Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Exe Datein lassen sich nicht ausführen Vista

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 10.06.2015, 12:28   #1
bator123
 
Exe Datein lassen sich nicht ausführen Vista - Standard

Exe Datein lassen sich nicht ausführen Vista



Hallo

Ich habe ein Problem am Lappi.

Ich habe Downloads gemacht ,aber kann diese nicht ausführen wenn sie im Downloadordner sind.
Auch nicht als Admin.Habe z.B. Free Youtube Converter geladen

Bin nicht sehr bewandert am PC.Sag es lieber gleich

Hoffe auf Eure Hilfe

Danke

Alt 10.06.2015, 12:30   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Exe Datein lassen sich nicht ausführen Vista - Standard

Exe Datein lassen sich nicht ausführen Vista



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 10.06.2015, 13:03   #3
bator123
 
Exe Datein lassen sich nicht ausführen Vista - Standard

Exe Datein lassen sich nicht ausführen Vista



Hallo und vielen Dank für die schnelle Antwort

Hier der Scan
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-06-2015
Ran by dirk (administrator) on DIRK-PC on 10-06-2015 13:56:49
Running from C:\Users\dirk\Downloads
Loaded Profiles: dirk (Available Profiles: dirk)
Platform: Microsoft® Windows Vista™ Home Premium  (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 7 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forum

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Wi-Fi\Launcher.exe
(Logitech Inc.) C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
() C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1006264 2015-04-28] (Microsoft Corporation)
HKLM\...\Run: [VodafoneMobileWiFi] => C:\Program Files\Vodafone\Vodafone Mobile Wi-Fi\Launcher.exe [142848 2013-06-25] (Vodafone)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKU\S-1-5-21-4092776144-375345959-2211221609-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125440 2006-11-02] (Microsoft Corporation)
HKU\S-1-5-21-4092776144-375345959-2211221609-1000\...\MountPoints2: {1d340f1c-ee8c-11e4-8c0e-001060d01e80} - H:\SetupWi-Fi.exe
HKU\S-1-5-21-4092776144-375345959-2211221609-1000\...\MountPoints2: {1d340f6a-ee8c-11e4-8c0e-001060d01e80} - H:\SetupWi-Fi.exe
HKU\S-1-5-21-4092776144-375345959-2211221609-1000\...\MountPoints2: {5c7a1b23-ecd9-11e4-b86d-001060d01e80} - G:\setupSNK.exe
AppInit_DLLs: C:\ProgramData\SecurityUtility\SecurityUtility32.dll => C:\ProgramData\SecurityUtility\SecurityUtility32.dll File not found

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\dirk\AppData\Roaming\Mozilla\Firefox\Profiles\srewjrak.default-1430518021713
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-20] ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Extension: Browser-Security - C:\Users\dirk\AppData\Roaming\Mozilla\Firefox\Profiles\srewjrak.default-1430518021713\Extensions\firefox@browser-security.de.xpi [2015-05-21]

Chrome: 
=======
CHR Profile: C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-30]
CHR Extension: (Google Docs) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-30]
CHR Extension: (Google Drive) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-30]
CHR Extension: (YouTube) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-30]
CHR Extension: (Google Search) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-30]
CHR Extension: (Google Sheets) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-30]
CHR Extension: (Bookmark Manager) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-30]
CHR Extension: (Google Wallet) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-30]
CHR Extension: (Gmail) - C:\Users\dirk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-30]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [265912 2015-04-28] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [97408 2013-01-25] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [70272 2013-02-26] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [27776 2013-01-23] (Huawei Technologies Co., Ltd.)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-10 13:56 - 2015-06-10 13:57 - 00007525 _____ C:\Users\dirk\Downloads\FRST.txt
2015-06-10 13:56 - 2015-06-10 13:56 - 00000000 ____D C:\FRST
2015-06-10 13:55 - 2015-06-10 13:55 - 01147904 _____ (Farbar) C:\Users\dirk\Downloads\FRST.exe
2015-06-10 12:33 - 2015-06-10 12:44 - 00000000 ____D C:\AdwCleaner
2015-06-10 12:33 - 2015-06-10 12:33 - 02231296 _____ C:\Users\dirk\Downloads\AdwCleaner_4.206.exe
2015-06-10 08:51 - 2015-06-10 12:44 - 00027422 _____ C:\Windows\WindowsUpdate.log
2015-06-10 08:51 - 2015-06-10 08:51 - 00000740 _____ C:\Windows\system32\cc_20150610_085138.reg
2015-06-10 08:38 - 2015-06-10 08:38 - 00986624 _____ C:\Users\dirk\Downloads\MicrosoftFixit50850.msi
2015-06-10 07:58 - 2015-06-10 07:58 - 00322096 _____ ( ) C:\Users\dirk\Downloads\FreeStudio_CB-DL-Manager.exe
2015-06-10 07:49 - 2015-06-10 07:50 - 36127464 _____ (DVDVideoSoft Ltd. ) C:\Users\dirk\Downloads\FreeYouTubeToMP3Converter_3.12.59.525.exe
2015-06-10 07:46 - 2014-06-06 13:59 - 02718376 _____ (DVDVideoSoft Ltd.) C:\Users\dirk\Desktop\FreeYouTubeToMP3Converter.exe
2015-06-04 07:39 - 2015-06-04 07:39 - 00000000 ____D C:\Program Files\MSXML 4.0
2015-06-02 14:59 - 2012-05-23 21:15 - 03029344 _____ (Piriform Ltd) C:\Users\dirk\Desktop\CCleaner.exe
2015-06-02 14:57 - 2015-06-02 14:57 - 00006494 _____ C:\Windows\system32\cc_20150602_145746.reg
2015-06-02 14:22 - 2015-06-02 14:22 - 00000000 ____D C:\Users\dirk\Documents\WebCam Media
2015-06-02 14:21 - 2015-06-02 14:21 - 00000000 ____D C:\Users\dirk\AppData\Local\ArcSoft
2015-06-02 14:20 - 2015-06-02 14:22 - 00000000 ____D C:\ProgramData\ArcSoft
2015-06-02 14:20 - 2015-06-02 14:20 - 00001847 _____ C:\Users\Public\Desktop\WebCam Companion 4.lnk
2015-06-02 14:20 - 2015-06-02 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft WebCam Companion 4
2015-06-02 14:20 - 2015-06-02 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
2015-06-02 14:19 - 2015-06-02 14:19 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-06-02 14:19 - 2015-06-02 14:19 - 00000000 ____D C:\Program Files\Common Files\ArcSoft
2015-06-02 14:19 - 2015-06-02 14:19 - 00000000 ____D C:\Program Files\ArcSoft
2015-06-02 14:18 - 2015-06-02 14:22 - 00000000 ____D C:\Users\dirk\AppData\Roaming\ArcSoft
2015-06-02 14:18 - 2015-06-02 14:18 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2015-06-02 14:15 - 2015-06-02 14:16 - 78849016 _____ (ArcSoft ) C:\Users\dirk\Downloads\webcamcompanion4_4.0.20.365.exe
2015-06-02 14:10 - 2015-06-02 14:10 - 00669328 _____ C:\Users\dirk\Downloads\Setup.exe
2015-06-02 14:05 - 2015-06-02 14:05 - 00000000 ____D C:\Users\dirk\Documents\MAGIX
2015-06-02 14:05 - 2015-06-02 14:05 - 00000000 ____D C:\Users\dirk\AppData\Roaming\MAGIX
2015-06-02 14:04 - 2015-06-02 14:04 - 00000878 _____ C:\Users\Public\Desktop\MAGIX Video easy SE.lnk
2015-06-02 14:03 - 2015-06-02 14:05 - 00000000 ____D C:\ProgramData\MAGIX
2015-06-02 14:03 - 2015-06-02 14:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2015-06-02 14:03 - 2015-06-02 14:03 - 00000000 ____D C:\Program Files\MAGIX
2015-06-01 13:48 - 2015-06-03 13:32 - 00000000 ____D C:\Users\dirk\AppData\Roaming\vlc
2015-06-01 13:47 - 2015-06-01 13:47 - 00000865 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-06-01 13:47 - 2015-06-01 13:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-06-01 13:47 - 2015-06-01 13:47 - 00000000 ____D C:\Program Files\VideoLAN
2015-05-31 15:19 - 2009-07-14 15:02 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2015-05-31 15:19 - 2009-07-14 11:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.tlb
2015-05-31 15:19 - 2009-07-14 11:54 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\amcompat.tlb
2015-05-21 09:26 - 2015-06-03 13:23 - 00000000 ____D C:\Users\dirk\AppData\Roaming\Anvsoft
2015-05-21 09:26 - 2015-05-21 09:26 - 00000998 _____ C:\Users\dirk\Desktop\Any Video Converter.lnk
2015-05-21 09:26 - 2015-05-21 09:26 - 00000000 ____D C:\Users\dirk\Documents\Any Video Converter
2015-05-21 09:26 - 2015-05-21 09:26 - 00000000 ____D C:\Users\dirk\AppData\Roaming\dlg
2015-05-21 09:26 - 2015-05-21 09:26 - 00000000 ____D C:\Program Files\Anvsoft
2015-05-21 09:22 - 2015-06-10 12:40 - 00000364 _____ C:\Windows\Tasks\XPFUWRYHPJ1.job
2015-05-21 09:22 - 2015-05-21 09:23 - 37913248 _____ C:\Users\dirk\Downloads\avc-free.exe
2015-05-21 09:22 - 2015-05-21 09:22 - 00000000 ____D C:\Users\dirk\AppData\Roaming\Browser-Security
2015-05-21 09:22 - 2015-05-21 09:22 - 00000000 ____D C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8
2015-05-21 09:20 - 2015-05-21 09:20 - 00398776 _____ C:\Users\dirk\Downloads\avc-free_CB-DL-Manager.exe
2015-05-20 22:00 - 2015-05-20 22:00 - 01196832 _____ C:\Users\dirk\Downloads\webcam 7 Pro - CHIP-Installer.exe
2015-05-20 21:15 - 2015-05-20 21:15 - 00000000 ____D C:\Users\dirk\AppData\Local\Logitech® Webcam-Software
2015-05-20 21:09 - 2015-05-20 21:09 - 00000000 ____D C:\ProgramData\LogiShrd
2015-05-20 21:08 - 2015-05-20 21:08 - 00000000 ____D C:\Users\dirk\AppData\Roaming\Leadertech
2015-05-20 21:05 - 2015-05-20 21:08 - 00000000 ____D C:\Program Files\Logitech
2015-05-20 21:05 - 2015-05-20 21:05 - 00001479 _____ C:\Users\Public\Desktop\Logitech Webcam Software  .lnk
2015-05-20 21:05 - 2015-05-20 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-05-20 21:02 - 2015-05-20 21:03 - 74637872 _____ (Logitech, Inc.) C:\Users\dirk\Downloads\lws251.exe
2015-05-16 10:48 - 2015-05-16 10:49 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-05-15 14:07 - 2015-06-03 12:49 - 00000000 ____D C:\Users\dirk\Desktop\Neuer Ordner

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-10 13:43 - 2015-04-27 17:35 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-10 13:40 - 2006-11-02 14:47 - 00003552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-10 13:40 - 2006-11-02 14:47 - 00003552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-10 13:19 - 2015-04-28 09:55 - 00010752 _____ C:\Users\dirk\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-10 13:16 - 2015-04-30 08:29 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-10 13:07 - 2013-07-24 07:34 - 00000000 ____D C:\Kinderfilme
2015-06-10 12:47 - 2006-11-02 12:33 - 01461736 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-10 12:42 - 2015-04-29 18:07 - 00000511 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2015-06-10 12:40 - 2015-04-30 08:29 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-10 12:40 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-10 12:39 - 2015-04-27 13:51 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-06-10 12:39 - 2006-11-02 15:01 - 00029430 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-06-10 08:24 - 2015-04-27 13:59 - 00049168 _____ C:\Users\dirk\AppData\Local\GDIPFONTCACHEV1.DAT
2015-06-10 08:24 - 2006-11-02 14:47 - 00228296 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-10 07:19 - 2015-04-30 08:30 - 00001969 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-08 17:04 - 2015-05-04 13:30 - 00000000 ____D C:\Users\dirk\AppData\Roaming\Skype
2015-06-03 13:34 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-06-02 14:56 - 2015-04-27 14:43 - 00000000 ____D C:\Windows\PANTHER
2015-06-02 14:10 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Resources
2015-06-01 08:23 - 2015-04-28 10:25 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2015-05-26 09:44 - 2015-04-28 10:11 - 00014047 _____ C:\Windows\system32\lvcoinst.log
2015-05-26 09:43 - 2015-04-28 10:11 - 00000000 ____D C:\Program Files\Common Files\logishrd
2015-05-20 21:07 - 2015-04-27 13:59 - 00000000 ____D C:\Users\dirk
2015-05-20 08:30 - 2015-04-27 17:34 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-05-20 08:30 - 2015-04-27 17:34 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-05-20 08:30 - 2015-04-27 17:34 - 00000000 ____D C:\Users\dirk\AppData\Local\Adobe
2015-05-18 11:58 - 2015-04-27 14:11 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-05-14 08:42 - 2015-04-28 18:37 - 00000000 ____D C:\Windows\system32\MRT
2015-05-14 08:37 - 2006-11-02 12:24 - 137310008 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe

==================== Files in the root of some directories =======

2015-04-27 13:59 - 2015-04-27 13:59 - 0000680 _____ () C:\Users\dirk\AppData\Local\d3d9caps.dat
2015-04-28 09:55 - 2015-06-10 13:19 - 0010752 _____ () C:\Users\dirk\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-10 12:47

==================== End of log ============================
         
--- --- ---


FRST Additions Logfile:
[CODE]Additional
FRST Logfile:
Code:
ATTFilter
scan result of Farbar Recovery Scan Tool (x86) Version: 08-06-2015
Ran by dirk at 2015-06-10 13:57:32
Running from C:\Users\dirk\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4092776144-375345959-2211221609-500 - Administrator - Disabled)
dirk (S-1-5-21-4092776144-375345959-2211221609-1000 - Administrator - Enabled) => C:\Users\dirk
Gast (S-1-5-21-4092776144-375345959-2211221609-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Any Video Converter 5.8.0 (HKLM\...\Any Video Converter) (Version: 5.8.0 - Anvsoft)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft WebCam Companion 4 (HKLM\...\{12450631-3289-40F7-AEC3-F6DCB6E1BDCF}) (Version: 4.0.20.365 - ArcSoft)
Browser-Security (HKLM\...\Browser-Security) (Version: 1.0.5.0 - )
CameraHelperMsi (Version: 13.51.815.0 - Logitech) Hidden
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version:  - Intel Corporation)
Logitech Webcam-Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
MAGIX Video easy SE (HKLM\...\MAGIX_MSI_Video_easy_SE) (Version: 1.0.4.6 - MAGIX AG)
MAGIX Video easy SE (Version: 1.0.4.6 - MAGIX AG) Hidden
Mozilla Firefox 38.0.1 (x86 de) (HKLM\...\Mozilla Firefox 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 37.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Skype™ 7.4 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Vodafone Wi-Fi (HKLM\...\{F08DBC61-FBFC-4D26-997F-74B42C51DC56}) (Version: 2.0.4.45685 - Vodafone)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

27-06-2014 14:02:21 Windows Update
27-06-2014 14:20:52 Entfernt congstar Internet-Manager
27-06-2014 14:38:28 Installiert congstar Internet-Manager
27-07-2014 12:47:18 Windows Update
27-04-2015 12:31:17 Removed Adobe Reader X (10.1.9) - Deutsch.
27-04-2015 12:35:21 Removed Java 7 Update 25
02-06-2015 14:18:43 Installiert WebCam Companion
04-06-2015 07:38:34 Windows Update
06-06-2015 08:21:51 Windows Update
07-06-2015 20:52:33 Geplanter Prüfpunkt
10-06-2015 07:27:02 Windows Update
10-06-2015 08:06:30 OTL Restore Point - 10.06.2015 08:06:30
10-06-2015 08:38:57 Installed Microsoft Fix it 50850

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {56151F5E-8F92-4E4A-83C1-F0AB0EB351AB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {633F3568-6E17-4DDF-B411-EBD4177AA141} - System32\Tasks\XPFUWRYHPJ1 => C:\ProgramData\SecurityUtility\SecurityUtility.exe <==== ATTENTION
Task: {9C94EFD5-83AD-4C79-94E1-6288E14678B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-20] (Adobe Systems Incorporated)
Task: {A41FF266-C3B0-457B-9D7B-7E092CCCF355} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-04-30] (Google Inc.)
Task: {B4843153-BD6B-4861-8B96-CA914917D5C0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-04-30] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\XPFUWRYHPJ1.job => C:\ProgramData\SecurityUtility\SecurityUtility.exe <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2012-09-13 00:38 - 2012-09-13 00:38 - 02144104 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 07955304 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00341352 _____ () C:\Program Files\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00028008 _____ () C:\Program Files\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00127336 _____ () C:\Program Files\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00264040 _____ () C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2012-09-13 00:39 - 2012-09-13 00:39 - 00336232 _____ () C:\Program Files\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-4092776144-375345959-2211221609-1000\Software\Classes\.exe: exefile => "%1" %* <===== ATTENTION!
HKU\S-1-5-21-4092776144-375345959-2211221609-1000\Software\Classes\exefile: "%1" %* <===== ATTENTION!

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4092776144-375345959-2211221609-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\Wallpaper\img24.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: BingSvc => C:\Users\dirk\AppData\Local\Microsoft\BingSvc\BingSvc.exe
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [{91ABA91F-4FFE-4CA4-AB71-BD4A3DDAA083}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{4E49B11A-DC64-4E9F-AA50-3017F606DC32}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{6BB5E3A4-069F-4073-A993-B1318AC9D126}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{BD4606CB-1627-432F-B02C-01B4663C3D4C}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{986DCA1F-2A9D-4801-A9D5-3212480795CC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Realtek RTL8101-Familie-PCI-E-Fast-Ethernet-NIC (NDIS 6.0)
Description: Realtek RTL8101-Familie-PCI-E-Fast-Ethernet-NIC (NDIS 6.0)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8169
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/03/2015 01:23:34 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (06/03/2015 00:55:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm QuickTimePlayer.exe, Version 7.76.80.95 arbeitet nicht mehr mit Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem zu suchen.
Prozess-ID: 24e8
Anfangszeit: 01d09deb8b7298f3
Zeitpunkt der Beendigung: 53

Error: (06/02/2015 02:56:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung plugin-container.exe, Version 38.0.1.5611, Zeitstempel 0x55541a90, fehlerhaftes Modul mozalloc.dll, Version 38.0.1.5611, Zeitstempel 0x55540a1e, Ausnahmecode 0x80000003, Fehleroffset 0x00001aa1,
Prozess-ID 0x978, Anwendungsstartzeit plugin-container.exe0.

Error: (06/02/2015 02:32:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Setup.exe, Version 4.0.0.1 arbeitet nicht mehr mit Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem zu suchen.
Prozess-ID: 22c4
Anfangszeit: 01d09d2fbdd6d060
Zeitpunkt der Beendigung: 7

Error: (06/02/2015 02:18:38 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.


Vorgang:
   Generatordaten werden gesammelt

Kontext:
   Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
   Generatorname: System Writer
   Generatorinstanz-ID: {6c2fa71e-2cd7-4813-8d48-7ff791d58a64}

Error: (06/01/2015 10:42:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung plugin-container.exe, Version 38.0.1.5611, Zeitstempel 0x55541a90, fehlerhaftes Modul mozalloc.dll, Version 38.0.1.5611, Zeitstempel 0x55540a1e, Ausnahmecode 0x80000003, Fehleroffset 0x00001aa1,
Prozess-ID 0x9a8, Anwendungsstartzeit plugin-container.exe0.

Error: (05/30/2015 03:59:07 PM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\vista_gdr\com\complus\src\events\tier2\security.cpp78800706e5

Error: (05/21/2015 09:39:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung FlashPlayerPlugin_17_0_0_188.exe, Version 17.0.0.188, Zeitstempel 0x553ba7a2, fehlerhaftes Modul ShimEng.dll_unloaded, Version 0.0.0.0, Zeitstempel 0x4549bdb7, Ausnahmecode 0xc0000005, Fehleroffset 0x71764618,
Prozess-ID 0x894, Anwendungsstartzeit FlashPlayerPlugin_17_0_0_188.exe0.

Error: (05/21/2015 09:39:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung FlashPlayerPlugin_17_0_0_188.exe, Version 17.0.0.188, Zeitstempel 0x553ba7a2, fehlerhaftes Modul ShimEng.dll_unloaded, Version 0.0.0.0, Zeitstempel 0x4549bdb7, Ausnahmecode 0xc0000005, Fehleroffset 0x71764618,
Prozess-ID 0x1658, Anwendungsstartzeit FlashPlayerPlugin_17_0_0_188.exe0.

Error: (05/21/2015 09:36:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung FlashPlayerPlugin_17_0_0_188.exe, Version 17.0.0.188, Zeitstempel 0x553ba7a2, fehlerhaftes Modul ShimEng.dll_unloaded, Version 0.0.0.0, Zeitstempel 0x4549bdb7, Ausnahmecode 0xc0000005, Fehleroffset 0x71764618,
Prozess-ID 0x154c, Anwendungsstartzeit FlashPlayerPlugin_17_0_0_188.exe0.


System errors:
=============
Error: (06/10/2015 00:44:05 PM) (Source: ipnathlp) (EventID: 30005) (User: )
Description: Ein DHCP-Server mit der IP-Adresse 192.168.0.1 wurde von der DHCP-Zuweisung im selben Netzwerk gefunden, wie die Schnittstelle mit der IP-Adresse 192.168.0.100. Die Zuweisung wurde auf der Schnittstelle automatisch deaktiviert, um DHCP-Clientkonflikte zu vermeiden.

Error: (06/10/2015 00:42:34 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0 Bytes Speicher konnten durch den DNS-Proxy-Agenten nicht zugeordnet werden. Möglicherweise ist nicht genügend Speicher vorhanden oder ein interner Fehler ist im Speicher-Manager aufgetreten.

Error: (06/10/2015 00:41:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058

Error: (06/10/2015 00:41:13 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: ICS_IPV6 konnte den IPv6-Stapel nicht konfigurieren.

Error: (06/10/2015 11:42:19 AM) (Source: ipnathlp) (EventID: 30005) (User: )
Description: Ein DHCP-Server mit der IP-Adresse 192.168.0.1 wurde von der DHCP-Zuweisung im selben Netzwerk gefunden, wie die Schnittstelle mit der IP-Adresse 192.168.0.100. Die Zuweisung wurde auf der Schnittstelle automatisch deaktiviert, um DHCP-Clientkonflikte zu vermeiden.

Error: (06/10/2015 08:52:23 AM) (Source: ipnathlp) (EventID: 30005) (User: )
Description: Ein DHCP-Server mit der IP-Adresse 192.168.0.1 wurde von der DHCP-Zuweisung im selben Netzwerk gefunden, wie die Schnittstelle mit der IP-Adresse 192.168.0.100. Die Zuweisung wurde auf der Schnittstelle automatisch deaktiviert, um DHCP-Clientkonflikte zu vermeiden.

Error: (06/10/2015 08:49:34 AM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: ICS_IPV6 konnte den IPv6-Stapel nicht konfigurieren.

Error: (06/10/2015 08:27:54 AM) (Source: ipnathlp) (EventID: 30005) (User: )
Description: Ein DHCP-Server mit der IP-Adresse 192.168.0.1 wurde von der DHCP-Zuweisung im selben Netzwerk gefunden, wie die Schnittstelle mit der IP-Adresse 192.168.0.100. Die Zuweisung wurde auf der Schnittstelle automatisch deaktiviert, um DHCP-Clientkonflikte zu vermeiden.

Error: (06/10/2015 08:25:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058

Error: (06/10/2015 08:25:04 AM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: ICS_IPV6 konnte den IPv6-Stapel nicht konfigurieren.


Microsoft Office:
=========================
Error: (06/03/2015 01:23:34 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Users\dirk\AppData\Roaming\Anvsoft\Common\youtube-dl.exe

Error: (06/03/2015 00:55:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: QuickTimePlayer.exe7.76.80.9524e801d09deb8b7298f353

Error: (06/02/2015 02:56:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.1.561155541a90mozalloc.dll38.0.1.561155540a1e8000000300001aa197801d09cf80d318902

Error: (06/02/2015 02:32:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Setup.exe4.0.0.122c401d09d2fbdd6d0607

Error: (06/02/2015 02:18:38 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005

Vorgang:
   Generatordaten werden gesammelt

Kontext:
   Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
   Generatorname: System Writer
   Generatorinstanz-ID: {6c2fa71e-2cd7-4813-8d48-7ff791d58a64}

Error: (06/01/2015 10:42:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.1.561155541a90mozalloc.dll38.0.1.561155540a1e8000000300001aa19a801d09c33a6a270f5

Error: (05/30/2015 03:59:07 PM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\vista_gdr\com\complus\src\events\tier2\security.cpp78800706e5

Error: (05/21/2015 09:39:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: FlashPlayerPlugin_17_0_0_188.exe17.0.0.188553ba7a2ShimEng.dll_unloaded0.0.0.04549bdb7c00000057176461889401d09399405b92ff

Error: (05/21/2015 09:39:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: FlashPlayerPlugin_17_0_0_188.exe17.0.0.188553ba7a2ShimEng.dll_unloaded0.0.0.04549bdb7c000000571764618165801d0939935caa60f

Error: (05/21/2015 09:36:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: FlashPlayerPlugin_17_0_0_188.exe17.0.0.188553ba7a2ShimEng.dll_unloaded0.0.0.04549bdb7c000000571764618154c01d09398e0bd93cf


CodeIntegrity Errors:
===================================
  Date: 2015-06-10 08:48:47.492
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-10 08:24:25.429
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-10 07:16:55.168
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-09 13:05:24.806
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-09 06:16:35.102
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-08 17:06:54.172
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-08 13:30:58.858
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-08 08:24:04.163
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-07 08:33:52.860
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-06-06 07:55:21.631
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\ProgramData\SecurityUtility\SecurityUtility32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Duo CPU T5250 @ 1.50GHz
Percentage of memory in use: 36%
Total physical RAM: 2037.81 MB
Available physical RAM: 1296.58 MB
Total Pagefile: 4293.67 MB
Available Pagefile: 3421.16 MB
Total Virtual: 2047.88 MB
Available Virtual: 1930.89 MB

==================== Drives ================================

Drive c: (Volume) (Fixed) (Total:53.71 GB) (Free:13.04 GB) NTFS
Drive d: () (Fixed) (Total:48.39 GB) (Free:5.09 GB) NTFS
Drive e: (Daten) (Fixed) (Total:43.94 GB) (Free:43.73 GB) NTFS
Drive g: () (Removable) (Total:7.41 GB) (Free:7.11 GB) FAT32
Drive h: (externe Festplatte) (Fixed) (Total:465.76 GB) (Free:330.32 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149.1 GB) (Disk ID: CD79CD79)
Partition 1: (Active) - (Size=3 GB) - (Type=27)
Partition 2: (Not Active) - (Size=48.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=53.7 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=43.9 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 7.4 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: 8217B7B4)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of log ============================
         
--- --- ---

--- --- ---
__________________

Alt 11.06.2015, 14:42   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Exe Datein lassen sich nicht ausführen Vista - Standard

Exe Datein lassen sich nicht ausführen Vista



hi,

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 11.06.2015, 15:20   #5
bator123
 
Exe Datein lassen sich nicht ausführen Vista - Standard

Exe Datein lassen sich nicht ausführen Vista



Malwarebytes Anti-Rootkit BETA 1.09.1.1004
Malwarebytes | Free Anti-Malware & Internet Security Software

Database version:
main: v2015.06.11.02
rootkit: v2015.06.02.01

Windows Vista x86 NTFS
Internet Explorer 7.0.6000.16386
dirk :: DIRK-PC [administrator]

11.06.2015 15:51:49
mbar-log-2015-06-11 (15-51-49).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 296476
Time elapsed: 17 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

16:14:16.0474 0x2538 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
16:14:23.0561 0x2538 ============================================================
16:14:23.0561 0x2538 Current date / time: 2015/06/11 16:14:23.0561
16:14:23.0561 0x2538 SystemInfo:
16:14:23.0561 0x2538
16:14:23.0561 0x2538 OS Version: 6.0.6000 ServicePack: 0.0
16:14:23.0561 0x2538 Product type: Workstation
16:14:23.0561 0x2538 ComputerName: DIRK-PC
16:14:23.0562 0x2538 UserName: dirk
16:14:23.0562 0x2538 Windows directory: C:\Windows
16:14:23.0562 0x2538 System windows directory: C:\Windows
16:14:23.0562 0x2538 Processor architecture: Intel x86
16:14:23.0562 0x2538 Number of processors: 2
16:14:23.0562 0x2538 Page size: 0x1000
16:14:23.0562 0x2538 Boot type: Normal boot
16:14:23.0562 0x2538 ============================================================
16:14:26.0507 0x2538 KLMD registered as C:\Windows\system32\drivers\43102924.sys
16:14:26.0678 0x2538 System UUID: {51D24FD2-C6A0-1BBE-DBCF-20250BE84307}
16:14:27.0514 0x2538 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:14:27.0536 0x2538 Drive \Device\Harddisk1\DR1 - Size: 0x1DB000000 ( 7.42 Gb ), SectorSize: 0x200, Cylinders: 0x3C8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:14:27.0537 0x2538 Drive \Device\Harddisk2\DR2 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:14:27.0538 0x2538 ============================================================
16:14:27.0538 0x2538 \Device\Harddisk0\DR0:
16:14:27.0538 0x2538 MBR partitions:
16:14:27.0538 0x2538 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x600800, BlocksNum 0x60C8800
16:14:27.0538 0x2538 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x66C9000, BlocksNum 0x6B6BFF8
16:14:27.0546 0x2538 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xD235800, BlocksNum 0x57E3800
16:14:27.0546 0x2538 \Device\Harddisk1\DR1:
16:14:27.0547 0x2538 MBR partitions:
16:14:27.0547 0x2538 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x30, BlocksNum 0xED7FD0
16:14:27.0547 0x2538 \Device\Harddisk2\DR2:
16:14:27.0547 0x2538 MBR partitions:
16:14:27.0548 0x2538 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
16:14:27.0548 0x2538 ============================================================
16:14:27.0606 0x2538 C: <-> \Device\Harddisk0\DR0\Partition2
16:14:27.0727 0x2538 D: <-> \Device\Harddisk0\DR0\Partition1
16:14:27.0797 0x2538 E: <-> \Device\Harddisk0\DR0\Partition3
16:14:27.0851 0x2538 H: <-> \Device\Harddisk2\DR2\Partition1
16:14:27.0851 0x2538 ============================================================
16:14:27.0851 0x2538 Initialize success
16:14:27.0851 0x2538 ============================================================
16:15:11.0568 0x135c ============================================================
16:15:11.0568 0x135c Scan started
16:15:11.0568 0x135c Mode: Manual;
16:15:11.0568 0x135c ============================================================
16:15:11.0568 0x135c KSN ping started
16:15:11.0849 0x135c KSN ping finished: true
16:15:13.0691 0x135c ================ Scan system memory ========================
16:15:13.0691 0x135c System memory - ok
16:15:13.0692 0x135c ================ Scan services =============================
16:15:13.0826 0x135c [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
16:15:13.0832 0x135c ACDaemon - ok
16:15:14.0022 0x135c [ 84FC6DF81212D16BE5C4F441682FECCC, 73F3BE94A98225A9F276C1A6C8BCA05571FF3BB012E7FF877F6C4AB11F62CBA0 ] ACPI C:\Windows\system32\drivers\acpi.sys
16:15:14.0030 0x135c ACPI - ok
16:15:14.0115 0x135c [ 00CC35F515079F5F94FABC3AC5C7D363, 7CE8B1715009602059DEDD6CBCA9C18EF079EDA344E7809813D6C0A395622B82 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:15:14.0128 0x135c AdobeFlashPlayerUpdateSvc - ok
16:15:14.0198 0x135c [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:15:14.0211 0x135c adp94xx - ok
16:15:14.0253 0x135c [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:15:14.0262 0x135c adpahci - ok
16:15:14.0292 0x135c [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
16:15:14.0299 0x135c adpu160m - ok
16:15:14.0331 0x135c [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:15:14.0335 0x135c adpu320 - ok
16:15:14.0377 0x135c [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:15:14.0379 0x135c AeLookupSvc - ok
16:15:14.0413 0x135c [ 5D24CAF8EFD924A875698FF28384DB8B, FA3DE58D8F4180E9B9FE1DED4B1BE09245F401899E614DBD6A3867CEF6E34977 ] AFD C:\Windows\system32\drivers\afd.sys
16:15:14.0422 0x135c AFD - ok
16:15:14.0470 0x135c [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:15:14.0472 0x135c agp440 - ok
16:15:14.0516 0x135c [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
16:15:14.0519 0x135c aic78xx - ok
16:15:14.0541 0x135c [ E69FB0E3112C40FDC0EF7D21A52DC951, 6FB299330EDEF77DC91FC279D90D8ADEA138EC98342116121F5879B50070963D ] ALG C:\Windows\System32\alg.exe
16:15:14.0545 0x135c ALG - ok
16:15:14.0574 0x135c [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys
16:15:14.0575 0x135c aliide - ok
16:15:14.0584 0x135c [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
16:15:14.0586 0x135c amdagp - ok
16:15:14.0598 0x135c [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys
16:15:14.0599 0x135c amdide - ok
16:15:14.0620 0x135c [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
16:15:14.0622 0x135c AmdK7 - ok
16:15:14.0631 0x135c [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:15:14.0633 0x135c AmdK8 - ok
16:15:14.0674 0x135c [ CFA455816879F06F1C4E5BBF9E8AEF7D, E10781DEE5A9CDD2D79E1696577B24095258DC261E0D303177B5D7E719F58B20 ] Appinfo C:\Windows\System32\appinfo.dll
16:15:14.0677 0x135c Appinfo - ok
16:15:14.0703 0x135c [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys
16:15:14.0706 0x135c arc - ok
16:15:14.0740 0x135c [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:15:14.0743 0x135c arcsas - ok
16:15:14.0774 0x135c [ E86CF7CE67D5DE898F27EF884DC357D8, 24C86D0A6340B618E97C91066A8E639EA672112A571C4B36B0BC1EB717DDA782 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:15:14.0775 0x135c AsyncMac - ok
16:15:14.0805 0x135c [ B35CFCEF838382AB6490B321C87EDF17, A13985B87B5918D123072C7128E12DC28B0FCFD68383AFA6E1DA72A25BD781E0 ] atapi C:\Windows\system32\drivers\atapi.sys
16:15:14.0806 0x135c atapi - ok
16:15:14.0849 0x135c [ E760FC1BD68F7F6F1B17EB4E8D9480B0, 9E76A76B3D75AA6AFA8552412C48BCB88BC8708F75EDAFEFBD97EFEE4387A4AF ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:15:14.0865 0x135c AudioEndpointBuilder - ok
16:15:14.0888 0x135c [ E760FC1BD68F7F6F1B17EB4E8D9480B0, 9E76A76B3D75AA6AFA8552412C48BCB88BC8708F75EDAFEFBD97EFEE4387A4AF ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:15:14.0898 0x135c Audiosrv - ok
16:15:14.0922 0x135c [ AC3DD1708B22761EBD7CBE14DCC3B5D7, 395769C8DAA505E261033B9EA0319A7ED56A6289BAE11FDDA49002E25D9D8698 ] Beep C:\Windows\system32\drivers\Beep.sys
16:15:14.0923 0x135c Beep - ok
16:15:14.0987 0x135c [ 98EBDFFB824A7C265337D68DD480E45C, 81E495C7104FE9C1F996B2672ED22BE9E294D5C54B67FFCC6D2DD979DC94363C ] BFE C:\Windows\System32\bfe.dll
16:15:15.0003 0x135c BFE - ok
16:15:15.0101 0x135c [ DA551697E34D2B9943C8B1C8EAFFE89A, 5C0D13F7AE1D58E625932B00AD53F792B58900C93A1D5F97BD1D9605FCEAD51A ] BITS C:\Windows\System32\qmgr.dll
16:15:15.0138 0x135c BITS - ok
16:15:15.0148 0x135c blbdrive - ok
16:15:15.0179 0x135c [ 913CD06FBE9105CE6077E90FD4418561, EC0ECE5A0DBCD8DC1B202517902D90FF0FC0F3875557828BFA079DDE92EF6F5D ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:15:15.0182 0x135c bowser - ok
16:15:15.0220 0x135c [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
16:15:15.0222 0x135c BrFiltLo - ok
16:15:15.0244 0x135c [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
16:15:15.0245 0x135c BrFiltUp - ok
16:15:15.0272 0x135c [ BEB6470532B7461D7BB426E3FACB424F, 16439FD066EBBFF3F469FD5EC3A2FCAEC47DE9737A7DE93DA344EC4E2180D2F0 ] Browser C:\Windows\System32\browser.dll
16:15:15.0277 0x135c Browser - ok
16:15:15.0312 0x135c [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
16:15:15.0314 0x135c Brserid - ok
16:15:15.0329 0x135c [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
16:15:15.0331 0x135c BrSerWdm - ok
16:15:15.0341 0x135c [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
16:15:15.0342 0x135c BrUsbMdm - ok
16:15:15.0350 0x135c [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
16:15:15.0351 0x135c BrUsbSer - ok
16:15:15.0404 0x135c [ CF97C2D6A011EE9403B42191B5F95BA8, A82A0553D5621E8B87724442F585F2FE19A119F855B462635E996EAA52779F67 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
16:15:15.0405 0x135c BthEnum - ok
16:15:15.0413 0x135c [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:15:15.0415 0x135c BTHMODEM - ok
16:15:15.0455 0x135c [ B8C3D9DDF85FD197C3E5F849FEF71144, 9DA9D7D4970814051E93288F06A6676BC4B09EF52C1E4E70541E0D9937729E84 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
16:15:15.0458 0x135c BthPan - ok
16:15:15.0488 0x135c [ B4CE8000AAB30A9AB16CD0FB3DB4D7CF, FE9762B9204B1771D64AD9D63D74E8117C442FB43E03A82ACDFA3F646B275BF6 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
16:15:15.0495 0x135c BTHPORT - ok
16:15:15.0530 0x135c [ 58EE7F5E68310BC8D4E7CEBD8358C12E, 2EBA4A861E2C2AA56016DD8F5AE7C969BF515EF1B3E153F97F1E48E0983F17BB ] BthServ C:\Windows\System32\bthserv.dll
16:15:15.0533 0x135c BthServ - ok
16:15:15.0544 0x135c [ 9A4DDC8544C1459AA2A118A8858DADE3, 5D20C076FCCD13908C44C773CE46F13CAAE33B98DCA8DDAF593D2B28EFF5500D ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
16:15:15.0546 0x135c BTHUSB - ok
16:15:15.0574 0x135c [ 6C3A437FC873C6F6A4FC620B6888CB86, B316A1ABCDF74597C555B86A05DDED3B3F49F9D3B26D06AB312426C0A08B1AF6 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:15:15.0576 0x135c cdfs - ok
16:15:15.0622 0x135c [ 8D1866E61AF096AE8B582454F5E4D303, 4506E77C727E1B4CAD24CAFB4654CFE82872621D25BB30B730F746AA80A14B84 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:15:15.0624 0x135c cdrom - ok
16:15:15.0672 0x135c [ 0600E04315FE543802A379D5D23C8BE0, 48DD5028D9F415B9E5A949FA32051243C8F5B475EFA909FD625D940DA227E252 ] CertPropSvc C:\Windows\System32\certprop.dll
16:15:15.0675 0x135c CertPropSvc - ok
16:15:15.0698 0x135c [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys
16:15:15.0699 0x135c circlass - ok
16:15:15.0759 0x135c [ 1B84FD0937D3B99AF9BA38DDFF3DAF54, 2ECF54240673F4518ECD7C9FE5CAA171CE64B5F293FA8C6C66A8AA65A35A9080 ] CLFS C:\Windows\system32\CLFS.sys
16:15:15.0769 0x135c CLFS - ok
16:15:15.0846 0x135c [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:15:15.0851 0x135c clr_optimization_v2.0.50727_32 - ok
16:15:15.0888 0x135c [ ED97AD3DF1B9005989EAF149BF06C821, 914F8779883A5B66AE984C0672BABA873857EF2FACC8D6F88605FACB2BBB2468 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:15:15.0889 0x135c CmBatt - ok
16:15:15.0915 0x135c [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:15:15.0917 0x135c cmdide - ok
16:15:15.0945 0x135c [ 722936AFB75A7F509662B69B5632F48A, C386EA5E933C5D3F3FE162AE91F7D81C7C0765A1F790B1FF7B396A9DBDB4AD33 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:15:15.0947 0x135c Compbatt - ok
16:15:15.0957 0x135c COMSysApp - ok
16:15:15.0979 0x135c [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:15:15.0980 0x135c crcdisk - ok
16:15:16.0008 0x135c [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys
16:15:16.0039 0x135c Crusoe - ok
16:15:16.0124 0x135c [ 1C26FB097170A2A91066D1E3A24366E3, 277B8EBBAFA038C355B52CF32F390E057BCA5992EC0C5778F60C53CB0AA10777 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:15:16.0131 0x135c CryptSvc - ok
16:15:16.0206 0x135c [ 7B981222A257D076885BFFB66F19B7CE, 83B044B93FB30D54B9AFC991D608BF5FDBC2F31317E0AEA99E78B2B49655BCBB ] DcomLaunch C:\Windows\system32\rpcss.dll
16:15:16.0235 0x135c DcomLaunch - ok
16:15:16.0255 0x135c [ A7179DE59AE269AB70345527894CCD7C, 6AA67F34C7349B8B7EFA6E6C143DDA08F80D8D027E2E1AC41490E351C22BFA5B ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:15:16.0258 0x135c DfsC - ok
16:15:16.0432 0x135c [ E0D584AA76C7D845BA9F3A788260528F, 5C3C3C95DF1BA8A32EC848B695793D44E7DF8BEA0BC3B91D54751CC20317EC22 ] DFSR C:\Windows\system32\DFSR.exe
16:15:16.0533 0x135c DFSR - ok
16:15:16.0610 0x135c [ 17210D8064EC116A3FC6B5E45E577D43, C70591CF1369E5C726708C26B8A144AE869C1F707BC7C688EC2BE90BD7E32ED1 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
16:15:16.0617 0x135c Dhcp - ok
16:15:16.0658 0x135c [ 841AF4C4D41D3E3B2F244E976B0F7963, 304920DB44B88881FE4FDC892CC8D529E16FE5E6AEA548BDFD4507DF0A1BF8C1 ] disk C:\Windows\system32\drivers\disk.sys
16:15:16.0660 0x135c disk - ok
16:15:16.0687 0x135c [ EECBA1DD142BF8693C476BE8F32FE253, 93241BD6F4E2D6F27BD5ED2F38C26AED7A666161F64C28A44E6608C7D1DF0D40 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:15:16.0693 0x135c Dnscache - ok
16:15:16.0723 0x135c [ 1F795D214820E496BF1124434A6DB546, FC10DEF5A4A81540B347C54D7BE5C7D11F8E407AD28FD91E7CBAC15864FCC389 ] dot3svc C:\Windows\System32\dot3svc.dll
16:15:16.0731 0x135c dot3svc - ok
16:15:16.0783 0x135c [ 032C90AD677BF7B7A8013D6087C7A921, 99CC6F49FCE59550E48CF86BEE91F15E9D108AA5FBCF903AC997E404ABF6AF46 ] DPS C:\Windows\system32\dps.dll
16:15:16.0791 0x135c DPS - ok
16:15:16.0841 0x135c [ EE472CD2C01F6F8E8AA1FA06FFEF61B6, 03C6E0033C05120431FA2A02E206C458C4E1F18E511B1AA7F1867226617AB660 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:15:16.0841 0x135c drmkaud - ok
16:15:16.0888 0x135c [ 334988883DE69ADB27E2CF9F9715BBDB, ECDF29DECF577784BEE37A175BDEE8793F314E3BF35109A7D44017DC9B0E868B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:15:16.0908 0x135c DXGKrnl - ok
16:15:16.0954 0x135c [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
16:15:16.0958 0x135c E1G60 - ok
16:15:16.0992 0x135c [ 90A0A875642E18618010645311B4E89E, 499C6A29E3FEF3A1AC08DDDD00623AB93ACBB1511A0BFF004C4D4795B402412C ] EapHost C:\Windows\System32\eapsvc.dll
16:15:16.0995 0x135c EapHost - ok
16:15:17.0068 0x135c [ 0EFC7531B936EE57FDB4E837664C509F, 47F6D5380DA44514C1C13BFAF8227FBF356B14C46C45EC66C9E1431C4CFC85E3 ] Ecache C:\Windows\system32\drivers\ecache.sys
16:15:17.0073 0x135c Ecache - ok
16:15:17.0146 0x135c [ B4580122B0A7B263B6EE9ACBA69C8013, 94722F6B0E687709B854C055EFEF94AD8388AA0A2770FF75AD00C13ACC26F11F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:15:17.0160 0x135c ehRecvr - ok
16:15:17.0180 0x135c [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
16:15:17.0187 0x135c ehSched - ok
16:15:17.0224 0x135c [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
16:15:17.0226 0x135c ehstart - ok
16:15:17.0276 0x135c [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:15:17.0286 0x135c elxstor - ok
16:15:17.0350 0x135c [ 3226FDA08988526E819E364E8CCE4CEE, EFFEC5C44A7AC0B82C77E354C818BD700B4DBE69B345A81F2652BFA87D6FBE4F ] EMDMgmt C:\Windows\system32\emdmgmt.dll
16:15:17.0378 0x135c EMDMgmt - ok
16:15:17.0437 0x135c [ 7B4971C3D43525175A4EA0D143E0412E, D61D19F1A7CDDF1130F48255EE77B95183125E01A05DDE0F96FDE8DF697277A0 ] EventSystem C:\Windows\system32\es.dll
16:15:17.0450 0x135c EventSystem - ok
16:15:17.0504 0x135c [ 6B4AC26C62F55AF324E3809EE2AD9F0C, F3C1C8D9D3903F968FE67B563D48FC10D2855B4F9FDDC6DA1A4B835CCC44476C ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
16:15:17.0505 0x135c ew_usbenumfilter - ok
16:15:17.0538 0x135c [ 84A317CB0B3954D3768CDCD018DBF670, 96AEFEE67D467A83BC10B72A097C8B296F7FEDFA8F4CB69C6D385713952C2AF2 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:15:17.0542 0x135c fastfat - ok
16:15:17.0591 0x135c [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:15:17.0592 0x135c fdc - ok
16:15:17.0631 0x135c [ E43BCE1A77D6FD4ED5F8E0482B9E7DF1, 84555C567D4E728A7250D530518BF228E596E1CDE248D587C61634CC13EAC0BC ] fdPHost C:\Windows\system32\fdPHost.dll
16:15:17.0633 0x135c fdPHost - ok
16:15:17.0648 0x135c [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
16:15:17.0651 0x135c FDResPub - ok
16:15:17.0664 0x135c [ 65773D6115C037FFD7EF8280AE85EB9D, 71C7DDB71C9AA859B7DDCE01430E4913E58C928B22A46662A913209F5EC68120 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:15:17.0666 0x135c FileInfo - ok
16:15:17.0677 0x135c [ C226DD0DE060745F3E042F58DCF78402, 9C67A5AC809B462EF97519DD2B0AC966915F9AF9F4DE82BEEB71B7321AAB892C ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:15:17.0678 0x135c Filetrace - ok
16:15:17.0691 0x135c [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:15:17.0692 0x135c flpydisk - ok
16:15:17.0708 0x135c [ A6A8DA7AE4D53394AB22AC3AB6D3F5D3, C1007CB38F97AEE4B7A5A4E83A224F53EE59AFDA61A091960F6E1EB70E33E5C8 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:15:17.0714 0x135c FltMgr - ok
16:15:17.0780 0x135c [ 7EF57375636991F794BF40B522A8E7EF, 692D5B71C83E61681260BF11FF23AF5AABB7B7CBD5520C9B65279CA200581292 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:15:17.0783 0x135c FontCache3.0.0.0 - ok
16:15:17.0823 0x135c [ 66A078591208BAA210C7634B11EB392C, 5C101E10CF8E576352CAC1D059D5938251185D1CCB824645AC1471D9C90EC183 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:15:17.0824 0x135c Fs_Rec - ok
16:15:17.0858 0x135c [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:15:17.0860 0x135c gagp30kx - ok
16:15:17.0928 0x135c [ BCF6589C42D8F6A20F33EF133FFE0524, E3F82E90BCB58489E2D77F16163B888A0D9BC5D357AA929076027965E97DB5CA ] gpsvc C:\Windows\System32\gpsvc.dll
16:15:17.0957 0x135c gpsvc - ok
16:15:18.0044 0x135c [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
16:15:18.0090 0x135c gupdate - ok
16:15:18.0116 0x135c [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
16:15:18.0122 0x135c gupdatem - ok
16:15:18.0183 0x135c [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:15:18.0194 0x135c HdAudAddService - ok
16:15:18.0228 0x135c [ 0DB613A7E427B5663563677796FD5258, 82D50E0571196A8645B4F67274990BD7AA406F913534505D296AD3BAA0BBF1E8 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:15:18.0231 0x135c HDAudBus - ok
16:15:18.0276 0x135c [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:15:18.0278 0x135c HidBth - ok
16:15:18.0292 0x135c [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
16:15:18.0294 0x135c HidIr - ok
16:15:18.0333 0x135c [ 8FA640195279ACE21BEA91396A0054FC, 20541E5FA29B3FBD8824F3DF93C7D63AFEE56948F82FFDE20E9E87F5C0A3A789 ] hidserv C:\Windows\system32\hidserv.dll
16:15:18.0338 0x135c hidserv - ok
16:15:18.0354 0x135c [ 3C64042B95E583B366BA4E5D2450235E, B431F9692D66188AFEE372F312581178B14F49D763F8D1100D264623A239002A ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:15:18.0356 0x135c HidUsb - ok
16:15:18.0395 0x135c [ D40AA05E29BF6ED29B139F044B461E9B, 052C07B7E0B082EA8E9E35A69855436A9E1BAA1B7C1A4AB5830C246158D863C5 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:15:18.0403 0x135c hkmsvc - ok
16:15:18.0434 0x135c [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
16:15:18.0436 0x135c HpCISSs - ok
16:15:18.0508 0x135c [ EA24FE637D974A8A31BC650F478E3533, 2B754B4AFD89325A1E7B0EC9FCE110B87F5F2A9DCE72855AC812C3286887E4D9 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:15:18.0527 0x135c HTTP - ok
16:15:18.0579 0x135c [ A37E78E6D6FB537ED9F11E8FC60D7634, 559A0CE4792F073C1E3D866D009668538EBF350E97AA281B85573D5900DAE00C ] huawei_cdcacm C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
16:15:18.0584 0x135c huawei_cdcacm - ok
16:15:18.0639 0x135c [ 660F4EC9264BDC184033B660AFD26028, 9BFC51985BF379D06593861FDAFE933516D019F8057DD483E7FDFFBEDC3975CE ] huawei_cdcecm C:\Windows\system32\DRIVERS\ew_jucdcecm.sys
16:15:18.0642 0x135c huawei_cdcecm - ok
16:15:18.0685 0x135c [ 1820A7E1FD88BA8616E8EB4EBDBCBFCB, 2D49ED55A9872DFF83CC75E54F6BFA095519B843DB76DC7A62E3EF35D0521D39 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
16:15:18.0689 0x135c huawei_enumerator - ok
16:15:18.0722 0x135c [ 5FCFEB257515174923B0305DF65BFF0D, B4441DADD6462B3061C338AF7D3B6ED1AD4E88BCF63ADDF632C23D2631E188A5 ] huawei_ext_ctrl C:\Windows\system32\DRIVERS\ew_juextctrl.sys
16:15:18.0724 0x135c huawei_ext_ctrl - ok
16:15:18.0761 0x135c [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys
16:15:18.0763 0x135c i2omp - ok
16:15:18.0818 0x135c [ 1C9EE072BAA3ABB460B91D7EE9152660, 516436E905AA00C2826CC910EFA8C13005C11B66D1E415584189616BF91C4AA5 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:15:18.0821 0x135c i8042prt - ok
16:15:18.0884 0x135c [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
16:15:18.0896 0x135c iaStorV - ok
16:15:19.0013 0x135c [ 6D1D3CAB85BA0C63CB83296A8A1825F9, 4A59675ABFD51A27D156D266BF3E57425D9BD7BEC6A8F3957811659351EEB661 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:15:19.0077 0x135c idsvc - ok
16:15:19.0459 0x135c [ 9467514EA189475A6E7FDC5D7BDE9D3F, E6F5B99BF6B614832770F9310B06334A8174C7660DDEC7589433640527A14683 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
16:15:19.0695 0x135c igfx - ok
16:15:19.0758 0x135c [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:15:19.0760 0x135c iirsp - ok
16:15:19.0822 0x135c [ 35662FE4D8622F667AA5A5568F7F1B40, 1BE7B8D5E5E4E4D9E8ECC697AACF3C6EDB390051A2C18B7DCF63B337343B76D6 ] IKEEXT C:\Windows\System32\ikeext.dll
16:15:19.0843 0x135c IKEEXT - ok
16:15:19.0876 0x135c [ 988981C840084F480BA9E3319CEBDE1B, 7D029E0E3BAACF1BCAFDF31AA31F365132C20EE5FAC0102EC967440FD0D0318F ] intelide C:\Windows\system32\drivers\intelide.sys
16:15:19.0877 0x135c intelide - ok
16:15:19.0905 0x135c [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:15:19.0907 0x135c intelppm - ok
16:15:19.0927 0x135c [ 88CF5281ED9880D74DC9011CF8B5262D, 8DC118BE00235A6FD490D2FD9E8FDB90E7FA25DC8A91C78839AA8A1DC42F8C37 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:15:19.0933 0x135c IPBusEnum - ok
16:15:19.0964 0x135c [ 880C6F86CC3F551B8FEA2C11141268C0, 0BB04C193BF8FCC6F5B78C6A027CD09F9BE25523974C8000936394C73059243D ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:15:19.0966 0x135c IpFilterDriver - ok
16:15:20.0006 0x135c [ ECC9AD72CFC4AB41CF6A9BCC11F9FEF6, 96AD0EBDB112082FE4310B35B4DE448182C332E7F11ADD019E926768D10B7E66 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:15:20.0016 0x135c iphlpsvc - ok
16:15:20.0023 0x135c IpInIp - ok
16:15:20.0037 0x135c [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
16:15:20.0039 0x135c IPMIDRV - ok
16:15:20.0089 0x135c [ 10077C35845101548037DF04FD1A420B, D45110C3D38739787E1A7E6DC70E1543BD9BA069507F684BD0791FADA18DE7D1 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
16:15:20.0093 0x135c IPNAT - ok
16:15:20.0117 0x135c [ A82F328F4792304184642D6D397BB1E3, 02ED64261ACEFAC38D1F2BE6160F92379D23EBB90CF97DB58237EA8F0510F571 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:15:20.0118 0x135c IRENUM - ok
16:15:20.0146 0x135c [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:15:20.0148 0x135c isapnp - ok
16:15:20.0186 0x135c [ 4DCA456D4D5723F8FA9C6760D240B0DF, 812BC60CAEB70DA93A95F360755151863AAF264C0B519BD5342D08214D012F0C ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:15:20.0192 0x135c iScsiPrt - ok
16:15:20.0215 0x135c [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
16:15:20.0217 0x135c iteatapi - ok
16:15:20.0225 0x135c [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
16:15:20.0227 0x135c iteraid - ok
16:15:20.0262 0x135c [ B076B2AB806B3F696DAB21375389101C, DBD7F6C303CD61EAB3935A702D9499D37801ED0088ED263E5EDA0C2D6DFE792C ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:15:20.0264 0x135c kbdclass - ok
16:15:20.0304 0x135c [ ED61DBC6603F612B7338283EDBACBC4B, E43F2AEC4F0462BCD74B68682A3E8E6C3B3C24F043CC1603BBA200416581E080 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:15:20.0305 0x135c kbdhid - ok
16:15:20.0329 0x135c [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] KeyIso C:\Windows\system32\lsass.exe
16:15:20.0331 0x135c KeyIso - ok
16:15:20.0375 0x135c [ 0A829977B078DEA11641FC2AF87CEADE, C22CFDEAB8A75073BA965313609F0E2393692ABD4D48587382101DA785A7622D ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:15:20.0395 0x135c KSecDD - ok
16:15:20.0453 0x135c [ 45C537FE5DDE9A0146AEFF76E615737D, F4B0DCB5FD8731E34EB4BF18B509A9D7837F9D96B3F22D056A941480D341B0EC ] KtmRm C:\Windows\system32\msdtckrm.dll
16:15:20.0474 0x135c KtmRm - ok
16:15:20.0515 0x135c [ 53D1482FC1AA36AC015A85E6CF2146BD, AD764237410A7D1B7016D421C160644CCFFBC5F42FD53B179D30BF7E50346B4D ] LanmanServer C:\Windows\system32\srvsvc.dll
16:15:20.0527 0x135c LanmanServer - ok
16:15:20.0574 0x135c [ 435F0F6DC87A4B5DA78F1FA309884189, 4ABCE3AA0ED9D36E3439AABFB086B05A09A567E2BEA3714F984D1400DE743516 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:15:20.0586 0x135c LanmanWorkstation - ok
16:15:20.0630 0x135c [ FD015B4F95DAA2B712F0E372A116FBAD, A73D472276FE0EF0AC273FB04EEA168C3FF5D62AEB3FB5A22B028BFDEF6F3CDF ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:15:20.0632 0x135c lltdio - ok
16:15:20.0672 0x135c [ 7450DBCF754391DD6363FFFD5EF0E789, CD571803825C23D32E43D84376B68FC2B71FDA3A89931CBB6AFE84D0FAD8C2F1 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:15:20.0683 0x135c lltdsvc - ok
16:15:20.0708 0x135c [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:15:20.0711 0x135c lmhosts - ok
16:15:20.0741 0x135c [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:15:20.0744 0x135c LSI_FC - ok
16:15:20.0767 0x135c [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:15:20.0770 0x135c LSI_SAS - ok
16:15:20.0809 0x135c [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:15:20.0811 0x135c LSI_SCSI - ok
16:15:20.0845 0x135c [ 42885BB44B6E065B8575A8DD6C430C52, BC7013C7902C64D4B443D517F358FF264795F638EF30B664E51C2D55C80D39A3 ] luafv C:\Windows\system32\drivers\luafv.sys
16:15:20.0849 0x135c luafv - ok
16:15:20.0920 0x135c [ BA1347822D01B2D29C14CF09663A6457, AF300C059017CA06FA7D0DC5E148159A6EE509CEF9DC6E90557BA38ACF3185E8 ] LVRS C:\Windows\system32\DRIVERS\lvrs.sys
16:15:20.0931 0x135c LVRS - ok
16:15:21.0275 0x135c [ E2C99D3B692BA2173114C9DF79313B70, D2B1F052198EFBFAA49D52EFAE2614D7CBE25AE5DA9B4008602483B4A128512A ] LVUVC C:\Windows\system32\DRIVERS\lvuvc.sys
16:15:21.0468 0x135c LVUVC - ok
16:15:21.0526 0x135c [ E93C1AD58E88A0846EAEE10671C2A8F3, 6635BFBD6F2D6EDCE00A95A105E90E09965C9C4798949105B48EE46189C3E8E0 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:15:21.0530 0x135c Mcx2Svc - ok
16:15:21.0571 0x135c [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys
16:15:21.0573 0x135c megasas - ok
16:15:21.0605 0x135c [ 9DFA3A459AF0954AA85B4F7622AD87BB, C7BED7AAAA0DA89C0EE7219FD316DA69C027C27008C02F5028F2D3F33A06CCBF ] MMCSS C:\Windows\system32\mmcss.dll
16:15:21.0609 0x135c MMCSS - ok
16:15:21.0623 0x135c [ 21755967298A46FB6ADFEC9DB6012211, 3F83BA0D0ED6D40CB4A62A41722F6FDB8C34DF7B0C115FFE7D0EA12E1D4B4EFD ] Modem C:\Windows\system32\drivers\modem.sys
16:15:21.0625 0x135c Modem - ok
16:15:21.0672 0x135c [ 7446E104A5FE5987CA9E4983FBAC4F97, 61EDE5042718C12BFC8337D71C924D86FE7357E25182E1FDE25C73719FC7F3BD ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:15:21.0674 0x135c monitor - ok
16:15:21.0686 0x135c [ 5FBA13C1A1841B0885D316ED3589489D, 16CAB611D0C3C38138164A7452E826091A57E51149A4DBA8B1E7D8979A37CD9A ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:15:21.0687 0x135c mouclass - ok
16:15:21.0695 0x135c [ B569B5C5D3BDE545DF3A6AF512CCCDBA, 4B6EC4E78EDC847EFA69A358718C8466356131D6CF8472BE65E43DD871173D3C ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:15:21.0696 0x135c mouhid - ok
16:15:21.0723 0x135c [ 01F1E5A3E4877C931CBB31613FEC16A6, 7312C41A8188BAEBF6E3216B74F7698EFD1E80F77E7BB051B34AB14FB84E4130 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
16:15:21.0725 0x135c MountMgr - ok
16:15:21.0778 0x135c [ DD370A8148862150BA81A3F5C56A1E40, F56B84297BDC32266CB69D10FB2D66B8B332D60CAB7E64E4E3AC2BB749BBD31B ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:15:21.0784 0x135c MozillaMaintenance - ok
16:15:21.0827 0x135c [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys
16:15:21.0830 0x135c mpio - ok
16:15:21.0880 0x135c [ 6E7A7F0C1193EE5648443FE2D4B789EC, 56F37438B3252D5385C324A87D472D355572D339C5A27954106D51AF5AD3CE17 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:15:21.0882 0x135c mpsdrv - ok
16:15:21.0920 0x135c [ 563ED845885C6A7C09A7715D8BD0585C, 3A8B12D63AA7EBB51331DDF40077E156CCC225FE6FF0630BFAFD6D008988DC58 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:15:21.0941 0x135c MpsSvc - ok
16:15:21.0985 0x135c [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
16:15:21.0986 0x135c Mraid35x - ok
16:15:22.0028 0x135c [ 1D8828B98EE309D65E006F0829E280E5, F53FB67D73788E0B38CFEA4FE9CA79B778C2AD383EA2D61A3AC935C722336E79 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:15:22.0032 0x135c MRxDAV - ok
16:15:22.0070 0x135c [ 8AF705CE1BB907932157FAB821170F27, 9C0B0E1F7E366372186BC3D40CA2F1513A9613576F024334ED5C65BCD230BC3A ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:15:22.0073 0x135c mrxsmb - ok
16:15:22.0092 0x135c [ 47E13AB23371BE3279EEF22BBFA2C1BE, EE878AD816AD9E0544E00D92CC017930C458179D0E2A396117611B7B81D4DB2C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:15:22.0103 0x135c mrxsmb10 - ok
16:15:22.0113 0x135c [ 90B3FC7BD6B3D7EE7635DEBBA2187F66, 879255516B5BBE7C86081DAEB8EDCC8659299019E3C912FD1F7B02B2C78F22D2 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:15:22.0116 0x135c mrxsmb20 - ok
16:15:22.0150 0x135c [ B2EFB263600314BABCF9DADB1CBBA994, B6B1A5A3417A353005D5505F6B325F38C60B232410BFA1B04A49B8A416DB87DB ] msahci C:\Windows\system32\drivers\msahci.sys
16:15:22.0151 0x135c msahci - ok
16:15:22.0194 0x135c [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:15:22.0198 0x135c msdsm - ok
16:15:22.0222 0x135c [ BC64A92D821EFEA8BAB8E8CAF1B668BC, 3ADC299529AE377D4C131772C9A31E668C3F6BFADD45D01D11501F859536A4F3 ] MSDTC C:\Windows\System32\msdtc.exe
16:15:22.0230 0x135c MSDTC - ok
16:15:22.0243 0x135c [ 729EAFEFD4E7417165F353A18DBE947D, 2C2D9A0F5075C372A63D8D3C9CAAA9D57691703506C9F508F05C01727555AC5A ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:15:22.0245 0x135c Msfs - ok
16:15:22.0278 0x135c [ 5F454A16A5146CD91A176D70F0CFA3EC, 076E61F2027CC1A24679AC506E8A04C2B10B88D9281CA00446E45991E3ECA869 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:15:22.0279 0x135c msisadrv - ok
16:15:22.0319 0x135c [ 8ACF956D9154E893E789881430C12632, 222C2F957E69A8FEC1CBBF47D43DE1A3A0EBE3E8888A12862BF1ECCBFD61021D ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:15:22.0326 0x135c MSiSCSI - ok
16:15:22.0333 0x135c msiserver - ok
16:15:22.0350 0x135c [ 892CEDEFA7E0FFE7BE8DA651B651D047, A5FDD8D6CC5B1FEE643BA44A4596F2F1C066240A503214B0B00F074DE76ED0D6 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:15:22.0351 0x135c MSKSSRV - ok
16:15:22.0372 0x135c [ AE2CB1DA69B2676B4CEE2A501AF5871C, 576F1F5F52B5E89F0046173BEF8FC870B2DAAEFAD276D16429AC2050FE04FB8E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:15:22.0373 0x135c MSPCLOCK - ok
16:15:22.0392 0x135c [ F910DA84FA90C44A3ADDB7CD874463FD, 8CBA93EE6AB074262DC48415927B077CCE0F7790BFEFF6F3BFD653C37C36BE57 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:15:22.0393 0x135c MSPQM - ok
16:15:22.0425 0x135c [ 84571C0AE07647BA38D493F5F0015DF7, A810B28957759EBF0616567C8550FB1D5FDABA65FC6A87CF45957370E48FF0DC ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:15:22.0430 0x135c MsRPC - ok
16:15:22.0455 0x135c [ 4385C80EDE885E25492D408CAD91BD6F, E78EE11FD86D42C8E04AC778F60668B5EA65F6C9F3DFBED5CF7694F395DB3097 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:15:22.0457 0x135c mssmbios - ok
16:15:22.0510 0x135c [ C826DD1373F38AFD9CA46EC3C436A14E, B5BC1C7760BF4CC1AFC714CA9DFD1D75C2D3804D27F17DD08D1C5CF548F93042 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:15:22.0510 0x135c MSTEE - ok
16:15:22.0532 0x135c [ FA7AA70050CF5E2D15DE00941E5665E5, 177F19C4436203E028D07300B4C77F5160835C7E02DB8863E8D01F277A678606 ] Mup C:\Windows\system32\Drivers\mup.sys
16:15:22.0534 0x135c Mup - ok
16:15:22.0588 0x135c [ 1CDBB5D002FE2BC5300AA20550D8A52E, 86529AEE13545AADAA2F20C300059096F1663BE8A5A76740E9FEDEA26928A364 ] napagent C:\Windows\system32\qagentRT.dll
16:15:22.0605 0x135c napagent - ok
16:15:22.0653 0x135c [ 6DA4A0FC7C0E83DF0CB3CFD0A514C3BC, 606449557E11AFD0C370EFD2D2566D58E0A6E90A590BF47779A077761E3FD682 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:15:22.0660 0x135c NativeWifiP - ok
16:15:22.0742 0x135c [ 227C11E1E7CF6EF8AFB2A238D209760C, C36E450DD54CE9DDF17C3E1240BFC9073D73B409C1E090EF65E80C1EA53A31A5 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:15:22.0761 0x135c NDIS - ok
16:15:22.0803 0x135c [ 81659CDCBD0F9A9E07E6878AD8C78D3F, CC62555E680B52541BE4B882BE9438A300EFF0F50D0632E430AF269D4224F5E9 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:15:22.0804 0x135c NdisTapi - ok
16:15:22.0817 0x135c [ 5DE5EE546BF40838EBE0E01CB629DF64, 2617B588338AB43E98BD1DDDB4725B9D422029120415FC98C3B37E906F109152 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:15:22.0819 0x135c Ndisuio - ok
16:15:22.0848 0x135c [ 397402ADCBB8946223A1950101F6CD94, 612F6D887CB4374BB762BEF24A826D69971EC22D98FB4C0AAA4CC4B367E11AA6 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:15:22.0852 0x135c NdisWan - ok
16:15:22.0866 0x135c [ 1B24FA907AF283199A81B3BB37E5E526, 0689F688B73DD521F6B31A81415E55628995D54458F628BC14F88296638162C7 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:15:22.0868 0x135c NDProxy - ok
16:15:22.0890 0x135c [ 356DBB9F98E8DC1028DD3092FCEEB877, BCCD66AE76DD6AAB0A7A83227329E7D9D05D7D1FD30CDB66B19EB166E9BAD8E5 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:15:22.0892 0x135c NetBIOS - ok
16:15:22.0917 0x135c [ E3A168912E7EEFC3BD3B814720D68B41, 0A8B74C07E8E410CD9ACCF8A44C6198D1E89888238C820C800EC0B1B3C5F7BC2 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
16:15:22.0923 0x135c netbt - ok
16:15:22.0930 0x135c [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] Netlogon C:\Windows\system32\lsass.exe
16:15:22.0933 0x135c Netlogon - ok
16:15:23.0015 0x135c [ 90A4DAE28B94497F83BEA0F2A3B77092, 9100B9312E92871AD634E373AC1EE8288A36F9E92A1390AF32B1C5B9419344A7 ] Netman C:\Windows\System32\netman.dll
16:15:23.0031 0x135c Netman - ok
16:15:23.0073 0x135c [ 7C5C3D9CEEE838856B828AB6F98A2857, BDFA0F43500E5E8A96EBF539B7E72E547E3EBCCD692A6C6B9452C1F25AD31471 ] netprofm C:\Windows\System32\netprofm.dll
16:15:23.0087 0x135c netprofm - ok
16:15:23.0131 0x135c [ B418382DE04FF58567AA07A2B66B2332, 4286757B235651F34F79784A7CEAF3C80E23982E95CF1033BC824D6672254D2D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:15:23.0138 0x135c NetTcpPortSharing - ok
16:15:23.0290 0x135c [ A15F219208843A5A210C8CB391384453, E333018B7A841F1E1E6E4A56BA05B4A4FDF46866B3697747ADCF4CA0F43D8A1D ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
16:15:23.0346 0x135c NETw3v32 - ok
16:15:23.0431 0x135c [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:15:23.0476 0x135c nfrd960 - ok
16:15:23.0523 0x135c [ C424117A562F2DE37A42266894C79AEB, A027AE08E37058316C004D79D038149FF9E233C1ECCE1D672AB5FE55C3B2B3AD ] NlaSvc C:\Windows\System32\nlasvc.dll
16:15:23.0533 0x135c NlaSvc - ok
16:15:23.0547 0x135c [ 4F9832BEB9FAFD8CEB0E541F1323B26E, FE4B9FDA83F186405C9B4A001E8496CA3DB42B4B4695E80F6DF5946E509F50F0 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:15:23.0549 0x135c Npfs - ok
16:15:23.0566 0x135c [ 23B8201A363DE0E649FC75EE9874DEE2, B6C2E40E62E9B4DA9B4E152DC406BD2338BF820CB547D65B03BC2C64D5D84EB2 ] nsi C:\Windows\system32\nsisvc.dll
16:15:23.0571 0x135c nsi - ok
16:15:23.0589 0x135c [ B488DFEC274DE1FC9D653870EF2587BE, A1F4B1D59BA49D760E9D7925FFE1180BE436376C79AFD04119BC0E0E95C69603 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:15:23.0590 0x135c nsiproxy - ok
16:15:23.0679 0x135c [ 37430AA7A66D7A63407ADC2C0D05E9F6, EC9B117C42F2905251A6D29C1C5DF883FFEB60CFF3497C07C306500F107E2565 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:15:23.0715 0x135c Ntfs - ok
16:15:23.0753 0x135c [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
16:15:23.0754 0x135c ntrigdigi - ok
16:15:23.0773 0x135c [ EC5EFB3C60F1B624648344A328BCE596, 0416128AA53D8FF79D5AAC69A8D9CE86D929A1517FAE4644AB06FA2362BB63A5 ] Null C:\Windows\system32\drivers\Null.sys
16:15:23.0774 0x135c Null - ok
16:15:23.0801 0x135c [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:15:23.0804 0x135c nvraid - ok
16:15:23.0832 0x135c [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:15:23.0834 0x135c nvstor - ok
16:15:23.0870 0x135c [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:15:23.0874 0x135c nv_agp - ok
16:15:23.0880 0x135c NwlnkFlt - ok
16:15:23.0891 0x135c NwlnkFwd - ok
16:15:23.0902 0x135c [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:15:23.0905 0x135c ohci1394 - ok
16:15:23.0975 0x135c [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] p2pimsvc C:\Windows\system32\p2psvc.dll
16:15:24.0009 0x135c p2pimsvc - ok
16:15:24.0048 0x135c [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] p2psvc C:\Windows\system32\p2psvc.dll
16:15:24.0072 0x135c p2psvc - ok
16:15:24.0103 0x135c [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
16:15:24.0106 0x135c Parport - ok
16:15:24.0140 0x135c [ 555A5B2C8022983BC7467BC925B222EE, D4E8B5FAF5F46F349B9C2554E7D8245808E3F7B86B40A547C37511E462838A89 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:15:24.0142 0x135c partmgr - ok
16:15:24.0162 0x135c [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
16:15:24.0163 0x135c Parvdm - ok
16:15:24.0194 0x135c [ D8C5C215C932233A4F1D7F368F4E4E65, E3FFEFC98FCA95E2290A30EA13793514E0C490C49E7E242C49FE3EA9FD6D651A ] PcaSvc C:\Windows\System32\pcasvc.dll
16:15:24.0199 0x135c PcaSvc - ok
16:15:24.0212 0x135c [ 1085D75657807E0E8B32F9E19A1647C3, 6D6C02CED7386E0D98BB136278934D5E2977BCC0BD9C487ECE7E97F472C612CD ] pci C:\Windows\system32\drivers\pci.sys
16:15:24.0217 0x135c pci - ok
16:15:24.0238 0x135c [ 3B1901E401473E03EB8C874271E50C26, 3C7931F419E29FDD0155D8D05D97289430A2852FCB3DBAD1B338FE2241458E72 ] pciide C:\Windows\system32\drivers\pciide.sys
16:15:24.0240 0x135c pciide - ok
16:15:24.0266 0x135c [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:15:24.0272 0x135c pcmcia - ok
16:15:24.0369 0x135c [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:15:24.0414 0x135c PEAUTH - ok
16:15:24.0582 0x135c [ CD05A38D166BEADE18030BAFC0C0A939, 4C310C4EA270FA5EDD268A5AA17713F5CD7AD526DB3AEA6C691772720BD16801 ] pla C:\Windows\system32\pla.dll
16:15:24.0685 0x135c pla - ok
16:15:24.0743 0x135c [ 747BB4C31F3B6E8D1B5ED0AD61518CB5, 3B4075A24A46C4EE7322AF80F65C280F1A3AD0079DDFF77CC8523662225F01F5 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:15:24.0761 0x135c PlugPlay - ok
16:15:24.0831 0x135c [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
16:15:24.0865 0x135c PNRPAutoReg - ok
16:15:24.0916 0x135c [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] PNRPsvc C:\Windows\system32\p2psvc.dll
16:15:24.0951 0x135c PNRPsvc - ok
16:15:25.0005 0x135c [ 5EBDEC613BD377CE9A85382BE5C6B83B, 528D4DE5AAF113A6F3266EB018247EA46BD2581747DFBA1312D32AE37536E5A3 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:15:25.0029 0x135c PolicyAgent - ok
16:15:25.0073 0x135c [ 6C359AC71D7B550A0D41F9DB4563CE05, D23899AD8354C92FC025FD43DE80EEABB819EF3F0C0FC957C87D29B94B006E63 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:15:25.0077 0x135c PptpMiniport - ok
16:15:25.0110 0x135c [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor C:\Windows\system32\drivers\processr.sys
16:15:25.0112 0x135c Processor - ok
16:15:25.0163 0x135c [ 213112E152E68F0E4705E36F052A2880, E5CB788E11DC01B82480FAAE8B1E122C075AA51144591189386C8EBB34197F06 ] ProfSvc C:\Windows\system32\profsvc.dll
16:15:25.0177 0x135c ProfSvc - ok
16:15:25.0195 0x135c [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:15:25.0199 0x135c ProtectedStorage - ok
16:15:25.0247 0x135c [ 2C8BAE55247C4E09352E870292E4D1AB, 1AA43E8D62A71F4859ADEDAC90E7F3B73F6356EFA3C700E276C3F5EE58ED6804 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
16:15:25.0251 0x135c PSched - ok
16:15:25.0351 0x135c [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:15:25.0403 0x135c ql2300 - ok
16:15:25.0436 0x135c [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:15:25.0442 0x135c ql40xx - ok
16:15:25.0490 0x135c [ CA61BDFD3713A7CE75F2812AFC431594, 42CAD3B8EADE4EDCC0F12869BA1B457E2B8712B796BDF1A5D231AF38D0CCF1FF ] QWAVE C:\Windows\system32\qwave.dll
16:15:25.0509 0x135c QWAVE - ok
16:15:25.0531 0x135c [ D2B3E2B7426DC23E185FBC73C8936C12, 543B6341AB0224E122A341068D1199715C503E840A41A852764AA400CEF6D75F ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:15:25.0533 0x135c QWAVEdrv - ok
16:15:25.0557 0x135c [ BD7B30F55B3649506DD8B3D38F571D2A, CFDED547FEE24CC0F9CD32A96D4F445D44FCA908BB99AEE890C720142EF0D68B ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:15:25.0559 0x135c RasAcd - ok
16:15:25.0588 0x135c [ F14F4AAB9F54D099FE99192BDB100AC9, 68293A5B23F4B602142442B1FA57B678BE46FA89808B76FBA7EB875FE3AAC3D8 ] RasAuto C:\Windows\System32\rasauto.dll
16:15:25.0599 0x135c RasAuto - ok
16:15:25.0622 0x135c [ 88587DD843E2059848995B407B67F6CF, C813C5FDCE2CEA211EC4C91FEA4B1D0EFF7459BFCD124D69EB19FDAEF61F690E ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:15:25.0626 0x135c Rasl2tp - ok
16:15:25.0670 0x135c [ 11D65E29BC9D1E4114D18FE68194394C, A2C6345D038E1EB954C0DFA4E5645DC1A78EDF7F0873BDFBE36E7CB047ECC33A ] RasMan C:\Windows\System32\rasmans.dll
16:15:25.0688 0x135c RasMan - ok
16:15:25.0704 0x135c [ CCF4E9C6CBBAC81437F88CB2AE0B6C96, 20F877FAE1D4B592AEE9A20AFD32066F7DE838FEE3501C6F72C44D3F32BC6AE0 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:15:25.0707 0x135c RasPppoe - ok
16:15:25.0741 0x135c [ 54129C5D9581BBEC8BD1EBD3BA813F47, 8A19AEFF124F55A99EDE9693E5981F03343736E7924C28290DA10D3092D98675 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:15:25.0752 0x135c rdbss - ok
16:15:25.0759 0x135c [ 794585276B5D7FCA9F3FC15543F9F0B9, 71424462303DA4035301F7E66792116ED09856A1724BAACBB47060121EDCE77F ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:15:25.0760 0x135c RDPCDD - ok
16:15:25.0805 0x135c [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
16:15:25.0813 0x135c rdpdr - ok
16:15:25.0821 0x135c [ 980B56E2E273E19D3A9D72D5C420F008, 142CFC831C4E70494275AA483CDAB5F63997EA1977F1DD4AE25AFBD419ABFF62 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:15:25.0823 0x135c RDPENCDD - ok
16:15:25.0841 0x135c [ 8830E790A74A96605FABA74F9665BB3C, 3CD2CFE48026485A4D7F6C985BFAF716D8D4B566BE53EA67904FD18B1C8F8604 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:15:25.0847 0x135c RDPWD - ok
16:15:25.0887 0x135c [ 6C1A43C589EE8011A1EBFD51C01B77CE, 61206F6AD4BBE241DBB948D48364898118BEA6E289EDD3141FD57B61ED62BB52 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:15:25.0892 0x135c RemoteAccess - ok
16:15:25.0933 0x135c [ 9A043808667C8C1893DA7275AF373F0E, 4317B975305F2FD6696A2227FA30214406179D9BB9898390A0FA2663AD27CBCF ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:15:25.0941 0x135c RemoteRegistry - ok
16:15:25.0975 0x135c [ 7EC90C316177BA3F1BCE92005264B447, C588611E4BD68F8220B189CBA72929A9C4143932FEF673D2676D83B2821237C2 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
16:15:25.0977 0x135c RFCOMM - ok
16:15:26.0001 0x135c [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
16:15:26.0004 0x135c RpcLocator - ok
16:15:26.0050 0x135c [ 7B981222A257D076885BFFB66F19B7CE, 83B044B93FB30D54B9AFC991D608BF5FDBC2F31317E0AEA99E78B2B49655BCBB ] RpcSs C:\Windows\system32\rpcss.dll
16:15:26.0071 0x135c RpcSs - ok
16:15:26.0107 0x135c [ 97E939D2128FEC5D5A3E6E79B290A2F4, FB71FD62BFD02608347C44E5EC865DCFA41EDFF58011673487D25C8DD79C268E ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:15:26.0109 0x135c rspndr - ok
16:15:26.0137 0x135c [ 283392AF1860ECDB5E0F8EBD7F3D72DF, B947025A41D7A16C48330ECE469860023D2109537A3DDC631C8EF9672687FF93 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
16:15:26.0139 0x135c RTL8169 - ok
16:15:26.0173 0x135c [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] SamSs C:\Windows\system32\lsass.exe
16:15:26.0175 0x135c SamSs - ok
16:15:26.0201 0x135c [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:15:26.0204 0x135c sbp2port - ok
16:15:26.0255 0x135c [ 565B4B9E5AD2F2F18A4F8AAFA6C06BBB, 4222182FF80A6A9DEF7239965C12F3BBE843A5219D16D5BFD167350EDA5A23CF ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:15:26.0263 0x135c SCardSvr - ok
16:15:26.0324 0x135c [ 886CEC884B5BE29AB9828B8AB46B11F7, 13901D422D3F0BD9D416865D91561C8A3B0FDC4D7593748460BA5DD45B7C5A6A ] Schedule C:\Windows\system32\schedsvc.dll
16:15:26.0356 0x135c Schedule - ok
16:15:26.0372 0x135c [ 0600E04315FE543802A379D5D23C8BE0, 48DD5028D9F415B9E5A949FA32051243C8F5B475EFA909FD625D940DA227E252 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:15:26.0378 0x135c SCPolicySvc - ok
16:15:26.0411 0x135c [ F7B6BF02240D0A764ADF8C8966735552, E3A21C746E8B79B4F08B0CC3C1610AE3F2BBC8FB6D237C653C7883F4EEA6F6E7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:15:26.0419 0x135c SDRSVC - ok
16:15:26.0454 0x135c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:15:26.0455 0x135c secdrv - ok
16:15:26.0473 0x135c [ 8388C4133DDBE62AD7BC3EC9F14271ED, 38BF611174C660A0F737D97DAD4488E589CF0CC6242F7B9A8DA034F0D4E22A4F ] seclogon C:\Windows\system32\seclogon.dll
16:15:26.0477 0x135c seclogon - ok
16:15:26.0522 0x135c [ 34350AE2C1D33D21C7305F861BD8DAD8, C2CF4DDC0B223F2CFEFC3BC4EE5B8BC0F3E1E972BE894C388FBA067D52945C2B ] SENS C:\Windows\System32\sens.dll
16:15:26.0526 0x135c SENS - ok
16:15:26.0547 0x135c [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
16:15:26.0549 0x135c Serenum - ok
16:15:26.0561 0x135c [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
16:15:26.0564 0x135c Serial - ok
16:15:26.0596 0x135c [ 450ACCD77EC5CEA720C1CDB9E26B953B, 3B053BDB8EDDC99274C46E9330AEE83851AA3AD37472BBCBE5624233CA9B1B55 ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:15:26.0598 0x135c sermouse - ok
16:15:26.0631 0x135c [ 78878235DA4DF0D116E86837A0A21DF8, E66B050B56F9F1E902DA6A55126BD2D6AD8F9A40995942055387DC1CDE857B9F ] SessionEnv C:\Windows\system32\sessenv.dll
16:15:26.0639 0x135c SessionEnv - ok
16:15:26.0647 0x135c [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:15:26.0648 0x135c sffdisk - ok
16:15:26.0658 0x135c [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:15:26.0661 0x135c sffp_mmc - ok
16:15:26.0671 0x135c [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:15:26.0673 0x135c sffp_sd - ok
16:15:26.0681 0x135c [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:15:26.0683 0x135c sfloppy - ok
16:15:26.0738 0x135c [ 9A82BF4C90B00A63150A606A1E2FD82B, 48F9B5CD950668F2F28D89F77E54C1EF02849F0E28DC104780F9D62AEE1BF247 ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:15:26.0749 0x135c SharedAccess - ok
16:15:26.0777 0x135c [ B264DFA21677728613267FE63802B332, 46AB67C795C8FA36B22BC1C4DB75E0281824AC99C9BC37EB3A3B13B435F75129 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:15:26.0795 0x135c ShellHWDetection - ok
16:15:26.0810 0x135c [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp C:\Windows\system32\drivers\sisagp.sys
16:15:26.0813 0x135c sisagp - ok
16:15:26.0856 0x135c [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
16:15:26.0858 0x135c SiSRaid2 - ok
16:15:26.0888 0x135c [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:15:26.0891 0x135c SiSRaid4 - ok
16:15:26.0972 0x135c [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
16:15:26.0993 0x135c SkypeUpdate - ok
16:15:27.0367 0x135c [ A1DCD30534835CB67733AD00175125A6, 04E77F80D365ED8A500B5818015739B7D3562C528CC005E63012D07767132D71 ] slsvc C:\Windows\system32\SLsvc.exe
16:15:27.0498 0x135c slsvc - ok
16:15:27.0547 0x135c [ 56DA296E7B376A727E7BDC5AC7FBEE02, 6A01699DEADE24DCE15321F51368F41EBC6594A838953D9EF250A57D7C1216B7 ] SLUINotify C:\Windows\system32\SLUINotify.dll
16:15:27.0553 0x135c SLUINotify - ok
16:15:27.0571 0x135c [ AC0D90738ADB51A6FD12FF00874A2162, 81086C33F77BA32DEDE0BE51CDD130AB124DB08DE63350CAA0B974B85A59B834 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:15:27.0574 0x135c Smb - ok
16:15:27.0656 0x135c [ C8A58FC905C9184FA70E37F71060C64D, 3D913E0F7B02EEAC15971DB15608912A96E4FD9BDFBF09E8F8FA4B6390A9B4DE ] smserial C:\Windows\system32\DRIVERS\smserial.sys
16:15:27.0706 0x135c smserial - ok
16:15:27.0755 0x135c [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:15:27.0760 0x135c SNMPTRAP - ok
16:15:27.0790 0x135c [ 426F9B029AA9162CECCF65369457D046, 36F47ABD5F16CA406036BD79AA8F89FF265B913C433BA73F115E84292D5FFD26 ] spldr C:\Windows\system32\drivers\spldr.sys
16:15:27.0792 0x135c spldr - ok
16:15:27.0830 0x135c [ DA612EF2556776DF2630B68BF2D48935, 770E883E3CA0CB8B63F5C09D26AD0474054F759EB692905EB37F9BC16D1FE5F4 ] Spooler C:\Windows\System32\spoolsv.exe
16:15:27.0841 0x135c Spooler - ok
16:15:27.0898 0x135c [ 038579C35F7CAD4A4BBF735DBF83277D, 95B5B32D8818E89A7AE2B6DDEAE3025B9E2B4C7A99E7CAEE4D7BF3E336413377 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:15:27.0912 0x135c srv - ok
16:15:27.0943 0x135c [ 6971A757AF8CB5E2CBCBB76CC530DB6C, E8BD4353F6EBCF3316CA6D288C402CAB72C674A94E07EB3003A8010F74BDC90C ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:15:27.0949 0x135c srv2 - ok
16:15:27.0963 0x135c [ 9E1A4603B874EEBCE0298113951ABEFB, 79C6153AF6E23F7A86642BE977E76B3D420F4D720B72418D0F3FB5A9EAFE36BB ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:15:27.0972 0x135c srvnet - ok
16:15:28.0007 0x135c [ 8D3E4BAFF8B3997138C38EB1B600519A, D40E30C86B2B5AB30B29CD211091C97876673E786D708EDDC5068656CB84E7F3 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:15:28.0029 0x135c SSDPSRV - ok
16:15:28.0197 0x135c [ A941E099EF46E3CC12F898CBE1C39910, 03419E0FC240C51A05B432041F1747068475EF2E6E23B06D85D5AEF4F442D32D ] stisvc C:\Windows\System32\wiaservc.dll
16:15:28.0232 0x135c stisvc - ok
16:15:28.0278 0x135c [ 1379BDB336F8158C176A465E30759F57, 704CB88D0DA019C48B30AF3CF51C6746D10C583822B21861DDE1708A835ABDFA ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:15:28.0280 0x135c swenum - ok
16:15:28.0354 0x135c [ 749ADA8D6C18A08ADFEDE69CBF5DB2E0, 376C3FDAB5926DDDE8BF009988D782A96AA198D9BC147C799016D558AEE6537E ] swprv C:\Windows\System32\swprv.dll
16:15:28.0376 0x135c swprv - ok
16:15:28.0406 0x135c [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
16:15:28.0409 0x135c Symc8xx - ok
16:15:28.0424 0x135c [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
16:15:28.0427 0x135c Sym_hi - ok
16:15:28.0439 0x135c [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
16:15:28.0442 0x135c Sym_u3 - ok
16:15:28.0669 0x135c [ 8F2B5FEDE18BD3C4C926CBF88E6F1264, A6398F4CBD27C59A1160AE7F79B651F4956F8BEFB829353A263502CEFBDEBF36 ] SysMain C:\Windows\system32\sysmain.dll
16:15:28.0725 0x135c SysMain - ok
16:15:28.0772 0x135c [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:15:28.0781 0x135c TabletInputService - ok
16:15:28.0817 0x135c [ EF3DD33C740FC2F82E7E4622F1C49289, 56CA8119E23AE7B9A6E454C7F52514D361AFFE92F46B63FBCA36AA7273624E52 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:15:28.0836 0x135c TapiSrv - ok
16:15:28.0860 0x135c [ 68FA52794AE9ACC61BDE16FE0956B414, 3848DAF78246935134443FCEBA4E48843E98E5201DCD1B7C4C2BA46E2E106F50 ] TBS C:\Windows\System32\tbssvc.dll
16:15:28.0868 0x135c TBS - ok
16:15:28.0954 0x135c [ 4A82FA8F0DF67AA354580C3FAAF8BDE3, 4E946A7F4236B3A815172CAB9179E2171F4D69BF18606E02E6552EC5FA317CFA ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:15:28.0993 0x135c Tcpip - ok
16:15:29.0064 0x135c [ 4A82FA8F0DF67AA354580C3FAAF8BDE3, 4E946A7F4236B3A815172CAB9179E2171F4D69BF18606E02E6552EC5FA317CFA ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
16:15:29.0093 0x135c Tcpip6 - ok
16:15:29.0131 0x135c [ 5CE0C4A7B12D0067DAD527D72B68C726, BA2B482C5A9B59721A893B11475E199808E8182A0C39DA82BF87E6BE03B61867 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:15:29.0134 0x135c tcpipreg - ok
16:15:29.0162 0x135c [ 964248AEF49C31FA6A93201A73FFAF50, 479174899E7375C29E7C0EA7715AF1FDB09D7565B0678E15DC109C32B08624AD ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:15:29.0164 0x135c TDPIPE - ok
16:15:29.0171 0x135c [ 7D2C1AE1648A60FCE4AA0F7982E419D3, E08F2A380388E3F0886B9EF440758AAE85F619A6B98C8054E55190423B7377DB ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:15:29.0173 0x135c TDTCP - ok
16:15:29.0199 0x135c [ AB4FDE8AF4A0270A46A001C08CBCE1C2, E420B59E716C09623A28A95CD20721EA3FA2804E44F0D9226C0DCBA8FB716A78 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:15:29.0202 0x135c tdx - ok
16:15:29.0218 0x135c [ 2C549BD9DD091FBFAA0A2A48E82EC2FB, A1884EE33A1EC2FD2FC5540E8848EBC2A9FB1987B5D2BAA58E4D7984F89E4BD7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:15:29.0220 0x135c TermDD - ok
16:15:29.0275 0x135c [ FAD71C1E8E4047B154E899AE31EB8CAA, 44DDADAFF31B4D6D840DA48A9A435204184CF3016EA426B24249F19C4C5AF304 ] TermService C:\Windows\System32\termsrv.dll
16:15:29.0298 0x135c TermService - ok
16:15:29.0332 0x135c [ B264DFA21677728613267FE63802B332, 46AB67C795C8FA36B22BC1C4DB75E0281824AC99C9BC37EB3A3B13B435F75129 ] Themes C:\Windows\system32\shsvcs.dll
16:15:29.0345 0x135c Themes - ok
16:15:29.0360 0x135c [ 9DFA3A459AF0954AA85B4F7622AD87BB, C7BED7AAAA0DA89C0EE7219FD316DA69C027C27008C02F5028F2D3F33A06CCBF ] THREADORDER C:\Windows\system32\mmcss.dll
16:15:29.0364 0x135c THREADORDER - ok
16:15:29.0386 0x135c [ 6BBA0582C0025D43729A1112D3B57897, 052B291EBE695FB1DF40F65085CBA74624C877D57F881CE79027DEEBFE07FBA2 ] TrkWks C:\Windows\System32\trkwks.dll
16:15:29.0394 0x135c TrkWks - ok
16:15:29.0452 0x135c [ 34E388A395FEDBA1D0511ED39BBF4074, 9A44459AC8A258380E0E46F4F9FD8D9FB34B2FB127F0A672824642886E90A1D7 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:15:29.0454 0x135c TrustedInstaller - ok
16:15:29.0494 0x135c [ 29F0ECA726F0D51F7E048BDB0B372F29, FC4D5859633DA90A14CC5026347EF95BA3309594F8485F4F8C6451F44A8A8787 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:15:29.0496 0x135c tssecsrv - ok
16:15:29.0530 0x135c [ 65E953BC0084D44498B51F59784D2A82, 64A33090CE2A9046F413C9A0D0209ABF4B3FA0E44031CB871B20CF7C6ADA7021 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
16:15:29.0532 0x135c tunmp - ok
16:15:29.0557 0x135c [ 4A39BDA5E0FD30BDF4884F9D33AE6105, C827FCA940CCB4B5305A35E02AB296AD0CB9455B401555BDB2938BAED4A2A5D0 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:15:29.0558 0x135c tunnel - ok
16:15:29.0570 0x135c [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:15:29.0573 0x135c uagp35 - ok
16:15:29.0611 0x135c [ 6348DA98707CEDA8A0DFB05820E17732, FEADD72EBF7CE3E85463D676B45E05E5141EB80C76594DE66E2F3D27569AE90B ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:15:29.0619 0x135c udfs - ok
16:15:29.0668 0x135c [ 24A333F4F14DCFB6FF6D5A1B9E5D79DD, 8145A7668103B6768D49B5EADCA47C0D75E09C190325892DC74A29A5E959CE37 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:15:29.0673 0x135c UI0Detect - ok
16:15:29.0705 0x135c [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:15:29.0707 0x135c uliagpkx - ok
16:15:29.0748 0x135c [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys
16:15:29.0756 0x135c uliahci - ok
16:15:29.0780 0x135c [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
16:15:29.0783 0x135c UlSata - ok
16:15:29.0825 0x135c [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
16:15:29.0829 0x135c ulsata2 - ok
16:15:29.0856 0x135c [ 3FB78F1D1DD86D87BECECD9DFFA24DD9, B6344D33D064B56311168B02315B01238964D834AA44EB6C2B3788698F2077CF ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:15:29.0858 0x135c umbus - ok
16:15:29.0889 0x135c [ 8EB871A3DEB6B3D5A85EB6DDFC390B59, 84D8A02CC4597078D868F1C31992D04B2D4B3CC4FAF4F57625A2054C13AE1513 ] upnphost C:\Windows\System32\upnphost.dll
16:15:29.0906 0x135c upnphost - ok
16:15:29.0942 0x135c [ F6BF998AE33E3FB6C7D27F0560F1173F, A1E7DBC85267AC23D2351EE184681032DD3A6BE2689AEB6B98D5885F461AB7F4 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:15:29.0945 0x135c usbaudio - ok
16:15:29.0974 0x135c [ B0BA9CAFFE9B0555EC0317F30CB79CD2, 1163BAF9B03D741E46163566666B96259B4ECD8C3AC9E6D4D3A0555ADCC7F1BB ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:15:29.0977 0x135c usbccgp - ok
16:15:30.0007 0x135c [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:15:30.0009 0x135c usbcir - ok
16:15:30.0091 0x135c [ C9FCD05B0A80EA08C2768E5A279B14DE, BB594B0E0A90B8737368D220C86F3CD1E0A3214201C5E6B60CD793ECFF923825 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:15:30.0093 0x135c usbehci - ok
16:15:30.0110 0x135c [ 5E44F7D957F7560DA06BFE6B84B58A35, EE44EDDDF5DD26948B931754871FD8287AFD2A2628FF94570FA6D36F07247FDA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:15:30.0117 0x135c usbhub - ok
16:15:30.0158 0x135c [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:15:30.0159 0x135c usbohci - ok
16:15:30.0182 0x135c [ B51E52ACF758BE00EF3A58EA452FE360, 79E629EC5DE8AB7F31B0EE9AE94C71E8F703FED5C09A816228726974F7790C85 ] usbprint C:\Windows\system32\drivers\usbprint.sys
16:15:30.0184 0x135c usbprint - ok
16:15:30.0223 0x135c [ 7887CE56934E7F104E98C975F47353C5, A77F4F36119DE0330CB39F0082130398479016C6819860E8A3873485679FFC15 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:15:30.0225 0x135c USBSTOR - ok
16:15:30.0246 0x135c [ D864735B0BFCB65440960A0B7CC1A38D, FA9FFDFF70E6C7CE5159A64AE28D2A24C4CA663332753C8E39544A54CC396D05 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:15:30.0247 0x135c usbuhci - ok
16:15:30.0294 0x135c [ 0A6B81F01BC86399482E27E6FDA7B33B, EDED102916634ADE83F5ACE327E2E3FF1C145A35A80320FAF03872B069DDA626 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
16:15:30.0299 0x135c usbvideo - ok
16:15:30.0330 0x135c [ F79D0D7C9004474CB42746D9B2C30A2B, B693C6DEB1AB879F91BF5362ECD02C8C676A6AAB82D01CB534734CC07FA6A3D8 ] UxSms C:\Windows\System32\uxsms.dll
16:15:30.0335 0x135c UxSms - ok
16:15:30.0374 0x135c [ C9D0BAFEE0D0A2681F048CA61BC0DA96, DEE8345E0F0E1984001C4305294DD0006C9C6DDA08BF8E23669D53919FB0D479 ] vds C:\Windows\System32\vds.exe
16:15:30.0396 0x135c vds - ok
16:15:30.0433 0x135c [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:15:30.0435 0x135c vga - ok
16:15:30.0456 0x135c [ 17A8F877314E4067F8C8172CC6D9101C, 86644BE36B12DBB61A14AE076EE5A3C04C1AC5328FD540BB39F80086302E30FA ] VgaSave C:\Windows\System32\drivers\vga.sys
16:15:30.0458 0x135c VgaSave - ok
16:15:30.0491 0x135c [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp C:\Windows\system32\drivers\viaagp.sys
16:15:30.0493 0x135c viaagp - ok
16:15:30.0506 0x135c [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys
16:15:30.0508 0x135c ViaC7 - ok
16:15:30.0534 0x135c [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide C:\Windows\system32\drivers\viaide.sys
16:15:30.0535 0x135c viaide - ok
16:15:30.0559 0x135c [ 103E84C95832D0ED93507997CC7B54E8, DA8B0F015D9F383C1349C96A6308E2B2BF3C1C3C5D0A173B9B71B455F8A10FCB ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:15:30.0561 0x135c volmgr - ok
16:15:30.0584 0x135c [ 294DA8D3F965F6A8DB934A83C7B461FF, 6761A3B24173C76E8AAE17D131EB897F475D84CAE76C9E1CF1F450DF7AC0A9B7 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:15:30.0593 0x135c volmgrx - ok
16:15:30.0629 0x135c [ 80DC0C9BCB579ED9815001A4D37CBFD5, E80392798A10DD9354683D80FDAE182D5D34CC3945BD5A7D16B79F0B2ED0D1A5 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:15:30.0636 0x135c volsnap - ok
16:15:30.0675 0x135c [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:15:30.0679 0x135c vsmraid - ok
16:15:30.0794 0x135c [ E0E29D9EF2524ABD11749C7C2FD7F607, 9A463C3BC73309B2114F30E8F923FE458F7AF8A385508403B56F260F1C0D042E ] VSS C:\Windows\system32\vssvc.exe
16:15:30.0842 0x135c VSS - ok
16:15:30.0881 0x135c [ 62B0D0F6F5580D9D0DFA5E0B466FF2ED, 6354B3D18AD753A96B38A71C4DC071944C1EFFBB695507DB3F40355203FB9A78 ] W32Time C:\Windows\system32\w32time.dll
16:15:30.0897 0x135c W32Time - ok
16:15:30.0934 0x135c [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:15:30.0936 0x135c WacomPen - ok
16:15:30.0972 0x135c [ 6798C1209A53B5A0DED8D437C45145FF, 502E472B9B648F11F820D8A0B49890185ADAD213601CE87B765B39CE4F6571C2 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
16:15:30.0976 0x135c Wanarp - ok
16:15:30.0989 0x135c [ 6798C1209A53B5A0DED8D437C45145FF, 502E472B9B648F11F820D8A0B49890185ADAD213601CE87B765B39CE4F6571C2 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:15:30.0993 0x135c Wanarpv6 - ok
16:15:31.0035 0x135c [ C1B19162E0509CEAB4CDF664E139D956, 24F03AD0EB901777F8DDF874A82BF32361D8313F8E79A477C42D58CD6BF12657 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:15:31.0056 0x135c wcncsvc - ok
16:15:31.0089 0x135c [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:15:31.0096 0x135c WcsPlugInService - ok
16:15:31.0134 0x135c [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys
16:15:31.0136 0x135c Wd - ok
16:15:31.0214 0x135c [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96, 6A6EFFDB538DE1E201058A00F3E056F1256E92EED943FBFBCE28E54BE751E33D ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:15:31.0238 0x135c Wdf01000 - ok
16:15:31.0284 0x135c [ 2A424B89B14EF17A3D06BCB5A8F79601, F0C51F3D5029B5E169F461536BF72D5DD811FE604B59C58902253B54FFBF510A ] WdiServiceHost C:\Windows\system32\wdi.dll
16:15:31.0293 0x135c WdiServiceHost - ok
16:15:31.0309 0x135c [ 2A424B89B14EF17A3D06BCB5A8F79601, F0C51F3D5029B5E169F461536BF72D5DD811FE604B59C58902253B54FFBF510A ] WdiSystemHost C:\Windows\system32\wdi.dll
16:15:31.0317 0x135c WdiSystemHost - ok
16:15:31.0361 0x135c [ 01E41C264EEDCB827820A1909162579F, E21E6CFE3A0F46320175A261E31DA86573F28CCD0C710E972E7888C5FB85C494 ] WebClient C:\Windows\System32\webclnt.dll
16:15:31.0378 0x135c WebClient - ok
16:15:31.0412 0x135c [ 9CF67FF7F8D34CBF115D0C278B9F74AA, B5EE61B3345B3DE88230858FD639A90919D00D52D44C8138E3AD66F79DFBB54B ] Wecsvc C:\Windows\system32\wecsvc.dll
16:15:31.0427 0x135c Wecsvc - ok
16:15:31.0454 0x135c [ B68CAB45DB1DAB59D92ACADFAD6364A8, 47491F6E759CDE7C343648C41302A57B0A41EAD49B7F55AD545743AEF9E168ED ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:15:31.0462 0x135c wercplsupport - ok
16:15:31.0492 0x135c [ 36BA0707680EF4236FD752BEE982CC25, 215E20E83A13B0B680990E4557DFBA5B83B60D2FCF356C1AB5BEFEA22B134B0A ] WerSvc C:\Windows\System32\WerSvc.dll
16:15:31.0509 0x135c WerSvc - ok
16:15:31.0583 0x135c [ 0D5AD0E71FF5DDAC5DD2F443B499ABD0, 7FE7C635B811E882AB02437FED1778A11F32F273E44E669DC445E929EF2C9B2D ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
16:15:31.0602 0x135c WinDefend - ok
16:15:31.0612 0x135c WinHttpAutoProxySvc - ok
16:15:31.0686 0x135c [ 38A7B89DE4E3417C122317949667FDD8, 611CFCC36EABA5752E99C1E0E3F6269C93CC5E5F53495C257929FB5492DCDE97 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:15:31.0698 0x135c Winmgmt - ok
16:15:31.0759 0x135c [ 3F6823040030C3E4DA1CF11CD40B7534, 4B1B1CE5F4E6679A96BA081F6CFC1D43FFCE3CAE58B8C3AD74B261D7F5C70E28 ] WinRM C:\Windows\system32\WsmSvc.dll
16:15:31.0793 0x135c WinRM - ok
16:15:31.0861 0x135c [ 7640ACEA41348BFEF34B76E245501261, 9B1067197DBE0E71AD547535FF8B97E30A89521FB84008DF9F57C71408B714BA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:15:31.0900 0x135c Wlansvc - ok
16:15:31.0947 0x135c [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:15:31.0949 0x135c WmiAcpi - ok
16:15:32.0000 0x135c [ A279323BEE5FFFAFDA222910BCE92132, 9A61FCDFBB4ECF3ADA153A62E7BF07309FC430DF43FA7A02F2F829E52D4FC65A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:15:32.0010 0x135c wmiApSrv - ok
16:15:32.0170 0x135c [ ACB2E63D50157E3EA7140F29D9E76A48, BA5F1F9EB162C7E4CE56D0582DE674803633B9BAAB9A3726DC4CB8AF9E98BC5A ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
16:15:32.0213 0x135c WMPNetworkSvc - ok
16:15:32.0279 0x135c [ 3D3B3B80C12ABE506F56930C46422C28, 9164F603B6BBE4597FDD99545715369FAE97402A2C2E89FD62F8A09629AB31F9 ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:15:32.0294 0x135c WPCSvc - ok
16:15:32.0341 0x135c [ C24844A1D0D9528B19D5BC266B8CD572, 2FABE49F7B93E5B99EA13828C81BBD7202BA813ACEBB192552E2AFD1E6AD67FD ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:15:32.0351 0x135c WPDBusEnum - ok
16:15:32.0412 0x135c [ 2D27171B16A577EF14C1273668753485, CA18E5A467D4C2EA3141F214E3D227630AB4D568179C1597936B55EEED6F5C2B ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
16:15:32.0420 0x135c WpdUsb - ok
16:15:32.0459 0x135c [ 84620AECDCFD2A7A14E6263927D8C0ED, 0FB188B40EA140DC5C7A0AD289613BC3FEF71C220F7852C57650A0889CF99A87 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:15:32.0461 0x135c ws2ifsl - ok
16:15:32.0490 0x135c [ F97CBB919AF6D0A6643D1A59C15014D1, E765BAF504DE624AE954531711AAFDD98CE9624C3806D7F25D228B53F6BDA6A0 ] wscsvc C:\Windows\System32\wscsvc.dll
16:15:32.0500 0x135c wscsvc - ok
16:15:32.0511 0x135c WSearch - ok
16:15:32.0700 0x135c [ 9397D21939A25DA1BD0ED8DB5BB3C853, 966203743B4F6442B60404989CF793F4D4461C2C12250A544A8F1133FF409831 ] wuauserv C:\Windows\system32\wuaueng.dll
16:15:32.0803 0x135c wuauserv - ok
16:15:32.0856 0x135c [ A2AAFCC8A204736296D937C7C545B53F, AB9C42AA1917E828F84C9D0E7505664937681CEC833600953BB98307F878DB93 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:15:32.0859 0x135c WUDFRd - ok
16:15:32.0899 0x135c [ DB5BF5AAB72B1B99B5331231D09EBB26, E1E49CA488211F6CAFF00FBF7F1F044155882864069FACEA3DD397AB8EDDD72F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:15:32.0905 0x135c wudfsvc - ok
16:15:32.0928 0x135c ================ Scan global ===============================
16:15:32.0987 0x135c [ 8CD98A8EC9CADAF4E051CDCAC15C96C4, E2F18E0FFB31FDDF210798EFA0C9C30C04B41B7CAACD93BFC224DE569000C220 ] C:\Windows\system32\basesrv.dll
16:15:33.0221 0x135c [ E3F137ADC0A9D7F3A2E4F557272FE6B3, A0F1AD68D8749B7366F7429E3CD5524C1DE6DFAE31B3B790DAB4C71080FED84A ] C:\Windows\system32\winsrv.dll
16:15:33.0269 0x135c [ E3F137ADC0A9D7F3A2E4F557272FE6B3, A0F1AD68D8749B7366F7429E3CD5524C1DE6DFAE31B3B790DAB4C71080FED84A ] C:\Windows\system32\winsrv.dll
16:15:33.0390 0x135c [ 329CF3C97CE4C19375C8ABCABAE258B0, 193A99EB3151C8C99B05A1BA4A69C39CC95E776CF1D39D7E318254383A4C9C0D ] C:\Windows\system32\services.exe
16:15:33.0408 0x135c [ Global ] - ok
16:15:33.0408 0x135c ================ Scan MBR ==================================
16:15:33.0436 0x135c [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
16:15:34.0967 0x135c \Device\Harddisk0\DR0 - ok
16:15:34.0975 0x135c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:15:34.0981 0x135c \Device\Harddisk1\DR1 - ok
16:15:34.0989 0x135c [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
16:15:35.0007 0x135c \Device\Harddisk2\DR2 - ok
16:15:35.0008 0x135c ================ Scan VBR ==================================
16:15:35.0030 0x135c [ 6985707EDC90610345AE5DF8C01E614D ] \Device\Harddisk0\DR0\Partition1
16:15:35.0197 0x135c \Device\Harddisk0\DR0\Partition1 - ok
16:15:35.0232 0x135c [ 9B1CEFDDE0CA85897ED9F688A3EC8E1B ] \Device\Harddisk0\DR0\Partition2
16:15:35.0260 0x135c \Device\Harddisk0\DR0\Partition2 - ok
16:15:35.0297 0x135c [ 757733D208A033ACFAC20EB794368382 ] \Device\Harddisk0\DR0\Partition3
16:15:35.0316 0x135c \Device\Harddisk0\DR0\Partition3 - ok
16:15:35.0323 0x135c [ 27D860CE5F0F439B2EDEB1BA63708BEA ] \Device\Harddisk1\DR1\Partition1
16:15:35.0325 0x135c \Device\Harddisk1\DR1\Partition1 - ok
16:15:35.0336 0x135c [ 7FD666BC99DA20BB4BCE506EE1206553 ] \Device\Harddisk2\DR2\Partition1
16:15:35.0341 0x135c \Device\Harddisk2\DR2\Partition1 - ok
16:15:35.0341 0x135c ================ Scan generic autorun ======================
16:15:35.0501 0x135c [ 9AD9E2FB2811123DA13DE84CC154AB77, 32695AC4BD0474BF08856C6DC45C24562A1243E9B88C2BDF4C6F5291FE1D1A22 ] C:\Program Files\Windows Defender\MSASCui.exe
16:15:35.0547 0x135c Windows Defender - ok
16:15:35.0657 0x135c [ 8854C4474E4E31FCA0C18BB9BD3A9D47, 26EAECA23FF49E1DD495F0F94F745F4C776382EE7BEF4926325E2AD21AC09313 ] C:\Windows\system32\igfxtray.exe
16:15:35.0665 0x135c IgfxTray - ok
16:15:35.0687 0x135c [ CE7544B51C3A15D87A78C33FDDA9EC54, 078C6B9296A42DC3776D8F0596E128521245D9CC0AB641B11140898DF2034F28 ] C:\Windows\system32\hkcmd.exe
16:15:35.0696 0x135c HotKeysCmds - ok
16:15:35.0719 0x135c [ 5D836F63676305D99C179F024E2210CB, F4996ABAEDD53A3E34E22C48812B7B541C20CBBE84C6D2B2781035799143982A ] C:\Windows\system32\igfxpers.exe
16:15:35.0727 0x135c Persistence - ok
16:15:35.0764 0x135c [ 17A4DE41E8104070055D8DDBC83AC8A5, DF87255A2ED148E32B197C38248D47FFBAA63CD40E8D3D5E5A6B6B11AA9BDF0F ] C:\Program Files\Vodafone\Vodafone Mobile Wi-Fi\Launcher.exe
16:15:35.0773 0x135c VodafoneMobileWiFi - ok
16:15:35.0852 0x135c [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
16:15:35.0855 0x135c APSDaemon - ok
16:15:35.0944 0x135c [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files\QuickTime\QTTask.exe
16:15:35.0957 0x135c QuickTime Task - ok
16:15:36.0031 0x135c [ 8FFDB89A0FB7C8ABC3A8825E38047341, B9107FAA3A885CD9A08C20F78D31C3642FA76812E417F41C4F2ADF7D90CA8C72 ] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
16:15:36.0041 0x135c LWS - ok
16:15:36.0094 0x135c [ A7810B302294793DE88542AAE177D1B1, F0EE3684DBEB0AAAD912DC04D060976D1EAE92489E192BAE900FA0F417AD20A7 ] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
16:15:36.0105 0x135c ArcSoft Connection Service - ok
16:15:36.0302 0x135c [ 582F3A0BA61D8F0D50C66B592808B6D6, BA4FE8BFE3C7F03AB0A1CF0A52E2B21B8321FD809FA8448E5714D78535165750 ] C:\Program Files\Windows Sidebar\Sidebar.exe
16:15:36.0338 0x135c Sidebar - ok
16:15:36.0346 0x135c WindowsWelcomeCenter - ok
16:15:36.0523 0x135c [ 582F3A0BA61D8F0D50C66B592808B6D6, BA4FE8BFE3C7F03AB0A1CF0A52E2B21B8321FD809FA8448E5714D78535165750 ] C:\Program Files\Windows Sidebar\Sidebar.exe
16:15:36.0559 0x135c Sidebar - ok
16:15:36.0573 0x135c WindowsWelcomeCenter - ok
16:15:36.0823 0x135c [ 582F3A0BA61D8F0D50C66B592808B6D6, BA4FE8BFE3C7F03AB0A1CF0A52E2B21B8321FD809FA8448E5714D78535165750 ] C:\Program Files\Windows Sidebar\sidebar.exe
16:15:36.0858 0x135c Sidebar - ok
16:15:36.0927 0x135c [ 2E0953919779A44BF9DFB7B07C58535A, 32DC0CCEFA5264C35E521C61F7DD3821317A9DB392202B049AB8A3881D8531DD ] C:\Windows\ehome\ehTray.exe
16:15:36.0935 0x135c ehTray.exe - ok
16:15:36.0939 0x135c Waiting for KSN requests completion. In queue: 24
16:15:38.0271 0x135c Win FW state via NFP2: enabled
16:15:38.0539 0x135c ============================================================
16:15:38.0539 0x135c Scan finished
16:15:38.0539 0x135c ============================================================
16:15:38.0557 0x26e8 Detected object count: 0
16:15:38.0558 0x26e8 Actual detected object count: 0


Alt 12.06.2015, 16:49   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Exe Datein lassen sich nicht ausführen Vista - Standard

Exe Datein lassen sich nicht ausführen Vista



So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.





Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
--> Exe Datein lassen sich nicht ausführen Vista

Antwort

Themen zu Exe Datein lassen sich nicht ausführen Vista
ausführen, ausführenbefehl, converter, datei, datein, downloads, exe, exe datei, exe datein, free, lieber, problem, vista, youtube, youtube converter



Ähnliche Themen: Exe Datein lassen sich nicht ausführen Vista


  1. Exe Dateien lassen sich nicht ausführen
    Plagegeister aller Art und deren Bekämpfung - 23.01.2014 (3)
  2. Trojaner TR/sirefef.A.78 & Defogger.exe, OTL.exe, Gmer.exe lassen sich nicht ausführen
    Plagegeister aller Art und deren Bekämpfung - 08.06.2013 (15)
  3. .exe files lassen sich nicht ausführen, malware lässt sich nicht ausführen, system wiederherstellung nicht möglich
    Log-Analyse und Auswertung - 25.03.2013 (0)
  4. alle programme werden bei ausführung *.Ink datein und lassen sich nicht starten
    Log-Analyse und Auswertung - 14.03.2013 (4)
  5. Infektion mit Live Security Platinum: Dateien lassen sich nicht mehr ausführen inkl. F8
    Plagegeister aller Art und deren Bekämpfung - 15.07.2012 (33)
  6. RAR Datein lassen sich nicht mehr entpacken
    Plagegeister aller Art und deren Bekämpfung - 15.04.2012 (1)
  7. Windows Firewall & Update geht nicht;Heruntergeladene Daten lassen sich nicht ausführen
    Plagegeister aller Art und deren Bekämpfung - 05.02.2012 (33)
  8. Alles Datein von USb-Speicherkarten werden als Verküpfung angezeigt und lassen sich nicht öffnen!
    Plagegeister aller Art und deren Bekämpfung - 24.10.2011 (25)
  9. Setup.exe Datein lassen sich nicht ausführen , und Minianwendungen werden nicht Korrekt angezeigt ?
    Log-Analyse und Auswertung - 25.06.2011 (5)
  10. Programme lassen sich nicht ausführen/Avira spielt verrückt
    Plagegeister aller Art und deren Bekämpfung - 17.03.2011 (19)
  11. Programme lassen sich von einem User nicht mehr ausführen
    Plagegeister aller Art und deren Bekämpfung - 16.02.2011 (4)
  12. bestimmte .exe dateien lassen sich nicht ausführen
    Plagegeister aller Art und deren Bekämpfung - 23.11.2010 (21)
  13. Windows Xp spinnt total. Programme lassen sich nicht ordentlich ausführen
    Alles rund um Windows - 08.11.2009 (10)
  14. Taskmanager und Regedit lassen sich nicht mehr ausführen
    Log-Analyse und Auswertung - 22.03.2009 (0)
  15. Setup Dateien lassen sich nicht ausführen...
    Plagegeister aller Art und deren Bekämpfung - 05.01.2009 (3)
  16. Setup dateien lassen sich nicht ausführen...
    Alles rund um Windows - 01.01.2009 (6)
  17. versteckte datein lassen sich nicht mehr anzeigen
    Log-Analyse und Auswertung - 19.08.2008 (1)

Zum Thema Exe Datein lassen sich nicht ausführen Vista - Hallo Ich habe ein Problem am Lappi. Ich habe Downloads gemacht ,aber kann diese nicht ausführen wenn sie im Downloadordner sind. Auch nicht als Admin.Habe z.B. Free Youtube Converter geladen - Exe Datein lassen sich nicht ausführen Vista...
Archiv
Du betrachtest: Exe Datein lassen sich nicht ausführen Vista auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.