Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 15.10.2015, 11:12   #1
Kängua
 
Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



Hallo,

ich bitte um Hilfe bei der Aufklärung des oben kurz genannten Problems.
Genauer lassen sich die Symptome so beschreiben: Obwohl die Internetverbingung zum PC offenbar vorhanden ist (Thunderbird funktioniert bspw.), lassen sich seit gestern verschiedene Seiten nicht mehr öffnen. Die Verbindung dauert sehr lange, bis dann entweder die Meldung kommt, dass eine Verbindung nicht möglich ist oder angezeigt wird, dass ein xml Verarbeitungsfehler mit einem unerwarteten Parserstatus vorliegt.
Wenn ich im Browser (Firefox) https:// vorweggesetzt habe, ließ sich die Seite (www.amazon.de bspw.) aufrufen.

Gerade habe ich mit Malwarebytes einen Suchlauf gestartet, der "PUP.Optional.APNToolBar" als ein "Objekt" erkannt hat. - Nachdem der Suchlauf fertig ist, gibt das Programm nun weitere 162 unerwünschte Objekte an.
Was kann oder sollte ich unternehmen?
Ich nutze auf dem Rechner Windows 10. Als Antivirenprogramm ist Antivir installiert.

Ich würde mich sehr über Unterstützung bei der Behebung des Problems und einer Anleitung zu einer sichereren Antiviren-trojaner-oder sonstwas einstellung des PCs freuen!
Vielen Dank schon einmal im Voraus
Kängua

Alt 15.10.2015, 11:14   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 15.10.2015, 11:49   #3
Kängua
 
Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

FRST.txt. und Addition.txt



Hallo, hier die beiden UNtersuchungsergebnisse:

FRST.txt

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:14-10-2015 01
durchgeführt von Gijawibj (Administrator) auf GIJAWIBJJAHA (15-10-2015 11:20:36)
Gestartet von C:\Users\Gijawibj\Desktop
Geladene Profile: Gijawibj &  (Verfügbare Profile: Gijawibj)
Platform: Microsoft Windows 10 Pro (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(Intel Corporation) C:\Program Files\Intel\AMT\LMS.exe
(Steganos Software GmbH) C:\Program Files\Steganos Online Shield\OnlineShieldService.exe
(Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe
(Skillbrains) C:\Program Files\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13571.0_x86__8wekyb3d8bbwe\Video.UI.exe
(Malwarebytes) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1791272 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [3866624 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [picon] => C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe [358936 2009-07-15] (Intel Corporation)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [782520 2015-09-23] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ApnTBMon] => C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1719184 2015-09-14] (APN)
HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [286720 2007-12-11] (Apple Inc.)
HKLM\...\Run: [Lightshot] => C:\Program Files\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [193568 2014-11-28] (Geek Software GmbH)
HKLM\...\Run: [Nikon Message Center 2] => C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe -s
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-13] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SOS_Agent] => C:\Program Files\Steganos Online Shield\OnlineShieldClient.exe [6200336 2015-07-09] (Steganos Software GmbH)
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SOS Browser Monitor] => C:\Program Files\Steganos Online Shield\SteganosBrowserMonitor.exe [75776 2015-07-08] (Steganos Software GmbH)
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\Run: [Spotify Web Helper] => C:\Users\Gijawibj\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2541160 2015-10-14] (Spotify Ltd)
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\E_FATIJCE.EXE [249440 2012-10-01] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\Run: [BingSvc] => C:\Users\Gijawibj\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\Run: [Spotify] => C:\Users\Gijawibj\AppData\Roaming\Spotify\Spotify.exe [7660648 2015-10-14] (Spotify Ltd)
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\Run: [autoRunTest] => C:\Program Files\AirDroid\AirDroid.exe [7119872 2015-09-22] (Sand Studio)
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\Run: [SOS_Agent] => C:\Program Files\Steganos Online Shield\OnlineShieldClient.exe [6200336 2015-07-09] (Steganos Software GmbH)
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\Gijawibj\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2541160 2015-10-14] (Spotify Ltd)
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\E_FATIJCE.EXE [249440 2012-10-01] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [BingSvc] => C:\Users\Gijawibj\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\Gijawibj\AppData\Roaming\Spotify\Spotify.exe [7660648 2015-10-14] (Spotify Ltd)
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [autoRunTest] => C:\Program Files\AirDroid\AirDroid.exe [7119872 2015-09-22] (Sand Studio)
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SOS_Agent] => C:\Program Files\Steganos Online Shield\OnlineShieldClient.exe [6200336 2015-07-09] (Steganos Software GmbH)
HKU\S-1-5-18\...\Run: [SOS_Agent] => C:\Program Files\Steganos Online Shield\OnlineShieldClient.exe [6200336 2015-07-09] (Steganos Software GmbH)
HKU\S-1-5-18\...\Run: [SOS Browser Monitor] => C:\Program Files\Steganos Online Shield\SteganosBrowserMonitor.exe [75776 2015-07-08] (Steganos Software GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nikon Monitor.lnk [2014-05-23]
ShortcutTarget: Nikon Monitor.lnk -> C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [147456 2008-12-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{cf22b1c1-2bab-4b46-8cba-86a6985c8109}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{fbf818c2-7b16-4bb2-ab23-a654b378d1b4}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.aartemis.com/web/?type=ds&ts=1385497676&from=cor&uid=ST9160412AS_5VG5B5PX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.aartemis.com/web/?type=ds&ts=1385497676&from=cor&uid=ST9160412AS_5VG5B5PX&q={searchTerms}
HKU\S-1-5-21-106535256-555546410-135984801-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.startfenster.de
HKU\S-1-5-21-106535256-555546410-135984801-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.startfenster.de
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
SearchScopes: HKLM -> DefaultScope {7A56161B-F791-41A5-925B-0175DCA63959} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM -> {7A56161B-F791-41A5-925B-0175DCA63959} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-106535256-555546410-135984801-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SL5MDF&PC=SL5M&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-106535256-555546410-135984801-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SL5MDF&PC=SL5M&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-106535256-555546410-135984801-1001 -> {7A56161B-F791-41A5-925B-0175DCA63959} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SL5MDF&PC=SL5M&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SL5MDF&PC=SL5M&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {7A56161B-F791-41A5-925B-0175DCA63959} URL = hxxp://www.sm.de/?q={searchTerms}
BHO: Avira SearchFree Toolbar -> {41564952-412D-5637-00A7-7A786E7484D7} -> C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll [2015-09-14] (APN LLC.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll [2015-09-14] (APN LLC.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Gijawibj\AppData\Roaming\Mozilla\Firefox\Profiles\7y5j8nnc.Herbstwolke
FF DefaultSearchEngine: DuckDuckGo
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx [2015-10-07]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe [932912 2015-09-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [461672 2015-09-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [461672 2015-09-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1148688 2015-09-23] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [206224 2015-09-14] (APN LLC.)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [228104 2015-08-13] (Avira Operations GmbH & Co. KG)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [1680088 2013-10-28] (Broadcom Corporation.)
S3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1879640 2015-09-11] (Microsoft Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc.exe [122000 2011-12-12] (Seiko Epson Corporation)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 Online Shield Starter Service; C:\Program Files\Steganos Online Shield\OnlineShieldService.exe [345136 2015-07-09] (Steganos Software GmbH)
R2 UNS; C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2058776 2009-07-15] (Intel Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [105352 2015-09-23] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [138800 2015-07-28] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [37896 2015-05-26] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [55912 2015-09-23] (Avira Operations GmbH & Co. KG)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [175320 2013-10-28] (Broadcom Corporation.)
R3 BthA2DP; C:\WINDOWS\system32\drivers\BthA2DP.sys [125440 2015-07-10] (Microsoft Corporation)
R3 BthHFAud; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [28672 2015-07-10] (Microsoft Corporation)
S3 btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [144600 2013-10-28] (Broadcom Corporation.)
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2015-10-15] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7518208 2015-07-10] (Intel Corporation)
R3 rismc32; C:\WINDOWS\system32\DRIVERS\rismc32.sys [49152 2009-07-20] (RICOH Company, Ltd.)
R1 ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [31848 2015-06-09] (Avira Operations GmbH & Co. KG)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161792 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-10-15 11:20 - 2015-10-15 11:21 - 00018343 _____ C:\Users\Gijawibj\Desktop\FRST.txt
2015-10-15 11:20 - 2015-10-15 11:20 - 00000000 ____D C:\FRST
2015-10-15 11:19 - 2015-10-15 11:22 - 01700352 _____ (Farbar) C:\Users\Gijawibj\Desktop\FRST.exe
2015-10-15 11:13 - 2015-10-15 11:13 - 00016148 _____ C:\WINDOWS\system32\GIJAWIBJJAHA_Gijawibj_HistoryPrediction.bin
2015-10-15 09:44 - 2015-10-15 09:44 - 00001834 _____ C:\Users\Gijawibj\Desktop\Malwarebytes Anti-Malware Notifications.lnk
2015-10-15 08:41 - 2015-10-15 09:14 - 00000000 ____D C:\ProgramData\MFAData
2015-10-15 08:41 - 2015-10-15 08:41 - 00000000 ____D C:\Users\Gijawibj\AppData\Local\MFAData
2015-10-15 08:41 - 2015-10-15 08:41 - 00000000 ____D C:\Users\Gijawibj\AppData\Local\Avg2015
2015-10-15 08:01 - 2015-10-15 08:01 - 00000000 ____D C:\Users\Gijawibj\AppData\Roaming\Steganos
2015-10-13 09:07 - 2015-10-13 09:07 - 00000000 ____D C:\Users\Gijawibj\AppData\Local\TempTaskUpdateDetectionEB2D2C4B-0E0E-499C-8D3C-751D58D1D37C
2015-10-08 23:25 - 2015-10-08 23:25 - 00152792 _____ C:\WINDOWS\Minidump\100815-30687-01.dmp
2015-10-06 18:02 - 2015-10-06 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour
2015-10-06 18:02 - 2015-10-06 18:02 - 00000000 ____D C:\ProgramData\Apple
2015-10-06 18:02 - 2015-10-06 18:02 - 00000000 ____D C:\Program Files\Bonjour
2015-10-06 18:01 - 2015-10-06 18:12 - 00000000 ____D C:\Users\Gijawibj\Documents\AirDroid
2015-10-06 18:01 - 2015-10-06 18:02 - 00000000 ____D C:\Users\Public\Documents\AirDroid
2015-10-06 18:01 - 2015-10-06 18:02 - 00000000 ____D C:\Program Files\AirDroid
2015-10-06 18:01 - 2015-10-06 18:01 - 00001896 _____ C:\Users\Public\Desktop\AirDroid.lnk
2015-10-06 18:01 - 2015-10-06 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirDroid
2015-10-06 17:59 - 2015-10-06 18:01 - 13464668 _____ C:\Users\Gijawibj\AirDroid_Desktop_Client_3.2.0.exe
2015-10-05 23:52 - 2015-10-06 10:25 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2015-10-04 20:56 - 2015-10-08 23:25 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-02 16:28 - 2015-10-02 16:28 - 00015335 _____ C:\Users\Gijawibj\AppData\Local\recently-used.xbel
2015-10-02 09:44 - 2015-10-02 09:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2015-10-01 22:40 - 2015-10-01 22:40 - 00001926 _____ C:\Users\Gijawibj\Desktop\HP Color LaserJet 4550 PCL6 Class Driver - Verknüpfung.lnk
2015-10-01 21:40 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-10-01 21:40 - 2015-09-17 07:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-10-01 21:40 - 2015-09-17 07:27 - 01766952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 21:40 - 2015-09-17 07:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 21:40 - 2015-09-17 06:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-01 21:40 - 2015-09-17 06:47 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 21:40 - 2015-09-17 06:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-01 21:40 - 2015-09-17 06:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 21:40 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-01 21:40 - 2015-09-17 06:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 21:40 - 2015-09-17 06:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-01 21:40 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-01 21:40 - 2015-09-17 06:35 - 03026432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 21:40 - 2015-09-17 06:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-10-01 21:40 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 21:40 - 2015-09-17 06:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-01 21:40 - 2015-09-17 06:32 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 21:40 - 2015-09-17 06:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-01 21:39 - 2015-09-25 00:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-01 21:39 - 2015-09-25 00:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-01 21:39 - 2015-09-25 00:18 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-01 21:39 - 2015-09-24 23:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-01 21:39 - 2015-09-24 23:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-01 21:39 - 2015-09-24 23:42 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-01 21:39 - 2015-09-24 23:37 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-01 21:39 - 2015-09-24 23:30 - 02985472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-01 21:39 - 2015-09-24 23:29 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-01 21:39 - 2015-09-24 23:28 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-01 21:39 - 2015-09-24 23:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-01 21:39 - 2015-09-24 23:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-01 21:39 - 2015-09-24 23:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-01 21:39 - 2015-09-24 23:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-01 21:39 - 2015-09-24 23:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-01 21:39 - 2015-09-24 23:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-01 21:39 - 2015-09-24 23:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-01 21:39 - 2015-09-24 23:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-01 21:39 - 2015-09-24 23:11 - 01499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-01 21:39 - 2015-09-19 04:50 - 00083160 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-10-01 21:39 - 2015-09-17 07:28 - 06265168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-01 21:39 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-01 21:39 - 2015-09-17 07:28 - 01343952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-01 21:39 - 2015-09-17 07:28 - 00680144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-01 21:39 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 21:39 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-10-01 21:39 - 2015-09-17 07:28 - 00083792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-10-01 21:39 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 21:39 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 21:39 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 21:39 - 2015-09-17 07:26 - 01856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-01 21:39 - 2015-09-17 07:26 - 01708376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-10-01 21:39 - 2015-09-17 07:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-10-01 21:39 - 2015-09-17 07:26 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 21:39 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-10-01 21:39 - 2015-09-17 07:26 - 00436064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-10-01 21:39 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 21:39 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 21:39 - 2015-09-17 07:26 - 00414560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-10-01 21:39 - 2015-09-17 07:26 - 00335696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-10-01 21:39 - 2015-09-17 07:26 - 00274272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-10-01 21:39 - 2015-09-17 07:26 - 00228192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-10-01 21:39 - 2015-09-17 07:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 21:39 - 2015-09-17 07:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-10-01 21:39 - 2015-09-17 07:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 21:39 - 2015-09-17 07:15 - 00070744 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-01 21:39 - 2015-09-17 07:13 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-10-01 21:39 - 2015-09-17 07:13 - 00918880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-01 21:39 - 2015-09-17 06:51 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-10-01 21:39 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 21:39 - 2015-09-17 06:51 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 21:39 - 2015-09-17 06:51 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-10-01 21:39 - 2015-09-17 06:49 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 21:39 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 21:39 - 2015-09-17 06:49 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 21:39 - 2015-09-17 06:48 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 21:39 - 2015-09-17 06:48 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 21:39 - 2015-09-17 06:48 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 21:39 - 2015-09-17 06:47 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 21:39 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 21:39 - 2015-09-17 06:46 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 21:39 - 2015-09-17 06:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 21:39 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 21:39 - 2015-09-17 06:45 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 21:39 - 2015-09-17 06:45 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 21:39 - 2015-09-17 06:45 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 21:39 - 2015-09-17 06:45 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 21:39 - 2015-09-17 06:45 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 21:39 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 21:39 - 2015-09-17 06:43 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 21:39 - 2015-09-17 06:42 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 21:39 - 2015-09-17 06:41 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 21:39 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 21:39 - 2015-09-17 06:41 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 21:39 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 21:39 - 2015-09-17 06:40 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 21:39 - 2015-09-17 06:40 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 21:39 - 2015-09-17 06:40 - 00351744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 21:39 - 2015-09-17 06:40 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 01829376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-10-01 21:39 - 2015-09-17 06:39 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-10-01 21:39 - 2015-09-17 06:39 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-10-01 21:39 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 00926720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 21:39 - 2015-09-17 06:36 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 21:39 - 2015-09-17 06:35 - 01762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-10-01 21:39 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 21:39 - 2015-09-17 06:35 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-01 21:39 - 2015-09-17 06:34 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-10-01 21:39 - 2015-09-17 06:34 - 00350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 21:39 - 2015-09-17 06:34 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 21:39 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 21:39 - 2015-09-17 06:34 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-10-01 21:39 - 2015-09-17 06:34 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-10-01 21:39 - 2015-09-17 06:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-01 21:39 - 2015-09-17 06:33 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 21:39 - 2015-09-17 06:33 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 21:39 - 2015-09-17 06:32 - 00989696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 21:39 - 2015-09-17 06:32 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-01 21:39 - 2015-09-17 06:32 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-10-01 21:39 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 21:39 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 21:39 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 21:39 - 2015-09-17 06:31 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 21:39 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 21:39 - 2015-09-17 06:30 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 21:39 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 21:39 - 2015-09-17 06:30 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 21:39 - 2015-09-17 06:30 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-10-01 21:39 - 2015-09-17 06:30 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 21:39 - 2015-09-17 06:30 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 21:39 - 2015-09-17 06:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 21:39 - 2015-09-17 06:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 21:39 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 21:39 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 21:39 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 21:39 - 2015-09-17 06:29 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-01 21:39 - 2015-09-17 06:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 21:39 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-01 21:39 - 2015-09-17 06:28 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-01 21:39 - 2015-09-17 06:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-10-01 21:39 - 2015-09-17 06:27 - 01380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 21:39 - 2015-09-17 06:27 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 21:39 - 2015-09-17 06:27 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-10-01 21:39 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 21:39 - 2015-09-13 02:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-09-29 10:11 - 2015-09-29 10:11 - 00148824 _____ C:\WINDOWS\Minidump\092915-25593-01.dmp
2015-09-29 10:04 - 2015-10-08 23:25 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-29 10:04 - 2015-09-29 10:05 - 00149160 _____ C:\WINDOWS\Minidump\092915-28078-01.dmp
2015-09-25 11:09 - 2015-10-06 12:09 - 00000000 ____D C:\Users\Gijawibj\Desktop\Wohnung
2015-09-22 17:47 - 2015-09-22 17:47 - 01055563 _____ C:\Users\Gijawibj\Documents\Fotorahmen.xcf
2015-09-20 18:14 - 2015-09-20 18:14 - 00000000 ____D C:\WINDOWS\Panther
2015-09-16 11:14 - 2015-09-16 11:14 - 00000000 ___RD C:\Users\Gijawibj\3D Objects

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-10-15 11:20 - 2015-08-19 08:39 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-15 10:57 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-15 10:39 - 2014-02-25 11:38 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-15 09:44 - 2015-01-07 18:45 - 00000408 _____ C:\WINDOWS\Tasks\update-S-1-5-21-106535256-555546410-135984801-1001.job
2015-10-15 09:40 - 2014-05-21 22:48 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-10-15 09:39 - 2014-05-21 22:48 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-10-15 09:39 - 2014-05-21 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-10-15 09:39 - 2014-05-21 22:48 - 00000000 ____D C:\Program Files\ Malwarebytes Anti-Malware 
2015-10-15 09:35 - 2013-09-20 21:23 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-15 08:28 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-10-15 07:57 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-14 18:04 - 2015-03-12 23:31 - 00000000 ____D C:\Users\Gijawibj\AppData\Local\Spotify
2015-10-14 17:56 - 2015-08-19 09:11 - 00000000 ____D C:\Users\Gijawibj\Desktop\Desktop_aufräumen_20150818
2015-10-14 17:53 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-10-14 17:51 - 2015-03-12 23:23 - 00000000 ____D C:\Users\Gijawibj\AppData\Roaming\Spotify
2015-10-14 15:33 - 2015-01-07 18:45 - 00000408 _____ C:\WINDOWS\Tasks\update-sys.job
2015-10-14 13:22 - 2015-09-09 12:22 - 00000000 ____D C:\Users\Gijawibj\Documents\Banking
2015-10-14 12:59 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-13 09:54 - 2013-12-11 22:54 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-13 09:27 - 2015-07-10 10:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-13 09:26 - 2015-07-10 07:59 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-13 08:21 - 2015-08-26 11:11 - 00004857 _____ C:\WINDOWS\setupact.log
2015-10-08 23:25 - 2015-08-19 08:17 - 00046502 _____ C:\WINDOWS\PFRO.log
2015-10-08 23:25 - 2013-09-20 21:35 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-06 22:58 - 2015-09-09 10:17 - 00000000 ____D C:\Users\Gijawibj\Desktop\Einladung_Tobi_201508
2015-10-06 18:01 - 2015-08-19 08:24 - 00000000 ____D C:\Users\Gijawibj
2015-10-05 09:50 - 2014-05-21 22:48 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-10-05 09:50 - 2014-05-21 22:48 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-10-05 09:50 - 2014-05-21 22:48 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-10-03 13:00 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\rescache
2015-10-02 19:03 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-02 19:03 - 2015-07-10 09:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-02 19:03 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-02 19:03 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-02 19:03 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-02 19:02 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-02 19:02 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-02 19:02 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-10-02 16:28 - 2014-05-12 16:47 - 00000000 ____D C:\Users\Gijawibj\AppData\Roaming\vlc
2015-10-02 12:29 - 2015-07-10 09:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-02 09:44 - 2015-01-07 18:45 - 00000412 _____ C:\Users\Gijawibj\AppData\Local\UserProducts.xml
2015-10-02 09:16 - 2014-07-04 12:36 - 00000000 ____D C:\Users\Gijawibj\.gimp-2.8
2015-09-30 11:32 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-09-29 01:57 - 2015-07-16 09:05 - 00000000 ____D C:\Users\Gijawibj\AppData\Local\Audible
2015-09-28 12:43 - 2014-07-11 00:33 - 00000000 ____D C:\Users\Gijawibj\AppData\Local\gtk-2.0
2015-09-28 10:37 - 2015-09-09 10:17 - 00000000 ____D C:\Users\Gijawibj\Desktop\Mühle
2015-09-23 22:09 - 2013-09-20 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-23 22:07 - 2013-09-20 22:07 - 00105352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-09-23 22:07 - 2013-09-20 22:07 - 00055912 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-09-22 11:21 - 2015-01-09 17:16 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-09-16 19:13 - 2015-08-19 09:00 - 00002359 _____ C:\Users\Gijawibj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-16 19:13 - 2014-05-05 20:45 - 00000000 __RDO C:\Users\Gijawibj\OneDrive
2015-09-15 17:12 - 2015-07-10 09:29 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-09-15 17:12 - 2015-07-10 09:29 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-05-23 11:22 - 2014-05-23 11:22 - 0000268 ___RH () C:\Users\Gijawibj\AppData\Roaming\Image Manipulation
2014-05-23 11:24 - 2014-05-23 11:24 - 0000268 ___RH () C:\Users\Gijawibj\AppData\Roaming\Images
2014-05-23 11:35 - 2014-05-23 11:35 - 0000268 ___RH () C:\Users\Gijawibj\AppData\Roaming\Resources
2014-05-23 11:35 - 2014-05-23 11:35 - 0000268 ___RH () C:\Users\Gijawibj\AppData\Roaming\Reverb
2013-09-20 21:57 - 2013-09-20 21:57 - 0000000 _____ () C:\Users\Gijawibj\AppData\Local\AtStart.txt
2013-09-20 21:57 - 2013-09-20 21:57 - 0000000 _____ () C:\Users\Gijawibj\AppData\Local\DSwitch.txt
2013-09-20 21:57 - 2013-09-20 21:57 - 0000000 _____ () C:\Users\Gijawibj\AppData\Local\QSwitch.txt
2015-10-02 16:28 - 2015-10-02 16:28 - 0015335 _____ () C:\Users\Gijawibj\AppData\Local\recently-used.xbel
2015-01-07 18:45 - 2015-01-07 18:45 - 0000003 _____ () C:\Users\Gijawibj\AppData\Local\updater.log
2015-01-07 18:45 - 2015-10-02 09:44 - 0000412 _____ () C:\Users\Gijawibj\AppData\Local\UserProducts.xml
2014-05-23 11:22 - 2014-05-23 11:22 - 0000268 ___RH () C:\ProgramData\InkjetPrinter
2014-05-23 11:24 - 2014-05-23 11:24 - 0000268 ___RH () C:\ProgramData\Instrument Library
2014-05-23 11:22 - 2014-05-23 11:22 - 0000012 ___RH () C:\ProgramData\Jazz
2014-05-23 11:24 - 2014-05-23 11:24 - 0000012 ___RH () C:\ProgramData\Keyboard Layouts
2014-05-23 11:32 - 2014-12-04 14:20 - 0000020 ____H () C:\ProgramData\PKP_DLbx.DAT
2014-05-23 11:35 - 2014-05-23 11:35 - 0000020 ____H () C:\ProgramData\PKP_DLck.DAT
2014-05-23 11:22 - 2014-10-15 23:34 - 0000020 ____H () C:\ProgramData\PKP_DLdu.DAT
2014-05-23 11:24 - 2014-12-09 18:04 - 0000020 ____H () C:\ProgramData\PKP_DLdw.DAT
2014-05-23 11:35 - 2014-05-23 11:35 - 0000268 ___RH () C:\ProgramData\Rock Kit
2014-05-23 11:35 - 2014-05-23 11:35 - 0000268 ___RH () C:\ProgramData\Rule Actions

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Gijawibj\AirDroid_Desktop_Client_3.2.0.exe


Einige Dateien in TEMP:
====================
C:\Users\Gijawibj\AppData\Local\Temp\avgnt.exe
C:\Users\Gijawibj\AppData\Local\Temp\BSvcProcessor.exe
C:\Users\Gijawibj\AppData\Local\Temp\BSvcUpdater.exe
C:\Users\Gijawibj\AppData\Local\Temp\DefaultPack.EXE


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-10-13 09:49

==================== Ende vom FRST.txt ============================
         
Addition.txt

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:14-10-2015 01
durchgeführt von Gijawibj (2015-10-15 11:21:46)
Gestartet von C:\Users\Gijawibj\Desktop
Microsoft Windows 10 Pro (X86) (2015-08-19 07:54:24)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-106535256-555546410-135984801-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-106535256-555546410-135984801-503 - Limited - Disabled)
Gast (S-1-5-21-106535256-555546410-135984801-501 - Limited - Disabled)
Gijawibj (S-1-5-21-106535256-555546410-135984801-1001 - Administrator - Enabled) => C:\Users\Gijawibj

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
AirDroid 3.2.0.0 (HKLM\...\AirDroid) (Version: 3.2.0.0 - Sand Studio)
Amazon Kindle (HKU\S-1-5-21-106535256-555546410-135984801-1001\...\Amazon Kindle) (Version:  - Amazon)
Amazon Kindle (HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Amazon Kindle) (Version:  - Amazon)
AudibleManager (HKLM\...\AudibleManager) (Version: 21168816.1310076.4759644.48 - Audible, Inc.)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.13.202 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM\...\{315dd168-0794-4cf1-8355-f195cde642fc}) (Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG)
Avira Launcher (Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG) Hidden
Avira SearchFree Toolbar (HKLM\...\{41564952-412D-5637-00A7-A758B70C2300}) (Version: 12.35.0.2418 - APN, LLC)
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
Brother MFL-Pro Suite MFC-J5910DW (HKLM\...\{830F55B6-4398-4B72-A0D8-66397B902C0E}) (Version: 1.1.1.0 - Brother Industries, Ltd.)
calibre (HKLM\...\{8DE7A656-A244-47C6-BB05-D412820FDA3C}) (Version: 0.8.48 - Kovid Goyal)
Capture NX 2 (HKLM\...\Capture NX 2) (Version: 2.0.0 - NIKON CORPORATION)
Capture NX-D (HKLM\...\{FBA8B592-5053-4F25-8333-5F42940E1BC1}) (Version: 1.2.1 - Nikon Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON XP-600 Series Printer Uninstall (HKLM\...\EPSON XP-600 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
HP 3D DriveGuard (HKLM\...\{2DEDBE5B-D538-43F3-83A7-B037D6B51A89}) (Version: 4.2.8.1 - Hewlett-Packard Company)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.17.1 - Hewlett-Packard Company)
Inkscape 0.48.4 (HKLM\...\Inkscape) (Version: 0.48.4 - )
Intel(R) Management Engine Interface (HKLM\...\HECI) (Version:  - Intel Corporation)
Intel® Active-Management-Technologie (HKLM\...\MESOL) (Version:  - Intel Corporation)
Lightshot-5.3.0.0 (HKLM\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
LightZone 4.0.0 (HKLM\...\3263-1164-2624-0047) (Version: 4.0.0 - LightZone Project)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Mein CEWE FOTOBUCH (HKLM\...\Mein CEWE FOTOBUCH) (Version: 6.0.3 - CEWE Stiftung u Co. KGaA)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4753.1003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 41.0.1 (x86 de) (HKLM\...\Mozilla Firefox 41.0.1 (x86 de)) (Version: 41.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 de) (HKLM\...\Mozilla Thunderbird 38.3.0 (x86 de)) (Version: 38.3.0 - Mozilla)
MyFreeCodec (HKU\S-1-5-21-106535256-555546410-135984801-1001\...\MyFreeCodec) (Version:  - )
MyFreeCodec (HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MyFreeCodec) (Version:  - )
Nikon Message Center (HKLM\...\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}) (Version: 0.92.000 - Nikon)
Nikon Message Center 2 (HKLM\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
Nikon RAW Codec (HKLM\...\{C8616041-2802-4DE2-B3BD-6285AAD65C2A}) (Version: 1.00.0000 - Nikon)
Nikon Transfer (HKLM\...\{E9757890-7EC5-46C8-99AB-B00F07B6525C}) (Version: 1.1.1 - Nikon)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
Office-Bibliothek (HKLM\...\{5C81B189-5456-40C4-9313-7FE6FA6DD64C}) (Version: 5.00.4 - Bibliographisches Institut & F.A. Brockhaus AG)
OnlineFotoservice (HKLM\...\OnlineFotoservice) (Version: 6.0.4 - CEWE Stiftung u Co. KGaA)
OpenOffice 4.1.0 (HKLM\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
PDF Architect 2 (HKLM\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF24 Creator 6.9.2 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
Picture Control Utility (HKLM\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.1.2 - Nikon)
Picture Control Utility 2 (HKLM\...\{4946D03F-421F-480D-96C9-D6CF90640D33}) (Version: 2.1.1 - Nikon Corporation)
QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden
QuickTime (HKLM\...\{E0D51394-1D45-460A-B62D-383BC4F8B335}) (Version: 7.3.1.70 - Apple Inc.)
RICOH Media Driver (HKLM\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.10.00.04 - RICOH)
Scribus 1.4.4 (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.7255 - Analog Devices)
Spotify (HKU\S-1-5-21-106535256-555546410-135984801-1001\...\Spotify) (Version: 1.0.15.133.gf21970bd - Spotify AB)
Spotify (HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Spotify) (Version: 1.0.15.133.gf21970bd - Spotify AB)
Steganos Online Shield (HKLM\...\{896614ED-00BD-4E0C-99AB-01C76EE416D9}) (Version: 1.4.16 - Steganos Software GmbH)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
TreeSize Free V3.3.2 (HKLM\...\TreeSize Free_is1) (Version: 3.3.2 - JAM Software)
ViewNX (HKLM\...\{F007CBCE-D714-4C0B-8CE9-9B0D78116468}) (Version: 1.1.1 - Nikon)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Windows-Treiberpaket - AuthenTec Inc. (ATSwpWDF) Biometric  (07/07/2009 8.0.200.42) (HKLM\...\DCBFB48CDDD5008BA02BACF95FA6F00A2C409635) (Version: 07/07/2009 8.0.200.42 - AuthenTec Inc.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 07:13 - 2013-08-22 07:13 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {04F57810-0CC6-4ED5-A8BC-131BB0D9FD9B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {1EF7232B-F129-4D40-A79B-E9D3218BBBF8} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {223659CF-FD50-4501-8E03-936F3832367A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {28342550-DD4C-4D93-84F9-6717B0D16D0B} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-09-12] (Microsoft Corporation)
Task: {2B03FE8D-C173-477A-A671-10F4FAB2C4B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-09-11] (Microsoft Corporation)
Task: {30A61F8E-D117-4047-AEA5-A75C60B115EA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {41ED7345-C877-4374-91F6-AF4E3E1F3D1A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {4C89CAA1-F3E1-47BD-8CC2-517F61C37CA8} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {5C946828-F116-44D3-80FA-0D2109CC0B6A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {5E890A40-33E9-4753-B1AB-D63DCF09CB12} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-09-11] (Microsoft Corporation)
Task: {76DB55AD-D43C-4F88-BFE0-786DD94E8D55} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {8F3BEA0C-57F3-42EC-8126-64A82C8570C7} - System32\Tasks\update-sys => C:\Program Files\Skillbrains\Updater\Updater.exe [2014-03-25] ()
Task: {A293E88C-6EFC-40CA-B7A0-46B89FDDB25D} - System32\Tasks\update-S-1-5-21-106535256-555546410-135984801-1001 => C:\Program Files\Skillbrains\Updater\Updater.exe [2014-03-25] ()
Task: {C0779EC7-6314-4D9F-B329-DCD2BFBE0E12} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {D1E748EE-0BAF-41E9-9CDE-02895D5D5734} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {E333928E-2658-40BD-989A-694CA369F642} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {E4FA1FD4-95CD-4344-9C30-91A70BF4A01E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-21] (Adobe Systems Incorporated)
Task: {EBA1D964-AF7C-473E-A548-71061E4D1248} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {FF539A2A-17A6-46FF-9D6A-23A441CF9E4D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-106535256-555546410-135984801-1001.job => C:\Program Files\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files\Skillbrains\Updater\Updater.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-19 08:12 - 2015-08-19 08:12 - 00025088 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-01-09 17:16 - 2014-05-20 03:11 - 00080040 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2015-08-19 08:12 - 2015-08-19 08:12 - 00301056 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2013-10-04 10:20 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2015-10-01 21:40 - 2015-09-17 07:27 - 01766952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 21:40 - 2015-09-17 07:27 - 01766952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 09:24 - 2015-07-10 09:24 - 00288768 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-01 21:40 - 2015-09-17 06:28 - 04317696 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 21:39 - 2015-09-17 06:25 - 00377856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 21:39 - 2015-09-17 06:25 - 01183232 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 21:40 - 2015-09-17 06:26 - 01425920 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 09:25 - 2015-07-10 14:16 - 00107520 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-10-03 11:11 - 2015-10-03 11:12 - 00012800 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-10-03 11:11 - 2015-10-03 11:12 - 08771072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1001.16470.0_x86__8wekyb3d8bbwe\Microsoft.Photos.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Gijawibj\OneDrive:ms-properties

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-106535256-555546410-135984801-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gijawibj\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Gijawibj\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\StartupFolder: => "Nikon Monitor.lnk"
HKLM\...\StartupApproved\Run: => "mobilegeni daemon"
HKLM\...\StartupApproved\Run: => "BrStsMon00"
HKLM\...\StartupApproved\Run: => "QuickTime Task"
HKLM\...\StartupApproved\Run: => "Nikon Message Center 2"
HKLM\...\StartupApproved\Run: => "PDFPrint"
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000001"
HKU\S-1-5-21-106535256-555546410-135984801-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "EPLTarget\P0000000000000001"
HKU\S-1-5-21-106535256-555546410-135984801-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "BingSvc"

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{EC3FC4A3-A705-46CA-BBA4-11161E1E964E}] => (Allow) C:\Windows\System32\muzapp.exe
FirewallRules: [{E848F465-36EA-49CA-81BD-2ACC68639B82}] => (Allow) C:\Windows\System32\muzapp.exe
FirewallRules: [UDP Query User{FDA3F8A2-65CC-42FA-BBEE-42B102071D64}C:\users\gijawibj\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gijawibj\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F1793258-2946-4152-9B6D-4A7F9585D4EE}C:\users\gijawibj\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gijawibj\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{D049EF30-9A08-40E2-9B87-5F7BBE040092}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{DFF1D5B9-24EC-45E0-B7B8-6B80C5070222}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{158C3749-21EC-4593-A106-B6F121EB8589}C:\users\gijawibj\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gijawibj\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F9823E2B-8C16-414D-8945-AAFCA68FC599}C:\users\gijawibj\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gijawibj\appdata\roaming\spotify\spotify.exe
FirewallRules: [{2A58CF9A-ABD9-4EE0-AD3E-0CDB71300A2D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{8F32F702-0717-47FF-A7C6-B878762C2B62}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{B2AF6A3A-7190-414A-961E-A5EA09D900A9}] => (Allow) C:\Users\Gijawibj\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{24267B08-7BEB-46F0-A318-9ADA613CB546}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{6BB6EAF0-1C7C-49F1-8BA3-6C369EEA8401}] => (Allow) C:\ProgramData\eSafe\eGdpSvc.exe
FirewallRules: [{4AD3BBF4-8D5F-49CC-B570-E57007BA3350}] => (Allow) LPort=54925
FirewallRules: [{5078F279-C18E-4666-ACAB-7CD050E7310D}] => (Allow) C:\Program Files\Brother\Brmfl11b\FAXRX.exe
FirewallRules: [{A30A6D99-909A-4575-BC65-DAF478209965}] => (Allow) C:\Program Files\Brother\Brmfl11b\FAXRX.exe
FirewallRules: [TCP Query User{7C5F6F62-BF64-403C-AD92-B1D432768DAC}C:\program files\airdroid\airdroid.exe] => (Allow) C:\program files\airdroid\airdroid.exe
FirewallRules: [UDP Query User{51389EB5-CB5C-4A30-BC52-75CF18767DA6}C:\program files\airdroid\airdroid.exe] => (Allow) C:\program files\airdroid\airdroid.exe
FirewallRules: [{CFAB8791-FB73-4FA0-946B-0CA8D1D319D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{ED117823-AA90-459C-AC76-679676B70E30}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FDEBCBF4-31BC-4E86-98D3-3836D2097521}] => (Block) C:\program files\airdroid\airdroid.exe
FirewallRules: [{85CB6CD0-4844-4C0B-8E7C-AC926370A7F2}] => (Block) C:\program files\airdroid\airdroid.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/15/2015 11:13:48 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6268) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (10/15/2015 11:13:48 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6268) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (10/15/2015 11:13:37 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6268) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (10/15/2015 11:13:37 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6268) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (10/15/2015 11:13:27 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6268) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (10/15/2015 11:13:27 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6268) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (10/15/2015 11:13:17 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6268) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (10/15/2015 11:13:17 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6268) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (10/15/2015 11:13:06 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6268) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (10/15/2015 11:13:06 AM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6268) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.


Systemfehler:
=============
Error: (10/15/2015 08:14:12 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6}

Error: (10/15/2015 07:57:56 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (10/15/2015 07:54:21 AM) (Source: pcmcia) (EventID: 9) (User: )
Description: Der PCMCIA-Controller hat einen Fehler bei Inbetriebnahme des eingeschobenen Geräts festgestellt.

Error: (10/14/2015 09:38:09 PM) (Source: DCOM) (EventID: 10010) (User: GIJAWIBJJAHA)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca

Error: (10/14/2015 09:38:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session6" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/14/2015 09:38:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session6" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/14/2015 09:38:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session6" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/14/2015 09:38:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session6" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/14/2015 09:36:47 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (10/14/2015 09:33:32 PM) (Source: pcmcia) (EventID: 9) (User: )
Description: Der PCMCIA-Controller hat einen Fehler bei Inbetriebnahme des eingeschobenen Geräts festgestellt.


CodeIntegrity:
===================================
  Date: 2015-08-26 11:20:52.388
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:20:35.798
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:18:49.208
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:18:47.679
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:18:47.476
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:18:46.011
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:18:41.961
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:18:41.666
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:18:33.910
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-26 11:18:32.507
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz
Prozentuale Nutzung des RAM: 46%
Installierter physikalischer RAM: 3036.26 MB
Verfügbarer physikalischer RAM: 1612.26 MB
Summe virtueller Speicher: 4892.26 MB
Verfügbarer virtueller Speicher: 2853.56 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:49.66 GB) (Free:11.39 GB) NTFS
Drive d: () (Fixed) (Total:49.32 GB) (Free:43.16 GB) NTFS
Drive e: () (Fixed) (Total:49.73 GB) (Free:15.93 GB) NTFS
Drive g: () (Removable) (Total:3.69 GB) (Free:1.2 GB) FAT32
Drive h: (TRANSCEND_S) (Removable) (Total:3.74 GB) (Free:0.27 GB) FAT32
Drive i: (Transcend) (Removable) (Total:3.76 GB) (Free:0.11 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 27382F1B)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=49.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=49.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=49.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 2 (Size: 3.7 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 3 (MBR Code: Windows XP) (Size: 3.8 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=3.8 GB) - (Type=0C)

==================== Ende vom Addition.txt ============================
         
__________________

Alt 16.10.2015, 19:29   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



hi,


Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 18.10.2015, 00:56   #5
Kängua
 
Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

mbar log



Hallo,

vielen Dank für die bisherige Hilfe. Hier kommen die Ergebnisse der weiteren Scans.

zunächst mbar-log

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2015.10.17.05
  rootkit: v2015.10.16.01

Windows 10 x86 NTFS
Internet Explorer 11.0.10240.16431
Gijawibj :: GIJAWIBJJAHA [administrator]

17.10.2015 23:29:35
mbar-log-2015-10-17 (23-29-35).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 340867
Time elapsed: 23 minute(s), 51 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         

Das Log-file aus dem Scan mit dem TDSS hat zu viele Zeichen für die Eingabe in dieses Fenster. An welchen Stellen könnte ich es passend kürzen, was ist relevant?
Danke schon einmal für die weitere Unterstützung!


Geändert von Kängua (18.10.2015 um 01:02 Uhr)

Alt 18.10.2015, 20:29   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



Einfach aufteilen und mehrere Posts benutzen
__________________
--> Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt

Alt 19.10.2015, 10:17   #7
Kängua
 
Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



Hahaa, ja manchmal kann es so einfach sein
Dann folgt also hier die erste Hälfte:

Code:
ATTFilter
 00:38:35.0464 0x1acc  TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
00:39:00.0179 0x1acc  ============================================================
00:39:00.0179 0x1acc  Current date / time: 2015/10/18 00:39:00.0179
00:39:00.0179 0x1acc  SystemInfo:
00:39:00.0180 0x1acc  
00:39:00.0180 0x1acc  OS Version: 10.0.10240 ServicePack: 0.0
00:39:00.0180 0x1acc  Product type: Workstation
00:39:00.0180 0x1acc  ComputerName: GIJAWIBJJAHA
00:39:00.0180 0x1acc  UserName: Gijawibj
00:39:00.0180 0x1acc  Windows directory: C:\WINDOWS
00:39:00.0180 0x1acc  System windows directory: C:\WINDOWS
00:39:00.0180 0x1acc  Processor architecture: Intel x86
00:39:00.0180 0x1acc  Number of processors: 2
00:39:00.0180 0x1acc  Page size: 0x1000
00:39:00.0180 0x1acc  Boot type: Normal boot
00:39:00.0180 0x1acc  ============================================================
00:39:00.0831 0x1acc  KLMD registered as C:\WINDOWS\system32\drivers\74917775.sys
00:39:01.0052 0x1acc  System UUID: {FCA26825-0E70-F096-578E-AF4680CC771C}
00:39:01.0717 0x1acc  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
00:39:01.0720 0x1acc  ============================================================
00:39:01.0720 0x1acc  \Device\Harddisk0\DR0:
00:39:01.0720 0x1acc  MBR partitions:
00:39:01.0720 0x1acc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAF000
00:39:01.0720 0x1acc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xAF800, BlocksNum 0x6351000
00:39:01.0720 0x1acc  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x6400800, BlocksNum 0x62A2000
00:39:01.0720 0x1acc  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0xC6A2800, BlocksNum 0x6376800
00:39:01.0720 0x1acc  ============================================================
00:39:01.0747 0x1acc  C: <-> \Device\Harddisk0\DR0\Partition2
00:39:01.0784 0x1acc  D: <-> \Device\Harddisk0\DR0\Partition3
00:39:01.0828 0x1acc  E: <-> \Device\Harddisk0\DR0\Partition4
00:39:01.0829 0x1acc  ============================================================
00:39:01.0829 0x1acc  Initialize success
00:39:01.0829 0x1acc  ============================================================
00:39:39.0235 0x1c9c  ============================================================
00:39:39.0235 0x1c9c  Scan started
00:39:39.0235 0x1c9c  Mode: Manual; SigCheck; TDLFS; 
00:39:39.0235 0x1c9c  ============================================================
00:39:39.0235 0x1c9c  KSN ping started
00:39:41.0654 0x1c9c  KSN ping finished: true
00:39:45.0856 0x1c9c  ================ Scan system memory ========================
00:39:45.0856 0x1c9c  System memory - ok
00:39:45.0857 0x1c9c  ================ Scan services =============================
00:39:46.0007 0x1c9c  [ 63A06C53C93C8A4FD6968493A0E05074, DA9E329D5A4165EACFCE6F691A4B05850F07EC2749B046ED03FEA9A9138AD9D5 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
00:39:46.0183 0x1c9c  1394ohci - ok
00:39:46.0229 0x1c9c  [ C256891FD1CDEE3D93E6D11B9CC72689, 5800C1F2CB659E03A6918EA0F6FD1BD52AED36737D40CBD112596AD5CC8179B6 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
00:39:46.0245 0x1c9c  3ware - ok
00:39:46.0275 0x1c9c  [ BFE8065D3658CD9EC4343A224A7E8DE9, 4D5762E9D2B39AD815F0E3968D90DCA299E865BB1972DA2ECCDCC8190DE0551A ] Accelerometer   C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
00:39:46.0285 0x1c9c  Accelerometer - ok
00:39:46.0332 0x1c9c  [ E317C0D26A28068EC8A2A700A294AD27, FFE5E28E7A3E9B90DA2F1A1A2D61D306DA04A418B00D70EAC4A976EFD815BF94 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
00:39:46.0375 0x1c9c  ACPI - ok
00:39:46.0389 0x1c9c  [ CB11301891F7209A4B86867100E952AF, AC483B5EF4F5F80BE9BF197F0EF4EF25CFC21C0070918488077F1404D4412780 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
00:39:46.0407 0x1c9c  acpiex - ok
00:39:46.0423 0x1c9c  [ D0439B954A4FB070BCAE7DFF24083CF1, D81AF79C7E26D696995950F146B1142063379D3A0232DDF58125D0B96044FB5A ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
00:39:46.0450 0x1c9c  acpipagr - ok
00:39:46.0473 0x1c9c  [ 2889A253BA560DFC1218210855105BB9, 066C92A94A1597109669787E886478959696269BBDA15A8F5F7D684E3824BF92 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
00:39:46.0525 0x1c9c  AcpiPmi - ok
00:39:46.0539 0x1c9c  [ 1B0DE42B87C771192C634B1540AB21ED, 5B879A820F5467F9C039D4BC6DB6B322CCF307A4F950FAAEBF37106E4832D6CB ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
00:39:46.0569 0x1c9c  acpitime - ok
00:39:46.0606 0x1c9c  [ 6C61BCEB60C2C187E6F96001FD69493E, AB8752E7DCCE134CA63D2E660D3E2688086426167B9E8E2C24E0D45B87497774 ] ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys
00:39:46.0720 0x1c9c  ADIHdAudAddService - ok
00:39:46.0851 0x1c9c  [ F6CEFEF46986DE02A3AE5D93AE32B5DC, 903EC5A7B40F4F6B2F3378EFFE8DF28667B88061CDF681C44F2E4FE39B62959E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
00:39:46.0875 0x1c9c  AdobeARMservice - ok
00:39:46.0936 0x1c9c  [ 8C194A201698B4B4F77D974549819D1F, 081A2496FE1CE519E48677D99A831FF1FEEB1B33C75224CF288FA52F3E0E5FF0 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
00:39:46.0956 0x1c9c  AdobeFlashPlayerUpdateSvc - ok
00:39:47.0030 0x1c9c  [ 4160AE2B33A67F5EB739813548A440B3, A66814A0674ABFF2A54EB0A181CB2BC847785C0ED5CA208138A744F7954EE1E7 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
00:39:47.0087 0x1c9c  ADP80XX - ok
00:39:47.0132 0x1c9c  [ 4DC6B0772D1698F04FC79053A21C8260, 010D4660DB9F7BC49C72691B5D9936EAB6F4A0799374B4019B97343B517D86F4 ] AEADIFilters    C:\WINDOWS\system32\AEADISRV.EXE
00:39:47.0168 0x1c9c  AEADIFilters - ok
00:39:47.0204 0x1c9c  [ C5E1DEF4FE031F6CD59AF5E46165F5A8, 9008E7CA45E20D58B956C8FFE5C430C61753CF5C3681233EA06B456AE5F57A14 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
00:39:47.0241 0x1c9c  AFD - ok
00:39:47.0253 0x1c9c  [ 48091A2374A69F473273C44951195452, 95887C5965ACD475891E2F241E59BDD98E1B5C0BDAD425F5BC7C9E4DB375B57B ] AgereModemAudio C:\Program Files\LSI SoftModem\agrsmsvc.exe
00:39:47.0265 0x1c9c  AgereModemAudio - ok
00:39:47.0314 0x1c9c  [ C6FA08A8CCA9001F3197525B07331715, F491CE43919BE368394EEB03D38AAE929AEA81B68D298E90B9C2D7331ACBAE1F ] AgereSoftModem  C:\WINDOWS\system32\DRIVERS\AGRSM.sys
00:39:47.0446 0x1c9c  AgereSoftModem - ok
00:39:47.0466 0x1c9c  [ 12F81E2BB50B973FE0A6A9C2B7D6A5AA, 42FB1FF54EAB8DCAC83FF88C1FF194BABDC4EF6466BDA2F1BEAA6A76148E5062 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
00:39:47.0479 0x1c9c  agp440 - ok
00:39:47.0513 0x1c9c  [ 26BED4D2B37B9F2FF5440F128494B52B, 250BC5E1CF85B382214E87B727CB7F32635D508504F4E3C906B49A2FABEFA122 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
00:39:47.0611 0x1c9c  ahcache - ok
00:39:47.0643 0x1c9c  [ 574491668063D2E00B240716D3969D32, 2CBDFAF7F5DD24322B581281B28A17687ABF47C01CB47A480CFD15F6BD1001B3 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
00:39:47.0758 0x1c9c  AJRouter - ok
00:39:47.0793 0x1c9c  [ 99312B8AF27B8F5DC0FA28DA1343D21C, 1F9440A545BDEC75DC7E4405A87CA6E02322CB7692D6663549335CBD23451FA8 ] ALG             C:\WINDOWS\System32\alg.exe
00:39:47.0842 0x1c9c  ALG - ok
00:39:47.0881 0x1c9c  [ C4C9E443A1DA348FFC319826DAF3766A, 03A33E3C4E083631AFC1DE47677F24F11300E234429895923AE111E3C3F83944 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
00:39:47.0953 0x1c9c  AMD External Events Utility - ok
00:39:47.0959 0x1c9c  [ 4AF999DEBD33825C0C874579B2D9C047, FF31FA529F21972A3A0790D7B607DEFFFFB0021591DA02A5D536CBE14EBBECE9 ] amdagp          C:\WINDOWS\system32\drivers\amdagp.sys
00:39:47.0973 0x1c9c  amdagp - ok
00:39:47.0990 0x1c9c  [ 999E1F3B138D019AF7277600D9F88B84, 1EC98F3159E13E8F17CEB8BBECBBED443A9C832BBAA6F748142C9655E6F1190B ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
00:39:48.0049 0x1c9c  AmdK8 - ok
00:39:48.0372 0x1c9c  [ CE6803B7B9D92636450C29767C306547, 9F0310925B4EA9B5B341249265F9827234D012AD6F539006415E9721EDEAB3EE ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
00:39:48.0935 0x1c9c  amdkmdag - ok
00:39:48.0984 0x1c9c  [ F7AD18B148D5269B3CF757D8DEB57BEC, 5C04CBBA229F284E652C4E1BDD64BDCCFD4252B6E74321FF388DC4C87CD112BF ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
00:39:49.0046 0x1c9c  amdkmdap - ok
00:39:49.0066 0x1c9c  [ C5AC311EBE0FEF0181F4008221938268, 06932347879C4F92068DABF64689658FD9AE797D113738D94A33BE230C18CF24 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
00:39:49.0189 0x1c9c  AmdPPM - ok
00:39:49.0195 0x1c9c  [ 1C706AF31625788BE4EF3DC0B5BABB8B, C6ADD0B3E06E68427E4C755BEAB56C2EB92FDEC2825A57F2F0AEFD3D407D13DF ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
00:39:49.0210 0x1c9c  amdsata - ok
00:39:49.0229 0x1c9c  [ A480A330829ED2C1BFC6B7A472930148, 3621E43D227C8CBCCF6335951FA5ADBFA7AA3CF9F6A549E28055DC1D0477F22F ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
00:39:49.0249 0x1c9c  amdsbs - ok
00:39:49.0269 0x1c9c  [ 6EF0C23FD5DE0AAE11415AFE579D04AC, F1339B8703DE00EE299122546D262A4165FB64C2438DB7DB65BF7B29A591D039 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
00:39:49.0284 0x1c9c  amdxata - ok
00:39:49.0374 0x1c9c  [ 6B31C215750CD41567E962D22839EE44, FF0B92807296B88DE37F9F2EB27FF7B73AA998B98074AA54A949A2B79690AFE5 ] AntiVirMailService C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe
00:39:49.0447 0x1c9c  AntiVirMailService - ok
00:39:49.0485 0x1c9c  [ 18B0643B3B504E0FDCFCE0C8743B29C7, 1D4C004AD5066F52A4AA039F5364814F8F6B04EC1F704A5A3110172AD465661C ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
00:39:49.0503 0x1c9c  AntiVirSchedulerService - ok
00:39:49.0527 0x1c9c  [ 18B0643B3B504E0FDCFCE0C8743B29C7, 1D4C004AD5066F52A4AA039F5364814F8F6B04EC1F704A5A3110172AD465661C ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
00:39:49.0545 0x1c9c  AntiVirService - ok
00:39:49.0590 0x1c9c  [ D84E576299C73B0B1DC477D2B99958C4, D6703C2B63B9FA87C2DA009CC7B6DF76C3603C6A9874B152D685A1B92EE2DF28 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe
00:39:49.0647 0x1c9c  AntiVirWebService - ok
00:39:49.0669 0x1c9c  [ 1722E15AE69FD69624CF892A11BBD161, 8F7639F88CB905C66FFE49964F5252710857F7BD952C5FAA67D5216E5655FB87 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
00:39:49.0686 0x1c9c  AppID - ok
00:39:49.0716 0x1c9c  [ 7BDD0FE0162BD8C9DC6F9D952205173A, 73F2F5A2F5DBE54F81EDCB23EE800C5A204EF44D4ADA02F843468F8E61E15E8C ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
00:39:49.0785 0x1c9c  AppIDSvc - ok
00:39:49.0808 0x1c9c  [ 952E57FE5FF2DDC4876FC00263B7BBBC, 3D12B34E78D0E16754454E57F1B2D3535B7E640CA1EAA0728BBAD5BC0EB59FE2 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
00:39:49.0841 0x1c9c  Appinfo - ok
00:39:49.0866 0x1c9c  [ 66638D1635BE67F28D46A383DB91D138, 27B719AB09829912A9FAB4797029870BA32C17CCD2A224AFFAE9AFCB87CC69A6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
00:39:49.0963 0x1c9c  AppMgmt - ok
00:39:49.0998 0x1c9c  [ 836DF5502BEFCC333EC3D2018B008D71, 7FC09DBFE07F85BAD582C09370B105E6CC4C206ABBF1CB2C1FB66E51D673C3CB ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
00:39:50.0111 0x1c9c  AppReadiness - ok
00:39:50.0199 0x1c9c  [ 0A0D820251542F5AAD24F2FA3B066413, 2AC980BD1D841AEC8862AF5F87C4AEB19E805C0DB3916F69301B5FE20DA1298A ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
00:39:50.0337 0x1c9c  AppXSvc - ok
00:39:50.0377 0x1c9c  [ 1ABAA2570D404197D88A73EC667E9E44, 2F530BA8B931D0455FD4A9FE4F910BD5BE7AEEA3D7EBC8706C0491456C07E800 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
00:39:50.0394 0x1c9c  arcsas - ok
00:39:50.0409 0x1c9c  [ AE1F4DD4CB20A57A203D646F2063AEE6, C6277896DB9AFEA63DFDF6B739F42F99A9AE814E3DE8412125C6990DA0536B78 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
00:39:50.0469 0x1c9c  AsyncMac - ok
00:39:50.0484 0x1c9c  [ 8A2FA4E32D4949DA60D900BF495D5801, FEBB574A2FDAE076E195CF3D3141C2018BD8793E81441DB1AEA8EFAE96E9FF16 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
00:39:50.0496 0x1c9c  atapi - ok
00:39:50.0540 0x1c9c  [ 1EC637725AEBE586508626BA50AF3324, 8D3D873D96BAB9DA82AED3E898690BB03AD7E0108D45C3EB0B165BE52A0ADCE0 ] ATSwpWDF        C:\WINDOWS\System32\Drivers\ATSwpWDF.sys
00:39:50.0570 0x1c9c  ATSwpWDF - ok
00:39:50.0611 0x1c9c  [ 68EAE5F254763EF61973F88FE098EFE2, 6D4451E794D0DA28967CFBF2E3E2C250AC661513924D4FB2157EF0357F13C3FE ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
00:39:50.0704 0x1c9c  AudioEndpointBuilder - ok
00:39:50.0753 0x1c9c  [ 0EE44EDB1609B98B6D80ECCB49E6CFF8, 7D92B0CBA19D92ACF312B697DE8087907199812E3718F7BF6856DFD75F06C5FE ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
00:39:50.0834 0x1c9c  Audiosrv - ok
00:39:50.0865 0x1c9c  [ 0849B7F4F0022C484652F7FD0AC6D306, 5DD9F30D25C7A93079AE08394F6444A91E666B326C69A0DD53B6F3E572CB5D57 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
00:39:50.0875 0x1c9c  avgntflt - ok
00:39:50.0896 0x1c9c  [ 66A50B6D6BC19AC45111E9F797DFA7E7, 035888E8CD9172E3FE3160299611B3D08184942FE6C8F715002C74AB97373FF4 ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
00:39:50.0907 0x1c9c  avipbb - ok
00:39:50.0980 0x1c9c  [ 76648BCBEB840B391E85DAD2DC04FFC9, F30FC3CB49DE1B79E8EFA78ED4679E870ADD17B3101219A1EC2D18DDE7712F66 ] Avira.ServiceHost C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
00:39:50.0993 0x1c9c  Avira.ServiceHost - ok
00:39:51.0007 0x1c9c  [ F80F5DCA8A5D9D93CC5BE933D20CAF05, 2AFBB2D62127FACBCABBB3E78F3568A6BA016ED4A97A1490BAA29A1EFB7A4408 ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
00:39:51.0016 0x1c9c  avkmgr - ok
00:39:51.0040 0x1c9c  [ 1C9E00F08F5140DD4077CB7848B01865, 6719EFCA39B45C2AA55692617AC0E00CE60A6E5BA547AFB0ED1789C54195CCE3 ] avnetflt        C:\WINDOWS\system32\DRIVERS\avnetflt.sys
00:39:51.0049 0x1c9c  avnetflt - ok
00:39:51.0080 0x1c9c  [ E50AF8C139E3DD78A32A2ABF81AC4361, 69428434C83D5E12E3E1CC970D590F084E5832844C41812665C510A9F44DAA18 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
00:39:51.0120 0x1c9c  AxInstSV - ok
00:39:51.0158 0x1c9c  [ F9677B8B603E2BE3FCDF9F7F2A7DD95C, B25B6A33137B354A129F75822D54ABB492322767013A8EE46D29A925895375AB ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
00:39:51.0239 0x1c9c  BasicDisplay - ok
00:39:51.0257 0x1c9c  [ 1ED9A0349E1C823094B95F8E661A3625, E100E8B516EA546D70232DC41B2F4405C35191E37C5F401108ECF7C07E48009A ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
00:39:51.0287 0x1c9c  BasicRender - ok
00:39:51.0329 0x1c9c  [ 26BDCB083ED2E80345705A8373F625BD, 86D81E3488EB11B1F68617CECC7674EA188022418ED9EF5E4C8ED7734221B760 ] bcbtums         C:\WINDOWS\system32\drivers\bcbtums.sys
00:39:51.0343 0x1c9c  bcbtums - ok
00:39:51.0404 0x1c9c  [ A5EDA887E4FB33C677BAB0440B6D2DB0, F2D1E0E60FABD9D478DD27DF5C18218D9532C05D9DA686C475C8F7FFB9B6CD45 ] BcmBtRSupport   C:\WINDOWS\system32\BtwRSupportService.exe
00:39:51.0461 0x1c9c  BcmBtRSupport - ok
00:39:51.0480 0x1c9c  [ 011D1D21F350672017CC2D543C767F47, 757604B0844DDC909FD93452E19464F9BA6C4E4AB60E209F986FCC6B856C17CA ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
00:39:51.0487 0x1c9c  bcmfn2 - ok
00:39:51.0508 0x1c9c  [ 2AA0849314CC77F4477CA34B9F5C5E95, 1BCECC652AE645A2EE1C274B33EC13D5640A6D6FFEE4532C1BAF49E4BE608A3D ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
00:39:51.0582 0x1c9c  BDESVC - ok
00:39:51.0620 0x1c9c  [ A006F6C5E3E0AEAD49BEFFA005FFB0E1, 345F4B21AF42C3ACFA0FB2FC58D8CBE3345DC9F30C6199CCE8203B33D43C41E8 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
00:39:51.0661 0x1c9c  Beep - ok
00:39:51.0754 0x1c9c  [ 75648BC2C7308A0339EE1E34BB2B4769, 93312339FD3512BA72C8DD9E3F87CEE16760CDDEA38E077AA2FB12ED0761689B ] BFE             C:\WINDOWS\System32\bfe.dll
00:39:51.0839 0x1c9c  BFE - ok
00:39:51.0884 0x1c9c  [ 37EDAB4DA8FA705D7CD4DF59248017EA, 86804ECDB9A27943166ABA1868E31A8C8437B2ED241A4AF7D5E6955420434E8B ] BITS            C:\WINDOWS\System32\qmgr.dll
00:39:52.0025 0x1c9c  BITS - ok
00:39:52.0068 0x1c9c  [ 3F56903E124E820AEECE6D471583C6C1, B3C045AFACC8A8F5DC289ADE9ACFB2FE7F9CA24A900BBAED47E2A63837208CB3 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:39:52.0087 0x1c9c  Bonjour Service - ok
00:39:52.0097 0x1c9c  [ A21E89AC3D4E897673916CF8B1C97930, 8EED49D1B1BFCCE3C9E6CA1ABECD9FE97F710DFD25A6A6C20745EB4AA6264BEB ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
00:39:52.0203 0x1c9c  bowser - ok
00:39:52.0241 0x1c9c  [ A42D003DAC0F86135B8F17F76DA0954C, 70458328ADA9CA327B1CE1DCD743A61337C15536DACEED451D56756C85F7057B ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
00:39:52.0331 0x1c9c  BrokerInfrastructure - ok
00:39:52.0383 0x1c9c  [ 6008823D252C9CD3B52648350CFBBDF6, F9E1C36127FE99B4219C5045DF2C9D476F1FB15622D3157E07B46DC3E2E62579 ] Browser         C:\WINDOWS\System32\browser.dll
00:39:52.0458 0x1c9c  Browser - ok
00:39:52.0522 0x1c9c  [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc         C:\Program Files\Browny02\BrYNSvc.exe
00:39:52.0567 0x1c9c  BrYNSvc - detected UnsignedFile.Multi.Generic ( 1 )
00:39:53.0858 0x1970  Object required for P2P: [ 76648BCBEB840B391E85DAD2DC04FFC9 ] Avira.ServiceHost
00:39:54.0922 0x1c9c  Detect skipped due to KSN trusted
00:39:54.0923 0x1c9c  BrYNSvc - ok
00:39:55.0011 0x1c9c  [ CA8A823FF9ED4849B3F16290B796D57E, 8B877A1A39502DE5B573702E2D7B36E76C00451AF15498362FEB75BB271E96E6 ] BthA2DP         C:\WINDOWS\system32\drivers\BthA2DP.sys
00:39:55.0073 0x1c9c  BthA2DP - ok
00:39:55.0088 0x1c9c  [ 01D1A136424D9B8D7EB495442F657C09, A45F9378346D0D71AA33C8E662ECA6B60F4982D4DE509593FF5759B9B77CC95B ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
00:39:55.0121 0x1c9c  BthAvrcpTg - ok
00:39:55.0158 0x1c9c  [ 5CAFDDCFFC69258B208061DA9EF3CEA5, 765CA5E5FAA299F0FAEF59A93D0AA80CFB9B64281867A6BBD47CA841B261997A ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
00:39:55.0275 0x1c9c  BthEnum - ok
00:39:55.0296 0x1c9c  [ BC468B2178E87413E4373D97C4428391, 1235D998BEA749F31A253D6B93A189CA8865BF8EE82CCF31977DFE290B2DAD16 ] BthHFAud        C:\WINDOWS\system32\DRIVERS\BthHfAud.sys
00:39:55.0333 0x1c9c  BthHFAud - ok
00:39:55.0366 0x1c9c  [ 292C4AD954E9F4C4B5E6771E5514A6B8, 219CCF1B85265E881A9046E08F31E5EBD1F22035AD857F730321351DF71EE179 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
00:39:55.0395 0x1c9c  BthHFEnum - ok
00:39:55.0411 0x1c9c  [ 65C81F431EEFEDDAFD3FFB46DE20AB06, BAD4ECDF71109FF729CC893E2D0EDA7705153B4A036DC23BE2850C0FE0EC4326 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
00:39:55.0447 0x1c9c  bthhfhid - ok
00:39:55.0500 0x1c9c  [ E4B5CC64EC68A2DB10AB4CCF958F5C5E, 34E82877BF817888F71AA1E60ABE8839490EC93663129EB1A2E623F88300AF2B ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
00:39:55.0542 0x1c9c  BthHFSrv - ok
00:39:55.0557 0x1c9c  [ 73F497EE55307E04E09948A96E58F7B6, C6F6F48E19F2F7836516BD66CBE0B8514F65464CFEB179CA11BB1C7BF6DC3807 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
00:39:55.0575 0x1c9c  BTHMODEM - ok
00:39:55.0597 0x1c9c  [ B22D830BB547F09BD1028A189A602F74, B059A7104B56F00572D9CFE6D137E006010FBE312D5FED239BCDBF7E9823F6B7 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
00:39:55.0643 0x1c9c  BthPan - ok
00:39:55.0697 0x1c9c  [ B9B7A0319B6D673DFDB0706444F5B252, 6AF35AE7F5D6933C1151FDF68A2C710F41C81A79A824B5172DC88A3594580D0F ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
00:39:55.0776 0x1c9c  BTHPORT - ok
00:39:55.0797 0x1c9c  [ 41939895FE07BAF02A2D13A99CEEEDBD, 919F02462CA529FF6F082C58A8E4BF4C4DEC8CD252DE70435878DF8D4F1653F8 ] bthserv         C:\WINDOWS\system32\bthserv.dll
00:39:55.0832 0x1c9c  bthserv - ok
00:39:55.0872 0x1c9c  [ 0795D38A537147CD9BCAD92F47AA0547, E190B403BF713EF159126C5F9DA877F483269042DA549B02C0918F0A95AB7336 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
00:39:55.0910 0x1c9c  BTHUSB - ok
00:39:55.0949 0x1c9c  [ 40CC43B70F7B9D386BFA13A3E231A567, 1E0C13889767C40E4939042978D090CA67519D39F659992241CAC90E7AF95666 ] btwampfl        C:\WINDOWS\system32\DRIVERS\btwampfl.sys
00:39:55.0961 0x1c9c  btwampfl - ok
00:39:55.0980 0x1c9c  [ 7D4F5488A0ECAFA80AB88DD49BA494CB, 9ACFBE3949C58C7EC7702720F92FB185B415C5665B4016D0EFA78260C960FE1B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
00:39:56.0025 0x1c9c  buttonconverter - ok
00:39:56.0056 0x1c9c  [ BCD38A6C2A1921189CE49813C3B2FC9F, 6C7951FED966880516B622EAF26612D6E3BDF6D4686BADAA88EFA647F275FC83 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
00:39:56.0100 0x1c9c  CapImg - ok
00:39:56.0117 0x1c9c  [ 45825ED9F218A1601253620BF516171E, 0EF0B1D3A1A210177D5FBE03D0A83D1E5E90D458C40CBA192DFBA56A0E5F28E8 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
00:39:56.0151 0x1c9c  cdfs - ok
00:39:56.0172 0x1c9c  [ 03FA02A57D320B0BF7CFF85CFABA9100, 1E9AD9315DC6E670DA41CC06DC1BAEF8CC0CF123E414B1904EFB259264C7C995 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
00:39:56.0252 0x1c9c  CDPSvc - ok
00:39:56.0272 0x1c9c  [ F9859843E5ABAB82E63CC3AA0FC50CF0, 65DC89FE1ECC7C2EB2C0E964135EECAA3287859EC5A6A2E5FC29C88EC174C31C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
00:39:56.0291 0x1c9c  cdrom - ok
00:39:56.0309 0x1c9c  [ F3784256C84816FAA9F424238748C204, 2B4568769496CA3C7105D9A233428C1D01DD67A43EC64213B66B08E3AF701C2F ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
00:39:56.0332 0x1970  Object send P2P result: true
00:39:56.0347 0x1c9c  CertPropSvc - ok
00:39:56.0365 0x1c9c  [ A226E247A815ABE453830F6175A93EF8, 548A1864F26F18C52DA047BC592F5AC8CFBFD385B014D619A6391CA02B5DCC2F ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
00:39:56.0395 0x1c9c  circlass - ok
00:39:56.0419 0x1c9c  [ DD871F1EDBD17C804D9A3C967BABD4D0, 75FE449AF369C0A591A56792D95CCDFBE33926156B0176C0D6345E371F49E9DE ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
00:39:56.0440 0x1c9c  CLFS - ok
00:39:56.0562 0x1c9c  [ 0CB3F5D3138A53F0CEA255AC943919DE, EA68F79BADE8ED30FC79BCA546E42D037CBBC1FAF16D95D9C38B0AA745441712 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe
00:39:56.0619 0x1c9c  ClickToRunSvc - ok
00:39:56.0677 0x1c9c  [ 5DBF9FA0772D203DC227BBD774A6554E, 037309FD2F9C5B45A4C15118F2EA5E866DC93FAEE0433A71D5B157B9D8193808 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
00:39:56.0719 0x1c9c  ClipSVC - ok
00:39:56.0734 0x1c9c  [ C8C9FDD65954BC3CF385093CB5A7DC9A, FE85A4CDDAC135F1052A6D0ACD534CD46AC059DD6D2A16AE1A7C18B458C6C2A4 ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
00:39:56.0779 0x1c9c  CmBatt - ok
00:39:56.0817 0x1c9c  [ A59C90C1680D109E7CC8796613418912, 7B57F2614F55A6DBAE6761A76C6BA52EDB98D656B621205540D2C0F93F342AE3 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
00:39:56.0855 0x1c9c  CNG - ok
00:39:56.0868 0x1c9c  [ 79C69E3D98A55F08D2A271E889BC605F, E3FFCCF638CCA7C9F1B0BB9101288376C6A9E50198C59790BB62BAE98C4E080D ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
00:39:56.0882 0x1c9c  cnghwassist - ok
00:39:56.0962 0x1c9c  [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
00:39:56.0973 0x1c9c  Com4QLBEx - ok
00:39:57.0058 0x1c9c  [ 982B14414C2DB5F76F43091E816B55BC, F268A591F7DB7E6CEF595F6739723FBCCD70FEB63FE55734C424EB900AAA5460 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_x86_a4832450a7024d49\CompositeBus.sys
00:39:57.0102 0x1c9c  CompositeBus - ok
00:39:57.0107 0x1c9c  COMSysApp - ok
00:39:57.0122 0x1c9c  [ FA952D35BB717A0BF7C03036817D8F10, 983F07BBB04C82E68C9F3CBF3DA8651D478D0DB5183F92A6079BD17ADED28C19 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
00:39:57.0184 0x1c9c  condrv - ok
00:39:57.0233 0x1c9c  [ 2BB807646A35627EB6332FC90493E9BF, D932FBDFE3CC037CF91088D9876D63326229C1016653D8A6F01ECE4B29F1ADDA ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
00:39:57.0275 0x1c9c  CoreMessagingRegistrar - ok
00:39:57.0306 0x1c9c  [ 323319BAD288B7D8BC7614FB956AB933, EE5894E568FD8ED98B961330C4E2062A565EFB5EAF895C47C4BD0539D2093AFD ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
00:39:57.0387 0x1c9c  CryptSvc - ok
00:39:57.0415 0x1c9c  [ EC0BEB55A4FDBD77B8ECC7FC905A295D, A84121980F5672FFC519CB328FF072FEEA0AE90DA067EDDF622297E5E9D4EFA5 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
00:39:57.0469 0x1c9c  CSC - ok
00:39:57.0516 0x1c9c  [ 17BA44C9CD78647F40C061C25B9D47DF, 1B05C6B6FC083C5269D22B0817926409DB4DFB86297E6992B50D4C395E1F1929 ] CscService      C:\WINDOWS\System32\cscsvc.dll
00:39:57.0583 0x1c9c  CscService - ok
00:39:57.0615 0x1c9c  [ C7D9B909C39EE283D676258E3D746AAF, 3A3CA315FF8A53838D30A93F517629F8A5E011C8990873E9A97ACAEE29D48CF9 ] dam             C:\WINDOWS\system32\drivers\dam.sys
00:39:57.0630 0x1c9c  dam - ok
00:39:57.0670 0x1c9c  [ 34E26E472DB5C01FAD58809285DBC0A4, AA19704F4761DF4F794E1E242A3EF318DB8DB2FF728FCB413038F4EB76960437 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
00:39:57.0773 0x1c9c  DcomLaunch - ok
00:39:57.0799 0x1c9c  [ EA6A89AD92E45AAF88234E6F9060C6D7, 8C4FDDF1CD329EF45D8A29939E387F18D276BD2CAF744CBFD3131ABAF2A67357 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
00:39:57.0869 0x1c9c  DcpSvc - ok
00:39:57.0902 0x1c9c  [ B766261FA3F94DD2C606B445A9AE07F4, C77F9362E25CF25B9CE639AB6854FD760FA8D8A2CD795C7B81AC6074EA97C665 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
00:39:57.0965 0x1c9c  defragsvc - ok
00:39:57.0995 0x1c9c  [ 999B7462EE6644330A901F4EA8AD4810, BC79CBCFB9E0B4F1414F64DBB16612BA0A44E4D058777205B859E66C88EE1C36 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
00:39:58.0041 0x1c9c  DeviceAssociationService - ok
00:39:58.0067 0x1c9c  [ 5592A4BE802D0DFB2AAFB79C64A614AE, F57F6C84C6A062A6C5D5DFCA63665067143F59E3CA9183463A2214996FC25520 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
00:39:58.0101 0x1c9c  DeviceInstall - ok
00:39:58.0118 0x1c9c  [ 59AC7EDFA6525BF907FE1616B6980760, A5A0C40458961CAA977C06C0AE45CA52FCE054C3D7C43AE698C8FA2D3996031C ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
00:39:58.0178 0x1c9c  DevQueryBroker - ok
00:39:58.0199 0x1c9c  [ FF2FAE24F70AC0501C59C20136A333DD, C0F81F6295DBE491B54692205D2EFBE607CF598B3D0951478EA65EF300CC83EB ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
00:39:58.0233 0x1c9c  Dfsc - ok
00:39:58.0257 0x1c9c  [ 66AF3E06A506147058BE34331D5D5280, 1685005148A67FB6083F4D48A6BBD2AE34F0D05020095E33A1E0CC15907A150F ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
00:39:58.0326 0x1c9c  Dhcp - ok
00:39:58.0374 0x1c9c  [ 18DF6ED5C958809DA99DCAFD3E352941, 892D48ABA13A29059DFE3E88E77C13E1F9C779418CAE93F6E8EF329C2EAE59BE ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
00:39:58.0391 0x1c9c  diagnosticshub.standardcollector.service - ok
00:39:58.0459 0x1c9c  [ 34639D23C41851B5D87DC7208243185F, A2A3B58F4DB49600E2310B7DBE0DEDB876CF4FBAEF808B2755CD5C5F17BF0CAE ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
00:39:58.0525 0x1c9c  DiagTrack - ok
00:39:58.0542 0x1c9c  [ 88DB91C26B94CE6A43326871D63CD1C8, 99C132D0CCFF70F8DE5FB0ACE7355113C58160E64F9D8050E9E670186955D5A6 ] disk            C:\WINDOWS\system32\drivers\disk.sys
00:39:58.0558 0x1c9c  disk - ok
00:39:58.0588 0x1c9c  [ C5FBD8DDCD35F7F1242F3587681A2654, D55674AEA5632DFB3A34453918E8D84A87B9576DD627FCC34E96A3B5F31B0D36 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
00:39:58.0638 0x1c9c  DmEnrollmentSvc - ok
00:39:58.0655 0x1c9c  [ 313E2CE76811ABE2FC4F41F6EDDCDA14, 5796C9EE147B3696F70439F1EA84F98822AAB3A76E5C94717F3949AFA2762811 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
00:39:58.0702 0x1c9c  dmvsc - ok
00:39:58.0730 0x1c9c  [ CC04BEF82DF29FE9FD756EC0F891243F, 1268F2881CD79CEAE3C0C2FBB27D115F6F9B1BA2B503001E2C50D3DEE5E9D4C4 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
00:39:58.0770 0x1c9c  dmwappushservice - ok
00:39:58.0809 0x1c9c  [ CB097A5CD6D0C3873CAE0566A2C11A14, 1A24C188F0A11013C0F1811E747BA015E9E8FE576AF8AD6EA32D51C6B1129FDC ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
00:39:58.0848 0x1c9c  Dnscache - ok
00:39:58.0877 0x1c9c  [ 661DFA40CA40CB7037594E66E989F211, D5103C1DD55DDF89F5432EF67DE468D9CE9DF03099010AE799687A1B75A30989 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
00:39:58.0919 0x1c9c  dot3svc - ok
00:39:58.0943 0x1c9c  [ F405D74E2C2953610B16519CFF7A716B, 4A7977A02F55613C2CA630A37B8668DE4FAC3E61FDA8222E5B6C2B75F50794D9 ] DPS             C:\WINDOWS\system32\dps.dll
00:39:59.0053 0x1c9c  DPS - ok
00:39:59.0086 0x1c9c  [ D0836131D23862AB4D192977237D0295, 61327C7FC64C12721EE92AB927A4C5F892539D5E9D90FD7FAE7A0233D9358973 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
00:39:59.0099 0x1c9c  drmkaud - ok
00:39:59.0133 0x1c9c  [ F9F649451BED1C48BC27A6D2A036794A, FC09F7ADACA8B448BFBFB7B43435568989A1218E073FBD126D59B9B8ADD7A63C ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
00:39:59.0199 0x1c9c  DsmSvc - ok
00:39:59.0221 0x1c9c  [ BFE9C00DE6D24A21D1D9BE93C4B3A65C, 1F11906EE045BCB54959DE6E9D8BFCF9115E17AD541E089DB98366860CE3932A ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
00:39:59.0257 0x1c9c  DsSvc - ok
00:39:59.0332 0x1c9c  [ DE9D3EC725041F0599467291260D3B81, E1BC1866F4434C5235C4F222A1DC392BFED8A864A3A6755421FF141E071B4505 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
00:39:59.0420 0x1c9c  DXGKrnl - ok
00:39:59.0450 0x1c9c  [ AA7F640E1C60FE8A5354BDB35FFBB855, 8CD5E803E00534C5BE8FBD256CEE94F51582859862E3CFCFC34526DFD2EBD593 ] e1yexpress      C:\WINDOWS\System32\drivers\e1y6032.sys
00:39:59.0484 0x1c9c  e1yexpress - ok
00:39:59.0510 0x1c9c  [ 54C1E5FC50666C76361A3D626CDEDBDE, 53FDAE30C3A466BA8B6AB21CEB57466FED32EBE561555EB2A69DFC77E3811F3C ] EapHost         C:\WINDOWS\System32\eapsvc.dll
00:39:59.0532 0x1c9c  EapHost - ok
00:39:59.0559 0x1c9c  [ C33D357DBB05447FB85B01BB897CAD47, FD4C60E7D5B7E83D2C14D055C56652688BAA119E1B411B4A03B607A6B6E1592E ] EFS             C:\WINDOWS\System32\lsass.exe
00:39:59.0573 0x1c9c  EFS - ok
00:39:59.0586 0x1c9c  [ 53B060D535508EFF766649077A8FD5BD, 8D6C441CC12E368215837BECE24F4C5FE2C24D1026525DCFA16B520BE7951DB7 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
00:39:59.0601 0x1c9c  EhStorClass - ok
00:39:59.0618 0x1c9c  [ 1EC3415423E282D3741F64D87CC844E4, 1294F8D3DB887189FD309C15264392E66321438164C87026A8A8135B5926D6C5 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
00:39:59.0635 0x1c9c  EhStorTcgDrv - ok
00:39:59.0669 0x1c9c  [ 7887CD52E7B2FFEFF5EC7150B985E4EE, DDA261D4A74A470BA733A1107EE80367A5E05FD40A78B3DE8A12EAF589E93DA1 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
00:39:59.0702 0x1c9c  embeddedmode - ok
00:39:59.0723 0x1c9c  [ 541A6DF71DED24866F1D05E6466C8E35, 85D697096E73E83D8C54ADEFF52E5B0D5A7C24E7A60A286E0E7DA4EFB4747266 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
00:39:59.0796 0x1c9c  EntAppSvc - ok
00:39:59.0836 0x1c9c  [ E9EFCB47B90FD5498695BB7FEFD36CAE, 453B956C99C4D3626B0B0BDB449E9F0283D01AD50C331E298D219B4710BD6870 ] EpsonScanSvc    C:\WINDOWS\system32\EscSvc.exe
00:39:59.0845 0x1c9c  EpsonScanSvc - ok
00:39:59.0864 0x1c9c  [ C6A2EEB63C82A2B8969993210286996C, 2FA6A8F378900FE50D228419C0BF8D4510685DD2AF1E32716FA65B068932A763 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
00:39:59.0878 0x1c9c  ErrDev - ok
00:39:59.0923 0x1c9c  [ 084083EC4BE9BF5ED72BEE3645405FA1, EBB98EAFD9AED6BEFB6F8D1B79A921DD8E018D0784E2E122688314C57BF87726 ] EventSystem     C:\WINDOWS\system32\es.dll
00:39:59.0974 0x1c9c  EventSystem - ok
00:40:00.0000 0x1c9c  [ C75DDA6A1C0F3A86F4E8A29711199011, 229F6A022615F4E9AE85D3691BEF9478C131D66BD55850A9904F5E82AF77B37C ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
00:40:00.0056 0x1c9c  exfat - ok
00:40:00.0095 0x1c9c  [ 2E20DCF240F858DAE2B1661AC2FECD79, 2D3E3885AA7D4E25EC0362CB5F934DBFAB018622CA7C0E57F38F3651B21161B0 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
00:40:00.0117 0x1c9c  fastfat - ok
00:40:00.0161 0x1c9c  [ 9C56BE6DBF5AA46F8C807E3C09BF38F4, 56FA724C570CC15F2036DBD8E37C2012876131A2B2EA258D4C57FCCE91FB5E43 ] Fax             C:\WINDOWS\system32\fxssvc.exe
00:40:00.0271 0x1c9c  Fax - ok
00:40:00.0298 0x1c9c  [ 21F2C15C2B5BBC50C5A8B9316F820992, ACE16D03D03BBBB9052CFE9E7A15C73D6752382D04D54570BFD0CB0554FFA1FD ] fcvsc           C:\WINDOWS\System32\drivers\fcvsc.sys
00:40:00.0323 0x1c9c  fcvsc - ok
00:40:00.0342 0x1c9c  [ F9E3496F09E59D6EDDFAF13C41D4CA04, A0DB4B027696702A88CA2673B5D16461F671D04CB2271D247471AEE0DF1B1641 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
00:40:00.0359 0x1c9c  fdc - ok
00:40:00.0372 0x1c9c  [ 1B52328E67D3CEE4A0431FCCD5DD6E7B, 8F41887A8219DE8190DF7B8982A21BC2B2C59CDB9471D45D105848E43A912FEB ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
00:40:00.0411 0x1c9c  fdPHost - ok
00:40:00.0433 0x1c9c  [ 0A7FF3744AA38A71B979491A2CE08333, D542E429642FE9F1E966080F9D7F46C05C78823F0081F9FDCB92785C6AE609E2 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
00:40:00.0466 0x1c9c  FDResPub - ok
00:40:00.0484 0x1c9c  [ A87A74A74908CFFB693261C974E862E1, 41FB799EACAEE4149ABFE52A777E36FC7F926A5E59E5F2F90612428DDFCB36DD ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
00:40:00.0510 0x1c9c  fhsvc - ok
00:40:00.0524 0x1c9c  [ 0121657A5FA70253C32E7C222B18E215, C94F029412B77ABD3F0A600AF390B3E808A292EAB16F35B653DE9A62A0FC8ACD ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
00:40:00.0552 0x1c9c  FileCrypt - ok
00:40:00.0574 0x1c9c  [ 71267D0F7AE50C188F2265B7D29F18FD, 1DF136A1AE63C5BD9F74519D4E2F85E81EBA8501AFD9C7AF87B9CFA06A3484AA ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
00:40:00.0589 0x1c9c  FileInfo - ok
00:40:00.0604 0x1c9c  [ 6F7F8FB84B77D0475345BF6E54F37833, 3E29BAFFD2A6D6930ADF66011B9B5EC50A2BB5437E81215DDA7BD5B76A7DFCAB ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
00:40:00.0639 0x1c9c  Filetrace - ok
00:40:00.0652 0x1c9c  [ DE1B942049EB48B4D883B97ACA37A208, CB1F9FFBE407D7126628D812A1AAA011B298B5F0B39EBF2ECEB9989914840085 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
00:40:00.0670 0x1c9c  flpydisk - ok
00:40:00.0697 0x1c9c  [ 496280A877AC945EA1844D65E103C171, C3622D17FDCE2E9A328B4C049135332541ACA803F1FD034C6A55F4C9C352EB5E ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
00:40:00.0719 0x1c9c  FltMgr - ok
00:40:00.0789 0x1c9c  [ 77E87F14B3646E4D31274019BBE277BE, D813478817290E76999F5272798DC011013C6D32775C8F109DF07C31B4A7A1E1 ] FontCache       C:\WINDOWS\system32\FntCache.dll
00:40:00.0988 0x1c9c  FontCache - ok
00:40:01.0102 0x1c9c  [ 9D5A3C7B78A3710C20F96BABA6F1DC7A, 1DA76A6C21C6719BE2E2075737130CECF0BEE7C764E1B455D7DB47ED8C8338D7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
00:40:01.0123 0x1c9c  FontCache3.0.0.0 - ok
00:40:01.0145 0x1c9c  [ 6BCFC0BC9298B2519068DC5C577D82D5, 16642680622D4BD9C0E0E461CC2ED1B85F619988CBCB50E8007F3ECA2A3A4FDC ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
00:40:01.0167 0x1c9c  FsDepends - ok
00:40:01.0180 0x1c9c  [ D4445BACD76113198C6DA29820B26B39, 72248472276ACECE1D3333621B3419C025CFE3E8089F0BB4A506857E0556AE35 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:40:01.0194 0x1c9c  Fs_Rec - ok
00:40:01.0218 0x1c9c  [ 69E0062324A73E986CB732E5DC4E7827, D3806F54065122FECDF1F17B3E8007FF0FF844F4C506293B44C501CA872536F2 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
00:40:01.0262 0x1c9c  fvevol - ok
00:40:01.0284 0x1c9c  [ 4F37243D14B1EB7BA75E183FDBADFDA8, 8E214E77C1D27771BE681BBC37E4BCD3E048794B0126C260BA816132C5342F60 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
00:40:01.0298 0x1c9c  gagp30kx - ok
00:40:01.0341 0x1c9c  [ 0737BB61A171F7F9FD68959271AB8E9E, C1BFFC07FDF861418B69076555A04C92BE5A6C73B79BDE062F17CBC6445AC7B2 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
00:40:01.0357 0x1c9c  gencounter - ok
00:40:01.0364 0x1c9c  [ 727C41483292162B89B27F6452591DA9, B085375DB3C29E6615DA1926EECF1CD3764A8A184038A9BB74C9AA2FA67E0AA2 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
00:40:01.0417 0x1c9c  genericusbfn - ok
00:40:01.0437 0x1c9c  [ 73EFE8A2747BB87F66B5646AA2262AE4, 368AAFA38F214D474206B914A4258B3679CB0B1C9080D32DFB3BF890BD5611A8 ] GPIO            C:\WINDOWS\System32\drivers\iaiogpio.sys
00:40:01.0461 0x1c9c  GPIO - ok
00:40:01.0484 0x1c9c  [ 63656AB11FBE2EBE788B27C7F7DE992D, 3ABA1C13CA1E0E303039CF82AF6CF852D55FEB2A793E72347B23A3AFA67E5FA9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
00:40:01.0501 0x1c9c  GPIOClx0101 - ok
00:40:01.0590 0x1c9c  [ BE99BD4E7098FB6E2F93BD69253F8263, 7794E37F92ECAB8FF22450D43B89A6966A90404BBDE302E8992DC2A59BA8AE07 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
00:40:01.0690 0x1c9c  gpsvc - ok
00:40:01.0726 0x1c9c  [ F2CA103777B376918BB990C1C04EAE35, 59FC92135B42854586E965B1042A1ACB7AA40E90E940DF3562E104C2FB8A9AEE ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
00:40:01.0765 0x1c9c  GpuEnergyDrv - ok
00:40:01.0811 0x1c9c  [ C172F0D0329E46513B09E1FC60A27B9D, 05DE0544C8A29B2C6028D2B97F81EACED5B99B571DE507A18CE856BD30DF7D56 ] HBtnKey         C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
00:40:01.0831 0x1c9c  HBtnKey - ok
00:40:01.0848 0x1c9c  [ D102A17D9A1B5D6205D9945835DCE21E, 884F6E44E7B03D618DF8C6DDBFE4E5A64D9E345144897006B674F73989949865 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
00:40:01.0866 0x1c9c  HDAudBus - ok
00:40:01.0896 0x1c9c  [ 30D57EE84E1E169D41A6E873B549A096, 3473AF4A8B651E27ADC91BEC3AF379196ECB7525D768D7984D1FCF67A322116B ] HECI            C:\WINDOWS\System32\drivers\HECI.sys
00:40:01.0959 0x1c9c  HECI - ok
00:40:01.0973 0x1c9c  [ 61279DBC69202D59CEA8ABC871BC796D, 19067B548F6EF6FA1C187C512691D95BFF2826707AA569ACEBC64B9D0B1EAC8C ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
00:40:01.0995 0x1c9c  HidBatt - ok
00:40:02.0011 0x1c9c  [ FE24BE73E28998D27CE37FE1B419879A, 0FE3B3BCBDF52BE8312F681FCE9C637A3487A64BAE3F83FCE9A1DBF1025801BB ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
00:40:02.0067 0x1c9c  HidBth - ok
00:40:02.0086 0x1c9c  [ 87B73E8E8376D4CCD40517CBE56060C5, 3AE245C83E539D55511C1E1EA615CA8FD38675B0926BFB9763FAB3821A3E75CB ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
00:40:02.0120 0x1c9c  hidi2c - ok
00:40:02.0137 0x1c9c  [ A1930F0034BB8ED5B8412A9900E496F6, 8FD73F9BCCF16039806CE8C36A1941E0D00116D733520E6E787B97451B7984A5 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
00:40:02.0151 0x1c9c  hidinterrupt - ok
00:40:02.0170 0x1c9c  [ 8B08C8347D317C9BF0A9A2FD212D256E, 16684F1C23106218BEC31B9B8694747F12458C16D2B934D7D114588F384D73FF ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
00:40:02.0187 0x1c9c  HidIr - ok
00:40:02.0218 0x1c9c  [ 79E59B65911FC6A155417C85639DB0BC, 3FE06AEE7BA0B8265BB3140984E30B4B656DAD693BA6F274E046FB12C84C0859 ] hidserv         C:\WINDOWS\system32\hidserv.dll
00:40:02.0251 0x1c9c  hidserv - ok
00:40:02.0277 0x1c9c  [ FCE15806F5ECC17CC7B062A7A5F4A19F, 6C30792A8D4EFA8D2925500169687AB5EA7618916B3C61451A560FC0A0A47475 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
00:40:02.0331 0x1c9c  HidUsb - ok
00:40:02.0363 0x1c9c  [ CF3EC9579341757F37D9DDFD0FF05D9D, B1B17351B321DE8EEE2F8FA858515972C952B5451A415F6F54081D21442FDCB5 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
00:40:02.0447 0x1c9c  HomeGroupListener - ok
00:40:02.0489 0x1c9c  [ 97E65A23EF01FC995E50ADE05C231251, F9FB57F3AEE0EC8888D91DBB8863FDA6123AF9A377E67AD49AF31FA00827C5A1 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
00:40:02.0546 0x1c9c  HomeGroupProvider - ok
00:40:02.0572 0x1c9c  [ 635B59280B3C6AB3627245423D49EABD, 17A2BC91A277ACC4ACE9FCBFAF097BE3EB6A3EF23ECE198FC6309FDF4B322A15 ] hpdskflt        C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
00:40:02.0578 0x1c9c  hpdskflt - ok
00:40:02.0616 0x1c9c  [ FDF273A845F1FFCCEADF363AAF47582F, 9BB99346A977225EF77261CD3CF4219A238EB06FFE2DB91D00A0037BDCFECEF1 ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
00:40:02.0626 0x1c9c  hpqwmiex - ok
00:40:02.0646 0x1c9c  [ 29276D0B2C34E248372E27FEEF85C5A5, 296A5E7F930E9016967C852F6742009E5FED51BA46934BE80C88AD2FFCE06C7D ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
00:40:02.0661 0x1c9c  HpSAMD - ok
00:40:02.0684 0x1c9c  [ 19F5CB0773626DBF757064102399820B, C08783A3FD852357C1AE94C3B83D4AF308E1210EB4DE33317B75BD0FB5ACD59F ] hpsrv           C:\WINDOWS\system32\Hpservice.exe
00:40:02.0690 0x1c9c  hpsrv - ok
00:40:02.0754 0x1c9c  [ 2D3AF85F7C2B5400B3347F3A799FBBBB, FAE68568EACBF3C4250E60079A7EBD19E52A6FC6C628C2B0445289175452DDB1 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
00:40:02.0801 0x1c9c  HTTP - ok
00:40:02.0813 0x1c9c  [ FCB02AB515FB20B098604301CED1B13A, 2676F4FAA37C4A470D740F35C7FBCB4BF7E87B9669EB2891C4901B877A2DC80D ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
00:40:02.0826 0x1c9c  hwpolicy - ok
00:40:02.0851 0x1c9c  [ DB888A6E936AD2338232C34930EF9559, FED70B9CCDABBACBA7926156F6F0B49844D5198C977E9882E342CA7AA127F3E1 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
00:40:02.0883 0x1c9c  hyperkbd - ok
00:40:02.0897 0x1c9c  [ 91CE016243C350A8B582ABCD24AA6D38, 1A73F29C436822213C791AF6F0FB2A4462EAFCEF4E99E199A7D7E67F5714A7E8 ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
00:40:02.0916 0x1c9c  HyperVideo - ok
00:40:02.0937 0x1c9c  [ B135D96FDBA59834E53CC80484D1556B, A8142A7504D52C3D0DA5D07BBD96FADF0F6C8BDAC66107EE66220416BD175613 ] i8042HDR        C:\WINDOWS\system32\DRIVERS\i8042HDR.sys
00:40:03.0010 0x1c9c  i8042HDR - ok
00:40:03.0024 0x1c9c  [ 4AFC7F3F691B8259B41712917808F35B, D9CEA9D7ED8DDF43C4827113CADE8EFFB9AB3C94DAB2BEEDC79599A0CB568A46 ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
00:40:03.0082 0x1c9c  i8042prt - ok
00:40:03.0096 0x1c9c  [ 646D3B416BC970C3CD2F53844FD156A5, 045CBA642382B33DB1E222302B14DD46838895A73CE50426FD180B4CA918253A ] iaioi2c         C:\WINDOWS\System32\drivers\iaioi2c.sys
00:40:03.0138 0x1c9c  iaioi2c - ok
00:40:03.0185 0x1c9c  [ 58F046CD09B7E7AD0CE09DC86E8A15D5, 493329BCFCE1A82DCFC597276954137E176BAD61D0C5C8955BF9417A0B035549 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
00:40:03.0226 0x1c9c  iaStorAV - ok
00:40:03.0253 0x1c9c  [ E0E49FDE9CC042165E710329979F2C86, 04A3E759A133A75FFAF6254729D268178AB61499B8466248E8C317DC9B4CC8CC ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
00:40:03.0277 0x1c9c  iaStorV - ok
00:40:03.0303 0x1c9c  [ C6E935833A434167F451390B015B99F5, 70AE6B697D11566545615D8B38996B66C1BCE0C949DF5B75E7F40F6C2E710AB0 ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
00:40:03.0369 0x1c9c  icssvc - ok
00:40:03.0425 0x1c9c  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:40:03.0453 0x1c9c  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
00:40:05.0800 0x1c9c  Detect skipped due to KSN trusted
00:40:05.0800 0x1c9c  IDriverT - ok
00:40:05.0806 0x1c9c  IEEtwCollectorService - ok
00:40:05.0850 0x1c9c  [ C2670A6F12D8110B120D6B5241D03693, 6627350DC850C746568B81388DFFE69F193060A9E809E8CB668B493364B6DCC1 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
00:40:05.0923 0x1c9c  IKEEXT - ok
00:40:05.0956 0x1c9c  [ 33DD15442F02960CED86B2115B9D3E1B, 4489FB36AFD477E67EA81CF2F058A4A00C78CE14D73D8A8B9CAF5C4734EB4AF5 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
00:40:05.0986 0x1c9c  intelide - ok
00:40:06.0000 0x1c9c  [ C219918F2C651EC4B8C053BA27731FE4, A671E6C2A68003D470C64BB1F995EED5B224D4937345A053607563E9210DB4E6 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
00:40:06.0016 0x1c9c  intelpep - ok
00:40:06.0041 0x1c9c  [ 53C22DBD08EC5B6EF9D5DAFD4EB459C3, EB1DBFFE62C1EA7EE583B39B0F4F32EF54013D7CDD5FB081B7CAA356283D487B ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
00:40:06.0077 0x1c9c  intelppm - ok
00:40:06.0087 0x1c9c  [ 6E5392B8BBBF8143F9503AAD66D730EC, 040BDA73DC59A26C0689A192D3238DB40E4655375EA20EC634961F26A0974F0D ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
00:40:06.0134 0x1c9c  IoQos - ok
00:40:06.0168 0x1c9c  [ C85AE4BB291CAE46EE5C27A2BB3926AF, 1AF56A1C3F238F386B19FD9078E5CEC9DE95F746F983D3C634903B2EF18EA228 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:40:06.0204 0x1c9c  IpFilterDriver - ok
00:40:06.0255 0x1c9c  [ D17BA5CF1A7EEB1AA73FE2E37846C879, 07C5C20FB51F2299D543BB1B14D732BE7207DE02E1D3A8102FE0753469F927C9 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
00:40:06.0323 0x1c9c  iphlpsvc - ok
00:40:06.0346 0x1c9c  [ 8EF84598A24A3F08F92EFD9147707008, 2CA59C7B2AF310390BB49D9EE259FCFD09168369E09FF3F2014CF4C65E249A83 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
00:40:06.0389 0x1c9c  IPMIDRV - ok
00:40:06.0404 0x1c9c  [ 48B70CFC8132E60A009F500B181EB91A, D85F51CBE64DB163CD5FC45FB05EEAAAE0174F8F07BD2B969173DB281C5AA153 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
00:40:06.0439 0x1c9c  IPNAT - ok
00:40:06.0456 0x1c9c  [ AC6734F4B8F58A49E2244E5927AA032F, 2CD79E34C004F8C84FBD4532C8BB1E1BC53CE5BEFC5D11D54E758C13AE900557 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
00:40:06.0493 0x1c9c  IRENUM - ok
00:40:06.0507 0x1c9c  [ FB2547A6E01AFD49C09472FBFB75B372, 8AA0BA5E4F99C9FFBE4612A08A2FEF6A44056C85DC24A211137575C50B3DD42C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
00:40:06.0522 0x1c9c  isapnp - ok
00:40:06.0543 0x1c9c  [ 3CFA1A668A1ADE61A4E59C3FD0031A98, 868DCDDA9AEC8C7733A010AE415559A0F4ABF1D77A952360DA9E9B4CF668E097 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
00:40:06.0565 0x1c9c  iScsiPrt - ok
00:40:06.0584 0x1c9c  [ 8BF140160F18F89755BB7D4232A881E5, 37A3FA44956CE5030A3392818EE8DB04993B4C5BB2C0FBBE2A47C74BC88396E5 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
00:40:06.0600 0x1c9c  kbdclass - ok
00:40:06.0615 0x1c9c  [ A9AAA2F74EDA41DCF7154E1CA8305BD2, E7E3A133E00987BEFBC93B78C99D7DB1749ACB9235F6C580BCB037502A1D6232 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
00:40:06.0644 0x1c9c  kbdhid - ok
00:40:06.0662 0x1c9c  [ 566D95C7CCDEF5EC2FC8F1660E1B8FA0, 734897E9CCF5287FDAC26E15E9892ADA4201B7F145044C12A404E414B11141C3 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
00:40:06.0714 0x1c9c  kdnic - ok
00:40:06.0729 0x1c9c  [ C33D357DBB05447FB85B01BB897CAD47, FD4C60E7D5B7E83D2C14D055C56652688BAA119E1B411B4A03B607A6B6E1592E ] KeyIso          C:\WINDOWS\system32\lsass.exe
00:40:06.0745 0x1c9c  KeyIso - ok
00:40:06.0759 0x1c9c  [ FE1694021FECCB3C8A4C2CC21FFB0D5B, 2B56BBE7696E41D5424DD6A7FA6EB1903C1496BF924C4AB78A65F9BB30CA7555 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
00:40:06.0777 0x1c9c  KSecDD - ok
00:40:06.0790 0x1c9c  [ 6561509A2CF7B70D8950A82AA75EB948, 7F169C91D074B2D6066A50CBCB2743AEA488CE39F7CDC65CED2D9FD5A6E30128 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
00:40:06.0810 0x1c9c  KSecPkg - ok
00:40:06.0841 0x1c9c  [ 289822F40B6711420FBA3D7A48EBA923, 8388DEAAFADA98AE33B91A46FC4C463475A230C47714F4C0542D591C95C225BA ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
00:40:06.0935 0x1c9c  KtmRm - ok
00:40:06.0963 0x1c9c  [ 218E461B02F0B58DC3735D03E936CAAB, 4C2680CE92B247538582ABB2EAD7C6CBD324C68A6E3B679AB69C832B6C362330 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
00:40:07.0008 0x1c9c  LanmanServer - ok
00:40:07.0048 0x1c9c  [ 4EDFD45432254388DA033E0389523650, 2A2D271A6DC804C1BF467377BFCB0C884F2F05E81342C124317DF394DFA0F29D ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
00:40:07.0076 0x1c9c  LanmanWorkstation - ok
00:40:07.0104 0x1c9c  [ CEED4FB26DCF94BAD1250ECD8E4C0211, ABBD290170ACEBF7A8A039B7F9CE80F06B951EB77C01D7EB1B33AFAC17C1ADC4 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
00:40:07.0158 0x1c9c  lfsvc - ok
00:40:07.0179 0x1c9c  [ 570F9376E31A3DCABE1932E0A7E29B24, BF7CCA49518556B2CC274353EA71D7B915B13102C05491D3361134497D8A34DE ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
00:40:07.0237 0x1c9c  LicenseManager - ok
00:40:07.0270 0x1c9c  [ F3088828CA8E7C6CE1CE37A4B036C2EB, 2670A41D980A7299A454433B1CA3E75B28F0DD94D7CDF946F7308BFBA1E3C0F1 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
00:40:07.0308 0x1c9c  lltdio - ok
00:40:07.0331 0x1c9c  [ 987D294D67D241714C070E4E1CC4E5B6, A90A4F5E22F4BB1C5A7D56D3907B202F77D767CB6A8C291E794BB7734EFB880D ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
00:40:07.0360 0x1c9c  lltdsvc - ok
00:40:07.0383 0x1c9c  [ A8BFA7162725F4B069F70F8E2953A33C, 579CFEB6BF7FF8A8495D061091C8CB4E7456A592770A6EFDE11CB13394003B07 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
00:40:07.0457 0x1c9c  lmhosts - ok
00:40:07.0488 0x1c9c  [ 44CBF7F9E2FB9C36ACC892812F8750A0, B97D477494072D456D45046E66F341757A40B92390836D9C4AE24EB5D088D63A ] LMS             C:\Program Files\Intel\AMT\LMS.exe
00:40:07.0499 0x1c9c  LMS - ok
00:40:07.0526 0x1c9c  [ 228CF87DF76B2A98B343C1980A9A1450, 6F94C84EC4554D9D8E989690EB3CAAEA33C6454E4EC8996FCFCF0F8E5F6C9CE9 ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
00:40:07.0544 0x1c9c  LSI_SAS - ok
00:40:07.0562 0x1c9c  [ C9C21E0A018227C9605725147722F645, 50E8B2C8A13AFE2E91D15891111A9B2F00353C57ECA2CF982C9D1B8B33EF4DD9 ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
00:40:07.0580 0x1c9c  LSI_SAS2i - ok
00:40:07.0587 0x1c9c  [ 062992863776E920A7A8B765DB063F9B, A93AD7AFBD3E749E2D733B76546D5F8D6435BAC9B6BFBC921BDBEDDAC3A97837 ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
00:40:07.0602 0x1c9c  LSI_SAS3i - ok
00:40:07.0615 0x1c9c  [ 09474209C694B265A431E276A1F63C61, 569B9BEAA41E8602529397DA9CB13A176B37BB8E83A7E8301A19B08D84A1F83A ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
00:40:07.0631 0x1c9c  LSI_SSS - ok
00:40:07.0668 0x1c9c  [ 431FD013F91F4D0EDCEEEED5619E0A7B, 8497606CB02AC5BBF204F74CE2244E4608D9B7883C5D7934F785F4108BEBFEB2 ] LSM             C:\WINDOWS\System32\lsm.dll
00:40:07.0746 0x1c9c  LSM - ok
00:40:07.0763 0x1c9c  [ 3B9F3769F26C6EA7759D77AAAA24AA60, 0735EBF9D143D8D901FBE6B240C2C326B341B4B574091D098A156E69C03D0460 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
00:40:07.0788 0x1c9c  luafv - ok
00:40:07.0812 0x1c9c  [ D243997016513F77DF2C3F96D4E7AE91, CC08F306B0EE5999CBF22894A570819A0CDC24D58F3C2D9D0B9E6882D63FF0A1 ] MapsBroker      C:\WINDOWS\System32\moshost.dll
00:40:07.0964 0x1c9c  MapsBroker - ok
00:40:07.0995 0x1c9c  [ 40C7F4B63337414F967AC53E0520B06B, 1E42F17F17B8BF748EFB15112EDA2DBD76761A011673B654020084AEC02089F1 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
00:40:08.0005 0x1c9c  MBAMProtector - ok
00:40:08.0064 0x1c9c  [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService     C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe
00:40:08.0122 0x1c9c  MBAMService - ok
00:40:08.0147 0x1c9c  [ E227DC78179B86D386270CFA3CB9B65D, BCD99FFBFA29B9F74DDA28DBDC28B928187EFF6769D3F55544E24209A671F117 ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
00:40:08.0157 0x1c9c  MBAMWebAccessControl - ok
00:40:08.0173 0x1c9c  [ E01417291D363D440A762462AD875AC9, AD8A2347F39FF31DEBA7C69F5B59F9E246A2D80FDDF8CA38CFA54837ACE1B0A3 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
00:40:08.0188 0x1c9c  megasas - ok
00:40:08.0213 0x1c9c  [ 164682CC3483FD7585EB3672DED65F8D, C4191A30273B53285B5D1D729C6BED214990E9932DDF198DD65C31902DF630A9 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
00:40:08.0248 0x1c9c  megasr - ok
00:40:08.0266 0x1c9c  [ F2DE758271DF527AFF43F015441F295E, 6C0652BEF1356CAF5F674610439A3A65195F035AA3F1D10D1409E2FBB61C76C0 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
00:40:08.0338 0x1c9c  MMCSS - ok
00:40:08.0357 0x1c9c  [ 574425452C15B152049BE41AC2BB5968, 776CFDD75711AC5E7C1B0010CDCDA81029FEF23BC6612790AB73F81E13B6BB58 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
00:40:08.0388 0x1c9c  Modem - ok
00:40:08.0414 0x1c9c  [ 8F8E9A76D13B01B6170EF5DB084356A2, B6E98D5A996040BF4EFB77691C3B102C11EB4DDE0DA6EFEA4F7D72DEE64ED221 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
00:40:08.0438 0x1c9c  monitor - ok
00:40:08.0455 0x1c9c  [ 7A0C0F5D2BC184A10CFCCBDF18F4B03E, 7A92AF4FE405F2A8B2300049FBDEE785CC0340F6B70CB19DD3F622953E5689DF ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
00:40:08.0470 0x1c9c  mouclass - ok
00:40:08.0485 0x1c9c  [ 4CA2D1EE44BE5A4B7C1640C2488EC677, 41C0EC9CF9FDC274591326F96CB31B5D8B59D9A7981AEC003BA5F63C0FD49166 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
00:40:08.0508 0x1c9c  mouhid - ok
00:40:08.0538 0x1c9c  [ D437308181D78C4224320CCAFA27C1AA, FDCEAF0D1883B652B519368D79F250C04842096343DC83940BFFA265E5A93B49 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
00:40:08.0554 0x1c9c  mountmgr - ok
00:40:08.0600 0x1c9c  [ C34AB4280614658903BE848CE79ACDB5, 9A943D9B3CF941DAE4EA4E2771B5EC5DA37AB16AD43095EF092B4259D62FF810 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:40:08.0636 0x1c9c  MozillaMaintenance - ok
00:40:08.0654 0x1c9c  [ 798A39673772739535927A6F1BA1D272, 84F74084ADECFECEF18B7CC2FD10D75C38BEAF493C0D16443852EB70B81ACD50 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
00:40:08.0700 0x1c9c  mpsdrv - ok
00:40:08.0746 0x1c9c  [ B344E420164A3545D098D653DC7C84CA, F392BAAB034C9E2B7C5653F3435D2F6130EBD15443D11B46209A45897A47F876 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
00:40:08.0825 0x1c9c  MpsSvc - ok
00:40:08.0867 0x1c9c  [ E7562007139CDDF6D21402E0BB754D78, FE33A8C72173FD22A8BEC2CA7919304396E43CD631AECC4B94CA4CE18FE3C2DF ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
00:40:08.0899 0x1c9c  MRxDAV - ok
00:40:08.0927 0x1c9c  [ 0AFDF5734DAF0D1438802CF22238518C, E3668FA75EE63463B4AEDDEBE47DDA79B1A986A1764DE235069B074B5B48D93E ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:40:08.0957 0x1c9c  mrxsmb - ok
00:40:08.0979 0x1c9c  [ 479CF6845501535F459BD18328659B8D, 91DD63E5A0C7C9E70E1D19495B2C44C020C8546A8277EF187A9DA2CC6DE19CFC ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
00:40:09.0031 0x1c9c  mrxsmb10 - ok
00:40:09.0056 0x1c9c  [ 9D7BA357E013E776773C989EC1AE3A9C, 82ECCD6F5F40DC58E010B4EF22A982B2249890AC18B98C72EDCB8EB15348FC37 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
00:40:09.0078 0x1c9c  mrxsmb20 - ok
00:40:09.0109 0x1c9c  [ CD525E8299D0C093F05A30A1D7FF3D4B, E5CC400E2A329F420B33DE8DAE54BAEF68B9BB1A4593501967CCD6D7830D1381 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
00:40:09.0146 0x1c9c  MsBridge - ok
00:40:09.0182 0x1c9c  [ 26B259840A3513979D38B54AE762D240, 24909E4122E759E60FCE6BC41E663EF6B8FEEC8B5747D808B88355130B01C26B ] MSDTC           C:\WINDOWS\System32\msdtc.exe
00:40:09.0204 0x1c9c  MSDTC - ok
00:40:09.0220 0x1c9c  [ C0D835C215B5B3EA82C89EB253F24C2B, 1116D55641C0017E644C1DBA23463CFC9E70DB37E1937C8F1DC9E07572DAE5A6 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
00:40:09.0246 0x1c9c  Msfs - ok
00:40:09.0279 0x1c9c  [ D6D46D0FC460D4F2AE966AEBF8982BD9, D76A8296709E45C420578D90F7BF191156A1EF4BF51F15C7E67018D3DD37A282 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
00:40:09.0293 0x1c9c  msgpiowin32 - ok
00:40:09.0303 0x1c9c  [ 002F688F502763178FA05C3258CA9410, 1FDD4BB0E651FE330995DA3E9DCEC64F85D6A3D5758E34904C41DC49D60B3430 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
00:40:09.0317 0x1c9c  mshidkmdf - ok
00:40:09.0352 0x1c9c  [ F77B0D418E6A161AECD1219AECB8824C, DEA87FF225012F3CC903E39BE4FBDB78792D8C147F38AB422E52195D1FB5C159 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
00:40:09.0382 0x1c9c  mshidumdf - ok
00:40:09.0403 0x1c9c  [ 9E8B5629E4E37534AB7356471A42D9BA, 7AA59002F4099309DD312FAC0B3BFCD24FD5C8CE186669198737D5339E8C797C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
00:40:09.0417 0x1c9c  msisadrv - ok
00:40:09.0445 0x1c9c  [ 01F3EA341B71BDE1132D3255747D71F9, 8BD4650321B0F9F832EB1C66CB16ED47088D46C4457EAA8D667F64E9CAB2B1ED ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
00:40:09.0482 0x1c9c  MSiSCSI - ok
00:40:09.0486 0x1c9c  msiserver - ok
00:40:09.0500 0x1c9c  [ 8DCAA566DC52D4423189C1AAF22C9320, 2CED1EFDB997D3359CC280F46E773CAB8070EEF53BEE4C2A99226ED964E8FFFC ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:40:09.0527 0x1c9c  MSKSSRV - ok
00:40:09.0563 0x1c9c  [ 3EAB76F5D8636EA78ECF5F78A238F465, 03F33B388CB61473D35D452401A7310874D79A4BC6A5C9BA9FA58C53ED50DC6C ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
00:40:09.0601 0x1c9c  MsLldp - ok
00:40:09.0617 0x1c9c  [ 3514FB333D32DE5C6F56768B17585B6D, DE3A8BC996A6C3C5A8EF60AD6A228BF659BDEBCA30D51879C18B99C986BB4B2E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:40:09.0631 0x1c9c  MSPCLOCK - ok
00:40:09.0646 0x1c9c  [ A546B4FBAB4F799D8F4FF29E879B06BE, 60580B83E49A3437C6F95CBD8A617AC2EB3E8BC0489D782805F57E4A1BC2CA57 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
00:40:09.0661 0x1c9c  MSPQM - ok
00:40:09.0688 0x1c9c  [ BC2D3669A309A1F5496C080E3009CD34, 8F59C94A2AC0A418A9F77D9B3FF52E7880DFF82833E2C5CA4D5593B8206838A7 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
00:40:09.0707 0x1c9c  MsRPC - ok
00:40:09.0718 0x1c9c  [ DC7D53161E132A1A4D0BCDEFE69111C5, 10EC7C2F1715C1CC3FDEFC5C578631FC897D2BFE466606FC394787F42FCE78C7 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
00:40:09.0732 0x1c9c  mssmbios - ok
00:40:09.0751 0x1c9c  [ 42B8F1E95E4499A96C7C03656DA2CDA9, CAC36B5A4C1C25561F423AC8AEC5F7837F7993F6BB659D85B21EE8458BFE73C7 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
00:40:09.0777 0x1c9c  MSTEE - ok
00:40:09.0792 0x1c9c  [ 063F1B7D84174C5B0F70CCBCC0545BC6, 12081563922B2CC24A896AC01C3360D746F88A3FA5A85D6F0CEC26FAA7EED802 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
00:40:09.0815 0x1c9c  MTConfig - ok
00:40:09.0835 0x1c9c  [ 89E2750F6C4478F153C13D1BADE23751, 7DAB0CAAD9DE0C1532DE534943DB0E68B41FE867A0FA6FA2980A0FEB2B260036 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
00:40:09.0852 0x1c9c  Mup - ok
00:40:09.0868 0x1c9c  [ 1DC581BFA7298B0436A7DD17BFF5EC4E, D3A70A6C3778A09A980461CB86A545C539869AD2ACF0FEA8B7950E1445BD9D6A ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
00:40:09.0883 0x1c9c  mvumis - ok
00:40:09.0918 0x1c9c  [ 6EE20ADC482CC3A891540B920AC14308, 63B99074E55497A5E732D9C6648CA104BED62E8130D7DDAD5ACF82C7B8B75C19 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
00:40:10.0077 0x1c9c  NativeWifiP - ok
00:40:10.0110 0x1c9c  [ 6B869CD2A74FD5C70B0B12C249AC8C04, 14ACA871AF8BAD7D62BA88CB5D0DA7688CB11C11F8B0A27244ACE303D7DE6610 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
00:40:10.0161 0x1c9c  NcaSvc - ok
00:40:10.0187 0x1c9c  [ F2146E9C665B5A1FFEB147F3FF011EC4, 88F16B504E366D3EB6ADB6B19F6798FBC2B21D54D44903916BF9294188CF6C45 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
00:40:10.0253 0x1c9c  NcbService - ok
00:40:10.0273 0x1c9c  [ 482A7CE3010924B0A97C2E9AEAFD9629, 9EDAF3D599E9DB3DBCB7221915FFBBFD5BF1D2EDF47E21DE10600666E398DCAA ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
00:40:10.0399 0x1c9c  NcdAutoSetup - ok
00:40:10.0454 0x1c9c  [ 287BBC9BECE03D0322C3D1B7BE49CDDD, FCE567A1972C6149469A2DA4DB8A8A303AEFCB3EE51A6ABE6FB6BEA61C72C1C1 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
00:40:10.0518 0x1c9c  NDIS - ok
00:40:10.0560 0x1c9c  [ 6785A8B526CC15766EA8A510C20DE472, 5657563DC57AC599D301BEDE1D16CF9AD0DD08207922D21AB1B49E48C143763E ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
00:40:10.0598 0x1c9c  NdisCap - ok
00:40:10.0606 0x1c9c  [ 34FD74E94F0C9AAFF629E7B9CDB01E60, 32E37F3D85E2013CDA3D729BFBFDF3C520DEBD5D5BAC3A82A720FDC7E6B0913E ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
00:40:10.0627 0x1c9c  NdisImPlatform - ok
00:40:10.0656 0x1c9c  [ BC375615566EE7AF98843B6AFA42C1E8, 884D99E9261628D5BCA4A4258BE319F3E4EEBE7394871F54201A3DCE61584851 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:40:10.0686 0x1c9c  NdisTapi - ok
00:40:10.0703 0x1c9c  [ 50E3DA85BE871B6568AD5DD02A69C826, C4537D0739E7371282174BC3C55E1FDC618E7B08FF8709B7D1258A3AD6DC90A5 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
00:40:10.0719 0x1c9c  Ndisuio - ok
00:40:10.0732 0x1c9c  [ 9FE26958C341E1D7C7AC06DCEA6F29A2, DC55449E5CC8CE83ABCD1E181A3846E9F60C05902430CC8A2931BA5692A791DA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
00:40:10.0767 0x1c9c  NdisVirtualBus - ok
00:40:10.0786 0x1c9c  [ 4451840FAF1B95B210D58CB7198BAF9E, A682ED7E0100BFA130EDE24B49644D7FEB37E0A8C98623257BEF18E24D9E358B ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
00:40:10.0826 0x1c9c  NdisWan - ok
00:40:10.0835 0x1c9c  [ 4451840FAF1B95B210D58CB7198BAF9E, A682ED7E0100BFA130EDE24B49644D7FEB37E0A8C98623257BEF18E24D9E358B ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:40:10.0857 0x1c9c  ndiswanlegacy - ok
00:40:10.0871 0x1c9c  [ 51CCC007F34520602A45CC6B16B7EF1D, 8599EFA96616299B679AF26A3892683C228CB83712A84FCEE6D00E45C7F323D0 ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
00:40:10.0889 0x1c9c  ndproxy - ok
00:40:10.0908 0x1c9c  [ 080A2FB8020FA952FA44085F1D920C80, 4020E29EC130FBEF6D8DF3EA1A30342312B79D28A26D7976EC6DEAA9CB62D4C2 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
00:40:10.0972 0x1c9c  Ndu - ok
00:40:10.0993 0x1c9c  [ F16DD1AAEA94A1109008E09BBCCDCF60, 9BC0550409CC70AA23F25D3DB9500E9DB1ADEB02404FEEEBF98DE41E6A8DCCD2 ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
00:40:11.0008 0x1c9c  NetBIOS - ok
00:40:11.0027 0x1c9c  [ F60AE46F9B244F3FF02BFE0DF8DBFF86, B2FD53D558D904FCA4D55FCA873A1AB770D6891005B2D37A1E9685E2B809B7E3 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
00:40:11.0062 0x1c9c  NetBT - ok
00:40:11.0078 0x1c9c  [ C33D357DBB05447FB85B01BB897CAD47, FD4C60E7D5B7E83D2C14D055C56652688BAA119E1B411B4A03B607A6B6E1592E ] Netlogon        C:\WINDOWS\system32\lsass.exe
00:40:11.0092 0x1c9c  Netlogon - ok
00:40:11.0126 0x1c9c  [ 7FE4EF4DBCBF172F3EE7C85330B46C4F, 16F45E449DE1E771D196480CC36C6EBE99906BCE76E9E11027BDBCC7A709ABC9 ] Netman          C:\WINDOWS\System32\netman.dll
00:40:11.0172 0x1c9c  Netman - ok
00:40:11.0211 0x1c9c  [ 2C00228AAB3B95D67C73912F5AA0D9A0, 7AB2D6C1FEC5FE35150D7D83F7E67197F2109749B0FA0ECA20A61D40EA63E342 ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
00:40:11.0279 0x1c9c  netprofm - ok
00:40:11.0316 0x1c9c  [ 27B57EAD77DB86838BCD4174B8C3F833, C17205F943F936268D0A4C74A40EB76E09AA40461A4E7689144C267FE88FDEF5 ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
00:40:11.0396 0x1c9c  NetSetupSvc - ok
00:40:11.0441 0x1c9c  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:40:11.0457 0x1c9c  NetTcpPortSharing - ok
00:40:11.0481 0x1c9c  [ 3D46AAF20A06427BB54C03455B393CD6, D55D7E9E7A8DCB61696A17B638528E631BC60A4B681CA47CB0E1370BEA1A193A ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
00:40:11.0508 0x1c9c  netvsc - ok
00:40:11.0768 0x1c9c  [ D80542E6FD54C0B838F2535F604EF5F5, A1EC33F62D9F0B4D241C654A85D048B32A4A11666DAAADC04FCBDA975557679E ] NETwNs32        C:\WINDOWS\System32\drivers\NETwNs32.sys
00:40:12.0190 0x1c9c  NETwNs32 - ok
00:40:12.0244 0x1c9c  [ 6B5FBADBC6E039E326637B41E808B336, E03FDBDBCA7A5F4AAB3BD7A76D9B40B5D8482654C819EA6848DFDE7CF218BB87 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
00:40:12.0316 0x1c9c  NgcCtnrSvc - ok
00:40:12.0340 0x1c9c  [ C33D357DBB05447FB85B01BB897CAD47, FD4C60E7D5B7E83D2C14D055C56652688BAA119E1B411B4A03B607A6B6E1592E ] NgcSvc          C:\WINDOWS\system32\lsass.exe
00:40:12.0354 0x1c9c  NgcSvc - ok
00:40:12.0397 0x1c9c  [ 92EDB2A4E73278927E9681A354D571F6, ECFF1C66A0CD12F3C04EE686A98986DC48C2843B5464F54251E48A3C47EA129C ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
00:40:12.0440 0x1c9c  NlaSvc - ok
00:40:12.0467 0x1c9c  [ C552566C5121EE41FE6CD51D002E2715, 516E99FDBA4571FAC36998EA078707383C46D3F79182ABCD2D7C6CEF83BAAAC7 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
00:40:12.0496 0x1c9c  Npfs - ok
00:40:12.0522 0x1c9c  [ BB6C28F5912D6351BCDE006081FC6BEB, 0D978A2B1DEB5126F922214997B9CF77EC9E9A7C4B18A569D5413ECA04C04767 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
00:40:12.0573 0x1c9c  npsvctrig - ok
00:40:12.0592 0x1c9c  [ AD0F53DEA05BE8F5EAF757C0EB2CA710, E647806C5722BBA0537CEF37D0A6D95947B509FE74AB77975EED2300BFAFDCDA ] nsi             C:\WINDOWS\system32\nsisvc.dll
00:40:12.0628 0x1c9c  nsi - ok
00:40:12.0648 0x1c9c  [ 8B27E449AFA08A77C54744C0E3DD542F, 7D6D73A1E173DD43EBD5ACCB5508D074C79EEC321B66D31ED17EED172E1531B1 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
00:40:12.0664 0x1c9c  nsiproxy - ok
00:40:12.0747 0x1c9c  [ E42F80FB4C1A06EF4B071608571F5155, 52A544F3A9A171D2A6D23A14D10211CEEA7E5C44D6DB8D039EE918DB07A83B43 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
00:40:12.0874 0x1c9c  NTFS - ok
00:40:12.0913 0x1c9c  [ 2224E6E362ABEEB09EE97982E0AE4606, 14E2B52B243ED518CF5004EAC53ACF4888A23C44960FB26AD15FCC2AE32D225A ] Null            C:\WINDOWS\system32\drivers\Null.sys
00:40:12.0943 0x1c9c  Null - ok
00:40:12.0959 0x1c9c  [ 4211DD3B900E4FF9CA75BE570FE4070E, 0757BC88BED5CFF2F457A44C535F614069B58A606AAFA362A63BF94D6E07B53E ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
00:40:12.0974 0x1c9c  nvraid - ok
00:40:12.0994 0x1c9c  [ 93C70EC0B75F3429C270BF79538DF511, 7D55CC6423C91309B4A3D8670EE721C8A23985FB2CBA6598586AA55ECC47C326 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
00:40:13.0012 0x1c9c  nvstor - ok
00:40:13.0028 0x1c9c  [ 8077A82B26B2860DC43E492A4E6B1CB9, 9985D8A694A72011E143CF95CE2B33D7B331A70CCFD1EF516087C7C4AF6D61D2 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
00:40:13.0045 0x1c9c  nv_agp - ok
00:40:13.0081 0x1c9c  [ 30E2792D19915368DF729BA26B39EE4A, 714CAA4714019DA16331D59D519341E31ED046F932927BB10D27426F6FC92890 ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
00:40:13.0118 0x1c9c  OneSyncSvc - ok
00:40:13.0228 0x1c9c  [ B8DEA8FF85826EBC859653075785F7CA, CC74FF7BBD0B3DC2345AAECB147D8FA942A32B72CF78716A6F5FDA8C2E1DA194 ] Online Shield Starter Service C:\Program Files\Steganos Online Shield\OnlineShieldService.exe
00:40:13.0246 0x1c9c  Online Shield Starter Service - ok
00:40:13.0303 0x1c9c  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:40:13.0318 0x1c9c  ose - ok
00:40:13.0348 0x1c9c  [ 875A0E64081A2512FC7A52521A9A5224, CB994EF298042DACA841DBC7BC3CDC16BCDF5700B17D055B9E8FD17196DF65F7 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
00:40:13.0425 0x1c9c  p2pimsvc - ok
00:40:13.0466 0x1c9c  [ FB06F5DE2AF1FB837A674FF1B4C19C0C, 150FF7E57FC28CC57E9A002A79C623BDB9BE97F2EB6DCD1EF92A2B0CA62D6891 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
00:40:13.0521 0x1c9c  p2psvc - ok
00:40:13.0544 0x1c9c  [ D2377D0CCC9396F37FACCF4AA9E0220A, A73006708DDE56385A417F6064BFAC16D98FBDC1CB1B524A4B5EB4A96E67A1EE ] Parport         C:\WINDOWS\System32\drivers\parport.sys
00:40:13.0563 0x1c9c  Parport - ok
00:40:13.0580 0x1c9c  [ 0454F1B5463D019ACF5C05269B577D0C, 4CF855E940224ACDFB998605EA3A060D051519BE695E372ACF70FBF3F71E0F99 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
00:40:13.0596 0x1c9c  partmgr - ok
00:40:13.0610 0x1c9c  [ A15A50EF533C2F490FE00F206A4CB3A7, 68A0A94291A8C8757C4887E951F75EB63F67DCFA06E9C84B1B4FB1C344CDD0AC ] Parvdm          C:\WINDOWS\System32\drivers\parvdm.sys
00:40:13.0639 0x1c9c  Parvdm - ok
00:40:13.0685 0x1c9c  [ 321B78E3BF78B2A0B6216089055ABC42, E10D617E96F7608A455D34E5C3614ED6CFD906B788E8B24897198AAB478E9730 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
00:40:13.0726 0x1c9c  PcaSvc - ok
00:40:13.0777 0x1c9c  [ 1F3D9517DB5129DB9F035F1ADC2B50DE, 1EF309B47F3421774109F99D84805BF54CFD16B5A5DBE29B71C68E6ADF1BD25D ] pci             C:\WINDOWS\system32\drivers\pci.sys
00:40:13.0797 0x1c9c  pci - ok
00:40:13.0817 0x1c9c  [ 04D2001ED86E0F9D368C79E73D888C83, A8F3FF8CC80E26B5D6E1A7641ECBDB76BC61950AB730027148983462C1D3882B ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
00:40:13.0831 0x1c9c  pciide - ok
00:40:13.0843 0x1c9c  [ D483A0EB9ED20BAC636508B0316DF487, 259A829FD62F0BD78D2A261FD37A38EA60994D0CD8E66BDB3E750A8335E89171 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
00:40:13.0859 0x1c9c  pcmcia - ok
00:40:13.0871 0x1c9c  [ 892F7FE46A8796075672FEB51DD26D4C, A6A72BF13C99F45DEB0D69AA02D51D85E8424AEA79623FB284BFBD661E977EE6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
00:40:13.0885 0x1c9c  pcw - ok
00:40:13.0914 0x1c9c  [ 64C590E96C493AC88D0137684C4C97A5, 867B6250E990F39960EAEF5918A30E5F367686279033262FB16CB6447EDA6006 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
00:40:13.0931 0x1c9c  pdc - ok
00:40:13.0966 0x1c9c  [ 01E23FC4207090A59A42193B74D83F5A, 3EB2603AEC8180BCBDB488CD3A11E6C0542DE902CD333D97C3086AE39078C582 ] PEAuth          C:\WINDOWS\system32\drivers\peauth.sys
00:40:14.0022 0x1c9c  PEAuth - ok
00:40:14.0082 0x1c9c  [ 9ADA714E6E88677BFD81F4C5CBEC785D, D31B4F048DC24C8BE77E57F338CC18FD9BC057DB94BC44325055D21E41DD6684 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
00:40:14.0229 0x1c9c  PeerDistSvc - ok
00:40:14.0252 0x1c9c  [ 79AC5E885F027A159824CFD744862709, C728D507FC6E3B7C543DF67299933611D3C0E5F7AD86D003267E9AA95603C251 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
00:40:14.0265 0x1c9c  percsas2i - ok
00:40:14.0279 0x1c9c  [ FAC3541CD1F61088596BCD8B9B73C112, 32EC5BDBD20E6335FCB44263044257B11C02A7093A5388E1925B9FB361594560 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
00:40:14.0295 0x1c9c  percsas3i - ok
00:40:14.0342 0x1c9c  [ 30C9EE4C2B4FCE3720E2CDDA6B9D2A61, B77AD062ED9D7E1B94E7C9DA7FE792E93DE353A21A45DC132916DFC44D799A1D ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
00:40:14.0409 0x1c9c  PimIndexMaintenanceSvc - ok
00:40:14.0480 0x1c9c  [ A8D5BB6124D839D14A7A482EED4B71D3, E8E96062144D83515A8F8E1246AC30D01B9D1CAECB03C143FF9B38824C5AE6AA ] pla             C:\WINDOWS\system32\pla.dll
00:40:14.0593 0x1c9c  pla - ok
00:40:14.0620 0x1c9c  [ 5592A4BE802D0DFB2AAFB79C64A614AE, F57F6C84C6A062A6C5D5DFCA63665067143F59E3CA9183463A2214996FC25520 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
00:40:14.0645 0x1c9c  PlugPlay - ok
00:40:14.0660 0x1c9c  [ BF1415F42690F80D15145A9634B8AEAC, 5106E0C90E06CE926904BD48AD5099001503D87AF772E54378C8CD65E8E4B5D8 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
00:40:14.0678 0x1c9c  PNRPAutoReg - ok
00:40:14.0702 0x1c9c  [ 875A0E64081A2512FC7A52521A9A5224, CB994EF298042DACA841DBC7BC3CDC16BCDF5700B17D055B9E8FD17196DF65F7 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
00:40:14.0727 0x1c9c  PNRPsvc - ok
00:40:14.0766 0x1c9c  [ 56A7777982D765577CE90248173253B8, D2263E9B620912AC85BEF6921DA9B7DE3B86EF8132632D39EC8A7D032F021B05 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
00:40:14.0805 0x1c9c  PolicyAgent - ok
00:40:14.0827 0x1c9c  [ DB5DE6CB0532E0631C3B2DD118BFAC42, CB250CD894EF695906E8CB1F29B0212C8BD23D068EC9A035C27C8AAB462A3000 ] Power           C:\WINDOWS\system32\umpo.dll
00:40:14.0846 0x1c9c  Power - ok
         

Alt 19.10.2015, 10:22   #8
Kängua
 
Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



und die zweite Hälfte kommt hier:
Code:
ATTFilter
00:40:14.0873 0x1c9c  [ BE7B8EAA6BAB824833B5EC2558493CCB, 030331C28ABB33B23E71E56A18F0D91CD338535A7D1B8E7E7C61A206A1E029CF ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
00:40:14.0905 0x1c9c  PptpMiniport - ok
00:40:15.0041 0x1c9c  [ 5BEFB796938A9E380BC7E95FF5E851CC, A9EC11928DC568AE72586FFFDC74B1CFD279129C20B93427CAFAECAD450709AC ] PrintNotify     C:\WINDOWS\system32\spool\drivers\W32X86\3\PrintConfig.dll
00:40:15.0289 0x1c9c  PrintNotify - ok
00:40:15.0324 0x1c9c  [ 32DE82E59A184FF0C6322C2D13160B98, DCB0DCBC3F42610BA4E100771792FEC912A66C1D925681895C78BCC70BA1A948 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
00:40:15.0343 0x1c9c  Processor - ok
00:40:15.0375 0x1c9c  [ 29212B172C9BF76E51986E93BF6E833B, 116CBDE8400010AC7A8EA311588DE4CA8E16FBC8DA12A43F48C2EA5B3EEB2AA9 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
00:40:15.0402 0x1c9c  ProfSvc - ok
00:40:15.0420 0x1c9c  [ 771101B3C6D8F59354135E039133B2AF, 05FC0565510AC42132516B2237E05C144B7F88B8A853FB2EEC529B787457F553 ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
00:40:15.0440 0x1c9c  Psched - ok
00:40:15.0470 0x1c9c  [ 9CF55D3AE643D1EA2E0FF8036F7C1E8F, 18C4F618858E90EA94BE1EEF12FFF9656C91E363128027D9D700B91CB11D6CB3 ] QWAVE           C:\WINDOWS\system32\qwave.dll
00:40:15.0540 0x1c9c  QWAVE - ok
00:40:15.0570 0x1c9c  [ D8638F49996167C0D807321EFEEBA324, 518853C46ED7A61752296A52CA2DA2C40C81C3776756A5644E77399B9F51173D ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
00:40:15.0586 0x1c9c  QWAVEdrv - ok
00:40:15.0606 0x1c9c  [ 5998C355C7FD327CAC18F7B1B66D6692, F90E40DCFE4CB32A96CB9BD8DEFF550B679E6949C5396CA28F9901A20A471C20 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:40:15.0624 0x1c9c  RasAcd - ok
00:40:15.0658 0x1c9c  [ 06D690EE51F2E2E5CD8C1941C37ADAC8, 93F6F6AC0DBE72295E5A53A2F8D9865C16CC893BF1B40D0E91158D3FBB72B8C0 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
00:40:15.0679 0x1c9c  RasAgileVpn - ok
00:40:15.0700 0x1c9c  [ FF3AE2501DF2109034A769D17E476971, A288EDBF6BAB1C3F8B53BE04404E21A903E186FAB9B2DA8585BF59E1B6A34DBF ] RasAuto         C:\WINDOWS\System32\rasauto.dll
00:40:15.0722 0x1c9c  RasAuto - ok
00:40:15.0729 0x1c9c  [ DCACCE3F3FF364F228E4197DC435A503, 4E7B7C1210AF7AB20660AE730717EFECC21E9BADC881E6C66E9AEC5E3A137A46 ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
00:40:15.0766 0x1c9c  Rasl2tp - ok
00:40:15.0805 0x1c9c  [ A3441C3FEE9729B9CA0EE569B997581A, F0DB0A1788E05435C08B889BEC609382EA051C8D079DA14B44360E476CD00B8A ] RasMan          C:\WINDOWS\System32\rasmans.dll
00:40:15.0873 0x1c9c  RasMan - ok
00:40:15.0881 0x1c9c  [ 2FCDEB566ABB14E6B6797159CD356A2F, F874C8D3440F8B91FB06C33FF18DB5FA41472CBA1FF42FC10CE0F45A1471E49B ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
00:40:15.0911 0x1c9c  RasPppoe - ok
00:40:15.0926 0x1c9c  [ 682AAA336BEBA0542E96417B35C09A3A, 4FA84A12FCD647027308B890818D4B8CE3B0ED6D2A2EBFB9048B20B281FE463B ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
00:40:15.0957 0x1c9c  RasSstp - ok
00:40:15.0985 0x1c9c  [ A340B3039E43BC243CC397C1B351262C, 4C2D6BBDED327AA68F76093E02FB71400D61CA81B6F687FBEF3A703C63523C7D ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:40:16.0030 0x1c9c  rdbss - ok
00:40:16.0054 0x1c9c  [ 82A782AAFE96EE042061014551FD2771, 283C45CAF8C18176B2CD00EF0BC0A97948DD2D4994B093B9BB52EC0E9ACC69BF ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
00:40:16.0102 0x1c9c  rdpbus - ok
00:40:16.0110 0x1c9c  [ 86D46542F5B4CF19949A9D88F62F03CE, DCAEEDF8D16BCE0F134CC68EE79E21C01C90CFED884DD546E4A6D52F5E6A2527 ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
00:40:16.0135 0x1c9c  RDPDR - ok
00:40:16.0158 0x1c9c  [ 0492B1388FA2E044FD1C68DF3995395C, 2D698DBF8B339A3BF951070238DF69C2C0D8461B60667AC6E856AB38640ADFC5 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
00:40:16.0172 0x1c9c  RdpVideoMiniport - ok
00:40:16.0212 0x1c9c  [ AFC8014BBF976951853645B3D571D8AE, E6F3B2F3F6C68BDAB96FDAE97F89BC2FAF7819425374DF3BD42D0838B5D9BDF5 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
00:40:16.0232 0x1c9c  rdyboost - ok
00:40:16.0264 0x1c9c  [ 8DDAA6B57E804F495CEC7939389E76FF, 5C660B4B9CC619FCAF5F54BB39BFAA52F60F6C8D0410FF5BF482F376EEAA94B2 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
00:40:16.0326 0x1c9c  RemoteAccess - ok
00:40:16.0360 0x1c9c  [ 39C5E8150CDB05ABC9A2C4C1CA294494, E9A5E2453620AE93028D18523EDEFED9D836DB121E6BC5D80C88210862EF1443 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
00:40:16.0400 0x1c9c  RemoteRegistry - ok
00:40:16.0447 0x1c9c  [ BDB549490F39DC5D05F6FE090C65B6CE, 6A55B6B3E5C9CE153DFC26D55E7F861726F93C9EF3ADB621ACB9EC64A9E0FEF0 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
00:40:16.0569 0x1c9c  RetailDemo - ok
00:40:16.0596 0x1c9c  [ 4BB504C3158A5DE28E30B73A124D97FA, E79F7A39815FBCF3EE9FCA5BC17206BAA3515CE27C2A9B0EE6D00C958F03FD2C ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
00:40:16.0649 0x1c9c  RFCOMM - ok
00:40:16.0682 0x1c9c  [ DF672613FBBCD58C38BB0BC2694BCFB0, 9B574773C7E796B7E30481F7A22D996078D5D3D295270B5BA5931A2D2F03EB4B ] rimmptsk        C:\WINDOWS\System32\drivers\rimmptsk.sys
00:40:16.0726 0x1c9c  rimmptsk - ok
00:40:16.0760 0x1c9c  [ 470FC46E2989F6606043C1C5365B15FD, 6EC46EE251674F22A43D6E3E0C2ECAF6A156386CD7A1C2C6821F4328F8A04826 ] rismc32         C:\WINDOWS\system32\DRIVERS\rismc32.sys
00:40:16.0819 0x1c9c  rismc32 - ok
00:40:16.0838 0x1c9c  [ FEDD30489BF8B6B570C5DDF9FB23B61B, 54D7875A2BB7196559978E846A34E3D4868EF822C9540A1CAF616BA6C7284902 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
00:40:16.0877 0x1c9c  RpcEptMapper - ok
00:40:16.0909 0x1c9c  [ 7C446A9ECBDA1BB9EA07E0CAC888E0E5, 3C7258A10622ACA2BBA039D157A5F6615B047E360BF84DE247F442D553BBF37A ] RpcLocator      C:\WINDOWS\system32\locator.exe
00:40:16.0945 0x1c9c  RpcLocator - ok
00:40:16.0987 0x1c9c  [ 34E26E472DB5C01FAD58809285DBC0A4, AA19704F4761DF4F794E1E242A3EF318DB8DB2FF728FCB413038F4EB76960437 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
00:40:17.0049 0x1c9c  RpcSs - ok
00:40:17.0083 0x1c9c  [ 24266551599B47E98978A546DC3D1A23, C58385DB3F491F82C0C5E20BCFCC61873A14BBA7FB97CC37B590129695CE7D79 ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
00:40:17.0119 0x1c9c  rspndr - ok
00:40:17.0146 0x1c9c  [ 61E9C26AAFFF08FF6FA363CD020C5833, A70C709332D5E745ACC79A225EDDB3D6DFB58BBD838C0B319E64F4219CCDE05A ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
00:40:17.0184 0x1c9c  s3cap - ok
00:40:17.0209 0x1c9c  [ C33D357DBB05447FB85B01BB897CAD47, FD4C60E7D5B7E83D2C14D055C56652688BAA119E1B411B4A03B607A6B6E1592E ] SamSs           C:\WINDOWS\system32\lsass.exe
00:40:17.0223 0x1c9c  SamSs - ok
00:40:17.0251 0x1c9c  [ B0D08EDCB53233F0C951A321DFE16782, 6C361D8AF817BE27BB085B4AE7F0FFA8389C5163A4C9E4191E144BA5895CB6D7 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
00:40:17.0267 0x1c9c  sbp2port - ok
00:40:17.0292 0x1c9c  [ 5CFDF976840CF5AE151812E44CA23ACD, 6F9AFFDF30EB0C77EE4BF4FE510D807E44F5504CCE01EFDE2A1A6F4D7B4A7583 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
00:40:17.0338 0x1c9c  SCardSvr - ok
00:40:17.0360 0x1c9c  [ 561B6685B49BFACCE44F6CE8F9D2772E, 909C32A79757741D63DA1DED23E8E3563B474F74E328E46AF42F70EF2F777DB3 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
00:40:17.0403 0x1c9c  ScDeviceEnum - ok
00:40:17.0422 0x1c9c  [ 47F1441B8E9D17F4E9988AD6B3B0BFEA, 73BAE5B71D058DF963D58BB41E412D5627946845D50808B7E38972E3C5EF1E86 ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
00:40:17.0442 0x1c9c  scfilter - ok
00:40:17.0508 0x1c9c  [ 6C488DD1B6A034B393116C18B48624EF, B5625C7D3B6B79F4591DA3B843BD25BC6EC9324149AF9298D46B9A14B40C33DE ] Schedule        C:\WINDOWS\system32\schedsvc.dll
00:40:17.0591 0x1c9c  Schedule - ok
00:40:17.0622 0x1c9c  [ F3784256C84816FAA9F424238748C204, 2B4568769496CA3C7105D9A233428C1D01DD67A43EC64213B66B08E3AF701C2F ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
00:40:17.0650 0x1c9c  SCPolicySvc - ok
00:40:17.0680 0x1c9c  [ 62A221A1D72F09756BAE2684E331B030, B1D0FCCB8CDD61A5C757B53D7D1AFF253B8B3D8B32647F1DF7FDFFB384F46C44 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
00:40:17.0703 0x1c9c  sdbus - ok
00:40:17.0725 0x1c9c  [ 32CF3BDC3B109222BB4C6163DC56126C, 7EF95A9CCD7FEF5B8E0180A24105D47F6BE972561C180498BB859B8D027474EF ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
00:40:17.0760 0x1c9c  SDRSVC - ok
00:40:17.0777 0x1c9c  [ 853F6A39CEB660FF43E1EE84C67CACE6, 0A82B40729A77E7B01669455C853546D2E29FD06A4B083F3B0E4947A1589B78B ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
00:40:17.0792 0x1c9c  sdstor - ok
00:40:17.0815 0x1c9c  [ E00268AF7007729A8637358FCB18FBE9, 88F014F43D41C9259127C75C7BF2D8CF36A4F44905014E239F4B625F27CCB6CB ] seclogon        C:\WINDOWS\system32\seclogon.dll
00:40:17.0866 0x1c9c  seclogon - ok
00:40:17.0885 0x1c9c  [ E8DC600CFC2A0589D0B76D04163D15BF, DDFBA1AB13E0F7BF90345C2FCEE099E894ABD9F701E144378401C68F0FD2D0C6 ] SENS            C:\WINDOWS\System32\sens.dll
00:40:17.0923 0x1c9c  SENS - ok
00:40:17.0972 0x1c9c  [ 4219291C41472ED2AF4928845BFE08A9, 4DA4C0EA059CC746A9EA2B85891BC38B699A4472F1E8C0E8E7BA763D340FD993 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
00:40:18.0107 0x1c9c  SensorDataService - ok
00:40:18.0148 0x1c9c  [ 4002AA27A73C15E701361F93D6DB5BAA, D532FD95070F6608E829DCB7722E35C4057A42C8DC3C014491480C90B424BBD1 ] SensorService   C:\WINDOWS\system32\SensorService.dll
00:40:18.0224 0x1c9c  SensorService - ok
00:40:18.0260 0x1c9c  [ 689E578BFA9703829D17DDDF8127F2E1, F7710B4CDF3C08FB535E56687B59B185769EE82FE6EE5574CC72A789ECBF2C04 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
00:40:18.0333 0x1c9c  SensrSvc - ok
00:40:18.0361 0x1c9c  [ DD91D7F39032ECBBFF67870708CD02E1, 95CEE9A999A15E325B4E615D96A353C4B61BD4AA7D658562D8C3440A26B7D786 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
00:40:18.0375 0x1c9c  SerCx - ok
00:40:18.0412 0x1c9c  [ 3AE925684A0DCF8CD52EA23B1DF2AC75, 4E545D1BE71F8F6C01931EF4A9A8980E88AE1005A7F2928902F6997C5DB70927 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
00:40:18.0431 0x1c9c  SerCx2 - ok
00:40:18.0448 0x1c9c  [ 6DD94F4FFA57B9090F19561CB1A897EB, 386F89B11D8B224C110E3701405FFB97A2E10F0F487F8825E76BE68C2DCE7B0A ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
00:40:18.0464 0x1c9c  Serenum - ok
00:40:18.0477 0x1c9c  [ C4C30156F58BF3F0B6469FD600572771, 1C9E37A68B360622B2415D0652F2B379ECB05720F26549EFB90CBE6D011EF8F5 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
00:40:18.0510 0x1c9c  Serial - ok
00:40:18.0527 0x1c9c  [ 71613856BCA1C1E2454B381B2116ADF4, 8A7FC3F42B75EA496D3FEE6DF5AAB2007DD4195283B3FCBC8C1046FE1A419115 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
00:40:18.0566 0x1c9c  sermouse - ok
00:40:18.0618 0x1c9c  [ 112130CC00D40A252DD82BF04CEA1BC3, 053C0558458E18FA240236FA8472B75C98B17CE5F6D5BA60834A1D3E6E47BA4C ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
00:40:18.0671 0x1c9c  SessionEnv - ok
00:40:18.0702 0x1c9c  [ 6B9356B3BE45E2738E6E9DC253F5BB6E, 523368A7A5E4258F12F4A041E3A66A61D8C3DD2355B535FFF96A55C5F93DCCE0 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
00:40:18.0739 0x1c9c  sfloppy - ok
00:40:18.0893 0x1c9c  [ 59BCE251B359B2C67EF759CB2165D24F, AB857D593FBCE0948FC762A9636AE1FF47B3D27495A3261AC36C1D5C8CCDBA31 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
00:40:18.0976 0x1c9c  SharedAccess - ok
00:40:19.0045 0x1c9c  [ 6E8D80FE7152979E13C375F4F49C8D7A, 2D09DEDEFD37C25C545305B9033922FAFE72E46BF2B27DC236FC94454DAF00C3 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
00:40:19.0103 0x1c9c  ShellHWDetection - ok
00:40:19.0118 0x1c9c  [ B89ED8976CCAEAABF80641688DE4138A, 3F1C68AC9C60FFC9E7F7C56711D300F8741BB962898ABE56F791F26E6218982B ] sisagp          C:\WINDOWS\system32\drivers\sisagp.sys
00:40:19.0132 0x1c9c  sisagp - ok
00:40:19.0145 0x1c9c  [ 51E871A63F842439D74465B77BD7DB6B, 947DCEC5673CA087E48CA192805B5C0AC1A9132E1E839A6EF242A7C52AB64A90 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
00:40:19.0159 0x1c9c  SiSRaid2 - ok
00:40:19.0170 0x1c9c  [ 912C0258924F5C2D709DBDBB984E54E0, 699A2C0EB6F35F2F7158D4EFB7A3DED5582EA3B273BA58BF96988C072DB406E8 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
00:40:19.0185 0x1c9c  SiSRaid4 - ok
00:40:19.0216 0x1c9c  [ 17ECAD48DA86F1832C6683958C4DAA38, BAFF1A2ECF8E28E5EC69E1D99322C2DD5908858B5BAAED9E12D789F0B9426FB8 ] smphost         C:\WINDOWS\System32\smphost.dll
00:40:19.0257 0x1c9c  smphost - ok
00:40:19.0286 0x1c9c  [ B21F6B3417C5A6C896995FEC3B7B132F, 35BF7CF0A2951D3CA00BC4C3F7A5669C59CA5158CF6C168B278558E0BBBF1D9F ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
00:40:19.0341 0x1c9c  SmsRouter - ok
00:40:19.0373 0x1c9c  [ 92F93A03EFED14741E7F10C062C66154, 0AC189ACA325EF3BA7EE578C4F8457B2C5EAE93B26BA6BCC56B57AF22D38F4F3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
00:40:19.0404 0x1c9c  SNMPTRAP - ok
00:40:19.0436 0x1c9c  [ 81AFFBE974C73E6EC2DC58C3DF5367A7, D0A6362FA7CB32828D747897A78E59C93A871F6734281814B97F42DD87439FD8 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
00:40:19.0469 0x1c9c  spaceport - ok
00:40:19.0483 0x1c9c  [ 179F60AFF0124C8C3F7A7FC11CB851A6, DB95F678F2E287E3063E5DE3D83A00EF8B4B38648F6358F5CC20D57B338BA14D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
00:40:19.0498 0x1c9c  SpbCx - ok
00:40:19.0530 0x1c9c  [ E185391867B572A663EB2C3388ED4663, 011F422418DB1E8F796A593785B29F302EC635D6B63DDD0898F2AA663AEA5A23 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
00:40:19.0613 0x1c9c  Spooler - ok
00:40:19.0800 0x1c9c  [ 95B9AC2F41DFA40CC56AA51F77148932, 1F71E689CDDECD619FF1CA406F30504BB2B46B045D395FF12075FA65976EE2FD ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
00:40:20.0074 0x1c9c  sppsvc - ok
00:40:20.0108 0x1c9c  [ 389FA116A6E2C19E5EF8F3A76DE563D1, 5B9E936E39ABB564733FFDE6F95FECB2C5EA1D9EAA2294007139DB02C1611206 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
00:40:20.0164 0x1c9c  srv - ok
00:40:20.0197 0x1c9c  [ 4A31D5BE69AE15A34B0DB773C2141613, 1AEEE5FF4352B2E933C541087703E73E14BC73924D394C53D796BA607A62B79E ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
00:40:20.0271 0x1c9c  srv2 - ok
00:40:20.0301 0x1c9c  [ FBEA6F67616A51A508ED1D4A82D7594B, 1AFEE25D100345E7A07B8D931DA69E4F16F39D18D9DD5E1184854B902C274AAF ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
00:40:20.0336 0x1c9c  srvnet - ok
00:40:20.0371 0x1c9c  [ 3B4675C8FB10F75CA73F01FB5DAD4F2A, 02B622F32E8650425E32DFA5624D4F2CCA6290ED675EE6F89D0553B632851192 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
00:40:20.0413 0x1c9c  SSDPSRV - ok
00:40:20.0452 0x1c9c  [ 424566865D82AA4BD8D6546C1F2065FA, 37B4C04C7C0EE0F3347A9E9F35B095478299F7324CA87AAE487BF989B0E6AE03 ] ssmdrv          C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
00:40:20.0461 0x1c9c  ssmdrv - ok
00:40:20.0489 0x1c9c  [ 78E9160D5757313A8844721496F4B5A3, AD9225DCBC833C48ACF7EF601A07AB322A752327076A0C5826A93DE2E79BA2C5 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
00:40:20.0533 0x1c9c  SstpSvc - ok
00:40:20.0627 0x1c9c  [ E2D50DC08ACB0DD200F56E592BD61C42, A544F2F91B243CAA639974B02C518786EB8857F9CC3947CE51A8EE532D8FBCDF ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
00:40:20.0840 0x1c9c  StateRepository - ok
00:40:20.0872 0x1c9c  [ 5514253A43EDFDC7FFD5A09AAFEB53BB, 9812447B64222CF4CEEE7F8AD3FD020AD3C4F461085147133B52F070841A358E ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
00:40:20.0892 0x1c9c  stexstor - ok
00:40:20.0925 0x1c9c  [ 087C8B10AA018C81C6DF53371E12210C, CC19C0F39A124F2CC5E313E5BA93D86ABD203EF60EA2C7AD0435AD37F05B015F ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
00:40:20.0974 0x1c9c  StillCam - ok
00:40:21.0021 0x1c9c  [ F654E3963190FF9B83B415EF1C8080C5, C6748DDC2154823A2C3B50D256253D7C3B01F9CFE4ED8CBB24DDBE454CF13A95 ] StiSvc          C:\WINDOWS\System32\wiaservc.dll
00:40:21.0092 0x1c9c  StiSvc - ok
00:40:21.0126 0x1c9c  [ 5053FE3217643D98B4DBCFDBF94F8F39, B8FB02579A29650025E1B17137F0D0778F1295C5808326C2EB4D86FFC1140210 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
00:40:21.0140 0x1c9c  storahci - ok
00:40:21.0161 0x1c9c  [ B4946416C2F4C6D7B85ABA8A96D364F3, 0AC5BACCF3F4C496CFECA08DDA47C915C46D901E6B382519ADB010ED12DB25A3 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
00:40:21.0175 0x1c9c  storflt - ok
00:40:21.0193 0x1c9c  [ C55E0B58A2CFB3A12018D1D65706C423, 9D842B4B7BB3FE91351D7D6B7DDC34A4C2A7CE6E0B57BB6DD2EC05DA88C66CAE ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
00:40:21.0207 0x1c9c  stornvme - ok
00:40:21.0225 0x1c9c  [ 2BB6C9C6DEE4A991557A4DC1F1425258, 138477BBDA00A2EC88095E71CC432918B0737A565098B87DD16228819FAF017C ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
00:40:21.0299 0x1c9c  storqosflt - ok
00:40:21.0337 0x1c9c  [ DE790BE02D403D6BE33306CECF034EE7, 8DE30C496E8AE87AD9D08D98202E1454453A0FE84B06FB674B3954D0515660F7 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
00:40:21.0384 0x1c9c  StorSvc - ok
00:40:21.0401 0x1c9c  [ F6D9DA87ACD6A0811E6A5C86C0C1D299, C9A6DBC21F4B91696CA9ECF40614D435FE53F4882DD46256DE395A3AA8A6EB37 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
00:40:21.0415 0x1c9c  storufs - ok
00:40:21.0434 0x1c9c  [ 9FE75A5C713B2CB216682A7D30D0B04C, 34F5C1C4ACC0887A5F9269292891B65DFBC581C92032C63A6336FAAE71B785C3 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
00:40:21.0447 0x1c9c  storvsc - ok
00:40:21.0465 0x1c9c  [ 5671F1BE686F0086DFBBD5E8A48531C7, A50DF4D4C94C997BA922A63B955DB4E76B80B217D7CD820445A0EBA12BEA85C3 ] svsvc           C:\WINDOWS\system32\svsvc.dll
00:40:21.0489 0x1c9c  svsvc - ok
00:40:21.0556 0x1c9c  [ 1F4CEAEF6A3503ECB2DCB8BA280EAACF, BBB0CD23E01651E3ED2E5B76756FBA708A6A3C926BDF02C2518D174028937EF4 ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_x86_b6707c73599dd1b6\swenum.sys
00:40:21.0569 0x1c9c  swenum - ok
00:40:21.0587 0x1c9c  [ 64F0F31927C804C9466AFDA6865C74F5, B6406661E34CA984F0571467E294B14FEA046CE0F83D67F868266FA24A9C63BD ] swprv           C:\WINDOWS\System32\swprv.dll
00:40:21.0624 0x1c9c  swprv - ok
00:40:21.0663 0x1c9c  [ 71C71D91E99390F68135F0139CC811C1, AAB39624F7981218AEC21813DA9E76E48054CDBB82CE4354198F253D46A85C4E ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
00:40:21.0696 0x1c9c  Synth3dVsc - ok
00:40:21.0764 0x1c9c  [ 0E8676FB3BB95AA40FDF7A4A31018C8B, C14931CB26830E2A720C4DA5C16E2CBF1BDDDBD253257491F0D84EF5C94437E4 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
00:40:21.0847 0x1c9c  SynTP - ok
00:40:21.0890 0x1c9c  [ E977BDA493D3DDA3469B7C31573D1002, C6B4315453BB11E82D58609C27D6E85987799122A963F53D6117E845A2C51BF8 ] SysMain         C:\WINDOWS\system32\sysmain.dll
00:40:22.0020 0x1c9c  SysMain - ok
00:40:22.0061 0x1c9c  [ A50EAF2F8736C83DA076B2883083C0F9, 395D6CFCE571A0187963E385688FDD834FB746180EF4DCF61F3C1547BD0E4E02 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
00:40:22.0125 0x1c9c  SystemEventsBroker - ok
00:40:22.0162 0x1c9c  [ 56FC71CAB4042A3E05C2B1A1A09660AA, A916654D208992456C1E16EF19168B6B3D6FA80F4D79DF2B27EE431F860617D0 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
00:40:22.0246 0x1c9c  TabletInputService - ok
00:40:22.0281 0x1c9c  [ 1B100A7E023B1A27BAECD8D7BCC16308, 38EC868F3F65E46347F2555784878A10EEB7F2BC5E993BE0DF1EC413EFD98917 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
00:40:22.0331 0x1c9c  TapiSrv - ok
00:40:22.0400 0x1c9c  [ 8B5E546D3E19C4A09D56E771B8C2B742, A53A2065417DEF751985C3E9522EBEBDDE12802B93BA59B17BF2F1855F8DE653 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
00:40:22.0491 0x1c9c  Tcpip - ok
00:40:22.0559 0x1c9c  [ 8B5E546D3E19C4A09D56E771B8C2B742, A53A2065417DEF751985C3E9522EBEBDDE12802B93BA59B17BF2F1855F8DE653 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
00:40:22.0627 0x1c9c  Tcpip6 - ok
00:40:22.0667 0x1c9c  [ 1511984A27D9A11297E975D836782EF5, 7E0DA4A38D0D231F61298589ADC66A3BB1C10ABCB1DA813644F1C184EA619A59 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
00:40:22.0704 0x1c9c  tcpipreg - ok
00:40:22.0731 0x1c9c  [ 35C4DBFAE5E7C4A5F53CAF94C23F0E82, 16EF575BA919DA04632028D5CCC89FA275BB07E0C25D6561189B30E1119E49BC ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
00:40:22.0748 0x1c9c  tdx - ok
00:40:22.0761 0x1c9c  [ 925D2ADE3BFEF7B886495D5DEB213039, 6A540633ED30A7521060375900011B1F3ADDD5CDD4FA1F6A7700325B7FC0A622 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
00:40:22.0776 0x1c9c  terminpt - ok
00:40:22.0814 0x1c9c  [ 42B2B7B97B5FAB34A33B0EDA3D8B4306, C58BFD73B91836BCE25A941F395B780E0F359EED9F5E2B6AE424E0E37D304DD8 ] TermService     C:\WINDOWS\System32\termsrv.dll
00:40:22.0876 0x1c9c  TermService - ok
00:40:22.0899 0x1c9c  [ 0DA2F3AA4728358EFB7F1BE678366342, E572DF05F5E6DC0719B7F0F50B3E73AC95555539428AC2021BD1391FA1566428 ] Themes          C:\WINDOWS\system32\themeservice.dll
00:40:22.0939 0x1c9c  Themes - ok
00:40:22.0976 0x1c9c  [ A42FC3C9F8057326F01B200C2D5001DF, AE8E2685D51109619CF4512C31CE6B64C8F00DA09674123DCCA5A5B7DD18023A ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
00:40:23.0065 0x1c9c  tiledatamodelsvc - ok
00:40:23.0083 0x1c9c  [ 4AB94B6D9EC9CDE709AC8F3E7D61E3B0, 9DF262D317AFFFA4D89DBE781E0FB7812402DA5E8AF13FEAFAB812A8B3981AAC ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
00:40:23.0133 0x1c9c  TimeBroker - ok
00:40:23.0156 0x1c9c  [ 2CBA4A67885CC51821A5275982203242, 9C8C993EDEAF34DC5FB4FE65115E3E2478CA28951A1E0A28BE1F5064ED4062A4 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
00:40:23.0175 0x1c9c  TPM - ok
00:40:23.0186 0x1c9c  [ E8EFD34DE5989E92E0B4D1F72E5A661A, 9B9B6488360E3711A4B68EF77D32EDB87481D81ECCCBD8E94E29D9C6CDE4F5B0 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
00:40:23.0221 0x1c9c  TrkWks - ok
00:40:23.0275 0x1c9c  [ A5D96D46AC80ECC6BDF1A2404AEFF032, FD02D79E2D13F460D6D146E3A1BBDD5101D78916724C9A7DC0531E0C8E5E52B4 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
00:40:23.0332 0x1c9c  TrustedInstaller - ok
00:40:23.0355 0x1c9c  [ F89096839027649451460F30A784A102, 539FA7B919031505FFA5816664335F619E7CA1DFB4F76B0AE9460F202E4235CC ] TsUsbFlt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
00:40:23.0403 0x1c9c  TsUsbFlt - ok
00:40:23.0438 0x1c9c  [ 2B55B1FD83C5BC06178E3A45A2A50C50, 708A5C62B73A3867C74867CD3547A9A931A13F7067940C598A37D78115ED7168 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
00:40:23.0476 0x1c9c  TsUsbGD - ok
00:40:23.0511 0x1c9c  [ 52C7AEE1E3B67F97D6CAB9DEC3124B8B, 4E8E0F248136109EBB7D01069187C6A03C558C03D655C149BA19858A3482ABF1 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
00:40:23.0591 0x1c9c  tunnel - ok
00:40:23.0623 0x1c9c  [ 37EBE2FB2FF90894BA7EB314B3A6CEFB, 869A386E4005EC1AD46A1C07CB5A8F1EA090A76DD06EDF7F5526DE16D95CF582 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
00:40:23.0645 0x1c9c  uagp35 - ok
00:40:23.0657 0x1c9c  [ C85963E63732F501396D3BB83533351E, E47CE545D3A4D8D6EFCD6F7F73CE78127440540977DDCE405793E7C4CF64182F ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
00:40:23.0672 0x1c9c  UASPStor - ok
00:40:23.0693 0x1c9c  [ A014E28D735F4C2C590369BBA6D1B840, B054B464BCC69129CC3D1B64F86161A7209B7B34A58A969AEC5811F76CA33877 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
00:40:23.0736 0x1c9c  UcmCx0101 - ok
00:40:23.0752 0x1c9c  [ DD194BBB6F0AE59C20887ABA6D00C1DB, 7D78C2CEF80D6961884966DA2C25E4A7CF98221BB34F390F8D84C60B52BBBF9D ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
00:40:23.0854 0x1c9c  UcmUcsi - ok
00:40:23.0881 0x1c9c  [ EFC19FB0D7E495466D50C0DDA5CF00D1, F9E8B5DDFC7D7E4E6FA064AC05BA25D81704C08B1A1E77FC74753854F5004B60 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
00:40:23.0900 0x1c9c  Ucx01000 - ok
00:40:23.0915 0x1c9c  [ 1A0A0A87207F9BF993C8961CB8234AC5, 71DEB0F5D8C99C3F8C12938A2CEC9B04A20A166002C3C5B97DA2E4C305B9EBE7 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
00:40:23.0956 0x1c9c  UdeCx - ok
00:40:23.0978 0x1c9c  [ AB09F4F6E2092BE9F1411AE3556215FF, 56B0A3375519158ED33923704B92B66361CECDF9D054EBC46A70C6C8BDFC0AE0 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
00:40:24.0024 0x1c9c  udfs - ok
00:40:24.0040 0x1c9c  [ 458811017BBDE90E2E995791B6DB34A3, 3ACAD19D27E8FB8071BF9881000A94474AB341F64543B3E2B3A6EEE92484036F ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
00:40:24.0054 0x1c9c  UEFI - ok
00:40:24.0095 0x1c9c  [ D6B468F15B452426D9A284043C812C84, 7B32559E30939A938027AE3A96E3415DBDB5BA072890426F390ED0EF081A40B8 ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
00:40:24.0115 0x1c9c  Ufx01000 - ok
00:40:24.0129 0x1c9c  [ 11B24FD938AD1150250F5A04B2608007, D0742914B02AA7AE753D74AB5DF763621ED426E09BA909BFB2CB253A4D217840 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
00:40:24.0145 0x1c9c  UfxChipidea - ok
00:40:24.0160 0x1c9c  [ D189C7A733781F184E79834E6F80E1E5, 90398664782F0B86168790FE784365E7D71A125FB21D7B07856120A2E2DC876D ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
00:40:24.0177 0x1c9c  ufxsynopsys - ok
00:40:24.0207 0x1c9c  [ E0892C322F3F32193489246A0AD549B1, 01D5EEEE72E89067D34DA105AF61742D67A2951180CB375DF35DE3B13F09D8FF ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
00:40:24.0244 0x1c9c  UI0Detect - ok
00:40:24.0261 0x1c9c  [ B3862E64208AF2D77EC651F8FE8E067A, 2FAAD97F089EFE06C6F2A5349CD77936AB0C848B995AF0B5241FF26F19BBB2EE ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
00:40:24.0298 0x1c9c  uliagpkx - ok
00:40:24.0315 0x1c9c  [ 34196654205A974D2CB458614633694A, 844E513A10BEC4AD6F2BE320DADAEEACE97137DEF021675B9892A9223D177114 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
00:40:24.0331 0x1c9c  umbus - ok
00:40:24.0346 0x1c9c  [ C538555EFAE4443C6F2D18F075AF739B, F2DDB4169B5F7EE02EAD38E44E70FD26A7ACB5BDBCFE78B74D312D3A7E67856F ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
00:40:24.0387 0x1c9c  UmPass - ok
00:40:24.0417 0x1c9c  [ 08EBE7317200C4B5D0F75530ADBD82B2, 9F394F39E7E6DC5E5ADD0405F1027C987C3CA1AAF2320FC526F1426CC984D698 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
00:40:24.0459 0x1c9c  UmRdpService - ok
00:40:24.0511 0x1c9c  [ 9157489ABA83D6FEAAAEC8E3F79714E8, 1C053D0BF3D03B092A217EC9CB4DDE73D26F7E951903FF3CC1DFB78E12C13652 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
00:40:24.0600 0x1c9c  UnistoreSvc - ok
00:40:24.0739 0x1c9c  [ C0AD6D5023060BB22CAC042A50B989D7, 828BF49AFF6DBD177E803C448C3C4B050D4BE1399E150830EB22C4EA2A641F5D ] UNS             C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
00:40:24.0795 0x1c9c  UNS - ok
00:40:24.0820 0x1c9c  [ 2E1694B0F05123189E9718D4AE4FB967, C49C1A0AE0ABD052EF14CB502F44108642E4D6486396E461EAA3ABB3E22371BB ] upnphost        C:\WINDOWS\System32\upnphost.dll
00:40:24.0867 0x1c9c  upnphost - ok
00:40:24.0883 0x1c9c  [ D476EC57841EBF906A1A5D5CF8A25A4E, 66E07B189F1338B2A1264C4840279E42C0914DBA4DF45FE22642114F18AB926E ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
00:40:24.0897 0x1c9c  UrsChipidea - ok
00:40:24.0913 0x1c9c  [ 295F5346F6A89D984556C3DCF5251397, 5C51CE896E775B493F61DB7CFE1B9238958FFB936E6EDAD05B88BDE9AF2950EC ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
00:40:24.0927 0x1c9c  UrsCx01000 - ok
00:40:24.0944 0x1c9c  [ 8AC42D0B294F12678BC7D2E59E53C63E, DC3DC5973CFD741AE924CF80E941B577A05A5944E733380FF13176CAF5738780 ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
00:40:24.0958 0x1c9c  UrsSynopsys - ok
00:40:24.0987 0x1c9c  [ 3C7355642729C37756CA44149F48D9DF, 953884AA2847258E26A6CFAF3EDC1CF0970402DE7337A31664E3623F73339C57 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
00:40:25.0019 0x1c9c  usbccgp - ok
00:40:25.0050 0x1c9c  [ E595CCF4C73C0532B0FC6987DEFDEA02, 2ADA8263F0164077CD4B0702BC94309D34754B4027A07E4CC65523E75004D876 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
00:40:25.0084 0x1c9c  usbcir - ok
00:40:25.0126 0x1c9c  [ 5E11DC890661EEFFB6765FD3673DA48B, A041BFE9956CF95790F8CBC963DE1BDC014FAEBF1D6521DD70ED409E88A56AFF ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
00:40:25.0140 0x1c9c  usbehci - ok
00:40:25.0171 0x1c9c  [ E842D01916A07B0F9366475F93FF2825, 9547912492756E9407BAE9772B3ECFA02F23D30D3D69207B66E1BE9C51B0A167 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
00:40:25.0196 0x1c9c  usbhub - ok
00:40:25.0234 0x1c9c  [ 08B756675DE6C56F08C57FE717E459CD, 4FF06F4E0063798B011DC709EC20086FC2E359288B7210A31C9AC7D310F4AA46 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
00:40:25.0270 0x1c9c  USBHUB3 - ok
00:40:25.0294 0x1c9c  [ 6869083258C40F48E07D5C14407D9751, 62F06C2906C2BC82AE4F9DCB656486E69B497D824652CD754A97075A9AD71D2D ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
00:40:25.0391 0x1c9c  usbohci - ok
00:40:25.0402 0x1c9c  [ 496E99DD8406E13F7C681A8DE2D4C57C, 95BD987D17A72A1DBF99FAD1F3B28EB01C6B357C69FDFA85393BC976149BA3E2 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
00:40:25.0429 0x1c9c  usbprint - ok
00:40:25.0442 0x1c9c  [ F7CEF97DD6240352C36F02214004D82A, D2CC7EC9CDD6CE3272BD3D257EB2417EAC3EF7957F9D17292232F4BC78620CE6 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
00:40:25.0471 0x1c9c  usbscan - ok
00:40:25.0503 0x1c9c  [ 8D2B6A8F0D7DB6B0F8CBA83CFBB973B0, 2942FE180849262A1120766ECD6E5B9593F8BFBB1C708E85EF87DBCED3A9BBC2 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
00:40:25.0531 0x1c9c  usbser - ok
00:40:25.0550 0x1c9c  [ 85163F7A6331C88A6A8A56A80D7D4B12, 002B00D9ED1C3A595589C8173C0A5157445D129ADD18411EA363F69C73BD8414 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
00:40:25.0567 0x1c9c  USBSTOR - ok
00:40:25.0585 0x1c9c  [ C881DEA9BDD0E79B4A54BA63E1550916, 9A5D69BCAB77DCAB2941EE9BBC8B7F92EF547745ADC3FB04FF5E74E7F806A8DE ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
00:40:25.0618 0x1c9c  usbuhci - ok
00:40:25.0653 0x1c9c  [ F15F967A11D933C9AB14550B5933570D, 41433658D2AAA6A156E4C77EEF0DC67C79A04D11F7757062541E9598B8013CA0 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
00:40:25.0675 0x1c9c  USBXHCI - ok
00:40:25.0719 0x1c9c  [ 4182017F129A11202880622508E0F361, 5AC73BB4EF8701DFE3998C26214E30BD6CBDA178D0BBFBF3033455026D038DC2 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
00:40:25.0826 0x1c9c  UserDataSvc - ok
00:40:25.0875 0x1c9c  [ DA5543684847D1D9FA471FA82F3440B4, AB4C9940A2B0DCD7A850FE78DFC9F8854FFFE91780B30C4FA5E6329B6CB8F0DE ] UserManager     C:\WINDOWS\System32\usermgr.dll
00:40:25.0928 0x1c9c  UserManager - ok
00:40:25.0966 0x1c9c  [ FAAB96FED57D64EF955B0E5607C86422, 7A6D4BBCE6DD130BC77950FF3F1823B321E393AE867D385E1473F98462F5727A ] UsoSvc          C:\WINDOWS\system32\usocore.dll
00:40:26.0053 0x1c9c  UsoSvc - ok
00:40:26.0070 0x1c9c  [ C33D357DBB05447FB85B01BB897CAD47, FD4C60E7D5B7E83D2C14D055C56652688BAA119E1B411B4A03B607A6B6E1592E ] VaultSvc        C:\WINDOWS\system32\lsass.exe
00:40:26.0085 0x1c9c  VaultSvc - ok
00:40:26.0098 0x1c9c  [ 2C76C8C2165A67AE3FD15B212A625307, CC646DF09C6897E4ADA4DD34DC53285895F0CA5E101921AB3A4E5DAEBC391AEF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
00:40:26.0112 0x1c9c  vdrvroot - ok
00:40:26.0148 0x1c9c  [ 7060B842877A47746DB811EDAF4858C0, 7901DA08CAEE5D7C20C2F9EC070A5D62F33C7284C237314F3633749CC5E4C731 ] vds             C:\WINDOWS\System32\vds.exe
00:40:26.0214 0x1c9c  vds - ok
00:40:26.0247 0x1c9c  [ 45744032FEFD76CB92477097088837BF, 5E8C9783DA3E09C7BE384BFA2BE5676548F5D19356FCF24F89E74F983D037911 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
00:40:26.0265 0x1c9c  VerifierExt - ok
00:40:26.0300 0x1c9c  [ 5A11201C11CA1C45C992244C80530508, 31F412BC674CE7E11CA1C6BAD59DF808054C1C303B87CD5271151EF4507D3CE8 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
00:40:26.0342 0x1c9c  vhdmp - ok
00:40:26.0360 0x1c9c  [ CC0C3B328CD34F3C87D07DE154B2D508, A63BA5888DDD2346059B24C6DFB75472D4A1321E233AA62E7FCDA0EBBF77C0A1 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
00:40:26.0399 0x1c9c  vhf - ok
00:40:26.0418 0x1c9c  [ 50E4F3E9480959FA1AA027DDC3566A76, BF4426B65AD45238955E575D0BD65D3951B22729BAB573F88091E80950FDADDB ] viaagp          C:\WINDOWS\system32\drivers\viaagp.sys
00:40:26.0433 0x1c9c  viaagp - ok
00:40:26.0448 0x1c9c  [ 040BCB82595511269E89D5ED57739B4E, ED4C0750AF28D8D9A61E447BF82BDC8A81CC87A5F22EE552048E6A3A9C9369FA ] ViaC7           C:\WINDOWS\System32\drivers\viac7.sys
00:40:26.0466 0x1c9c  ViaC7 - ok
00:40:26.0481 0x1c9c  [ DFB466E9EC781BA4D2D6F1CD9C08B295, FF184A1449E42CBEE0AAE349933B2DB3BD8A8E3D7B51A59F66A2589F4E2FBED9 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
00:40:26.0498 0x1c9c  vmbus - ok
00:40:26.0511 0x1c9c  [ 93ABCDF346F8FCFB11E4DC811B179B9B, AE071C13953868EEBF2E5D669EEA66F55AB2ADE1B44F2C2789C41C98937A67EE ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
00:40:26.0534 0x1c9c  VMBusHID - ok
00:40:26.0570 0x1c9c  [ BDE29C92164B0649BCE5A8120E0B1FC4, 5D4A93CFE23E991E3F8CF6CF9F74A483B98C6EB5E5A3B2A2A3E7D3AC2D23F020 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
00:40:26.0619 0x1c9c  vmicguestinterface - ok
00:40:26.0632 0x1c9c  [ BDE29C92164B0649BCE5A8120E0B1FC4, 5D4A93CFE23E991E3F8CF6CF9F74A483B98C6EB5E5A3B2A2A3E7D3AC2D23F020 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
00:40:26.0660 0x1c9c  vmicheartbeat - ok
00:40:26.0673 0x1c9c  [ BDE29C92164B0649BCE5A8120E0B1FC4, 5D4A93CFE23E991E3F8CF6CF9F74A483B98C6EB5E5A3B2A2A3E7D3AC2D23F020 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
00:40:26.0703 0x1c9c  vmickvpexchange - ok
00:40:26.0716 0x1c9c  [ BDE29C92164B0649BCE5A8120E0B1FC4, 5D4A93CFE23E991E3F8CF6CF9F74A483B98C6EB5E5A3B2A2A3E7D3AC2D23F020 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
00:40:26.0747 0x1c9c  vmicrdv - ok
00:40:26.0760 0x1c9c  [ BDE29C92164B0649BCE5A8120E0B1FC4, 5D4A93CFE23E991E3F8CF6CF9F74A483B98C6EB5E5A3B2A2A3E7D3AC2D23F020 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
00:40:26.0789 0x1c9c  vmicshutdown - ok
00:40:26.0804 0x1c9c  [ BDE29C92164B0649BCE5A8120E0B1FC4, 5D4A93CFE23E991E3F8CF6CF9F74A483B98C6EB5E5A3B2A2A3E7D3AC2D23F020 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
00:40:26.0833 0x1c9c  vmictimesync - ok
00:40:26.0846 0x1c9c  [ BDE29C92164B0649BCE5A8120E0B1FC4, 5D4A93CFE23E991E3F8CF6CF9F74A483B98C6EB5E5A3B2A2A3E7D3AC2D23F020 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
00:40:26.0876 0x1c9c  vmicvmsession - ok
00:40:26.0888 0x1c9c  [ BDE29C92164B0649BCE5A8120E0B1FC4, 5D4A93CFE23E991E3F8CF6CF9F74A483B98C6EB5E5A3B2A2A3E7D3AC2D23F020 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
00:40:26.0917 0x1c9c  vmicvss - ok
00:40:26.0938 0x1c9c  [ 0CD316B95D2B7BA0E6951D1B2F5E35B2, 7A39636E5EBFAC859D591E93D15FDE59E24B5A1D1730668BDD49805480FF1B09 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
00:40:26.0952 0x1c9c  volmgr - ok
00:40:26.0972 0x1c9c  [ AD5E12F4D94FAAD715D3448498DCAEE6, 00686E864F8B6A795062B3957D00317108579FF069391CA0CEFA00D697C10336 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
00:40:26.0996 0x1c9c  volmgrx - ok
00:40:27.0017 0x1c9c  [ 12999D4773D8034431795440A3DF910A, 6F688BB29AB7DD31CBE87FA29945C182D5B95FF7064D7A239D1483CCE2ACC9A3 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
00:40:27.0041 0x1c9c  volsnap - ok
00:40:27.0065 0x1c9c  [ 68AD599352531CB90D4EEAE738E93201, AE94F9EDEC6588736E4F912B08109B52292FA8445A7FAD4FB2119F2C6F086544 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
00:40:27.0083 0x1c9c  vsmraid - ok
00:40:27.0136 0x1c9c  [ 0EC04C8B3F905A1F9516D2122CFBD077, DBC213AC63E5B38FF8A1BD9BF0FBCE9C9C0939FC47A4313312123512408DAB5B ] VSS             C:\WINDOWS\system32\vssvc.exe
00:40:27.0223 0x1c9c  VSS - ok
00:40:27.0246 0x1c9c  [ F29D5C399DC1023FF2ABFAE32CBE145E, 0B66197CC44540F326D07C724595C83B63218E2D10CADFB2DB281FFCFC8482A2 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
00:40:27.0268 0x1c9c  VSTXRAID - ok
00:40:27.0304 0x1c9c  [ 2BDA41D96FFDFE124CEA83A7B02DE193, 1628AE2E53493FEFB045AA67BD42288B61293E4630C5D424E23ABA1C61F2563A ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
00:40:27.0372 0x1c9c  vwifibus - ok
00:40:27.0390 0x1c9c  [ 908B2BC47A2318332E0FE112DC215811, DB726385DAA63E3D078CC9C1160D8D0B85F1C6061CC7C4C6B3FE0C00139F45A5 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
00:40:27.0422 0x1c9c  vwififlt - ok
00:40:27.0442 0x1c9c  [ C44220F4AFFA675DF6DB064B1BDBBC9A, B462BA3EED0FCDE34F00A75EBAC074EC3A61EC04149D72835264F5B3C7296767 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
00:40:27.0496 0x1c9c  vwifimp - ok
00:40:27.0539 0x1c9c  [ 218B7F22500AEA1F105909062E80ED09, 91542FD58D15A9A53648501B57DDD6245BEEA8213230655EA3871984EB9C255F ] W32Time         C:\WINDOWS\system32\w32time.dll
00:40:27.0602 0x1c9c  W32Time - ok
00:40:27.0624 0x1c9c  [ 3D24F2937B47E06979ADB75C01C73684, E34033C6F73AE005F96E01FC59DA27691B3D1066D7C2DD5CEC78D25E08CDB493 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
00:40:27.0642 0x1c9c  WacomPen - ok
00:40:27.0685 0x1c9c  [ E02B9029C9330702283EEA1BE8D761F5, 99E51A481FDD9FF9E59EA3FA7D7F41D034DBD42F9A749F027A379B4CF57FF95E ] WalletService   C:\WINDOWS\system32\WalletService.dll
00:40:27.0765 0x1c9c  WalletService - ok
00:40:27.0780 0x1c9c  [ 1F6C1A6516A9B47389BD78DB9261E843, E775CA3AD37A1911527C483EA2C0E5B14E8F2D5E3B9D5DF41FC91316700AADDD ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:40:27.0810 0x1c9c  wanarp - ok
00:40:27.0814 0x1c9c  [ 1F6C1A6516A9B47389BD78DB9261E843, E775CA3AD37A1911527C483EA2C0E5B14E8F2D5E3B9D5DF41FC91316700AADDD ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:40:27.0833 0x1c9c  wanarpv6 - ok
00:40:27.0887 0x1c9c  [ 562D1CA5525AADB31B3478AB918231CC, 5AC19D177484EC6F7A02253B1C8C5BE7B451E59E03FAA96480A2B21803C2019B ] wbengine        C:\WINDOWS\system32\wbengine.exe
00:40:28.0013 0x1c9c  wbengine - ok
00:40:28.0042 0x1c9c  [ 16FCCCD2C441EA96157109C339B57D7D, 133F33BB31C981186E8FF3E5DD2381E399D65FF6BD185B4ABC12DD3CE2134D47 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
00:40:28.0123 0x1c9c  WbioSrvc - ok
00:40:28.0158 0x1c9c  [ 0DDA8F7C1B83566677AB45274D003A12, DF26AD65A8CCAD3BDF98C2900846D0831C0E09E1752A7BB201D8F59F05A5FDA5 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
00:40:28.0239 0x1c9c  Wcmsvc - ok
00:40:28.0265 0x1c9c  [ F0FA4F23FF53A009627664BA43251F59, A0FF76D151C4D6F3BEDFC06D07CFB93703B2A00D28D00AFECE3E47842BAB2DD0 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
00:40:28.0314 0x1c9c  wcncsvc - ok
00:40:28.0330 0x1c9c  [ 73E5447C062396F028A9BCD4755DC33C, A7EA943D3EB51F7AF72EAD7F638045701FB9727B9295C8C9C1F4168FDD6DB315 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
00:40:28.0404 0x1c9c  WcsPlugInService - ok
00:40:28.0437 0x1c9c  [ 6557A7C6C3D1B82A8835B947F81F3D12, B51E4C20DF1C573EE67C6A02A220E61411EB93428B37C3B15A3CADE6AA0D5701 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
00:40:28.0452 0x1c9c  WdBoot - ok
00:40:28.0488 0x1c9c  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\System32\drivers\wdcsam.sys
00:40:28.0572 0x1c9c  WDC_SAM - ok
00:40:28.0648 0x1c9c  [ ABD4BDE4FC88306B6C07E9A70D8C2329, 7CB3E1AA525F76DFCF60317F4248602CA7FDE7392757645AA753B5067F6560B4 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
00:40:28.0705 0x1c9c  Wdf01000 - ok
00:40:28.0731 0x1c9c  [ A0441BCB76AA53D7D44372B8E3291E83, 5903899499FAE19A4172E2910B826CAB100A95A5687D68BB53C0D94B95D1AF39 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
00:40:28.0751 0x1c9c  WdFilter - ok
00:40:28.0776 0x1c9c  [ A868EA743834C7DB316E153CE4896E1F, D89E6677824E6C00B4234ABB2CA3284CC27939CB96776A43BB27EC03BF55EA32 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
00:40:28.0815 0x1c9c  WdiServiceHost - ok
00:40:28.0820 0x1c9c  [ A868EA743834C7DB316E153CE4896E1F, D89E6677824E6C00B4234ABB2CA3284CC27939CB96776A43BB27EC03BF55EA32 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
00:40:28.0844 0x1c9c  WdiSystemHost - ok
00:40:28.0878 0x1c9c  [ 17F94FDDF5D959675234100F6C6B8107, F126E74E5A4A61B6EBD6678B62F26F0CDD0F93C915F9F4FAF38785D93D66F3A3 ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
00:40:28.0941 0x1c9c  wdiwifi - ok
00:40:28.0957 0x1c9c  [ AA7ABFE1A82DB18108AE6730DB330CE1, 8E11D416E5185F2CA6F4EF123C6814008C36472081BC72ED7664AF94499C5D27 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
00:40:28.0973 0x1c9c  WdNisDrv - ok
00:40:29.0029 0x1c9c  [ 9CC5014F1CF23AD232B93898B2CE6D86, E74FC2B21758A40BB2CC22CDDB1E6B60C149E602F2688848BFB084A1F4D23CAD ] WdNisSvc        C:\Program Files\Windows Defender\NisSrv.exe
00:40:29.0049 0x1c9c  WdNisSvc - ok
00:40:29.0070 0x1c9c  [ 392409312515DA30999A6996511DCDAF, 7FF72EF269EC683F522C8925558FC4447755026B1A3935F208C3EE0F2B984F6B ] WebClient       C:\WINDOWS\System32\webclnt.dll
00:40:29.0116 0x1c9c  WebClient - ok
00:40:29.0135 0x1c9c  [ 5C57E8595BE276EA893F67396BF3DFEC, 92C2325C6849B7C714E5B056E391CC140AFEB62F7E593AE047E14324FE3E35E9 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
00:40:29.0161 0x1c9c  Wecsvc - ok
00:40:29.0172 0x1c9c  [ 9DFA6BE532AF6CF063F3F4EB9D07C3D4, 245B9248D245B7F9346EF7C5DB7FB15F3A874EED552A9FBF764DAA5B2D35EC18 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
00:40:29.0206 0x1c9c  WEPHOSTSVC - ok
00:40:29.0229 0x1c9c  [ D6377BD92201955421B7A36660E8FED5, 3DBB54A607C7DD3C22312771D0689AE4328EB2082837A12717E845871D9AC3EB ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
00:40:29.0282 0x1c9c  wercplsupport - ok
00:40:29.0302 0x1c9c  [ 127CDFEDE40B18A491F962BC0378ED25, BBC090AA0010EA0AFC8C78806DED1562A0AEDF6CB8BC57365E3DA16ECBD70914 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
00:40:29.0329 0x1c9c  WerSvc - ok
00:40:29.0333 0x1c9c  wfpcapture - ok
00:40:29.0347 0x1c9c  [ EF446C214F09928ACDF5CA84E970A8F9, EE102013BC6651085B438B6994F818132ED426F6C9C5422042BFB786455F6588 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
00:40:29.0362 0x1c9c  WFPLWFS - ok
00:40:29.0376 0x1c9c  [ 8021DEDC0B27AA60529DFE332F1EF4B1, C07DA6799C17AE7CB7CC0EA74656D756C0DE3E2E4F4B7D559B02A99C274C0115 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
00:40:29.0397 0x1c9c  WiaRpc - ok
00:40:29.0423 0x1c9c  [ 5ECC5CEFD4535726D666FAEACC6ADB5D, 27E31D05B65850990F4C1FA8739D2EF6C1835285BE656609B0DD16EAAA993AA9 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
00:40:29.0437 0x1c9c  WIMMount - ok
00:40:29.0465 0x1c9c  [ 837EC40F650D168FFD1C1EBC1AFE952A, F835565F3FFBBDB0C8D5A5E1600D35F8369066FE61FF822F8D1B6FB1DF8296B0 ] WinDefend       C:\Program Files\Windows Defender\MsMpEng.exe
00:40:29.0477 0x1c9c  WinDefend - ok
00:40:29.0498 0x1c9c  [ 92C0EA0BDFAE09420FB3B2E18A7B5A4F, 42716893ED3F7FC61853531188162E259DA81AA6C3C2B282FC83901DE569419D ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
00:40:29.0515 0x1c9c  WindowsTrustedRT - ok
00:40:29.0530 0x1c9c  [ FA509529C21CE964D238824A7319B924, 853DFA8D52388CFC9B1479BF7EE5CF8F60AE352A64E7CE509A781507F129A303 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
00:40:29.0543 0x1c9c  WindowsTrustedRTProxy - ok
00:40:29.0597 0x1c9c  [ 0D3B386A91768C6D4A600C68F91396D5, C5A818AAB6523E3E929F50A6B50509CF9B2346311D7E7D6956F0A50F364BDAFB ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
00:40:29.0738 0x1c9c  WinHttpAutoProxySvc - ok
00:40:29.0802 0x1c9c  [ 5460A4E8301035163534DCC915E9C334, 193E25AB1C1DAB982048B015A04C5EA26657949AF57970947B9CDE6125C44D32 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
00:40:29.0879 0x1c9c  winmgmt - ok
00:40:29.0963 0x1c9c  [ 8B6CCBCD380E698919011E629BC2434A, 904453C7C350A77E8F4F7394C66235B140B713203BDB5E6F4DE4E378D83DD50E ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
00:40:30.0103 0x1c9c  WinRM - ok
00:40:30.0147 0x1c9c  [ 685061C1FE01CB1A0CE1C3890625AD39, D5B438BF2DDDB7FA7C7B96ED2A83A5F79D3C65F9CDF2ABF0330AB8A5E91AB74D ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
00:40:30.0165 0x1c9c  WINUSB - ok
00:40:30.0240 0x1c9c  [ 51A06DC590F7CF44508D79EC9E934A4D, 1FBF33746A00476DB840B34DCAE8EAB573DDB55D6814DF2A9E0C621685D12FE2 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
00:40:30.0373 0x1c9c  WlanSvc - ok
00:40:30.0451 0x1c9c  [ 2276A9D3D8EC008B282B2B172B547A86, F7CE2E9B9BAB3ECB7DF6C3255CA4BBECCBE8FB7322585E58BE7C5F77CBC59D25 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
00:40:30.0606 0x1c9c  wlidsvc - ok
00:40:30.0641 0x1c9c  [ C95FE0DF99F54034F2FBD0FFF3A5A725, 627E3FF3B6CA9C5F136171F34EE44FFE0D169692A6C057CACEEA4DB12390617F ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
00:40:30.0656 0x1c9c  WmiAcpi - ok
00:40:30.0680 0x1c9c  [ 154C06735F0EE1D62D75864008BA2C2E, 47902FDAFE82E97028FE1DFBA8F51FF940DA2AB29E037F29BB7C164064DD2E72 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
00:40:30.0699 0x1c9c  wmiApSrv - ok
00:40:30.0786 0x1c9c  [ 09F41004F75E7DF61918A5F8F36B4AE9, 871635EFC97E9BDE4D47C94D1F6085BA52EB95C2A64770BC387920D9226B40AF ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
00:40:30.0902 0x1c9c  WMPNetworkSvc - ok
00:40:30.0933 0x1c9c  [ 5589929E396F207EDE23D05034CBA463, F767747219A82922C0A5E27F30EA86F932BF17D8FB1DA3D744C062D5DAA9BE55 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
00:40:30.0951 0x1c9c  Wof - ok
00:40:31.0048 0x1c9c  [ 871001B73A8A08C29393B99A6D54F10C, 086152DB70060584C50CDBD16FF2E10D2DB78A16FDBF45E171D17FDDA4615AAF ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
00:40:31.0177 0x1c9c  workfolderssvc - ok
00:40:31.0211 0x1c9c  [ 32AC67198860658D06395A23607DBFA2, 0E2529999C5C9BC36590A02941E0AB069656521E947274CA549D963EE572E4B2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
00:40:31.0225 0x1c9c  wpcfltr - ok
00:40:31.0254 0x1c9c  [ 5115BB2F2EB0D3F86999D0C6EE93EC10, 64A1F5E80A03724AF3948FEC82F198BC686F161C3F4C452AEA2B9148068DF6D2 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
00:40:31.0318 0x1c9c  WPDBusEnum - ok
00:40:31.0351 0x1c9c  [ 5131ED9628BB8EDAEA8A5654BDC1D806, 3D5A1829F101321AD0FA0ACC405133605FF86E826E771AF8075580971AE49FF1 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
00:40:31.0365 0x1c9c  WpdUpFltr - ok
00:40:31.0377 0x1c9c  [ 7EDF5D8E60D6B242780D46BCE412B93D, 63EE10CFB160C40FC4F73BBAB07CC10015F4D5EF106D14B02E13E95CDD387652 ] WpnService      C:\WINDOWS\system32\WpnService.dll
00:40:31.0448 0x1c9c  WpnService - ok
00:40:31.0472 0x1c9c  [ C2B8740762D91436865CDA6710CF2429, 875EC635B7D1F4F7E6EC8DA59F2F4942DC47648C34DE2B3AC8DADD0EB074F012 ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
00:40:31.0511 0x1c9c  ws2ifsl - ok
00:40:31.0537 0x1c9c  [ 4156F23C9B2221F315AB177EBA0B9459, DD3D5259ADA1AE2F54DC977BBC27DE11DC5C8D3403219B2CC3819F8CF421D4A5 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
00:40:31.0562 0x1c9c  wscsvc - ok
00:40:31.0570 0x1c9c  [ 6F6CF61CEDEE54A89A8993DD621A7D30, AF4B12788C26C82BE4D7D1EEB85E84512BB666C3C7EB03DD719672240CE9D2EC ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
00:40:31.0600 0x1c9c  WSDPrintDevice - ok
00:40:31.0622 0x1c9c  [ 22D8BA0B3359F3291B997AFE51934EBC, 8F4A49BD525FD2828A689A911169C743C5417A1E78E6C2E04F36CBD687807AF6 ] WSDScan         C:\WINDOWS\system32\DRIVERS\WSDScan.sys
00:40:31.0647 0x1c9c  WSDScan - ok
00:40:31.0652 0x1c9c  WSearch - ok
00:40:31.0755 0x1c9c  [ 057A64BE97B98A4A1FA76DD3C4285DEE, E923E281B206D5103D87634A9BD27E537B2C716AA3E98AB00388C8A4AFE93842 ] WSService       C:\WINDOWS\System32\WSService.dll
00:40:31.0891 0x1c9c  WSService - ok
00:40:31.0972 0x1c9c  [ 4A74E48AE825FFDE7C965C591DF70E3A, B1E100BAEFEFBBC5651F260A1E1A93912FE05627285B5A85F22F257CB22C865E ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
00:40:32.0108 0x1c9c  wuauserv - ok
00:40:32.0133 0x1c9c  [ 7756D43DB047D960C1CC090FC430F6B7, FC28B062F3A7A612CD9247EC818F3F83291139C781E459CDDA622F6D35F6CBF8 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
00:40:32.0165 0x1c9c  WudfPf - ok
00:40:32.0192 0x1c9c  [ 5DA4E378644B01C79A7BB5F82F175FB1, 31798B4F109DB387507ACAE2000306A446A3E60435A34A0FAFD71823DF191D74 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
00:40:32.0217 0x1c9c  WUDFRd - ok
00:40:32.0233 0x1c9c  [ 84B24EB1CE25BC46F3AAD9DF4297B824, A07B81AEB334C40A173269955DA4B020E1D6B909DD6E700BC60F71CFFA6EF921 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
00:40:32.0273 0x1c9c  wudfsvc - ok
00:40:32.0282 0x1c9c  [ 5DA4E378644B01C79A7BB5F82F175FB1, 31798B4F109DB387507ACAE2000306A446A3E60435A34A0FAFD71823DF191D74 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
00:40:32.0305 0x1c9c  WUDFWpdFs - ok
00:40:32.0312 0x1c9c  [ 5DA4E378644B01C79A7BB5F82F175FB1, 31798B4F109DB387507ACAE2000306A446A3E60435A34A0FAFD71823DF191D74 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
00:40:32.0333 0x1c9c  WUDFWpdMtp - ok
00:40:32.0395 0x1c9c  [ 5358ACD48A1B8712738CEA0BE4C059E0, 3B44D82B8406B325AEE1B0EDD0371EC0959559AF820208263BC743227696DC91 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
00:40:32.0461 0x1c9c  WwanSvc - ok
00:40:32.0492 0x1c9c  [ 6B33E562C4ECC17CA5500764919859B7, 020D1317FC733B3795641935662003052CFA4313A3BED38101BE3D7899B1926F ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
00:40:32.0561 0x1c9c  XblAuthManager - ok
00:40:32.0597 0x1c9c  [ B222C6619A420AF0AE6D5218EBE00D5F, 11A471C07B5F2514F1F8B1516A57BD106A9DAB82A6FA048B3EF2915D0FBF9825 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
00:40:32.0672 0x1c9c  XblGameSave - ok
00:40:32.0691 0x1c9c  [ 18CC3795F5BBC71DE41A85C38C00DAA4, 32FA88D64029D39FD7AD7B4FF056EB6554ECC68127002BD532740D252FEEC135 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
00:40:32.0776 0x1c9c  xboxgip - ok
00:40:32.0825 0x1c9c  [ F55FCFCFB9D1A385B254F2A783C3591A, A95EDA9DC362FAD587C02DF7D3477BD0BBA237D99B2E805C04E216FC6DA17305 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
00:40:32.0935 0x1c9c  XboxNetApiSvc - ok
00:40:32.0947 0x1c9c  [ 57CEA0BA8ACD948CB24C405595391A09, 8D96001D7A3B8DE4D7A1E12EA3F816B87AE1E4E054A8D32FF6505EFEF97E9D19 ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
00:40:32.0962 0x1c9c  xinputhid - ok
00:40:32.0965 0x1c9c  ================ Scan global ===============================
00:40:33.0009 0x1c9c  [ 2011737F4AB5389758226D7F66EA4BFE, E642ACB46A67123ABEE137AE15944C7F695CC363BE9573959982EEE41ECB2B01 ] C:\WINDOWS\system32\basesrv.dll
00:40:33.0034 0x1c9c  [ 40BF23849CFDCCACF5E62BD934CAB2C5, 1DB0263D0B97F035F4F63FFE6AB6577C586CFC7B75132E1C2A8448A0E1662CCA ] C:\WINDOWS\system32\winsrv.dll
00:40:33.0059 0x1c9c  [ 3843C4BDC459346593C3E31ED0969705, BF2B7FF46936C7C9E8137EB59FC407187DF2E39F3E296D893EA277BA2504D58D ] C:\WINDOWS\system32\sxssrv.dll
00:40:33.0092 0x1c9c  [ 48A5107E71E1F6581D739003191B4610, 1CF67202FA9033AE3B9C042F4F7A50D397B2E2172B490DB12A0AE0F69C458EE8 ] C:\WINDOWS\system32\services.exe
00:40:33.0100 0x1c9c  [ Global ] - ok
00:40:33.0100 0x1c9c  ================ Scan MBR ==================================
00:40:33.0108 0x1c9c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:40:33.0618 0x1c9c  \Device\Harddisk0\DR0 - ok
00:40:33.0619 0x1c9c  ================ Scan VBR ==================================
00:40:33.0622 0x1c9c  [ 02AA50E9341235453657A09604A3BEBA ] \Device\Harddisk0\DR0\Partition1
00:40:33.0650 0x1c9c  \Device\Harddisk0\DR0\Partition1 - ok
00:40:33.0655 0x1c9c  [ 5B35FE618932F59E43CDBC809671079B ] \Device\Harddisk0\DR0\Partition2
00:40:33.0663 0x1c9c  \Device\Harddisk0\DR0\Partition2 - ok
00:40:33.0667 0x1c9c  [ 3D8B7C9A62BB976E93DA190066E64D15 ] \Device\Harddisk0\DR0\Partition3
00:40:33.0689 0x1c9c  \Device\Harddisk0\DR0\Partition3 - ok
00:40:33.0706 0x1c9c  [ 0B029395285395A4095D33932DD43079 ] \Device\Harddisk0\DR0\Partition4
00:40:33.0722 0x1c9c  \Device\Harddisk0\DR0\Partition4 - ok
00:40:33.0723 0x1c9c  ================ Scan generic autorun ======================
00:40:33.0826 0x1c9c  [ AFD15F701B550037FFDDE6B18171479D, 38C049529611653832944B9A624BA9E336E0AFE668CEDD95BDAF550A9605ADF5 ] C:\Program Files\Analog Devices\Core\smax4pnp.exe
00:40:33.0910 0x1c9c  SoundMAXPnP - ok
00:40:34.0000 0x1c9c  [ 20CB286C4591EEA68778CA6626D70D47, 3F8FC588B23128754CCACC2C83BF3265FB81605AED3A613DA34261806CFAEA03 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
00:40:34.0047 0x1c9c  SynTPEnh - ok
00:40:34.0186 0x1c9c  [ CA6DE8C65A9178FB6639D781B0BA9EB2, 2D7DF39A952CCE0E21BADE59329E90A90565E45BFF2C41C31B3E124833D42E19 ] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe
00:40:34.0355 0x1c9c  SoundMAX - detected UnsignedFile.Multi.Generic ( 1 )
00:40:36.0924 0x1c9c  Detect skipped due to KSN trusted
00:40:36.0924 0x1c9c  SoundMAX - ok
00:40:36.0999 0x1c9c  [ 71FC40DF690F7BF9F657616DEE9B3635, 0718AB8D42E0397CCD6BC612E26EC6AF01F84C6C6C081D429835C216CBBF7E29 ] C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe
00:40:37.0022 0x1c9c  picon - ok
00:40:37.0080 0x1c9c  [ FE7CE849DB8C3986B2E721C6A3184FAA, 9879821AF51D13DB22EE2A8B351C5C8BB338408D325D9ACEC95237F3DE502069 ] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
00:40:37.0093 0x1c9c  QlbCtrl.exe - ok
00:40:37.0162 0x1c9c  [ C1A86A6D6847DEFF009EAE85BA0C1F20, 7DC2A823FA281117B335B74876469C788A5C81534251179BE86F3FB35F1B6D67 ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
00:40:37.0188 0x1c9c  avgnt - ok
00:40:37.0228 0x1c9c  [ 5D666FC778E7754CC7103402D814809B, 7E9B205B74440D455155014EE8D6FD0D1C647B016D72A28F16709F50BC005D3F ] C:\Program Files\ControlCenter4\BrCcBoot.exe
00:40:37.0261 0x1c9c  ControlCenter4 - detected UnsignedFile.Multi.Generic ( 1 )
00:40:39.0773 0x1c9c  Detect skipped due to KSN trusted
00:40:39.0773 0x1c9c  ControlCenter4 - ok
00:40:39.0974 0x1c9c  [ 63E9C23A386FFFA84B5E03BFF9B628F0, A370962791EFC4B10548AAD31F89A2B288FBD5BDBF5749323C2D98C14DFB8B49 ] C:\Program Files\Browny02\Brother\BrStMonW.exe
00:40:40.0174 0x1c9c  BrStsMon00 - detected UnsignedFile.Multi.Generic ( 1 )
00:40:42.0794 0x1c9c  Detect skipped due to KSN trusted
00:40:42.0794 0x1c9c  BrStsMon00 - ok
00:40:42.0852 0x1c9c  [ C41FE114D9D7710EDA1189D304D85088, AD3F654BDDCC4798F10B35BE788825CCEC959CBE0E08A46321A0187D6BFC5CF8 ] C:\Program Files\QuickTime\QTTask.exe
00:40:42.0906 0x1c9c  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
00:40:52.0999 0x1c9c  QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
00:40:55.0952 0x1c9c  [ 53C6C41356D532FEFD8056AB2906D129, C5E54C571FA44AF7FD1974464CC5D5DD30BA0D31ED20CF6B3DBB5A49FC5F0AC7 ] C:\Program Files\Skillbrains\lightshot\Lightshot.exe
00:40:55.0973 0x1c9c  Lightshot - ok
00:40:56.0032 0x1c9c  [ 2199723879C9F75A709680E2935C052F, DDD5B5CC86463284D9137372CB8541D1258AC020EA811F1AD3735809F314B086 ] C:\Program Files\PDF24\pdf24.exe
00:40:56.0081 0x1c9c  PDFPrint - ok
00:40:56.0107 0x1c9c  Nikon Message Center 2 - ok
00:40:56.0164 0x1c9c  [ D52A9F078EA114D3465FC1CD9E900DF1, 841F6055435278A93230C3F5E33E6C530D6FDF5A331EC31E992A35DD084A7C64 ] C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe
00:40:56.0179 0x1c9c  Avira SystrayStartTrigger - ok
00:40:56.0465 0x1c9c  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\System32\OneDriveSetup.exe
00:40:56.0803 0x1c9c  OneDriveSetup - ok
00:40:57.0079 0x1c9c  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\System32\OneDriveSetup.exe
00:40:57.0267 0x1c9c  OneDriveSetup - ok
00:40:57.0548 0x1c9c  [ 781DCED079ABD884DF8CA22B6FA30F05, 392C39D4E26AAE801786EE9A2671FDFFF18991A27046853B13ACA90E4B2D3998 ] C:\Users\Gijawibj\AppData\Roaming\Spotify\SpotifyWebHelper.exe
00:40:57.0689 0x1c9c  Spotify Web Helper - ok
00:40:57.0827 0x1c9c  [ C2D2FFD27F46815951C9562F0A2EC864, 892A5DC5C3D797E3FD36230710BA9AF43ADA5CDFD19A03268D20D5A9DA3CCB3A ] C:\Users\Gijawibj\AppData\Local\Microsoft\OneDrive\OneDrive.exe
00:40:57.0862 0x1c9c  OneDrive - ok
00:40:57.0957 0x1c9c  [ 3F3A26E471CCCB3CFFCA68F0C052F35F, 7B58C5A6B400F9A31B3E7F5FF9D3E9516A7737A15B44EB8B0E2CC99C20A57E9C ] C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\E_FATIJCE.EXE
00:40:57.0983 0x1c9c  EPLTarget\P0000000000000001 - ok
00:40:58.0021 0x1c9c  [ 77C01F1850E55373280A1B865D824F58, EE1535A11A49BF578FC4D00096508FFD0C4E20EC164B3ABB92ED6E2800F831C8 ] C:\Users\Gijawibj\AppData\Local\Microsoft\BingSvc\BingSvc.exe
00:40:58.0036 0x1c9c  BingSvc - ok
00:40:58.0297 0x1c9c  [ 831EE34C9AE23FE421E642DBA8E46C2A, 18710FB7B41AB3E89582451542527EEFC326AF615EB909EFEBE353AD478B0FF6 ] C:\Users\Gijawibj\AppData\Roaming\Spotify\Spotify.exe
00:40:58.0589 0x1c9c  Spotify - ok
00:40:58.0917 0x1c9c  [ 71E9DF76B146D5D70DFD4FE5819F97B8, 0F8A7938742E7E0211B0EB4677B8003DAF2E25E85AD29CD0569B192DF1BD2D77 ] C:\Program Files\AirDroid\AirDroid.exe
00:40:59.0325 0x1c9c  autoRunTest - detected UnsignedFile.Multi.Generic ( 1 )
00:41:01.0991 0x1c9c  Detect skipped due to KSN trusted
00:41:01.0991 0x1c9c  autoRunTest - ok
00:41:02.0390 0x1c9c  [ 0B7389AEDF3CB336B1238F70D82B3832, 0C3C7F00E441B3548E52CB4A059AB898F1947B12D880C30F629ED984F4D1CFED ] C:\Program Files\Steganos Online Shield\OnlineShieldClient.exe
00:41:02.0543 0x1c9c  SOS_Agent - ok
00:41:02.0556 0x1c9c  Waiting for KSN requests completion. In queue: 11
00:41:03.0557 0x1c9c  Waiting for KSN requests completion. In queue: 11
00:41:04.0501 0x0f9c  Object required for P2P: [ 781DCED079ABD884DF8CA22B6FA30F05 ] C:\Users\Gijawibj\AppData\Roaming\Spotify\SpotifyWebHelper.exe
00:41:04.0557 0x1c9c  Waiting for KSN requests completion. In queue: 6
00:41:05.0557 0x1c9c  Waiting for KSN requests completion. In queue: 5
00:41:06.0557 0x1c9c  Waiting for KSN requests completion. In queue: 5
00:41:07.0246 0x0f9c  Object send P2P result: true
00:41:07.0246 0x0f9c  Object required for P2P: [ 831EE34C9AE23FE421E642DBA8E46C2A ] C:\Users\Gijawibj\AppData\Roaming\Spotify\Spotify.exe
00:41:07.0558 0x1c9c  Waiting for KSN requests completion. In queue: 1
00:41:08.0558 0x1c9c  Waiting for KSN requests completion. In queue: 1
00:41:09.0559 0x1c9c  Waiting for KSN requests completion. In queue: 1
00:41:09.0936 0x0f9c  Object send P2P result: true
00:41:10.0609 0x1c9c  AV detected via SS2: Avira Antivirus, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 15.0.13.202 ), 0x41000 ( enabled : updated )
00:41:10.0635 0x1c9c  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x60100 ( disabled : updated )
00:41:10.0640 0x1c9c  Win FW state via NFP2: enabled ( trusted )
00:41:13.0128 0x1c9c  ============================================================
00:41:13.0128 0x1c9c  Scan finished
00:41:13.0128 0x1c9c  ============================================================
00:41:13.0154 0x15e8  Detected object count: 1
00:41:13.0154 0x15e8  Actual detected object count: 1
00:41:37.0016 0x15e8  QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
00:41:37.0017 0x15e8  QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip 
00:56:11.0903 0x1e74  Deinitialize success
         
Das ist alles aus diesem Scan.
Wie sieht das aus? Die anfangs beschriebenen Symptome gibt es nicht mehr. Ich kann die Seiten (zuvor funktionierte gmx, ebay, amazon,... nicht) wieder aufrufen. Ist damit bereits alles behoben?
Viele Grüße Kängua

Alt 19.10.2015, 21:02   #9
schrauber
/// the machine
/// TB-Ausbilder
 

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



Jo, alles gut. Ich glaube dein Router hatte da kurz ein problem
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.10.2015, 11:59   #10
Kängua
 
Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



Prima! Vielen Dank für die Unterstützung.

Alt 21.10.2015, 12:44   #11
schrauber
/// the machine
/// TB-Ausbilder
 

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Standard

Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt



Gern Geschehen
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt
angezeigt, anleitung, antivirenprogramm, aufklärung, bestimmte, browser, einstellung, erkannt, firefox, funktioniert, gestartet, interne, internetseite, internetseiten öffnen nicht, internetseiten öffnen sich, malwarebytes, meldung, nicht mehr, pcs, programm, pup.optional.apntoolbar, rechner, seite, seiten, verbindung, verschiedene, windows, xml-verarbeitungsfehler, öffnen



Ähnliche Themen: Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt


  1. Kann auch bestimmte Internetseiten nicht mehr öffnen
    Plagegeister aller Art und deren Bekämpfung - 15.03.2014 (7)
  2. Ich kann bestimmte Internetseiten nicht mehr öffnen z.B. ebay, amazon... - es gibt keine Fehlermeldung!
    Plagegeister aller Art und deren Bekämpfung - 10.03.2014 (5)
  3. Bestimmte Internetseiten lassen sich nicht öffnen
    Plagegeister aller Art und deren Bekämpfung - 24.07.2013 (24)
  4. Bestimmte Internetseiten gehen auf einmal(!) nicht mehr
    Plagegeister aller Art und deren Bekämpfung - 12.04.2013 (2)
  5. Einige Internetseiten lassen sich nicht öffnen und werden weiss angezeigt
    Plagegeister aller Art und deren Bekämpfung - 30.03.2013 (1)
  6. Internetseiten lassen sich plötzlich nicht mehr öffnen
    Plagegeister aller Art und deren Bekämpfung - 03.06.2012 (11)
  7. Bestimmte Internetseiten öffnen sich nicht mehr - aber ohne Fehlermeldung!
    Log-Analyse und Auswertung - 05.08.2011 (7)
  8. Kann bestimmte Internetseiten nicht öffnen/Conficker.B?
    Log-Analyse und Auswertung - 13.06.2011 (3)
  9. bestimmte Webseiten öffnen sich nicht
    Log-Analyse und Auswertung - 06.07.2010 (9)
  10. Viele Internetseiten lassen sich nicht mehr öffnen
    Log-Analyse und Auswertung - 21.08.2008 (12)
  11. kann eine bestimmte Internetseite nicht mehr öffnen - Virus???
    Plagegeister aller Art und deren Bekämpfung - 12.08.2008 (10)
  12. Einige Internetseiten öffnen sich nicht mehr ...
    Plagegeister aller Art und deren Bekämpfung - 02.07.2008 (16)
  13. Hilfe! Kann bestimmte Seiten nicht mehr öffnen!
    Plagegeister aller Art und deren Bekämpfung - 26.06.2008 (1)
  14. Trojaner eingefangen Internetseiten lassen sich nicht mehr öffnen!
    Log-Analyse und Auswertung - 15.04.2008 (3)
  15. Internetseiten öffnen sich nicht mehr
    Plagegeister aller Art und deren Bekämpfung - 21.03.2007 (1)
  16. Div. Internetseiten öffnen sich nicht mehr
    Log-Analyse und Auswertung - 13.12.2006 (5)
  17. Internetseiten lassen sich nicht mehr öffnen(firefox,ie)
    Alles rund um Windows - 23.09.2006 (2)

Zum Thema Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt - Hallo, ich bitte um Hilfe bei der Aufklärung des oben kurz genannten Problems. Genauer lassen sich die Symptome so beschreiben: Obwohl die Internetverbingung zum PC offenbar vorhanden ist (Thunderbird funktioniert - Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt...
Archiv
Du betrachtest: Bestimmte Internetseiten öffnen sich nicht mehr - xml Verarbeitungsfehler: unerwarteter Parser-Status - wird angezeigt auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.