Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Portfreigabe 51966 über UPnP, kein Scan-Ergebnis

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 03.11.2014, 23:58   #1
cinos1
 
Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Hallo,

ich war vor einigen Tagen auf der Seite meiner fritzbox und habe zufällig gesehen, dass mein PC den Port 51966 über UPnP für meinen PC freigegeben hat. Da mir dies komisch vorkam, googelte ich nach diesem Port und stieß auf einen Trojaner namens "Cafeini". Auf meinem Computer habe ich jedoch keine Auffälligkeiten bemerkt und die Portfreigabe gelöscht.
Um sicher zu gehen, habe ich einen vollständigen Scan aller Laufwerke mit meinem Antiviren-Programm Bitdefender Internet Security laufen lassen, was keine Ergebnisse brachte. Zusätzlich ließ ich das Programm Ad-Aware Free ebenfalls über alle Laufwerke laufen, keine Ergebnisse.
Nach einigen Tagen tauchte jedoch wieder die Portfreigabe für Port 51966 in der fritzbox auf, deshalb habe ich die Anleitung dieses Forums zur Hilfe befolgt.

Da die Logfiles scheinbar zu groß sind, befinden sich diese im Anhang.

Vielen Dank bereits im Voraus!

Alt 04.11.2014, 06:41   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 04.11.2014, 13:19   #3
cinos1
 
Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

1.



Okay sorry, hatte es nur mit Anhang gelesen.

defogger_disable.log
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 23:27 on 03/11/2014 (Tobi)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
HKCU:DAEMON Tools Lite -> Removed

Checking for services/drivers...


-=E.O.F=-
         
FRST.txt

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-11-2014
Ran by Tobi (administrator) on TOBI-PC on 03-11-2014 23:29:03
Running from C:\Users\Tobi\Desktop
Loaded Profile: Tobi (Available profiles: Tobi)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Englisch (USA)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
() C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\Digital Imaging\Fax\Fax Driver 0.6 Base\hppfaxprintersrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Mad Catz) C:\Program Files (x86)\Mad Catz\R.A.T. 9 Battery Charge Indicator\RAT9BatteryCharge.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Stardock) C:\Program Files (x86)\Stardock\ObjectDockFree\ObjectDock.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Stardock) C:\Program Files (x86)\Stardock\ObjectDockFree\Dock64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11842152 2011-05-03] (Realtek Semiconductor)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1743088 2014-05-27] (Bitdefender)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [HP LaserJet 200 color MFP M276 Series Fax] => C:\Program Files (x86)\HP\Digital Imaging\Fax\Fax Driver 0.6 Base\hppfaxprintersrv.exe [3706424 2011-10-09] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43632 2010-01-19] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [313248 2012-07-18] (Hewlett-Packard Company)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2014-05-27] (Bitdefender)
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-05-27] (Bitdefender)
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614744 2014-05-27] (Bitdefender)
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {48ea3421-316a-11e1-8b09-806e6f6e6963} - D:\.\Bin\ASSETUP.exe
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {6c4a8424-1bd7-11e3-8d88-5404a64dcc2b} - J:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {7294c8d3-5398-11e4-9ae7-5404a64dcc2b} - K:\Autorun.exe
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {91bdd2f5-3bd5-11e3-9b18-5404a64dcc2b} - I:\AutoRun\AutoRun.exe
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {a8fc78c5-1d64-11e3-a150-5404a64dcc2b} - K:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {dff826a3-fbc6-11e3-8e2f-5404a64dcc2b} - K:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {ecd8a193-3a3d-11e2-9f90-5404a64dcc2b} - K:\LaunchU3.exe -a
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {f6b74665-316d-11e1-b919-806e6f6e6963} - D:\SETUP.EXE
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {fd3793b3-9d84-11e3-9590-5404a64dcc2b} - K:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-681348821-148661125-3242827248-1000\...\MountPoints2: {fd3795b2-9d84-11e3-9590-5404a64dcc2b} - L:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2014-05-27] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-05-27] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [614744 2014-05-27] (Bitdefender)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-12] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RAT 9 Charge Indicator.lnk
ShortcutTarget: RAT 9 Charge Indicator.lnk -> C:\Windows\Installer\{E351A4AC-5D5D-4748-A2FE-310EC70F3E05}\_CD6D2B41032FC8A5BF211A.exe ()
Startup: C:\Users\Tobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\Tobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk
ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDockFree\ObjectDock.exe (Stardock)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC22E41D27FC5CC01
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll (Bitdefender)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\c7toqiqg.default
FF Homepage: hxxp://www.google.de
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101721.dll (Amazon.com, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Pocket - C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\c7toqiqg.default\Extensions\isreaditlater@ideashower.com [2014-07-24]
FF Extension: DownloadHelper - C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\c7toqiqg.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-09-15]
FF Extension: Flash and Video Download - C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\c7toqiqg.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2014-10-22]
FF Extension: ProxTube - C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\c7toqiqg.default\Extensions\ich@maltegoetz.de.xpi [2014-09-21]
FF Extension: SQLite Manager - C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\c7toqiqg.default\Extensions\SQLiteManager@mrinalkant.blogspot.com.xpi [2013-06-10]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2014-01-26]
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-01-26]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: No Name - ffpwdman@bitdefender.com [Not Found]

Chrome: 
=======
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Tobi\AppData\Local\Google\Chrome\Application\17.0.963.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Tobi\AppData\Local\Google\Chrome\Application\17.0.963.66\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Tobi\AppData\Local\Google\Chrome\Application\17.0.963.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.374_0\plugin/npVKPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.462_0\plugin/npUrlAdvisor.dll (Kaspersky Lab ZAO)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U1) - C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll No File
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Profile: C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-03-08]
CHR Extension: (Google Search) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-03-08]
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2012-03-08]
CHR Extension: (Virtual Keyboard) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2012-03-08]
CHR Extension: (Gmail) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-03-08]
CHR Extension: (Anti-Banner) - C:\Users\Tobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2012-03-08]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-02-27]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-04-17] (Adobe Systems) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [922240 2011-06-13] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [77632 2013-11-21] (Bitdefender)
S2 CLKMSVC10_E508E42F; H:\CyberLink\MediaSuite\PowerDVD10\NavFilter\kmsvc.exe [243464 2013-09-02] (CyberLink)
R2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [164864 2012-05-02] (HP) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2011-04-13] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2011-04-13] (Hewlett-Packard) [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [271760 2009-04-15] ()
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2013-10-07] (Bitdefender)
S3 vncserver; C:\Program Files\RealVNC\VNC Server\vncserver.exe [4774208 2013-03-04] (RealVNC Ltd)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1526800 2014-05-27] (Bitdefender)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2014-02-08] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2014-02-08] (BitDefender)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2014-05-27] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-08-28] (DT Soft Ltd)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-08] (QUALCOMM Incorporated)
S1 hwinterfacex64; C:\Windows\System32\Drivers\hwinterfacex64.sys [5632 2012-01-15] (Logix4u) [File not signed]
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 okdmx31; C:\Windows\SysWOW64\Drivers\okdmx31.sys [3712 2012-01-15] () [File not signed]
R3 SaiK1709; C:\Windows\System32\DRIVERS\SaiK1709.sys [180544 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1709; C:\Windows\System32\DRIVERS\SaiU1709.sys [47168 2012-09-20] (Saitek)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
S3 usbser64; C:\Windows\System32\DRIVERS\usbser.sys [33280 2013-08-29] (Microsoft Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-03 23:29 - 2014-11-03 23:29 - 00024382 _____ () C:\Users\Tobi\Desktop\FRST.txt
2014-11-03 23:29 - 2014-11-03 23:29 - 00000000 ____D () C:\FRST
2014-11-03 23:28 - 2014-11-03 23:28 - 02114560 _____ (Farbar) C:\Users\Tobi\Desktop\FRST64.exe
2014-11-03 23:27 - 2014-11-03 23:27 - 00000540 _____ () C:\Users\Tobi\Desktop\defogger_disable.log
2014-11-03 23:27 - 2014-11-03 23:27 - 00000168 _____ () C:\Users\Tobi\defogger_reenable
2014-11-03 23:26 - 2014-11-03 23:26 - 00050477 _____ () C:\Users\Tobi\Desktop\Defogger.exe
2014-11-03 23:25 - 2014-10-28 15:14 - 00168835 _____ () C:\Users\Tobi\Desktop\1414490470_1_02.xml
2014-11-03 23:19 - 2014-11-03 23:19 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-10-31 16:37 - 2014-11-02 01:20 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\TS3Client
2014-10-31 16:37 - 2014-10-31 16:37 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-10-31 16:37 - 2014-10-31 16:37 - 00000000 ____D () C:\Users\Tobi\AppData\Local\TeamSpeak 3 Client
2014-10-31 02:02 - 2014-10-31 02:02 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\LolClient
2014-10-29 16:18 - 2014-10-29 16:18 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-29 16:18 - 2014-10-29 16:18 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-28 23:39 - 2014-10-28 23:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-10-28 23:22 - 2014-10-28 23:22 - 00000000 __SHD () C:\Users\Tobi\AppData\Local\EmieUserList
2014-10-28 23:22 - 2014-10-28 23:22 - 00000000 __SHD () C:\Users\Tobi\AppData\Local\EmieSiteList
2014-10-28 17:52 - 2014-10-28 17:52 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Wise Registry Cleaner
2014-10-28 17:29 - 2014-10-28 17:29 - 00000000 ____D () C:\ProgramData\Riot Games
2014-10-28 17:25 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-10-28 17:25 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-10-28 17:25 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-10-28 17:24 - 2014-10-28 23:39 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Riot Games
2014-10-28 16:05 - 2014-10-28 16:05 - 00000000 ____D () C:\Windows\Hewlett-Packard
2014-10-24 16:49 - 2014-10-24 16:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-10-24 16:49 - 2014-10-24 16:49 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-10-24 16:49 - 2014-10-24 16:49 - 00000000 ____D () C:\Program Files\iTunes
2014-10-24 16:49 - 2014-10-24 16:49 - 00000000 ____D () C:\Program Files\iPod
2014-10-24 16:49 - 2014-10-24 16:49 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-10-23 11:10 - 2014-10-23 11:11 - 00000000 ____D () C:\Windows\rescache
2014-10-22 22:36 - 2014-10-22 22:37 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-22 22:24 - 2010-06-02 03:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-10-22 22:24 - 2010-06-02 03:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-10-22 22:24 - 2010-05-26 10:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-10-22 22:24 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-10-22 22:24 - 2010-05-26 10:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-10-22 22:24 - 2010-05-26 10:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-10-22 22:24 - 2010-05-26 10:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-10-22 22:24 - 2010-05-26 10:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-10-22 21:07 - 2014-10-22 21:07 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Oracle
2014-10-22 21:07 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-22 21:07 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-22 21:07 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-22 21:07 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-22 21:07 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-22 21:07 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-22 21:07 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-22 21:07 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-22 21:07 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-22 21:07 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-22 21:07 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-22 21:07 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-22 21:07 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-22 21:07 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-22 21:07 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-22 21:07 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-22 21:07 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-22 21:07 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-22 21:07 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-22 21:07 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-22 21:07 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-22 21:07 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-22 21:07 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-22 21:07 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-22 21:07 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-22 21:07 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-22 21:07 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-22 21:07 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-22 21:07 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-22 21:07 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-22 21:07 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-22 21:07 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-22 21:07 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-22 21:07 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-22 21:07 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-22 21:07 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-22 21:07 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-22 21:07 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-22 21:07 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-22 21:07 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-22 21:07 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-22 21:07 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-22 21:07 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-22 21:07 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-22 21:07 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-22 21:07 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-22 21:07 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-22 21:07 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-22 21:07 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-22 21:07 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-22 21:07 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-22 21:07 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-22 21:07 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-22 21:07 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-22 21:07 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-22 21:07 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-22 21:07 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-22 21:07 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-22 21:07 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-22 21:07 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-22 21:07 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-22 21:07 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-22 21:07 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-22 21:07 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-22 21:07 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-22 21:07 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-22 21:06 - 2014-10-22 21:06 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-10-22 21:04 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-22 21:04 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-22 21:04 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-22 21:04 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-22 21:04 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-22 21:04 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-22 21:04 - 2014-07-17 03:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-22 21:04 - 2014-07-17 03:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-22 21:04 - 2014-07-17 03:07 - 01113088 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-22 21:04 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-22 21:04 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-22 21:04 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-22 21:04 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-22 21:04 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-22 21:04 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-22 21:04 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-22 21:04 - 2014-07-17 02:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-22 21:04 - 2014-07-17 02:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-22 21:04 - 2014-07-17 02:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-22 21:04 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-22 21:04 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-22 21:04 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-22 21:04 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-14 13:15 - 2014-10-14 13:15 - 00000000 ____D () C:\Users\Tobi\AppData\Local\HP
2014-10-14 13:03 - 2014-10-14 13:03 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Hewlett-Packard Company
2014-10-14 13:02 - 2014-10-14 13:02 - 00000608 ___SH () C:\Windows\system32\winzvprt5.sys
2014-10-14 13:02 - 2014-10-14 13:02 - 00000242 _____ () C:\Windows\system32\hppfaxprinter5.ini
2014-10-14 13:02 - 2011-10-09 22:55 - 00027704 ____N (Hewlett-Packard Company) C:\Windows\system32\hppfaxprintermon5.dll
2014-10-14 13:02 - 2011-10-09 22:55 - 00022072 ____N (Hewlett-Packard Company) C:\Windows\system32\hppfaxprintermonui5.dll
2014-10-14 13:01 - 2014-10-28 16:06 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\HpUpdate
2014-10-14 13:01 - 2014-10-28 16:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-10-14 13:01 - 2014-10-14 13:01 - 00000199 _____ () C:\Windows\SysWOW64\msiexec.log
2014-10-14 13:00 - 2011-09-28 08:44 - 00311808 _____ (Hewlett-Packard Corporation) C:\Windows\system32\hpcpn117.dll
2014-10-14 13:00 - 2011-09-28 08:34 - 00316928 _____ () C:\Windows\SysWOW64\hpcc3117.DLL
2014-10-14 12:58 - 2012-06-01 16:52 - 00947104 _____ (Hewlett-Packard) C:\Windows\system32\hpptsplj276_x64.dll
2014-10-14 12:58 - 2012-06-01 16:52 - 00776096 _____ (Hewlett-Packard) C:\Windows\SysWOW64\hpptsplj276.dll
2014-10-14 12:58 - 2012-06-01 15:35 - 00522128 _____ (Hewlett-Packard) C:\Windows\system32\hpwia2_lj276.dll
2014-10-14 12:58 - 2011-09-29 20:59 - 00638008 _____ (Hewlett-Packard) C:\Windows\system32\hpzjcd01.dll
2014-10-14 12:58 - 2011-05-13 21:23 - 00217656 _____ (Hewlett Packard) C:\Windows\system32\hppscancoins64.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-03 23:27 - 2011-12-28 16:51 - 00000000 ____D () C:\Users\Tobi
2014-11-03 23:14 - 2012-04-14 12:17 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-03 23:04 - 2013-01-22 18:03 - 00000645 _____ () C:\Windows\system32\checkdnsid.xml
2014-11-03 22:56 - 2011-12-28 16:51 - 01138761 _____ () C:\Windows\WindowsUpdate.log
2014-11-03 22:56 - 2009-07-14 05:45 - 00027152 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-03 22:56 - 2009-07-14 05:45 - 00027152 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-03 22:53 - 2011-12-28 17:41 - 00700782 _____ () C:\Windows\system32\perfh007.dat
2014-11-03 22:53 - 2011-12-28 17:41 - 00150250 _____ () C:\Windows\system32\perfc007.dat
2014-11-03 22:53 - 2009-07-14 06:13 - 01629348 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-03 22:49 - 2012-10-13 10:28 - 00103107 _____ () C:\Windows\setupact.log
2014-11-03 22:49 - 2011-12-28 17:18 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-03 22:49 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-01 23:31 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-11-01 22:30 - 2013-09-22 14:57 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Skype
2014-10-31 22:18 - 2012-04-14 12:17 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-31 22:18 - 2012-04-14 12:17 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-31 22:18 - 2011-12-28 21:57 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-31 22:17 - 2014-08-25 15:59 - 00000000 ____D () C:\Users\Tobi\AppData\Local\Adobe
2014-10-31 02:29 - 2011-12-30 13:57 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-30 09:34 - 2012-10-13 10:27 - 02123066 _____ () C:\Windows\PFRO.log
2014-10-29 16:18 - 2012-01-01 17:10 - 00000000 ____D () C:\ProgramData\Adobe
2014-10-28 17:55 - 2012-05-10 12:36 - 00000000 ____D () C:\Program Files (x86)\Free FLV Converter
2014-10-28 17:54 - 2013-07-01 13:46 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\DVDVideoSoft
2014-10-24 16:49 - 2014-10-02 17:20 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-10-24 16:49 - 2011-12-29 12:51 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-23 08:08 - 2012-05-06 11:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-23 08:08 - 2009-07-14 05:45 - 00422176 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-22 23:17 - 2014-05-08 02:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-22 22:24 - 2012-11-12 18:00 - 00099538 _____ () C:\Windows\DirectX.log
2014-10-22 22:18 - 2011-12-29 15:54 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-10-22 22:17 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-22 22:15 - 2013-07-16 17:33 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-22 22:11 - 2011-12-28 17:43 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-22 21:50 - 2012-11-12 17:28 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-10-22 21:07 - 2012-01-27 20:58 - 00000000 ____D () C:\Program Files (x86)\Java
2014-10-22 21:07 - 2011-12-28 21:00 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-22 21:06 - 2013-10-18 17:44 - 00000000 ____D () C:\ProgramData\Oracle
2014-10-22 21:06 - 2013-06-20 21:01 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-10-22 21:06 - 2012-01-27 20:58 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-10-22 21:06 - 2012-01-27 20:58 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-10-22 21:05 - 2012-12-26 14:19 - 00000000 ____D () C:\Users\Tobi\AppData\Temp
2014-10-16 22:50 - 2011-12-29 12:45 - 00000000 ____D () C:\Program Files (x86)\ICQ-Banner-Remover
2014-10-16 22:48 - 2011-12-28 16:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-14 13:03 - 2012-01-01 20:59 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-10-14 13:02 - 2012-01-01 20:58 - 00000000 ____D () C:\Program Files (x86)\HP
2014-10-14 13:02 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-10-14 13:01 - 2012-01-01 20:59 - 00000000 ____D () C:\ProgramData\HP
2014-10-14 13:01 - 2012-01-01 20:58 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP

Some content of TEMP:
====================
C:\Users\Tobi\AppData\Local\Temp\7z.dll
C:\Users\Tobi\AppData\Local\Temp\7z.exe
C:\Users\Tobi\AppData\Local\Temp\bassmod.dll
C:\Users\Tobi\AppData\Local\Temp\da945040-02bc-4c96-a0c5-a16f79259e55.exe
C:\Users\Tobi\AppData\Local\Temp\dtkill.exe
C:\Users\Tobi\AppData\Local\Temp\Executor.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Tobi\AppData\Local\Temp\nvStInst.exe
C:\Users\Tobi\AppData\Local\Temp\Setup.exe
C:\Users\Tobi\AppData\Local\Temp\sqlite-3.7.15-x86-sqlitejdbc.dll
C:\Users\Tobi\AppData\Local\Temp\tmd_34017518.exe
C:\Users\Tobi\AppData\Local\Temp\tmpFCFF.exe
C:\Users\Tobi\AppData\Local\Temp\vcredist_x86-2010.exe
C:\Users\Tobi\AppData\Local\Temp\vcredist_x86-2012.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-28 17:21

==================== End Of Log ============================
         
--- --- ---

--- --- ---


Addition.txt

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-11-2014
Ran by Tobi at 2014-11-03 23:29:21
Running from C:\Users\Tobi\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark Vantage (HKLM-x32\...\{C40C3C3D-97CF-44B5-836C-766E374464B3}) (Version: 1.0.1.1 - Futuremark Corporation)
64 Bit HP CIO Components Installer (Version: 7.2.4 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 8.2.4 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Audition 3.0 (HKLM-x32\...\Adobe Audition 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Audition 3.0 Vista Compatibility (HKLM\...\{75d2897c-87aa-4a06-8710-3ebda9f02de0}.sdb) (Version:  - )
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.1 64-bit (HKLM\...\{F7ADB493-B913-4D61-9A63-DA736C20C3F2}) (Version: 4.1.2 - Adobe)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.01.40 - ASUSTeK Computer Inc.)
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS ROG Connect Plus (HKLM-x32\...\{ECF51D37-52ED-4871-BF8B-FEA34B8B4120}) (Version: 1.00.14 - ASUSTeK Computer Inc.)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.23.0.996 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bullzip PDF Printer 10.6.0.2267 (HKLM\...\Bullzip PDF Printer_is1) (Version: 10.6.0.2267 - Bullzip)
Carbon (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID ROG CPU-Z 1.57.2 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.57.2 - CPUID, Inc.)
CyberLink BD_3D Advisor 2.0 (HKLM-x32\...\{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}) (Version: 2.0.5425 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink PowerProducer 5.5 (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.5.3.4118 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0314 - DT Soft Ltd)
DJ Intro version 1.1.1 (HKLM-x32\...\{36625871-9D4B-4046-A837-677974F51CAC}_is1) (Version: 1.1.1 - Serato Audio Research)
DMXControl 2.11 (HKLM-x32\...\DMXControl) (Version: 2.11 - PopSoft)
DolbyFiles (x32 Version: 2.0 - Nero AG) Hidden
EasyBoost (HKLM-x32\...\InstallShield_{41910260-4532-4734-8181-3E8AFDBB05D7}) (Version: 1.0.4.1 - GIGABYTE)
EasyBoost (x32 Version: 1.0.4.1 - GIGABYTE) Hidden
Evernote v. 5.3.1 (HKLM-x32\...\{28AAF752-C41B-11E3-8CB0-00163E98E7D6}) (Version: 5.3.1.3363 - Evernote Corp.)
FILSHtray (HKLM-x32\...\{0844CC2A-512E-4BA1-872B-02887E7A2672}) (Version: 0.12 - FILSH Media GmbH)
FILSHtray (HKLM-x32\...\{5928359F-BF46-4646-BF19-B64E55171EB5}) (Version: 0.12 - FILSH Media GmbH)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 3.16.2.1 - Futuremark Corporation)
GeForce Experience NvStream Client Components (Version: 0.1.87 - NVIDIA Corporation) Hidden
Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version:  - Arobas Music)
HP LaserJet 200 color MFP M276 (HKLM-x32\...\{CC38C23C-7824-4DBB-AC73-997CD0BBFEC7}) (Version: 5.0.12201.1116 - Hewlett-Packard)
HP LaserJet Professional CM1410 Series (HKLM-x32\...\{0EF0EA0D-F945-4958-85CC-60FF1E86D216}) (Version:  - Hewlett-Packard)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
hpbDSService (x32 Version: 002.002.07399 - Hewlett-Packard) Hidden
hpbM276DSService (x32 Version: 001.001.05874 - Hewlett-Packard) Hidden
HPLaserJet200color-MFPM276_HelpLearnCenter_SI (HKLM-x32\...\{0F044C7A-6EE1-4F03-90AC-329AAF2FCF12}) (Version: 1.01.0000 - Hewlett-Packard)
hppFaxDrvM276 (x32 Version: 003.000.00002 - Hewlett-Packard) Hidden
hppLaserJetService (x32 Version: 009.027.00856 - Hewlett-Packard) Hidden
hppM276LaserJetService (x32 Version: 001.019.00639 - Hewlett-Packard) Hidden
hppSendFaxM276 (x32 Version: 003.000.00002 - Hewlett-Packard) Hidden
hpStatusAlerts (x32 Version: 050.037.00142 - Hewlett Packard) Hidden
hpStatusAlertsM276 (x32 Version: 050.034.00131 - Hewlett-Packard) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.10.0.001 - HTC Corporation)
iFunbox (v2.1.2228.731), iFunbox DevTeam (HKLM-x32\...\iFunbox_is1) (Version: v2.1.2228.731 - )
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Network Connections 16.1.53.0 (HKLM\...\PROSetDX) (Version: 16.1.53.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.6.0.1002 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.32 - Irfan Skiljan)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java(TM) SE Development Kit 6 Update 31 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0160310}) (Version: 1.6.0.310 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.58.2 - JMicron Technology Corp.)
Kobold VR-Updater (HKLM-x32\...\{D7B02775-3498-440F-B6A6-EDFE6DF47853}) (Version: 1.2.0 - Vorwerk)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
LG ODD Auto Firmware Update (HKLM-x32\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - )
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.0.0.1051 - Marvell)
Menu Templates - Starter Kit (x32 Version: 9.0.4.0 - Nero AG) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{B45FABE7-D101-4D99-A671-E16DA40AF7F0}) (Version: 3.0.86.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{B578C85A-A84C-4230-A177-C5B2AF565B8C}) (Version: 3.0.17.0 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Templates - Starter Kit (x32 Version: 9.0.4.0 - Nero AG) Hidden
Mozilla Firefox 33.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.0 (x86 de)) (Version: 33.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.1.0 (HKLM-x32\...\Afterburner) (Version: 2.1.0 - MSI Co., LTD)
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.5 - F.J. Wechselberger)
NetBeans IDE 7.2 (HKLM-x32\...\nbi-nb-base-7.2.0.0.201207301726) (Version: 7.2 - NetBeans.org)
NVIDIA 3D Vision Controller-Treiber 326.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 326.01 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 327.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 327.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.6.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.6.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 327.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.23 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.9 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.9 - NVIDIA Corporation)
ObjectDock Free (HKLM-x32\...\ObjectDock Free) (Version: 2.0 - Stardock Corporation)
ObjectDock Free (x32 Version: 2.0 - Stardock Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
PC_DIMMER2010 (HKLM-x32\...\PC_DIMMER2010_is1) (Version:  - Dipl.-Ing. M.Sc. Christian Nöding)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Pioneer DDJ Driver (HKLM-x32\...\Pioneer DDJ ASIO) (Version: 1.100.000.002 - Pioneer Corporation.)
PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.50.0 - PS3 Media Server)
R.A.T. 9 Battery Charge Indicator (HKLM-x32\...\{E351A4AC-5D5D-4748-A2FE-310EC70F3E05}) (Version: 1.2.0 - Mad Catz)
Rapture3D 2.3.26 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6363 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.4.6.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SHIELD Streaming (Version: 1.05.28 - NVIDIA Corporation) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.27.13 (HKLM\...\{C9193CBB-C31A-412A-A074-AD08F0F2CF3D}) (Version: 7.0.27.13 - Mad Catz)
Spotify (HKCU\...\Spotify) (Version: 0.8.8.454.gfb120cda - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab (HKLM-x32\...\SystemRequirementsLab) (Version:  - )
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Video DVD Maker v3.30.0.75 (HKLM-x32\...\{1A3E23D7-7A1E-43EC-B35D-EB2A31BED943}) (Version:  - )
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
VirtualDJ LE (DDJ-ERGO) (HKLM-x32\...\{9D920697-9BEC-4660-9335-292EC6CE8008}) (Version: 7.0.5 - Atomix Productions)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
VNC Mirror Driver 1.8.0 (HKLM\...\VNCMirror_is1) (Version: 1.8.0 - RealVNC Ltd.)
VNC Printer Driver 1.8.0 (HKLM\...\VNCPrinter_is1) (Version: 1.8.0 - RealVNC Ltd.)
VNC Server 5.0.5 (HKLM\...\RealVNC_is1) (Version: 5.0.5 - RealVNC Ltd)
VNC Viewer 5.0.5 (HKLM\...\RealVNCViewer_is1) (Version: 5.0.5 - RealVNC Ltd)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2012-08-18 15:09 - 00001986 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobe-dns-5.adobe.com
127.0.0.1 activate.adobe.de
127.0.0.1 practivate.adobe.de
127.0.0.1 ereg.adobe.de
127.0.0.1 activate.wip3.adobe.de
127.0.0.1 wip3.adobe.de
127.0.0.1 3dns-3.adobe.de
127.0.0.1 3dns-2.adobe.de

There are 8 more lines.


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {04253B75-A1F7-406F-B36E-143E5A8EB989} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {0B18C3C0-A471-415B-A81B-73EFB05AB076} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-31] (Adobe Systems Incorporated)
Task: {46280D0F-2E98-470B-987C-503BC52683C6} - System32\Tasks\ASUS\RC TweakIt Server Execute => C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe [2010-11-23] ()
Task: {4BA9EC90-D85F-4247-940E-3386E6E64E1D} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2010-11-26] (ASUSTeK Computer Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-01-26 21:22 - 2013-06-19 11:45 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2014-01-26 21:22 - 2013-11-28 12:49 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2014-01-26 21:22 - 2011-11-14 19:17 - 00153680 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll
2014-01-26 21:22 - 2013-11-28 12:49 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2014-07-24 15:30 - 2014-07-24 15:30 - 00780592 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00047_011\ashttpbr.mdl
2014-07-24 15:30 - 2014-07-24 15:30 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00047_011\ashttpdsp.mdl
2014-07-24 15:30 - 2014-07-24 15:30 - 02602680 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00047_011\ashttpph.mdl
2014-07-24 15:30 - 2014-07-24 15:30 - 01323408 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00047_011\ashttprbl.mdl
2011-04-07 23:19 - 2013-09-12 08:25 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-06-13 09:36 - 2011-06-13 09:36 - 00922240 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
2010-12-02 03:15 - 2010-12-02 03:15 - 00915584 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
2011-12-29 16:13 - 2010-10-21 10:52 - 00586880 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
2013-09-12 19:48 - 2012-12-07 16:26 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2012-09-30 20:27 - 2009-04-15 22:56 - 00271760 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2010-10-04 18:54 - 2010-10-04 18:54 - 00776704 _____ () C:\Program Files (x86)\Stardock\ObjectDockFree\Dock64.dll
2011-12-29 16:13 - 2010-11-23 15:43 - 00105088 _____ () C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe
2012-02-21 17:10 - 2013-09-12 09:58 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2011-10-21 16:50 - 2011-10-21 16:50 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-12-30 19:16 - 2014-11-03 22:49 - 00026624 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.14\PEbiosinterface32.dll
2012-12-30 19:16 - 2010-06-29 03:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.14\ATKEX.dll
2011-12-29 16:13 - 2010-06-24 21:50 - 00094208 _____ () C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\IccLibDll.dll
2014-04-02 17:22 - 2014-04-02 17:22 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2010-10-04 18:54 - 2010-10-04 18:54 - 00675840 _____ () C:\Program Files (x86)\Stardock\ObjectDockFree\DockShellHook.dll
2014-04-14 13:17 - 2014-04-14 13:17 - 00433664 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2014-04-14 13:17 - 2014-04-14 13:17 - 00315392 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2010-10-04 18:54 - 2010-10-04 18:54 - 00807936 _____ () C:\Program Files (x86)\Stardock\ObjectDockFree\CrashRpt.dll
2010-10-04 18:54 - 2010-10-04 18:54 - 00053760 _____ () C:\Program Files (x86)\Stardock\ObjectDockFree\zlib.dll
2012-12-30 19:17 - 2011-02-24 10:19 - 00143360 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2012-12-30 19:17 - 2010-06-21 15:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2012-12-30 19:17 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2012-12-30 19:17 - 2011-03-09 14:55 - 01036800 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ASUS Update\Update.dll
2012-12-30 19:17 - 2011-05-16 17:35 - 00965632 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2012-12-30 19:17 - 2011-05-20 09:12 - 00881152 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2012-12-30 19:17 - 2011-04-07 17:33 - 01607168 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2012-12-30 19:17 - 2011-01-07 16:39 - 01246208 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2012-12-30 19:17 - 2010-08-06 18:11 - 00850944 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2012-12-30 19:17 - 2010-08-06 18:13 - 00886272 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2012-12-30 19:16 - 2010-08-23 03:17 - 00662016 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMLib.dll
2012-12-30 19:17 - 2010-06-21 15:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\ImageHelper.dll
2011-12-28 17:05 - 2011-05-20 10:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-10-22 22:36 - 2014-10-22 22:36 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-04-02 17:22 - 2014-04-02 17:22 - 00035896 _____ () C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman\components\ffpwdman.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-02-14 14:46 - 2013-02-14 14:46 - 01044048 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Tobi\.DS_Store:AFP_AfpInfo
AlternateDataStreams: C:\Users\Tobi\Desktop\.DS_Store:AFP_AfpInfo
AlternateDataStreams: C:\Users\Tobi\Desktop\Defogger.exe:BDU
AlternateDataStreams: C:\Users\Tobi\Desktop\FRST64.exe:BDU

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FILSHtray.lnk => C:\Windows\pss\FILSHtray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Tobi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk => C:\Windows\pss\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BDRegion => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
MSCONFIG\startupreg: CLMLServer => "H:\CyberLink\MediaSuite\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: FILSHtray => "H:\FILSHtray\FILSHtray.exe"
MSCONFIG\startupreg: GPU TweakIt Server Execute => "C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\GPU TweakIt Server\GPUTweakit.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LGODDFU => H:\CyberLink\FWUpdate\lgfw.exe blrun
MSCONFIG\startupreg: RemoteControl10 => H:\CyberLink\MediaSuite\PowerDVD10\PDVD10Serv.exe
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Tobi\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: UpdatePPShortCut => "H:\CyberLink\MediaSuite\PowerProducer\MUITransfer\MUIStartMenu.exe" "H:\CyberLink\MediaSuite\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"

========================= Accounts: ==========================

Administrator (S-1-5-21-681348821-148661125-3242827248-500 - Administrator - Disabled)
Guest (S-1-5-21-681348821-148661125-3242827248-501 - Limited - Disabled)
Tobi (S-1-5-21-681348821-148661125-3242827248-1000 - Administrator - Enabled) => C:\Users\Tobi

==================== Faulty Device Manager Devices =============

Name: High Definition Audio-Gerät
Description: High Definition Audio-Gerät
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HdAudAddService
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/03/2014 10:49:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 10:15:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2014 11:29:49 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2014 08:22:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 33.0.0.5397 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1550

Startzeit: 01cff5f7b32e2471

Endzeit: 16

Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Berichts-ID: 7a87b541-61fc-11e4-91cf-5404a64dcc2b

Error: (11/01/2014 08:22:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 33.0.0.5397, Zeitstempel: 0x543924b1
Name des fehlerhaften Moduls: mozalloc.dll, Version: 33.0.0.5397, Zeitstempel: 0x5438ffbb
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001425
ID des fehlerhaften Prozesses: 0x1720
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (11/01/2014 06:33:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5008

Error: (11/01/2014 06:33:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5008

Error: (11/01/2014 06:33:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/01/2014 06:33:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4009

Error: (11/01/2014 06:33:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4009


System errors:
=============
Error: (11/03/2014 11:15:44 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.

Error: (11/03/2014 11:04:50 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.

Error: (11/03/2014 11:03:07 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (11/03/2014 10:58:18 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.

Error: (11/03/2014 10:51:26 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.

Error: (11/03/2014 10:49:14 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
hwinterfacex64

Error: (11/03/2014 03:15:05 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (11/03/2014 11:16:44 AM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.

Error: (11/03/2014 11:13:07 AM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.

Error: (11/03/2014 10:59:47 AM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.


Microsoft Office Sessions:
=========================
Error: (11/03/2014 10:49:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/03/2014 10:15:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2014 11:29:49 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/01/2014 08:22:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe33.0.0.5397155001cff5f7b32e247116C:\Program Files (x86)\Mozilla Firefox\firefox.exe7a87b541-61fc-11e4-91cf-5404a64dcc2b

Error: (11/01/2014 08:22:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe33.0.0.5397543924b1mozalloc.dll33.0.0.53975438ffbb8000000300001425172001cff5f83003b070C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll7beacce3-61fc-11e4-91cf-5404a64dcc2b

Error: (11/01/2014 06:33:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5008

Error: (11/01/2014 06:33:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5008

Error: (11/01/2014 06:33:19 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/01/2014 06:33:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4009

Error: (11/01/2014 06:33:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4009


CodeIntegrity Errors:
===================================
  Date: 2014-11-03 22:49:00.939
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-03 22:49:00.861
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-03 10:13:57.530
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-03 10:13:57.452
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-01 23:29:26.063
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-01 23:29:25.985
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-01 18:16:54.094
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-01 18:16:54.016
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-10-31 22:14:48.203
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-10-31 22:14:48.140
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\hwinterfacex64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Percentage of memory in use: 17%
Total physical RAM: 16281.14 MB
Available physical RAM: 13481.96 MB
Total Pagefile: 32560.46 MB
Available Pagefile: 29442.1 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:4.47 GB) NTFS
Drive d: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (Local 2) (Fixed) (Total:1863.01 GB) (Free:1483.82 GB) NTFS
Drive f: (Local) (Fixed) (Total:931.51 GB) (Free:108.47 GB) NTFS
Drive g: () (Fixed) (Total:232.88 GB) (Free:39.68 GB) NTFS
Drive h: () (Fixed) (Total:232.79 GB) (Free:7.93 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: B58CA4DC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: C38BE49D)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 70150547)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: F1A9F1A9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)

========================================================
Disk: 4 (Size: 232.9 GB) (Disk ID: 000A9694)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
__________________

Alt 04.11.2014, 13:23   #4
cinos1
 
Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

3.



Sorry, aber die Gmer.txt ist viel zu groß, habe diese nochmal einzeln als .txt angehängt, vielleicht hilft das ja.

Geändert von cinos1 (04.11.2014 um 13:30 Uhr)

Alt 04.11.2014, 20:56   #5
schrauber
/// the machine
/// TB-Ausbilder
 

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



hi,

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 05.11.2014, 16:01   #6
cinos1
 
Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Hallo,

das Programm gibt aus "No threats found":

Code:
ATTFilter
15:57:11.0723 0x154c  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
15:57:16.0622 0x154c  ============================================================
15:57:16.0622 0x154c  Current date / time: 2014/11/05 15:57:16.0622
15:57:16.0622 0x154c  SystemInfo:
15:57:16.0622 0x154c  
15:57:16.0622 0x154c  OS Version: 6.1.7601 ServicePack: 1.0
15:57:16.0622 0x154c  Product type: Workstation
15:57:16.0623 0x154c  ComputerName: TOBI-PC
15:57:16.0623 0x154c  UserName: Tobi
15:57:16.0623 0x154c  Windows directory: C:\Windows
15:57:16.0623 0x154c  System windows directory: C:\Windows
15:57:16.0623 0x154c  Running under WOW64
15:57:16.0623 0x154c  Processor architecture: Intel x64
15:57:16.0623 0x154c  Number of processors: 8
15:57:16.0623 0x154c  Page size: 0x1000
15:57:16.0623 0x154c  Boot type: Normal boot
15:57:16.0623 0x154c  ============================================================
15:57:16.0926 0x154c  KLMD registered as C:\Windows\system32\drivers\82022695.sys
15:57:16.0981 0x154c  System UUID: {960C93B7-85FD-A007-053B-0EE616D81510}
15:57:17.0209 0x154c  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:57:17.0223 0x154c  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:57:17.0232 0x154c  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:57:17.0257 0x154c  Drive \Device\Harddisk3\DR3 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:57:17.0275 0x154c  Drive \Device\Harddisk4\DR4 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:57:17.0469 0x154c  ============================================================
15:57:17.0469 0x154c  \Device\Harddisk0\DR0:
15:57:17.0469 0x154c  MBR partitions:
15:57:17.0469 0x154c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:57:17.0469 0x154c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
15:57:17.0469 0x154c  \Device\Harddisk1\DR1:
15:57:17.0469 0x154c  MBR partitions:
15:57:17.0469 0x154c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
15:57:17.0469 0x154c  \Device\Harddisk2\DR2:
15:57:17.0469 0x154c  MBR partitions:
15:57:17.0469 0x154c  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
15:57:17.0469 0x154c  \Device\Harddisk3\DR3:
15:57:17.0473 0x154c  MBR partitions:
15:57:17.0473 0x154c  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:57:17.0473 0x154c  \Device\Harddisk3\DR3\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D192800
15:57:17.0473 0x154c  \Device\Harddisk4\DR4:
15:57:17.0475 0x154c  MBR partitions:
15:57:17.0475 0x154c  \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
15:57:17.0475 0x154c  ============================================================
15:57:17.0476 0x154c  C: <-> \Device\Harddisk0\DR0\Partition2
15:57:17.0481 0x154c  D: <-> \Device\Harddisk3\DR3\Partition1
15:57:17.0501 0x154c  E: <-> \Device\Harddisk1\DR1\Partition1
15:57:17.0519 0x154c  F: <-> \Device\Harddisk2\DR2\Partition1
15:57:17.0541 0x154c  G: <-> \Device\Harddisk4\DR4\Partition1
15:57:17.0557 0x154c  H: <-> \Device\Harddisk3\DR3\Partition2
15:57:17.0557 0x154c  ============================================================
15:57:17.0557 0x154c  Initialize success
15:57:17.0557 0x154c  ============================================================
15:58:00.0305 0x1b20  ============================================================
15:58:00.0305 0x1b20  Scan started
15:58:00.0305 0x1b20  Mode: Manual; SigCheck; TDLFS; 
15:58:00.0305 0x1b20  ============================================================
15:58:00.0305 0x1b20  KSN ping started
15:58:02.0704 0x1b20  KSN ping finished: true
15:58:02.0874 0x1b20  ================ Scan system memory ========================
15:58:02.0874 0x1b20  System memory - ok
15:58:02.0874 0x1b20  ================ Scan services =============================
15:58:02.0913 0x1b20  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:58:02.0948 0x1b20  1394ohci - ok
15:58:02.0959 0x1b20  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:58:02.0973 0x1b20  ACPI - ok
15:58:02.0975 0x1b20  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:58:02.0993 0x1b20  AcpiPmi - ok
15:58:02.0999 0x1b20  [ 4AE327C9C375D985FF2A2AAB92765218, 0BE842E0682413222F5432891749B5C754CF6B3BDCED3CB3F39FFD245BE66F26 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
15:58:03.0009 0x1b20  Adobe LM Service - detected UnsignedFile.Multi.Generic ( 1 )
15:58:05.0424 0x1b20  Detect skipped due to KSN trusted
15:58:05.0424 0x1b20  Adobe LM Service - ok
15:58:05.0430 0x1b20  [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:58:05.0438 0x1b20  AdobeARMservice - ok
15:58:05.0466 0x1b20  [ 2637233632CCD1837A1A57A43CAF00A4, 848026C6C9B38FD9F70BC7B2306BF4F5DD395726D4FDD6A18B29354921191DC5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:58:05.0477 0x1b20  AdobeFlashPlayerUpdateSvc - ok
15:58:05.0488 0x1b20  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:58:05.0505 0x1b20  adp94xx - ok
15:58:05.0514 0x1b20  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:58:05.0527 0x1b20  adpahci - ok
15:58:05.0532 0x1b20  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:58:05.0542 0x1b20  adpu320 - ok
15:58:05.0546 0x1b20  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:58:05.0597 0x1b20  AeLookupSvc - ok
15:58:05.0607 0x1b20  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
15:58:05.0626 0x1b20  AFD - ok
15:58:05.0630 0x1b20  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
15:58:05.0637 0x1b20  agp440 - ok
15:58:05.0640 0x1b20  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
15:58:05.0651 0x1b20  ALG - ok
15:58:05.0653 0x1b20  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:58:05.0659 0x1b20  aliide - ok
15:58:05.0662 0x1b20  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
15:58:05.0668 0x1b20  amdide - ok
15:58:05.0672 0x1b20  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:58:05.0682 0x1b20  AmdK8 - ok
15:58:05.0685 0x1b20  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
15:58:05.0694 0x1b20  AmdPPM - ok
15:58:05.0698 0x1b20  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:58:05.0707 0x1b20  amdsata - ok
15:58:05.0713 0x1b20  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:58:05.0723 0x1b20  amdsbs - ok
15:58:05.0725 0x1b20  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:58:05.0732 0x1b20  amdxata - ok
15:58:05.0735 0x1b20  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
15:58:05.0798 0x1b20  AppID - ok
15:58:05.0801 0x1b20  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:58:05.0823 0x1b20  AppIDSvc - ok
15:58:05.0826 0x1b20  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
15:58:05.0836 0x1b20  Appinfo - ok
15:58:05.0841 0x1b20  [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:58:05.0852 0x1b20  Apple Mobile Device - ok
15:58:05.0859 0x1b20  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
15:58:05.0871 0x1b20  AppMgmt - ok
15:58:05.0875 0x1b20  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
15:58:05.0883 0x1b20  arc - ok
15:58:05.0887 0x1b20  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:58:05.0896 0x1b20  arcsas - ok
15:58:05.0916 0x1b20  [ 6E3F4538B33BC19259E99BE1826286A3, 90B85FB8CD90451F4B09082EDEC835652A46030CC33C587F502C27342FEE7454 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
15:58:05.0956 0x1b20  asComSvc - ok
15:58:05.0975 0x1b20  [ A63173897EA1A73A75D0E65036DE5B15, 07A83172B525DFC895056612F542420F4DF3C6192624C5B3141C726501163912 ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
15:58:06.0015 0x1b20  asHmComSvc - ok
15:58:06.0018 0x1b20  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE, DDE6F28B3F7F2ABBEE59D4864435108791631E9CB4CDFB1F178E5AA9859956D8 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
15:58:06.0025 0x1b20  AsIO - ok
15:58:06.0037 0x1b20  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:58:06.0051 0x1b20  aspnet_state - ok
15:58:06.0063 0x1b20  [ 5C31DFB196CB3A488A041881634D86D2, 419ABEED7FB7CEBBA264802D2F727D18F999CEDA566A0830C38A69AC1680F3EA ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
15:58:06.0089 0x1b20  AsSysCtrlService - ok
15:58:06.0092 0x1b20  [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO          C:\Windows\syswow64\drivers\AsUpIO.sys
15:58:06.0099 0x1b20  AsUpIO - ok
15:58:06.0102 0x1b20  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:58:06.0124 0x1b20  AsyncMac - ok
15:58:06.0127 0x1b20  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:58:06.0133 0x1b20  atapi - ok
15:58:06.0148 0x1b20  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:58:06.0184 0x1b20  AudioEndpointBuilder - ok
15:58:06.0199 0x1b20  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:58:06.0230 0x1b20  AudioSrv - ok
15:58:06.0251 0x1b20  [ 636B15879AE62E47444F99C60C900AA6, 335B1378037B2CFEBDAA95B1ABB619A4C18C5CD37A12688E606E7A12BE31735C ] avc3            C:\Windows\system32\DRIVERS\avc3.sys
15:58:06.0274 0x1b20  avc3 - ok
15:58:06.0284 0x1b20  [ 3B9549FEF98AB1768A1D6A919F355B70, 0014914051CB54CD7CC25561D29099A19DCFB2E1810FF635F9B6AD3D9C6FBC4B ] avchv           C:\Windows\system32\DRIVERS\avchv.sys
15:58:06.0296 0x1b20  avchv - ok
15:58:06.0311 0x1b20  [ 14023A39BC91AC5A2077766D28EBA7C5, 855FEE69105438ADE79C9389E0581C62FE1D134863F8D6FA27DE83737E4B4213 ] avckf           C:\Windows\system32\DRIVERS\avckf.sys
15:58:06.0327 0x1b20  avckf - ok
15:58:06.0331 0x1b20  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:58:06.0344 0x1b20  AxInstSV - ok
15:58:06.0355 0x1b20  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:58:06.0372 0x1b20  b06bdrv - ok
15:58:06.0380 0x1b20  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:58:06.0394 0x1b20  b57nd60a - ok
15:58:06.0407 0x1b20  [ B56C89AC51CDE54CBDC5E49B94ED54BF, 7EA4C4F838B498944F21E91640535B5507C00A71F2FBEA3A5E9E25900EE3C95D ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe
15:58:06.0417 0x1b20  BdDesktopParental - ok
15:58:06.0422 0x1b20  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:58:06.0432 0x1b20  BDESVC - ok
15:58:06.0436 0x1b20  [ 3533B749563E89EFAC7290A2BA3B4097, 1A1AB9D02EF729A622B2C2ECF788FD5DEC11A078C71CD31581D9F610D0050591 ] BdfNdisf        c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
15:58:06.0446 0x1b20  BdfNdisf - ok
15:58:06.0449 0x1b20  [ 4CE4B0098FC315C237FA8867F07886C4, 475B2D86EE7658372D868ABC9ACA965FDD8212D3AE2C6E4749DC53DBA3DC19D6 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
15:58:06.0457 0x1b20  bdfwfpf - ok
15:58:06.0461 0x1b20  [ C0247341C1BCD7FF2742821D0AD7AFBC, EC2B246F3233302DB540394AC0F11F294CA16FB9E44110126CC9807BAC20EA35 ] bdfwfpf_pc      C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys
15:58:06.0472 0x1b20  bdfwfpf_pc - ok
15:58:06.0477 0x1b20  [ B9ECE7FD9F58DAF19450C88338DC5267, 9857DFE0BDDEA791F2DDA99C24A064D488B52E4AC1402A37EF22C244C9283681 ] BDSandBox       C:\Windows\system32\drivers\bdsandbox.sys
15:58:06.0486 0x1b20  BDSandBox - ok
15:58:06.0489 0x1b20  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:58:06.0509 0x1b20  Beep - ok
15:58:06.0525 0x1b20  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
15:58:06.0548 0x1b20  BFE - ok
15:58:06.0566 0x1b20  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
15:58:06.0604 0x1b20  BITS - ok
15:58:06.0607 0x1b20  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:58:06.0616 0x1b20  blbdrive - ok
15:58:06.0628 0x1b20  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:58:06.0639 0x1b20  Bonjour Service - ok
15:58:06.0643 0x1b20  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:58:06.0653 0x1b20  bowser - ok
15:58:06.0656 0x1b20  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:58:06.0665 0x1b20  BrFiltLo - ok
15:58:06.0667 0x1b20  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:58:06.0676 0x1b20  BrFiltUp - ok
15:58:06.0680 0x1b20  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
15:58:06.0691 0x1b20  Browser - ok
15:58:06.0698 0x1b20  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:58:06.0715 0x1b20  Brserid - ok
15:58:06.0718 0x1b20  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:58:06.0727 0x1b20  BrSerWdm - ok
15:58:06.0730 0x1b20  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:58:06.0739 0x1b20  BrUsbMdm - ok
15:58:06.0741 0x1b20  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:58:06.0749 0x1b20  BrUsbSer - ok
15:58:06.0752 0x1b20  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
15:58:06.0762 0x1b20  BthEnum - ok
15:58:06.0766 0x1b20  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:58:06.0777 0x1b20  BTHMODEM - ok
15:58:06.0781 0x1b20  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
15:58:06.0793 0x1b20  BthPan - ok
15:58:06.0804 0x1b20  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
15:58:06.0823 0x1b20  BTHPORT - ok
15:58:06.0827 0x1b20  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
15:58:06.0849 0x1b20  bthserv - ok
15:58:06.0853 0x1b20  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
15:58:06.0862 0x1b20  BTHUSB - ok
15:58:06.0866 0x1b20  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:58:06.0888 0x1b20  cdfs - ok
15:58:06.0893 0x1b20  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:58:06.0904 0x1b20  cdrom - ok
15:58:06.0908 0x1b20  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:58:06.0929 0x1b20  CertPropSvc - ok
15:58:06.0932 0x1b20  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
15:58:06.0942 0x1b20  circlass - ok
15:58:06.0951 0x1b20  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
15:58:06.0965 0x1b20  CLFS - ok
15:58:07.0114 0x1b20  [ A1DB80A012F4C1C3DA78688E08BFBE80, 419349DAA67A355A11F99D5B1B50F70BA8C9544FE2783CA358B641305B3383B4 ] CLKMSVC10_E508E42F H:\CyberLink\MediaSuite\PowerDVD10\NavFilter\kmsvc.exe
15:58:07.0140 0x1b20  CLKMSVC10_E508E42F - ok
15:58:07.0148 0x1b20  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:58:07.0156 0x1b20  clr_optimization_v2.0.50727_32 - ok
15:58:07.0162 0x1b20  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:58:07.0171 0x1b20  clr_optimization_v2.0.50727_64 - ok
15:58:07.0181 0x1b20  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:58:07.0198 0x1b20  clr_optimization_v4.0.30319_32 - ok
15:58:07.0207 0x1b20  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:58:07.0219 0x1b20  clr_optimization_v4.0.30319_64 - ok
15:58:07.0221 0x1b20  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
15:58:07.0230 0x1b20  CmBatt - ok
15:58:07.0233 0x1b20  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:58:07.0239 0x1b20  cmdide - ok
15:58:07.0251 0x1b20  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
15:58:07.0269 0x1b20  CNG - ok
15:58:07.0272 0x1b20  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:58:07.0279 0x1b20  Compbatt - ok
15:58:07.0282 0x1b20  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:58:07.0292 0x1b20  CompositeBus - ok
15:58:07.0294 0x1b20  COMSysApp - ok
15:58:07.0297 0x1b20  [ CCB09EB78E047C931708149992C2E435, DF0DCFB3971829AF79629EFD036B8E1C6E2127481B3644CCC6E2DDD387489A15 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
15:58:07.0303 0x1b20  cpuz135 - ok
15:58:07.0306 0x1b20  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:58:07.0313 0x1b20  crcdisk - ok
15:58:07.0319 0x1b20  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:58:07.0331 0x1b20  CryptSvc - ok
15:58:07.0343 0x1b20  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
15:58:07.0362 0x1b20  CSC - ok
15:58:07.0378 0x1b20  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
15:58:07.0401 0x1b20  CscService - ok
15:58:07.0413 0x1b20  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:58:07.0445 0x1b20  DcomLaunch - ok
15:58:07.0452 0x1b20  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
15:58:07.0479 0x1b20  defragsvc - ok
15:58:07.0483 0x1b20  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:58:07.0506 0x1b20  DfsC - ok
15:58:07.0509 0x1b20  [ 3CE3066AB1CCC094B4F0F1285CDA4609, 7E25D0177A761CC13C0315CD056A09DD6BE354B5B3623EA8DB8A7C0FC4D4030B ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
15:58:07.0518 0x1b20  dg_ssudbus - ok
15:58:07.0526 0x1b20  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:58:07.0541 0x1b20  Dhcp - ok
15:58:07.0544 0x1b20  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
15:58:07.0566 0x1b20  discache - ok
15:58:07.0570 0x1b20  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
15:58:07.0577 0x1b20  Disk - ok
15:58:07.0580 0x1b20  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
15:58:07.0590 0x1b20  dmvsc - ok
15:58:07.0595 0x1b20  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:58:07.0608 0x1b20  Dnscache - ok
15:58:07.0614 0x1b20  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:58:07.0640 0x1b20  dot3svc - ok
15:58:07.0646 0x1b20  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
15:58:07.0670 0x1b20  DPS - ok
15:58:07.0672 0x1b20  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:58:07.0680 0x1b20  drmkaud - ok
15:58:07.0688 0x1b20  [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
15:58:07.0699 0x1b20  dtsoftbus01 - ok
15:58:07.0718 0x1b20  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:58:07.0739 0x1b20  DXGKrnl - ok
15:58:07.0747 0x1b20  [ 471612D324D8682B98B267BD091D2219, 9E6FF351FADCD6162A6068B3C0E3A9A6C7DE9DF8B97E5192EDB8A97DFE75348F ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
15:58:07.0760 0x1b20  e1cexpress - ok
15:58:07.0768 0x1b20  [ D1004B64292C1A802D53CD861695ACE3, 62519F7203247ECAF4ADC32A3C02182424DA63442F37DD1A007C92C9E1C05F6B ] e1qexpress      C:\Windows\system32\DRIVERS\e1q62x64.sys
15:58:07.0779 0x1b20  e1qexpress - ok
15:58:07.0783 0x1b20  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
15:58:07.0806 0x1b20  EapHost - ok
15:58:07.0871 0x1b20  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:58:07.0953 0x1b20  ebdrv - ok
15:58:07.0957 0x1b20  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
15:58:07.0966 0x1b20  EFS - ok
15:58:07.0980 0x1b20  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:58:08.0004 0x1b20  ehRecvr - ok
15:58:08.0008 0x1b20  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
15:58:08.0019 0x1b20  ehSched - ok
15:58:08.0031 0x1b20  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:58:08.0047 0x1b20  elxstor - ok
15:58:08.0050 0x1b20  [ 12C061D9F9621BE916D58191872EC281, 5285C5AF9ECDAF9CBB7A5D0FC97D882EC06778CF5688E86890A617E2670C413B ] ENTECH64        C:\Windows\system32\DRIVERS\ENTECH64.sys
15:58:08.0057 0x1b20  ENTECH64 - ok
15:58:08.0059 0x1b20  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:58:08.0067 0x1b20  ErrDev - ok
15:58:08.0078 0x1b20  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
15:58:08.0107 0x1b20  EventSystem - ok
15:58:08.0113 0x1b20  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:58:08.0138 0x1b20  exfat - ok
15:58:08.0143 0x1b20  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:58:08.0168 0x1b20  fastfat - ok
15:58:08.0184 0x1b20  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
15:58:08.0206 0x1b20  Fax - ok
15:58:08.0210 0x1b20  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
15:58:08.0218 0x1b20  fdc - ok
15:58:08.0220 0x1b20  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
15:58:08.0242 0x1b20  fdPHost - ok
15:58:08.0244 0x1b20  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:58:08.0266 0x1b20  FDResPub - ok
15:58:08.0269 0x1b20  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:58:08.0277 0x1b20  FileInfo - ok
15:58:08.0279 0x1b20  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:58:08.0301 0x1b20  Filetrace - ok
15:58:08.0303 0x1b20  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:58:08.0312 0x1b20  flpydisk - ok
15:58:08.0319 0x1b20  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:58:08.0331 0x1b20  FltMgr - ok
15:58:08.0358 0x1b20  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
15:58:08.0394 0x1b20  FontCache - ok
15:58:08.0397 0x1b20  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:58:08.0403 0x1b20  FontCache3.0.0.0 - ok
15:58:08.0406 0x1b20  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:58:08.0414 0x1b20  FsDepends - ok
15:58:08.0416 0x1b20  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:58:08.0422 0x1b20  Fs_Rec - ok
15:58:08.0426 0x1b20  [ 1497C938B4BFB454829C6CCB69D81348, 38051E93A397293EAEFD27DEFD65D270308DAC61664CABB8C55922BA2F7165D8 ] FTDIBUS         C:\Windows\system32\drivers\ftdibus.sys
15:58:08.0434 0x1b20  FTDIBUS - ok
15:58:08.0437 0x1b20  [ 37C9D167F0BD2CE0A5D5E160CC87758A, 42BEF1B04126EC6A3551E9513CC346E0C3ECF0410672DBAA66A0BE689380B9EA ] FTSER2K         C:\Windows\system32\drivers\ftser2k.sys
15:58:08.0447 0x1b20  FTSER2K - ok
15:58:08.0453 0x1b20  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:58:08.0465 0x1b20  fvevol - ok
15:58:08.0468 0x1b20  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:58:08.0476 0x1b20  gagp30kx - ok
15:58:08.0478 0x1b20  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:58:08.0485 0x1b20  GEARAspiWDM - ok
15:58:08.0502 0x1b20  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
15:58:08.0538 0x1b20  gpsvc - ok
15:58:08.0544 0x1b20  [ 0A9D58AABD01DA97B1D101473EFA7659, C18EA4F5BF569C230AD682A418F69B6E4209AD467BCCBDABD0515DBB582BF04B ] gzflt           C:\Windows\system32\DRIVERS\gzflt.sys
15:58:08.0553 0x1b20  gzflt - ok
15:58:08.0556 0x1b20  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:58:08.0565 0x1b20  hcw85cir - ok
15:58:08.0574 0x1b20  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:58:08.0592 0x1b20  HdAudAddService - ok
15:58:08.0596 0x1b20  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:58:08.0608 0x1b20  HDAudBus - ok
15:58:08.0610 0x1b20  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:58:08.0619 0x1b20  HidBatt - ok
15:58:08.0623 0x1b20  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:58:08.0634 0x1b20  HidBth - ok
15:58:08.0637 0x1b20  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:58:08.0648 0x1b20  HidIr - ok
15:58:08.0651 0x1b20  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
15:58:08.0673 0x1b20  hidserv - ok
15:58:08.0676 0x1b20  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:58:08.0684 0x1b20  HidUsb - ok
15:58:08.0688 0x1b20  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:58:08.0711 0x1b20  hkmsvc - ok
15:58:08.0717 0x1b20  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:58:08.0731 0x1b20  HomeGroupListener - ok
15:58:08.0736 0x1b20  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:58:08.0748 0x1b20  HomeGroupProvider - ok
15:58:08.0753 0x1b20  [ 86724A200BF1F08A03FB563660FCD928, E2BDD30D7AFECB0F517BB02C788C93D506FB2B180DCA239BC4A1FEDB1E986EAD ] HP DS Service   C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
15:58:08.0759 0x1b20  HP DS Service - detected UnsignedFile.Multi.Generic ( 1 )
15:58:11.0175 0x1b20  Detect skipped due to KSN trusted
15:58:11.0175 0x1b20  HP DS Service - ok
15:58:11.0181 0x1b20  [ 9C42E435F629CD8512BECFA082762425, BC817D05E5B8BE05CAB05F075A2C0B3CCF39E6BBD924BD0040C698F4D4580677 ] HP LaserJet Service C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
15:58:11.0192 0x1b20  HP LaserJet Service - detected UnsignedFile.Multi.Generic ( 1 )
15:58:13.0607 0x1b20  Detect skipped due to KSN trusted
15:58:13.0607 0x1b20  HP LaserJet Service - ok
15:58:13.0612 0x1b20  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:58:13.0620 0x1b20  HpSAMD - ok
15:58:13.0623 0x1b20  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\Windows\system32\Drivers\ANDROIDUSB.sys
15:58:13.0635 0x1b20  HTCAND64 - ok
15:58:13.0638 0x1b20  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\Windows\system32\DRIVERS\htcnprot.sys
15:58:13.0645 0x1b20  htcnprot - ok
15:58:13.0650 0x1b20  [ 7C7C986776D00E575BFBDE5DCBDC615D, 4CF12851A5A45917C3A9139B19D79434F2038611B617F83A714506CC7A1A6C61 ] HtcVCom32       C:\Windows\system32\DRIVERS\HtcVComV64.sys
15:58:13.0663 0x1b20  HtcVCom32 - ok
15:58:13.0679 0x1b20  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:58:13.0717 0x1b20  HTTP - ok
15:58:13.0720 0x1b20  [ 7B481D27ABFF689DE7ED6F556DEF4421, 9C0069DA18D0253DF6682B9BB8C5A3C47F2128ED4BCAF7DE6C68408C5D16097E ] hwinterfacex64  C:\Windows\system32\Drivers\hwinterfacex64.sys
15:58:13.0725 0x1b20  hwinterfacex64 - detected UnsignedFile.Multi.Generic ( 1 )
15:58:16.0139 0x1b20  Detect skipped due to KSN trusted
15:58:16.0139 0x1b20  hwinterfacex64 - ok
15:58:16.0143 0x1b20  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:58:16.0149 0x1b20  hwpolicy - ok
15:58:16.0153 0x1b20  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:58:16.0163 0x1b20  i8042prt - ok
15:58:16.0177 0x1b20  [ 2FDAEC4B02729C48C0FD1B0B4695995B, 87331D91FA3A23257B9913067B7B16D08710408070795B638058DBF728BBB288 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
15:58:16.0192 0x1b20  iaStor - ok
15:58:16.0195 0x1b20  [ D41861E56E7552C13674D7F147A02464, A361AE723FEEFD8D34D259F667ED14EEEC3B8ED6458522AC5D50C08E281B298B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
15:58:16.0203 0x1b20  IAStorDataMgrSvc - ok
15:58:16.0216 0x1b20  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:58:16.0231 0x1b20  iaStorV - ok
15:58:16.0236 0x1b20  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
15:58:16.0247 0x1b20  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
15:58:18.0662 0x1b20  Detect skipped due to KSN trusted
15:58:18.0662 0x1b20  IDriverT - ok
15:58:18.0680 0x1b20  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:58:18.0703 0x1b20  idsvc - ok
15:58:18.0705 0x1b20  IEEtwCollectorService - ok
15:58:18.0941 0x1b20  [ 0089B53F1BEFD34B7D8CA4AB021335FA, AE2B32E05E166DBAFA602C38D9FF670A1A9E561D8E37E5C088E1519779AE8475 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
15:58:19.0234 0x1b20  igfx - ok
15:58:19.0244 0x1b20  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:58:19.0252 0x1b20  iirsp - ok
15:58:19.0269 0x1b20  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
15:58:19.0296 0x1b20  IKEEXT - ok
15:58:19.0355 0x1b20  [ 26407A11D7E222AFB7CE32700ABBD9D1, A327A91EFD71B838ABF77FC75ACA6349E654B5A66C5E45B56B9E0A2BDCE397C7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:58:19.0404 0x1b20  IntcAzAudAddService - ok
15:58:19.0412 0x1b20  [ 7A3F838F2D7C8FD8E8CFF480384A798C, 425EDD50B1AD52CD914496426F74CDDE555EED3A448EE4B72D7FD4FF1F1C6A5A ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
15:58:19.0421 0x1b20  Intel(R) PROSet Monitoring Service - ok
15:58:19.0424 0x1b20  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:58:19.0431 0x1b20  intelide - ok
15:58:19.0434 0x1b20  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:58:19.0443 0x1b20  intelppm - ok
15:58:19.0448 0x1b20  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:58:19.0471 0x1b20  IPBusEnum - ok
15:58:19.0475 0x1b20  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:58:19.0498 0x1b20  IpFilterDriver - ok
15:58:19.0510 0x1b20  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:58:19.0531 0x1b20  iphlpsvc - ok
15:58:19.0535 0x1b20  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:58:19.0545 0x1b20  IPMIDRV - ok
15:58:19.0549 0x1b20  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:58:19.0573 0x1b20  IPNAT - ok
15:58:19.0586 0x1b20  [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:58:19.0602 0x1b20  iPod Service - ok
15:58:19.0605 0x1b20  [ 02DEF37AB75E0032C50724646F708DE8, 1504041F6751A93F7AA0C8FDE287DD7500D85CC93B1969D0EFC82C023F69AA6C ] iPodDrv         C:\Windows\system32\drivers\iPodDrv.sys
15:58:19.0612 0x1b20  iPodDrv - ok
15:58:19.0614 0x1b20  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:58:19.0626 0x1b20  IRENUM - ok
15:58:19.0628 0x1b20  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:58:19.0635 0x1b20  isapnp - ok
15:58:19.0641 0x1b20  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:58:19.0652 0x1b20  iScsiPrt - ok
15:58:19.0657 0x1b20  [ A577F5DB30F70ECA9708C07C2EACBD9D, F301D6779BE81F3778417EAAE6D950BF95822EC6426FF3F516D383ADE08DF8CA ] JRAID           C:\Windows\system32\DRIVERS\jraid.sys
15:58:19.0666 0x1b20  JRAID - ok
15:58:19.0669 0x1b20  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:58:19.0675 0x1b20  kbdclass - ok
15:58:19.0678 0x1b20  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:58:19.0687 0x1b20  kbdhid - ok
15:58:19.0689 0x1b20  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
15:58:19.0697 0x1b20  KeyIso - ok
15:58:19.0700 0x1b20  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:58:19.0708 0x1b20  KSecDD - ok
15:58:19.0713 0x1b20  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:58:19.0722 0x1b20  KSecPkg - ok
15:58:19.0724 0x1b20  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:58:19.0745 0x1b20  ksthunk - ok
15:58:19.0753 0x1b20  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:58:19.0783 0x1b20  KtmRm - ok
15:58:19.0789 0x1b20  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:58:19.0815 0x1b20  LanmanServer - ok
15:58:19.0819 0x1b20  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:58:19.0842 0x1b20  LanmanWorkstation - ok
15:58:19.0846 0x1b20  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:58:19.0869 0x1b20  lltdio - ok
15:58:19.0876 0x1b20  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:58:19.0905 0x1b20  lltdsvc - ok
15:58:19.0907 0x1b20  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:58:19.0928 0x1b20  lmhosts - ok
15:58:19.0933 0x1b20  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:58:19.0942 0x1b20  LSI_FC - ok
15:58:19.0946 0x1b20  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:58:19.0956 0x1b20  LSI_SAS - ok
15:58:19.0959 0x1b20  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:58:19.0967 0x1b20  LSI_SAS2 - ok
15:58:19.0971 0x1b20  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:58:19.0980 0x1b20  LSI_SCSI - ok
15:58:19.0983 0x1b20  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:58:20.0006 0x1b20  luafv - ok
15:58:20.0009 0x1b20  [ 07389F6925E490D2DB7882110E99921C, AD316EE8A47B6EDD1AB1E1E7DDE2BC69DC0E342144F5B74C96E9494F847B1B7E ] lvpepf64        C:\Windows\system32\DRIVERS\lv302a64.sys
15:58:20.0016 0x1b20  lvpepf64 - ok
15:58:20.0034 0x1b20  [ 7F0BA3A6E8996F15693C6B7D81DA049E, 96925ABA3A9C5FD2CF9ECBDC4ED8E94033EB1C53DD03F28102E83EEF327777E6 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
15:58:20.0054 0x1b20  LVRS64 - ok
15:58:20.0058 0x1b20  [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64        C:\Windows\system32\DRIVERS\LVUSBS64.sys
15:58:20.0068 0x1b20  LVUSBS64 - ok
15:58:20.0072 0x1b20  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:58:20.0083 0x1b20  Mcx2Svc - ok
15:58:20.0085 0x1b20  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:58:20.0093 0x1b20  megasas - ok
15:58:20.0099 0x1b20  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:58:20.0111 0x1b20  MegaSR - ok
15:58:20.0114 0x1b20  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
15:58:20.0121 0x1b20  MEIx64 - ok
15:58:20.0125 0x1b20  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
15:58:20.0148 0x1b20  MMCSS - ok
15:58:20.0150 0x1b20  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
15:58:20.0172 0x1b20  Modem - ok
15:58:20.0174 0x1b20  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:58:20.0184 0x1b20  monitor - ok
15:58:20.0187 0x1b20  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:58:20.0193 0x1b20  mouclass - ok
15:58:20.0195 0x1b20  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:58:20.0203 0x1b20  mouhid - ok
15:58:20.0207 0x1b20  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:58:20.0215 0x1b20  mountmgr - ok
15:58:20.0220 0x1b20  [ 6ACCF2E8210880D7005C608AFDB5301C, D00122C928C5818A24E6C11183F79C253CFB6576AD54DC92AEEFC630ABBDE655 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:58:20.0228 0x1b20  MozillaMaintenance - ok
15:58:20.0233 0x1b20  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:58:20.0243 0x1b20  mpio - ok
15:58:20.0246 0x1b20  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:58:20.0268 0x1b20  mpsdrv - ok
15:58:20.0286 0x1b20  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:58:20.0326 0x1b20  MpsSvc - ok
15:58:20.0331 0x1b20  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:58:20.0341 0x1b20  MRxDAV - ok
15:58:20.0346 0x1b20  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:58:20.0357 0x1b20  mrxsmb - ok
15:58:20.0365 0x1b20  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:58:20.0379 0x1b20  mrxsmb10 - ok
15:58:20.0383 0x1b20  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:58:20.0393 0x1b20  mrxsmb20 - ok
15:58:20.0396 0x1b20  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:58:20.0402 0x1b20  msahci - ok
15:58:20.0408 0x1b20  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:58:20.0417 0x1b20  msdsm - ok
15:58:20.0422 0x1b20  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
15:58:20.0434 0x1b20  MSDTC - ok
15:58:20.0438 0x1b20  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:58:20.0459 0x1b20  Msfs - ok
15:58:20.0462 0x1b20  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:58:20.0482 0x1b20  mshidkmdf - ok
15:58:20.0485 0x1b20  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:58:20.0491 0x1b20  msisadrv - ok
15:58:20.0496 0x1b20  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:58:20.0521 0x1b20  MSiSCSI - ok
15:58:20.0523 0x1b20  msiserver - ok
15:58:20.0525 0x1b20  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:58:20.0546 0x1b20  MSKSSRV - ok
15:58:20.0548 0x1b20  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:58:20.0569 0x1b20  MSPCLOCK - ok
15:58:20.0572 0x1b20  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:58:20.0592 0x1b20  MSPQM - ok
15:58:20.0601 0x1b20  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:58:20.0615 0x1b20  MsRPC - ok
15:58:20.0619 0x1b20  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:58:20.0626 0x1b20  mssmbios - ok
15:58:20.0627 0x1b20  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:58:20.0648 0x1b20  MSTEE - ok
15:58:20.0650 0x1b20  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:58:20.0658 0x1b20  MTConfig - ok
15:58:20.0662 0x1b20  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
15:58:20.0669 0x1b20  Mup - ok
15:58:20.0677 0x1b20  [ 38B4C95E821528FB91DF16A78E04450F, 8ADDF63088293923B497E1AFF86C189669B973F43153FEE2370EA32860D71AD7 ] mv91xx          C:\Windows\system32\DRIVERS\mv91xx.sys
15:58:20.0690 0x1b20  mv91xx - ok
15:58:20.0700 0x1b20  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
15:58:20.0731 0x1b20  napagent - ok
15:58:20.0740 0x1b20  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:58:20.0759 0x1b20  NativeWifiP - ok
15:58:20.0777 0x1b20  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:58:20.0801 0x1b20  NDIS - ok
15:58:20.0804 0x1b20  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:58:20.0825 0x1b20  NdisCap - ok
15:58:20.0828 0x1b20  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:58:20.0849 0x1b20  NdisTapi - ok
15:58:20.0852 0x1b20  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:58:20.0873 0x1b20  Ndisuio - ok
15:58:20.0878 0x1b20  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:58:20.0902 0x1b20  NdisWan - ok
15:58:20.0905 0x1b20  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:58:20.0927 0x1b20  NDProxy - ok
15:58:20.0930 0x1b20  [ 2C723E42FC8D7B0209492828F921FB50, 2ECF9F4D91F317432FB5A6D01D8271BB7E2A5B8A6CA9EF2F2036890D2B072E52 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:58:20.0935 0x1b20  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:58:23.0350 0x1b20  Detect skipped due to KSN trusted
15:58:23.0351 0x1b20  Net Driver HPZ12 - ok
15:58:23.0353 0x1b20  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:58:23.0375 0x1b20  NetBIOS - ok
15:58:23.0382 0x1b20  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:58:23.0408 0x1b20  NetBT - ok
15:58:23.0410 0x1b20  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
15:58:23.0418 0x1b20  Netlogon - ok
15:58:23.0426 0x1b20  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
15:58:23.0455 0x1b20  Netman - ok
15:58:23.0460 0x1b20  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:58:23.0476 0x1b20  NetMsmqActivator - ok
15:58:23.0480 0x1b20  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:58:23.0488 0x1b20  NetPipeActivator - ok
15:58:23.0499 0x1b20  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
15:58:23.0531 0x1b20  netprofm - ok
15:58:23.0535 0x1b20  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:58:23.0544 0x1b20  NetTcpActivator - ok
15:58:23.0547 0x1b20  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:58:23.0556 0x1b20  NetTcpPortSharing - ok
15:58:23.0559 0x1b20  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:58:23.0566 0x1b20  nfrd960 - ok
15:58:23.0574 0x1b20  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:58:23.0588 0x1b20  NlaSvc - ok
15:58:23.0591 0x1b20  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:58:23.0612 0x1b20  Npfs - ok
15:58:23.0614 0x1b20  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
15:58:23.0636 0x1b20  nsi - ok
15:58:23.0638 0x1b20  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:58:23.0659 0x1b20  nsiproxy - ok
15:58:23.0692 0x1b20  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:58:23.0729 0x1b20  Ntfs - ok
15:58:23.0732 0x1b20  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
15:58:23.0752 0x1b20  Null - ok
15:58:23.0755 0x1b20  [ 158AD24745BD85BA9BE3C51C38F48C32, B053A3B5A5CAE2CBC47E2C19E636AD70F376334EFFBB391A76562E67CBF3AC86 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
15:58:23.0764 0x1b20  nusb3hub - ok
15:58:23.0770 0x1b20  [ D40A13B2C0891E218F9523B376955DB6, 9A2AAAF960868B860A65579EAD507B35C64CFD6C3581F8D731ADF975F778D10E ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
15:58:23.0783 0x1b20  nusb3xhc - ok
15:58:23.0788 0x1b20  [ 554964B900AE2954B8B589B6287034AC, C6C9EA3ADAFEBBF2AF944E4A0656BD795AD37706008CC0CA3F2150BD709476E7 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
15:58:23.0798 0x1b20  NVHDA - ok
15:58:23.0993 0x1b20  [ CE1B54F1ED2080B15DAF9044EC92075A, DD8557B0E159C09DF3195EC01545CCE2BD580DC2557CCC4F90D3B7C02D07FC36 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:58:24.0169 0x1b20  nvlddmkm - ok
15:58:24.0203 0x1b20  [ 1C7C6D7481CABD4EF38A81F5B68F02E8, C4FBE81B8A3F280EEAC282D76626E849197EDEEC8C755B7B12E3594776390DE7 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
15:58:24.0275 0x1b20  NvNetworkService - ok
15:58:24.0281 0x1b20  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:58:24.0291 0x1b20  nvraid - ok
15:58:24.0296 0x1b20  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:58:24.0305 0x1b20  nvstor - ok
15:58:24.0539 0x1b20  [ 63B5DCF3A9EEA1C418468A312B54E612, 1094032CA6D6C6E06868483667B454781C10E820E3A727B59FA9AF727D713360 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
15:58:24.0772 0x1b20  NvStreamSvc - ok
15:58:24.0801 0x1b20  [ 67E9F641C1B5387F298F3063FAFA022B, F9C9974828632349E426C5375D2FD63744350D3D6FD693071231370D52E76DE7 ] NVSvc           C:\Windows\system32\nvvsvc.exe
15:58:24.0826 0x1b20  NVSvc - ok
15:58:24.0830 0x1b20  [ 31B16657118E439B77B0A527F7EA66CB, 8C375D2AFF56125E08587DDDCE6AD31DE6D2DEEDC9AD95ADE95B7499F79A5B56 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
15:58:24.0837 0x1b20  nvvad_WaveExtensible - ok
15:58:24.0842 0x1b20  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:58:24.0851 0x1b20  nv_agp - ok
15:58:24.0854 0x1b20  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:58:24.0863 0x1b20  ohci1394 - ok
15:58:24.0865 0x1b20  okdmx31 - ok
15:58:24.0870 0x1b20  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:58:24.0878 0x1b20  ose - ok
15:58:24.0984 0x1b20  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:58:25.0098 0x1b20  osppsvc - ok
15:58:25.0111 0x1b20  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:58:25.0127 0x1b20  p2pimsvc - ok
15:58:25.0138 0x1b20  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
15:58:25.0154 0x1b20  p2psvc - ok
15:58:25.0159 0x1b20  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
15:58:25.0170 0x1b20  Parport - ok
15:58:25.0173 0x1b20  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:58:25.0180 0x1b20  partmgr - ok
15:58:25.0185 0x1b20  [ 3CAE2BBC86FCF7F94C9696994AF30386, 4DA063A60523567272CFB35DF5D7CA142B100EF9123B1F23A6F11AB89DB83486 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
15:58:25.0196 0x1b20  PassThru Service - detected UnsignedFile.Multi.Generic ( 1 )
15:58:27.0985 0x1b20  Detect skipped due to KSN trusted
15:58:27.0985 0x1b20  PassThru Service - ok
15:58:27.0993 0x1b20  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:58:28.0008 0x1b20  PcaSvc - ok
15:58:28.0014 0x1b20  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
15:58:28.0023 0x1b20  pci - ok
15:58:28.0025 0x1b20  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:58:28.0031 0x1b20  pciide - ok
15:58:28.0037 0x1b20  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:58:28.0048 0x1b20  pcmcia - ok
15:58:28.0051 0x1b20  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:58:28.0058 0x1b20  pcw - ok
15:58:28.0073 0x1b20  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:58:28.0109 0x1b20  PEAUTH - ok
15:58:28.0135 0x1b20  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
15:58:28.0171 0x1b20  PeerDistSvc - ok
15:58:28.0196 0x1b20  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:58:28.0205 0x1b20  PerfHost - ok
15:58:28.0252 0x1b20  [ 087A343DFC337F37723DD7912DE6B6CD, AE11C28A01D4FC2CCB36C5956D9414AEBA8AFC4A868047CC691F32CF31E44AAC ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V64.SYS
15:58:28.0300 0x1b20  PID_PEPI - ok
15:58:28.0329 0x1b20  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
15:58:28.0379 0x1b20  pla - ok
15:58:28.0390 0x1b20  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:58:28.0407 0x1b20  PlugPlay - ok
15:58:28.0410 0x1b20  [ 171E6D91A20AAC8D02172A64E82CE90B, 0D51F00D6C0376CD12893620E0A15E687263048CFE20E953F6BB4B7D6CDC3F50 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:58:28.0416 0x1b20  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:58:31.0255 0x1b20  Detect skipped due to KSN trusted
15:58:31.0255 0x1b20  Pml Driver HPZ12 - ok
15:58:31.0260 0x1b20  [ A010F13D27C1033A8BE09D5FA9BF348B, 5536A233554C469F270046ADEE12A158F70E2D8BE776BAD0925235B015567D46 ] pneteth         C:\Windows\system32\DRIVERS\pneteth.sys
15:58:31.0269 0x1b20  pneteth - ok
15:58:31.0273 0x1b20  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:58:31.0282 0x1b20  PNRPAutoReg - ok
15:58:31.0292 0x1b20  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:58:31.0305 0x1b20  PNRPsvc - ok
15:58:31.0317 0x1b20  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:58:31.0349 0x1b20  PolicyAgent - ok
15:58:31.0356 0x1b20  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
15:58:31.0381 0x1b20  Power - ok
15:58:31.0386 0x1b20  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:58:31.0409 0x1b20  PptpMiniport - ok
15:58:31.0413 0x1b20  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
15:58:31.0423 0x1b20  Processor - ok
15:58:31.0430 0x1b20  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:58:31.0443 0x1b20  ProfSvc - ok
15:58:31.0446 0x1b20  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:58:31.0453 0x1b20  ProtectedStorage - ok
15:58:31.0458 0x1b20  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:58:31.0482 0x1b20  Psched - ok
15:58:31.0515 0x1b20  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:58:31.0551 0x1b20  ql2300 - ok
15:58:31.0558 0x1b20  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:58:31.0567 0x1b20  ql40xx - ok
15:58:31.0574 0x1b20  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
15:58:31.0591 0x1b20  QWAVE - ok
15:58:31.0594 0x1b20  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:58:31.0605 0x1b20  QWAVEdrv - ok
15:58:31.0608 0x1b20  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:58:31.0629 0x1b20  RasAcd - ok
15:58:31.0633 0x1b20  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:58:31.0655 0x1b20  RasAgileVpn - ok
15:58:31.0659 0x1b20  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
15:58:31.0682 0x1b20  RasAuto - ok
15:58:31.0687 0x1b20  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:58:31.0710 0x1b20  Rasl2tp - ok
15:58:31.0719 0x1b20  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
15:58:31.0748 0x1b20  RasMan - ok
15:58:31.0752 0x1b20  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:58:31.0776 0x1b20  RasPppoe - ok
15:58:31.0779 0x1b20  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:58:31.0801 0x1b20  RasSstp - ok
15:58:31.0811 0x1b20  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:58:31.0839 0x1b20  rdbss - ok
15:58:31.0841 0x1b20  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:58:31.0852 0x1b20  rdpbus - ok
15:58:31.0855 0x1b20  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:58:31.0876 0x1b20  RDPCDD - ok
15:58:31.0883 0x1b20  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:58:31.0894 0x1b20  RDPDR - ok
15:58:31.0896 0x1b20  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:58:31.0917 0x1b20  RDPENCDD - ok
15:58:31.0920 0x1b20  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:58:31.0940 0x1b20  RDPREFMP - ok
15:58:31.0945 0x1b20  [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:58:31.0956 0x1b20  RdpVideoMiniport - ok
15:58:31.0962 0x1b20  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:58:31.0976 0x1b20  RDPWD - ok
15:58:31.0983 0x1b20  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:58:31.0993 0x1b20  rdyboost - ok
15:58:31.0997 0x1b20  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:58:32.0021 0x1b20  RemoteAccess - ok
15:58:32.0027 0x1b20  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:58:32.0052 0x1b20  RemoteRegistry - ok
15:58:32.0060 0x1b20  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
15:58:32.0074 0x1b20  RFCOMM - ok
15:58:32.0084 0x1b20  [ 8CFCA7E2FD4B57C2BEF929C1C1A4C56E, B56D18C70658AE2842AD684FB378CC7805612050A4ED222103F54A38FB22BBA6 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
15:58:32.0102 0x1b20  RichVideo - ok
15:58:32.0107 0x1b20  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:58:32.0130 0x1b20  RpcEptMapper - ok
15:58:32.0134 0x1b20  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
15:58:32.0142 0x1b20  RpcLocator - ok
15:58:32.0155 0x1b20  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
15:58:32.0184 0x1b20  RpcSs - ok
15:58:32.0189 0x1b20  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:58:32.0213 0x1b20  rspndr - ok
15:58:32.0216 0x1b20  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
15:58:32.0224 0x1b20  s3cap - ok
15:58:32.0231 0x1b20  [ AEED412196AA928A752641E41F358464, 61EE27F01C2D6F09A34F56DC0116D78A026BB46E31347A79E66A7EDA5655754F ] SaiK1709        C:\Windows\system32\DRIVERS\SaiK1709.sys
15:58:32.0241 0x1b20  SaiK1709 - ok
15:58:32.0247 0x1b20  [ B08581EDF3290210D3366CD2D992F6C2, FF1BE97B8F37FF39B784CAB254F2460B7F7A84C45BAD5CDB06FE5C29CF293BE5 ] SaiMini         C:\Windows\system32\DRIVERS\SaiMini.sys
15:58:32.0254 0x1b20  SaiMini - ok
15:58:32.0259 0x1b20  [ D086C2F45D328C2F63FC6B4CD79FCB66, BF3D27D95C83D2454AE62BAFE9297E08BB58EA4C7FBFBDEE075A4FFC6085735C ] SaiNtBus        C:\Windows\system32\drivers\SaiBus.sys
15:58:32.0269 0x1b20  SaiNtBus - ok
15:58:32.0275 0x1b20  [ E0BB0A98692A8227A281ED0FA71F6AE4, 2E68EED3AFC8A9096EC030E76C45BF827D2BF94CB96C1B97A9F8D59FAAA41E6F ] SaiU1709        C:\Windows\system32\DRIVERS\SaiU1709.sys
15:58:32.0283 0x1b20  SaiU1709 - ok
15:58:32.0286 0x1b20  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
15:58:32.0293 0x1b20  SamSs - ok
15:58:32.0299 0x1b20  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:58:32.0309 0x1b20  sbp2port - ok
15:58:32.0316 0x1b20  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:58:32.0344 0x1b20  SCardSvr - ok
15:58:32.0346 0x1b20  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:58:32.0368 0x1b20  scfilter - ok
15:58:32.0394 0x1b20  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
15:58:32.0442 0x1b20  Schedule - ok
15:58:32.0446 0x1b20  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:58:32.0467 0x1b20  SCPolicySvc - ok
15:58:32.0473 0x1b20  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:58:32.0486 0x1b20  SDRSVC - ok
15:58:32.0489 0x1b20  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:58:32.0510 0x1b20  secdrv - ok
15:58:32.0513 0x1b20  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
15:58:32.0535 0x1b20  seclogon - ok
15:58:32.0538 0x1b20  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
15:58:32.0562 0x1b20  SENS - ok
15:58:32.0565 0x1b20  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:58:32.0577 0x1b20  SensrSvc - ok
15:58:32.0579 0x1b20  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:58:32.0590 0x1b20  Serenum - ok
15:58:32.0595 0x1b20  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
15:58:32.0605 0x1b20  Serial - ok
15:58:32.0609 0x1b20  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:58:32.0618 0x1b20  sermouse - ok
15:58:32.0626 0x1b20  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
15:58:32.0652 0x1b20  SessionEnv - ok
15:58:32.0654 0x1b20  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:58:32.0664 0x1b20  sffdisk - ok
15:58:32.0667 0x1b20  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:58:32.0678 0x1b20  sffp_mmc - ok
15:58:32.0680 0x1b20  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:58:32.0690 0x1b20  sffp_sd - ok
15:58:32.0693 0x1b20  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:58:32.0701 0x1b20  sfloppy - ok
15:58:32.0710 0x1b20  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:58:32.0740 0x1b20  SharedAccess - ok
15:58:32.0751 0x1b20  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:58:32.0780 0x1b20  ShellHWDetection - ok
15:58:32.0783 0x1b20  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:58:32.0791 0x1b20  SiSRaid2 - ok
15:58:32.0794 0x1b20  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:58:32.0802 0x1b20  SiSRaid4 - ok
15:58:32.0809 0x1b20  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:58:32.0819 0x1b20  SkypeUpdate - ok
15:58:32.0823 0x1b20  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:58:32.0846 0x1b20  Smb - ok
15:58:32.0851 0x1b20  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:58:32.0860 0x1b20  SNMPTRAP - ok
15:58:32.0863 0x1b20  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:58:32.0868 0x1b20  spldr - ok
15:58:32.0880 0x1b20  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
15:58:32.0897 0x1b20  Spooler - ok
15:58:32.0972 0x1b20  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
15:58:33.0073 0x1b20  sppsvc - ok
15:58:33.0078 0x1b20  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:58:33.0101 0x1b20  sppuinotify - ok
15:58:33.0112 0x1b20  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:58:33.0131 0x1b20  srv - ok
15:58:33.0141 0x1b20  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:58:33.0157 0x1b20  srv2 - ok
15:58:33.0164 0x1b20  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:58:33.0175 0x1b20  srvnet - ok
15:58:33.0181 0x1b20  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:58:33.0207 0x1b20  SSDPSRV - ok
15:58:33.0211 0x1b20  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:58:33.0233 0x1b20  SstpSvc - ok
15:58:33.0249 0x1b20  [ 189879824D01F9A0DD1D72259A120F50, D587688E9EF7C43319AB87EEA368C9310F3A8F4A8A6D8A6E427A54126C209DF0 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:58:33.0275 0x1b20  Steam Client Service - ok
15:58:33.0287 0x1b20  [ 4F08BE2C2AC568EE9867A9B0F4F09540, 2EACD391B66D649BA458955257912B302270AB883B13FD4034B069B7CECE75FD ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:58:33.0318 0x1b20  Stereo Service - ok
15:58:33.0321 0x1b20  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:58:33.0328 0x1b20  stexstor - ok
15:58:33.0331 0x1b20  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\drivers\serscan.sys
15:58:33.0338 0x1b20  StillCam - ok
15:58:33.0352 0x1b20  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
15:58:33.0376 0x1b20  stisvc - ok
15:58:33.0379 0x1b20  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
15:58:33.0386 0x1b20  storflt - ok
15:58:33.0389 0x1b20  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:58:33.0396 0x1b20  storvsc - ok
15:58:33.0398 0x1b20  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:58:33.0404 0x1b20  swenum - ok
15:58:33.0415 0x1b20  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
15:58:33.0447 0x1b20  swprv - ok
15:58:33.0451 0x1b20  [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
15:58:33.0459 0x1b20  Synth3dVsc - ok
15:58:33.0496 0x1b20  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
15:58:33.0547 0x1b20  SysMain - ok
15:58:33.0551 0x1b20  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:58:33.0565 0x1b20  TabletInputService - ok
15:58:33.0568 0x1b20  [ BCD6A90D6FD757CE9C29DDC850F7F231, 8E736A42B28BE11EC524C40DFA1C7A88BBE10CBC97320F128BCBE44051BBCC81 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
15:58:33.0576 0x1b20  tap0901 - ok
15:58:33.0585 0x1b20  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:58:33.0614 0x1b20  TapiSrv - ok
15:58:33.0617 0x1b20  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
15:58:33.0639 0x1b20  TBS - ok
15:58:33.0673 0x1b20  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:58:33.0714 0x1b20  Tcpip - ok
15:58:33.0749 0x1b20  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:58:33.0784 0x1b20  TCPIP6 - ok
15:58:33.0789 0x1b20  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:58:33.0797 0x1b20  tcpipreg - ok
15:58:33.0800 0x1b20  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:58:33.0808 0x1b20  TDPIPE - ok
15:58:33.0810 0x1b20  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:58:33.0818 0x1b20  TDTCP - ok
15:58:33.0822 0x1b20  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:58:33.0844 0x1b20  tdx - ok
15:58:33.0847 0x1b20  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:58:33.0853 0x1b20  TermDD - ok
15:58:33.0856 0x1b20  [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt        C:\Windows\system32\drivers\terminpt.sys
15:58:33.0864 0x1b20  terminpt - ok
15:58:33.0878 0x1b20  [ 4FC4C50985E5B840F4D72E57286887B8, 0BCBB4A938803AE3A3532B6D8FFC85594AA9AEF5D8F9792684841BEA8780AE9E ] TermService     C:\Windows\System32\termsrv.dll
15:58:33.0899 0x1b20  TermService - ok
15:58:33.0902 0x1b20  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
15:58:33.0913 0x1b20  Themes - ok
15:58:33.0917 0x1b20  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
15:58:33.0938 0x1b20  THREADORDER - ok
15:58:33.0942 0x1b20  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
15:58:33.0966 0x1b20  TrkWks - ok
15:58:33.0972 0x1b20  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:58:33.0994 0x1b20  TrustedInstaller - ok
15:58:33.0998 0x1b20  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:58:34.0006 0x1b20  tssecsrv - ok
15:58:34.0009 0x1b20  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:58:34.0017 0x1b20  TsUsbFlt - ok
15:58:34.0019 0x1b20  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
15:58:34.0027 0x1b20  TsUsbGD - ok
15:58:34.0031 0x1b20  [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
15:58:34.0041 0x1b20  tsusbhub - ok
15:58:34.0045 0x1b20  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:58:34.0068 0x1b20  tunnel - ok
15:58:34.0071 0x1b20  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:58:34.0079 0x1b20  uagp35 - ok
15:58:34.0087 0x1b20  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:58:34.0115 0x1b20  udfs - ok
15:58:34.0119 0x1b20  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:58:34.0128 0x1b20  UI0Detect - ok
15:58:34.0131 0x1b20  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:58:34.0138 0x1b20  uliagpkx - ok
15:58:34.0142 0x1b20  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:58:34.0151 0x1b20  umbus - ok
15:58:34.0153 0x1b20  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:58:34.0161 0x1b20  UmPass - ok
15:58:34.0167 0x1b20  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
15:58:34.0178 0x1b20  UmRdpService - ok
15:58:34.0188 0x1b20  [ 612AACDDFF7EF81375927C2D7E4E810C, 63B446E7DB4C31CBBA244F858335DAD386AE302E6B0EE8EABDE399439BC93D82 ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
15:58:34.0196 0x1b20  UPDATESRV - ok
15:58:34.0204 0x1b20  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
15:58:34.0232 0x1b20  upnphost - ok
15:58:34.0236 0x1b20  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:58:34.0241 0x1b20  USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
15:58:36.0840 0x1b20  Detect skipped due to KSN trusted
15:58:36.0841 0x1b20  USBAAPL64 - ok
15:58:36.0847 0x1b20  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
15:58:36.0857 0x1b20  usbaudio - ok
15:58:36.0861 0x1b20  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:58:36.0870 0x1b20  usbccgp - ok
15:58:36.0875 0x1b20  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:58:36.0885 0x1b20  usbcir - ok
15:58:36.0888 0x1b20  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
15:58:36.0897 0x1b20  usbehci - ok
15:58:36.0905 0x1b20  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:58:36.0919 0x1b20  usbhub - ok
15:58:36.0922 0x1b20  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:58:36.0930 0x1b20  usbohci - ok
15:58:36.0932 0x1b20  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:58:36.0943 0x1b20  usbprint - ok
15:58:36.0946 0x1b20  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
15:58:36.0956 0x1b20  usbscan - ok
15:58:36.0960 0x1b20  [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser64        C:\Windows\system32\DRIVERS\usbser.sys
15:58:36.0968 0x1b20  usbser64 - ok
15:58:36.0972 0x1b20  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:58:36.0982 0x1b20  USBSTOR - ok
15:58:36.0984 0x1b20  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:58:36.0992 0x1b20  usbuhci - ok
15:58:36.0995 0x1b20  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
15:58:37.0004 0x1b20  usb_rndisx - ok
15:58:37.0006 0x1b20  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
15:58:37.0028 0x1b20  UxSms - ok
15:58:37.0031 0x1b20  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
15:58:37.0039 0x1b20  VaultSvc - ok
15:58:37.0041 0x1b20  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:58:37.0048 0x1b20  vdrvroot - ok
15:58:37.0059 0x1b20  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
15:58:37.0092 0x1b20  vds - ok
15:58:37.0095 0x1b20  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:58:37.0105 0x1b20  vga - ok
15:58:37.0108 0x1b20  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:58:37.0129 0x1b20  VgaSave - ok
15:58:37.0131 0x1b20  VGPU - ok
15:58:37.0137 0x1b20  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:58:37.0148 0x1b20  vhdmp - ok
15:58:37.0151 0x1b20  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:58:37.0158 0x1b20  viaide - ok
15:58:37.0164 0x1b20  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:58:37.0174 0x1b20  vmbus - ok
15:58:37.0177 0x1b20  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
15:58:37.0186 0x1b20  VMBusHID - ok
15:58:37.0189 0x1b20  [ 93F279A2C172562050700A18FA84BE2E, EBFB6C530B4AC714963D31B5D424E7AF2B7D2CA1CF3E455294BE1E56CC8A3A12 ] vncmirror       C:\Windows\system32\DRIVERS\vncmirror.sys
15:58:37.0198 0x1b20  vncmirror - ok
15:58:37.0294 0x1b20  [ 74B5F5438D0051BE3A6D2FF91E245A64, 72C955CDED5E42CE14E384FAAC5E859AE5A65D7455EE267816C98E4F3E79F0C4 ] vncserver       C:\Program Files\RealVNC\VNC Server\vncserver.exe
15:58:37.0400 0x1b20  vncserver - ok
15:58:37.0408 0x1b20  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:58:37.0415 0x1b20  volmgr - ok
15:58:37.0424 0x1b20  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:58:37.0437 0x1b20  volmgrx - ok
15:58:37.0445 0x1b20  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:58:37.0459 0x1b20  volsnap - ok
15:58:37.0465 0x1b20  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:58:37.0475 0x1b20  vsmraid - ok
15:58:37.0507 0x1b20  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
15:58:37.0562 0x1b20  VSS - ok
15:58:37.0589 0x1b20  [ 8B00C96259A37457CDEB277A980801B5, CF1ACDBD2527265897882C7926EEF81938F37F088E96F413CC6D5D8EAB6525AE ] VSSERV          C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
15:58:37.0625 0x1b20  VSSERV - ok
15:58:37.0628 0x1b20  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:58:37.0638 0x1b20  vwifibus - ok
15:58:37.0647 0x1b20  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
15:58:37.0677 0x1b20  W32Time - ok
15:58:37.0680 0x1b20  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:58:37.0689 0x1b20  WacomPen - ok
15:58:37.0693 0x1b20  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:58:37.0715 0x1b20  WANARP - ok
15:58:37.0718 0x1b20  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:58:37.0739 0x1b20  Wanarpv6 - ok
15:58:37.0770 0x1b20  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
15:58:37.0812 0x1b20  wbengine - ok
15:58:37.0820 0x1b20  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:58:37.0835 0x1b20  WbioSrvc - ok
15:58:37.0844 0x1b20  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:58:37.0863 0x1b20  wcncsvc - ok
15:58:37.0866 0x1b20  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:58:37.0876 0x1b20  WcsPlugInService - ok
15:58:37.0878 0x1b20  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
15:58:37.0884 0x1b20  Wd - ok
15:58:37.0887 0x1b20  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
15:58:37.0894 0x1b20  WDC_SAM - ok
15:58:37.0913 0x1b20  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:58:37.0937 0x1b20  Wdf01000 - ok
15:58:37.0941 0x1b20  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:58:37.0956 0x1b20  WdiServiceHost - ok
15:58:37.0959 0x1b20  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:58:37.0971 0x1b20  WdiSystemHost - ok
15:58:37.0978 0x1b20  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
15:58:37.0991 0x1b20  WebClient - ok
15:58:37.0998 0x1b20  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:58:38.0026 0x1b20  Wecsvc - ok
15:58:38.0030 0x1b20  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:58:38.0054 0x1b20  wercplsupport - ok
15:58:38.0059 0x1b20  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:58:38.0083 0x1b20  WerSvc - ok
15:58:38.0086 0x1b20  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:58:38.0108 0x1b20  WfpLwf - ok
15:58:38.0111 0x1b20  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:58:38.0118 0x1b20  WIMMount - ok
15:58:38.0120 0x1b20  WinDefend - ok
15:58:38.0124 0x1b20  WinHttpAutoProxySvc - ok
15:58:38.0134 0x1b20  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:58:38.0163 0x1b20  Winmgmt - ok
15:58:38.0203 0x1b20  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
15:58:38.0268 0x1b20  WinRM - ok
15:58:38.0277 0x1b20  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:58:38.0287 0x1b20  WinUsb - ok
15:58:38.0307 0x1b20  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:58:38.0338 0x1b20  Wlansvc - ok
15:58:38.0387 0x1b20  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:58:38.0438 0x1b20  wlidsvc - ok
15:58:38.0443 0x1b20  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
15:58:38.0451 0x1b20  WmiAcpi - ok
15:58:38.0458 0x1b20  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:58:38.0470 0x1b20  wmiApSrv - ok
15:58:38.0473 0x1b20  WMPNetworkSvc - ok
15:58:38.0475 0x1b20  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:58:38.0484 0x1b20  WPCSvc - ok
15:58:38.0487 0x1b20  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:58:38.0499 0x1b20  WPDBusEnum - ok
15:58:38.0501 0x1b20  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:58:38.0522 0x1b20  ws2ifsl - ok
15:58:38.0526 0x1b20  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
15:58:38.0539 0x1b20  wscsvc - ok
15:58:38.0541 0x1b20  WSearch - ok
15:58:38.0584 0x1b20  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:58:38.0636 0x1b20  wuauserv - ok
15:58:38.0641 0x1b20  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:58:38.0651 0x1b20  WudfPf - ok
15:58:38.0656 0x1b20  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:58:38.0668 0x1b20  WUDFRd - ok
15:58:38.0671 0x1b20  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:58:38.0681 0x1b20  wudfsvc - ok
15:58:38.0688 0x1b20  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:58:38.0701 0x1b20  WwanSvc - ok
15:58:38.0705 0x1b20  ================ Scan global ===============================
15:58:38.0708 0x1b20  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
15:58:38.0714 0x1b20  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:58:38.0722 0x1b20  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:58:38.0728 0x1b20  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:58:38.0737 0x1b20  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
15:58:38.0743 0x1b20  [ Global ] - ok
15:58:38.0744 0x1b20  ================ Scan MBR ==================================
15:58:38.0745 0x1b20  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:58:38.0830 0x1b20  \Device\Harddisk0\DR0 - ok
15:58:38.0832 0x1b20  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
15:58:38.0872 0x1b20  \Device\Harddisk1\DR1 - ok
15:58:38.0887 0x1b20  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk2\DR2
15:58:38.0953 0x1b20  \Device\Harddisk2\DR2 - ok
15:58:38.0968 0x1b20  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk3\DR3
15:58:39.0191 0x1b20  \Device\Harddisk3\DR3 - ok
15:58:39.0197 0x1b20  [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk4\DR4
15:58:39.0256 0x1b20  \Device\Harddisk4\DR4 - ok
15:58:39.0257 0x1b20  ================ Scan VBR ==================================
15:58:39.0258 0x1b20  [ 408638CD6CA4FDBAFEE82AA92A3DA094 ] \Device\Harddisk0\DR0\Partition1
15:58:39.0259 0x1b20  \Device\Harddisk0\DR0\Partition1 - ok
15:58:39.0260 0x1b20  [ 7D27FE7B21B0C1F8D7113A5A5F0AB494 ] \Device\Harddisk0\DR0\Partition2
15:58:39.0261 0x1b20  \Device\Harddisk0\DR0\Partition2 - ok
15:58:39.0262 0x1b20  [ A9B56EEB6589B8572559DEFEA83308A0 ] \Device\Harddisk1\DR1\Partition1
15:58:39.0321 0x1b20  \Device\Harddisk1\DR1\Partition1 - ok
15:58:39.0323 0x1b20  [ 7BB95E10BEBFFD533447997E854978F0 ] \Device\Harddisk2\DR2\Partition1
15:58:39.0379 0x1b20  \Device\Harddisk2\DR2\Partition1 - ok
15:58:39.0381 0x1b20  [ 357D51D86C0281F0E16BE05777160C81 ] \Device\Harddisk3\DR3\Partition1
15:58:39.0382 0x1b20  \Device\Harddisk3\DR3\Partition1 - ok
15:58:39.0383 0x1b20  [ 08AEDA78D2DE92E72FB7AD0CBF99B593 ] \Device\Harddisk3\DR3\Partition2
15:58:39.0384 0x1b20  \Device\Harddisk3\DR3\Partition2 - ok
15:58:39.0385 0x1b20  [ 7B71900FD993EE915078DB84CC735399 ] \Device\Harddisk4\DR4\Partition1
15:58:39.0386 0x1b20  \Device\Harddisk4\DR4\Partition1 - ok
15:58:39.0387 0x1b20  ================ Scan generic autorun ======================
15:58:39.0627 0x1b20  [ 529E978921A6C519FC78233DF33F5069, 05B176155108BD4686047BF42A8490C15059702C654D90C7DB381A42F9C0160E ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:58:39.0872 0x1b20  RTHDVCPL - ok
15:58:39.0883 0x1b20  [ 08ACEF597969061EAB9C65A3B79D8D8F, 85D02DCF9B42A389426050F2CF27A10EBC7501C1664316D6270EFAE660DFF6E4 ] C:\Windows\system32\igfxtray.exe
15:58:39.0893 0x1b20  IgfxTray - ok
15:58:39.0902 0x1b20  [ FDE16C51F2083D45F723AABD302BC1CA, 94A63E6C1CD7F5F764959D76486E3D7031044716D8970284A51D55ADD4D517B4 ] C:\Windows\system32\hkcmd.exe
15:58:39.0916 0x1b20  HotKeysCmds - ok
15:58:39.0926 0x1b20  [ 8EAA8866198ECFA1A9BCC6E83FEB466E, B8BBDA3A6C2F57B7FC5DC09963093928449787C9CD20E571164E73DAE43BEF43 ] C:\Windows\system32\igfxpers.exe
15:58:39.0939 0x1b20  Persistence - ok
15:58:39.0959 0x1b20  [ 1775BDBEF28FD1B0F0AC43F10F483E08, F7E6C3177CFFABF605CC86F585CBF1DE541732DD92F92D1AB97B9BFFB3F2C5A6 ] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe
15:58:39.0992 0x1b20  Nvtmru - ok
15:58:40.0023 0x1b20  [ C3EED17CD37A13D57FDFE7CFAE50B630, 42B654C8D30B35CA3BB46254EA7D39AECB88FED0AFEFAE2F56C8FDDB4EB259A4 ] C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
15:58:40.0058 0x1b20  Bdagent - ok
15:58:40.0068 0x1b20  [ B2B879C0BA746CBB6A97212D8B5908B9, 6B38EB19064746EF42B6DABE754361377D6A460FD8E4C6B619EF4DD659F7357B ] C:\Program Files\SmartTechnology\Software\ProfilerU.exe
15:58:40.0082 0x1b20  ProfilerU - detected UnsignedFile.Multi.Generic ( 1 )
15:58:43.0799 0x1b20  Detect skipped due to KSN trusted
15:58:43.0799 0x1b20  ProfilerU - ok
15:58:43.0803 0x1b20  [ 3371D09E5A75889B1CFAF8C05CAFC3B8, 1CAA518BDFB69062355CD10611076E3DF9196DEB7C49EA11F0F2ADDA3DA1F79F ] C:\Program Files\SmartTechnology\Software\SaiMfd.exe
15:58:43.0810 0x1b20  SaiMfd - detected UnsignedFile.Multi.Generic ( 1 )
15:58:46.0224 0x1b20  Detect skipped due to KSN trusted
15:58:46.0224 0x1b20  SaiMfd - ok
15:58:46.0288 0x1b20  [ 63DA875725652FB8FDF6FD0D38F1A42E, 529A61EFF2D299E6458749D34FE392524E5FF5EF8613677C648A5602541D7524 ] C:\Program Files (x86)\HP\Digital Imaging\Fax\Fax Driver 0.6 Base\hppfaxprintersrv.exe
15:58:46.0358 0x1b20  HP LaserJet 200 color MFP M276 Series Fax - ok
15:58:46.0370 0x1b20  [ DC73E11DC27E7D9AEF884EBE816C4240, 638485C85F7183E2B3060B8FD3189EA47F873B84EE34CAB99526A3A1CC3EE62B ] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
15:58:46.0384 0x1b20  IAStorIcon - ok
15:58:46.0386 0x1b20  [ 17D9440D55500418C8FDB8EF1390C5AD, C4C57AE427FB89EFDFC1D111C300BB588E475BE90DD57084C03399557641F948 ] C:\Windows\RaidTool\xInsIDE.exe
15:58:46.0397 0x1b20  JMB36X IDE Setup - ok
15:58:46.0401 0x1b20  [ 09E60B4FE341A94A300830C008907099, 5F07868953FAA8FFA9E6477F6BAC52DEEDF3EA4A3F8AF5B4E15878D8240223AB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:58:46.0412 0x1b20  APSDaemon - ok
15:58:46.0419 0x1b20  [ 9C99AF6C0C4892A83066FFA04265F95C, 18E94B8322960C56A7D0BEDF77D026F0318904ECC230B6121E97E6993B999B4F ] C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
15:58:46.0432 0x1b20  StatusAlerts - ok
15:58:46.0436 0x1b20  [ 0EF0822810009D58118CCDFD098FA9F4, 9FAA263057898BCDBCB0A064C463F48D149474AA339A3C4C47626CC118750D2D ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
15:58:46.0448 0x1b20  iTunesHelper - ok
15:58:46.0451 0x1b20  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
15:58:46.0464 0x1b20  HP Software Update - ok
15:58:46.0487 0x1b20  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:58:46.0521 0x1b20  Sidebar - ok
15:58:46.0525 0x1b20  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:58:46.0537 0x1b20  mctadmin - ok
15:58:46.0561 0x1b20  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:58:46.0588 0x1b20  Sidebar - ok
15:58:46.0592 0x1b20  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:58:46.0603 0x1b20  mctadmin - ok
15:58:46.0616 0x1b20  [ 66F2D1049E931DEBE802E3F4734560D9, B202AD61E93DBC2F737E81FF3F3D8B2159F40C4983974DA5DC91762BD63EAB7D ] C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
15:58:46.0632 0x1b20  Bitdefender-Geldbörse-Agent - ok
15:58:46.0647 0x1b20  [ 4720D71C31B2C602AF5AB5C093C24709, 40D8F60C086585972B5344730A22190FEBC17543B1F4355442416CEE1130D3D2 ] C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
15:58:46.0673 0x1b20  Bitdefender-Geldbörse-Anwendungs-Agent - ok
15:58:46.0674 0x1b20  Waiting for KSN requests completion. In queue: 13
15:58:47.0674 0x1b20  Waiting for KSN requests completion. In queue: 13
15:58:48.0674 0x1b20  Waiting for KSN requests completion. In queue: 13
15:58:49.0684 0x1b20  AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender\wscfix.exe ( 17.28.0.1182 ), 0x41000 ( enabled : updated )
15:58:49.0685 0x1b20  FW detected via SS2: Bitdefender Firewall, C:\Program Files\Bitdefender\Bitdefender\wscfix.exe ( 17.28.0.1182 ), 0x41010 ( enabled )
15:58:52.0074 0x1b20  ============================================================
15:58:52.0074 0x1b20  Scan finished
15:58:52.0074 0x1b20  ============================================================
15:58:52.0077 0x142c  Detected object count: 0
15:58:52.0077 0x142c  Actual detected object count: 0
         

Alt 06.11.2014, 10:22   #7
schrauber
/// the machine
/// TB-Ausbilder
 

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Sieht alles gut aus.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 07.11.2014, 04:51   #8
cinos1
 
Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Dann bin ich ja schon mal beruhigt, vielen Dank!
Irgendein Tipp, wo die Portfreigabe sonst herkommen könnte oder wie ich das rauskriege?

Alt 07.11.2014, 19:36   #9
schrauber
/// the machine
/// TB-Ausbilder
 

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Nee, das wirste nie wieder rausfinden, vor allem weil Du sie ja entfernt hast
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 08.11.2014, 13:53   #10
cinos1
 
Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Ich hatte die Freigabe ja gelöscht, nach ein paar Tagen ist sie jedoch wieder aufgetaucht, worauf ich sie erneut gelöscht habe.
Es ist also prinzipiell möglich, dass irgendein harmloses Programm diesen Port nutzt?

MfG

Alt 09.11.2014, 07:44   #11
schrauber
/// the machine
/// TB-Ausbilder
 

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



klar, bei mir ist der Port auf dem Router offen, wegen meinem TV.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 09.11.2014, 14:03   #12
cinos1
 
Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Alles klar, dann wird es bei mir wahrscheinlich etwas ähnliches sein.

Vielen Dank nochmal!

Alt 10.11.2014, 10:11   #13
schrauber
/// the machine
/// TB-Ausbilder
 

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Standard

Portfreigabe 51966 über UPnP, kein Scan-Ergebnis



Gern Geschehen
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Portfreigabe 51966 über UPnP, kein Scan-Ergebnis
ad-aware, anleitung, antiviren-programm, befinden, bitdefender, computer, defender, ebenfalls, ergebnisse, free, fritzbox, interne, internet, komisch, laufen, laufwerke, logfiles, namens, port, scan, schei, security, seite, trojaner, zufällig, zusätzlich




Ähnliche Themen: Portfreigabe 51966 über UPnP, kein Scan-Ergebnis


  1. Win7: Verdacht auf Rootkit, kein Ergebnis über Virenscan
    Log-Analyse und Auswertung - 06.07.2015 (4)
  2. GVU-Trojaner Scan-Ergebnis mit Frst.exe
    Log-Analyse und Auswertung - 18.05.2013 (5)
  3. Millionen Geräte über UPnP angreifbar
    Nachrichten - 29.01.2013 (0)
  4. MyStart by IncrediBar.com / Ergebnis des Scan mit Malwarebytes Anti-Malware
    Log-Analyse und Auswertung - 28.12.2012 (21)
  5. Trojaner einfangen über Skype Text(!)-Nachricht (kein Link, kein Anhang) möglich?
    Plagegeister aller Art und deren Bekämpfung - 06.09.2012 (3)
  6. GKV2.07 - Scan-Ergebnis
    Plagegeister aller Art und deren Bekämpfung - 25.07.2012 (4)
  7. Verschlüsselungstrojaner - kein Ergebnis beim Scan
    Plagegeister aller Art und deren Bekämpfung - 21.06.2012 (9)
  8. Gema-Trojaner: Kapersky bringt kein Ergebnis - was tun, DRINGEND!
    Plagegeister aller Art und deren Bekämpfung - 20.03.2012 (1)
  9. Unbekannter Ordner aufgetauchst + Verdächtiges Scan Ergebnis
    Plagegeister aller Art und deren Bekämpfung - 25.10.2011 (22)
  10. Hijacker Log Gdata Antivirus 2010 macht kein Update kein Scan ! (Dringend)
    Log-Analyse und Auswertung - 27.07.2010 (1)
  11. Portfreigabe wlan problem: speedport w501v
    Netzwerk und Hardware - 09.05.2010 (4)
  12. e-scan-Ergebnis: schlecht od. schlecht?
    Log-Analyse und Auswertung - 01.07.2008 (6)
  13. hilfe! trojaner/virus! logfile kein ergebnis/ 'TR/Dldr.Small.DDT.2' und mehr :(
    Plagegeister aller Art und deren Bekämpfung - 17.04.2008 (2)
  14. Virus?Google bringt mir kein Ergebnis.
    Plagegeister aller Art und deren Bekämpfung - 16.12.2007 (2)
  15. Portfreigabe in ZoneAlarm für ProgDVB
    Antiviren-, Firewall- und andere Schutzprogramme - 17.09.2006 (1)
  16. HiJack This - Wer kann mir sagen wie ich das Ergebnis des Scan`s auswerten kann?
    Log-Analyse und Auswertung - 19.12.2005 (1)
  17. Portfreigabe in Firewall
    Antiviren-, Firewall- und andere Schutzprogramme - 21.12.2004 (25)

Zum Thema Portfreigabe 51966 über UPnP, kein Scan-Ergebnis - Hallo, ich war vor einigen Tagen auf der Seite meiner fritzbox und habe zufällig gesehen, dass mein PC den Port 51966 über UPnP für meinen PC freigegeben hat. Da mir - Portfreigabe 51966 über UPnP, kein Scan-Ergebnis...
Archiv
Du betrachtest: Portfreigabe 51966 über UPnP, kein Scan-Ergebnis auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.