| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne LastWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
08.11.2015, 21:14
| #1 |
| |  Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne Last Guten Tag, seit ca. 2 Tagen habe ich ein Problem mit meinem Notebook. Meine Tastatur reagiert extrem verzögert und/oder gar nicht. Es wirkt fast so, als gebe es nur bestimmte Zeitschlitze in denen mein Rechner Tastendrücke bearbeitet. Gleich vorab, bisherige Suche nach ähnlichen Fällen ergab nur "deaktiviere Anschlagsverzögerung". Diese ist jedoch schon ewig deaktiviert und somit wohl eher uninteressant. Anbei nun die Logs: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015
durchgeführt von Noaphiel (Administrator) auf NOAPHIEL-PC (08-11-2015 19:31:46)
Gestartet von C:\Users\Noaphiel\Desktop
Geladene Profile: Noaphiel (Verfügbare Profile: Noaphiel)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(Sensible Vision ) C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe
(IDT, Inc.) C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_056607ee0106e5e8\stacsv64.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(SoftThinks) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\WINDOWS\System32\UI0Detect.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Akamai Technologies, Inc.) C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe
(Sensible Vision ) C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe
(Sensible Vision ) C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe
(Akamai Technologies, Inc.) C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\WINDOWS\System32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2108200 2010-04-01] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2009-09-15] (IDT, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-10-13] (Intel Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [NVHotkey] => rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
HKLM-x32\...\Run: [OSD_LAUNCH] => c:\Program Files (x86)\OSD\Launch.exe [32768 2010-01-05] (HH)
HKLM-x32\...\Run: [FATrayAlert] => C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe [95560 2009-12-19] (Sensible Vision )
HKLM-x32\...\Run: [FAStartup] => [X]
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-15] (Avast Software s.r.o.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM\...\RunOnce: [DSUpdateLauncher] => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe [18240 2010-01-23] (Dell)
HKLM-x32\...\RunOnce: [Launcher] => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe [165184 2010-02-11] (Softthinks)
Winlogon\Notify\FastAccess: C:\Program Files\Alienware\Command Center\AlienSense\FALogNot.dll [2009-12-19] ()
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-06-07] (Microsoft Corporation)
Lsa: [Notification Packages] scecli FAPassSync
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-15] (Avast Software s.r.o.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{02F6E4AC-410E-4218-8761-8F332B1361EA}: [DhcpNameServer] 150.100.11.4
Tcpip\..\Interfaces\{3A7E2C7B-932D-4401-805D-A061E476FF32}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-982091520-1237619290-1058120956-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.alienware.com/
HKU\S-1-5-21-982091520-1237619290-1058120956-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.alienware.com/
HKU\S-1-5-21-982091520-1237619290-1058120956-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://support.alienware.com
HKU\S-1-5-21-982091520-1237619290-1058120956-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://support.alienware.com
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-15] (Avast Software s.r.o.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Keine Datei
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-12] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-15] (Avast Software s.r.o.)
BHO-x32: SSOIEAddonBHO Class -> {DA5BCE70-D057-4D63-943D-5F3927EC59F1} -> C:\Program Files\Alienware\Command Center\AlienSense\FAIESSO.dll [2009-12-19] (Sensible Vision )
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-12] (Oracle Corporation)
Toolbar: HKLM - Kein Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Keine Datei
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_160.dll [2015-06-12] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_160.dll [2015-06-12] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-03-30] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin HKU\S-1-5-21-982091520-1237619290-1058120956-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Noaphiel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-12-05] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-05-15] [ist nicht signiert]
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR Profile: C:\Users\Noaphiel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Noaphiel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Noaphiel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-31]
CHR HKU\S-1-5-21-982091520-1237619290-1058120956-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-15]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_056607ee0106e5e8\AESTSr64.exe [89600 2009-03-02] (Andrea Electronics Corporation)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-15] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896 2015-05-15] (Avast Software)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-04-30] (BitRaider, LLC)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-07-03] (EasyAntiCheat Ltd)
R2 FAService; C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe [2389320 2009-12-19] (Sensible Vision )
S4 HappyOSD; C:\Program Files (x86)\OSD\OSD_Service.exe [16384 2010-01-04] () [Datei ist nicht signiert]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] ()
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1900400 2014-12-05] (Electronic Arts)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_056607ee0106e5e8\STacSV64.exe [240640 2009-09-15] (IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-15] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-15] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-15] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-15] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-26] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-15] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-15] ()
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2015-04-30] (BitRaider)
S3 DCamUSBNovatek; C:\Windows\System32\Drivers\nvtcam.sys [2770432 2011-06-10] (AONI)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 IAMTVE; C:\Windows\system32\DRIVERS\IAMTVE.sys [43416 2007-04-11] (Intel Corporation)
S3 IAMTXPE; C:\Windows\system32\DRIVERS\IAMTXPE.sys [51096 2007-04-11] (Intel Corporation)
R0 ioatdma; C:\Windows\System32\Drivers\ioatdma.sys [46792 2009-07-13] (Intel Corporation)
S3 iSSetup; C:\Windows\system32\DRIVERS\iSSetup.sys [178400 2009-10-13] (Intel Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-05-15] (Avast Software)
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; c:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl [146928 2009-04-16] (CyberLink Corp.)
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-08 19:31 - 2015-11-08 19:32 - 00016153 _____ C:\Users\Noaphiel\Desktop\FRST.txt
2015-11-08 19:31 - 2015-11-08 19:31 - 00000000 ____D C:\FRST
2015-11-08 19:30 - 2015-11-08 19:30 - 02198528 _____ (Farbar) C:\Users\Noaphiel\Desktop\FRST64.exe
2015-11-07 23:02 - 2015-11-08 18:57 - 00000000 ____D C:\Users\Noaphiel\AppData\Local\Warframe
2015-11-07 21:23 - 2015-11-07 21:23 - 00000222 _____ C:\Users\Noaphiel\Desktop\Warframe.url
2015-11-04 20:52 - 2015-11-04 22:26 - 00007450 _____ C:\Users\Noaphiel\Documents\A_whole_new_World.mscz
2015-11-04 20:52 - 2015-11-04 20:52 - 00003688 _____ C:\Users\Noaphiel\Documents\.A_whole_new_World.mscz,
2015-11-04 20:04 - 2015-11-04 20:04 - 00001046 _____ C:\Users\Public\Desktop\MuseScore.lnk
2015-11-04 20:04 - 2015-11-04 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MuseScore
2015-11-04 20:04 - 2015-11-04 20:04 - 00000000 ____D C:\Program Files (x86)\MuseScore
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-08 19:30 - 2014-05-20 18:21 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-08 19:06 - 2015-06-12 11:32 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-08 18:17 - 2010-05-25 00:57 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-08 17:35 - 2009-07-14 06:10 - 02090255 _____ C:\Windows\WindowsUpdate.log
2015-11-08 17:20 - 2009-07-14 05:45 - 00022464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-08 17:20 - 2009-07-14 05:45 - 00022464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-08 17:19 - 2009-07-14 18:58 - 00699342 _____ C:\Windows\system32\perfh007.dat
2015-11-08 17:19 - 2009-07-14 18:58 - 00149450 _____ C:\Windows\system32\perfc007.dat
2015-11-08 17:19 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-08 17:13 - 2014-05-20 18:24 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-11-08 17:12 - 2014-05-20 18:21 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-08 17:12 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-08 17:12 - 2009-07-14 05:51 - 00088979 _____ C:\Windows\setupact.log
2015-11-07 23:03 - 2014-05-23 12:29 - 00297342 _____ C:\Windows\DirectX.log
2015-11-07 21:21 - 2015-07-16 12:03 - 00000000 ____D C:\Users\Noaphiel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-11-07 16:51 - 2014-05-23 12:35 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-11-06 20:54 - 2014-08-17 17:08 - 00000000 ____D C:\Bilder
2015-10-31 11:33 - 2014-05-20 18:24 - 00002137 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-26 18:05 - 2010-05-24 17:56 - 00091908 _____ C:\Windows\PFRO.log
2015-10-25 21:28 - 2015-05-11 11:15 - 00000000 ____D C:\Noten
2015-10-25 13:51 - 2015-06-10 15:33 - 00000000 ____D C:\Users\Noaphiel\AppData\Local\fotokasten comfort
2015-10-15 17:51 - 2015-09-09 20:22 - 00000000 ____D C:\Users\Noaphiel\AppData\Roaming\LolClient
2015-10-15 17:18 - 2014-08-29 11:25 - 00000566 _____ C:\Users\Noaphiel\Desktop\Neues Textdokument.txt
Einige Dateien in TEMP:
====================
C:\Users\Noaphiel\AppData\Local\Temp\c2f1dfa1406a8f28b7af13897268a57f.dll
C:\Users\Noaphiel\AppData\Local\Temp\d4f5d244a0909d75573750c06e9db24d.dll
C:\Users\Noaphiel\AppData\Local\Temp\drm_dyndata_7370010.dll
C:\Users\Noaphiel\AppData\Local\Temp\FreeVideoEditor.exe
C:\Users\Noaphiel\AppData\Local\Temp\GameuxInstallHelper.dll
C:\Users\Noaphiel\AppData\Local\Temp\jre-1.6.0_20-windows-i586-iftw.exe_90744722.exe
C:\Users\Noaphiel\AppData\Local\Temp\jre-6u20-windows-i586-jinstall_uac.exe
C:\Users\Noaphiel\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Noaphiel\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Noaphiel\AppData\Local\Temp\nfpzxz1d.dll
C:\Users\Noaphiel\AppData\Local\Temp\nvStInst.exe
C:\Users\Noaphiel\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Noaphiel\AppData\Local\Temp\sfextra.dll
C:\Users\Noaphiel\AppData\Local\Temp\uninstall.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-11-03 20:49
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:07-11-2015
durchgeführt von Noaphiel (2015-11-08 19:33:38)
Gestartet von C:\Users\Noaphiel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-19 23:43:56)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-982091520-1237619290-1058120956-500 - Administrator - Disabled)
Gast (S-1-5-21-982091520-1237619290-1058120956-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-982091520-1237619290-1058120956-1002 - Limited - Enabled)
Noaphiel (S-1-5-21-982091520-1237619290-1058120956-1001 - Administrator - Enabled) => C:\Users\Noaphiel
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.160 - Adobe Systems Incorporated)
Adobe Reader 9.1.2 - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-A91000000001}) (Version: 9.1.2 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden
Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version: - Triumph Studios)
Akamai NetSession Interface (HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Awakening Client (HKLM-x32\...\SWGAwakening) (Version: - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG3500 series Benutzerregistrierung (HKLM-x32\...\Canon MG3500 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.00 - Canon Inc.)
Canon MG3500 series On-screen Manual (HKLM-x32\...\Canon MG3500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Command Center (HKLM-x32\...\InstallShield_{AE1E0DFB-A3D9-451C-AA7F-46FD390400D4}) (Version: 2.5.44.0 - Alienware Corp.)
Command Center (Version: 2.5.44.0 - Alienware Corp.) Hidden
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
Creeper World 3: Arc Eternal (HKLM-x32\...\Steam App 280220) (Version: - Knuckle Cracker)
CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.2815b - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3131 - CyberLink Corp.)
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 2.41 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.3.92 - Dell)
Dell System Detect - 1 (HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\73f463568823ebbe) (Version: 5.13.0.1 - Dell)
Dell System Detect (HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\9204f5692a8faf3b) (Version: 5.7.0.6 - Dell)
DH Driver Cleaner Professional Edition (HKLM-x32\...\Driver Cleaner Pro) (Version: Version 1.5 - Ruud Ketelaars)
Earth 2160 (HKLM-x32\...\Steam App 1900) (Version: - Reality Pump Studios)
Endless Legend (HKLM-x32\...\Steam App 289130) (Version: - AMPLITUDE Studios)
Endless Space (HKLM-x32\...\Steam App 208140) (Version: - AMPLITUDE Studios)
Free Video Editor version 1.4.8.1122 (HKLM-x32\...\Free Video Editor_is1) (Version: 1.4.8.1122 - DVDVideoSoft Ltd.)
Game of Thrones - A Telltale Games Series (HKLM-x32\...\Steam App 330840) (Version: - Telltale Games)
GameRanger (HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\GameRanger) (Version: - GameRanger Technologies)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)
Google Earth (HKLM-x32\...\{1A295C25-6E02-49FB-826B-F0D2C56FFA4E}) (Version: 7.1.4.1529 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Homeworld Remastered Collection (HKLM-x32\...\Steam App 244160) (Version: - Gearbox Software)
Icewind Dale: Enhanced Edition (HKLM-x32\...\Steam App 321800) (Version: - Beamdog)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Network Connections 14.8.43.0 (HKLM\...\PROSetDX) (Version: 14.8.43.0 - Intel)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 7 Update 80 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217080FF}) (Version: 7.0.800 - Oracle)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Job-Kontact 4.0 4.0 (HKLM-x32\...\{80E9FA05-21C2-4CF9-83D6-7FC847A5D051}) (Version: - VAB Teamwork)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Mad Games Tycoon (HKLM-x32\...\Steam App 341000) (Version: - Eggcode)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MuseScore 1.3 (HKLM-x32\...\MuseScore) (Version: 1.3.0 - Werner Schweer and Others)
Nero 9 Essentials (HKLM-x32\...\{33afbe90-291a-4e49-b49b-2be6880f3deb}) (Version: - Nero AG)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5738 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.2.2829 - Electronic Arts, Inc.)
OSD Setup (HKLM-x32\...\{98E5A0C3-86ED-4429-9386-F0DB49E958EA}) (Version: 1.1.0 - MyOSD)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.57.01 (HKLM-x32\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.57.01 - RICOH)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Star Wars Galaxies (HKLM-x32\...\{88038160-9BCB-47BE-A5C3-5CE2DC115509}) (Version: 1.00.000 - )
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stronghold HD (HKLM-x32\...\Steam App 40950) (Version: - FireFly Studios)
SWGEmu Launchpad (HKLM-x32\...\{37A10E4F-B984-462D-A33E-6C3D74CB1299}) (Version: 0.22 - SWGEmu)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.15.0 - Synaptics Incorporated)
Synthesia (HKLM-x32\...\Synthesia) (Version: 10.1 - Synthesia LLC)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Unity Web Player (HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9603 - Broadcom Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
X3: Albion Prelude (HKLM-x32\...\Steam App 201310) (Version: - Egosoft)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2015-06-10 19:13 - 00450771 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Da befinden sich 15463 zusätzliche Einträge.
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {079A9927-808B-4792-8873-7A16D5D224DA} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {0F01B2AC-6866-48BA-81A9-9C0D5C3C3795} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-19] (Avast Software s.r.o.)
Task: {1AD41821-6A5E-4B0A-A642-23854111DEBD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {3E1BF4B1-291F-473C-9D7F-C1C04A03E3B0} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {61886440-BBEC-4370-9B65-90A48033A7F7} - System32\Tasks\{342D7DD1-1370-41F8-AFB6-1A6AD90E5D6F} => C:\Program Files (x86)\CCP\EVE\eve.exe
Task: {62040944-7848-4146-83B6-957E0D616295} - System32\Tasks\Games\UpdateCheck_S-1-5-21-982091520-1237619290-1058120956-1001
Task: {88EBFABA-7A88-4102-9F34-F5B1F9389636} - System32\Tasks\{4CAC1B7F-BB27-4CCF-BFC1-5FF527908E09} => pcalua.exe -a "C:\Program Files (x86)\Electronic Arts\Dark Age of Camelot\uninstDAOC.exe"
Task: {92231DF2-5836-4398-84E7-A764FE1546AD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-12] (Adobe Systems Incorporated)
Task: {A10138D3-74E2-4C2B-9242-59BB64244D83} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {B243C96E-0F83-482B-8D5E-9F77AC344D22} - System32\Tasks\{6DF8DC57-3633-428F-8C5C-901D61DFB9FE} => C:\Program Files (x86)\DAoC Portal\Portal.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-11-02 20:20 - 2013-05-14 10:50 - 00140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2010-05-25 01:30 - 2010-02-11 17:39 - 00161736 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
2010-05-25 01:29 - 2010-02-11 17:56 - 00415040 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
2009-12-19 19:38 - 2009-12-19 19:38 - 00094536 _____ () C:\Windows\system32\FAIEExtension.DLL
2015-05-15 09:39 - 2015-05-15 09:39 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-15 09:39 - 2015-05-15 09:39 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-07 14:01 - 2015-11-07 14:01 - 02990592 _____ () C:\Program Files\AVAST Software\Avast\defs\15110700\algo.dll
2015-11-08 17:14 - 2015-11-08 17:14 - 02990592 _____ () C:\Program Files\AVAST Software\Avast\defs\15110800\algo.dll
2015-06-10 17:31 - 2014-05-13 11:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-06-10 17:31 - 2014-05-13 11:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-06-10 17:31 - 2014-05-13 11:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-06-10 17:31 - 2012-08-23 09:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-06-10 17:31 - 2012-04-03 16:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2010-05-25 01:29 - 2010-02-17 22:36 - 00116032 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
2010-05-25 01:29 - 2010-02-11 17:53 - 00128320 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
2010-05-25 01:29 - 2010-02-11 17:52 - 01123648 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\LibXml2.dll
2010-05-25 01:29 - 2010-02-11 17:53 - 00079168 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll
2010-05-25 01:29 - 2010-02-11 17:53 - 00234816 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll
2010-05-25 01:29 - 2010-02-11 17:53 - 00075072 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll
2010-05-25 01:29 - 2010-02-11 17:53 - 00111936 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll
2010-05-25 01:29 - 2010-02-11 17:53 - 00121152 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll
2015-05-15 09:39 - 2015-05-15 09:39 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-20 18:27 - 2015-10-05 17:18 - 00778752 _____ () c:\Program Files (x86)\Steam\SDL2.dll
2015-02-09 18:51 - 2015-07-03 17:12 - 04962816 _____ () c:\Program Files (x86)\Steam\v8.dll
2015-02-09 18:51 - 2015-07-03 17:12 - 01556992 _____ () c:\Program Files (x86)\Steam\icui18n.dll
2015-02-09 18:51 - 2015-07-03 17:12 - 01187840 _____ () c:\Program Files (x86)\Steam\icuuc.dll
2014-05-21 20:12 - 2015-11-05 17:44 - 02541648 _____ () c:\Program Files (x86)\Steam\video.dll
2014-09-30 17:48 - 2015-09-24 01:33 - 02549248 _____ () c:\Program Files (x86)\Steam\libavcodec-56.dll
2014-09-30 17:48 - 2015-09-24 01:33 - 00442880 _____ () c:\Program Files (x86)\Steam\libavutil-54.dll
2014-09-30 17:48 - 2015-09-24 01:33 - 00491008 _____ () c:\Program Files (x86)\Steam\libavformat-56.dll
2014-09-30 17:48 - 2015-09-24 01:33 - 00332800 _____ () c:\Program Files (x86)\Steam\libavresample-2.dll
2014-09-30 17:48 - 2015-09-24 01:33 - 00485888 _____ () c:\Program Files (x86)\Steam\libswscale-3.dll
2014-05-20 18:27 - 2015-11-05 17:44 - 00806992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-07-23 13:25 - 2015-11-03 23:00 - 00201728 _____ () c:\Program Files (x86)\Steam\bin\openvr_api.dll
2014-05-20 18:27 - 2015-10-08 23:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-02-09 18:51 - 2015-09-25 00:56 - 00119208 _____ () c:\Program Files (x86)\Steam\winh264.dll
2015-10-31 11:33 - 2015-10-20 15:08 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libglesv2.dll
2015-10-31 11:33 - 2015-10-20 15:08 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libegl.dll
2015-10-31 11:33 - 2015-10-20 15:08 - 16493384 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
Da befinden sich 7866 mehr Seiten.
IE trusted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\aeriagames.com -> hxxp://aeriagames.com
IE trusted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\dell.com -> dell.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-982091520-1237619290-1058120956-1001\...\123simsen.com -> www.123simsen.com
Da befinden sich 7866 mehr Seiten.
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-982091520-1237619290-1058120956-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Noaphiel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\Services: AESTFilters => 2
MSCONFIG\Services: AlienFusionService => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HappyOSD => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: Aeria Ignite => "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
MSCONFIG\startupreg: AlienFX Controller => "C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe"
MSCONFIG\startupreg: BDRegion => c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
MSCONFIG\startupreg: DellSystemDetect => C:\Users\Noaphiel\AppData\Local\Apps\2.0\BW5GEHGP.GPT\2ORY6DGY.99Q\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: PDVD8LanguageShortcut => "c:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe"
MSCONFIG\startupreg: RemoteControl8 => "c:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: UCam_Menu => "c:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{B0EDE56C-0D12-4103-8331-5EEBA302AC2F}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD8\PowerDVD8.EXE
FirewallRules: [{5F92CA6B-2861-4FD8-A338-2A4EB0CFE7EE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6B0DD4A6-DA9A-44B5-BCAC-91DB2A9AB556}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1CE1A9BD-863D-4271-96C5-49FE8598A703}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1E6DA7B9-7011-4C85-A243-821E889888CB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FEE11F6A-E397-41BC-A377-A51DA42952EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Endless Space\EndlessSpace.exe
FirewallRules: [{B87B5D09-2651-4894-9F4E-0A06436EFD60}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Endless Space\EndlessSpace.exe
FirewallRules: [TCP Query User{34897CAD-8656-47D7-A733-F0666211A15B}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{D333AF30-28B0-44D3-9440-85F39A0A7C15}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{8F9943D2-608D-422C-8F13-BD429B09C6C1}] => (Allow) C:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{3AE98296-91B6-438E-AD22-16665EB9D5C9}] => (Allow) C:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe
FirewallRules: [{C6DD4203-B5B9-49B2-8E8C-9F8E6F47F9B5}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{A724BDF1-C940-4C07-837B-6F1A9C6A5BEF}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{E472B713-6526-4EDD-95BB-1AF50CE47CD1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D9AC356A-68AE-4ABA-BFF9-027FF679AEEC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{F2D95858-F42C-41CA-BF5C-FD1C82D5A9EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\x3 terran conflict\X3AP.exe
FirewallRules: [{4AFE8F43-04C9-490F-8425-43131B763471}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\x3 terran conflict\X3AP.exe
FirewallRules: [TCP Query User{9C7D198F-CE92-4667-AD58-EA5B6BCE3E39}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{2D8DEFE9-32F0-4C25-A6AD-2510D3DFD52F}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe
FirewallRules: [{C05ED7CB-E84A-4C3A-BF45-E8E5E7D95F13}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{F6F722AB-32E5-4840-AEAA-1818037319E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{B04FC5CA-E3E1-4625-8B20-AD0D9C067781}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{2E4F7478-A39D-401A-8DF8-39A483A305D5}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7DE402C3-8E37-402C-9507-1E176DDAE0F3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{1A25DD6D-5E50-467A-AC1D-373680E2AA88}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{054B6923-EE35-4CA0-B989-8D330AACF0C3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{41303E99-D313-4A65-A66B-78A991C4BAA5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{B72238C2-BB01-4968-9F06-227359C9C2C6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{B0F19742-1F0B-4C1E-963A-59AA5AE47F80}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3668\Agent.exe
FirewallRules: [{805EB60C-004B-4D3B-9F1A-499EC718EBC8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{B220F7C4-6B56-4369-850B-996A254F1FA9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{9D30852E-8302-45CD-8FAD-A7E66B26BB7C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{9B50B4D6-CD57-4AF3-A084-C79C02011C8A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{12D44227-5F3A-4CE4-BF92-2E6928B03267}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{684DDCC5-6BF9-4600-B654-02E55658929C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [TCP Query User{C3118A4A-7D4E-4949-9459-5DDAA469DDB5}C:\program files (x86)\sony\station\launchpad\launchpad.exe] => (Block) C:\program files (x86)\sony\station\launchpad\launchpad.exe
FirewallRules: [UDP Query User{7CF2BCCA-4D8A-4AA6-BC64-B608315F66A7}C:\program files (x86)\sony\station\launchpad\launchpad.exe] => (Block) C:\program files (x86)\sony\station\launchpad\launchpad.exe
FirewallRules: [{50E04456-9E4A-412C-8E76-1042BA87A38E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\raceroom racing experience\Game\RRRE.exe
FirewallRules: [{BC6DC12B-4EA8-4EE6-B3A5-9F013CA1160B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\raceroom racing experience\Game\RRRE.exe
FirewallRules: [TCP Query User{58AEF931-288A-4A60-8066-555A6A2207D1}C:\program files (x86)\ccp\eve\bin\exefile.exe] => (Allow) C:\program files (x86)\ccp\eve\bin\exefile.exe
FirewallRules: [UDP Query User{7B29C3C4-C510-4B8F-940B-85A4A32D7454}C:\program files (x86)\ccp\eve\bin\exefile.exe] => (Allow) C:\program files (x86)\ccp\eve\bin\exefile.exe
FirewallRules: [TCP Query User{6D47D7E4-074C-4573-BD9A-37DD1355BEE6}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe
FirewallRules: [UDP Query User{93B76F05-1DE3-413F-BE06-DF0C76D04069}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe
FirewallRules: [{9FD2D621-8EB2-435F-94A9-A2E210DD7369}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{2C3E4927-5605-4912-906C-B2ADBBE9A380}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{ACF0BC2D-9869-472E-A9DB-3E214D9BB11C}C:\users\noaphiel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\noaphiel\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{6308C739-D498-4C33-9EBD-1742D2A69C3C}C:\users\noaphiel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\noaphiel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{2EA7C6F5-CEF1-41D3-BFB4-6B2B0160A5A0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Homeworld\HWLauncher\Launcher.exe
FirewallRules: [{27B4EF1E-0CF7-466A-9CD9-7ECBD6317665}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Homeworld\HWLauncher\Launcher.exe
FirewallRules: [{607E6F88-6692-44BE-A0EF-69ED49B5DA0C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Creeper World 3\CW3.exe
FirewallRules: [{311EE9F3-B908-4DF9-A7EA-97CFD4CAE9A5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Creeper World 3\CW3.exe
FirewallRules: [{0DAC371E-5C84-474D-94AF-374E1A138C1A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{193AD1FC-B732-4CC0-9192-3F7A423C5936}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{B387E925-8D5D-4336-BB25-6A6AB11C4516}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\AoW3\AoW3.exe
FirewallRules: [{1014771C-07D2-431B-A62F-9F1D5B148A57}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\AoW3\AoW3.exe
FirewallRules: [{9128CF69-5597-4166-9F64-C5645AAC3286}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{7BA59923-0E6D-4913-AABA-9A502FA06971}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\AoW3\AoW3_Debug.exe
FirewallRules: [TCP Query User{73B21B6D-B24B-4003-863A-2C59E928AA1C}C:\users\noaphiel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\noaphiel\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{9632FD46-AC63-4F5A-AF35-943C7B73EEDF}C:\users\noaphiel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\noaphiel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{B92611F6-0A8B-49D4-841F-6AF38E50D007}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Stronghold\Stronghold.exe
FirewallRules: [{3A9FD939-C5BF-4B95-B01D-1EFB981201B5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Stronghold\Stronghold.exe
FirewallRules: [{07070E4A-8CE2-4D00-92FB-EF274DE8BB2C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{987169A8-6884-4696-98B2-1E7828FDAC73}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{16989191-0CF8-4D66-A543-65F05169DE62}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Earth 2160\Earth2160_START.exe
FirewallRules: [{2E00F61F-F174-4BE3-B269-4B9D40E6A15F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Earth 2160\Earth2160_START.exe
FirewallRules: [{0F0AFF5E-4E87-461A-B58D-923CB2EB3707}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Earth 2160\Earth2160Editor_START.exe
FirewallRules: [{9573F76F-BC17-4D29-9240-D6C5074AF1E1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Earth 2160\Earth2160Editor_START.exe
FirewallRules: [{623E0C62-3902-41A5-A652-B34239499A33}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Endless Legend\EndlessLegend.exe
FirewallRules: [{EA40946E-04F4-4C2F-8A19-25344526833E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Endless Legend\EndlessLegend.exe
FirewallRules: [TCP Query User{7AE33EE4-85A4-448B-8348-715001663AFD}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [UDP Query User{044528A4-F719-497C-A2CC-66B572AA4593}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [TCP Query User{E6ADE3F6-3638-46AB-97F4-46F5DED8C5B0}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [UDP Query User{5280E566-B988-4918-B3C4-EDE152322AB9}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [{F7B8A19D-FCA4-49F3-9BEA-DF34B8D8692F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Mad Games Tycoon\MadGamesTycoon.exe
FirewallRules: [{AE8B74A0-DA30-4AE7-AAC5-EEDC2D8DCC9B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Mad Games Tycoon\MadGamesTycoon.exe
FirewallRules: [{EAB4B106-F9DB-469E-8A86-B466E8F9E32E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Icewind Dale Enhanced Edition\icewind.exe
FirewallRules: [{E05AD983-6A19-41CE-BE68-C35B850874D1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Icewind Dale Enhanced Edition\icewind.exe
FirewallRules: [TCP Query User{406EDFD5-C69C-446B-81AF-18E7BE7C910A}C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [UDP Query User{0ECA59AC-1AB8-4942-83A6-6AA2E17ACF04}C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [{21222BDF-38FC-475B-98BD-99C2090E3621}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Game of Thrones\Thrones.exe
FirewallRules: [{18C7EA78-3706-4E28-AABC-66D3E2CEB5B7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Game of Thrones\Thrones.exe
FirewallRules: [{7BBD4C93-E490-4FF8-8651-3B818DFBC51C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4D101062-2CB5-44EC-9C9A-2DE354BFA2FA}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{8EB6AD42-1EEA-4E82-953A-22C72367A577}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{8D90439E-FB2C-499C-806D-1E24202F0838}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{F61BDF8F-8498-467E-B0E5-39D0160C50A2}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1FB1E106-4CAF-4E5A-81F9-87361720C7C4}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{D78391E8-9519-4A46-A614-ECAD546541B8}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{EAAB3980-0EF7-454C-8E91-D21D447FA80F}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{D6BD6BA2-E7AC-4727-977F-D78F6AA1C58E}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{DA36E14F-F077-492E-A92A-CB90CCEFE40C}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{4A8BA4CE-F4E2-4E0C-9144-33A09831AA62}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{8D8A74D3-40D7-48D8-AF28-9A89AB364F2A}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{3C3FB1F5-A0C0-4FC8-BD30-54478EC09948}] => (Allow) c:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: facap, FastAccess Video Capture
Description: facap, FastAccess Video Capture
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Sensible Vision
Service: FACAP
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/08/2015 05:43:35 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005
Error: (11/08/2015 05:30:58 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to copy new service file to temp location
Error: (11/08/2015 05:13:39 PM) (Source: ESENT) (EventID: 439) (User: )
Description: Windows (4464) Windows: Die Shadowkopfzeile für Datei C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk konnte nicht geschrieben werden. Fehler -1032.
Error: (11/08/2015 05:13:39 PM) (Source: ESENT) (EventID: 490) (User: )
Description: Windows (4464) Windows: Versuch, Datei "C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk" für den Lese-/Schreibzugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/07/2015 07:48:56 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm hl2.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 16c4
Startzeit: 01d1198c3ef29554
Endzeit: 202
Anwendungspfad: c:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
Berichts-ID:
Error: (11/07/2015 10:31:02 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005
Error: (11/06/2015 06:58:31 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005
Error: (10/26/2015 07:00:29 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005
Error: (10/22/2015 03:57:35 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005
Error: (10/19/2015 05:15:14 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80004005
Systemfehler:
=============
Error: (11/08/2015 05:31:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/08/2015 05:30:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (11/08/2015 05:30:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (11/08/2015 05:30:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (11/08/2015 05:30:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (11/08/2015 12:17:29 AM) (Source: volsnap) (EventID: 14) (User: )
Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen.
Error: (11/07/2015 07:33:30 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004
Error: (11/07/2015 07:33:30 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004
Error: (11/07/2015 03:27:19 PM) (Source: volsnap) (EventID: 14) (User: )
Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen.
Error: (11/07/2015 10:01:04 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7 CPU Q 820 @ 1.73GHz
Prozentuale Nutzung des RAM: 44%
Installierter physikalischer RAM: 4084.5 MB
Verfügbarer physikalischer RAM: 2247.75 MB
Summe virtueller Speicher: 8167.19 MB
Verfügbarer virtueller Speicher: 5748.52 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:218.2 GB) (Free:36.64 GB) NTFS
Drive e: () (Removable) (Total:0.96 GB) (Free:0.96 GB) FAT
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 079EAB29)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=218.2 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 982.5 MB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-11-08 20:48:24
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST925041 rev.D004 232,89GB
Running: Gmer-19357.exe; Driver: C:\Users\Noaphiel\AppData\Local\Temp\kxdiikoc.sys
---- User code sections - GMER 2.1 ----
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe[444] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[3092] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe[3672] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\Alienware\Command Center\AlienSense\FATrayAlert.exe[3700] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe[4116] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 0000000076d98769 8 bytes [31, C0, C2, 04, 00, 90, 90, ...]
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4132] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\Steam.exe[1272] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Steam\SteamService.exe[3768] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 0000000077dff9ad 7 bytes {MOV EDX, 0x25eae8; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenKey + 5 0000000077dffa29 7 bytes {MOV EDX, 0x25e9a8; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtCreateKey + 5 0000000077dffb41 7 bytes {MOV EDX, 0x25e968; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 0000000077dffbf1 7 bytes {MOV EDX, 0x25eb28; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 0000000077dffc21 7 bytes {MOV EDX, 0x25ea68; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 0000000077dffc39 7 bytes {MOV EDX, 0x25e928; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 0000000077dffc51 7 bytes {MOV EDX, 0x25ebe8; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 0000000077dffc81 7 bytes {MOV EDX, 0x25ec28; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 0000000077dffd01 7 bytes {MOV EDX, 0x25eba8; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 0000000077dffd19 7 bytes {MOV EDX, 0x25eb68; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 0000000077dffd65 7 bytes {MOV EDX, 0x25e868; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 0000000077dffe5d 7 bytes {MOV EDX, 0x25e8a8; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 0000000077e000b5 7 bytes {MOV EDX, 0x25e828; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenKeyEx + 5 0000000077e01019 7 bytes {MOV EDX, 0x25e9e8; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 0000000077e010c1 7 bytes {MOV EDX, 0x25eaa8; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 0000000077e01139 7 bytes {MOV EDX, 0x25ea28; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 0000000077e0133d 7 bytes {MOV EDX, 0x25e8e8; JMP RDX}
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000075d31401 2 bytes JMP 76dbb1ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000075d31419 2 bytes JMP 76dbb31a C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000075d31431 2 bytes JMP 76e38f09 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 0000000075d3144a 2 bytes CALL 76d94885 C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 0000000075d314dd 2 bytes JMP 76e38802 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 0000000075d314f5 2 bytes JMP 76e389d8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 0000000075d3150d 2 bytes JMP 76e386f8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000075d31525 2 bytes JMP 76e38ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 0000000075d3153d 2 bytes JMP 76dafc78 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000075d31555 2 bytes JMP 76db68bf C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 0000000075d3156d 2 bytes JMP 76e38fc1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000075d31585 2 bytes JMP 76e38b22 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 0000000075d3159d 2 bytes JMP 76e386bc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 0000000075d315b5 2 bytes JMP 76dafd11 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 0000000075d315cd 2 bytes JMP 76dbb2b0 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 0000000075d316b2 2 bytes JMP 76e38e84 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2736] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 0000000075d316bd 2 bytes JMP 76e38651 C:\Windows\syswow64\kernel32.dll
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\70f1a1670be8
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\70f1a1670be8 (not active ControlSet)
Danke im Vorraus, Zachariel |
|
08.11.2015, 21:56
| #2 |
| /// the machine /// TB-Ausbilder    | Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne Last hi,
__________________Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ |
|
08.11.2015, 23:46
| #3 |
| | Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne Last durchgeführt:
__________________Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.11.08.05
rootkit: v2015.11.04.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17728
Noaphiel :: NOAPHIEL-PC [administrator]
08.11.2015 23:18:15
mbar-log-2015-11-08 (23-18-15).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 322416
Time elapsed: 17 minute(s), 58 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 1
HKCR\regfile\shell\open\command| (Broken.OpenCommand) -> Bad: ("regedit.exe" "%1") Good: (regedit.exe "%1") -> Replace on reboot. [ffffffffffffffffffffffffffffffff]
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\end (Adware.Trace) -> Delete on reboot. [435292e9cbc0360061c8a72c1fe46997]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 23:40:30.0202 0x0698 TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
23:40:34.0929 0x0698 ============================================================
23:40:34.0929 0x0698 Current date / time: 2015/11/08 23:40:34.0929
23:40:34.0929 0x0698 SystemInfo:
23:40:34.0929 0x0698
23:40:34.0929 0x0698 OS Version: 6.1.7601 ServicePack: 1.0
23:40:34.0929 0x0698 Product type: Workstation
23:40:34.0929 0x0698 ComputerName: NOAPHIEL-PC
23:40:34.0929 0x0698 UserName: Noaphiel
23:40:34.0929 0x0698 Windows directory: C:\Windows
23:40:34.0929 0x0698 System windows directory: C:\Windows
23:40:34.0929 0x0698 Running under WOW64
23:40:34.0929 0x0698 Processor architecture: Intel x64
23:40:34.0929 0x0698 Number of processors: 8
23:40:34.0929 0x0698 Page size: 0x1000
23:40:34.0929 0x0698 Boot type: Normal boot
23:40:34.0929 0x0698 ============================================================
23:40:41.0123 0x0698 KLMD registered as C:\Windows\system32\drivers\35884076.sys
23:40:41.0858 0x0698 System UUID: {709D5407-5D0F-CAF7-C348-7DEC011B6D85}
23:40:42.0381 0x0698 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:40:42.0392 0x0698 ============================================================
23:40:42.0392 0x0698 \Device\Harddisk0\DR0:
23:40:42.0393 0x0698 MBR partitions:
23:40:42.0393 0x0698 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
23:40:42.0393 0x0698 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x1B4657AB
23:40:42.0393 0x0698 ============================================================
23:40:42.0507 0x0698 C: <-> \Device\Harddisk0\DR0\Partition2
23:40:42.0507 0x0698 ============================================================
23:40:42.0507 0x0698 Initialize success
23:40:42.0507 0x0698 ============================================================
23:41:16.0783 0x10b0 ============================================================
23:41:16.0783 0x10b0 Scan started
23:41:16.0783 0x10b0 Mode: Manual;
23:41:16.0783 0x10b0 ============================================================
23:41:16.0783 0x10b0 KSN ping started
23:41:19.0159 0x10b0 KSN ping finished: true
23:41:21.0212 0x10b0 ================ Scan system memory ========================
23:41:21.0212 0x10b0 System memory - ok
23:41:21.0212 0x10b0 ================ Scan services =============================
23:41:21.0474 0x10b0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:41:21.0481 0x10b0 1394ohci - ok
23:41:21.0509 0x10b0 [ E388503069001F0797EC200CE19B265E, 186E698F4D527AE8B4D7D1FBBD068DE1F75083930C47941CD6E04A6F46D70F1F ] Acceler C:\Windows\system32\DRIVERS\Acceler.sys
23:41:21.0510 0x10b0 Acceler - ok
23:41:21.0573 0x10b0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:41:21.0590 0x10b0 ACPI - ok
23:41:21.0636 0x10b0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:41:21.0640 0x10b0 AcpiPmi - ok
23:41:21.0775 0x10b0 [ 7C58046ACEAF10525077BD586A740E9F, E26D446EDB158A9EDA7FC7E1DA650FA8896748B7DEB9FDBF5BD4352ACF01B721 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:41:21.0783 0x10b0 AdobeFlashPlayerUpdateSvc - ok
23:41:21.0860 0x10b0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:41:21.0874 0x10b0 adp94xx - ok
23:41:21.0917 0x10b0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:41:21.0939 0x10b0 adpahci - ok
23:41:21.0958 0x10b0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:41:21.0965 0x10b0 adpu320 - ok
23:41:21.0993 0x10b0 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:41:21.0997 0x10b0 AeLookupSvc - ok
23:41:22.0132 0x10b0 [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_056607ee0106e5e8\AESTSr64.exe
23:41:22.0136 0x10b0 AESTFilters - ok
23:41:22.0206 0x10b0 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
23:41:22.0225 0x10b0 AFD - ok
23:41:22.0281 0x10b0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:41:22.0288 0x10b0 agp440 - ok
23:41:22.0310 0x10b0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:41:22.0310 0x10b0 ALG - ok
23:41:22.0361 0x10b0 [ A303914A4B85A2D8911DBD328A3B5C48, DA8C325574A8CAC74C00A20DA1EF617EA4B63BA8A23A7DD3B221E7759C02E7BB ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe
23:41:22.0364 0x10b0 AlienFusionService - ok
23:41:22.0394 0x10b0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:41:22.0410 0x10b0 aliide - ok
23:41:22.0410 0x10b0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:41:22.0425 0x10b0 amdide - ok
23:41:22.0460 0x10b0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:41:22.0460 0x10b0 AmdK8 - ok
23:41:22.0476 0x10b0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:41:22.0476 0x10b0 AmdPPM - ok
23:41:22.0512 0x10b0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:41:22.0512 0x10b0 amdsata - ok
23:41:22.0595 0x10b0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:41:22.0620 0x10b0 amdsbs - ok
23:41:22.0635 0x10b0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:41:22.0636 0x10b0 amdxata - ok
23:41:22.0696 0x10b0 [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID C:\Windows\system32\drivers\appid.sys
23:41:22.0700 0x10b0 AppID - ok
23:41:22.0720 0x10b0 [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:41:22.0723 0x10b0 AppIDSvc - ok
23:41:22.0751 0x10b0 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
23:41:22.0751 0x10b0 Appinfo - ok
23:41:22.0766 0x10b0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:41:22.0782 0x10b0 arc - ok
23:41:22.0797 0x10b0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:41:22.0801 0x10b0 arcsas - ok
23:41:23.0061 0x10b0 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:41:23.0104 0x10b0 aspnet_state - ok
23:41:23.0161 0x10b0 [ B5B4C90E9F52DA8586F1E5461AD90A5D, D1EAA34E6AEB014E942D22F8CB5FB19BF1E2EADE5B5357274C001F44FDC25F05 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
23:41:23.0162 0x10b0 aswHwid - ok
23:41:23.0171 0x10b0 [ 300CB8E510855189CAD0B72FFB5590CB, EB50DC553FA8FD9DE3F60AAFED20702EAFBB1498EBD3220A39CC52A12F694246 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
23:41:23.0173 0x10b0 aswMonFlt - ok
23:41:23.0198 0x10b0 [ 6D37D8DB30D086739507C5F6E542656A, 746D9E32E729138EA19062F4E6B6C98B6833504020A296E3E2A9CD92E0FED0B9 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
23:41:23.0199 0x10b0 aswRdr - ok
23:41:23.0225 0x10b0 [ 07E32DFCA422A2920482D762D01957EC, A6502D26266D708E55EB2883897673AD3087C41D9EA0B41CD6BF6BD923EBDCB8 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
23:41:23.0241 0x10b0 aswRvrt - ok
23:41:23.0291 0x10b0 [ 3B4AC2DBFC86F7247C1FF1FAF2860530, A54A693D01C02AAE2B78BFE9B3900B5A6DD0C2C37C8FA58B14B5F57107032FF5 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
23:41:23.0323 0x10b0 aswSnx - ok
23:41:23.0399 0x10b0 [ A04F190FCD762E7BCC9BFC70563C52DB, 2BF6823F2EADBDA28DF1CCECCAC84D9FF37D3CFB66A7B402575C6B9FCFB45EB3 ] aswSP C:\Windows\system32\drivers\aswSP.sys
23:41:23.0407 0x10b0 aswSP - ok
23:41:23.0423 0x10b0 [ 6E53278ECCFFBC2ACC2A5006745ED4BB, 392170073A8933DB43CD1D64AD087F972F1971BF83BCAFE5B8FA1273C02026CE ] aswStm C:\Windows\system32\drivers\aswStm.sys
23:41:23.0426 0x10b0 aswStm - ok
23:41:23.0444 0x10b0 [ 91782404718C6352C26B3242BAC3F0F1, 84B1CDD1EBC83FAEBDCC8F67B13CA405C6CF0C518FC016603889EBE48FC91AB9 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
23:41:23.0444 0x10b0 aswVmm - ok
23:41:23.0480 0x10b0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:41:23.0480 0x10b0 AsyncMac - ok
23:41:23.0511 0x10b0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:41:23.0527 0x10b0 atapi - ok
23:41:23.0615 0x10b0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:41:23.0631 0x10b0 AudioEndpointBuilder - ok
23:41:23.0666 0x10b0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:41:23.0682 0x10b0 AudioSrv - ok
23:41:23.0800 0x10b0 [ 54236E79A44F909612391C8A2D70D512, B0DF5BCC4F90AF087D0306F8D81F90B2CAE0176813E3AA6A7D5460F7878677CD ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
23:41:23.0832 0x10b0 avast! Antivirus - ok
23:41:24.0074 0x10b0 [ 46C430FE178028F7AD151B62EBA3EEC5, C883B7A974A629549470B28532640C1FD2166CC4F95C69E4C4A1596AF5A5A331 ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
23:41:24.0227 0x10b0 AvastVBoxSvc - ok
23:41:24.0314 0x10b0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:41:24.0319 0x10b0 AxInstSV - ok
23:41:24.0368 0x10b0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:41:24.0393 0x10b0 b06bdrv - ok
23:41:24.0428 0x10b0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:41:24.0428 0x10b0 b57nd60a - ok
23:41:24.0495 0x10b0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:41:24.0497 0x10b0 BDESVC - ok
23:41:24.0497 0x10b0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:41:24.0497 0x10b0 Beep - ok
23:41:24.0579 0x10b0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:41:24.0618 0x10b0 BFE - ok
23:41:24.0652 0x10b0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
23:41:24.0725 0x10b0 BITS - ok
23:41:24.0750 0x10b0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:41:24.0752 0x10b0 blbdrive - ok
23:41:24.0786 0x10b0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:41:24.0790 0x10b0 bowser - ok
23:41:24.0911 0x10b0 [ 7487B46E104303E247F68D485C12326F, BAC6A4FFD5B4009B4B673479630FAA2784618438925DFB6489F07BF163188114 ] BRDriver64_1_3_3_E02B25FC C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys
23:41:24.0916 0x10b0 BRDriver64_1_3_3_E02B25FC - ok
23:41:24.0940 0x10b0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:41:24.0943 0x10b0 BrFiltLo - ok
23:41:24.0955 0x10b0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:41:24.0957 0x10b0 BrFiltUp - ok
23:41:25.0002 0x10b0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:41:25.0007 0x10b0 Browser - ok
23:41:25.0026 0x10b0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:41:25.0036 0x10b0 Brserid - ok
23:41:25.0038 0x10b0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:41:25.0054 0x10b0 BrSerWdm - ok
23:41:25.0123 0x10b0 [ 448917845F097FCE9D4554C3D2001EF3, BDCBEC01579D7CF28963E4E13CDC5B26E4B69CA24FA2CC4D6E24CAE0DDBCB3FE ] BRSptStub C:\ProgramData\BitRaider\BRSptStub.exe
23:41:25.0139 0x10b0 BRSptStub - ok
23:41:25.0139 0x10b0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:41:25.0139 0x10b0 BrUsbMdm - ok
23:41:25.0139 0x10b0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:41:25.0139 0x10b0 BrUsbSer - ok
23:41:25.0198 0x10b0 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
23:41:25.0205 0x10b0 BthEnum - ok
23:41:25.0220 0x10b0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:41:25.0224 0x10b0 BTHMODEM - ok
23:41:25.0243 0x10b0 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:41:25.0248 0x10b0 BthPan - ok
23:41:25.0276 0x10b0 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
23:41:25.0301 0x10b0 BTHPORT - ok
23:41:25.0336 0x10b0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:41:25.0340 0x10b0 bthserv - ok
23:41:25.0354 0x10b0 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
23:41:25.0358 0x10b0 BTHUSB - ok
23:41:25.0383 0x10b0 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B, 2A2039DD524E989EA91B7C91D5F295C663D1E27ABD64777D2F3137EB1C42C258 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
23:41:25.0388 0x10b0 btwaudio - ok
23:41:25.0402 0x10b0 [ 82DC8B7C626E526681C1BEBED2BC3FF9, 58260E88CDD7388ABA563F9B8F2F3FA17022DB9E4C56EBA0761E99B919A8EAF8 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
23:41:25.0409 0x10b0 btwavdt - ok
23:41:25.0485 0x10b0 [ 6DDE1E97BE4D50253DFB9090A6A62524, 301E3C7701C976B5366CDC3073260C6741A01CA2D854D86E114C7898BA6FBFDF ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
23:41:25.0519 0x10b0 btwdins - ok
23:41:25.0525 0x10b0 [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
23:41:25.0527 0x10b0 btwl2cap - ok
23:41:25.0539 0x10b0 [ 28E105AD3B79F440BF94780F507BF66A, EF4E6CCAB16765E2C88666625C13CB3299B668159A94CB201E3B44701A30640A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
23:41:25.0541 0x10b0 btwrchid - ok
23:41:25.0560 0x10b0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:41:25.0563 0x10b0 cdfs - ok
23:41:25.0622 0x10b0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
23:41:25.0628 0x10b0 cdrom - ok
23:41:25.0681 0x10b0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:41:25.0685 0x10b0 CertPropSvc - ok
23:41:25.0694 0x10b0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:41:25.0697 0x10b0 circlass - ok
23:41:25.0746 0x10b0 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
23:41:25.0756 0x10b0 CLFS - ok
23:41:25.0830 0x10b0 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:41:25.0835 0x10b0 clr_optimization_v2.0.50727_32 - ok
23:41:25.0869 0x10b0 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:41:25.0875 0x10b0 clr_optimization_v2.0.50727_64 - ok
23:41:25.0997 0x10b0 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:41:26.0072 0x10b0 clr_optimization_v4.0.30319_32 - ok
23:41:26.0104 0x10b0 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:41:26.0139 0x10b0 clr_optimization_v4.0.30319_64 - ok
23:41:26.0174 0x10b0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:41:26.0176 0x10b0 CmBatt - ok
23:41:26.0195 0x10b0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:41:26.0199 0x10b0 cmdide - ok
23:41:26.0264 0x10b0 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
23:41:26.0285 0x10b0 CNG - ok
23:41:26.0325 0x10b0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:41:26.0326 0x10b0 Compbatt - ok
23:41:26.0375 0x10b0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:41:26.0378 0x10b0 CompositeBus - ok
23:41:26.0378 0x10b0 COMSysApp - ok
23:41:26.0394 0x10b0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:41:26.0394 0x10b0 crcdisk - ok
23:41:26.0445 0x10b0 [ 1CD76A83B9E8E9A5A3519B39E28354D9, F9931743B99820FFBFB13136DFFD92F86802D543F9D8478648CDC554FB38899D ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:41:26.0445 0x10b0 CryptSvc - ok
23:41:26.0580 0x10b0 [ A1DCE96A9CBAD8C0C0DD4BF2047463F6, BE2DF7B37D4388F802E85AAD0FAD5C53FE9361665A798A0768CBDBE240352B2D ] DCamUSBNovatek C:\Windows\system32\Drivers\nvtcam.sys
23:41:26.0684 0x10b0 DCamUSBNovatek - ok
23:41:26.0760 0x10b0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:41:26.0785 0x10b0 DcomLaunch - ok
23:41:26.0818 0x10b0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:41:26.0834 0x10b0 defragsvc - ok
23:41:26.0869 0x10b0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:41:26.0869 0x10b0 DfsC - ok
23:41:26.0918 0x10b0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:41:26.0920 0x10b0 Dhcp - ok
23:41:26.0951 0x10b0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:41:26.0951 0x10b0 discache - ok
23:41:27.0003 0x10b0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:41:27.0005 0x10b0 Disk - ok
23:41:27.0052 0x10b0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:41:27.0059 0x10b0 Dnscache - ok
23:41:27.0106 0x10b0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:41:27.0114 0x10b0 dot3svc - ok
23:41:27.0158 0x10b0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:41:27.0165 0x10b0 DPS - ok
23:41:27.0193 0x10b0 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:41:27.0195 0x10b0 drmkaud - ok
23:41:27.0260 0x10b0 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:41:27.0275 0x10b0 DXGKrnl - ok
23:41:27.0359 0x10b0 [ F369E83F6CDAB987CA2DD764278659A6, 64F7CF085EA19A37D6A23D91B63BCF36EAC4FEE936DDD7E71F665C4FD0EA6DC2 ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
23:41:27.0364 0x10b0 e1kexpress - ok
23:41:27.0392 0x10b0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:41:27.0397 0x10b0 EapHost - ok
23:41:27.0422 0x10b0 EasyAntiCheat - ok
23:41:27.0546 0x10b0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:41:27.0663 0x10b0 ebdrv - ok
23:41:27.0731 0x10b0 [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] EFS C:\Windows\System32\lsass.exe
23:41:27.0749 0x10b0 EFS - ok
23:41:27.0827 0x10b0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:41:27.0858 0x10b0 ehRecvr - ok
23:41:27.0891 0x10b0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:41:27.0895 0x10b0 ehSched - ok
23:41:27.0936 0x10b0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:41:27.0960 0x10b0 elxstor - ok
23:41:28.0004 0x10b0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:41:28.0006 0x10b0 ErrDev - ok
23:41:28.0043 0x10b0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:41:28.0067 0x10b0 EventSystem - ok
23:41:28.0089 0x10b0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:41:28.0095 0x10b0 exfat - ok
23:41:28.0135 0x10b0 [ 2C1D443E14F376E8331F52F135DCA9EF, 72E6611A6D8B54ED188A55229866E6F5BFF2BB284A4DFC7495732D4C3ED6F7F8 ] FACAP C:\Windows\system32\DRIVERS\facap.sys
23:41:28.0143 0x10b0 FACAP - ok
23:41:28.0246 0x10b0 [ FF8F159C16D513A97E257CE29CFE9AAB, E5ADDA34BD08F0BA041A4B715C407C90E30D1B32BF78C56674085324F36F2857 ] FAService C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe
23:41:28.0293 0x10b0 FAService - ok
23:41:28.0321 0x10b0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:41:28.0327 0x10b0 fastfat - ok
23:41:28.0397 0x10b0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:41:28.0431 0x10b0 Fax - ok
23:41:28.0469 0x10b0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:41:28.0471 0x10b0 fdc - ok
23:41:28.0500 0x10b0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:41:28.0503 0x10b0 fdPHost - ok
23:41:28.0511 0x10b0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:41:28.0513 0x10b0 FDResPub - ok
23:41:28.0514 0x10b0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:41:28.0530 0x10b0 FileInfo - ok
23:41:28.0530 0x10b0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:41:28.0545 0x10b0 Filetrace - ok
23:41:28.0570 0x10b0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:41:28.0573 0x10b0 flpydisk - ok
23:41:28.0596 0x10b0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:41:28.0599 0x10b0 FltMgr - ok
23:41:28.0699 0x10b0 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
23:41:28.0733 0x10b0 FontCache - ok
23:41:28.0801 0x10b0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:41:28.0801 0x10b0 FontCache3.0.0.0 - ok
23:41:28.0816 0x10b0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:41:28.0816 0x10b0 FsDepends - ok
23:41:28.0852 0x10b0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:41:28.0852 0x10b0 Fs_Rec - ok
23:41:28.0867 0x10b0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:41:28.0885 0x10b0 fvevol - ok
23:41:28.0902 0x10b0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:41:28.0902 0x10b0 gagp30kx - ok
23:41:28.0973 0x10b0 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
23:41:29.0014 0x10b0 gpsvc - ok
23:41:29.0108 0x10b0 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:41:29.0111 0x10b0 gupdate - ok
23:41:29.0132 0x10b0 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:41:29.0135 0x10b0 gupdatem - ok
23:41:29.0176 0x10b0 [ 8CD92502FEC49E837155B9F20E5E2D2C, DE92733B4F6C4B15612A14B8DD41B1D344A682C1063788F9CE9351C1446DFEDC ] HappyOSD C:\Program Files (x86)\OSD\OSD_Service.exe
23:41:29.0178 0x10b0 HappyOSD - ok
23:41:29.0187 0x10b0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:41:29.0191 0x10b0 hcw85cir - ok
23:41:29.0242 0x10b0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:41:29.0246 0x10b0 HDAudBus - ok
23:41:29.0260 0x10b0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:41:29.0263 0x10b0 HidBatt - ok
23:41:29.0274 0x10b0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:41:29.0278 0x10b0 HidBth - ok
23:41:29.0321 0x10b0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:41:29.0324 0x10b0 HidIr - ok
23:41:29.0342 0x10b0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
23:41:29.0345 0x10b0 hidserv - ok
23:41:29.0375 0x10b0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:41:29.0378 0x10b0 HidUsb - ok
23:41:29.0421 0x10b0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:41:29.0426 0x10b0 hkmsvc - ok
23:41:29.0463 0x10b0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:41:29.0478 0x10b0 HomeGroupListener - ok
23:41:29.0537 0x10b0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:41:29.0545 0x10b0 HomeGroupProvider - ok
23:41:29.0560 0x10b0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:41:29.0564 0x10b0 HpSAMD - ok
23:41:29.0626 0x10b0 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:41:29.0647 0x10b0 HTTP - ok
23:41:29.0650 0x10b0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:41:29.0650 0x10b0 hwpolicy - ok
23:41:29.0665 0x10b0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:41:29.0665 0x10b0 i8042prt - ok
23:41:29.0751 0x10b0 [ 660BF3255A1EB18ED803FD2FBA6AE400, 74A77E9828D62F2821D398EAA84BB15BF093EAD1BD5A7824362ED3D1A063C509 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:41:29.0751 0x10b0 IAANTMON - ok
23:41:29.0767 0x10b0 [ 87A72502C8AC5E89B5A46FF6E874F5C5, A72C8C96BA29B5894A3085CA2ADB6343FEFA79534B334416F8D4751CF8A30008 ] IAMTVE C:\Windows\system32\DRIVERS\IAMTVE.sys
23:41:29.0767 0x10b0 IAMTVE - ok
23:41:29.0783 0x10b0 [ 5516F8E518A2F6A8755498F3E73957CF, 55CCE4501B44F756D31BA0E353597F0C9E12FDFF7205B05114A8CF1D7D506365 ] IAMTXPE C:\Windows\system32\DRIVERS\IAMTXPE.sys
23:41:29.0783 0x10b0 IAMTXPE - ok
23:41:29.0802 0x10b0 [ BE7D72FCF442C26975942007E0831241, A0FD29B3D1A1278787F8B3FBE7EC3216AAF328467974A6D90752639BB44DCD84 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:41:29.0802 0x10b0 iaStor - ok
23:41:29.0833 0x10b0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:41:29.0853 0x10b0 iaStorV - ok
23:41:29.0934 0x10b0 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:41:29.0969 0x10b0 idsvc - ok
23:41:29.0989 0x10b0 IEEtwCollectorService - ok
23:41:30.0033 0x10b0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:41:30.0037 0x10b0 iirsp - ok
23:41:30.0140 0x10b0 [ C5E4602D85029C666A42890A3B2DFA45, 0D462704C507A83CB447AA0DF8A9FFAE2A16DD2D6882798E26C03F8B2C8A2C62 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
23:41:30.0143 0x10b0 IJPLMSVC - ok
23:41:30.0246 0x10b0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:41:30.0281 0x10b0 IKEEXT - ok
23:41:30.0321 0x10b0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:41:30.0324 0x10b0 intelide - ok
23:41:30.0340 0x10b0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:41:30.0341 0x10b0 intelppm - ok
23:41:30.0374 0x10b0 [ 4B846898AA05BB1E1E88313C9174A9ED, 0C2D73D3F5EC0E175CBE0D21A42BEAE1F86AAF4D636655044790DE06C8086124 ] ioatdma C:\Windows\system32\Drivers\ioatdma.sys
23:41:30.0376 0x10b0 ioatdma - ok
23:41:30.0388 0x10b0 [ 7F4F67177E9FC600B2AFF6BB21DB6D04, 40BE478D2EAA5AAC5C93EADC1C8D5C173BD7DAF54D77F625EC9F3699E5B2F61E ] ioatdma1 C:\Windows\System32\Drivers\qd162x64.sys
23:41:30.0392 0x10b0 ioatdma1 - ok
23:41:30.0396 0x10b0 [ 565DE53FB5E4CB14314E4F53848A025D, 8A39F78EA6569F0AAF3FC5E26C25AFC5CC906485319E9B62D02B00DA90E49755 ] ioatdma2 C:\Windows\System32\Drivers\qd262x64.sys
23:41:30.0398 0x10b0 ioatdma2 - ok
23:41:30.0426 0x10b0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:41:30.0429 0x10b0 IPBusEnum - ok
23:41:30.0467 0x10b0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:41:30.0471 0x10b0 IpFilterDriver - ok
23:41:30.0525 0x10b0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:41:30.0550 0x10b0 iphlpsvc - ok
23:41:30.0593 0x10b0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:41:30.0597 0x10b0 IPMIDRV - ok
23:41:30.0611 0x10b0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:41:30.0616 0x10b0 IPNAT - ok
23:41:30.0639 0x10b0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:41:30.0641 0x10b0 IRENUM - ok
23:41:30.0666 0x10b0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:41:30.0666 0x10b0 isapnp - ok
23:41:30.0697 0x10b0 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:41:30.0713 0x10b0 iScsiPrt - ok
23:41:30.0735 0x10b0 [ 5122B80266E2DF2188466A93A31EE3B7, D03D0808D7B9C7610FABADAC1C0D1329B3E700F99AB785163C057AC7AFFE7929 ] iSSetup C:\Windows\system32\DRIVERS\iSSetup.sys
23:41:30.0750 0x10b0 iSSetup - ok
23:41:30.0750 0x10b0 [ 9291643B494F87BFDAC95A524F69E737, 7BCFAE383B39DC47E74820BA137C4DD4C44E95667DAA737FCE78563A7CF2FDDE ] itecir C:\Windows\system32\DRIVERS\itecir.sys
23:41:30.0750 0x10b0 itecir - ok
23:41:30.0777 0x10b0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:41:30.0779 0x10b0 kbdclass - ok
23:41:30.0786 0x10b0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:41:30.0789 0x10b0 kbdhid - ok
23:41:30.0816 0x10b0 [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] KeyIso C:\Windows\system32\lsass.exe
23:41:30.0818 0x10b0 KeyIso - ok
23:41:30.0864 0x10b0 [ 063C09DB965E3DFD6F4F08416F6DB8F5, 0BE015C59288397536B3941BA55EFE0CF06714BC43FF3A33A1D844B4E0F16097 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:41:30.0868 0x10b0 KSecDD - ok
23:41:30.0881 0x10b0 [ 1FA627E63195BF3BF636BFEF0D7190D4, 794456605303F4916E81BE899E0B05CB070094E719ADA8BE8072A761E35CA8E9 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:41:30.0886 0x10b0 KSecPkg - ok
23:41:30.0898 0x10b0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:41:30.0900 0x10b0 ksthunk - ok
23:41:30.0921 0x10b0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:41:30.0952 0x10b0 KtmRm - ok
23:41:31.0003 0x10b0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
23:41:31.0020 0x10b0 LanmanServer - ok
23:41:31.0057 0x10b0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:41:31.0072 0x10b0 LanmanWorkstation - ok
23:41:31.0106 0x10b0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:41:31.0106 0x10b0 lltdio - ok
23:41:31.0153 0x10b0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:41:31.0162 0x10b0 lltdsvc - ok
23:41:31.0183 0x10b0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:41:31.0186 0x10b0 lmhosts - ok
23:41:31.0212 0x10b0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:41:31.0216 0x10b0 LSI_FC - ok
23:41:31.0221 0x10b0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:41:31.0225 0x10b0 LSI_SAS - ok
23:41:31.0239 0x10b0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:41:31.0242 0x10b0 LSI_SAS2 - ok
23:41:31.0253 0x10b0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:41:31.0257 0x10b0 LSI_SCSI - ok
23:41:31.0277 0x10b0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:41:31.0281 0x10b0 luafv - ok
23:41:31.0325 0x10b0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:41:31.0332 0x10b0 Mcx2Svc - ok
23:41:31.0364 0x10b0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:41:31.0367 0x10b0 megasas - ok
23:41:31.0385 0x10b0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:41:31.0394 0x10b0 MegaSR - ok
23:41:31.0411 0x10b0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:41:31.0416 0x10b0 MMCSS - ok
23:41:31.0419 0x10b0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:41:31.0421 0x10b0 Modem - ok
23:41:31.0441 0x10b0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:41:31.0442 0x10b0 monitor - ok
23:41:31.0494 0x10b0 [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
23:41:31.0494 0x10b0 MotioninJoyXFilter - ok
23:41:31.0545 0x10b0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:41:31.0545 0x10b0 mouclass - ok
23:41:31.0567 0x10b0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:41:31.0570 0x10b0 mouhid - ok
23:41:31.0612 0x10b0 [ 87BCD1034CBF33537D4D4C251D39BA26, CB9DD235B62B79383F99873D75E26EEA5EE7914CA89E4B75992207F83420437F ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:41:31.0614 0x10b0 mountmgr - ok
23:41:31.0631 0x10b0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:41:31.0637 0x10b0 mpio - ok
23:41:31.0649 0x10b0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:41:31.0649 0x10b0 mpsdrv - ok
23:41:31.0715 0x10b0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:41:31.0750 0x10b0 MpsSvc - ok
23:41:31.0801 0x10b0 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:41:31.0801 0x10b0 MRxDAV - ok
23:41:31.0858 0x10b0 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:41:31.0864 0x10b0 mrxsmb - ok
23:41:31.0881 0x10b0 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:41:31.0890 0x10b0 mrxsmb10 - ok
23:41:31.0900 0x10b0 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:41:31.0905 0x10b0 mrxsmb20 - ok
23:41:31.0921 0x10b0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:41:31.0921 0x10b0 msahci - ok
23:41:31.0969 0x10b0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:41:31.0975 0x10b0 msdsm - ok
23:41:31.0977 0x10b0 Scan was interrupted by user!
23:41:31.0977 0x10b0 Waiting for KSN requests completion. In queue: 148
23:41:32.0978 0x10b0 Waiting for KSN requests completion. In queue: 148
23:41:33.0979 0x10b0 Waiting for KSN requests completion. In queue: 148
23:41:35.0017 0x10b0 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.2.2218.942 ), 0x41000 ( enabled : updated )
23:41:35.0024 0x10b0 Win FW state via NFP2: enabled ( trusted )
23:41:37.0461 0x10b0 ============================================================
23:41:37.0461 0x10b0 Scan finished
23:41:37.0461 0x10b0 ============================================================
23:41:37.0461 0x1200 Detected object count: 0
23:41:37.0461 0x1200 Actual detected object count: 0
23:41:46.0874 0x1704 ============================================================
23:41:46.0874 0x1704 Scan started
23:41:46.0874 0x1704 Mode: Manual; SigCheck; TDLFS;
23:41:46.0874 0x1704 ============================================================
23:41:46.0874 0x1704 KSN ping started
23:41:49.0292 0x1704 KSN ping finished: true
23:41:49.0482 0x1704 ================ Scan system memory ========================
23:41:49.0482 0x1704 System memory - ok
23:41:49.0482 0x1704 ================ Scan services =============================
23:41:49.0639 0x1704 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:41:49.0711 0x1704 1394ohci - ok
23:41:49.0748 0x1704 [ E388503069001F0797EC200CE19B265E, 186E698F4D527AE8B4D7D1FBBD068DE1F75083930C47941CD6E04A6F46D70F1F ] Acceler C:\Windows\system32\DRIVERS\Acceler.sys
23:41:49.0763 0x1704 Acceler - ok
23:41:49.0812 0x1704 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:41:49.0828 0x1704 ACPI - ok
23:41:49.0858 0x1704 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:41:49.0897 0x1704 AcpiPmi - ok
23:41:50.0027 0x1704 [ 7C58046ACEAF10525077BD586A740E9F, E26D446EDB158A9EDA7FC7E1DA650FA8896748B7DEB9FDBF5BD4352ACF01B721 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:41:50.0042 0x1704 AdobeFlashPlayerUpdateSvc - ok
23:41:50.0082 0x1704 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:41:50.0103 0x1704 adp94xx - ok
23:41:50.0124 0x1704 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:41:50.0140 0x1704 adpahci - ok
23:41:50.0175 0x1704 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:41:50.0191 0x1704 adpu320 - ok
23:41:50.0210 0x1704 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:41:50.0261 0x1704 AeLookupSvc - ok
23:41:50.0387 0x1704 [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_056607ee0106e5e8\AESTSr64.exe
23:41:50.0413 0x1704 AESTFilters - ok
23:41:50.0463 0x1704 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
23:41:50.0514 0x1704 AFD - ok
23:41:50.0569 0x1704 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:41:50.0580 0x1704 agp440 - ok
23:41:50.0583 0x1704 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:41:50.0615 0x1704 ALG - ok
23:41:50.0657 0x1704 [ A303914A4B85A2D8911DBD328A3B5C48, DA8C325574A8CAC74C00A20DA1EF617EA4B63BA8A23A7DD3B221E7759C02E7BB ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe
23:41:50.0666 0x1704 AlienFusionService - ok
23:41:50.0684 0x1704 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:41:50.0684 0x1704 aliide - ok
23:41:50.0699 0x1704 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:41:50.0715 0x1704 amdide - ok
23:41:50.0737 0x1704 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:41:50.0751 0x1704 AmdK8 - ok
23:41:50.0765 0x1704 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:41:50.0799 0x1704 AmdPPM - ok
23:41:50.0826 0x1704 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:41:50.0838 0x1704 amdsata - ok
23:41:50.0859 0x1704 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:41:50.0873 0x1704 amdsbs - ok
23:41:50.0889 0x1704 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:41:50.0900 0x1704 amdxata - ok
23:41:50.0934 0x1704 [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID C:\Windows\system32\drivers\appid.sys
23:41:50.0962 0x1704 AppID - ok
23:41:50.0983 0x1704 [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:41:51.0012 0x1704 AppIDSvc - ok
23:41:51.0042 0x1704 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
23:41:51.0076 0x1704 Appinfo - ok
23:41:51.0100 0x1704 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:41:51.0114 0x1704 arc - ok
23:41:51.0135 0x1704 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:41:51.0147 0x1704 arcsas - ok
23:41:51.0258 0x1704 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:41:51.0271 0x1704 aspnet_state - ok
23:41:51.0292 0x1704 [ B5B4C90E9F52DA8586F1E5461AD90A5D, D1EAA34E6AEB014E942D22F8CB5FB19BF1E2EADE5B5357274C001F44FDC25F05 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
23:41:51.0295 0x1704 aswHwid - ok
23:41:51.0311 0x1704 [ 300CB8E510855189CAD0B72FFB5590CB, EB50DC553FA8FD9DE3F60AAFED20702EAFBB1498EBD3220A39CC52A12F694246 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
23:41:51.0326 0x1704 aswMonFlt - ok
23:41:51.0326 0x1704 [ 6D37D8DB30D086739507C5F6E542656A, 746D9E32E729138EA19062F4E6B6C98B6833504020A296E3E2A9CD92E0FED0B9 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
23:41:51.0349 0x1704 aswRdr - ok
23:41:51.0371 0x1704 [ 07E32DFCA422A2920482D762D01957EC, A6502D26266D708E55EB2883897673AD3087C41D9EA0B41CD6BF6BD923EBDCB8 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
23:41:51.0380 0x1704 aswRvrt - ok
23:41:51.0411 0x1704 [ 3B4AC2DBFC86F7247C1FF1FAF2860530, A54A693D01C02AAE2B78BFE9B3900B5A6DD0C2C37C8FA58B14B5F57107032FF5 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
23:41:51.0449 0x1704 aswSnx - ok
23:41:51.0498 0x1704 [ A04F190FCD762E7BCC9BFC70563C52DB, 2BF6823F2EADBDA28DF1CCECCAC84D9FF37D3CFB66A7B402575C6B9FCFB45EB3 ] aswSP C:\Windows\system32\drivers\aswSP.sys
23:41:51.0517 0x1704 aswSP - ok
23:41:51.0539 0x1704 [ 6E53278ECCFFBC2ACC2A5006745ED4BB, 392170073A8933DB43CD1D64AD087F972F1971BF83BCAFE5B8FA1273C02026CE ] aswStm C:\Windows\system32\drivers\aswStm.sys
23:41:51.0551 0x1704 aswStm - ok
23:41:51.0570 0x1704 [ 91782404718C6352C26B3242BAC3F0F1, 84B1CDD1EBC83FAEBDCC8F67B13CA405C6CF0C518FC016603889EBE48FC91AB9 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
23:41:51.0585 0x1704 aswVmm - ok
23:41:51.0611 0x1704 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:41:51.0660 0x1704 AsyncMac - ok
23:41:51.0668 0x1704 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:41:51.0683 0x1704 atapi - ok
23:41:51.0755 0x1704 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:41:51.0782 0x1704 AudioEndpointBuilder - ok
23:41:51.0804 0x1704 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:41:51.0835 0x1704 AudioSrv - ok
23:41:51.0923 0x1704 [ 54236E79A44F909612391C8A2D70D512, B0DF5BCC4F90AF087D0306F8D81F90B2CAE0176813E3AA6A7D5460F7878677CD ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
23:41:51.0939 0x1704 avast! Antivirus - ok
23:41:52.0106 0x1704 [ 46C430FE178028F7AD151B62EBA3EEC5, C883B7A974A629549470B28532640C1FD2166CC4F95C69E4C4A1596AF5A5A331 ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
23:41:52.0211 0x1704 AvastVBoxSvc - ok
23:41:52.0265 0x1704 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:41:52.0296 0x1704 AxInstSV - ok
23:41:52.0346 0x1704 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:41:52.0378 0x1704 b06bdrv - ok
23:41:52.0431 0x1704 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:41:52.0469 0x1704 b57nd60a - ok
23:41:52.0492 0x1704 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:41:52.0515 0x1704 BDESVC - ok
23:41:52.0515 0x1704 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:41:52.0571 0x1704 Beep - ok
23:41:52.0652 0x1704 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:41:52.0736 0x1704 BFE - ok
23:41:52.0815 0x1704 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
23:41:52.0909 0x1704 BITS - ok
23:41:52.0931 0x1704 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:41:52.0965 0x1704 blbdrive - ok
23:41:53.0000 0x1704 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:41:53.0035 0x1704 bowser - ok
23:41:53.0143 0x1704 [ 7487B46E104303E247F68D485C12326F, BAC6A4FFD5B4009B4B673479630FAA2784618438925DFB6489F07BF163188114 ] BRDriver64_1_3_3_E02B25FC C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys
23:41:53.0159 0x1704 BRDriver64_1_3_3_E02B25FC - ok
23:41:53.0174 0x1704 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:41:53.0210 0x1704 BrFiltLo - ok
23:41:53.0244 0x1704 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:41:53.0276 0x1704 BrFiltUp - ok
23:41:53.0315 0x1704 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:41:53.0345 0x1704 Browser - ok
23:41:53.0380 0x1704 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:41:53.0396 0x1704 Brserid - ok
23:41:53.0412 0x1704 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:41:53.0449 0x1704 BrSerWdm - ok
23:41:53.0521 0x1704 [ 448917845F097FCE9D4554C3D2001EF3, BDCBEC01579D7CF28963E4E13CDC5B26E4B69CA24FA2CC4D6E24CAE0DDBCB3FE ] BRSptStub C:\ProgramData\BitRaider\BRSptStub.exe
23:41:53.0538 0x1704 BRSptStub - ok
23:41:53.0543 0x1704 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:41:53.0558 0x1704 BrUsbMdm - ok
23:41:53.0561 0x1704 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:41:53.0574 0x1704 BrUsbSer - ok
23:41:53.0616 0x1704 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
23:41:53.0647 0x1704 BthEnum - ok
23:41:53.0682 0x1704 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:41:53.0685 0x1704 BTHMODEM - ok
23:41:53.0701 0x1704 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:41:53.0757 0x1704 BthPan - ok
23:41:53.0794 0x1704 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
23:41:53.0837 0x1704 BTHPORT - ok
23:41:53.0873 0x1704 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:41:53.0923 0x1704 bthserv - ok
23:41:53.0948 0x1704 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
23:41:53.0982 0x1704 BTHUSB - ok
23:41:54.0010 0x1704 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B, 2A2039DD524E989EA91B7C91D5F295C663D1E27ABD64777D2F3137EB1C42C258 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
23:41:54.0023 0x1704 btwaudio - ok
23:41:54.0038 0x1704 [ 82DC8B7C626E526681C1BEBED2BC3FF9, 58260E88CDD7388ABA563F9B8F2F3FA17022DB9E4C56EBA0761E99B919A8EAF8 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
23:41:54.0049 0x1704 btwavdt - ok
23:41:54.0161 0x1704 [ 6DDE1E97BE4D50253DFB9090A6A62524, 301E3C7701C976B5366CDC3073260C6741A01CA2D854D86E114C7898BA6FBFDF ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
23:41:54.0186 0x1704 btwdins - ok
23:41:54.0191 0x1704 [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
23:41:54.0198 0x1704 btwl2cap - ok
23:41:54.0199 0x1704 [ 28E105AD3B79F440BF94780F507BF66A, EF4E6CCAB16765E2C88666625C13CB3299B668159A94CB201E3B44701A30640A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
23:41:54.0199 0x1704 btwrchid - ok
23:41:54.0230 0x1704 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:41:54.0279 0x1704 cdfs - ok
23:41:54.0331 0x1704 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
23:41:54.0347 0x1704 cdrom - ok
23:41:54.0373 0x1704 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:41:54.0411 0x1704 CertPropSvc - ok
23:41:54.0453 0x1704 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:41:54.0483 0x1704 circlass - ok
23:41:54.0575 0x1704 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
23:41:54.0594 0x1704 CLFS - ok
23:41:54.0812 0x1704 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:41:54.0824 0x1704 clr_optimization_v2.0.50727_32 - ok
23:41:54.0889 0x1704 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:41:54.0946 0x1704 clr_optimization_v2.0.50727_64 - ok
23:41:55.0193 0x1704 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:41:55.0210 0x1704 clr_optimization_v4.0.30319_32 - ok
23:41:55.0226 0x1704 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:41:55.0242 0x1704 clr_optimization_v4.0.30319_64 - ok
23:41:55.0261 0x1704 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:41:55.0292 0x1704 CmBatt - ok
23:41:55.0343 0x1704 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:41:55.0361 0x1704 cmdide - ok
23:41:55.0421 0x1704 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys
23:41:55.0446 0x1704 CNG - ok
23:41:55.0463 0x1704 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:41:55.0479 0x1704 Compbatt - ok
23:41:55.0530 0x1704 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:41:55.0564 0x1704 CompositeBus - ok
23:41:55.0582 0x1704 COMSysApp - ok
23:41:55.0603 0x1704 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:41:55.0619 0x1704 crcdisk - ok
23:41:55.0685 0x1704 [ 1CD76A83B9E8E9A5A3519B39E28354D9, F9931743B99820FFBFB13136DFFD92F86802D543F9D8478648CDC554FB38899D ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:41:55.0724 0x1704 CryptSvc - ok
23:41:55.0871 0x1704 [ A1DCE96A9CBAD8C0C0DD4BF2047463F6, BE2DF7B37D4388F802E85AAD0FAD5C53FE9361665A798A0768CBDBE240352B2D ] DCamUSBNovatek C:\Windows\system32\Drivers\nvtcam.sys
23:41:55.0943 0x1704 DCamUSBNovatek - ok
23:41:56.0007 0x1704 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:41:56.0076 0x1704 DcomLaunch - ok
23:41:56.0117 0x1704 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:41:56.0177 0x1704 defragsvc - ok
23:41:56.0208 0x1704 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:41:56.0259 0x1704 DfsC - ok
23:41:56.0294 0x1704 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:41:56.0340 0x1704 Dhcp - ok
23:41:56.0373 0x1704 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:41:56.0425 0x1704 discache - ok
23:41:56.0446 0x1704 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:41:56.0458 0x1704 Disk - ok
23:41:56.0498 0x1704 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:41:56.0530 0x1704 Dnscache - ok
23:41:56.0631 0x1704 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:41:56.0667 0x1704 dot3svc - ok
23:41:56.0718 0x1704 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:41:56.0741 0x1704 DPS - ok
23:41:56.0776 0x1704 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:41:56.0806 0x1704 drmkaud - ok
23:41:56.0897 0x1704 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:41:56.0930 0x1704 DXGKrnl - ok
23:41:56.0959 0x1704 [ F369E83F6CDAB987CA2DD764278659A6, 64F7CF085EA19A37D6A23D91B63BCF36EAC4FEE936DDD7E71F665C4FD0EA6DC2 ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
23:41:56.0974 0x1704 e1kexpress - ok
23:41:57.0000 0x1704 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:41:57.0051 0x1704 EapHost - ok
23:41:57.0054 0x1704 EasyAntiCheat - ok
23:41:57.0179 0x1704 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:41:57.0265 0x1704 ebdrv - ok
23:41:57.0296 0x1704 [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] EFS C:\Windows\System32\lsass.exe
23:41:57.0327 0x1704 EFS - ok
23:41:57.0426 0x1704 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:41:57.0453 0x1704 ehRecvr - ok
23:41:57.0483 0x1704 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:41:57.0520 0x1704 ehSched - ok
23:41:57.0568 0x1704 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:41:57.0588 0x1704 elxstor - ok
23:41:57.0629 0x1704 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:41:57.0658 0x1704 ErrDev - ok
23:41:57.0692 0x1704 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:41:57.0749 0x1704 EventSystem - ok
23:41:57.0772 0x1704 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:41:57.0825 0x1704 exfat - ok
23:41:57.0859 0x1704 [ 2C1D443E14F376E8331F52F135DCA9EF, 72E6611A6D8B54ED188A55229866E6F5BFF2BB284A4DFC7495732D4C3ED6F7F8 ] FACAP C:\Windows\system32\DRIVERS\facap.sys
23:41:57.0872 0x1704 FACAP - ok
23:41:57.0971 0x1704 [ FF8F159C16D513A97E257CE29CFE9AAB, E5ADDA34BD08F0BA041A4B715C407C90E30D1B32BF78C56674085324F36F2857 ] FAService C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe
23:41:58.0029 0x1704 FAService - ok
23:41:58.0052 0x1704 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:41:58.0100 0x1704 fastfat - ok
23:41:58.0144 0x1704 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:41:58.0198 0x1704 Fax - ok
23:41:58.0225 0x1704 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:41:58.0260 0x1704 fdc - ok
23:41:58.0290 0x1704 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:41:58.0342 0x1704 fdPHost - ok
23:41:58.0366 0x1704 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:41:58.0411 0x1704 FDResPub - ok
23:41:58.0432 0x1704 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:41:58.0443 0x1704 FileInfo - ok
23:41:58.0448 0x1704 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:41:58.0499 0x1704 Filetrace - ok
23:41:58.0500 0x1704 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:41:58.0516 0x1704 flpydisk - ok
23:41:58.0531 0x1704 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:41:58.0550 0x1704 FltMgr - ok
23:41:58.0616 0x1704 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
23:41:58.0667 0x1704 FontCache - ok
23:41:58.0748 0x1704 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:41:58.0757 0x1704 FontCache3.0.0.0 - ok
23:41:58.0777 0x1704 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:41:58.0788 0x1704 FsDepends - ok
23:41:58.0819 0x1704 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:41:58.0819 0x1704 Fs_Rec - ok
23:41:58.0867 0x1704 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:41:58.0884 0x1704 fvevol - ok
23:41:58.0896 0x1704 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:41:58.0908 0x1704 gagp30kx - ok
23:41:58.0968 0x1704 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
23:41:59.0034 0x1704 gpsvc - ok
23:41:59.0112 0x1704 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:41:59.0124 0x1704 gupdate - ok
23:41:59.0137 0x1704 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:41:59.0149 0x1704 gupdatem - ok
23:41:59.0188 0x1704 [ 8CD92502FEC49E837155B9F20E5E2D2C, DE92733B4F6C4B15612A14B8DD41B1D344A682C1063788F9CE9351C1446DFEDC ] HappyOSD C:\Program Files (x86)\OSD\OSD_Service.exe
23:41:59.0192 0x1704 HappyOSD - detected UnsignedFile.Multi.Generic ( 1 )
23:41:59.0192 0x1704 Detect skipped due to KSN trusted
23:41:59.0192 0x1704 HappyOSD - ok
23:41:59.0208 0x1704 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:41:59.0236 0x1704 hcw85cir - ok
23:41:59.0271 0x1704 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:41:59.0296 0x1704 HDAudBus - ok
23:41:59.0329 0x1704 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:41:59.0343 0x1704 HidBatt - ok
23:41:59.0352 0x1704 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:41:59.0389 0x1704 HidBth - ok
23:41:59.0424 0x1704 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:41:59.0456 0x1704 HidIr - ok
23:41:59.0486 0x1704 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
23:41:59.0517 0x1704 hidserv - ok
23:41:59.0536 0x1704 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:41:59.0548 0x1704 HidUsb - ok
23:41:59.0584 0x1704 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:41:59.0642 0x1704 hkmsvc - ok
23:41:59.0678 0x1704 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:41:59.0711 0x1704 HomeGroupListener - ok
23:41:59.0754 0x1704 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:41:59.0790 0x1704 HomeGroupProvider - ok
23:41:59.0828 0x1704 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:41:59.0839 0x1704 HpSAMD - ok
23:41:59.0903 0x1704 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:41:59.0966 0x1704 HTTP - ok
23:41:59.0991 0x1704 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:41:59.0991 0x1704 hwpolicy - ok
23:42:00.0068 0x1704 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:42:00.0082 0x1704 i8042prt - ok
23:42:00.0130 0x1704 [ 660BF3255A1EB18ED803FD2FBA6AE400, 74A77E9828D62F2821D398EAA84BB15BF093EAD1BD5A7824362ED3D1A063C509 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:42:00.0147 0x1704 IAANTMON - ok
23:42:00.0161 0x1704 [ 87A72502C8AC5E89B5A46FF6E874F5C5, A72C8C96BA29B5894A3085CA2ADB6343FEFA79534B334416F8D4751CF8A30008 ] IAMTVE C:\Windows\system32\DRIVERS\IAMTVE.sys
23:42:00.0170 0x1704 IAMTVE - ok
23:42:00.0175 0x1704 [ 5516F8E518A2F6A8755498F3E73957CF, 55CCE4501B44F756D31BA0E353597F0C9E12FDFF7205B05114A8CF1D7D506365 ] IAMTXPE C:\Windows\system32\DRIVERS\IAMTXPE.sys
23:42:00.0184 0x1704 IAMTXPE - ok
23:42:00.0215 0x1704 [ BE7D72FCF442C26975942007E0831241, A0FD29B3D1A1278787F8B3FBE7EC3216AAF328467974A6D90752639BB44DCD84 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:42:00.0231 0x1704 iaStor - ok
23:42:00.0258 0x1704 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:42:00.0276 0x1704 iaStorV - ok
23:42:00.0351 0x1704 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:42:00.0378 0x1704 idsvc - ok
23:42:00.0382 0x1704 IEEtwCollectorService - ok
23:42:00.0409 0x1704 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:42:00.0415 0x1704 iirsp - ok
23:42:00.0525 0x1704 [ C5E4602D85029C666A42890A3B2DFA45, 0D462704C507A83CB447AA0DF8A9FFAE2A16DD2D6882798E26C03F8B2C8A2C62 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
23:42:00.0536 0x1704 IJPLMSVC - ok
23:42:00.0597 0x1704 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:42:00.0644 0x1704 IKEEXT - ok
23:42:00.0679 0x1704 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:42:00.0690 0x1704 intelide - ok
23:42:00.0707 0x1704 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:42:00.0737 0x1704 intelppm - ok
23:42:00.0774 0x1704 [ 4B846898AA05BB1E1E88313C9174A9ED, 0C2D73D3F5EC0E175CBE0D21A42BEAE1F86AAF4D636655044790DE06C8086124 ] ioatdma C:\Windows\system32\Drivers\ioatdma.sys
23:42:00.0784 0x1704 ioatdma - ok
23:42:00.0797 0x1704 [ 7F4F67177E9FC600B2AFF6BB21DB6D04, 40BE478D2EAA5AAC5C93EADC1C8D5C173BD7DAF54D77F625EC9F3699E5B2F61E ] ioatdma1 C:\Windows\System32\Drivers\qd162x64.sys
23:42:00.0806 0x1704 ioatdma1 - ok
23:42:00.0810 0x1704 [ 565DE53FB5E4CB14314E4F53848A025D, 8A39F78EA6569F0AAF3FC5E26C25AFC5CC906485319E9B62D02B00DA90E49755 ] ioatdma2 C:\Windows\System32\Drivers\qd262x64.sys
23:42:00.0820 0x1704 ioatdma2 - ok
23:42:00.0843 0x1704 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:42:00.0892 0x1704 IPBusEnum - ok
23:42:00.0958 0x1704 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:42:00.0989 0x1704 IpFilterDriver - ok
23:42:01.0049 0x1704 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:42:01.0088 0x1704 iphlpsvc - ok
23:42:01.0125 0x1704 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:42:01.0125 0x1704 IPMIDRV - ok
23:42:01.0169 0x1704 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:42:01.0199 0x1704 IPNAT - ok
23:42:01.0213 0x1704 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:42:01.0227 0x1704 IRENUM - ok
23:42:01.0267 0x1704 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:42:01.0279 0x1704 isapnp - ok
23:42:01.0311 0x1704 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:42:01.0326 0x1704 iScsiPrt - ok
23:42:01.0346 0x1704 [ 5122B80266E2DF2188466A93A31EE3B7, D03D0808D7B9C7610FABADAC1C0D1329B3E700F99AB785163C057AC7AFFE7929 ] iSSetup C:\Windows\system32\DRIVERS\iSSetup.sys
23:42:01.0370 0x1704 iSSetup - ok
23:42:01.0383 0x1704 [ 9291643B494F87BFDAC95A524F69E737, 7BCFAE383B39DC47E74820BA137C4DD4C44E95667DAA737FCE78563A7CF2FDDE ] itecir C:\Windows\system32\DRIVERS\itecir.sys
23:42:01.0410 0x1704 itecir - ok
23:42:01.0414 0x1704 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:42:01.0425 0x1704 kbdclass - ok
23:42:01.0458 0x1704 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:42:01.0492 0x1704 kbdhid - ok
23:42:01.0513 0x1704 [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] KeyIso C:\Windows\system32\lsass.exe
23:42:01.0526 0x1704 KeyIso - ok
|
|
08.11.2015, 23:47
| #4 |
| | Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne LastCode:
ATTFilter 23:42:01.0569 0x1704 [ 063C09DB965E3DFD6F4F08416F6DB8F5, 0BE015C59288397536B3941BA55EFE0CF06714BC43FF3A33A1D844B4E0F16097 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:42:01.0581 0x1704 KSecDD - ok
23:42:01.0594 0x1704 [ 1FA627E63195BF3BF636BFEF0D7190D4, 794456605303F4916E81BE899E0B05CB070094E719ADA8BE8072A761E35CA8E9 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:42:01.0608 0x1704 KSecPkg - ok
23:42:01.0618 0x1704 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:42:01.0674 0x1704 ksthunk - ok
23:42:01.0723 0x1704 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:42:01.0752 0x1704 KtmRm - ok
23:42:01.0799 0x1704 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
23:42:01.0835 0x1704 LanmanServer - ok
23:42:01.0882 0x1704 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:42:01.0914 0x1704 LanmanWorkstation - ok
23:42:01.0930 0x1704 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:42:01.0963 0x1704 lltdio - ok
23:42:01.0990 0x1704 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:42:02.0042 0x1704 lltdsvc - ok
23:42:02.0061 0x1704 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:42:02.0075 0x1704 lmhosts - ok
23:42:02.0107 0x1704 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:42:02.0107 0x1704 LSI_FC - ok
23:42:02.0124 0x1704 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:42:02.0138 0x1704 LSI_SAS - ok
23:42:02.0150 0x1704 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:42:02.0162 0x1704 LSI_SAS2 - ok
23:42:02.0181 0x1704 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:42:02.0193 0x1704 LSI_SCSI - ok
23:42:02.0211 0x1704 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:42:02.0259 0x1704 luafv - ok
23:42:02.0295 0x1704 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:42:02.0309 0x1704 Mcx2Svc - ok
23:42:02.0325 0x1704 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:42:02.0336 0x1704 megasas - ok
23:42:02.0348 0x1704 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:42:02.0365 0x1704 MegaSR - ok
23:42:02.0380 0x1704 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:42:02.0427 0x1704 MMCSS - ok
23:42:02.0431 0x1704 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:42:02.0461 0x1704 Modem - ok
23:42:02.0485 0x1704 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:42:02.0514 0x1704 monitor - ok
23:42:02.0553 0x1704 [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
23:42:02.0580 0x1704 MotioninJoyXFilter - detected UnsignedFile.Multi.Generic ( 1 )
23:42:02.0580 0x1704 Detect skipped due to KSN trusted
23:42:02.0580 0x1704 MotioninJoyXFilter - ok
23:42:02.0607 0x1704 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:42:02.0618 0x1704 mouclass - ok
23:42:02.0628 0x1704 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:42:02.0642 0x1704 mouhid - ok
23:42:02.0681 0x1704 [ 87BCD1034CBF33537D4D4C251D39BA26, CB9DD235B62B79383F99873D75E26EEA5EE7914CA89E4B75992207F83420437F ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:42:02.0693 0x1704 mountmgr - ok
23:42:02.0716 0x1704 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:42:02.0729 0x1704 mpio - ok
23:42:02.0749 0x1704 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:42:02.0779 0x1704 mpsdrv - ok
23:42:02.0837 0x1704 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:42:02.0901 0x1704 MpsSvc - ok
23:42:02.0939 0x1704 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:42:02.0980 0x1704 MRxDAV - ok
23:42:03.0018 0x1704 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:42:03.0033 0x1704 mrxsmb - ok
23:42:03.0048 0x1704 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:42:03.0074 0x1704 mrxsmb10 - ok
23:42:03.0111 0x1704 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:42:03.0129 0x1704 mrxsmb20 - ok
23:42:03.0149 0x1704 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:42:03.0160 0x1704 msahci - ok
23:42:03.0195 0x1704 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:42:03.0210 0x1704 msdsm - ok
23:42:03.0226 0x1704 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:42:03.0264 0x1704 MSDTC - ok
23:42:03.0297 0x1704 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:42:03.0343 0x1704 Msfs - ok
23:42:03.0378 0x1704 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:42:03.0408 0x1704 mshidkmdf - ok
23:42:03.0430 0x1704 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:42:03.0446 0x1704 msisadrv - ok
23:42:03.0486 0x1704 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:42:03.0541 0x1704 MSiSCSI - ok
23:42:03.0543 0x1704 msiserver - ok
23:42:03.0574 0x1704 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:42:03.0619 0x1704 MSKSSRV - ok
23:42:03.0635 0x1704 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:42:03.0692 0x1704 MSPCLOCK - ok
23:42:03.0712 0x1704 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:42:03.0742 0x1704 MSPQM - ok
23:42:03.0785 0x1704 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:42:03.0815 0x1704 MsRPC - ok
23:42:03.0857 0x1704 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:42:03.0868 0x1704 mssmbios - ok
23:42:03.0880 0x1704 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:42:03.0909 0x1704 MSTEE - ok
23:42:03.0923 0x1704 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:42:03.0939 0x1704 MTConfig - ok
23:42:03.0970 0x1704 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:42:03.0974 0x1704 Mup - ok
23:42:03.0990 0x1704 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:42:04.0056 0x1704 napagent - ok
23:42:04.0104 0x1704 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:42:04.0157 0x1704 NativeWifiP - ok
23:42:04.0245 0x1704 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
23:42:04.0289 0x1704 NDIS - ok
23:42:04.0302 0x1704 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:42:04.0335 0x1704 NdisCap - ok
23:42:04.0354 0x1704 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:42:04.0401 0x1704 NdisTapi - ok
23:42:04.0432 0x1704 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:42:04.0482 0x1704 Ndisuio - ok
23:42:04.0515 0x1704 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:42:04.0561 0x1704 NdisWan - ok
23:42:04.0591 0x1704 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:42:04.0621 0x1704 NDProxy - ok
23:42:04.0713 0x1704 [ B90E093E7A7250906F1054418B5339C0, F9A0BAC5B4B29F14B5CACA1047F8928A495EFD56E485492BF71C856B296476D6 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
23:42:04.0756 0x1704 Nero BackItUp Scheduler 4.0 - ok
23:42:04.0780 0x1704 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:42:04.0831 0x1704 NetBIOS - ok
23:42:04.0875 0x1704 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:42:04.0913 0x1704 NetBT - ok
23:42:04.0937 0x1704 [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] Netlogon C:\Windows\system32\lsass.exe
23:42:04.0951 0x1704 Netlogon - ok
23:42:04.0995 0x1704 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:42:05.0056 0x1704 Netman - ok
23:42:05.0133 0x1704 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:05.0197 0x1704 NetMsmqActivator - ok
23:42:05.0204 0x1704 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:05.0219 0x1704 NetPipeActivator - ok
23:42:05.0248 0x1704 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:42:05.0309 0x1704 netprofm - ok
23:42:05.0324 0x1704 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:05.0338 0x1704 NetTcpActivator - ok
23:42:05.0344 0x1704 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:05.0358 0x1704 NetTcpPortSharing - ok
23:42:05.0567 0x1704 [ 4D85A450EDEF10C38882182753A49AAE, FB6C2D91B2CF834315498BB31F931E2A49066A3158A588FD705F59628DF2F8FC ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
23:42:05.0823 0x1704 NETw5s64 - ok
23:42:05.0861 0x1704 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:42:05.0873 0x1704 nfrd960 - ok
23:42:05.0926 0x1704 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:42:05.0971 0x1704 NlaSvc - ok
23:42:05.0995 0x1704 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:42:06.0024 0x1704 Npfs - ok
23:42:06.0024 0x1704 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:42:06.0075 0x1704 nsi - ok
23:42:06.0090 0x1704 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:42:06.0141 0x1704 nsiproxy - ok
23:42:06.0237 0x1704 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:42:06.0312 0x1704 Ntfs - ok
23:42:06.0346 0x1704 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:42:06.0362 0x1704 Null - ok
23:42:07.0159 0x1704 [ 6EF8C7A051804570000670800F6174FE, AE66C42A97C0427BEEEB31C72BF61FFE6D6F59C335E3009B49BC2F90946DEC46 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:42:07.0466 0x1704 nvlddmkm - ok
23:42:07.0567 0x1704 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:42:07.0582 0x1704 nvraid - ok
23:42:07.0635 0x1704 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:42:07.0651 0x1704 nvstor - ok
23:42:07.0739 0x1704 [ 4094DFF204EE3CF902648F0F14B8D344, 90C77F47E4763C3594B27C72807B11EF1A6DF3F536723BD877579BD75488225F ] nvsvc C:\Windows\system32\nvvsvc.exe
23:42:07.0752 0x1704 nvsvc - ok
23:42:07.0791 0x1704 [ DBFE7B2DF103F74AE51840B3C5F25FE9, 436CAA417FD24BA870F117FA4BABA2AB694825795508BCFCC8C927CC2D5BBC5E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
23:42:07.0804 0x1704 nvvad_WaveExtensible - ok
23:42:07.0841 0x1704 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:42:07.0856 0x1704 nv_agp - ok
23:42:07.0906 0x1704 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:42:07.0937 0x1704 ohci1394 - ok
23:42:08.0068 0x1704 [ 8703DA402DE75EE272B9679F34469D2B, B437A0D5E3E79337AA3E8DDC3630D3DC2E5E96F2432664AF30911BCCD4270A8C ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
23:42:08.0141 0x1704 Origin Client Service - ok
23:42:08.0173 0x1704 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:42:08.0211 0x1704 p2pimsvc - ok
23:42:08.0258 0x1704 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:42:08.0314 0x1704 p2psvc - ok
23:42:08.0345 0x1704 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:42:08.0362 0x1704 Parport - ok
23:42:08.0380 0x1704 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:42:08.0380 0x1704 partmgr - ok
23:42:08.0446 0x1704 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:42:08.0482 0x1704 PcaSvc - ok
23:42:08.0526 0x1704 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:42:08.0543 0x1704 pci - ok
23:42:08.0564 0x1704 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:42:08.0576 0x1704 pciide - ok
23:42:08.0591 0x1704 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:42:08.0613 0x1704 pcmcia - ok
23:42:08.0628 0x1704 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:42:08.0641 0x1704 pcw - ok
23:42:08.0668 0x1704 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:42:08.0718 0x1704 PEAUTH - ok
23:42:08.0809 0x1704 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:42:08.0827 0x1704 PerfHost - ok
23:42:08.0913 0x1704 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:42:08.0995 0x1704 pla - ok
23:42:09.0055 0x1704 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:42:09.0108 0x1704 PlugPlay - ok
23:42:09.0126 0x1704 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:42:09.0141 0x1704 PNRPAutoReg - ok
23:42:09.0163 0x1704 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:42:09.0182 0x1704 PNRPsvc - ok
23:42:09.0209 0x1704 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:42:09.0261 0x1704 PolicyAgent - ok
23:42:09.0310 0x1704 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:42:09.0363 0x1704 Power - ok
23:42:09.0396 0x1704 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:42:09.0428 0x1704 PptpMiniport - ok
23:42:09.0451 0x1704 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:42:09.0466 0x1704 Processor - ok
23:42:09.0521 0x1704 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
23:42:09.0557 0x1704 ProfSvc - ok
23:42:09.0574 0x1704 [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:42:09.0587 0x1704 ProtectedStorage - ok
23:42:09.0624 0x1704 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:42:09.0666 0x1704 Psched - ok
23:42:09.0745 0x1704 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:42:09.0834 0x1704 ql2300 - ok
23:42:09.0863 0x1704 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:42:09.0878 0x1704 ql40xx - ok
23:42:09.0912 0x1704 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:42:09.0945 0x1704 QWAVE - ok
23:42:09.0952 0x1704 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:42:09.0985 0x1704 QWAVEdrv - ok
23:42:10.0012 0x1704 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:42:10.0044 0x1704 RasAcd - ok
23:42:10.0081 0x1704 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:42:10.0126 0x1704 RasAgileVpn - ok
23:42:10.0151 0x1704 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:42:10.0198 0x1704 RasAuto - ok
23:42:10.0234 0x1704 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:42:10.0284 0x1704 Rasl2tp - ok
23:42:10.0348 0x1704 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:42:10.0392 0x1704 RasMan - ok
23:42:10.0406 0x1704 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:42:10.0451 0x1704 RasPppoe - ok
23:42:10.0477 0x1704 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:42:10.0509 0x1704 RasSstp - ok
23:42:10.0557 0x1704 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:42:10.0602 0x1704 rdbss - ok
23:42:10.0620 0x1704 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:42:10.0636 0x1704 rdpbus - ok
23:42:10.0658 0x1704 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:42:10.0687 0x1704 RDPCDD - ok
23:42:10.0694 0x1704 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:42:10.0728 0x1704 RDPENCDD - ok
23:42:10.0735 0x1704 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:42:10.0778 0x1704 RDPREFMP - ok
23:42:10.0896 0x1704 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:42:10.0913 0x1704 RdpVideoMiniport - ok
23:42:10.0962 0x1704 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:42:10.0999 0x1704 RDPWD - ok
23:42:11.0035 0x1704 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:42:11.0052 0x1704 rdyboost - ok
23:42:11.0071 0x1704 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:42:11.0109 0x1704 RemoteAccess - ok
23:42:11.0133 0x1704 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:42:11.0194 0x1704 RemoteRegistry - ok
23:42:11.0237 0x1704 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:42:11.0257 0x1704 RFCOMM - ok
23:42:11.0290 0x1704 [ CB7C996F3878E936BFDD9CDFE6A3A987, B762E403AC156456B29D7FF0136852F84AEE3803A90159EEEDA3616281158F8E ] rimmptsk C:\Windows\system32\DRIVERS\rimmpx64.sys
23:42:11.0304 0x1704 rimmptsk - ok
23:42:11.0317 0x1704 [ 2C543F0E04B5F6FD5C17509D0ECE6D1D, D1D6A679550CA038E67D2255327F7119D936E866EBDEECBB7DB82C5A92C5D714 ] rimsptsk C:\Windows\system32\DRIVERS\rimspx64.sys
23:42:11.0347 0x1704 rimsptsk - ok
23:42:11.0366 0x1704 [ 481C3FDEACAAE04B74C58288DBC91DF9, D7F2AB5E97C0293A5CAC977695EC1D0DBB354D0EA3662D37803098D9477DE03F ] rismxdp C:\Windows\system32\DRIVERS\rixdpx64.sys
23:42:11.0392 0x1704 rismxdp - ok
23:42:11.0414 0x1704 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:42:11.0449 0x1704 RpcEptMapper - ok
23:42:11.0468 0x1704 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:42:11.0501 0x1704 RpcLocator - ok
23:42:11.0551 0x1704 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
23:42:11.0592 0x1704 RpcSs - ok
23:42:11.0608 0x1704 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:42:11.0640 0x1704 rspndr - ok
23:42:11.0646 0x1704 [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] SamSs C:\Windows\system32\lsass.exe
23:42:11.0661 0x1704 SamSs - ok
23:42:11.0703 0x1704 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:42:11.0718 0x1704 sbp2port - ok
23:42:11.0740 0x1704 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:42:11.0798 0x1704 SCardSvr - ok
23:42:11.0836 0x1704 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:42:11.0882 0x1704 scfilter - ok
23:42:11.0930 0x1704 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
23:42:12.0007 0x1704 Schedule - ok
23:42:12.0048 0x1704 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:42:12.0077 0x1704 SCPolicySvc - ok
23:42:12.0098 0x1704 [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus C:\Windows\system32\drivers\sdbus.sys
23:42:12.0136 0x1704 sdbus - ok
23:42:12.0174 0x1704 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:42:12.0210 0x1704 SDRSVC - ok
23:42:12.0362 0x1704 [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
23:42:12.0412 0x1704 SDScannerService - ok
23:42:12.0505 0x1704 [ 68D6C7F99BC73B88954D844FCCBEB2A0, F746861B103C8BE8EA234B9FCFBBDD2412C79FB65F2F1E0F5E6EBC0B34905FF1 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
23:42:12.0555 0x1704 SDUpdateService - ok
23:42:12.0577 0x1704 [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
23:42:12.0592 0x1704 SDWSCService - ok
23:42:12.0628 0x1704 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:42:12.0677 0x1704 secdrv - ok
23:42:12.0711 0x1704 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
23:42:12.0741 0x1704 seclogon - ok
23:42:12.0774 0x1704 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
23:42:12.0807 0x1704 SENS - ok
23:42:12.0821 0x1704 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:42:12.0839 0x1704 SensrSvc - ok
23:42:12.0879 0x1704 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:42:12.0910 0x1704 Serenum - ok
23:42:12.0946 0x1704 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:42:12.0978 0x1704 Serial - ok
23:42:13.0042 0x1704 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:42:13.0077 0x1704 sermouse - ok
23:42:13.0115 0x1704 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
23:42:13.0149 0x1704 SessionEnv - ok
23:42:13.0202 0x1704 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
23:42:13.0218 0x1704 sffdisk - ok
23:42:13.0239 0x1704 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:42:13.0255 0x1704 sffp_mmc - ok
23:42:13.0269 0x1704 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
23:42:13.0289 0x1704 sffp_sd - ok
23:42:13.0303 0x1704 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:42:13.0318 0x1704 sfloppy - ok
23:42:13.0380 0x1704 [ BEB504962E36D6F368EBFC702A659E09, F3C28501D04E76406A59BEBA536B3EDB4DA80C4AD3F07786B25F35CC4FFBD0BF ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
23:42:13.0411 0x1704 SftService - ok
23:42:13.0444 0x1704 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:42:13.0492 0x1704 SharedAccess - ok
23:42:13.0542 0x1704 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:42:13.0594 0x1704 ShellHWDetection - ok
23:42:13.0618 0x1704 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:42:13.0619 0x1704 SiSRaid2 - ok
23:42:13.0634 0x1704 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:42:13.0652 0x1704 SiSRaid4 - ok
23:42:13.0679 0x1704 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:42:13.0728 0x1704 Smb - ok
23:42:13.0765 0x1704 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:42:13.0800 0x1704 SNMPTRAP - ok
23:42:13.0862 0x1704 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\syswow64\speedfan.sys
23:42:13.0875 0x1704 speedfan - ok
23:42:13.0883 0x1704 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
23:42:13.0894 0x1704 spldr - ok
23:42:13.0942 0x1704 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
23:42:13.0997 0x1704 Spooler - ok
23:42:14.0128 0x1704 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
23:42:14.0298 0x1704 sppsvc - ok
23:42:14.0314 0x1704 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:42:14.0371 0x1704 sppuinotify - ok
23:42:14.0416 0x1704 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:42:14.0473 0x1704 srv - ok
23:42:14.0499 0x1704 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:42:14.0551 0x1704 srv2 - ok
23:42:14.0573 0x1704 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:42:14.0606 0x1704 srvnet - ok
23:42:14.0646 0x1704 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:42:14.0703 0x1704 SSDPSRV - ok
23:42:14.0720 0x1704 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:42:14.0779 0x1704 SstpSvc - ok
23:42:14.0894 0x1704 [ 1FCAF9C8A17985A28507338F36200320, EE0226A121676222881D4EA1DB3B630CF71F3727DF4D00026B187BE4A681E838 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_056607ee0106e5e8\STacSV64.exe
23:42:14.0927 0x1704 STacSV - ok
23:42:15.0033 0x1704 [ 9A5444C8F06477EFD8B6A4B64748DF76, 19D90A266118A842B8E26B783466C4551A35A9F2F2F9B4B3CF14735D03D861BA ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:42:15.0077 0x1704 Steam Client Service - ok
23:42:15.0114 0x1704 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:42:15.0128 0x1704 stexstor - ok
23:42:15.0162 0x1704 [ 3C400155894B9CAF176EB4F64737050B, 46AB405DAC7D10C20E67B0484E5EE1B451E6E6EC918B5AE5BB208BD4CBF0FCD3 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
23:42:15.0200 0x1704 STHDA - ok
23:42:15.0280 0x1704 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
23:42:15.0337 0x1704 stisvc - ok
23:42:15.0370 0x1704 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
23:42:15.0381 0x1704 swenum - ok
23:42:15.0428 0x1704 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
23:42:15.0484 0x1704 swprv - ok
23:42:15.0545 0x1704 [ 5C9BB68B1F4BBCB85B4F6E675FC523A0, 6C9D952669B42199D7087189E5DB91CDD42D1015BAD206EB880B04D780086FDD ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
23:42:15.0561 0x1704 SynTP - ok
23:42:15.0658 0x1704 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
23:42:15.0753 0x1704 SysMain - ok
23:42:15.0797 0x1704 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:42:15.0838 0x1704 TabletInputService - ok
23:42:15.0855 0x1704 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
23:42:15.0932 0x1704 TapiSrv - ok
23:42:15.0954 0x1704 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
23:42:15.0985 0x1704 TBS - ok
23:42:16.0079 0x1704 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:42:16.0157 0x1704 Tcpip - ok
23:42:16.0238 0x1704 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:42:16.0278 0x1704 TCPIP6 - ok
23:42:16.0335 0x1704 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:42:16.0349 0x1704 tcpipreg - ok
23:42:16.0380 0x1704 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:42:16.0382 0x1704 TDPIPE - ok
23:42:16.0397 0x1704 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:42:16.0439 0x1704 TDTCP - ok
23:42:16.0479 0x1704 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:42:16.0518 0x1704 tdx - ok
23:42:16.0555 0x1704 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
23:42:16.0567 0x1704 TermDD - ok
23:42:16.0625 0x1704 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
23:42:16.0666 0x1704 TermService - ok
23:42:16.0688 0x1704 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
23:42:16.0729 0x1704 Themes - ok
23:42:16.0754 0x1704 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
23:42:16.0785 0x1704 THREADORDER - ok
23:42:16.0798 0x1704 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
23:42:16.0844 0x1704 TrkWks - ok
23:42:16.0912 0x1704 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:42:16.0967 0x1704 TrustedInstaller - ok
23:42:16.0999 0x1704 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:42:17.0014 0x1704 tssecsrv - ok
23:42:17.0076 0x1704 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:42:17.0110 0x1704 TsUsbFlt - ok
23:42:17.0175 0x1704 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:42:17.0205 0x1704 tunnel - ok
23:42:17.0227 0x1704 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:42:17.0241 0x1704 uagp35 - ok
23:42:17.0291 0x1704 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:42:17.0339 0x1704 udfs - ok
23:42:17.0371 0x1704 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:42:17.0405 0x1704 UI0Detect - ok
23:42:17.0461 0x1704 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:42:17.0475 0x1704 uliagpkx - ok
23:42:17.0487 0x1704 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:42:17.0520 0x1704 umbus - ok
23:42:17.0558 0x1704 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:42:17.0594 0x1704 UmPass - ok
23:42:17.0619 0x1704 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
23:42:17.0675 0x1704 upnphost - ok
23:42:17.0729 0x1704 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:42:17.0746 0x1704 usbaudio - ok
23:42:17.0766 0x1704 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:42:17.0803 0x1704 usbccgp - ok
23:42:17.0838 0x1704 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:42:17.0882 0x1704 usbcir - ok
23:42:17.0918 0x1704 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
23:42:17.0949 0x1704 usbehci - ok
23:42:17.0992 0x1704 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:42:18.0007 0x1704 usbhub - ok
23:42:18.0036 0x1704 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:42:18.0067 0x1704 usbohci - ok
23:42:18.0097 0x1704 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:42:18.0129 0x1704 usbprint - ok
23:42:18.0165 0x1704 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:42:18.0201 0x1704 USBSTOR - ok
23:42:18.0222 0x1704 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:42:18.0237 0x1704 usbuhci - ok
23:42:18.0288 0x1704 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
23:42:18.0307 0x1704 usbvideo - ok
23:42:18.0333 0x1704 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
23:42:18.0386 0x1704 UxSms - ok
23:42:18.0445 0x1704 [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] VaultSvc C:\Windows\system32\lsass.exe
23:42:18.0458 0x1704 VaultSvc - ok
23:42:18.0591 0x1704 [ EB2461E88E1E9F2243FAA3F167BFB94E, 1A7E51BC964CC42A2839FE6DB20A7E2E695E827B62851B0B25CCDB091A144D24 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
23:42:18.0607 0x1704 VBoxAswDrv - ok
23:42:18.0620 0x1704 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:42:18.0633 0x1704 vdrvroot - ok
23:42:18.0693 0x1704 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
23:42:18.0763 0x1704 vds - ok
23:42:18.0805 0x1704 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:42:18.0842 0x1704 vga - ok
23:42:18.0863 0x1704 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:42:18.0914 0x1704 VgaSave - ok
23:42:18.0948 0x1704 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:42:18.0966 0x1704 vhdmp - ok
23:42:18.0989 0x1704 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
23:42:19.0001 0x1704 viaide - ok
23:42:19.0058 0x1704 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:42:19.0060 0x1704 volmgr - ok
23:42:19.0124 0x1704 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:42:19.0154 0x1704 volmgrx - ok
23:42:19.0170 0x1704 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:42:19.0191 0x1704 volsnap - ok
23:42:19.0220 0x1704 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:42:19.0240 0x1704 vsmraid - ok
23:42:19.0320 0x1704 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
23:42:19.0428 0x1704 VSS - ok
23:42:19.0445 0x1704 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:42:19.0482 0x1704 vwifibus - ok
23:42:19.0504 0x1704 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:42:19.0539 0x1704 vwififlt - ok
23:42:19.0588 0x1704 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
23:42:19.0639 0x1704 W32Time - ok
23:42:19.0645 0x1704 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:42:19.0678 0x1704 WacomPen - ok
23:42:19.0729 0x1704 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:42:19.0777 0x1704 WANARP - ok
23:42:19.0781 0x1704 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:42:19.0811 0x1704 Wanarpv6 - ok
23:42:19.0927 0x1704 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:42:19.0986 0x1704 WatAdminSvc - ok
23:42:20.0082 0x1704 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
23:42:20.0181 0x1704 wbengine - ok
23:42:20.0230 0x1704 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:42:20.0280 0x1704 WbioSrvc - ok
23:42:20.0320 0x1704 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:42:20.0359 0x1704 wcncsvc - ok
23:42:20.0371 0x1704 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:42:20.0389 0x1704 WcsPlugInService - ok
23:42:20.0409 0x1704 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:42:20.0422 0x1704 Wd - ok
23:42:20.0487 0x1704 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:42:20.0532 0x1704 Wdf01000 - ok
23:42:20.0575 0x1704 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:42:20.0606 0x1704 WdiServiceHost - ok
23:42:20.0610 0x1704 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:42:20.0628 0x1704 WdiSystemHost - ok
23:42:20.0672 0x1704 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
23:42:20.0701 0x1704 WebClient - ok
23:42:20.0728 0x1704 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:42:20.0766 0x1704 Wecsvc - ok
23:42:20.0776 0x1704 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:42:20.0813 0x1704 wercplsupport - ok
23:42:20.0833 0x1704 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
23:42:20.0867 0x1704 WerSvc - ok
23:42:20.0878 0x1704 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:42:20.0909 0x1704 WfpLwf - ok
23:42:20.0943 0x1704 [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
23:42:20.0959 0x1704 WimFltr - ok
23:42:20.0969 0x1704 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:42:20.0980 0x1704 WIMMount - ok
23:42:20.0993 0x1704 WinDefend - ok
23:42:21.0008 0x1704 WinHttpAutoProxySvc - ok
23:42:21.0062 0x1704 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:42:21.0114 0x1704 Winmgmt - ok
23:42:21.0201 0x1704 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
23:42:21.0310 0x1704 WinRM - ok
23:42:21.0381 0x1704 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:42:21.0397 0x1704 WinUsb - ok
23:42:21.0451 0x1704 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:42:21.0507 0x1704 Wlansvc - ok
23:42:21.0546 0x1704 [ 680A7846370000D20D7E74917D5B7936, 55B77B358039672845D361CA4205F3482D1F30A4654B610FD785A1337EFDC316 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
23:42:21.0556 0x1704 WmBEnum - ok
23:42:21.0595 0x1704 [ 14C35BA8189C6F65D839163AA285E954, 8981AA488320C75E26E1ABDF884B721A4065F5D28F54782598B03F21B8CDC020 ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
23:42:21.0606 0x1704 WmFilter - ok
23:42:21.0653 0x1704 [ AC4331AF118A720F13C9C5CABBFE27BD, 2C5F453996B00078F3E8E731F6B3DD4529831BDA2146EAFC66727C9460E85112 ] WmHidLo C:\Windows\system32\drivers\WmHidLo.sys
23:42:21.0673 0x1704 WmHidLo - ok
23:42:21.0704 0x1704 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:42:21.0735 0x1704 WmiAcpi - ok
23:42:21.0786 0x1704 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:42:21.0808 0x1704 wmiApSrv - ok
23:42:21.0823 0x1704 WMPNetworkSvc - ok
23:42:21.0840 0x1704 [ 8488DD91A3EE54A8E29F02AD7BB8201E, D428ED991D9E4A8765C240B21884A262854278698D60862117AC5949713231F9 ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
23:42:21.0840 0x1704 WmVirHid - ok
23:42:21.0855 0x1704 [ 14802B3A30AA849C97CB968CCC813BF3, 330AD828ABD040ECDBF58F7162978CD61BFC093CAD404FD2BCAC74E3F2EC542A ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
23:42:21.0871 0x1704 WmXlCore - ok
23:42:21.0915 0x1704 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:42:21.0940 0x1704 WPCSvc - ok
23:42:21.0975 0x1704 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:42:21.0991 0x1704 WPDBusEnum - ok
23:42:22.0007 0x1704 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:42:22.0047 0x1704 ws2ifsl - ok
23:42:22.0059 0x1704 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
23:42:22.0091 0x1704 wscsvc - ok
23:42:22.0091 0x1704 WSearch - ok
23:42:22.0199 0x1704 [ 0814A74C853F50B354F08F83DDA9F7FB, 0A63BAA8DE451B8C2C71FEF961718E769B9BAC305C76D24048C664CB27D0DF28 ] wuauserv C:\Windows\system32\wuaueng.dll
23:42:22.0310 0x1704 wuauserv - ok
23:42:22.0347 0x1704 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:42:22.0363 0x1704 WudfPf - ok
23:42:22.0392 0x1704 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:42:22.0430 0x1704 WUDFRd - ok
23:42:22.0449 0x1704 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:42:22.0481 0x1704 wudfsvc - ok
23:42:22.0520 0x1704 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
23:42:22.0561 0x1704 WwanSvc - ok
23:42:22.0587 0x1704 xhunter1 - ok
23:42:22.0643 0x1704 [ 9176C0822FAA649E45121875BE32F5D2, B7A7A906A7BB0F760ED241F998C647D728C4DB5D8778AFE585DF38331165803F ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
23:42:22.0654 0x1704 xusb21 - ok
23:42:22.0705 0x1704 [ 1CACFEF9E5DD866C5B79A135EE729E18, D46DBD2FA4B21F1EE9452EBBCBA143AB5BF83E2C9C8ACF25CEDBEFE02B4EA97D ] {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} c:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl
23:42:22.0705 0x1704 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} - ok
23:42:22.0705 0x1704 ================ Scan global ===============================
23:42:22.0739 0x1704 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
23:42:22.0781 0x1704 [ EA32F4EA3AE06EDD122FBCD5A489E457, C6E464170121D1714A367CFC80C5EA15D42AD34909039FDB114EAD3B878A47F6 ] C:\Windows\system32\winsrv.dll
23:42:22.0794 0x1704 [ EA32F4EA3AE06EDD122FBCD5A489E457, C6E464170121D1714A367CFC80C5EA15D42AD34909039FDB114EAD3B878A47F6 ] C:\Windows\system32\winsrv.dll
23:42:22.0828 0x1704 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:42:22.0860 0x1704 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
23:42:22.0874 0x1704 [ Global ] - ok
23:42:22.0874 0x1704 ================ Scan MBR ==================================
23:42:22.0890 0x1704 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:42:23.0334 0x1704 \Device\Harddisk0\DR0 - ok
23:42:23.0335 0x1704 ================ Scan VBR ==================================
23:42:23.0336 0x1704 [ 172753E962987F89A44170D57C556097 ] \Device\Harddisk0\DR0\Partition1
23:42:23.0339 0x1704 \Device\Harddisk0\DR0\Partition1 - ok
23:42:23.0364 0x1704 [ 09F9321D72D6B1A9CBEAEEB9C592214A ] \Device\Harddisk0\DR0\Partition2
23:42:23.0364 0x1704 \Device\Harddisk0\DR0\Partition2 - ok
23:42:23.0364 0x1704 ================ Scan generic autorun ======================
23:42:23.0364 0x1704 SynTPEnh - ok
23:42:23.0415 0x1704 [ 2FEF28D0506C0A13F9CA066E4BF99666, C8EA501BDA9942279E7C03F1E97A54C56E335FFC57DDCD836B810522404F5E1B ] C:\Program Files\IDT\WDM\sttray64.exe
23:42:23.0450 0x1704 SysTrayApp - ok
23:42:23.0484 0x1704 [ D1930CA970D4250D891F432419E3D6C9, C839ED92D5BCC293081E05F2B199848C37A478A361BA6C3255421A297211C915 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
23:42:23.0484 0x1704 IAAnotif - ok
23:42:23.0563 0x1704 [ 59FD4360EB6D2F4F3D6D8A1D2B06EE97, D64AD4F13AFEF6478CDC9B804006E756376FF83B7ABFD56A0DCDCC74E03D8D6A ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
23:42:23.0570 0x1704 DSUpdateLauncher - ok
23:42:23.0587 0x1704 [ 5EC2778402E7F8F945163ECFCCB3B2B3, 8D59252A415EFDCD9BC88460ED38FB660173A682FB861052413824BC7BE2568C ] c:\Program Files (x86)\OSD\Launch.exe
23:42:23.0602 0x1704 OSD_LAUNCH - detected UnsignedFile.Multi.Generic ( 1 )
23:42:26.0016 0x1704 Detect skipped due to KSN trusted
23:42:26.0016 0x1704 OSD_LAUNCH - ok
23:42:26.0060 0x1704 [ 73E592136441A10A55065FDDA651C598, EE9ECF6FAC7003F2AE32F00CA0C8DEFE35990E5EB8165E8E89CBC6BDED3BE835 ] C:\Program Files\Alienware\Command Center\AlienSense\FATrayMon.exe
23:42:26.0075 0x1704 FATrayAlert - ok
23:42:26.0098 0x1704 [ 452FA961163EF4AEE4815796A13AB2CF, 14DC422082F96F5C21C41A5E5F6E8445547CC4B02B18F0A86A34669CA2CE18A7 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
23:42:26.0107 0x1704 Adobe Reader Speed Launcher - ok
23:42:26.0281 0x1704 [ 65C6AA484AD2287D20541C7735989437, 1842787640391F4A4CD9ED0A531298A61F4B2FB09BEC98FEE256313AFB458EDB ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
23:42:26.0416 0x1704 AvastUI.exe - ok
23:42:26.0535 0x1704 [ 6B53177248AC5327FFB5CB2D5C500C94, 2F03DA955BF63BDCA979B76B263FBE4EB1BA2A76476EF0D9145E66CAB781C67C ] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
23:42:26.0561 0x1704 IJNetworkScannerSelectorEX - ok
23:42:26.0602 0x1704 [ A55FB42F0642DBF4817543A58E97721F, A4A8986EA050B1216D85749AB705EB36FE9D0FE0E833281DC63732B1FD4E4687 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
23:42:26.0633 0x1704 SunJavaUpdateSched - ok
23:42:26.0663 0x1704 [ 825FC379E811252AC6F4DE8B10A9E48E, 4B277F7220BC800BE73AE72591DB20BCCCF0A9816AB1328DD07CCC96EB2043F7 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
23:42:26.0675 0x1704 Launcher - ok
23:42:26.0675 0x1704 Sidebar - ok
23:42:26.0703 0x1704 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
23:42:26.0724 0x1704 mctadmin - ok
23:42:26.0724 0x1704 Sidebar - ok
23:42:26.0724 0x1704 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
23:42:26.0740 0x1704 mctadmin - ok
23:42:26.0996 0x1704 [ F2AD1B265908797F8A5E21E0312F2F25, 2A6A612F7D52D297385C43E77AD0CD37B28F33ED2AF89098F5E66B812B838A52 ] C:\Users\Noaphiel\AppData\Local\Akamai\netsession_win.exe
23:42:27.0176 0x1704 Akamai NetSession Interface - ok
23:42:27.0185 0x1704 Waiting for KSN requests completion. In queue: 245
23:42:28.0194 0x1704 Waiting for KSN requests completion. In queue: 245
23:42:29.0194 0x1704 Waiting for KSN requests completion. In queue: 245
23:42:30.0201 0x1704 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.2.2218.942 ), 0x41000 ( enabled : updated )
23:42:30.0208 0x1704 Win FW state via NFP2: enabled ( trusted )
23:42:32.0610 0x1704 ============================================================
23:42:32.0610 0x1704 Scan finished
23:42:32.0610 0x1704 ============================================================
23:42:32.0615 0x16f8 Detected object count: 0
23:42:32.0615 0x16f8 Actual detected object count: 0
|
|
09.11.2015, 19:05
| #5 |
| /// the machine /// TB-Ausbilder | Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne Last http://support2.microsoft.com/kb/929135/de Bitte einen Clean Boot machen. Wenn das Problem dann weg ist, einzeln wieder Dienste aktivieren, dazwischen immer einen Reboot machen. Solange bis Du weißt welcher Dienst die Probleme macht. Diesen dann hier benennen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.11.2015, 21:48
| #6 |
| | Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne Last hi =) nach der Scan und Säuberungsaktion gestern sind die beschriebenen Symptome nicht noch einmal aufgetreten bisher. Ich weiß jetzt nicht so wirklich ob es noch immer an einem Dienst liegen kann, denn daran habe ich noch nichts geändert... Ich weiß jetzt nicht genau wie ich die Dienste nacheinander aktivieren soll, ich setze das Häckchen und dann passiert erstmal nichts... Muss ich denn für jeden einzelnen Dienst neu starten? Das sind ca. 160 Dienste... wenn ja muss ich das ganze zeitlich auf Freitag z.B. legen... MfG |
|
10.11.2015, 21:04
| #7 |
| /// the machine /// TB-Ausbilder | Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne Last Ist es denn überhaupt nach Clean Boot besser? Gesäubert haben wir nichts. Wenn es bei Clean Boot besser ist, dann ja. Einzeln aktivieren, neu starten, testen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Windows 7, Tastatur reagiert extrem verzögert, Lüfter laufen permanent auf Anschlag ohne Last |
| adobe, akamai, amplitude, antivirus, avast, canon, cpu, cracker, defender, device driver, dnsapi.dll, explorer, failed, flash player, google, home, launch, problem, prozesse, registry, rundll, scan, security, services.exe, software, svchost.exe, system, tastatur, temp, udp, windows |
Hybrid-Darstellung
