPUID HWMonitor 1.24 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2216 - CyberLink Corp.)
CyberLink DVD Suite (x32 Version: 7.0.2216 - CyberLink Corp.) Hidden
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 4.1.3419 - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 4.1.3419 - CyberLink Corp.) Hidden
CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.1.1110 - CyberLink Corp.)
CyberLink PowerDVD 8 (x32 Version: 8.0.1.1110 - CyberLink Corp.) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
Free Studio version 2013 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.0.1029 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.42.716 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.42.716 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.3 - Hewlett-Packard) Hidden
HP Setup (HKLM-x32\...\{17B4760F-334B-475D-829F-1A3E94A6A4E6}) (Version: 1.2.3560.3170 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)
HP Wireless Assistant (HKLM-x32\...\{54CC7901-804D-4155-B353-21F0CC9112AB}) (Version: 3.50.9.1 - Hewlett-Packard)
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
Java 7 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417040FF}) (Version: 7.0.400 - Oracle)
Java 7 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217065FF}) (Version: 7.0.650 - Oracle)
Java Auto Updater (x32 Version: 2.1.65.20 - Oracle, Inc.) Hidden
Java SE Development Kit 7 Update 40 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170400}) (Version: 1.7.0.400 - Oracle)
Java(TM) 6 Update 17 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
LibreOffice 4.1.3.2 (HKLM-x32\...\{4F3722AD-197D-4DBB-BDFB-D2F0D6776354}) (Version: 4.1.3.2 - The Document Foundation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM-x32\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Works (HKLM-x32\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
Need for Speed™ Most Wanted (HKLM-x32\...\{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}) (Version:  - )
NetBeans IDE 7.3.1 (HKLM\...\nbi-nb-base-7.3.1.0.201306052037) (Version: 7.3.1 - NetBeans.org)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.1 - pdfforge)
Pirates of the Caribbean (HKLM-x32\...\{C388D147-CCBA-411C-B9FC-2CC1B4EFB240}) (Version:  - )
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3415 - CyberLink Corp.)
Power2Go (x32 Version: 6.0.3415 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3420 - CyberLink Corp.)
PowerDirector (x32 Version: 7.0.3420 - CyberLink Corp.) Hidden
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30105 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.2214 - CyberLink Corp.) Hidden
RtVOsd (HKLM\...\{091A0130-A82F-4A6D-9C61-3BBBB3289030}) (Version: 1.0.6 - Realtek Semiconductor Corp.)
Scratch (HKLM-x32\...\Scratch) (Version: 1.3.1.0 - MIT Media Lab Lifelong Kindergarten Group)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
System Explorer 5.9.0 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version:  - Mister Group)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Call (x32 Version: 14.0.8064.0206 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 14.0.8081.709 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 14.0.8091.0730 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{76618402-179D-4699-A66B-D351C59436BC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Writer (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Worms Revolution (HKLM-x32\...\Steam App 200170) (Version:  - Team17 Digital Ltd.)
Worms Ultimate Mayhem (HKLM-x32\...\Steam App 70600) (Version:  - Team17 Software Ltd.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1640148654-1491450004-3307663096-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\HP\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1640148654-1491450004-3307663096-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1640148654-1491450004-3307663096-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1640148654-1491450004-3307663096-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1640148654-1491450004-3307663096-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points  =========================

18-07-2014 12:48:37 Windows Update
22-07-2014 14:05:11 Windows Update
23-07-2014 10:42:33 Windows Update
25-07-2014 09:37:52 Windows Update
08-08-2014 19:08:31 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {09BBCA34-3D9F-46A0-95DF-868C6A73125E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-05-13] (Microsoft)
Task: {1F5FE34E-B4A2-4288-B939-53FAC1FB124A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {1FCD03A8-3E05-4147-9F12-F86AA0355F32} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2009-10-07] ()
Task: {28A237F7-8AA7-473E-9317-3052F0745945} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2009-10-07] ()
Task: {40B6523A-0C5A-4D4F-9444-314EDD181D30} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {58E3D346-EBE3-41F1-ACBC-8D0B65E8804F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-03-21] (Hewlett-Packard)
Task: {759A91CC-4EE8-4FDD-97A1-B97A030A8E98} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-11] (Google Inc.)
Task: {7681F9FA-26D9-48C0-8D32-00DE7B53DFA0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {C567A3A2-E60C-4996-B551-D3A19135AABD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-03-21] (Hewlett-Packard)
Task: {CB58E691-6943-4BCE-9F00-37075A0FD784} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {CE737F13-C2F7-4E7A-AC35-C6BF73178808} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09] (Adobe Systems Incorporated)
Task: {DF2DAF47-8181-40F9-9D78-1C77EBA1A6C1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-11] (Google Inc.)
Task: {F7FB6BC4-C094-43C0-976E-F39E16B0506B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2010-01-20 05:33 - 2009-07-06 21:20 - 00247152 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2009-07-01 16:44 - 2009-07-01 16:44 - 00632888 _____ () C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
2014-08-11 10:12 - 2014-08-11 10:12 - 00050477 _____ () C:\Users\HP\Desktop\Trojanerboard\Defogger.exe
2014-06-12 22:13 - 2014-06-12 22:13 - 03022960 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2014-06-12 22:13 - 2014-06-12 22:13 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2014-06-12 22:13 - 2014-06-12 22:13 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2014-07-21 13:32 - 2014-07-15 11:24 - 00718664 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libglesv2.dll
2014-07-21 13:32 - 2014-07-15 11:24 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\libegl.dll
2014-07-21 13:32 - 2014-07-15 11:24 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll
2014-07-21 13:32 - 2014-07-15 11:24 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll
2014-07-21 13:32 - 2014-07-15 11:24 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll
2014-07-21 13:32 - 2014-07-15 11:24 - 14664008 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll
2014-08-11 09:56 - 2014-08-11 09:56 - 26065408 _____ () C:\Program Files (x86)\Battle.net\Battle.net.4906\libcef.dll
2014-08-11 09:56 - 2014-08-11 09:56 - 00739840 _____ () C:\Program Files (x86)\Battle.net\Battle.net.4906\libglesv2.dll
2014-08-11 09:56 - 2014-08-11 09:56 - 00130048 _____ () C:\Program Files (x86)\Battle.net\Battle.net.4906\libegl.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^HP^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: Easybits Recovery => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: NCPluginUpdater => "c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update
MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/09/2014 00:21:41 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (07/25/2014 11:13:48 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (07/24/2014 00:05:55 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/24/2014 00:05:55 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/24/2014 00:05:55 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/24/2014 00:05:55 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)

Error: (07/24/2014 00:05:47 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Plug-In in <Search.JetPropStore> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/24/2014 00:05:47 AM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Die Eigenschaftenspeicherdaten können von Windows Search nicht geladen werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Die Inhaltsindexdatenbank ist fehlerhaft.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (07/24/2014 00:05:46 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/24/2014 00:05:46 AM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=4700} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (07/24/2014 00:05:56 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/24/2014 00:05:56 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

Error: (07/24/2014 00:05:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SSDP-Suche" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (07/24/2014 00:05:19 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst SSDP-Suche erreicht.

Error: (07/23/2014 01:42:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Ask Aktualisierungsdienst" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (07/22/2014 03:57:37 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80004005

Error: (07/17/2014 09:10:31 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR5 gefunden.

Error: (07/16/2014 03:30:34 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WerSvc" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%50

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (07/14/2014 10:59:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎14.‎07.‎2014 um 18:06:36 unerwartet heruntergefahren.

Error: (07/13/2014 06:29:50 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎13.‎07.‎2014 um 18:28:13 unerwartet heruntergefahren.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-09-11 23:09:57.723
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 23:09:57.694
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 22:51:02.614
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 22:51:02.568
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 22:50:17.297
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 22:50:17.250
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 22:32:11.215
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 22:32:11.168
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 67%
Total physical RAM: 3957.86 MB
Available physical RAM: 1277.75 MB
Total Pagefile: 7913.9 MB
Available Pagefile: 4542.57 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:444.24 GB) (Free:275.66 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:21.17 GB) (Free:9.87 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:0.16 GB) (Free:0.15 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: DCC2FEA3)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=444 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=21 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=162 MB) - (Type=0C)

==================== End Of Log ============================
         

gmer.log
Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-08-11 10:50:43
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST950032 rev.0001 465,76GB
Running: Gmer-19357.exe; Driver: C:\Users\HP\AppData\Local\Temp\pxldipoc.sys


---- User code sections - GMER 2.1 ----

.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[3252] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                              0000000075661465 2 bytes [66, 75]
.text    C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[3252] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                             00000000756614bb 2 bytes [66, 75]
.text    ...                                                                                                                                                                                                * 2
.text    C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe[3324] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                           0000000075661465 2 bytes [66, 75]
.text    C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe[3324] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                          00000000756614bb 2 bytes [66, 75]
.text    ...                                                                                                                                                                                                * 2
---- Processes - GMER 2.1 ----

Library  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8ADD990-5ABF-4911-8F02-28D0E0DCA536}\offreg.dll (*** suspicious ***) @ C:\Windows\System32\svchost.exe [1872](2014-08-08 22:23:57)  000007feed440000

---- Disk sectors - GMER 2.1 ----

Disk     \Device\Harddisk0\DR0                                                                                                                                                                              unknown MBR code

---- EOF - GMER 2.1 ----
         
__________________

Alt 11.08.2014, 14:36   #4
Warlord711
/// TB-Ausbilder
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Führ das mal bitte aus:

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie | Spende | Lob & Kritik

Alt 11.08.2014, 14:47   #5
Kenny_sc2
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Ich habe den TDSSKiller scannen lassen

Hier ist der Report:

Code:
ATTFilter
14:43:38.0181 0x1144  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
14:43:44.0618 0x1144  ============================================================
14:43:44.0619 0x1144  Current date / time: 2014/08/11 14:43:44.0618
14:43:44.0619 0x1144  SystemInfo:
14:43:44.0619 0x1144  
14:43:44.0619 0x1144  OS Version: 6.1.7601 ServicePack: 1.0
14:43:44.0619 0x1144  Product type: Workstation
14:43:44.0619 0x1144  ComputerName: HP-PC
14:43:44.0619 0x1144  UserName: HP
14:43:44.0619 0x1144  Windows directory: C:\Windows
14:43:44.0619 0x1144  System windows directory: C:\Windows
14:43:44.0619 0x1144  Running under WOW64
14:43:44.0619 0x1144  Processor architecture: Intel x64
14:43:44.0619 0x1144  Number of processors: 4
14:43:44.0619 0x1144  Page size: 0x1000
14:43:44.0619 0x1144  Boot type: Normal boot
14:43:44.0619 0x1144  ============================================================
14:43:45.0208 0x1144  KLMD registered as C:\Windows\system32\drivers\56060887.sys
14:43:45.0554 0x1144  System UUID: {0B8EDA02-1078-6D43-DA05-41A73BDF2CF1}
14:43:46.0208 0x1144  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:43:46.0216 0x1144  ============================================================
14:43:46.0216 0x1144  \Device\Harddisk0\DR0:
14:43:46.0246 0x1144  MBR partitions:
14:43:46.0246 0x1144  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
14:43:46.0246 0x1144  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x3787C000
14:43:46.0246 0x1144  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x378E0000, BlocksNum 0x2A55000
14:43:46.0246 0x1144  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A335000, BlocksNum 0x51000
14:43:46.0246 0x1144  ============================================================
14:43:46.0329 0x1144  C: <-> \Device\Harddisk0\DR0\Partition2
14:43:46.0377 0x1144  D: <-> \Device\Harddisk0\DR0\Partition3
14:43:46.0396 0x1144  E: <-> \Device\Harddisk0\DR0\Partition4
14:43:46.0396 0x1144  ============================================================
14:43:46.0396 0x1144  Initialize success
14:43:46.0396 0x1144  ============================================================
14:44:15.0874 0x1304  ============================================================
14:44:15.0874 0x1304  Scan started
14:44:15.0874 0x1304  Mode: Manual; SigCheck; TDLFS; 
14:44:15.0874 0x1304  ============================================================
14:44:15.0874 0x1304  KSN ping started
14:44:27.0598 0x1304  KSN ping finished: true
14:44:30.0192 0x1304  ================ Scan system memory ========================
14:44:30.0192 0x1304  System memory - ok
14:44:30.0193 0x1304  ================ Scan services =============================
14:44:30.0375 0x1304  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
14:44:30.0497 0x1304  1394ohci - ok
14:44:30.0557 0x1304  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:44:30.0606 0x1304  ACPI - ok
14:44:30.0651 0x1304  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
14:44:30.0747 0x1304  AcpiPmi - ok
14:44:30.0917 0x1304  [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:44:30.0937 0x1304  AdobeFlashPlayerUpdateSvc - ok
14:44:30.0995 0x1304  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
14:44:31.0055 0x1304  adp94xx - ok
14:44:31.0108 0x1304  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
14:44:31.0154 0x1304  adpahci - ok
14:44:31.0199 0x1304  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
14:44:31.0227 0x1304  adpu320 - ok
14:44:31.0258 0x1304  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:44:31.0394 0x1304  AeLookupSvc - ok
14:44:31.0482 0x1304  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
14:44:31.0496 0x1304  AERTFilters - ok
14:44:31.0576 0x1304  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
14:44:31.0680 0x1304  AFD - ok
14:44:31.0734 0x1304  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
14:44:31.0756 0x1304  agp440 - ok
14:44:31.0790 0x1304  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
14:44:31.0858 0x1304  ALG - ok
14:44:31.0915 0x1304  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
14:44:31.0934 0x1304  aliide - ok
14:44:32.0028 0x1304  ALSysIO - ok
14:44:32.0070 0x1304  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
14:44:32.0090 0x1304  amdide - ok
14:44:32.0133 0x1304  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
14:44:32.0187 0x1304  AmdK8 - ok
14:44:32.0457 0x1304  [ 19B5C61CB09BFF2BD69E063EE54B56C3, EDA5897A58115ACCBB880EBAE1034E45AA0F2038A98C21E3A3CF1662C360408B ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
14:44:32.0921 0x1304  amdkmdag - ok
14:44:32.0979 0x1304  [ 07561D3B7FD99F6E186C49C2D0628E38, D2D72EB45EAD29A3099C040E99A4F1F4902D3BDC0466800C63ECD33343DC1224 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
14:44:33.0057 0x1304  amdkmdap - detected UnsignedFile.Multi.Generic ( 1 )
14:44:33.0274 0x1304  Detect skipped due to KSN trusted
14:44:33.0275 0x1304  amdkmdap - ok
14:44:33.0298 0x1304  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
14:44:33.0343 0x1304  AmdPPM - ok
14:44:33.0396 0x1304  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:44:33.0421 0x1304  amdsata - ok
14:44:33.0456 0x1304  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
14:44:33.0483 0x1304  amdsbs - ok
14:44:33.0499 0x1304  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:44:33.0519 0x1304  amdxata - ok
14:44:33.0624 0x1304  [ 4C14746BCBF9985BDBF1CD1BEED96DF8, 8EF50FBD98C9AFD85F5D08692E7AEC21812B70074AA0DC6DCDFDBC2FFE34A75D ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
14:44:33.0655 0x1304  AntiVirSchedulerService - ok
14:44:33.0710 0x1304  [ 4C14746BCBF9985BDBF1CD1BEED96DF8, 8EF50FBD98C9AFD85F5D08692E7AEC21812B70074AA0DC6DCDFDBC2FFE34A75D ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
14:44:33.0729 0x1304  AntiVirService - ok
14:44:33.0838 0x1304  [ 1BF085C13A8F62E056E6201AFCF5E675, 8768E18A536ACCF3A0F0E31F9B5FF30054ACCF1CC0E77AC7A386EDBDFC663C63 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
14:44:33.0890 0x1304  AntiVirWebService - ok
14:44:33.0973 0x1304  [ E7F2414D8EBF7C269FC5FC878C1DD1E9, 1131F3134A8F9B899BDB6F3CAAC73AF31DE703DC922F4F24BC87994CB859F40D ] APNMCP          C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
14:44:33.0988 0x1304  APNMCP - ok
14:44:34.0039 0x1304  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
14:44:34.0209 0x1304  AppID - ok
14:44:34.0242 0x1304  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:44:34.0320 0x1304  AppIDSvc - ok
14:44:34.0355 0x1304  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
14:44:34.0408 0x1304  Appinfo - ok
14:44:34.0461 0x1304  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
14:44:34.0486 0x1304  arc - ok
14:44:34.0495 0x1304  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
14:44:34.0519 0x1304  arcsas - ok
14:44:34.0649 0x1304  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:44:34.0690 0x1304  aspnet_state - ok
14:44:34.0725 0x1304  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:44:34.0798 0x1304  AsyncMac - ok
14:44:34.0820 0x1304  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
14:44:34.0839 0x1304  atapi - ok
14:44:35.0016 0x1304  [ B4421D8CDADC441F76BA39532A3E3414, 4C7C14C99E2095012A85672C824E21CF2FC152BCC37A1B25BF3189D0F6A06ED3 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
14:44:35.0309 0x1304  athr - ok
14:44:35.0364 0x1304  [ C22D4905DDDF73EB0349D3B0604234A2, F86220290663FA95F3D8181D41F9D105634A62D50856BCEB174B9675F8DD7669 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
14:44:35.0434 0x1304  AtiHDAudioService - ok
14:44:35.0464 0x1304  [ D481083348138B4933ACFE95812DB71C, 62B8B1C844FCF6CF3FC8987A3B0963FEB1DFD28D9F977BDFD04DA7F358CBF0F6 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
14:44:35.0493 0x1304  AtiHdmiService - ok
14:44:35.0746 0x1304  [ 19B5C61CB09BFF2BD69E063EE54B56C3, EDA5897A58115ACCBB880EBAE1034E45AA0F2038A98C21E3A3CF1662C360408B ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
14:44:35.0990 0x1304  atikmdag - ok
14:44:36.0164 0x1304  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:44:36.0265 0x1304  AudioEndpointBuilder - ok
14:44:36.0306 0x1304  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:44:36.0375 0x1304  AudioSrv - ok
14:44:36.0413 0x1304  [ 4663C5AD76FE8E19592DE808156FA07D, 605827B4A9D6930BC752D124BF75D55D4927B0ABEF881CDE66F3C5CC1DB215FE ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
14:44:36.0438 0x1304  avgntflt - ok
14:44:36.0487 0x1304  [ 8902AEC2382A37E9E99A4E0D52DBD42B, 138F2D7E7430132B2C527D413BC845CC467F084F39C232EC3A17DD2A74EE401E ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
14:44:36.0511 0x1304  avipbb - ok
14:44:36.0527 0x1304  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
14:44:36.0546 0x1304  avkmgr - ok
14:44:36.0591 0x1304  [ 09036D9F85BE6B659D375D2F0BAD0AD2, CCF4D28F60CF8E2B0F781D41F9E9FA84739AC6F948C09203D2498D64222CF990 ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
14:44:36.0624 0x1304  avnetflt - ok
14:44:36.0685 0x1304  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:44:36.0824 0x1304  AxInstSV - ok
14:44:36.0882 0x1304  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
14:44:36.0988 0x1304  b06bdrv - ok
14:44:37.0022 0x1304  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:44:37.0075 0x1304  b57nd60a - ok
14:44:37.0119 0x1304  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:44:37.0217 0x1304  BDESVC - ok
14:44:37.0238 0x1304  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:44:37.0304 0x1304  Beep - ok
14:44:37.0391 0x1304  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
14:44:37.0455 0x1304  BFE - ok
14:44:37.0508 0x1304  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
14:44:37.0672 0x1304  BITS - ok
14:44:37.0691 0x1304  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:44:37.0736 0x1304  blbdrive - ok
14:44:37.0798 0x1304  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:44:37.0830 0x1304  bowser - ok
14:44:37.0870 0x1304  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:44:37.0919 0x1304  BrFiltLo - ok
14:44:37.0952 0x1304  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:44:37.0989 0x1304  BrFiltUp - ok
14:44:38.0028 0x1304  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
14:44:38.0081 0x1304  Browser - ok
14:44:38.0113 0x1304  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:44:38.0214 0x1304  Brserid - ok
14:44:38.0235 0x1304  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:44:38.0277 0x1304  BrSerWdm - ok
14:44:38.0317 0x1304  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:44:38.0364 0x1304  BrUsbMdm - ok
14:44:38.0369 0x1304  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:44:38.0415 0x1304  BrUsbSer - ok
14:44:38.0434 0x1304  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
14:44:38.0479 0x1304  BTHMODEM - ok
14:44:38.0517 0x1304  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
14:44:38.0593 0x1304  bthserv - ok
14:44:38.0629 0x1304  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:44:38.0697 0x1304  cdfs - ok
14:44:38.0756 0x1304  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
14:44:38.0810 0x1304  cdrom - ok
14:44:38.0882 0x1304  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
14:44:38.0946 0x1304  CertPropSvc - ok
14:44:38.0979 0x1304  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
14:44:39.0026 0x1304  circlass - ok
14:44:39.0085 0x1304  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
14:44:39.0121 0x1304  CLFS - ok
14:44:39.0170 0x1304  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:44:39.0195 0x1304  clr_optimization_v2.0.50727_32 - ok
14:44:39.0227 0x1304  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:44:39.0249 0x1304  clr_optimization_v2.0.50727_64 - ok
14:44:39.0343 0x1304  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:44:39.0420 0x1304  clr_optimization_v4.0.30319_32 - ok
14:44:39.0467 0x1304  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:44:39.0530 0x1304  clr_optimization_v4.0.30319_64 - ok
14:44:39.0563 0x1304  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
14:44:39.0598 0x1304  CmBatt - ok
14:44:39.0632 0x1304  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
14:44:39.0652 0x1304  cmdide - ok
14:44:39.0696 0x1304  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
14:44:39.0773 0x1304  CNG - ok
14:44:39.0821 0x1304  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
14:44:39.0842 0x1304  Compbatt - ok
14:44:39.0887 0x1304  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
14:44:39.0941 0x1304  CompositeBus - ok
14:44:39.0959 0x1304  COMSysApp - ok
14:44:39.0996 0x1304  cpuz136 - ok
14:44:40.0013 0x1304  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
14:44:40.0031 0x1304  crcdisk - ok
14:44:40.0099 0x1304  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:44:40.0168 0x1304  CryptSvc - ok
14:44:40.0225 0x1304  [ 7AF9DAC504FBD047CBC3E64AE52C92BF, CA8F9564733DED4C3895CF7150BB254995D66889E6BE08D6654E4F897E4FF7A4 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
14:44:40.0311 0x1304  dc3d - ok
14:44:40.0377 0x1304  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:44:40.0470 0x1304  DcomLaunch - ok
14:44:40.0530 0x1304  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
14:44:40.0623 0x1304  defragsvc - ok
14:44:40.0657 0x1304  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:44:40.0746 0x1304  DfsC - ok
14:44:40.0819 0x1304  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:44:40.0919 0x1304  Dhcp - ok
14:44:40.0941 0x1304  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
14:44:41.0031 0x1304  discache - ok
14:44:41.0064 0x1304  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
14:44:41.0088 0x1304  Disk - ok
14:44:41.0135 0x1304  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:44:41.0195 0x1304  Dnscache - ok
14:44:41.0252 0x1304  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:44:41.0342 0x1304  dot3svc - ok
14:44:41.0396 0x1304  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
14:44:41.0458 0x1304  DPS - ok
14:44:41.0522 0x1304  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:44:41.0589 0x1304  drmkaud - ok
14:44:41.0668 0x1304  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:44:41.0753 0x1304  DXGKrnl - ok
14:44:41.0808 0x1304  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
14:44:41.0871 0x1304  EapHost - ok
14:44:42.0081 0x1304  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
14:44:42.0330 0x1304  ebdrv - ok
14:44:42.0388 0x1304  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
14:44:42.0460 0x1304  EFS - ok
14:44:42.0549 0x1304  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:44:42.0687 0x1304  ehRecvr - ok
14:44:42.0707 0x1304  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
14:44:42.0796 0x1304  ehSched - ok
14:44:42.0847 0x1304  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
14:44:42.0899 0x1304  elxstor - ok
14:44:42.0943 0x1304  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
14:44:42.0983 0x1304  ErrDev - ok
14:44:43.0057 0x1304  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
14:44:43.0126 0x1304  EventSystem - ok
14:44:43.0145 0x1304  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
14:44:43.0204 0x1304  exfat - ok
14:44:43.0254 0x1304  ezSharedSvc - ok
14:44:43.0278 0x1304  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:44:43.0361 0x1304  fastfat - ok
14:44:43.0440 0x1304  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
14:44:43.0570 0x1304  Fax - ok
14:44:43.0601 0x1304  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
14:44:43.0640 0x1304  fdc - ok
14:44:43.0671 0x1304  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
14:44:43.0744 0x1304  fdPHost - ok
14:44:43.0762 0x1304  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:44:43.0820 0x1304  FDResPub - ok
14:44:43.0844 0x1304  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:44:43.0866 0x1304  FileInfo - ok
14:44:43.0887 0x1304  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:44:43.0954 0x1304  Filetrace - ok
14:44:43.0980 0x1304  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
14:44:44.0001 0x1304  flpydisk - ok
14:44:44.0046 0x1304  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:44:44.0080 0x1304  FltMgr - ok
14:44:44.0179 0x1304  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
14:44:44.0285 0x1304  FontCache - ok
14:44:44.0352 0x1304  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:44:44.0389 0x1304  FontCache3.0.0.0 - ok
14:44:44.0426 0x1304  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:44:44.0450 0x1304  FsDepends - ok
14:44:44.0493 0x1304  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:44:44.0514 0x1304  Fs_Rec - ok
14:44:44.0561 0x1304  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:44:44.0600 0x1304  fvevol - ok
14:44:44.0618 0x1304  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
14:44:44.0640 0x1304  gagp30kx - ok
14:44:44.0726 0x1304  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
14:44:44.0848 0x1304  gpsvc - ok
14:44:44.0853 0x1304  GPU-Z - ok
14:44:44.0921 0x1304  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:44:44.0933 0x1304  gupdate - ok
14:44:44.0965 0x1304  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:44:44.0976 0x1304  gupdatem - ok
14:44:45.0009 0x1304  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:44:45.0102 0x1304  hcw85cir - ok
14:44:45.0163 0x1304  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:44:45.0220 0x1304  HdAudAddService - ok
14:44:45.0259 0x1304  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
14:44:45.0306 0x1304  HDAudBus - ok
14:44:45.0348 0x1304  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
14:44:45.0367 0x1304  HECIx64 - ok
14:44:45.0387 0x1304  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
14:44:45.0425 0x1304  HidBatt - ok
14:44:45.0446 0x1304  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
14:44:45.0493 0x1304  HidBth - ok
14:44:45.0524 0x1304  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
14:44:45.0566 0x1304  HidIr - ok
14:44:45.0599 0x1304  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
14:44:45.0662 0x1304  hidserv - ok
14:44:45.0723 0x1304  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
14:44:45.0753 0x1304  HidUsb - ok
14:44:45.0793 0x1304  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:44:45.0862 0x1304  hkmsvc - ok
14:44:45.0905 0x1304  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:44:45.0983 0x1304  HomeGroupListener - ok
14:44:46.0005 0x1304  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:44:46.0047 0x1304  HomeGroupProvider - ok
14:44:46.0137 0x1304  [ BB1FC298BE53AAB1E110F6E786BD8AC5, C2DA2C3CE96D5F8B50013063B5EF7BED7478636896C709A7AF34855B2E69B9F1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
14:44:46.0168 0x1304  HP Support Assistant Service - detected UnsignedFile.Multi.Generic ( 1 )
14:44:46.0386 0x1304  Detect skipped due to KSN trusted
14:44:46.0386 0x1304  HP Support Assistant Service - ok
14:44:46.0438 0x1304  [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
14:44:46.0487 0x1304  HpqKbFiltr - ok
14:44:46.0585 0x1304  [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
14:44:46.0646 0x1304  hpqwmiex - ok
14:44:46.0699 0x1304  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:44:46.0722 0x1304  HpSAMD - ok
14:44:46.0788 0x1304  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:44:46.0904 0x1304  HTTP - ok
14:44:46.0930 0x1304  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:44:46.0948 0x1304  hwpolicy - ok
14:44:47.0012 0x1304  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
14:44:47.0040 0x1304  i8042prt - ok
14:44:47.0080 0x1304  [ BE7D72FCF442C26975942007E0831241, A0FD29B3D1A1278787F8B3FBE7EC3216AAF328467974A6D90752639BB44DCD84 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
14:44:47.0101 0x1304  iaStor - ok
14:44:47.0153 0x1304  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:44:47.0200 0x1304  iaStorV - ok
14:44:47.0282 0x1304  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:44:47.0400 0x1304  idsvc - ok
14:44:47.0420 0x1304  IEEtwCollectorService - ok
14:44:47.0675 0x1304  [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
14:44:48.0068 0x1304  igfx - ok
14:44:48.0109 0x1304  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
14:44:48.0130 0x1304  iirsp - ok
14:44:48.0179 0x1304  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
14:44:48.0260 0x1304  IKEEXT - ok
14:44:48.0460 0x1304  [ F94E2C3BA6D4B57C2E1DD03E950CBBC4, C0C4F779E1BA0A6C68937A2F6A0AEA5F49F0476A8520AC1323775536FA585A3C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:44:48.0725 0x1304  IntcAzAudAddService - ok
14:44:48.0749 0x1304  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
14:44:48.0767 0x1304  intelide - ok
14:44:48.0792 0x1304  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
14:44:48.0835 0x1304  intelppm - ok
14:44:48.0870 0x1304  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:44:48.0953 0x1304  IPBusEnum - ok
14:44:48.0989 0x1304  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:44:49.0061 0x1304  IpFilterDriver - ok
14:44:49.0144 0x1304  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:44:49.0221 0x1304  iphlpsvc - ok
14:44:49.0264 0x1304  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
14:44:49.0308 0x1304  IPMIDRV - ok
14:44:49.0345 0x1304  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:44:49.0420 0x1304  IPNAT - ok
14:44:49.0450 0x1304  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:44:49.0542 0x1304  IRENUM - ok
14:44:49.0586 0x1304  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:44:49.0606 0x1304  isapnp - ok
14:44:49.0635 0x1304  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
14:44:49.0683 0x1304  iScsiPrt - ok
14:44:49.0713 0x1304  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
14:44:49.0736 0x1304  kbdclass - ok
14:44:49.0784 0x1304  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
14:44:49.0823 0x1304  kbdhid - ok
14:44:49.0851 0x1304  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
14:44:49.0866 0x1304  KeyIso - ok
14:44:49.0909 0x1304  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:44:49.0932 0x1304  KSecDD - ok
14:44:49.0946 0x1304  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:44:49.0973 0x1304  KSecPkg - ok
14:44:49.0998 0x1304  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:44:50.0062 0x1304  ksthunk - ok
14:44:50.0104 0x1304  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:44:50.0207 0x1304  KtmRm - ok
14:44:50.0268 0x1304  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
14:44:50.0343 0x1304  LanmanServer - ok
14:44:50.0375 0x1304  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:44:50.0455 0x1304  LanmanWorkstation - ok
14:44:50.0490 0x1304  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:44:50.0555 0x1304  lltdio - ok
14:44:50.0601 0x1304  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:44:50.0696 0x1304  lltdsvc - ok
14:44:50.0726 0x1304  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:44:50.0774 0x1304  lmhosts - ok
14:44:50.0853 0x1304  [ 7485FBCEF9136F530953575E2977859D, 5A6A67EE407C6ECE637C2B2AC21259BB86D032E47CE59F77AAF48D687B74CFCB ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
14:44:50.0872 0x1304  LMS - ok
14:44:50.0897 0x1304  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
14:44:50.0921 0x1304  LSI_FC - ok
14:44:50.0946 0x1304  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
14:44:50.0970 0x1304  LSI_SAS - ok
14:44:50.0987 0x1304  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:44:51.0010 0x1304  LSI_SAS2 - ok
14:44:51.0030 0x1304  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:44:51.0055 0x1304  LSI_SCSI - ok
14:44:51.0086 0x1304  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
14:44:51.0162 0x1304  luafv - ok
14:44:51.0224 0x1304  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:44:51.0269 0x1304  Mcx2Svc - ok
14:44:51.0303 0x1304  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
14:44:51.0323 0x1304  megasas - ok
14:44:51.0340 0x1304  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
14:44:51.0371 0x1304  MegaSR - ok
14:44:51.0404 0x1304  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
14:44:51.0466 0x1304  MMCSS - ok
14:44:51.0492 0x1304  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
14:44:51.0561 0x1304  Modem - ok
14:44:51.0605 0x1304  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:44:51.0643 0x1304  monitor - ok
14:44:51.0699 0x1304  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
14:44:51.0721 0x1304  mouclass - ok
14:44:51.0754 0x1304  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
14:44:51.0790 0x1304  mouhid - ok
14:44:51.0829 0x1304  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:44:51.0852 0x1304  mountmgr - ok
14:44:51.0919 0x1304  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:44:51.0970 0x1304  MozillaMaintenance - ok
14:44:52.0006 0x1304  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
14:44:52.0037 0x1304  mpio - ok
14:44:52.0100 0x1304  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:44:52.0157 0x1304  mpsdrv - ok
14:44:52.0222 0x1304  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:44:52.0332 0x1304  MpsSvc - ok
14:44:52.0368 0x1304  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:44:52.0431 0x1304  MRxDAV - ok
14:44:52.0475 0x1304  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:44:52.0553 0x1304  mrxsmb - ok
14:44:52.0575 0x1304  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:44:52.0642 0x1304  mrxsmb10 - ok
14:44:52.0683 0x1304  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:44:52.0711 0x1304  mrxsmb20 - ok
14:44:52.0749 0x1304  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
14:44:52.0769 0x1304  msahci - ok
14:44:52.0814 0x1304  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
14:44:52.0844 0x1304  msdsm - ok
14:44:52.0861 0x1304  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
14:44:52.0914 0x1304  MSDTC - ok
14:44:52.0961 0x1304  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:44:53.0013 0x1304  Msfs - ok
14:44:53.0043 0x1304  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:44:53.0111 0x1304  mshidkmdf - ok
14:44:53.0146 0x1304  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:44:53.0165 0x1304  msisadrv - ok
14:44:53.0192 0x1304  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:44:53.0267 0x1304  MSiSCSI - ok
14:44:53.0271 0x1304  msiserver - ok
14:44:53.0298 0x1304  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:44:53.0367 0x1304  MSKSSRV - ok
14:44:53.0371 0x1304  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:44:53.0428 0x1304  MSPCLOCK - ok
14:44:53.0453 0x1304  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:44:53.0524 0x1304  MSPQM - ok
14:44:53.0571 0x1304  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:44:53.0616 0x1304  MsRPC - ok
14:44:53.0653 0x1304  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
14:44:53.0677 0x1304  mssmbios - ok
14:44:53.0701 0x1304  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:44:53.0774 0x1304  MSTEE - ok
14:44:53.0799 0x1304  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
14:44:53.0842 0x1304  MTConfig - ok
14:44:53.0870 0x1304  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
14:44:53.0895 0x1304  Mup - ok
14:44:53.0947 0x1304  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
14:44:54.0034 0x1304  napagent - ok
14:44:54.0090 0x1304  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:44:54.0164 0x1304  NativeWifiP - ok
14:44:54.0253 0x1304  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:44:54.0360 0x1304  NDIS - ok
14:44:54.0398 0x1304  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:44:54.0467 0x1304  NdisCap - ok
14:44:54.0501 0x1304  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:44:54.0553 0x1304  NdisTapi - ok
14:44:54.0607 0x1304  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:44:54.0661 0x1304  Ndisuio - ok
14:44:54.0697 0x1304  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:44:54.0778 0x1304  NdisWan - ok
14:44:54.0810 0x1304  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:44:54.0883 0x1304  NDProxy - ok
14:44:54.0917 0x1304  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:44:54.0988 0x1304  NetBIOS - ok
14:44:55.0037 0x1304  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:44:55.0124 0x1304  NetBT - ok
14:44:55.0144 0x1304  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
14:44:55.0157 0x1304  Netlogon - ok
14:44:55.0192 0x1304  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
14:44:55.0291 0x1304  Netman - ok
14:44:55.0338 0x1304  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:44:55.0383 0x1304  NetMsmqActivator - ok
14:44:55.0411 0x1304  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:44:55.0430 0x1304  NetPipeActivator - ok
14:44:55.0464 0x1304  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
14:44:55.0557 0x1304  netprofm - ok
14:44:55.0566 0x1304  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:44:55.0585 0x1304  NetTcpActivator - ok
14:44:55.0592 0x1304  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:44:55.0610 0x1304  NetTcpPortSharing - ok
14:44:55.0873 0x1304  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
14:44:56.0208 0x1304  netw5v64 - ok
14:44:56.0240 0x1304  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
14:44:56.0260 0x1304  nfrd960 - ok
14:44:56.0302 0x1304  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:44:56.0352 0x1304  NlaSvc - ok
14:44:56.0388 0x1304  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:44:56.0441 0x1304  Npfs - ok
14:44:56.0459 0x1304  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
14:44:56.0519 0x1304  nsi - ok
14:44:56.0537 0x1304  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:44:56.0603 0x1304  nsiproxy - ok
14:44:56.0695 0x1304  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:44:56.0824 0x1304  Ntfs - ok
14:44:56.0846 0x1304  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
14:44:56.0909 0x1304  Null - ok
14:44:56.0954 0x1304  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:44:56.0980 0x1304  nvraid - ok
14:44:56.0998 0x1304  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:44:57.0026 0x1304  nvstor - ok
14:44:57.0080 0x1304  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:44:57.0106 0x1304  nv_agp - ok
14:44:57.0200 0x1304  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:44:57.0281 0x1304  odserv - ok
14:44:57.0322 0x1304  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
14:44:57.0349 0x1304  ohci1394 - ok
14:44:57.0392 0x1304  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:44:57.0441 0x1304  ose - ok
14:44:57.0495 0x1304  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:44:57.0607 0x1304  p2pimsvc - ok
14:44:57.0641 0x1304  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
14:44:57.0682 0x1304  p2psvc - ok
14:44:57.0721 0x1304  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
14:44:57.0746 0x1304  Parport - ok
14:44:57.0783 0x1304  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:44:57.0809 0x1304  partmgr - ok
14:44:57.0832 0x1304  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:44:57.0878 0x1304  PcaSvc - ok
14:44:57.0918 0x1304  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
14:44:57.0954 0x1304  pci - ok
14:44:57.0980 0x1304  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
14:44:58.0003 0x1304  pciide - ok
14:44:58.0039 0x1304  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
14:44:58.0070 0x1304  pcmcia - ok
14:44:58.0082 0x1304  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:44:58.0104 0x1304  pcw - ok
14:44:58.0141 0x1304  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:44:58.0262 0x1304  PEAUTH - ok
14:44:58.0346 0x1304  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:44:58.0406 0x1304  PerfHost - ok
14:44:58.0496 0x1304  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
14:44:58.0659 0x1304  pla - ok
14:44:58.0704 0x1304  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:44:58.0779 0x1304  PlugPlay - ok
14:44:58.0805 0x1304  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:44:58.0851 0x1304  PNRPAutoReg - ok
14:44:58.0882 0x1304  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:44:58.0907 0x1304  PNRPsvc - ok
14:44:58.0956 0x1304  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:44:59.0070 0x1304  PolicyAgent - ok
14:44:59.0110 0x1304  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
14:44:59.0184 0x1304  Power - ok
14:44:59.0237 0x1304  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:44:59.0309 0x1304  PptpMiniport - ok
14:44:59.0346 0x1304  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
14:44:59.0400 0x1304  Processor - ok
14:44:59.0459 0x1304  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
14:44:59.0515 0x1304  ProfSvc - ok
14:44:59.0524 0x1304  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:44:59.0541 0x1304  ProtectedStorage - ok
14:44:59.0589 0x1304  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:44:59.0648 0x1304  Psched - ok
14:44:59.0723 0x1304  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
14:44:59.0869 0x1304  ql2300 - ok
14:44:59.0896 0x1304  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
14:44:59.0921 0x1304  ql40xx - ok
14:44:59.0958 0x1304  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
14:45:00.0003 0x1304  QWAVE - ok
14:45:00.0020 0x1304  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:45:00.0067 0x1304  QWAVEdrv - ok
14:45:00.0087 0x1304  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:45:00.0168 0x1304  RasAcd - ok
14:45:00.0211 0x1304  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:45:00.0265 0x1304  RasAgileVpn - ok
14:45:00.0287 0x1304  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
14:45:00.0345 0x1304  RasAuto - ok
14:45:00.0382 0x1304  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:45:00.0452 0x1304  Rasl2tp - ok
14:45:00.0494 0x1304  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
14:45:00.0596 0x1304  RasMan - ok
14:45:00.0633 0x1304  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:45:00.0711 0x1304  RasPppoe - ok
14:45:00.0740 0x1304  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:45:00.0818 0x1304  RasSstp - ok
14:45:00.0867 0x1304  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:45:00.0957 0x1304  rdbss - ok
14:45:00.0987 0x1304  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
14:45:01.0025 0x1304  rdpbus - ok
14:45:01.0060 0x1304  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:45:01.0131 0x1304  RDPCDD - ok
14:45:01.0152 0x1304  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:45:01.0224 0x1304  RDPENCDD - ok
14:45:01.0250 0x1304  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:45:01.0297 0x1304  RDPREFMP - ok
14:45:01.0366 0x1304  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
14:45:01.0447 0x1304  RdpVideoMiniport - ok
14:45:01.0492 0x1304  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:45:01.0565 0x1304  RDPWD - ok
14:45:01.0615 0x1304  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:45:01.0646 0x1304  rdyboost - ok
14:45:01.0662 0x1304  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:45:01.0738 0x1304  RemoteAccess - ok
14:45:01.0764 0x1304  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:45:01.0838 0x1304  RemoteRegistry - ok
14:45:01.0931 0x1304  [ 498EB62A160674E793FA40FD65390625, F7EFD480E6C95F5B6202EEB87F519A8A8187F7F26281FB3E302EDD1AD5771025 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
14:45:01.0951 0x1304  RichVideo - ok
14:45:01.0988 0x1304  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:45:02.0055 0x1304  RpcEptMapper - ok
14:45:02.0082 0x1304  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
14:45:02.0121 0x1304  RpcLocator - ok
14:45:02.0179 0x1304  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
14:45:02.0258 0x1304  RpcSs - ok
14:45:02.0287 0x1304  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:45:02.0342 0x1304  rspndr - ok
14:45:02.0382 0x1304  [ 483DF0B58CA532E5240E59DC41F30AA2, 3A5AC91E5B57B671072A40F38DA1F804ECDE30FB4D9042FB3FE7B7CA10C0D0BC ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
14:45:02.0418 0x1304  RSUSBSTOR - ok
14:45:02.0525 0x1304  [ F1D20C2B36F78863530B251DF504CC51, A3C71BDB45B1DB321BC2D9889CB25CF7840E145DFB769882748B7D507A605A42 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
14:45:02.0546 0x1304  RtkAudioService - ok
14:45:02.0616 0x1304  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
14:45:02.0672 0x1304  RTL8167 - ok
14:45:02.0729 0x1304  [ 4EA7E5DF0CB237156176FA0349E6E87F, 542C5291369009FD9B52B5939E3B55E4CC37056E03815986CA1C1EFCFB52F5D6 ] RtVOsdService   C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
14:45:02.0764 0x1304  RtVOsdService - detected UnsignedFile.Multi.Generic ( 1 )
14:45:02.0978 0x1304  Detect skipped due to KSN trusted
14:45:02.0978 0x1304  RtVOsdService - ok
14:45:03.0001 0x1304  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
14:45:03.0016 0x1304  SamSs - ok
14:45:03.0053 0x1304  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:45:03.0080 0x1304  sbp2port - ok
14:45:03.0116 0x1304  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:45:03.0178 0x1304  SCardSvr - ok
14:45:03.0208 0x1304  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:45:03.0276 0x1304  scfilter - ok
14:45:03.0347 0x1304  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
14:45:03.0473 0x1304  Schedule - ok
14:45:03.0512 0x1304  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:45:03.0559 0x1304  SCPolicySvc - ok
14:45:03.0629 0x1304  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
14:45:03.0681 0x1304  sdbus - ok
14:45:03.0719 0x1304  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:45:03.0812 0x1304  SDRSVC - ok
14:45:03.0843 0x1304  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:45:03.0894 0x1304  secdrv - ok
14:45:03.0928 0x1304  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
14:45:03.0999 0x1304  seclogon - ok
14:45:04.0032 0x1304  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
14:45:04.0101 0x1304  SENS - ok
14:45:04.0136 0x1304  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:45:04.0205 0x1304  SensrSvc - ok
14:45:04.0226 0x1304  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
14:45:04.0261 0x1304  Serenum - ok
14:45:04.0291 0x1304  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
14:45:04.0319 0x1304  Serial - ok
14:45:04.0357 0x1304  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
14:45:04.0401 0x1304  sermouse - ok
14:45:04.0443 0x1304  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
14:45:04.0494 0x1304  SessionEnv - ok
14:45:04.0505 0x1304  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
14:45:04.0576 0x1304  sffdisk - ok
14:45:04.0614 0x1304  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
14:45:04.0646 0x1304  sffp_mmc - ok
14:45:04.0650 0x1304  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
14:45:04.0676 0x1304  sffp_sd - ok
14:45:04.0722 0x1304  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
14:45:04.0769 0x1304  sfloppy - ok
14:45:04.0804 0x1304  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:45:04.0907 0x1304  SharedAccess - ok
14:45:04.0946 0x1304  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:45:05.0019 0x1304  ShellHWDetection - ok
14:45:05.0051 0x1304  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:45:05.0073 0x1304  SiSRaid2 - ok
14:45:05.0088 0x1304  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
14:45:05.0113 0x1304  SiSRaid4 - ok
14:45:05.0183 0x1304  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
14:45:05.0278 0x1304  SkypeUpdate - ok
14:45:05.0326 0x1304  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:45:05.0381 0x1304  Smb - ok
14:45:05.0422 0x1304  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:45:05.0455 0x1304  SNMPTRAP - ok
14:45:05.0479 0x1304  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:45:05.0499 0x1304  spldr - ok
14:45:05.0556 0x1304  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
14:45:05.0639 0x1304  Spooler - ok
14:45:05.0811 0x1304  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
14:45:06.0044 0x1304  sppsvc - ok
14:45:06.0078 0x1304  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:45:06.0157 0x1304  sppuinotify - ok
14:45:06.0211 0x1304  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:45:06.0316 0x1304  srv - ok
14:45:06.0339 0x1304  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:45:06.0415 0x1304  srv2 - ok
14:45:06.0462 0x1304  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
14:45:06.0517 0x1304  SrvHsfHDA - ok
14:45:06.0607 0x1304  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
14:45:06.0741 0x1304  SrvHsfV92 - ok
14:45:06.0780 0x1304  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
14:45:06.0856 0x1304  SrvHsfWinac - ok
14:45:06.0898 0x1304  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:45:06.0952 0x1304  srvnet - ok
14:45:06.0985 0x1304  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:45:07.0060 0x1304  SSDPSRV - ok
14:45:07.0088 0x1304  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:45:07.0137 0x1304  SstpSvc - ok
14:45:07.0220 0x1304  [ FF97DC2772C86D3402F150B7C8C6AEC0, 2C34029C38B3D34D33F10F2B20DEFEBC97D720D6157E4D97206EB0C64CF5BDA0 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
14:45:07.0301 0x1304  Steam Client Service - ok
14:45:07.0342 0x1304  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
14:45:07.0362 0x1304  stexstor - ok
14:45:07.0424 0x1304  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
14:45:07.0517 0x1304  stisvc - ok
14:45:07.0562 0x1304  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
14:45:07.0583 0x1304  swenum - ok
14:45:07.0654 0x1304  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
14:45:07.0800 0x1304  swprv - ok
14:45:07.0877 0x1304  [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
14:45:07.0924 0x1304  SynTP - ok
14:45:08.0024 0x1304  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
14:45:08.0159 0x1304  SysMain - ok
14:45:08.0327 0x1304  [ 196E20CE11EDB0EA3EDA491FCD3C943B, DDE0CA36C1E2C15621CAB6CCD84EB3F415F800B62629C213016B0C2FB04E7035 ] SystemExplorerHelpService C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
14:45:08.0387 0x1304  SystemExplorerHelpService - ok
14:45:08.0434 0x1304  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:45:08.0484 0x1304  TabletInputService - ok
14:45:08.0531 0x1304  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:45:08.0627 0x1304  TapiSrv - ok
14:45:08.0657 0x1304  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
14:45:08.0727 0x1304  TBS - ok
14:45:08.0845 0x1304  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:45:09.0011 0x1304  Tcpip - ok
14:45:09.0100 0x1304  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:45:09.0174 0x1304  TCPIP6 - ok
14:45:09.0221 0x1304  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:45:09.0261 0x1304  tcpipreg - ok
14:45:09.0300 0x1304  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:45:09.0365 0x1304  TDPIPE - ok
14:45:09.0390 0x1304  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:45:09.0424 0x1304  TDTCP - ok
14:45:09.0483 0x1304  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:45:09.0542 0x1304  tdx - ok
14:45:09.0586 0x1304  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
14:45:09.0609 0x1304  TermDD - ok
14:45:09.0646 0x1304  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
14:45:09.0745 0x1304  TermService - ok
14:45:09.0779 0x1304  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
14:45:09.0818 0x1304  Themes - ok
14:45:09.0850 0x1304  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
14:45:09.0908 0x1304  THREADORDER - ok
14:45:09.0922 0x1304  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
14:45:09.0992 0x1304  TrkWks - ok
14:45:10.0054 0x1304  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:45:10.0135 0x1304  TrustedInstaller - ok
14:45:10.0169 0x1304  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:45:10.0248 0x1304  tssecsrv - ok
14:45:10.0290 0x1304  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:45:10.0359 0x1304  TsUsbFlt - ok
14:45:10.0404 0x1304  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:45:10.0480 0x1304  tunnel - ok
14:45:10.0514 0x1304  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
14:45:10.0537 0x1304  uagp35 - ok
14:45:10.0577 0x1304  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:45:10.0687 0x1304  udfs - ok
14:45:10.0721 0x1304  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:45:10.0768 0x1304  UI0Detect - ok
14:45:10.0804 0x1304  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:45:10.0830 0x1304  uliagpkx - ok
14:45:10.0891 0x1304  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
14:45:10.0934 0x1304  umbus - ok
14:45:10.0973 0x1304  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
14:45:11.0012 0x1304  UmPass - ok
14:45:11.0166 0x1304  [ 7466809E6DA561D60C2F1CE8EDE3C73F, A3185049282A51B17C3DA839AF7E90F1CD395B2FB5587514EB2D65CB22854E2C ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
14:45:11.0293 0x1304  UNS - ok
14:45:11.0335 0x1304  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
14:45:11.0420 0x1304  upnphost - ok
14:45:11.0461 0x1304  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:45:11.0527 0x1304  usbccgp - ok
14:45:11.0576 0x1304  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
14:45:11.0637 0x1304  usbcir - ok
14:45:11.0675 0x1304  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
14:45:11.0719 0x1304  usbehci - ok
14:45:11.0759 0x1304  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
14:45:11.0829 0x1304  usbhub - ok
14:45:11.0872 0x1304  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
14:45:11.0893 0x1304  usbohci - ok
14:45:11.0914 0x1304  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
14:45:11.0956 0x1304  usbprint - ok
14:45:11.0980 0x1304  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:45:12.0067 0x1304  USBSTOR - ok
14:45:12.0092 0x1304  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
14:45:12.0116 0x1304  usbuhci - ok
14:45:12.0179 0x1304  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
14:45:12.0248 0x1304  usbvideo - ok
14:45:12.0277 0x1304  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
14:45:12.0324 0x1304  UxSms - ok
14:45:12.0346 0x1304  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
14:45:12.0373 0x1304  VaultSvc - ok
14:45:12.0424 0x1304  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:45:12.0447 0x1304  vdrvroot - ok
14:45:12.0508 0x1304  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
14:45:12.0627 0x1304  vds - ok
14:45:12.0656 0x1304  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:45:12.0685 0x1304  vga - ok
14:45:12.0696 0x1304  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:45:12.0770 0x1304  VgaSave - ok
14:45:12.0813 0x1304  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
14:45:12.0846 0x1304  vhdmp - ok
14:45:12.0883 0x1304  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:45:12.0903 0x1304  viaide - ok
14:45:12.0921 0x1304  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:45:12.0944 0x1304  volmgr - ok
14:45:12.0990 0x1304  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:45:13.0039 0x1304  volmgrx - ok
14:45:13.0058 0x1304  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:45:13.0092 0x1304  volsnap - ok
14:45:13.0106 0x1304  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
14:45:13.0132 0x1304  vsmraid - ok
14:45:13.0227 0x1304  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
14:45:13.0386 0x1304  VSS - ok
14:45:13.0418 0x1304  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
14:45:13.0441 0x1304  vwifibus - ok
14:45:13.0454 0x1304  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
14:45:13.0501 0x1304  vwififlt - ok
14:45:13.0544 0x1304  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
14:45:13.0636 0x1304  W32Time - ok
14:45:13.0672 0x1304  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
14:45:13.0712 0x1304  WacomPen - ok
14:45:13.0780 0x1304  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:45:13.0861 0x1304  WANARP - ok
14:45:13.0867 0x1304  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:45:13.0916 0x1304  Wanarpv6 - ok
14:45:14.0018 0x1304  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
14:45:14.0237 0x1304  wbengine - ok
14:45:14.0264 0x1304  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:45:14.0306 0x1304  WbioSrvc - ok
14:45:14.0350 0x1304  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:45:14.0425 0x1304  wcncsvc - ok
14:45:14.0444 0x1304  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:45:14.0499 0x1304  WcsPlugInService - ok
14:45:14.0520 0x1304  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
14:45:14.0540 0x1304  Wd - ok
14:45:14.0610 0x1304  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:45:14.0683 0x1304  Wdf01000 - ok
14:45:14.0716 0x1304  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:45:14.0826 0x1304  WdiServiceHost - ok
14:45:14.0838 0x1304  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:45:14.0864 0x1304  WdiSystemHost - ok
14:45:14.0906 0x1304  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
14:45:14.0948 0x1304  WebClient - ok
14:45:14.0979 0x1304  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:45:15.0084 0x1304  Wecsvc - ok
14:45:15.0103 0x1304  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:45:15.0175 0x1304  wercplsupport - ok
14:45:15.0212 0x1304  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:45:15.0261 0x1304  WerSvc - ok
14:45:15.0291 0x1304  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:45:15.0339 0x1304  WfpLwf - ok
14:45:15.0355 0x1304  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:45:15.0373 0x1304  WIMMount - ok
14:45:15.0397 0x1304  WinDefend - ok
14:45:15.0427 0x1304  WinHttpAutoProxySvc - ok
14:45:15.0483 0x1304  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:45:15.0560 0x1304  Winmgmt - ok
14:45:15.0676 0x1304  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
14:45:15.0880 0x1304  WinRM - ok
14:45:15.0950 0x1304  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
14:45:15.0995 0x1304  WinUsb - ok
14:45:16.0055 0x1304  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:45:16.0142 0x1304  Wlansvc - ok
14:45:16.0193 0x1304  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
14:45:16.0214 0x1304  WmiAcpi - ok
14:45:16.0255 0x1304  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:45:16.0302 0x1304  wmiApSrv - ok
14:45:16.0337 0x1304  WMPNetworkSvc - ok
14:45:16.0354 0x1304  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:45:16.0415 0x1304  WPCSvc - ok
14:45:16.0460 0x1304  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:45:16.0501 0x1304  WPDBusEnum - ok
14:45:16.0529 0x1304  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:45:16.0601 0x1304  ws2ifsl - ok
14:45:16.0630 0x1304  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
14:45:16.0670 0x1304  wscsvc - ok
14:45:16.0674 0x1304  WSearch - ok
14:45:16.0798 0x1304  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:45:16.0923 0x1304  wuauserv - ok
14:45:16.0967 0x1304  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:45:17.0026 0x1304  WudfPf - ok
14:45:17.0060 0x1304  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:45:17.0113 0x1304  WUDFRd - ok
14:45:17.0152 0x1304  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:45:17.0194 0x1304  wudfsvc - ok
14:45:17.0238 0x1304  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:45:17.0314 0x1304  WwanSvc - ok
14:45:17.0371 0x1304  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
14:45:17.0426 0x1304  yukonw7 - ok
14:45:17.0440 0x1304  ================ Scan global ===============================
14:45:17.0462 0x1304  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
14:45:17.0504 0x1304  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:45:17.0526 0x1304  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:45:17.0561 0x1304  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
14:45:17.0585 0x1304  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
14:45:17.0596 0x1304  [ Global ] - ok
14:45:17.0597 0x1304  ================ Scan MBR ==================================
14:45:17.0611 0x1304  [ 4D8964A63FF6F773CB800277C8BC1277 ] \Device\Harddisk0\DR0
14:45:18.0187 0x1304  \Device\Harddisk0\DR0 - ok
14:45:18.0187 0x1304  ================ Scan VBR ==================================
14:45:18.0190 0x1304  [ 5257B958529D816B89E3A312D19E1D59 ] \Device\Harddisk0\DR0\Partition1
14:45:18.0192 0x1304  \Device\Harddisk0\DR0\Partition1 - ok
14:45:18.0195 0x1304  [ 3B2A6DCCF404108351E7EB5B742E0096 ] \Device\Harddisk0\DR0\Partition2
14:45:18.0197 0x1304  \Device\Harddisk0\DR0\Partition2 - ok
14:45:18.0200 0x1304  [ CC291DE355C9A9794B1CE3BEB7D8AE1B ] \Device\Harddisk0\DR0\Partition3
14:45:18.0202 0x1304  \Device\Harddisk0\DR0\Partition3 - ok
14:45:18.0205 0x1304  [ 5E2DA8FB2646B1D98AD3C2F725D87282 ] \Device\Harddisk0\DR0\Partition4
14:45:18.0206 0x1304  \Device\Harddisk0\DR0\Partition4 - ok
14:45:18.0206 0x1304  ================ Scan generic autorun ======================
14:45:18.0207 0x1304  SynTPEnh - ok
14:45:18.0287 0x1304  [ 0262F66606ECB969B4CAD491BD3F6F88, 0036D02639AF96015A3C33BF8BB622DB1E6FC2C5ED52D721D6EE0774C97FC14F ] C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe
14:45:18.0413 0x1304  RtkOSD - detected UnsignedFile.Multi.Generic ( 1 )
14:45:18.0617 0x1304  Detect skipped due to KSN trusted
14:45:18.0617 0x1304  RtkOSD - ok
14:45:18.0681 0x1304  [ 52A3DF9E3C34B1AD9E68141B52B5C2F0, 146EC8DE57D49D19DABE7EAB56C9E77A65C8E5E8614D5B4A68BB3373A86FE605 ] C:\Program Files\Java\jre6\bin\jusched.exe
14:45:18.0712 0x1304  SunJavaUpdateSched - detected UnsignedFile.Multi.Generic ( 1 )
14:45:18.0921 0x1304  Detect skipped due to KSN trusted
14:45:18.0922 0x1304  SunJavaUpdateSched - ok
14:45:19.0226 0x1304  [ 0EC9DDFBBD77C15860887E637DF33288, D4EF0F8F05B59F44A118ACDB6A891CF2E6314A1671594AE5A433CE69058A7F62 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
14:45:19.0497 0x1304  RTHDVCPL - ok
14:45:19.0603 0x1304  [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
14:45:19.0642 0x1304  NCPluginUpdater - ok
14:45:19.0745 0x1304  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
14:45:19.0994 0x1304  Sidebar - ok
14:45:20.0025 0x1304  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
14:45:20.0080 0x1304  mctadmin - ok
14:45:20.0141 0x1304  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
14:45:20.0199 0x1304  Sidebar - ok
14:45:20.0206 0x1304  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
14:45:20.0229 0x1304  mctadmin - ok
14:45:20.0230 0x1304  Waiting for KSN requests completion. In queue: 105
14:45:21.0336 0x1304  AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.5.376 ), 0x41000 ( enabled : updated )
14:45:21.0364 0x1304  Win FW state via NFP2: enabled
14:45:21.0557 0x1304  ============================================================
14:45:21.0557 0x1304  Scan finished
14:45:21.0557 0x1304  ============================================================
14:45:21.0567 0x16d4  Detected object count: 0
14:45:21.0567 0x16d4  Actual detected object count: 0
         


Alt 11.08.2014, 15:05   #6
Warlord711
/// TB-Ausbilder
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.



Starte noch einmal FRST.
  • Ändere keine der Voreinstellungen und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
  • Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

Und bitte nochmal ein GMER Log !
__________________
--> Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze

Alt 11.08.2014, 18:26   #7
Kenny_sc2
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Vielen Dank schonmal, dass Sie sich Zeit für mich nehmen.

Hier sind die Logs:

Fixlog.txt:
Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 10-08-2014 01
Ran by HP at 2014-08-11 15:27:45 Run:1
Running from C:\Users\HP\Desktop\Trojanerboard
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
         
*****************

C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.


The system needed a reboot. 

==== End of Fixlog ====
         
#

Der Adw Cleaner hat glaub ich 2 Logs erstellt.
1.
Code:
ATTFilter
# AdwCleaner v3.205 - Bericht erstellt am 29/04/2014 um 23:35:55
# Aktualisiert 28/04/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : HP - HP-PC
# Gestartet von : C:\Users\HP\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Program Files (x86)\Show-Password
Ordner Gelöscht : C:\Windows\SysWOW64\AI_RecycleBin
Ordner Gelöscht : C:\Users\HP\AppData\Local\Temp\Iminent
Ordner Gelöscht : C:\Users\HP\AppData\LocalLow\Softonic
Ordner Gelöscht : C:\Users\HP\AppData\Roaming\OpenCandy
Ordner Gelöscht : C:\Users\HP\AppData\Roaming\pdfforge
Ordner Gelöscht : C:\Users\HP\Desktop\Save
Ordner Gelöscht : C:\Users\HP\Documents\Optimizer Pro
Datei Gelöscht : C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\searchplugins\softonic.xml
Datei Gelöscht : C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\user.js
Datei Gelöscht : C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\user.js
Datei Gelöscht : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\SoftonicToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Show-Password
Schlüssel Gelöscht : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Schlüssel Gelöscht : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Iminent

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17041

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v25.0.1 (de)

[ Datei : C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\prefs.js ]

Zeile gelöscht : user_pref("extensions.Softonic.admin", false);
Zeile gelöscht : user_pref("extensions.Softonic.aflt", "OC");
Zeile gelöscht : user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");
Zeile gelöscht : user_pref("extensions.Softonic.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.Softonic.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.Softonic.dfltSrch", true);
Zeile gelöscht : user_pref("extensions.Softonic.dnsErr", true);
Zeile gelöscht : user_pref("extensions.Softonic.excTlbr", false);
Zeile gelöscht : user_pref("extensions.Softonic.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.Softonic.hmpg", true);
Zeile gelöscht : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=13&cc=&mi=0e128f30000000000000f07bcb5249dd");
Zeile gelöscht : user_pref("extensions.Softonic.id", "0e128f30000000000000f07bcb5249dd");
Zeile gelöscht : user_pref("extensions.Softonic.instlDay", "16034");
Zeile gelöscht : user_pref("extensions.Softonic.instlRef", "MOY00621");
Zeile gelöscht : user_pref("extensions.Softonic.newTab", true);
Zeile gelöscht : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=0e128f30000000000000f07bcb5249dd");
Zeile gelöscht : user_pref("extensions.Softonic.prdct", "Softonic");
Zeile gelöscht : user_pref("extensions.Softonic.prtnrId", "softonic");
Zeile gelöscht : user_pref("extensions.Softonic.rvrt", "false");
Zeile gelöscht : user_pref("extensions.Softonic.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Zeile gelöscht : user_pref("extensions.Softonic.tlbrId", "opencandy2013");
Zeile gelöscht : user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=1&cc=&mi=0e128f30000000000000f07bcb5249dd&q=");
Zeile gelöscht : user_pref("extensions.Softonic.vrsn", "1.8.21.14");
Zeile gelöscht : user_pref("extensions.Softonic.vrsnTs", "1.8.21.1421:39:13");
Zeile gelöscht : user_pref("extensions.Softonic.vrsni", "1.8.21.14");
Zeile gelöscht : user_pref("iminent.enabledAds", "false");

-\\ Google Chrome v34.0.1847.131

[ Datei : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Search Provider] : hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=49&cc=&mi=0e128f30000000000000f07bcb5249dd
Gelöscht [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=UN33360180813624255&ctid=CT3281675

*************************

AdwCleaner[R0].txt - [5767 octets] - [29/04/2014 23:35:29]
AdwCleaner[S0].txt - [5773 octets] - [29/04/2014 23:35:55]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5833 octets] ##########
         
2.
Code:
ATTFilter
# AdwCleaner v3.304 - Bericht erstellt am 11/08/2014 um 15:35:04
# Aktualisiert 08/08/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : HP - HP-PC
# Gestartet von : C:\Users\HP\Desktop\Trojanerboard\adwcleaner_3.304.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [ Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17207


-\\ Mozilla Firefox v30.0 (de)

[ Datei : C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\prefs.js ]


-\\ Google Chrome v36.0.1985.125

[ Datei : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Search Provider] : hxxp://www.softonic.de/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [5767 octets] - [29/04/2014 23:35:29]
AdwCleaner[R1].txt - [1232 octets] - [11/08/2014 15:34:00]
AdwCleaner[S0].txt - [5917 octets] - [29/04/2014 23:35:55]
AdwCleaner[S1].txt - [1153 octets] - [11/08/2014 15:35:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1213 octets] ##########
         

JRT.txt :
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by HP on 11.08.2014 at 15:49:05,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B4C7B78A-45DE-452A-B281-4030C7C1260A}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"



~~~ FireFox

Emptied folder: C:\Users\HP\AppData\Roaming\mozilla\firefox\profiles\wnojg69g.default\minidumps [5 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11.08.2014 at 15:55:41,69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
mbam.txt
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 11.08.2014
Suchlauf-Zeit: 16:09:18
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.08.11.03
Rootkit Datenbank: v2014.08.04.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: HP

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 300546
Verstrichene Zeit: 1 Std, 31 Min, 43 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 4
PUP.Optional.Softonic.A, C:\Users\HP\Downloads\SoftonicDownloader_fuer_cdburnerxp-pro-64-bit.exe, In Quarantäne, [024d586d2853092d64657bafce3322de], 
PUP.Optional.Somoto.A, C:\Users\HP\Downloads\CommanderKeen1MaroonedonMars_downloader_by_dosgamesarchive.exe, In Quarantäne, [331ce5e0473474c2111c0038847cb24e], 
PUP.Optional.OneClickDownloader.A, C:\Users\HP\Downloads\HDvid-codec-Chrome.exe, In Quarantäne, [ce81279e87f4e84e6e506bb149b81ee2], 
PUP.Optional.DomaIQ, C:\Users\HP\Downloads\Java.exe, In Quarantäne, [bb948c396a11f54104f3330ecd3301ff], 

Physische Sektoren: 0
(No malicious items detected)


(end)
         
FRST.txt

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-08-2014 01
Ran by HP (administrator) on HP-PC on 11-08-2014 17:53:32
Running from C:\Users\HP\Desktop\Trojanerboard
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jusched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [RtkOSD] => C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe [995840 2009-10-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Java\jre6\bin\jusched.exe [172032 2010-01-20] (Sun Microsystems, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7573720 2014-05-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [750160 2014-07-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-05-13] (Hewlett-Packard)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\HP\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT/4
BHO: Avira SearchFree Toolbar -> {41564952-412D-5637-00A7-7A786E7484D7} -> C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name -> {41564952-412D-5637-00A7-7A786E7484D7} ->  No File
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} ->  No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: DownloadHelper - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-11-25]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-17]
FF Extension: Youtube playlist converter to MP3 - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\wnojg69g.default\Extensions\jid0-oxBE8TGrmyDm30WPvO8i9EFHmtQ@jetpack.xpi [2014-07-17]

Chrome: 
=======
CHR HomePage: 
CHR Extension: (Google Docs) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-11]
CHR Extension: (Google Drive) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-11]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-11]
CHR Extension: (Google-Suche) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-11]
CHR Extension: (Google Wallet) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-11]
CHR Extension: (Google Mail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-07-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-07-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1030224 2014-07-15] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [165784 2014-06-23] (APN LLC.)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
R2 RtVOsdService; C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe [315392 2010-06-24] (Realtek Semiconductor Corp.) [File not signed]
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [821720 2012-11-25] (Mister Group)
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [581120 2013-03-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-06-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [42040 2014-07-15] (Avira Operations GmbH & Co. KG)
S3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [225280 2009-09-23] (Realtek Semiconductor Corp.)
S3 ALSysIO; \??\C:\Users\HP\AppData\Local\Temp\ALSysIO64.sys [X]
S3 cpuz136; \??\C:\Users\HP\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X]
S3 GPU-Z; \??\C:\Users\HP\AppData\Local\Temp\GPU-Z.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-11 16:06 - 2014-08-11 17:51 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-11 16:06 - 2014-08-11 16:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-11 16:06 - 2014-08-11 16:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-08-11 16:06 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-11 16:06 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-11 16:06 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-11 15:55 - 2014-08-11 15:55 - 00001170 _____ () C:\Users\HP\Desktop\JRT.txt
2014-08-11 15:36 - 2014-08-11 17:43 - 00001446 _____ () C:\Windows\PFRO.log
2014-08-11 10:16 - 2014-08-11 17:53 - 00000000 ____D () C:\FRST
2014-08-11 10:13 - 2014-08-11 10:13 - 00000000 _____ () C:\Users\HP\defogger_reenable
2014-08-11 10:12 - 2014-08-11 17:53 - 00000000 ____D () C:\Users\HP\Desktop\Trojanerboard
2014-07-24 00:04 - 2014-08-11 17:43 - 00000560 _____ () C:\Windows\setupact.log
2014-07-24 00:04 - 2014-07-24 00:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-23 12:48 - 2014-07-23 12:48 - 00291606 _____ () C:\Users\HP\Downloads\TCPView.zip
2014-07-23 12:42 - 2014-07-23 12:53 - 00000000 ____D () C:\ProgramData\SystemExplorer
2014-07-23 12:42 - 2014-07-23 12:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2014-07-23 12:42 - 2014-07-23 12:42 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2014-07-23 12:40 - 2014-07-23 12:41 - 02243952 _____ (Mister Group ) C:\Users\HP\Downloads\SystemExplorerSetup_590.exe
2014-07-17 20:41 - 2014-07-17 20:41 - 00527423 _____ ( ) C:\Users\HP\Downloads\Lame_v3.99.3_for_Windows.exe
2014-07-17 20:41 - 2014-07-17 20:41 - 00000000 ____D () C:\Program Files (x86)\Lame For Audacity
2014-07-17 20:35 - 2014-07-17 21:04 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Audacity
2014-07-17 20:34 - 2014-07-17 20:34 - 00000983 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-07-17 20:34 - 2014-07-17 20:34 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-07-17 20:30 - 2014-07-17 20:33 - 22180353 _____ (Audacity Team ) C:\Users\HP\Downloads\audacity-win-2.0.5.exe
2014-07-17 16:06 - 2014-07-17 16:06 - 00001496 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-07-17 16:03 - 2014-07-17 16:04 - 29521528 _____ (DVDVideoSoft Ltd. ) C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe
2014-07-17 15:59 - 2014-07-17 16:02 - 06262476 _____ (DVDVideoSoft Ltd. ) C:\Users\HP\Downloads\FreeStudio (1).exe
2014-07-17 15:52 - 2014-07-17 15:52 - 00552781 _____ () C:\Users\HP\Downloads\Alligatoah - Alligatoah Lady Gaga Remix(1).mp3.part
2014-07-17 15:46 - 2014-07-17 15:46 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Xilisoft
2014-07-17 15:38 - 2014-07-17 15:40 - 37526568 _____ () C:\Users\HP\Downloads\x-video-converter-standard7-de.exe
2014-07-17 15:10 - 2014-07-17 15:09 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-17 15:10 - 2014-07-17 15:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-17 15:10 - 2014-07-17 15:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-17 15:10 - 2014-07-17 15:09 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-17 15:09 - 2014-07-17 15:09 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-17 14:54 - 2014-07-17 14:55 - 00004698 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 19:38 - 2014-07-16 19:38 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-14 12:37 - 2014-07-14 12:37 - 00000000 _____ () C:\Users\HP\Desktop\alligatoah.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-11 17:53 - 2014-08-11 10:16 - 00000000 ____D () C:\FRST
2014-08-11 17:53 - 2014-08-11 10:12 - 00000000 ____D () C:\Users\HP\Desktop\Trojanerboard
2014-08-11 17:51 - 2014-08-11 16:06 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-11 17:51 - 2009-07-14 06:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-11 17:51 - 2009-07-14 06:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-11 17:44 - 2013-11-25 22:19 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-11 17:43 - 2014-08-11 15:36 - 00001446 _____ () C:\Windows\PFRO.log
2014-08-11 17:43 - 2014-07-24 00:04 - 00000560 _____ () C:\Windows\setupact.log
2014-08-11 17:43 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-11 17:42 - 2011-10-26 09:09 - 01347768 _____ () C:\Windows\WindowsUpdate.log
2014-08-11 17:42 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\Offline Web Pages
2014-08-11 17:39 - 2010-01-20 12:19 - 00699666 _____ () C:\Windows\system32\perfh007.dat
2014-08-11 17:39 - 2010-01-20 12:19 - 00149774 _____ () C:\Windows\system32\perfc007.dat
2014-08-11 17:39 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-11 16:06 - 2014-08-11 16:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-11 16:06 - 2014-08-11 16:06 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-08-11 15:55 - 2014-08-11 15:55 - 00001170 _____ () C:\Users\HP\Desktop\JRT.txt
2014-08-11 15:35 - 2014-04-29 23:35 - 00000000 ____D () C:\AdwCleaner
2014-08-11 15:31 - 2014-04-29 20:52 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-08-11 15:29 - 2014-01-20 23:15 - 00000000 ____D () C:\Users\HP\AppData\Local\Battle.net
2014-08-11 15:27 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-11 10:13 - 2014-08-11 10:13 - 00000000 _____ () C:\Users\HP\defogger_reenable
2014-08-11 10:13 - 2011-10-26 10:05 - 00000000 ____D () C:\Users\HP
2014-08-11 10:02 - 2014-01-20 23:15 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-08-11 10:00 - 2014-01-23 21:44 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-08-11 09:54 - 2014-06-11 22:06 - 00000000 ____D () C:\Users\HP\AppData\Roaming\TS3Client
2014-08-08 20:59 - 2013-10-01 01:26 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-08 20:59 - 2013-10-01 01:26 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-05 09:20 - 2013-09-11 23:54 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-07-25 11:39 - 2013-10-01 01:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-24 00:20 - 2013-09-12 22:22 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Skype
2014-07-24 00:04 - 2014-07-24 00:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-23 12:53 - 2014-07-23 12:42 - 00000000 ____D () C:\ProgramData\SystemExplorer
2014-07-23 12:48 - 2014-07-23 12:48 - 00291606 _____ () C:\Users\HP\Downloads\TCPView.zip
2014-07-23 12:42 - 2014-07-23 12:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2014-07-23 12:42 - 2014-07-23 12:42 - 00000000 ____D () C:\Program Files (x86)\System Explorer
2014-07-23 12:41 - 2014-07-23 12:40 - 02243952 _____ (Mister Group ) C:\Users\HP\Downloads\SystemExplorerSetup_590.exe
2014-07-23 12:23 - 2013-09-23 16:52 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-22 19:10 - 2013-12-09 21:01 - 00000166 _____ () C:\Users\HP\Desktop\Liste.txt
2014-07-22 17:14 - 2013-09-11 20:01 - 00000000 ____D () C:\Users\HP\Documents\StarCraft II
2014-07-21 13:32 - 2013-09-11 20:00 - 00002135 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-18 14:41 - 2013-11-25 21:43 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-18 14:41 - 2013-09-11 20:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-17 21:04 - 2014-07-17 20:35 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Audacity
2014-07-17 20:41 - 2014-07-17 20:41 - 00527423 _____ ( ) C:\Users\HP\Downloads\Lame_v3.99.3_for_Windows.exe
2014-07-17 20:41 - 2014-07-17 20:41 - 00000000 ____D () C:\Program Files (x86)\Lame For Audacity
2014-07-17 20:34 - 2014-07-17 20:34 - 00000983 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-07-17 20:34 - 2014-07-17 20:34 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-07-17 20:33 - 2014-07-17 20:30 - 22180353 _____ (Audacity Team ) C:\Users\HP\Downloads\audacity-win-2.0.5.exe
2014-07-17 16:54 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-07-17 16:06 - 2014-07-17 16:06 - 00001496 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-07-17 16:06 - 2013-11-25 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-07-17 16:06 - 2013-11-25 22:38 - 00000000 ____D () C:\Users\HP\AppData\Roaming\DVDVideoSoft
2014-07-17 16:06 - 2013-11-25 22:38 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-07-17 16:04 - 2014-07-17 16:03 - 29521528 _____ (DVDVideoSoft Ltd. ) C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe
2014-07-17 16:02 - 2014-07-17 15:59 - 06262476 _____ (DVDVideoSoft Ltd. ) C:\Users\HP\Downloads\FreeStudio (1).exe
2014-07-17 15:52 - 2014-07-17 15:52 - 00552781 _____ () C:\Users\HP\Downloads\Alligatoah - Alligatoah Lady Gaga Remix(1).mp3.part
2014-07-17 15:46 - 2014-07-17 15:46 - 00000000 ____D () C:\Users\HP\AppData\Roaming\Xilisoft
2014-07-17 15:40 - 2014-07-17 15:38 - 37526568 _____ () C:\Users\HP\Downloads\x-video-converter-standard7-de.exe
2014-07-17 15:10 - 2013-09-11 19:54 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-17 15:09 - 2014-07-17 15:10 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-17 15:09 - 2014-07-17 15:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-17 15:09 - 2014-07-17 15:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-17 15:09 - 2014-07-17 15:10 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-17 15:09 - 2014-07-17 15:09 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-17 14:55 - 2014-07-17 14:54 - 00004698 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-16 19:38 - 2014-07-16 19:38 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-15 14:19 - 2013-09-11 19:56 - 00042040 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-07-14 12:37 - 2014-07-14 12:37 - 00000000 _____ () C:\Users\HP\Desktop\alligatoah.txt

Some content of TEMP:
====================
C:\Users\HP\AppData\Local\Temp\avgnt.exe
C:\Users\HP\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-09 00:13

==================== End Of Log ============================
         
--- --- ---


GMER.log
Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-08-11 18:19:39
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST950032 rev.0001 465,76GB
Running: Gmer-19357.exe; Driver: C:\Users\HP\AppData\Local\Temp\pxldipoc.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                         fffff80002fa9000 16 bytes [8B, E3, 41, 5F, 41, 5E, 41, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 545                                                         fffff80002fa9011 35 bytes {LEA ECX, [RSP+0x70]; CALL 0x3d64f}

---- User code sections - GMER 2.1 ----

.text     C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe[3228] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69   0000000076b01465 2 bytes [B0, 76]
.text     C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe[3228] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155  0000000076b014bb 2 bytes [B0, 76]
.text     ...                                                                                                                        * 2

---- Threads - GMER 2.1 ----

Thread    C:\Windows\System32\svchost.exe [636:2740]                                                                                 000007fef2d49688

---- Disk sectors - GMER 2.1 ----

Disk      \Device\Harddisk0\DR0                                                                                                      unknown MBR code

---- EOF - GMER 2.1 ----
         
LG Kenny

Alt 11.08.2014, 18:41   #8
Warlord711
/// TB-Ausbilder
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Zitat:
Der Adw Cleaner hat glaub ich 2 Logs erstellt.
Nö das eine Log ist aus dem April:
Code:
ATTFilter
# AdwCleaner v3.205 - Bericht erstellt am 29/04/2014 um 23:35:55
         
Malware-Ursachen für das Problem seh ich nicht, deshalb lass bitte Windows all in One Repair probieren:

http://www.trojaner-board.de/126216-...epair-aio.html
__________________
Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie | Spende | Lob & Kritik

Alt 11.08.2014, 22:40   #9
Kenny_sc2
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Ich habe nun auch den Windows all in One Repair probiert.
Hier ist der Log:

Code:
ATTFilter
System Variables
--------------------------------------------------------------------------------
OS: Windows 7 Home Premium
OS Architecture: 64-bit
OS Version: 6.1.7601
OS Service Pack: Service Pack 1
Computer Name: HP-PC
Windows Drive: C:\
Windows Path: C:\Windows
Program Files: C:\Program Files
Program Files (x86): C:\Program Files (x86)
Current Profile: C:\Users\HP
Current Profile SID: S-1-5-21-1640148654-1491450004-3307663096-1000
Current Profile Classes: S-1-5-21-1640148654-1491450004-3307663096-1000_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\HP\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 01:19:57

Process Count: 72
Commit Total: 2,38 GB
Commit Limit: 7,73 GB
Commit Peak: 2,42 GB
Handle Count: 18653
Kernel Total: 446,02 MB
Kernel Paged: 372,04 MB
Kernel Non Paged: 73,99 MB
System Cache: 2,02 GB
Thread Count: 865
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 3,87 GB
Memory Used: 1,90 GB(49,1982%)
Memory Avail.: 1,96 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 3,87 GB
Memory Used: 1,56 GB(40,3589%)
Memory Avail.: 2,31 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Started at (11.08.2014 21:26:48)

01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (11.08.2014 21:26:53)
   Running Repair Under Current User Account
   Done (11.08.2014 21:27:03)

01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (11.08.2014 21:27:03)
   Running Repair Under System Account
   Done (11.08.2014 21:32:19)

01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (11.08.2014 21:32:19)
   Running Repair Under System Account
   Done (11.08.2014 21:33:45)

02 - Reset File Permissions: C:
   C: & Sub Folders
   Start (11.08.2014 21:33:45)
   Trying To Run Repair As Trusted Installer.
   You will see a Interactive Services Detection Window.
   The Repair Is Running In That Window.
   This Is Normal And Will Go Away Once The Repair Is Finished.
   Running Repair Under Current User Account
   Done (11.08.2014 21:52:25)

02 - Reset File Permissions: D:
   D: & Sub Folders
   Start (11.08.2014 21:52:25)
   Trying To Run Repair As Trusted Installer.
   You will see a Interactive Services Detection Window.
   The Repair Is Running In That Window.
   This Is Normal And Will Go Away Once The Repair Is Finished.
   Running Repair Under Current User Account
   Done (11.08.2014 21:52:28)

02 - Reset File Permissions: E:
   E: & Sub Folders
   Start (11.08.2014 21:52:28)
   Trying To Run Repair As Trusted Installer.
   You will see a Interactive Services Detection Window.
   The Repair Is Running In That Window.
   This Is Normal And Will Go Away Once The Repair Is Finished.
   Running Repair Under Current User Account
   Done (11.08.2014 21:52:31)

02 - Reset File Permissions: All Profiles
   C:\Users & Sub Folders
   Start (11.08.2014 21:52:31)
   Running Repair Under System Account
   Done (11.08.2014 21:54:01)

02 - Reset File Permissions: Current Profile
   C:\Users\HP & Sub Folders
   Start (11.08.2014 21:54:01)
   Running Repair Under System Account
   Done (11.08.2014 21:55:08)

02 - Reset File Permissions: Cleanup
   Repairing Restricted Folders Permissions To Avoid Infinite Loops
   Start (11.08.2014 21:55:08)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 21:55:14)

03 - Reset Service Permissions
   Start (11.08.2014 21:55:14)
   Running Repair Under System Account
   Done (11.08.2014 21:55:26)

04 - Register System Files
   Start (11.08.2014 21:55:26)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 21:55:55)

05 - Repair WMI
   Start (11.08.2014 21:55:55)

   Starting Security Center So We Can Export The Security Info.

   Exporting Antivirus Info...
   Avira Desktop Exported.

   Exporting AntiSpyware Info...
   Avira Desktop Exported.
   Windows Defender Exported.

   Exporting 3rd Party Firewall Info...
   No Firewall Products Reported.

   Running Repair Under Current User Account
   Done (11.08.2014 22:01:23)

06 - Repair Windows Firewall
   Start (11.08.2014 22:01:23)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:01:54)

07 - Repair Internet Explorer
   Start (11.08.2014 22:01:54)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:02:20)

08 - Repair MDAC/MS Jet
   Start (11.08.2014 22:02:20)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:02:28)

09 - Repair Hosts File
   Start (11.08.2014 22:02:28)
   Running Repair Under System Account
   Done (11.08.2014 22:02:32)

10 - Remove Policies Set By Infections
   Start (11.08.2014 22:02:32)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:02:38)

11 - Repair Start Menu Icons Removed By Infections
   Start (11.08.2014 22:02:38)
   Running Repair Under System Account
   Done (11.08.2014 22:02:41)

12 - Repair Icons
   Start (11.08.2014 22:02:41)
   Running Repair Under Current User Account
   Done (11.08.2014 22:02:44)

13 - Repair Winsock & DNS Cache
   Start (11.08.2014 22:02:44)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:03:03)

14 - Remove Temp Files
   Start (11.08.2014 22:03:03)
   Running Repair Under System Account
   Done (11.08.2014 22:03:06)

15 - Repair Proxy Settings
   Start (11.08.2014 22:03:06)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:03:12)

16 - Unhide Non System Files
   Start (11.08.2014 22:03:12)
   C:\ - Total Files Unhidden: 452 - Check Unhidden_Files.txt for list of files unhidden
   D:\ - Total Files Unhidden: 0 - Check Unhidden_Files.txt for list of files unhidden
   E:\ - Total Files Unhidden: 0 - Check Unhidden_Files.txt for list of files unhidden
   Done (11.08.2014 22:04:30)

17 - Repair Windows Updates
   Start (11.08.2014 22:04:30)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Setting Windows Updates Files That Are In Use To Be Removed At Next Boot.
   Done (11.08.2014 22:04:51)

18 - Repair CD/DVD Missing/Not Working
   Start (11.08.2014 22:04:51)
   iTunes not found, not applying UpperFilters iTunes Reg Key
   Done (11.08.2014 22:04:51)

19 - Repair Volume Shadow Copy Service
   Start (11.08.2014 22:04:51)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:05:13)

20 - Repair Windows Sidebar/Gadgets
   Start (11.08.2014 22:05:13)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:05:20)

21 - Repair MSI (Windows Installer)
   Start (11.08.2014 22:05:20)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:05:32)

22 - Repair Windows Snipping Tool
   Start (11.08.2014 22:05:32)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:05:38)

23.01 - Repair bat Association
   Start (11.08.2014 22:05:38)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:05:45)

23.02 - Repair cmd Association
   Start (11.08.2014 22:05:45)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:05:51)

23.03 - Repair com Association
   Start (11.08.2014 22:05:51)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:05:57)

23.04 - Repair Directory Association
   Start (11.08.2014 22:05:57)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:03)

23.05 - Repair Drive Association
   Start (11.08.2014 22:06:03)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:10)

23.06 - Repair exe Association
   Start (11.08.2014 22:06:10)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:16)

23.07 - Repair Folder Association
   Start (11.08.2014 22:06:16)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:22)

23.08 - Repair inf Association
   Start (11.08.2014 22:06:22)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:28)

23.09 - Repair lnk (Shortcuts) Association
   Start (11.08.2014 22:06:28)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:34)

23.10 - Repair msc Association
   Start (11.08.2014 22:06:34)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:41)

23.11 - Repair reg Association
   Start (11.08.2014 22:06:41)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:47)

23.12 - Repair scr Association
   Start (11.08.2014 22:06:47)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:53)

24 - Repair Windows Safe Mode
   Start (11.08.2014 22:06:53)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:06:59)

25 - Repair Print Spooler
   Start (11.08.2014 22:06:59)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:07:14)

26 - Restore Important Windows Services
   Start (11.08.2014 22:07:14)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:07:22)

27 - Set Windows Services To Default Startup
   Start (11.08.2014 22:07:22)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:07:28)

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

31 - Repair Windows 'New' Submenu
   Start (11.08.2014 22:07:29)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (11.08.2014 22:07:35)

Cleaning up empty logs...

All Selected Repairs Done.
   Done at (11.08.2014 22:07:35)
   Total Repair Time: 00:40:53


...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account
         
Das Problem ist aber immernoch da :/

Alt 12.08.2014, 09:15   #10
Warlord711
/// TB-Ausbilder
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Hast du mal testweise ne USB Tastatur angeschlossen, ob das dort auch auftritt ?
Vielleicht ist es ja ein Hardwaredefekt an der verbauten Tastatur oder die berühmte Cola die mal übers Laptop gelaufen ist ;-)

Parallel dazu machst du bitte ESET Scan (der länger dauert, gern mehrere Stunden)


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

__________________
Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie | Spende | Lob & Kritik

Alt 13.08.2014, 08:18   #11
Kenny_sc2
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Ein Hardwareproblem würde ich auch nicht ausschließen, aber ich habe leider momentan kein zugriff auf eine USB-Tastatur.

So, ich habe den ESET online scanner über Nacht laufen lassen. Jedoch war der Laptop heute morgen abgemeldet, d.h. ich gehe mal davon aus, dass er runter und wieder hochgefahren ist.
Ich weiß nicht, ob das normal ist und/oder ob der Scanprozess beendet wurde oder abgebrochen wurde. Wie dem auch sei, hier ist der Log:

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=13f5d52d45e53445b1a192537eb01433
# engine=19623
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-08-12 10:05:37
# local_time=2014-08-13 12:05:37 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Avira Desktop'
# compatibility_mode=1810 16777213 100 100 14792 28959075 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 14061 159510987 0 0
# scanned=338469
# found=34
# cleaned=0
# scan_time=11596
sh=97C98A20388FD894B92FD8325545966CA945BCFB ft=1 fh=6121d07ea56d1649 vn="Win32/Toolbar.Montiera.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\HP\AppData\Roaming\OpenCandy\CEC733192A7F49069EF28A9E729C2B15\Setupsft_chr_p1v7.exe.vir"
sh=B735A72B14FF909EEC6126A5CB662CEF9B6FBF7B ft=1 fh=484207f327bff3ed vn="Variante von Win32/DomaIQ.BB evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
sh=6469188614E7C6065DFA35D4387268A673473057 ft=1 fh=476412a327bff3ed vn="Variante von Win32/DomaIQ.BB evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000"
sh=738DD232B327FFB77902895BE0CD60CA32E689C7 ft=1 fh=3e8c26ffd8466b07 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Downloads\avira_free_antivirus_de.exe"
sh=71AAD1A57B801DC83FFB2C9BFD792F2AFDBD4BE2 ft=1 fh=2b9f96473f764795 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Downloads\CCleaner - CHIP-Downloader.exe"
sh=DA0FB77CECB4247F067294DA5E54E0020844FECE ft=1 fh=96c9faddf1c23368 vn="Win32/Bundled.Toolbar.Google.D potenziell unsichere Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Downloads\ccsetup413.exe"
sh=4806233F303585AA8CC5A3884DA9D5AEE3AB3908 ft=1 fh=505fa98ae0a5941a vn="Win32/OpenCandy potenziell unsichere Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Downloads\cdbxp_setup_4.5.3.4746.exe"
sh=EF56C6FF01ABE607785238DD078EA1E24144F3D7 ft=1 fh=c71c0011a7df4c29 vn="Variante von Win32/InstallCore.OO evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe"
sh=440FBA60C8C5A5E9A78E68D2BB601C0085D657A2 ft=1 fh=6c3bd88ea8dd5a4e vn="Win32/OpenCandy potenziell unsichere Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Downloads\FreeStudio.exe"
sh=C089E72435C2D5F73265D939C4ED39886AED078D ft=1 fh=75226af76fba85ef vn="Variante von Win32/OpenCandy.A potenziell unsichere Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Downloads\FreeYouTubeToMP3Converter.exe"
sh=9434866971DD357600C9F2B1E31B7893C3A070F0 ft=1 fh=4f14aeb246e47811 vn="Win32/InstallMonetizer.AQ evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Downloads\PDFCreator-1_7_1_setup.exe"
sh=E3087F423D8D765A7F7792DFBEE98F5161656BA7 ft=1 fh=ec7296c810cf402f vn="Win32/OpenCandy potenziell unsichere Anwendung" ac=I fn="C:\Dokumente und Einstellungen\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe"
sh=2A88FC6509FDC3B22587F6E97AC12F70E4F75DC8 ft=1 fh=86e0df17c19558fd vn="Variante von Win32/Bundled.Toolbar.Ask.E potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe"
sh=F2CFD9E6717ED73F51E976B3957C81DD518C5603 ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.10.0_AVIRA-V7.msi"
sh=01EF1A2420765129D2F26E0530725B5F71D8BB96 ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.2.2_AVIRA-V7.msi"
sh=F4B0FF4B42F223CF8338684906BCFFAD9AA2710E ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.6.0_AVIRA-V7.msi"
sh=4B553651EF610C0614F8393D6C25ABA0A8F09ECA ft=1 fh=92ef1bb072edf568 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\Avira\AntiVir Desktop\offercast_avirav7_.exe"
sh=B735A72B14FF909EEC6126A5CB662CEF9B6FBF7B ft=1 fh=484207f327bff3ed vn="Variante von Win32/DomaIQ.BB evtl. unerwünschte Anwendung" ac=I fn="C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
sh=6469188614E7C6065DFA35D4387268A673473057 ft=1 fh=476412a327bff3ed vn="Variante von Win32/DomaIQ.BB evtl. unerwünschte Anwendung" ac=I fn="C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000"
sh=738DD232B327FFB77902895BE0CD60CA32E689C7 ft=1 fh=3e8c26ffd8466b07 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung" ac=I fn="C:\Users\HP\Downloads\avira_free_antivirus_de.exe"
sh=71AAD1A57B801DC83FFB2C9BFD792F2AFDBD4BE2 ft=1 fh=2b9f96473f764795 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\HP\Downloads\CCleaner - CHIP-Downloader.exe"
sh=DA0FB77CECB4247F067294DA5E54E0020844FECE ft=1 fh=96c9faddf1c23368 vn="Win32/Bundled.Toolbar.Google.D potenziell unsichere Anwendung" ac=I fn="C:\Users\HP\Downloads\ccsetup413.exe"
sh=4806233F303585AA8CC5A3884DA9D5AEE3AB3908 ft=1 fh=505fa98ae0a5941a vn="Win32/OpenCandy potenziell unsichere Anwendung" ac=I fn="C:\Users\HP\Downloads\cdbxp_setup_4.5.3.4746.exe"
sh=EF56C6FF01ABE607785238DD078EA1E24144F3D7 ft=1 fh=c71c0011a7df4c29 vn="Variante von Win32/InstallCore.OO evtl. unerwünschte Anwendung" ac=I fn="C:\Users\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe"
sh=440FBA60C8C5A5E9A78E68D2BB601C0085D657A2 ft=1 fh=6c3bd88ea8dd5a4e vn="Win32/OpenCandy potenziell unsichere Anwendung" ac=I fn="C:\Users\HP\Downloads\FreeStudio.exe"
sh=C089E72435C2D5F73265D939C4ED39886AED078D ft=1 fh=75226af76fba85ef vn="Variante von Win32/OpenCandy.A potenziell unsichere Anwendung" ac=I fn="C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe"
sh=9434866971DD357600C9F2B1E31B7893C3A070F0 ft=1 fh=4f14aeb246e47811 vn="Win32/InstallMonetizer.AQ evtl. unerwünschte Anwendung" ac=I fn="C:\Users\HP\Downloads\PDFCreator-1_7_1_setup.exe"
sh=E3087F423D8D765A7F7792DFBEE98F5161656BA7 ft=1 fh=ec7296c810cf402f vn="Win32/OpenCandy potenziell unsichere Anwendung" ac=I fn="C:\Users\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe"
sh=E44D062204C9698F5C95651F2E424D37A31F5B15 ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-AVIRA-V7[1].7z"
sh=A9B44B47329DFDC56F86EDA59429593DF39B5A54 ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-AVIRA-V7[2].7z"
sh=1F69FB9BC4F314CBEC9BECEBA3F5C393006A7C57 ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-AVIRA-V7[3].7z"
sh=E44D062204C9698F5C95651F2E424D37A31F5B15 ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-AVIRA-V7[1].7z"
sh=A9B44B47329DFDC56F86EDA59429593DF39B5A54 ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-AVIRA-V7[2].7z"
sh=1F69FB9BC4F314CBEC9BECEBA3F5C393006A7C57 ft=0 fh=0000000000000000 vn="Variante von Win32/Bundled.Toolbar.Ask.F potenziell unsichere Anwendung" ac=I fn="C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AskToolbarInstaller-AVIRA-V7[3].7z"
         

Alt 13.08.2014, 09:01   #12
Warlord711
/// TB-Ausbilder
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Der ESET Scan ist soweit sauber durchgelaufen.

Hier ist noch ein Fix für die Reste:

Code:
ATTFilter
"C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
"C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000"
"C:\Dokumente und Einstellungen\HP\Downloads\avira_free_antivirus_de.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\CCleaner - CHIP-Downloader.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\ccsetup413.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\cdbxp_setup_4.5.3.4746.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\FreeStudio.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\FreeYouTubeToMP3Converter.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\PDFCreator-1_7_1_setup.exe"
"C:\Dokumente und Einstellungen\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.10.0_AVIRA-V7.msi"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.2.2_AVIRA-V7.msi"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.6.0_AVIRA-V7.msi"
"C:\Program Files (x86)\Avira\AntiVir Desktop\offercast_avirav7_.exe"
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000"
"C:\Users\HP\Downloads\avira_free_antivirus_de.exe"
"C:\Users\HP\Downloads\CCleaner - CHIP-Downloader.exe"
"C:\Users\HP\Downloads\ccsetup413.exe"
"C:\Users\HP\Downloads\cdbxp_setup_4.5.3.4746.exe"
"C:\Users\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe"
"C:\Users\HP\Downloads\FreeStudio.exe"
"C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe"
"C:\Users\HP\Downloads\PDFCreator-1_7_1_setup.exe"
"C:\Users\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe"
         
Bezüglich der Tastatur würde ich echt mal testen, ob eine externe USB Tastatur genauso Macken macht.

Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.
__________________
Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie | Spende | Lob & Kritik

Alt 14.08.2014, 11:41   #13
Kenny_sc2
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Hier ist der Lock des SecurityChecks:

Code:
ATTFilter
 Results of screen317's Security Check version 0.99.86  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Avira Desktop   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Java 7 Update 65  
 Adobe Flash Player 10 Flash Player out of Date! 
 Adobe Flash Player 14.0.0.145  
 Adobe Reader 9 Adobe Reader out of Date! 
 Mozilla Firefox (31.0) 
 Mozilla Thunderbird (24.6.0) 
 Google Chrome 35.0.1916.153  
 Google Chrome 36.0.1985.125  
````````Process Check: objlist.exe by Laurent````````  
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
         

Alt 14.08.2014, 15:48   #14
Warlord711
/// TB-Ausbilder
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Standard

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Hm irgendwie hatt es mir den Fix post Verhauen...

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
"C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
"C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000"
"C:\Dokumente und Einstellungen\HP\Downloads\avira_free_antivirus_de.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\CCleaner - CHIP-Downloader.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\ccsetup413.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\cdbxp_setup_4.5.3.4746.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\FreeStudio.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\FreeYouTubeToMP3Converter.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\PDFCreator-1_7_1_setup.exe"
"C:\Dokumente und Einstellungen\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.10.0_AVIRA-V7.msi"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.2.2_AVIRA-V7.msi"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.6.0_AVIRA-V7.msi"
"C:\Program Files (x86)\Avira\AntiVir Desktop\offercast_avirav7_.exe"
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000"
"C:\Users\HP\Downloads\avira_free_antivirus_de.exe"
"C:\Users\HP\Downloads\CCleaner - CHIP-Downloader.exe"
"C:\Users\HP\Downloads\ccsetup413.exe"
"C:\Users\HP\Downloads\cdbxp_setup_4.5.3.4746.exe"
"C:\Users\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe"
"C:\Users\HP\Downloads\FreeStudio.exe"
"C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe"
"C:\Users\HP\Downloads\PDFCreator-1_7_1_setup.exe"
"C:\Users\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe"
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Flash Player veraltet !

Deinstalliere bitte deine aktuelle Version von Adobe Player

Start--> Systemsteuerung--> Software--> Adobe Player und lade dir die neue Version von Hier herunter-
Entferne den Haken für den McAfee SecurityScan bzw. Google Chrome.

Update: Adobe Reader
Deinstalliere bitte deine aktuelle Version von Adobe Reader
Start--> Systemsteuerung--> Software--> Adobe Reader
und lade dir die neue Version von Hier herunter-
Entferne den Haken für den McAfee SecurityScan bzw. Google Chrome.

Wenn der Fix durchgelaufen ist sollte es das gewesen sein. Malwaretechnisch ist dann nix mehr zu sehen. Gib mal Feedback wegen der Tastatur

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.



Abschließend habe ich noch ein paar Tipps zur Absicherung deines Systems.


Ich kann gar nicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7 / 8 : Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti-Viren-Programm und zusätzlicher Schutz
  • Gehe sicher, dass du immer nur eine Anti-Viren Software installiert hast und dass diese auch up to date ist!
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion bietet zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • AdwCleaner
    Dieses Tool erkennt eine Vielzahl von Werbeprogrammen (Adware) und unerwümschten Programmen (PUPs).
    Starte das Tool einmal die Woche und lass es laufen. Sollte eine neue Version verfügbar sein, so wird dies angezeigt und du kannst dir die neueste Version direkt auf den Desktop downloaden.
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • WOT (Web of trust)
    Dieses AddOn warnt dich, bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser
Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Mozilla Firefox
  • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
  • NoScript
    Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt, wenn Du es bestätigst.
  • AdblockPlus
    Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
    Es spart außerdem Downloadkapazität.


Performance
  • Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
  • Halte dich fern von Registry Cleanern.
    Diese Schaden deinem System mehr als dass sie helfen. Hier ein englischer Link:
    Miekemoes Blogspot ( MVP )


Was du vermeiden solltest:
  • Klicke nicht auf alles, nur weil es dich dazu auffordert und schön bunt ist.
  • Verwende keine P2P oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie z.B. deinFoto.jpg.exe.
  • Lade keine Software von Softonic oder Chip herunter, da diese Installer oft mit Adware oder unerünschter Software versehen sind!



Nun bleibt mir nur noch dir viel Spaß beim sicheren Surfen zu wünschen... ... und vielleicht möchtest du ja das Trojaner-Board unterstützen?

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann.
__________________
Lerne, zurück zu schlagen und unterstütze uns!
TB Akademie | Spende | Lob & Kritik

Alt 14.08.2014, 16:15   #15
Kenny_sc2
 
Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Icon19

Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze



Hier ist nochmal der Fixlog:

Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-08-2014 01
Ran by HP at 2014-08-14 15:55:04 Run:2
Running from C:\Users\HP\Desktop\Trojanerboard
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
"C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
"C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000"
"C:\Dokumente und Einstellungen\HP\Downloads\avira_free_antivirus_de.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\CCleaner - CHIP-Downloader.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\ccsetup413.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\cdbxp_setup_4.5.3.4746.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\FreeStudio.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\FreeYouTubeToMP3Converter.exe"
"C:\Dokumente und Einstellungen\HP\Downloads\PDFCreator-1_7_1_setup.exe"
"C:\Dokumente und Einstellungen\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.10.0_AVIRA-V7.msi"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.2.2_AVIRA-V7.msi"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.6.0_AVIRA-V7.msi"
"C:\Program Files (x86)\Avira\AntiVir Desktop\offercast_avirav7_.exe"
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000"
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000"
"C:\Users\HP\Downloads\avira_free_antivirus_de.exe"
"C:\Users\HP\Downloads\CCleaner - CHIP-Downloader.exe"
"C:\Users\HP\Downloads\ccsetup413.exe"
"C:\Users\HP\Downloads\cdbxp_setup_4.5.3.4746.exe"
"C:\Users\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe"
"C:\Users\HP\Downloads\FreeStudio.exe"
"C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe"
"C:\Users\HP\Downloads\PDFCreator-1_7_1_setup.exe"
"C:\Users\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe"
         
*****************

C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000 => Moved successfully.
C:\Dokumente und Einstellungen\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000 => Moved successfully.
C:\Dokumente und Einstellungen\HP\Downloads\avira_free_antivirus_de.exe => Moved successfully.
C:\Dokumente und Einstellungen\HP\Downloads\CCleaner - CHIP-Downloader.exe => Moved successfully.
C:\Dokumente und Einstellungen\HP\Downloads\ccsetup413.exe => Moved successfully.
C:\Dokumente und Einstellungen\HP\Downloads\cdbxp_setup_4.5.3.4746.exe => Moved successfully.
C:\Dokumente und Einstellungen\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe => Moved successfully.
C:\Dokumente und Einstellungen\HP\Downloads\FreeStudio.exe => Moved successfully.
C:\Dokumente und Einstellungen\HP\Downloads\FreeYouTubeToMP3Converter.exe => Moved successfully.
C:\Dokumente und Einstellungen\HP\Downloads\PDFCreator-1_7_1_setup.exe => Moved successfully.
C:\Dokumente und Einstellungen\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe => Moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe => Moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.10.0_AVIRA-V7.msi => Moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.2.2_AVIRA-V7.msi => Moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Source\AskToolbarInstaller-12.6.0_AVIRA-V7.msi => Moved successfully.
Could not move "C:\Program Files (x86)\Avira\AntiVir Desktop\offercast_avirav7_.exe" => Scheduled to move on reboot.
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000" => File/Directory not found.
"C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000" => File/Directory not found.
"C:\Users\HP\Downloads\avira_free_antivirus_de.exe" => File/Directory not found.
"C:\Users\HP\Downloads\CCleaner - CHIP-Downloader.exe" => File/Directory not found.
"C:\Users\HP\Downloads\ccsetup413.exe" => File/Directory not found.
"C:\Users\HP\Downloads\cdbxp_setup_4.5.3.4746.exe" => File/Directory not found.
"C:\Users\HP\Downloads\COMPUTER_BILD-Download-Manager_fuer_cdbxp_setup_4.5.3.4746.exe" => File/Directory not found.
"C:\Users\HP\Downloads\FreeStudio.exe" => File/Directory not found.
"C:\Users\HP\Downloads\FreeYouTubeToMP3Converter.exe" => File/Directory not found.
"C:\Users\HP\Downloads\PDFCreator-1_7_1_setup.exe" => File/Directory not found.
"C:\Users\HP\Dropbox\HP\Protokolle\GrFk\PDFCreator-1_4_3_setup.exe" => File/Directory not found.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-08-14 15:58:32)<=

"C:\Program Files (x86)\Avira\AntiVir Desktop\offercast_avirav7_.exe" => File could not move.

==== End of Fixlog ====
         
Das mit der Tastatur ist jetzt auch weg.

Vielen Vielen Dank für die viele Mühe, die sie sich für mich gemacht haben. Ich weiß das sehr zu schätzen =)

Antwort

Themen zu Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze
anleitung, bildschirm, durchgeführt, folgendes, laptop, problem, pup.optional.domaiq, pup.optional.oneclickdownloader.a, pup.optional.softonic.a, pup.optional.somoto.a, schonmal, tippen, unregelmäßige, win32/bundled.toolbar.ask.d, win32/bundled.toolbar.ask.e, win32/bundled.toolbar.ask.f, win32/bundled.toolbar.google.d, win32/domaiq.bb, win32/downloadsponsor.a, win32/installcore.oo, win32/installmonetizer.aq, win32/opencandy.a, win32/toolbar.montiera.i, windows



Ähnliche Themen: Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze


  1. Laptop: unregelmäßiges böses Lachen ertönt beim Zocken
    Plagegeister aller Art und deren Bekämpfung - 16.09.2015 (16)
  2. Probleme Anzeigentreiber Nvidia GTX 560ti + Freeze / Windows 7 64bit
    Alles rund um Windows - 01.06.2015 (4)
  3. Windows 7, Komplett freeze des gesammten Systems
    Plagegeister aller Art und deren Bekämpfung - 06.02.2015 (16)
  4. Nach Neustart von Windows 7 keine Aktionen (Maus+Tastatur) mehr möglich! Allerdings kein Freeze!
    Plagegeister aller Art und deren Bekämpfung - 04.06.2014 (5)
  5. Windows 7 | Tab/Fensterwechsel, nach 10sek kurzer Freeze
    Log-Analyse und Auswertung - 14.04.2014 (14)
  6. Virenbefall verursacht freeze in Internet Browser oder Windows-Benutzer-Login
    Log-Analyse und Auswertung - 02.12.2013 (5)
  7. Windows 7 (64bit): Unregelmäßiges auftauchen weißer PopUp´s im Browser
    Log-Analyse und Auswertung - 16.09.2013 (7)
  8. Freeze - Bluescreen! (auch nach Formatierung) - Windows 7
    Plagegeister aller Art und deren Bekämpfung - 22.07.2013 (24)
  9. Unregelmäßige Selbstneustarts
    Log-Analyse und Auswertung - 28.09.2012 (34)
  10. unregelmäßige Abstürze - C:\Windows\Minidump\092012-49280-01.dmp
    Plagegeister aller Art und deren Bekämpfung - 24.09.2012 (1)
  11. Windows 7 freeze bei MediaCenter Live-TV
    Alles rund um Windows - 09.03.2012 (1)
  12. Windows xp freeze direkt nach install von anti virus
    Alles rund um Windows - 08.09.2011 (4)
  13. Unregelmäßige Probleme nach FF3 Update mit SP3
    Plagegeister aller Art und deren Bekämpfung - 01.10.2008 (1)
  14. unregelmäßige Internet-Ausfälle
    Antiviren-, Firewall- und andere Schutzprogramme - 29.06.2008 (9)
  15. Windows halb freeze
    Plagegeister aller Art und deren Bekämpfung - 30.06.2007 (2)
  16. unregelmäßige I-Netausfälle
    Log-Analyse und Auswertung - 14.08.2006 (21)
  17. Unregelmäßige Löschung des Verlaufes
    Plagegeister aller Art und deren Bekämpfung - 12.07.2006 (2)

Zum Thema Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze - Guten Tag Ich habe seit einigen Wochen folgendes Problem mit meinem Laptop: Beim tippen erscheinen die Buchstaben oft erst ein wenig nach dem Anschlag. Jedoch ist das nicht immer so - Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze...
Archiv
Du betrachtest: Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.